CN102054258A - Electronic bank safety certificating method and system based on mobile equipment - Google Patents
Electronic bank safety certificating method and system based on mobile equipment Download PDFInfo
- Publication number
- CN102054258A CN102054258A CN2010106005388A CN201010600538A CN102054258A CN 102054258 A CN102054258 A CN 102054258A CN 2010106005388 A CN2010106005388 A CN 2010106005388A CN 201010600538 A CN201010600538 A CN 201010600538A CN 102054258 A CN102054258 A CN 102054258A
- Authority
- CN
- China
- Prior art keywords
- transfer
- transaction information
- payment
- information
- accounts transaction
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention provides an electronic bank safety certificating method based on mobile equipment, which comprises the following steps of: sending transaction information of payment by the transfer of accounts at a bank client to a safety certificating server by utilizing an electronic bank server; sending the transaction information of payment by the transfer of accounts and the preset safety certificating indication information to a safety certificating memory arranged on the mobile equipment by utilizing the safety certificating server through the mobile equipment; judging whether digital signature certification or dynamic command certification is carried out on the transaction information of payment by the transfer of accounts by utilizing the safety certificating memory according to the safety certificating indication information, if so, carrying out digital signature certification on the transaction information of payment by the transfer of accounts, if not so, carrying out dynamic command certification on the transaction information of payment by the transfer of accounts. The invention also provides an electronic bank safety certificating device based on the mobile equipment. The invention can provide unified safety certification for multi-channel electronic transactions. The device has the characteristics of convenience for carrying, good custom experience and the like.
Description
Technical field
The present invention relates to the financial service field, relate in particular to a kind of e-bank's safety certifying method and system based on mobile device.
Background technology
E-bank is as a kind of channel of financial service easily, and is all significant to client, society or bank itself.For bank, on the one hand, e-bank has become the sharp weapon that bank stablizes top-tier customer, the new client of competition, can effectively promote the core competitiveness of bank.On the other hand, e-bank has effectively shunted front-end business, has alleviated the pressure of site sales counter queuing.In addition, e-bank has also saved a large amount of operation costs.
At present, e-bank generally includes Web bank, Mobile banking and telephone bank etc., and for Internet-based banking services, domestic bank's industry adopts USB Key to ensure service security usually; For mobile banking service, domestic bank's industry then adopts means such as phone number, login password to ensure service security usually, and part bank then adopts the form of dynamic password card or dynamic password token further to strengthen Mobile banking's security; For telephone bank, domestic bank industry then adopts mode such as static password to ensure service security usually.
Yet, Net silver authentication based on USB Key and dynamic password token all has certain limitation, because USB Key and dynamic password token can't be applied to electronic service channels such as Web bank, Mobile banking, telephone bank simultaneously, certainly will cause same bank, same client, different services channels, different client's safety to experience, not only increased the cost that the user buys different safety products, and reduced customer satisfaction, cause customer churn easily.
Summary of the invention
The object of the present invention is to provide a kind of e-bank's safety certifying method and system based on mobile device, the security certification memory by being arranged on mobile device can provide unified safety certification for electronic transaction by all kinds of means.
For achieving the above object, the invention provides a kind of e-bank's safety certifying method based on mobile device, comprising:
E-bank's server is sent to the Security Authentication Service device with the payment by the transfer of accounts Transaction Information of bank client end;
Described Security Authentication Service device is sent to the security certification memory that is arranged on this mobile device by mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information;
Described security certification memory judges it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification or carries out dynamic password authentication according to described safety certification indication information,
If digital signature identification then carries out digital signature identification to described payment by the transfer of accounts Transaction Information,
If dynamic password authentication then carries out dynamic password authentication to described payment by the transfer of accounts Transaction Information.
Correspondingly, the present invention also provides a kind of e-bank's security certification system based on mobile device, described security certification system comprises mobile device, is arranged on security certification memory, Security Authentication Service device, e-bank's server on the mobile device, wherein
Described e-bank server is used for the payment by the transfer of accounts Transaction Information of bank client end is sent to the Security Authentication Service device;
Described Security Authentication Service device is used for by described mobile device described payment by the transfer of accounts Transaction Information and default safety certification indication information being sent to described security certification memory;
Described security certification memory comprises:
Receiving element is used for receiving described payment by the transfer of accounts Transaction Information and the default safety certification indication information that the Security Authentication Service device sends by described mobile device;
First judging unit is used for judging it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification or carries out dynamic password authentication according to described safety certification indication information;
The digital certificate authentication unit is used for when described first judgment unit judges goes out to be digital signature identification described payment by the transfer of accounts Transaction Information being carried out digital signature identification;
The dynamic password authentication unit is used for when described first judgment unit judges goes out to be dynamic password authentication described payment by the transfer of accounts Transaction Information being carried out dynamic password authentication.
The present invention has following beneficial effect:
With USB Key in the prior art, safety products such as dynamic password token can't be applied to multiple electronic transaction channel simultaneously and compare, the present invention carries out digital signature identification or dynamic password authentication by the security certification memory that is arranged on the mobile device to the payment by the transfer of accounts Transaction Information by the next different bank client of different e-banks server forwards, can be Web bank, the client of multiple electronic transaction channel such as Mobile banking and telephone bank provides unified safety certification, have advantages such as the customer experience of being convenient for carrying is good, be Mobile banking in addition, telephone bank has increased the function of number of deals word signature, with respect to existing Mobile banking, the static password of telephone bank or dynamic password card have strengthened Mobile banking greatly, the security of telephone banking.
Description of drawings
Fig. 1 is the schematic flow sheet of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 2 is the schematic flow sheet of first specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 3 is the synoptic diagram of second specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 4 is the synoptic diagram of the 3rd specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 5 is the schematic flow sheet of the 4th specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 6 is the synoptic diagram of the 5th specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 7 is the synoptic diagram of the 6th specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention;
Fig. 8 is the structural representation of a kind of e-bank's security certification system based on mobile device of the present invention;
Fig. 9 is the structural representation of security certification memory among Fig. 8;
Figure 10 is the structural representation of digital certificate authentication unit among Fig. 9;
Figure 11 is the structural representation of dynamic password authentication unit among Fig. 9;
Figure 12 is the structural representation of Security Authentication Service device among Fig. 8.
Embodiment
Below in conjunction with drawings and embodiments technical scheme of the present invention is described in detail.
The security certification system of the embodiment of the invention comprises mobile device, is arranged on security certification memory, Security Authentication Service device, e-bank's server, banking system on the mobile device, wherein, e-bank's server comprises: Web bank's server, Mobile banking's server and telephone bank's server, the transaction of the different channels that these different e-banks servers are realized through safety certification server carry out unified safety certification with the security certification memory that is arranged on the mobile device.
