CN102223354A - Network payment authentication method, server and system - Google Patents
Network payment authentication method, server and system Download PDFInfo
- Publication number
- CN102223354A CN102223354A CN2010101500124A CN201010150012A CN102223354A CN 102223354 A CN102223354 A CN 102223354A CN 2010101500124 A CN2010101500124 A CN 2010101500124A CN 201010150012 A CN201010150012 A CN 201010150012A CN 102223354 A CN102223354 A CN 102223354A
- Authority
- CN
- China
- Prior art keywords
- user
- identification information
- identity
- web bank
- payment request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The application discloses a network payment authentication method, a server and a system. The method comprises the following steps that an e-commerce website server receives online bank identification selected by a user and identity authentication identification information which is input by the user and corresponds to the online bank identification; the e-commerce website server sets up a payment request and returns the payment request to the user, wherein the payment request contains the identity authentication identification information; and the e-commerce website server receives the authentication result returned by an online bank server, wherein the authentication result is obtained in the way that according to the identity authentication information contained in the payment request transmitted by the user, and the online bank server carries out authentication to the identity authentication information input by the user in the payment operation. The application completely eradicates illegal actions that phishing is carried out by an online bank payment interface, so as to protect the safety of the transaction by utilizing the network payment of the e-commerce website server.
Description
Technical field
The application relates to the network security technology field, relates in particular to a kind of network payment method for authenticating, server and system.
Background technology
At present, in e-commerce field, most e-commerce website is all cooperated with the bank, pay by Web bank's payment interface that bank provides, utilize Web bank's payment interface to carry out the unlawful activities of phishing but exist at present, the disabled user who is engaged in phishing therefrom obtains interests.The unlawful activities meeting of phishing brings unnecessary loss for the user, e-commerce website and the businessman that carry out licit traffic, has influenced the safety of payment between user, e-commerce website and the bank.
The flow process that legal users is done shopping by e-commerce platform and use Web bank payment interface is paid comprises as shown in Figure 1:
Step 1A, user buy commodity to e-commerce platform, select Web bank's payment interface to pay, and e-commerce platform generates a link to the website of bank payment for this user;
The operation of payment is provided on the webpage that is linked to Web bank that step 2A, user use e-commerce platform to provide;
Step 3A, this Web bank give e-commerce platform with the result notification of user's payment;
Whether step 4A, e-commerce platform send the commodity of its order for this user in result's decision of bank paying success according to the user.
Phishing (Phishing), claim halieutics or fishing type to attack again, the assailant of phishing (also claiming the fisherman) produces some website of mixing the spurious with the genuine temptation victims (by the fisherman) by certain technological means puppet, operated according to designation method again by the fisherman, make and do not known under the situation of truth that by the fisherman " voluntarily " surrenders important sensitive information (for example information such as the account name of the Internet bank and password).The fisherman does not often need active attack, and the sensitive information of being imported by the fisherman that only needs to extract " rising to the bait " gets final product.With a flow process of utilizing Web bank's payment interface to carry out phishing is that example describes, and as shown in Figure 2, comprising:
Step 1B, user A buy commodity to e-commerce platform, select the payment of Web bank, and e-commerce platform generates a link to the website of bank payment for the user;
Step 2B, user A use the fraudulent mean of phishing, and this link is sent to user B (can be sent to a plurality of users during practical operation);
Step 3B, user B are not knowing under the situation of truth, use and use oneself account and password to finish delivery operation on this webpage that is linked to Web bank;
Step 4B, this Web bank give e-commerce platform with the result notification of user B payment;
Step 5B, e-commerce platform according to user B the payment result decision of bank on the net whether send the commodity of its order to user A.
In the flow process of as shown in Figure 2 phishing, user A is exactly so-called " fisherman ", user B is so-called " by the fisherman ", phishing promptly adopts illegal means to make " by the fisherman " (user B) under unwitting situation, use the Internet bank's account of oneself to buy commodity at e-commerce platform as fisherman (user A), make the legitimate rights and interests of " by the fisherman " be subjected to infringement, for the fail safe of e-commerce transaction has caused harmful effect.
Summary of the invention
The embodiment of the present application provides a kind of network payment method for authenticating, server and system, utilizes Web bank's payment interface to carry out the problem of phishing behavioral implications security of e-commerce transactions in order to solve in the prior art.
A kind of network payment method for authenticating that the embodiment of the present application provides comprises:
The e-business network site server receives Web bank's sign of user's selection and the user's corresponding with this Web bank's sign that this user imports identity is differentiated identification information;
The e-business network site server is created the payment request and is back to described user, carries described identity in the described payment request and differentiates identification information;
The e-business network site server receives the authenticating result that Web bank's server returns, and the identification authentication information that the identification authentication identification information in the described payment request that to be Web bank's server send according to the user of described authenticating result is imported in delivery operation the user is carried out authentication and obtained.
A kind of e-business network site server that the embodiment of the present application provides comprises:
Receiving element is used to receive the identity discriminating identification information corresponding with this Web bank's sign that Web bank identifies and this user imports that the user selects; And receiving the authenticating result that Web bank's server returns, the identification authentication information that the identification authentication identification information after encrypting in the described payment request that to be Web bank's server send according to the user of described authenticating result is imported in delivery operation the user is carried out authentication and is obtained;
Creating unit is used for creating the payment request, carries described identity in the described payment request and differentiates identification information;
Transmitting element is used for described payment request is back to described user.
