CN102056165A - Cellphone payment secret key remote encapsulation system and method - Google Patents

Cellphone payment secret key remote encapsulation system and method Download PDF

Info

Publication number
CN102056165A
CN102056165A CN2010106055654A CN201010605565A CN102056165A CN 102056165 A CN102056165 A CN 102056165A CN 2010106055654 A CN2010106055654 A CN 2010106055654A CN 201010605565 A CN201010605565 A CN 201010605565A CN 102056165 A CN102056165 A CN 102056165A
Authority
CN
China
Prior art keywords
key
key data
smart card
foundation
dynamic
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2010106055654A
Other languages
Chinese (zh)
Other versions
CN102056165B (en
Inventor
邓丁
王长年
费林深
黄宝伟
任恒勃
覃勇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Group Jiangsu Co Ltd
Eastcompeace Smart Card Co Ltd
Original Assignee
China Mobile Group Jiangsu Co Ltd
Eastcompeace Smart Card Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Group Jiangsu Co Ltd, Eastcompeace Smart Card Co Ltd filed Critical China Mobile Group Jiangsu Co Ltd
Priority to CN201010605565.4A priority Critical patent/CN102056165B/en
Publication of CN102056165A publication Critical patent/CN102056165A/en
Application granted granted Critical
Publication of CN102056165B publication Critical patent/CN102056165B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a cellphone payment secret key remote encapsulation system and method. The system comprises a secret key management unit, wherein the secret key management unit is provided with a base secret key memory module and a dynamic secret key management module, base secret key data are stored in the base secret key memory module, and the dynamic secret key management module can generate dynamic secret key data. The system also comprises a card distribution unit which is provided with a card distribution host machine and a card distribution terminal which are mutually communicated. The method also comprises the following steps of: acquiring the number information of an intelligent card by the card distribution unit, and sending request information about cellphone payment secret key remote encapsulation to the secret key management unit; acquiring base secret key data from the base secret key memory module, generating dynamic secret key data according to the base secret key data and the number information, and sending the dynamic secret key data to the card distribution unit by the dynamic secret key management module; and writing the received dynamic secret key data into the intelligent card by the card distribution unit. In the invention, the cellphone payment secret keys ensuring cellphone payment safety are provided, and the cellphone payment secret keys are conveniently and quickly written in the intelligent card.