Security certification memory in embodiments of the present invention can be realized the function of USB Key, wherein can store be used for to Transaction Information encrypt, information such as digital certificate of the public key algorithm program of deciphering or digital signature, user, private key for user.Security certification memory can be connected with mobile device SIM card circuit with the form of pad pasting chip, and perhaps security certification memory can also be the SD card, comprises standard SD card, Mini SD card or the Micro SD card etc. that are used for smart mobile phone.
In addition, in embodiments of the present invention, described security certification memory can also be realized the function of dynamic password token, wherein can store the algorithm routine of dynamic password seed, generation dynamic password.This security certification memory can the pad pasting chip form be connected with the SIM card circuit of mobile device, perhaps security certification memory is the SD card, for example, can be standard SD card, Mini SD card or the Micro SD card etc. that are used for smart mobile phone.
Below in conjunction with the concrete safety certifying method of setting forth of Fig. 1 to Fig. 7 based on system of the present invention.
Referring to Fig. 1, Fig. 1 is the schematic flow sheet of a kind of e-bank's safety certifying method based on mobile device of the present invention.In the present embodiment, described safety certifying method may further comprise the steps:
Step S101, e-bank's server is sent to the Security Authentication Service device with the payment by the transfer of accounts Transaction Information of bank client end.
In embodiments of the present invention, described payment by the transfer of accounts Transaction Information comprises: information such as payer's number of the account, payee account, payee name, the amount of money of transferring accounts.
Step S102, the Security Authentication Service device is sent to the security certification memory that is arranged on this mobile device by mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information.
Wherein, described mobile device can be the mobile device that mobile phone etc. can be received and dispatched note.
Step S103, security certification memory judges whether it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification according to described safety certification indication information, if be judged as is, execution in step S104 is if be judged as not execution in step S105.
Step S104 carries out digital signature identification to described payment by the transfer of accounts Transaction Information.
Step S105 carries out dynamic password authentication to described payment by the transfer of accounts Transaction Information.
Respectively the safety certifying method of several electronic channels such as Web bank, Mobile banking and telephone bank is elaborated below in conjunction with specific embodiment.
Referring to Fig. 2, Fig. 2 is the schematic flow sheet of first embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention, the security authentication process when showing the user and initiating transaction by Web bank's channel.In the present embodiment, described safety certifying method specifically may further comprise the steps:
Step S201, client's logging in to online banks client is handled the payment by the transfer of accounts business, and the payment by the transfer of accounts Transaction Information of importing is committed to Web bank's server.
Step S202, Web bank's server is forwarded to the Security Authentication Service device with described payment by the transfer of accounts Transaction Information.
Step S203, the Security Authentication Service device is forwarded to the security certification memory that is arranged in the mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information by mobile device.
Particularly, the Security Authentication Service device can be sent to mobile device with described payment by the transfer of accounts Transaction Information and described safety certification indication information by encrypting note, wherein, the safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
Step S204, when described security certification memory is judged needs described payment by the transfer of accounts Transaction Information is carried out digital signature identification according to described safety certification indication information, described payment by the transfer of accounts Transaction Information is sent to mobile device shows the affirmation for the client, the client imports corresponding confirmation by mobile device after described payment by the transfer of accounts Transaction Information is confirmed.
Step S205, security certification memory receives the affirmation information of client to described payment by the transfer of accounts Transaction Information from mobile device.
Step S206, described security certification memory generate the signing messages of this payment by the transfer of accounts Transaction Information according to described payment by the transfer of accounts Transaction Information and confirmation.
Particularly, security certification memory can use in the encryption function individual event hash (Hash) function (for example, MD5 or SHA-1 function) the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion obtain information converting, the private key for user of through safety certification storing in the storer is encrypted the acquisition signing messages to this information converting then.
Step S207, described security certification memory is encrypted described payment by the transfer of accounts Transaction Information and signing messages.
Step S208, described security certification memory are committed to Security Authentication Service device with short message mode with the enciphered message of described payment by the transfer of accounts Transaction Information and signing messages by mobile device and carry out safety certification.
Step S209, Security Authentication Service device verify described payment by the transfer of accounts Transaction Information and signing messages, verify as if passing through, and execution in step S210, otherwise, execution in step S212.
Particularly, after the Security Authentication Service device receives payment by the transfer of accounts Transaction Information and signing messages, the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion obtain information converting, described conversion is identical with conversion described in the above-mentioned steps S206.Simultaneously, the PKI that the Security Authentication Service device utilizes the client is decrypted signing messages and obtains corresponding information converting, if the information converting that conversion obtains is consistent with the information converting that deciphering obtains, then the Security Authentication Service device is determined that client identity authentication authenticates and passed through.
Step S210 is sent to banking system with described payment by the transfer of accounts Transaction Information by Web bank's server.
In this step, the Security Authentication Service device will be sent bank server to the Web by the payment by the transfer of accounts Transaction Information of checking earlier, and Web bank's server is sent to banking system with the payment by the transfer of accounts Transaction Information that receives again.
Step S211, described banking system is handled described payment by the transfer of accounts Transaction Information, and the result after will handling returns the client to Web bank.
Step S212 finishes this transaction.
Referring to Fig. 3, Fig. 3 is the schematic flow sheet of second specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention, the security authentication process when showing the user and initiating transaction by Mobile banking's channel.In the present embodiment, described safety certifying method specifically may further comprise the steps:
Step S301, client login Mobile banking's client and handle the payment by the transfer of accounts business, and the payment by the transfer of accounts Transaction Information of importing is committed to Mobile banking's server.
Step S302, Mobile banking's server is forwarded to the Security Authentication Service device with described payment by the transfer of accounts Transaction Information.
Step S303, the Security Authentication Service device is forwarded to the security certification memory that is arranged in the mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information by mobile device.
Particularly, the Security Authentication Service device can be sent to mobile device with described payment by the transfer of accounts Transaction Information and described safety certification indication information by encrypting note, wherein, the safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
Step S304, it is when described payment by the transfer of accounts Transaction Information is carried out digital signature identification that described security certification memory is judged according to described safety certification indication information, described payment by the transfer of accounts Transaction Information is sent to mobile device shows the affirmation for the client, the client imports corresponding confirmation by mobile device after described payment by the transfer of accounts Transaction Information is confirmed.
Step S305, security certification memory receives the affirmation information of client to described payment by the transfer of accounts Transaction Information from mobile device.
Step S306, described security certification memory generate the signing messages of this payment by the transfer of accounts Transaction Information according to described payment by the transfer of accounts Transaction Information and confirmation.
Particularly, security certification memory can use in the encryption function individual event hash (Hash) function (for example, MD5 or SHA-1 function) the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion obtain information converting, and then the private key for user of through safety certification storing in the storer is encrypted the acquisition signing messages to this information converting.
Step S307, described security certification memory is encrypted described payment by the transfer of accounts Transaction Information and signing messages.
Step S308, described security certification memory are committed to Security Authentication Service device with short message mode with the enciphered message of described payment by the transfer of accounts Transaction Information and signing messages by mobile device and carry out safety certification.
Step S309, Security Authentication Service device verify described payment by the transfer of accounts Transaction Information and signing messages, verify as if passing through, and execution in step S310, otherwise, execution in step S312.
Particularly, after the Security Authentication Service device receives payment by the transfer of accounts Transaction Information and signing messages, the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion obtain information converting, described conversion is identical with conversion described in the above-mentioned steps S306.Simultaneously, the PKI that the Security Authentication Service device utilizes the client is decrypted signing messages and obtains corresponding information converting, if the information converting that conversion obtains is consistent with the information converting that deciphering obtains, then the Security Authentication Service device is determined that client identity authentication authenticates and passed through.
Step S310 is sent to banking system with described payment by the transfer of accounts Transaction Information by Mobile banking's server.
In this step, the Security Authentication Service device will send to Mobile banking's server by the payment by the transfer of accounts Transaction Information of checking earlier, and Mobile banking's server is sent to banking system with the payment by the transfer of accounts Transaction Information that receives again.
Step S311, described banking system is handled described payment by the transfer of accounts Transaction Information, and the result after will handling returns the client to Mobile banking.
Step S312 finishes this transaction.
Referring to Fig. 4, Fig. 4 is the schematic flow sheet of the 3rd embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention, the security authentication process when showing the user and initiating transaction by telephone bank's channel.In the present embodiment, described safety certifying method may further comprise the steps:
Step S401, client login telephone bank's client and handle the payment by the transfer of accounts business, and the payment by the transfer of accounts Transaction Information of importing is committed to telephone bank's server.
Step S402, telephone bank's server is forwarded to the Security Authentication Service device with described payment by the transfer of accounts Transaction Information.
Step S403, the Security Authentication Service device is forwarded to the security certification memory that is arranged in the mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information by mobile device.
Particularly, the Security Authentication Service device can be sent to mobile device with described payment by the transfer of accounts Transaction Information and described safety certification indication information by encrypting note, wherein, the safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
Step S404, it is when described payment by the transfer of accounts Transaction Information is carried out digital signature identification that described security certification memory is judged according to described safety certification indication information, described payment by the transfer of accounts Transaction Information is sent to mobile device shows the affirmation for the client, the client imports corresponding confirmation by mobile device after described payment by the transfer of accounts Transaction Information is confirmed.
Step S405, security certification memory receives the affirmation information of client to described payment by the transfer of accounts Transaction Information from mobile device.
Step S406, described security certification memory generate the signing messages of this payment by the transfer of accounts Transaction Information according to described payment by the transfer of accounts Transaction Information and confirmation.
Particularly, security certification memory can use in the encryption function individual event hash (Hash) function (for example, MD5 or SHA-1 function) the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion obtain information converting, the private key for user of through safety certification storing in the storer is encrypted the acquisition signing messages to this information converting then.
Step S407, described security certification memory is encrypted described payment by the transfer of accounts Transaction Information and signing messages.
Step S408, described security certification memory are committed to Security Authentication Service device with short message mode with the enciphered message of described payment by the transfer of accounts Transaction Information and signing messages by mobile device and carry out safety certification.
Step S409, Security Authentication Service device verify described payment by the transfer of accounts Transaction Information and signing messages, verify as if passing through, and execution in step S410, otherwise, execution in step S412.
Particularly, after the Security Authentication Service device receives payment by the transfer of accounts Transaction Information and signing messages, the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion obtain information converting, described conversion is identical with conversion described in the above-mentioned steps S406.Simultaneously, the PKI that the Security Authentication Service device utilizes the client is decrypted signing messages and obtains corresponding information converting, if the information converting that conversion obtains is consistent with the information that deciphering obtains, then the Security Authentication Service device is determined that client identity authentication authenticates and passed through.
Step S410 is sent to banking system with described payment by the transfer of accounts Transaction Information by telephone bank's server.
In this step, the Security Authentication Service device will send to telephone bank's server by the payment by the transfer of accounts Transaction Information of checking earlier, and telephone bank's server is sent to banking system with the payment by the transfer of accounts Transaction Information that receives again.
Step S411, described banking system is handled described payment by the transfer of accounts Transaction Information, and the result after will handling returns the client to telephone bank.
Step S412 finishes this transaction.
Referring to Fig. 5, Fig. 5 is the schematic flow sheet of the 4th specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention, the security authentication process when showing the user and initiating transaction by Web bank's channel.In the present embodiment, described safety certifying method specifically may further comprise the steps:
Step S501, client's logging in to online banks client is handled the payment by the transfer of accounts business, and the payment by the transfer of accounts Transaction Information of importing is committed to Web bank's server.
Step S502, Web bank's server is forwarded to the Security Authentication Service device with described payment by the transfer of accounts Transaction Information.
Step S503, the Security Authentication Service device is forwarded to the security certification memory that is arranged in the mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information by mobile device.
Need to prove that the Security Authentication Service device can be sent to mobile device with described payment by the transfer of accounts Transaction Information and described safety certification indication information by encrypting note.Wherein, the safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
Step S504, it is when described payment by the transfer of accounts Transaction Information is carried out dynamic password authentication that described security certification memory is judged according to described indication information, generates dynamic password information according to described payment by the transfer of accounts Transaction Information.
Particularly, security certification memory can generate different dynamic password information at random according to the customer information in the payment by the transfer of accounts Transaction Information, and generate a dynamic password at regular intervals automatically, each password effectively also can only use once within a certain period of time.
Step S505, described security certification memory sends to mobile device with the dynamic password information of described payment by the transfer of accounts Transaction Information and generation and shows, for the client described payment by the transfer of accounts Transaction Information is confirmed that the back imports corresponding confirmation by mobile device.
Step S506, described security certification memory receive the client from mobile device and confirm the dynamic password information imported behind the described payment by the transfer of accounts Transaction Information.
Step S507, described security certification memory is encrypted the dynamic password information of described payment by the transfer of accounts Transaction Information and client's input.
Step S508, described security certification memory are committed to Security Authentication Service device with short message mode with the enciphered message of the dynamic password information of described payment by the transfer of accounts Transaction Information and client input by mobile device and carry out safety certification.
Alternatively, the Security Authentication Service device can also be sent to the dynamic password information that generates mobile device and need not the client for the client confirms and import by hand, and receives the client from mobile device and be committed to Security Authentication Service device by mobile device to encrypt short message mode to the payment by the transfer of accounts Transaction Information with to the dynamic password information that after the affirmation information of this dynamic password information payment by the transfer of accounts Transaction Information and Security Authentication Service device is generated.
Step S509, described Security Authentication Service device generates dynamic password information according to described payment by the transfer of accounts Transaction Information.