Description

Long-range bulking system of mobile-phone payment key and method thereof
Technical field
The present invention relates to field of intelligent cards, relate in particular to the long-range bulking system of mobile-phone payment key and the long-range packaging process that the mobile-phone payment key are write smart card.
Background technology
Along with the development of mobile technology with popularize, mobile-phone payment becomes emerging E-Payment service form gradually.With respect to traditional E-Payment based on the Internet, mobile-phone payment has characteristics such as mobility, promptness, personalization, convenience, it directly is pushed to the fund treatment system such as platform of taking in of bank counter, businessman in face of the user, and the user is as long as promptly can finish transaction with various objects whenever and wherever possible by mobile phone.
Though mobile-phone payment is professional flexible, this business relates to a plurality of business sides such as bank, mobile communication carrier, third party transaction platform, so the fail safe of mobile-phone payment is most important.
Traditional means of payment is guaranteed security of payment by the password form mostly, and existing mobile-phone payment also is by the fail safe in the form guarantee process of exchange of password.Yet, existing mobile-phone payment only is to confirm whether grant payment by the payment cipher that user oneself sets mostly, but for not ensureing security of payment between mobile communication carrier and bank, the third party transaction platform by corresponding secret key, therefore in the smart card of mobile phone, write the payment key that is used for mobile-phone payment, and it is very necessary as the verification msg of mobile communication carrier and bank, third party transaction platform to use this payment key.
In addition, how the mobile-phone payment key is written in the smart card quickly and easily, it also is crucial avoiding the user is caused trouble.
Summary of the invention
Main purpose of the present invention provides a kind of long-range bulking system of mobile-phone payment key that the mobile-phone payment key is effectively managed.
Another object of the present invention provides a kind of long-range packaging process of mobile-phone payment key that quickly and easily the mobile-phone payment key is write smart card.
In order to realize above-mentioned main purpose, the long-range bulking system of mobile-phone payment key provided by the invention comprises cipher key management unit, it is provided with foundation key memory module and dynamic key management module, the foundation key memory module stores the foundation key data, the dynamic key management module is obtained the foundation key data and is generated the dynamic key data according to the foundation key data from the foundation key memory module, bulking system also comprises the hair fastener unit of communicating by letter with cipher key management unit, it is provided with the hair fastener main frame and the hair fastener terminal of intercommunication mutually, and the hair fastener terminal is used to read the data of smart card and writes the dynamic key data to smart card.
By such scheme as seen, cipher key management unit can be stored the foundation key data, and generates the dynamic key data distributing to the hair fastener unit, by the hair fastener unit dynamic key data is written in the smart card.When the user carries out mobile-phone payment, use the verification msg of these dynamic key data as mobile communication carrier and bank, third party's payment platform.Because system management is carried out in generation, storage to foundation key data, dynamic key data, ensures the fail safe of mobile-phone payment.
For realizing another above-mentioned purpose, the long-range packaging process of mobile-phone payment key provided by the invention is applied in as above-mentioned bulking system, this method comprises that the hair fastener unit obtains the number information of smart card, and to cipher key management unit transmission mobile-phone payment key can solicited message, the dynamic key management module of cipher key management unit is obtained foundation key data from the foundation key memory module, and according to foundation key data and number information generation dynamic key data, and the dynamic key data that generated are sent to the hair fastener unit, the hair fastener unit writes the dynamic key data that received in the smart card.
By such scheme as seen, by said method can generate simply, quickly and easily the dynamic key data and with the dynamic key remote data be sent to the hair fastener unit, in time the dynamic key data are write in thousands of miles away user's smart card, the user can handle the mobile-phone payment key like a cork and write formality.
A preferred scheme is, bulking system also comprises the foundation key administrative unit, be used to store the foundation key data and send the foundation key data to cipher key management unit, before the hair fastener unit obtained the number information of smart card, the foundation key administrative unit sent the foundation key data to cipher key management unit.
This shows that the foundation key administrative unit manages the foundation key data, and the foundation key data are backed up, avoid losing of foundation key data.Simultaneously, the foundation key data are carried out unified management, can guarantee foundation key safety of data and uniformity by the foundation key administrative unit.
Further scheme is, after cipher key management unit receives the solicited message of hair fastener unit, judge whether this solicited message is again the solicited message of can mobile-phone payment key, if, then read the former dynamic key data that smart card is stored by the hair fastener unit, and former dynamic key data are verified, after checking is passed through, number information and foundation key data according to smart card generate new dynamic key data and are issued to the hair fastener unit, and the hair fastener unit writes the new dynamic key data that received in the smart card.
As seen,, can give the user the new dynamic key data of can again easily, be convenient to the regular update of dynamic key data, more can ensure the safety of mobile-phone payment effectively by above-mentioned shirtsleeve operation.
Description of drawings
Fig. 1 is the structured flowchart of the long-range bulking system embodiment of mobile-phone payment key of the present invention.
Fig. 2 is the flow chart of the long-range packaging process embodiment of mobile-phone payment key of the present invention.
Fig. 3 is a flow chart of writing card among the long-range packaging process embodiment of mobile-phone payment key of the present invention again.
Fig. 4 is the flow chart of clear card among the long-range packaging process embodiment of mobile-phone payment key of the present invention.
The invention will be further described below in conjunction with drawings and Examples.
Embodiment
The said mobile-phone payment key of the present invention is in the mobile-phone payment business procedure, verification msg between mobile communication carrier and bank, the third party transaction platform, long-range bulking system are to be used for the mobile-phone payment key is remotely write system in cellphone subscriber's smart card.
Referring to Fig. 1, the long-range bulking system of mobile-phone payment key of the present invention is made up of foundation key administrative unit 10, cipher key management unit 20 and hair fastener unit 30.Foundation key administrative unit 10 stores a plurality of foundation key data, and each foundation key data is corresponding to the smart card of a kind, for example the smart card of the smart card of the smart card of different regions distribution, different set meals, different operators distribution etc.It is stable that the foundation key data that foundation key administrative unit 10 is stored kept in one period long period, often do not revise.
Cipher key management unit 20 is communicated by letter with foundation key administrative unit 10, and receives the foundation key data from foundation key administrative unit 10.Cipher key management unit 20 has the foundation key memory module 21 and the dynamic key management module 22 of intercommunication mutually, and 21 storages of foundation key memory module are from the foundation key data of foundation key administrative unit 10.Foundation key administrative unit 10 initiatively issues amended foundation key data to cipher key management unit 20 behind each foundation key data modification.Certainly, cipher key management unit 20 also can active request foundation key administrative unit 10 issue the foundation key data.
Dynamic key management module 22 can be obtained the foundation key data from foundation key memory module 21, and generates the dynamic key data according to the foundation key data, simultaneously with the dynamic key data distributing to hair fastener unit 30.
Hair fastener unit 30 has the hair fastener main frame 31 and the hair fastener terminal 32 of intercommunication mutually, and hair fastener terminal 32 can read the information of smart card, and writes data to smart card.Hair fastener main frame 31 is used for communicating by letter with cipher key management unit 20, and hair fastener terminal 32 is managed.
Hair fastener terminal 32 has intelligent card read/write device, is used for reading the information of the smart card that is inserted into intelligent card read/write device, as IMEI number of smart card etc., and to the smart card writing information, as the number of smart card, dynamic key data etc.The number information of smart card can be to be written in the smart card, and this moment, hair fastener terminal 32 can obtain the number information of smart card by the data that read smart card.If smart card is neocaine, then hair fastener main frame 31 that hair fastener terminal 32 can be by the backstage and card issuer server etc. obtain a new number information, and write smart card.Certainly, if number is selected by user oneself, then the number information of smart card can also be the information of artificial input.
Before using above-mentioned bulking system and carrying out the long-range can of mobile-phone payment key, the foundation key storage that at first needs to generate in advance is in the foundation key administrative unit, and before card is write in the hair fastener unit, with the foundation key data distributing to cipher key management unit.After cipher key management unit receives the foundation key data, with the foundation key storage in the foundation key memory module.
After the foundation key data were write the foundation key memory module, the flow process of the long-range packaging process of mobile-phone payment key as shown in Figure 2.At first, the hair fastener terminal reads the information of smart card by intelligent card read/write device, and passes through the number information that the information that read or backstage card issuer server etc. obtain smart card, sends solicited message to cipher key management unit simultaneously, i.e. execution in step S1.Cipher key management unit can obtain the type information of smart card by this number information, perhaps, comprises the type information of smart card in the information that the hair fastener unit is sent.