Step S510, described Security Authentication Service device judge whether the dynamic password information of client input and the dynamic password information that this Security Authentication Service device generates mate, if, execution in step S511 then, otherwise, execution in step S513.
Particularly, the algorithm that the Security Authentication Service device generates dynamic password information is identical with the algorithm that safe storage generates dynamic password information, the dynamic password information that is common Security Authentication Service device generation is identical with the dynamic password information that security certification memory generates, when the client accurately imports dynamic password information according to the demonstration of mobile device, then can be by checking, distort when the dynamic password information victim of client's input, then can't pass through checking.
Step S511 is sent to banking system with described payment by the transfer of accounts Transaction Information by Web bank's server.
Step S512, described banking system is handled described payment by the transfer of accounts Transaction Information, and the result after will handling returns the client to Web bank.
Step S513 finishes this transaction.
Referring to Fig. 6, Fig. 6 is the schematic flow sheet of the 5th specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention, the security authentication process when showing the user and initiating transaction by Mobile banking's channel.In the present embodiment, described safety certifying method specifically may further comprise the steps:
Step S601, client login Mobile banking's client and handle the payment by the transfer of accounts business, and the payment by the transfer of accounts Transaction Information of importing is committed to Mobile banking's server.
Step S602, Mobile banking's server is forwarded to the Security Authentication Service device with described payment by the transfer of accounts Transaction Information.
Step S603, the Security Authentication Service device is forwarded to the security certification memory that is arranged in the mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information by mobile device.
Need to prove that the Security Authentication Service device can be sent to mobile device with described payment by the transfer of accounts Transaction Information and described safety certification indication information by encrypting note.Wherein, the safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
Step S604, it is when described payment by the transfer of accounts Transaction Information is carried out dynamic password authentication that described security certification memory is judged according to described indication information, generates dynamic password information according to described payment by the transfer of accounts Transaction Information.
Particularly, security certification memory can generate different dynamic password information at random according to the customer information in the payment by the transfer of accounts Transaction Information, and generate a dynamic password at regular intervals automatically, each password effectively also can only use once within a certain period of time.
Step S606, described security certification memory sends to mobile device with the dynamic password information of described payment by the transfer of accounts Transaction Information and generation and shows, for the client described payment by the transfer of accounts Transaction Information is confirmed that the back imports corresponding confirmation by mobile device.
Step S606, described security certification memory receive the client from mobile device and confirm the dynamic password information imported behind the described payment by the transfer of accounts Transaction Information.
Step S607, described security certification memory is encrypted the dynamic password information of described payment by the transfer of accounts Transaction Information and client's input.
Step S608, described security certification memory are committed to Security Authentication Service device with short message mode with the enciphered message of the dynamic password information of described payment by the transfer of accounts Transaction Information and client input by mobile device and carry out safety certification.
Alternatively, the Security Authentication Service device can also be sent to the dynamic password information that generates mobile device and need not the client for the client confirms and import by hand, and receives the client from mobile device and be committed to Security Authentication Service device by mobile device to encrypt short message mode to the payment by the transfer of accounts Transaction Information with to the dynamic password information that after the affirmation information of this dynamic password information payment by the transfer of accounts Transaction Information and Security Authentication Service device is generated.
Step S609, described Security Authentication Service device generates dynamic password information according to described payment by the transfer of accounts Transaction Information.
Step S610, described Security Authentication Service device judge whether the dynamic password information of client input and the dynamic password information that this Security Authentication Service device generates mate, if, execution in step S611 then, otherwise, execution in step S613.
Particularly, the Security Authentication Service device is identical with the algorithm that safe storage generates dynamic password information according to the algorithm that generates dynamic password information, the dynamic password information that is common Security Authentication Service device generation is identical with the dynamic password information that security certification memory generates, when the client accurately imports dynamic password information according to the demonstration of mobile device, then can be by checking, distort when the dynamic password information victim of client's input, then can't pass through checking.
Step S611 is sent to banking system with described payment by the transfer of accounts Transaction Information by Mobile banking's server.
Step S612, described banking system is handled described payment by the transfer of accounts Transaction Information, and the result after will handling returns the client to Mobile banking.
Step S613 finishes this transaction.
Referring to Fig. 7, Fig. 7 is the schematic flow sheet of the 6th specific embodiment of a kind of e-bank's safety certifying method based on mobile device of the present invention, the security authentication process when showing the user and initiating transaction by telephone bank's channel.In the present embodiment, described safety certifying method specifically may further comprise the steps:
Step S701, client login telephone bank's client and handle the payment by the transfer of accounts business, and the payment by the transfer of accounts Transaction Information of importing is committed to telephone bank's server.
Step S702, telephone bank's server is forwarded to the Security Authentication Service device with described payment by the transfer of accounts Transaction Information.
Step S703, the Security Authentication Service device is forwarded to the security certification memory that is arranged in the mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information by mobile device.
Need to prove that the Security Authentication Service device can be sent to mobile device with described payment by the transfer of accounts Transaction Information and described safety certification indication information by encrypting note.Wherein, the safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
Step S704, it is when described payment by the transfer of accounts Transaction Information is carried out dynamic password authentication that described security certification memory is judged according to described indication information, generates dynamic password information according to described payment by the transfer of accounts Transaction Information.
Particularly, security certification memory can generate different dynamic password information at random according to the customer information in the payment by the transfer of accounts Transaction Information, and generate a dynamic password at regular intervals automatically, each password effectively also can only use once within a certain period of time.
Step S705, described security certification memory sends to mobile device with the dynamic password information of described payment by the transfer of accounts Transaction Information and generation and shows, for the client described payment by the transfer of accounts Transaction Information is confirmed that the back imports corresponding confirmation by mobile device.
Step S706, described security certification memory receive the client from mobile device and confirm the dynamic password information imported behind the described payment by the transfer of accounts Transaction Information.
Step S707, described security certification memory is encrypted the dynamic password information of described payment by the transfer of accounts Transaction Information and client's input.
Step S708, described security certification memory are committed to Security Authentication Service device with short message mode with the enciphered message of the dynamic password information of described payment by the transfer of accounts Transaction Information and client input by mobile device and carry out safety certification.
Alternatively, the Security Authentication Service device can also be sent to the dynamic password information that generates mobile device and need not the client for the client confirms and import by hand, and receives the dynamic password information that the client generates payment by the transfer of accounts Transaction Information and Security Authentication Service device after to the affirmation information of payment by the transfer of accounts Transaction Information and this dynamic password information from mobile device and be committed to the Security Authentication Service device by mobile device to encrypt short message mode.
Step S709, described Security Authentication Service device generates dynamic password information according to described payment by the transfer of accounts Transaction Information.
Step S710, described Security Authentication Service device judge whether the dynamic password information of client input and the dynamic password information that this Security Authentication Service device generates mate, if, execution in step S711 then, otherwise, execution in step S713.