After cipher key management unit received solicited message, execution in step S2 judged that whether this solicited message is the information that card is write in request, in this way then execution in step S3, not person's execution in step S6.The information that card is write in request comprises the information of asking can mobile-phone payment key, and therefore, the dynamic key management module of cipher key management unit is obtained the foundation key data from the foundation key memory module.When obtaining the foundation key data, the dynamic key management module is obtained and the corresponding foundation key data of the type according to the type information of smart card.Then,, use corresponding algorithm computation and generate dynamic key data according to the number information of foundation key data, smart card etc., and with the dynamic key data distributing that generated to the hair fastener unit.
After the hair fastener unit received the dynamic key data, execution in step S4 write the dynamic key data that received in the smart card.At last, hair fastener unit execution in step S5 writes the personal data of smart card in the smart card, as the set meal type of smart card, application program etc.Certainly, if smart card is not a neocaine, it has write personal data, then need not execution in step S5.
Among the step S6, cipher key management unit judges whether the solicited message received is the solicited message of writing card again, and execution in step S7 then carries out writing operation again in this way, and the flow process of writing operation as shown in Figure 3 again.As not being to ask writing operation again, then execution in step S8.
Referring to Fig. 3, when writing card again, hair fastener unit execution in step S21, the former dynamic key data that write smart card are read, be uploaded to cipher key management unit then, cipher key management unit execution in step S22 verifies former dynamic key data, and execution in step S23, judge whether checking is passed through, if, then rewrite card crash not by checking, if by checking, execution in step S24 then, the dynamic key management module is obtained and the corresponding foundation key data of smart card classification, and generates new dynamic key data according to foundation key data and number information, last execution in step S25 writes new dynamic key data in the smart card.Like this, promptly finish the can again of dynamic key data.After the user uses dynamic key data a period of time, can upgrade the dynamic key data easily, ensure the fail safe of transaction.
Review Fig. 2, among the step S8, cipher key management unit judges whether the solicited message that is received is the information of the clear card operation of request, and in this way, execution in step S9 blocks operation clearly, otherwise execution in step S10.The flow process of clear card operation as shown in Figure 4.
When blocking operation clearly, the hair fastener unit is execution in step S31 at first, judges whether the smart card that is inserted is empty calorie, if empty calorie, EO then is if not empty calorie, execution in step S32 then reads the former dynamic key data of smart card and execution in step S33, former dynamic key data are verified, execution in step S34 judges whether checking is passed through, if by checking then, then execution in step S35 finishes otherwise block flow process clearly.
Among the step S35, the hair fastener unit is with the dynamic key data dump of being stored in the smart card, and execution in step S36 removes the personal data of smart card then, thereby finishes the clear card operation of smart card.
Review Fig. 2, among the step S10, cipher key management unit judges whether the solicited message that is received is that the request application management program is handled request, in this way, then execution in step S11 carries out application program management, comprises that the hair fastener unit obtains the application program module, and the application program module write in the smart card, perhaps the application program module is deleted from smart card etc.If it is not that the request application management program is handled that cipher key management unit is judged solicited message, then flow process finishes.
By such scheme as seen, the long-range bulking system of mobile-phone payment key can generate the dynamic key data quickly and easily and remotely the key data that generates is written in the smart card, when the user uses mobile phone to pay, mobile communication carrier verifies by this mobile-phone payment key and bank, third party transaction platform, ensures security of payment.In addition, long-range packaging process can be guaranteed the convenience of mobile-phone payment key pouring process, and can be in time to the dynamic key data upgrade, operation such as removing, avoid making troubles to the user.
Certainly, the foregoing description only is the preferable embodiment of the present invention, during practical application more variation can also be arranged, and for example, the foundation key administrative unit is only stored foundation key data; Perhaps, when calculating the dynamic key data also the personal data with smart card be parameter etc., these changes also can realize purpose of the present invention.
It is emphasized that at last; the invention is not restricted to above-mentioned execution mode, as the change of dynamic key data computation generation method, write the dynamic key data and also should be included in the protection range of claim of the present invention with the variations such as order change that write personal data.