Particularly, the algorithm that the Security Authentication Service device generates dynamic password information is identical with the algorithm that safe storage generates dynamic password information, the dynamic password information that is common Security Authentication Service device generation is identical with the dynamic password information that security certification memory generates, when the client accurately imports dynamic password information according to the demonstration of mobile device, then can be by checking, distort when the dynamic password information victim of client's input, then can't pass through checking.
Step S711 is sent to banking system with described payment by the transfer of accounts Transaction Information by telephone bank's server.
Step S712, described banking system is handled described payment by the transfer of accounts Transaction Information, and the result after will handling returns the client to telephone bank.
Step S713 finishes this transaction.
More than the safety certifying method based on security certification system of the present invention is had been described in detail, below the concrete structure of security certification system of the present invention is set forth.
Referring to Fig. 8, Fig. 8 is the structural representation of a kind of e-bank's security certification system based on mobile device of the present invention.Described system comprises mobile device 1, is arranged on security certification memory 2, Security Authentication Service device 3, e-bank's server 4, banking system 5 and e-bank's client 6 on the described mobile device.
Mobile device in embodiments of the present invention can be the mobile device that mobile phone etc. can be received and dispatched note.Security certification memory can or be the die bonding film that is connected with the SIM card circuit for the SD card.Wherein the SD card can be standard SD card, Mini SD card or the Micro SD card etc. that are used for smart mobile phone.
E-bank's server 4 in embodiments of the present invention comprises: Web bank's server, Mobile banking's server and telephone bank's server.E-bank's client 6 comprises: Web bank's client, Mobile banking's client and telephone bank's client.When Web bank's client is carried out the payment by the transfer of accounts transaction by public internet, the payment by the transfer of accounts Transaction Information is committed to the Security Authentication Service device by Web bank's server; When Mobile banking's client is carried out the payment by the transfer of accounts transaction by mobile phone WAP network, the payment by the transfer of accounts Transaction Information is committed to the Security Authentication Service device by Mobile banking's server; When telephone bank's client is carried out the payment by the transfer of accounts transaction by telephone network, the payment by the transfer of accounts Transaction Information is committed to the Security Authentication Service device by telephone bank's server.The transaction of the different channels that these different e-banks servers are realized through safety certification server is carried out unified safety certification with the security certification memory that is arranged on the mobile device.
Wherein, described e-bank client 6 is used to receive the payment by the transfer of accounts Transaction Information that the client imports, and this payment by the transfer of accounts Transaction Information is committed to e-bank's server 4.
Described e-bank server 4 is used for the payment by the transfer of accounts Transaction Information of e-bank's client 6 is sent to Security Authentication Service device 3.
Described Security Authentication Service device 3 is used for by described mobile device 1 described payment by the transfer of accounts Transaction Information and default safety certification indication information being sent to described security certification memory 2.
Described security certification memory 2 is used to realize following function:
Receive described payment by the transfer of accounts Transaction Information and the default safety certification indication information that Security Authentication Service device 3 sends by mobile device 1,
Judge it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification or carries out dynamic password authentication according to described safety certification indication information;
When judging when being digital signature identification described payment by the transfer of accounts Transaction Information is carried out digital signature identification;
When judging when being dynamic password authentication described payment by the transfer of accounts Transaction Information is carried out dynamic password authentication.
Described Security Authentication Service device 3 also is used to be achieved as follows function:
Generate dynamic password information according to described payment by the transfer of accounts Transaction Information;
Judge whether the dynamic password information of described input and the dynamic password information of generation mate;
When being judged as coupling, then through safety certification, otherwise not through safety certification.
Referring to Fig. 9, Fig. 9 is the structural representation of security certification memory among Fig. 8, and described security certification memory 2 comprises: receiving element 21, first judging unit 22, digital certificate authentication unit 23, dynamic password authentication unit 24.
Wherein, receiving element 21 is used for receiving payment by the transfer of accounts Transaction Information and the default safety certification indication information that Security Authentication Service device 3 sends by mobile device.
In embodiments of the present invention, described payment by the transfer of accounts Transaction Information comprises: information such as payment number of the account, shroff account number, payee name, the amount of money of transferring accounts.Described safety certification indication information is that indication is carried out digital signature identification to the payment by the transfer of accounts Transaction Information or carried out the information of dynamic password authentication.
First judging unit 22 is used for judging it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification or carries out dynamic password authentication according to described safety certification indication information.
Digital certificate authentication unit 23 is used for judging when being digital signature identification when first judging unit 22 described payment by the transfer of accounts Transaction Information is carried out digital signature identification.
Dynamic password authentication unit 24 is used for judging when being dynamic password authentication when first judging unit 22 described payment by the transfer of accounts Transaction Information is carried out dynamic password authentication.
Referring to Figure 10, Figure 10 is the structural representation of digital certificate authentication unit among Fig. 9, and described digital certificate authentication unit 23 comprises: first sending module 231, first receiver module 233, signature blocks 235 and first processing module 237.
First sending module 231 is used for that the payment by the transfer of accounts Transaction Information is sent to mobile device and shows for the client and confirm.The client imports corresponding confirmation by mobile device after described payment by the transfer of accounts Transaction Information is confirmed.
Signature blocks 235 is used for generating according to described payment by the transfer of accounts Transaction Information and confirmation the signing messages of this payment by the transfer of accounts Transaction Information.
Particularly, signature blocks 235 can use in the encryption function individual event hash (Hash) function (for example, MD5 or SHA-1 function) the payment by the transfer of accounts Transaction Information is carried out unidirectional irreversible conversion acquisition information converting, utilize the private key for user of storage that this information converting is encrypted the acquisition signing messages then.
Wherein, described first processing module 237 comprises: first encrypting module 2371 and first is submitted module 2373 to.
Described first encrypting module 2371 is used for described payment by the transfer of accounts Transaction Information and signing messages are encrypted.
Described first submits module 2373 to, is used for short message mode the enciphered message of described payment by the transfer of accounts Transaction Information and signing messages being committed to Security Authentication Service device 3 by mobile device and carries out safety certification.
Figure 11 is the structural representation of dynamic password authentication unit among Fig. 9, and referring to Figure 11, described dynamic password authentication unit 24 comprises: dynamic password generation module 241, second sending module 243, second receiver module 245 and second processing module 247.
Described dynamic password generation module 241 is used for generating dynamic password information according to the payment by the transfer of accounts Transaction Information.
Wherein, described second processing module 247 comprises:
Second submits module 2473 to, is used for short message mode the enciphered message of described payment by the transfer of accounts Transaction Information and dynamic password information being sent to the Security Authentication Service device by mobile device and carries out safety certification.
Referring to Figure 12, Figure 12 is the structural representation of Security Authentication Service device among Fig. 8, and described Security Authentication Service device 3 comprises: processing unit 31, authentication unit 32, dynamic password generation unit 33 and second judging unit 34.