Claims (8)

1. the long-range bulking system of mobile-phone payment key is characterized in that: comprise
Cipher key management unit, it is provided with foundation key memory module and dynamic key management module, described foundation key memory module stores the foundation key data, and described dynamic key management module is obtained described foundation key data and generated the dynamic key data according to described foundation key data from described foundation key memory module;
The hair fastener unit, it is communicated by letter with described cipher key management unit, and is provided with the hair fastener main frame and the hair fastener terminal of intercommunication mutually, and described hair fastener terminal is used to read the data of smart card and writes described dynamic key data to described smart card.
2. the long-range bulking system of mobile-phone payment key according to claim 1 is characterized in that:
Also comprise the foundation key administrative unit, its storage also sends described foundation key data to described cipher key management unit.
3. use the long-range packaging process of mobile-phone payment key of the long-range bulking system of mobile-phone payment key as claimed in claim 1, comprise
Described hair fastener unit obtains the number information of described smart card, and sends mobile-phone payment key can solicited message to described cipher key management unit;
The dynamic key management module of described cipher key management unit is obtained foundation key data from described foundation key memory module, and, the described dynamic key data that generated are sent to described hair fastener unit according to described foundation key data and described number information generation dynamic key data;
Described hair fastener unit writes the described dynamic key data that received in the described smart card.
4. the long-range packaging process of mobile-phone payment key according to claim 3 is characterized in that:
Described bulking system also comprises the foundation key administrative unit, is used for storage and sends described foundation key data to described cipher key management unit;
Before described hair fastener unit obtained the number information of described smart card, described foundation key administrative unit sent described foundation key data to described cipher key management unit.
5. according to claim 3 or the long-range packaging process of 4 described mobile-phone payment keys, it is characterized in that:
Described foundation key memory module stores a plurality of foundation key data, the described smart card of the corresponding kind of each described foundation key data.
6. the long-range packaging process of mobile-phone payment key according to claim 5 is characterized in that:
When described hair fastener unit sends solicited message to described cipher key management unit, send the classification information of described smart card to described cipher key management unit;
Described dynamic key management module is obtained the foundation key data corresponding with the classification of described smart card according to described classification information to described foundation key memory module.
7. according to claim 3 or the long-range packaging process of 4 described mobile-phone payment keys, it is characterized in that:
When described hair fastener unit writes described smart card with described dynamic key data, the personal data of described smart card is write in the described smart card in the lump.
8. according to claim 3 or the long-range packaging process of 4 described mobile-phone payment keys, it is characterized in that:
After described cipher key management unit receives the solicited message of described hair fastener unit, judge whether described request information is again the solicited message of can mobile-phone payment key, if, then read the former dynamic key data that described smart card is stored by described hair fastener unit, and described former dynamic key data are verified, after checking is passed through, generate new dynamic key data and be issued to described hair fastener unit according to the number information of described smart card and described foundation key data;
Described hair fastener unit writes the new dynamic key data that received in the described smart card.
CN201010605565.4A 2010-12-24 2010-12-24 Cellphone payment secret key remote encapsulation system and method Active CN102056165B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201010605565.4A CN102056165B (en) 2010-12-24 2010-12-24 Cellphone payment secret key remote encapsulation system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201010605565.4A CN102056165B (en) 2010-12-24 2010-12-24 Cellphone payment secret key remote encapsulation system and method

Publications (2)

Publication Number Publication Date
CN102056165A true CN102056165A (en) 2011-05-11
CN102056165B CN102056165B (en) 2014-10-29

Family

ID=43959979

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201010605565.4A Active CN102056165B (en) 2010-12-24 2010-12-24 Cellphone payment secret key remote encapsulation system and method

Country Status (1)

Country Link
CN (1) CN102056165B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103138919A (en) * 2013-01-18 2013-06-05 广东华大集成技术有限责任公司 Front-end secret key filling system and method of secret key filling
CN104639317A (en) * 2015-02-13 2015-05-20 胡文东 System and method for key update of smart card based on app (Application) module
CN110505063A (en) * 2018-05-17 2019-11-26 广东国盾量子科技有限公司 A kind of method and system guaranteeing financial payment safety

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007121587A1 (en) * 2006-04-25 2007-11-01 Stephen Laurence Boren Dynamic distributed key system and method for identity management, authentication servers, data security and preventing man-in-the-middle attacks
CN101098225A (en) * 2006-06-29 2008-01-02 中国银联股份有限公司 Safety data transmission method and paying method, paying terminal and paying server
CN101132551A (en) * 2007-09-28 2008-02-27 中兴通讯股份有限公司 Electronic trade system based on GPRS network and implementing method thereof
CN101778381A (en) * 2009-12-31 2010-07-14 卓望数码技术(深圳)有限公司 Digital certificate generation method, user key acquisition method, mobile terminal and device