Wherein, processing unit 31 is used for by mobile device payment by the transfer of accounts Transaction Information and default safety certification indication information being sent to security certification memory 2.
Particularly, authentication unit 32 carries out unidirectional irreversible conversion with the payment by the transfer of accounts Transaction Information and obtains information converting, and described conversion is identical with the conversion that above-mentioned signature blocks 235 is carried out.Simultaneously, authentication unit 32 utilizes client's PKI that signing messages is decrypted the corresponding information converting of acquisition, if the information converting that conversion obtains is consistent with the information converting that deciphering obtains, then authentication unit 32 definite client identity authentication authentications are passed through.
Described processing unit 31 is used for that also the payment by the transfer of accounts Transaction Information by checking is sent to banking system 5 by e-bank's server and handles.
Described dynamic password generation unit 33 is used for according to generating dynamic password information by mobile device from the payment by the transfer of accounts Transaction Information that security certification memory receives.
Described second judging unit 34 is used to judge by mobile device whether mate from the dynamic password information of client's input of security certification memory reception and the dynamic password information of dynamic password generation unit 33 generations.
Described processing unit 31 also is used for when described second judging unit 34 is judged as coupling described payment by the transfer of accounts Transaction Information being sent to banking system 5 by e-bank's server 4 and handles.
The embodiment of the invention is carried out digital signature identification or dynamic password authentication by the security certification memory that is arranged on the mobile device to the payment by the transfer of accounts Transaction Information by the next different bank client of different e-banks server forwards, can provide unified safety certification for the client of multiple electronic transaction channels such as Web bank, Mobile banking and telephone bank, in addition, also increased the function of electronic transaction digital signature, strengthened the security of Mobile banking, telephone banking greatly for Mobile banking, telephone bank.
Through the above description of the embodiments, those skilled in the art can be well understood to the present invention and can realize by the mode of software in conjunction with essential hardware platform, can certainly all implement by hardware.Based on such understanding, all or part of can the embodying that technical scheme of the present invention contributes to background technology with the form of software product, this computer software product can be stored in the storage medium, as ROM/RAM, magnetic disc, CD etc., comprise that some instructions are with so that a computer equipment (can be a personal computer, server, the perhaps network equipment etc.) carry out the described method of some part of each embodiment of the present invention or embodiment.
More than disclosed only be the specific embodiment of the present invention; only be used for the present invention is illustrated; can not limit the present invention's protection domain with this; those skilled in the art can carry out various modifications, variation or replacement under the prerequisite that does not break away from essence of the present invention; therefore; according to the various equivalent variations that the present invention did, still belong to the scope that the present invention is contained.
Claims (18)
1. the e-bank's safety certifying method based on mobile device is characterized in that, comprising:
E-bank's server is sent to the Security Authentication Service device with the payment by the transfer of accounts Transaction Information of bank client end;
Described Security Authentication Service device is sent to the security certification memory that is arranged on this mobile device by mobile device with described payment by the transfer of accounts Transaction Information and default safety certification indication information;
Described security certification memory judges it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification or carries out dynamic password authentication according to described safety certification indication information,
If digital signature identification then carries out digital signature identification to described payment by the transfer of accounts Transaction Information,
If dynamic password authentication then carries out dynamic password authentication to described payment by the transfer of accounts Transaction Information.
2. the method for claim 1 is characterized in that, described security certification memory carries out digital signature identification to described payment by the transfer of accounts Transaction Information and comprises:
Described payment by the transfer of accounts Transaction Information is sent to described mobile device to be shown;
Receive the affirmation information of client by this mobile device to described payment by the transfer of accounts Transaction Information;
Generate the signing messages of this payment by the transfer of accounts Transaction Information according to described payment by the transfer of accounts Transaction Information and confirmation;
Described payment by the transfer of accounts Transaction Information and signing messages are committed to described Security Authentication Service device by described mobile device carry out safety certification.
3. method as claimed in claim 2 is characterized in that, described payment by the transfer of accounts Transaction Information and signing messages is committed to the Security Authentication Service device by described mobile device comprises:
Described payment by the transfer of accounts Transaction Information and signing messages are encrypted;
With short message mode the enciphered message of described payment by the transfer of accounts Transaction Information and signing messages is sent to described Security Authentication Service device by described mobile device.
4. the method for claim 1 is characterized in that, described security certification memory carries out dynamic password authentication to described payment by the transfer of accounts Transaction Information and comprises:
Generate dynamic password information according to described payment by the transfer of accounts Transaction Information;
The dynamic password information of described payment by the transfer of accounts Transaction Information and generation is sent to described mobile device to be shown;
Receive client by this mobile device and confirm the dynamic password information imported behind the described payment by the transfer of accounts Transaction Information;
The dynamic password information of described payment by the transfer of accounts Transaction Information and input is committed to described Security Authentication Service device by described mobile device carries out safety certification.
5. method as claimed in claim 4 is characterized in that, described payment by the transfer of accounts Transaction Information and dynamic password information is committed to described Security Authentication Service device by described mobile device comprises:
The dynamic password information of described payment by the transfer of accounts Transaction Information and input is encrypted;
With short message mode the enciphered message of the dynamic password information of described payment by the transfer of accounts Transaction Information and input is sent to the Security Authentication Service device by described mobile device.
6. method as claimed in claim 4 is characterized in that, described method also comprises:
Described Security Authentication Service device generates dynamic password information according to described payment by the transfer of accounts Transaction Information;
Described Security Authentication Service device judges whether the dynamic password information of the described input that receives and the dynamic password information that this Security Authentication Service device generates mate,
When being judged as coupling, then through safety certification, otherwise not through safety certification.
7. the method for claim 1 is characterized in that, described payment by the transfer of accounts Transaction Information comprises: payer's number of the account, payee account, payee name and the amount of money of transferring accounts.
8. the method for claim 1 is characterized in that,
Described e-bank server comprises: Web bank's server, Mobile banking's server and telephone bank's server;
Described bank client end comprises: Web bank's client, Mobile banking's client and telephone bank's client.
9. the method for claim 1 is characterized in that, described security certification memory is SD card or the die bonding film for being connected with the SIM card circuit.
10. the e-bank's security certification system based on mobile device is characterized in that, described security certification system comprises mobile device, is arranged on security certification memory, Security Authentication Service device, e-bank's server on the mobile device, wherein,
Described e-bank server is used for the payment by the transfer of accounts Transaction Information of bank client end is sent to the Security Authentication Service device;
Described Security Authentication Service device is used for by described mobile device described payment by the transfer of accounts Transaction Information and default safety certification indication information being sent to described security certification memory;
Described security certification memory comprises:
Receiving element is used for receiving described payment by the transfer of accounts Transaction Information and the default safety certification indication information that described Security Authentication Service device sends by described mobile device;
First judging unit is used for judging it is that described payment by the transfer of accounts Transaction Information is carried out digital signature identification or carries out dynamic password authentication according to described safety certification indication information;
The digital certificate authentication unit is used for when described first judgment unit judges goes out to be digital signature identification described payment by the transfer of accounts Transaction Information being carried out digital signature identification;
The dynamic password authentication unit is used for when described first judgment unit judges goes out to be dynamic password authentication described payment by the transfer of accounts Transaction Information being carried out dynamic password authentication.
11. system as claimed in claim 10 is characterized in that, described digital certificate authentication unit comprises:
First sending module is used for that described payment by the transfer of accounts Transaction Information is sent to described mobile device and shows;
First receiver module is used for receiving the affirmation information of client to described payment by the transfer of accounts Transaction Information by described mobile device;
Signature blocks is used for generating according to described payment by the transfer of accounts Transaction Information and confirmation the signing messages of this payment by the transfer of accounts Transaction Information;
First processing module is used for that described payment by the transfer of accounts Transaction Information and signing messages are committed to described Security Authentication Service device by described mobile device and carries out safety certification.
12. system as claimed in claim 11 is characterized in that, described first processing module comprises:
First encrypting module is used for described payment by the transfer of accounts Transaction Information and signing messages are encrypted;
First submits module to, is used for short message mode the enciphered message of described payment by the transfer of accounts Transaction Information and signing messages being sent to described Security Authentication Service device by described mobile device and carries out safety certification.
13. system as claimed in claim 10 is characterized in that, described dynamic password authentication unit comprises:
The dynamic password generation module is used for generating dynamic password information according to described payment by the transfer of accounts Transaction Information;
Second sending module is used for that described payment by the transfer of accounts Transaction Information and dynamic password information are sent to described mobile device and shows;
Second receiver module is used for receiving the client by mobile device and confirms the dynamic password information imported behind the described payment by the transfer of accounts Transaction Information;
Second processing module is used for dynamic password information with described payment by the transfer of accounts Transaction Information and input and is committed to described Security Authentication Service device by described mobile device and carries out safety certification.
14. system as claimed in claim 13 is characterized in that, described second processing module comprises:
Second encrypting module is used for the dynamic password information of described payment by the transfer of accounts Transaction Information and input is encrypted;
Second submits module to, is used for short message mode the enciphered message of the dynamic password information of described payment by the transfer of accounts Transaction Information and input being sent to described Security Authentication Service device by described mobile device and carries out safety certification.
15. system as claimed in claim 13 is characterized in that, described Security Authentication Service device also is used to be achieved as follows function:
Generate dynamic password information according to described payment by the transfer of accounts Transaction Information;
Judge whether the dynamic password information of described input and the dynamic password information that this Security Authentication Service device generates mate;
When being judged as coupling, then through safety certification, otherwise not through safety certification.
16. system as claimed in claim 10 is characterized in that, described security certification memory is SD card or the die bonding film for being connected with the SIM card circuit.
17. system as claimed in claim 10 is characterized in that, described payment by the transfer of accounts Transaction Information comprises: payer's number of the account, payee account, payee name and the amount of money of transferring accounts.
18. system as claimed in claim 10 is characterized in that,
Described e-bank server comprises: Web bank's server, Mobile banking's server and telephone bank's server.
Described bank client end comprises: Web bank's client, Mobile banking's client and telephone bank's client.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010106005388A CN102054258A (en) | 2010-12-16 | 2010-12-16 | Electronic bank safety certificating method and system based on mobile equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010106005388A CN102054258A (en) | 2010-12-16 | 2010-12-16 | Electronic bank safety certificating method and system based on mobile equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102054258A true CN102054258A (en) | 2011-05-11 |
Family
ID=43958547
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010106005388A Pending CN102054258A (en) | 2010-12-16 | 2010-12-16 | Electronic bank safety certificating method and system based on mobile equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102054258A (en) |
Cited By (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103136881A (en) * | 2011-11-22 | 2013-06-05 | 中国银联股份有限公司 | Payment method and payment system |
| CN103200150A (en) * | 2012-01-04 | 2013-07-10 | 深圳市腾讯计算机系统有限公司 | Identity authentication method and system |
| CN103337021A (en) * | 2013-05-08 | 2013-10-02 | 上海方付通商务服务有限公司 | Film card and secure transaction method based on same |
| CN103354634A (en) * | 2013-05-08 | 2013-10-16 | 上海方付通商务服务有限公司 | Method and system for information processing |
| CN103426113A (en) * | 2012-05-25 | 2013-12-04 | 动信科技股份有限公司 | Financial information processing system and method |
| CN103546295A (en) * | 2013-10-25 | 2014-01-29 | 苏州通付盾信息技术有限公司 | Dynamic mobile signature system and method |
| CN103780392A (en) * | 2014-01-15 | 2014-05-07 | 杭州晟元芯片技术有限公司 | Man-machine-interaction security confirmation method for handset security unit |
| CN103793819A (en) * | 2012-10-31 | 2014-05-14 | 天地融科技股份有限公司 | Transaction system, transaction method, electronic signature tool and network bank server authentication method |
| CN103854177A (en) * | 2012-11-30 | 2014-06-11 | 吴伟峰 | Safe E-bank implementation method |
| CN103973647A (en) * | 2013-01-31 | 2014-08-06 | 华为终端有限公司 | Application access method and equipment |
| CN104268746A (en) * | 2014-09-17 | 2015-01-07 | 江苏爱心消费支付服务有限公司 | Card-free payment method |
| CN104468764A (en) * | 2014-11-29 | 2015-03-25 | 华为技术有限公司 | Method, device and system for strategy scheduling |
| CN105103180A (en) * | 2012-12-26 | 2015-11-25 | 新韩信用卡株式会社 | Method for processing issuance of mobile credit card |
| CN105657007A (en) * | 2015-12-29 | 2016-06-08 | 深圳市鼎芯无限科技有限公司 | Storage method and device for target information |
| CN105809441A (en) * | 2014-12-29 | 2016-07-27 | 北京握奇智能科技有限公司 | Online banking transaction method |
| CN106131037A (en) * | 2016-07-25 | 2016-11-16 | 四川易想电子商务有限公司 | A kind of internet trade method |