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2007121587A1 (en) * 2006-04-25 2007-11-01 Stephen Laurence Boren Dynamic distributed key system and method for identity management, authentication servers, data security and preventing man-in-the-middle attacks
CN101098225A (en) * 2006-06-29 2008-01-02 中国银联股份有限公司 Safety data transmission method and paying method, paying terminal and paying server
CN101132551A (en) * 2007-09-28 2008-02-27 中兴通讯股份有限公司 Electronic trade system based on GPRS network and implementing method thereof
CN101778381A (en) * 2009-12-31 2010-07-14 卓望数码技术(深圳)有限公司 Digital certificate generation method, user key acquisition method, mobile terminal and device

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103138919A (en) * 2013-01-18 2013-06-05 广东华大集成技术有限责任公司 Front-end secret key filling system and method of secret key filling
CN103138919B (en) * 2013-01-18 2016-07-13 广东华大互联网股份有限公司 A kind of key fill front-end system and method thereof
CN104639317A (en) * 2015-02-13 2015-05-20 胡文东 System and method for key update of smart card based on app (Application) module
CN110505063A (en) * 2018-05-17 2019-11-26 广东国盾量子科技有限公司 A kind of method and system guaranteeing financial payment safety
CN110505063B (en) * 2018-05-17 2022-08-02 广东国盾量子科技有限公司 Method and system for ensuring security of financial payment

Also Published As

Publication number Publication date
CN102056165B (en) 2014-10-29

Similar Documents

Publication Publication Date Title
CN101394615B (en) Mobile payment terminal and payment method based on PKI technique
CN103916844B (en) Client identification module card activating method and virtual client identification module card server
US7882208B2 (en) Information management apparatus, information management method, and program for managing an integrated circuit
CN107820238B (en) SIM card, blockchain application security module, client and security operation method thereof
CN106527673A (en) Method and apparatus for binding wearable device, and electronic payment method and apparatus
CN102184499A (en) Account information binding method, financial transaction method and mobile terminal
FR2922701A1 (en) SECURE CUSTOMIZATION METHOD OF AN NFC CHIPSET
CN101840599B (en) Earmark method and system of electronic purse
US7516479B2 (en) Data communicating apparatus and method for managing memory of data communicating apparatus
CN103400460B (en) Mobile POS, the system and method for card business realizing
JP2015011498A (en) Sim card and access system of application program for portable terminal device
CN102866960A (en) Method for realizing encryption in storage card, decrypting method and device
CN102694795B (en) A kind of method for using application service in off-line case
CN105427106A (en) Electronic cash data authorization processing method, electronic cash data payment processing method and virtual card
CN103544114B (en) Based on many M1 card control system and the control method thereof of single CPU card
CN101866411A (en) Security certification and encryption method and system of multi-application noncontact-type CPU card
CN112636916A (en) Data processing method, data processing device, storage medium and electronic equipment
CN103580870A (en) Mobile phone identity authentication terminal
CN103310278B (en) Ticketing service application system based on the close algorithm of state, booking method and ticket management method
CN102056165B (en) Cellphone payment secret key remote encapsulation system and method
CN201742425U (en) Non-contact type CPU card multi-application security authentication and encryption system
CN101841806A (en) Service card information processing method, device and system and communication terminal
CN101931530B (en) Generation method, authentication method and device for dynamic password and network system
CN103186805A (en) Smart card and signature authentication method based on smart card
CN104361304A (en) Method and device for downloading application program of smart card

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C53 Correction of patent of invention or patent application
CB02 Change of applicant information

Address after: Nanjing City, Jiangsu province 210000 Huju Road No. 81

Applicant after: China Mobile Communication Group Jiangsu Co., Ltd.

Applicant after: Eastcompeace Technology Co., Ltd.

Address before: Nanjing City, Jiangsu province 210000 Huju Road No. 81

Applicant before: China Mobile Communication Group Jiangsu Co., Ltd.

Applicant before: Eastcompeace Smart Card Co., Ltd.

C14 Grant of patent or utility model
GR01 Patent grant