| CN108053212A (en) * | 2017-12-29 | 2018-05-18 | 齐宇庆 | A kind of bank paying Licensing Authority feedback information system of software and hardware combining |
| CN106228713B (en) * | 2016-07-26 | 2018-08-10 | 中国银联股份有限公司 | Data processing system and method for multiple POS terminals |
| CN109003061A (en) * | 2018-06-20 | 2018-12-14 | 东莞市盟大塑化科技有限公司 | A kind of inter-bank is transferred accounts the method intelligently paid |
| CN109560932A (en) * | 2017-09-25 | 2019-04-02 | 北京云海商通科技有限公司 | The recognition methods of identity data, apparatus and system |
| CN111311412A (en) * | 2020-02-24 | 2020-06-19 | 腾讯科技(深圳)有限公司 | Decentralized transaction confirmation method and device and server |
| EP3817278A4 (en) * | 2018-06-26 | 2022-03-16 | Japan Communications Inc. | Online service provision system and application program |
-
2010
- 2010-12-16 CN CN2010106005388A patent/CN102054258A/en active Pending
Cited By (30)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103136881B (en) * | 2011-11-22 | 2016-06-22 | 中国银联股份有限公司 | Method of payment and payment system |
| CN103136881A (en) * | 2011-11-22 | 2013-06-05 | 中国银联股份有限公司 | Payment method and payment system |
| CN103200150A (en) * | 2012-01-04 | 2013-07-10 | 深圳市腾讯计算机系统有限公司 | Identity authentication method and system |
| CN103426113A (en) * | 2012-05-25 | 2013-12-04 | 动信科技股份有限公司 | Financial information processing system and method |
| CN103793819B (en) * | 2012-10-31 | 2017-12-19 | 天地融科技股份有限公司 | transaction system and method |
| CN103793819A (en) * | 2012-10-31 | 2014-05-14 | 天地融科技股份有限公司 | Transaction system, transaction method, electronic signature tool and network bank server authentication method |
| CN103854177A (en) * | 2012-11-30 | 2014-06-11 | 吴伟峰 | Safe E-bank implementation method |
| CN105103180A (en) * | 2012-12-26 | 2015-11-25 | 新韩信用卡株式会社 | Method for processing issuance of mobile credit card |
| CN105103180B (en) * | 2012-12-26 | 2019-01-04 | 新韩信用卡株式会社 | Method for handling the distribution of mobile credit card |
| WO2014117648A1 (en) * | 2013-01-31 | 2014-08-07 | 华为终端有限公司 | Application access method and device |
| CN103973647A (en) * | 2013-01-31 | 2014-08-06 | 华为终端有限公司 | Application access method and equipment |
| CN103354634A (en) * | 2013-05-08 | 2013-10-16 | 上海方付通商务服务有限公司 | Method and system for information processing |
| CN103354634B (en) * | 2013-05-08 | 2017-05-17 | 上海方付通商务服务有限公司 | Method and system for information processing |
| CN103337021A (en) * | 2013-05-08 | 2013-10-02 | 上海方付通商务服务有限公司 | Film card and secure transaction method based on same |
| CN103546295A (en) * | 2013-10-25 | 2014-01-29 | 苏州通付盾信息技术有限公司 | Dynamic mobile signature system and method |
| CN103780392A (en) * | 2014-01-15 | 2014-05-07 | 杭州晟元芯片技术有限公司 | Man-machine-interaction security confirmation method for handset security unit |
| CN104268746A (en) * | 2014-09-17 | 2015-01-07 | 江苏爱心消费支付服务有限公司 | Card-free payment method |
| CN104468764B (en) * | 2014-11-29 | 2017-12-29 | 华为技术有限公司 | A kind of tactful dispatching method, apparatus and system |
| CN104468764A (en) * | 2014-11-29 | 2015-03-25 | 华为技术有限公司 | Method, device and system for strategy scheduling |
| CN105809441A (en) * | 2014-12-29 | 2016-07-27 | 北京握奇智能科技有限公司 | Online banking transaction method |
| CN105657007A (en) * | 2015-12-29 | 2016-06-08 | 深圳市鼎芯无限科技有限公司 | Storage method and device for target information |
| CN106131037A (en) * | 2016-07-25 | 2016-11-16 | 四川易想电子商务有限公司 | A kind of internet trade method |
| CN106228713B (en) * | 2016-07-26 | 2018-08-10 | 中国银联股份有限公司 | Data processing system and method for multiple POS terminals |
| CN109560932A (en) * | 2017-09-25 | 2019-04-02 | 北京云海商通科技有限公司 | The recognition methods of identity data, apparatus and system |
| CN108053212A (en) * | 2017-12-29 | 2018-05-18 | 齐宇庆 | A kind of bank paying Licensing Authority feedback information system of software and hardware combining |
| CN109003061A (en) * | 2018-06-20 | 2018-12-14 | 东莞市盟大塑化科技有限公司 | A kind of inter-bank is transferred accounts the method intelligently paid |
| CN109003061B (en) * | 2018-06-20 | 2022-11-29 | 东莞盟大集团有限公司 | Intelligent payment method for transfer across banks |
| EP3817278A4 (en) * | 2018-06-26 | 2022-03-16 | Japan Communications Inc. | Online service provision system and application program |
| US11617084B2 (en) | 2018-06-26 | 2023-03-28 | Japan Communications Inc. | Online service providing system and application program |
| CN111311412A (en) * | 2020-02-24 | 2020-06-19 | 腾讯科技(深圳)有限公司 | Decentralized transaction confirmation method and device and server |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102054258A (en) | Electronic bank safety certificating method and system based on mobile equipment | |
| US11880829B2 (en) | Provisioning of access credentials using device codes | |
| CN112199714B (en) | Privacy protection method and device based on block chain and electronic equipment | |
| CN101651675B (en) | By the method and system that authentication code is verified client | |
| CN104464117B (en) | Based on dynamic two-dimension code ATM (automatic teller machine) withdrawal method and system | |
| CN101447867B (en) | Method for managing digital certificate and system | |
| US20100051686A1 (en) | System and method for authenticating a transaction using a one-time pass code (OTPK) | |
| CN102867366B (en) | Portable bank card data processing device, system and method | |
| CN103747012A (en) | Security verification method, device and system of network transaction | |
| US20220058642A1 (en) | Systems and methods for amplifying the strength of cryptographic algorithms | |
| CN102088353A (en) | Two-factor authentication method and system based on mobile terminal | |
| CN105243542B (en) | Dynamic electronic certificate authentication method | |
| CN109063450B (en) | Control method of safe storage medium, safe storage medium and system | |
| CN104079562A (en) | Safety authentication method based on payment terminal and related device | |
| CN103237305A (en) | Password protection method for smart card on mobile terminals | |
| CN105741116A (en) | Fast payment method, apparatus and system | |
| US11956349B2 (en) | Efficient authentic communication system and method | |
| CN103139210A (en) | Method of safety authentication | |
| CN114270780A (en) | Gateway agnostic tokenization | |
| CN105427102A (en) | Financial IC card based authentication method and corresponding device and system | |
| CN104966193A (en) | System and method for safely transmitting ID (identity )by using Bluetooth | |
| JP2022502891A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| Yang et al. | A New Third-party Payment Scheme with Anonymity for Mobile Commerce | |
| CN105405010B (en) | Transaction device, transaction system using the same and transaction method | |
| Chang et al. | A highly efficient and secure electronic cash system based on secure sharing in cloud environment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20110511 |