A kind of Web bank server that the embodiment of the present application provides comprises:
Receiving element is used to receive the payment request that carries identity discriminating identification information that the user sends, and described identity differentiates that identification information is that the Web bank with this user selects that the user imports identifies corresponding identification authentication identification information;
The unit is initiated in delivery operation, is used for initiating described user's delivery operation according to described payment request, receives the identity discriminating identification information that the user imports in delivery operation;
Authenticating unit is used for using the identity of described payment request to differentiate that identifying the identity that the user is imported in delivery operation differentiates that identification information carries out authentication operations, returns authenticating result to described e-business network site server.
A kind of network payment right discriminating system that the embodiment of the present application provides comprises:
The e-business network site server is used to receive the identity discriminating identification information corresponding with this Web bank's sign that Web bank identifies and this user imports that the user selects; Create the payment request and be back to described user, carry described identity in the described payment request and differentiate identification information;
Web bank's server, be used to receive the described payment request that the user sends, initiate user's delivery operation, and use the identity in the described payment request to differentiate that identification information carries out authentication operations to the identity discriminating identification information that the user imports in delivery operation, return authenticating result to described e-business network site server.
The beneficial effect of the embodiment of the present application comprises:
A kind of network payment method for authenticating that the embodiment of the present application provides, server and system, the e-business network site server receives Web bank's sign of user's selection and the identity corresponding with this Web bank's sign of user's input differentiated identification information, the e-business network site server is created the payment request and is back to this user, carry described identity in this payment request and differentiate identification information, Web bank's server receives after this payment request of user's transmission, initiate user's delivery operation, use the identity in the described payment request to differentiate that identification information carries out authentication operations to the identity discriminating identification information that the user imports in delivery operation, and return the corresponding authentication result to the e-business network site server.Because the fisherman who utilizes Web bank's payment interface to carry out phishing tends to after creating transaction on the website, just utilize to oneself finishing the payment of commodity payment for goods by the fisherman, and the fisherman is when creating transaction, be impossible know in advance by fisherman's identity to differentiate identification information, therefore, the network payment method for authenticating and the system that adopt the embodiment of the present application to provide, if the fisherman of phishing carry out the situation of phishing, when the identity of being imported self by the fisherman of payment payment for goods is differentiated identification information, (just truly needing to buy the user of commodity) is not same user if Web bank's server is judged user who pays payment for goods this moment and the user who creates transaction, then can notify the result of e-business network site server failed authentication; Otherwise, be same user if create the user of transaction with the user who operates that pays, then can notify the result of e-business network site server authentication success.The seller in the electronic transaction, the result of the authentication that can receive according to the e-business network site server, whether the user identity of determining current transaction is legal reliable, only the user to licit traffic sends the commodity that it is chosen, above-mentioned network payment method for authenticating, server and system that the embodiment of the present application provides, stop to utilize Web bank's payment interface to carry out the illegal act of phishing, ensured the fail safe of the e-business network site server transaction that utilizes network payment.In addition, the network payment method for authenticating that the embodiment of the present application provides, the identity of carrying in the described payment request differentiates that identification information is directly input of user, need not e-business network stands in when creating transaction to create authentication information by server self, and stores described authentication information; When banking system was carried out authentication operations on the net, the identity that directly receives user's input was differentiated identification information, need not to search corresponding authentication information or obtain this authentication information to e-commerce website in the authentication information memory cell.So on the whole from the present techniques scheme, saved the system resource that the e-business network site server is created and the storage authentication information is wasted on the one hand, save bank system of web on the other hand and searched the system resource that the authentication information of storage is wasted, and since reduced e-business network site server, bank system of web to the generation of authentication information, handling process such as store, search, can realize the authentication of network payment fast.
Description of drawings
Fig. 1 is the flow chart that legal users is paid by Web bank's payment interface in the prior art;
Fig. 2 utilizes Web bank's payment interface to carry out the flow chart of phishing in the prior art;
The user that Fig. 3 provides for the embodiment of the present application creates the flow chart of transaction at e-commerce website;
The flow chart of the network payment method for authenticating that Fig. 4 provides for the embodiment of the present application;
The structural representation of the e-business network site server that Fig. 5 provides for the embodiment of the present application;
The structural representation of Web bank's server that Fig. 6 provides for the embodiment of the present application;
The structural representation of the network payment right discriminating system that Fig. 7 provides for the embodiment of the present application.
Embodiment
The present inventor finds, from prior art, utilize Web bank's payment interface to carry out the flow chart of phishing behavior (as shown in Figure 2) as can be seen, the fisherman why phishing can take place utilizes by the fisherman and buys the behavior of commodity for oneself, whether really its reason is that Web bank's payment interface can't judge that the people of current payment is buying the user of commodity, and the result that Web bank will pay is when informing e-commerce platform, can't inform also whether the current user who finishes payment of e-commerce platform is the user who is really buying commodity, therefore, utilize Web bank's payment interface to carry out the problem of phishing behavioral implications e-commerce platform transaction security in order to solve in the existing e-commerce field, key point is the actual user who finishes delivery operation is carried out authentication, only finish under the user of the delivery operation situation consistent, just allow continuous business with the user who buys commodity at e-commerce platform actual.
In order to be illustrated more clearly in the embodiment of network payment method for authenticating, server and system that the embodiment of the present application provides, in the following description, to be responsible for finishing the e-commerce transaction e-commerce platform and be called the e-business network site server, the Web bank that finishes the payment authentication will be called Web bank's server.
Before carrying out network payment, the user generally can select the commodity of required purchase at the e-commerce website that the e-business network site server provides, and creates a new transaction, and this flow process comprises the steps: as shown in Figure 3
S301, user login the e-commerce website that the e-business network site server provides.
S302, this e-commerce website provide selectable merchandise news to the user.
S303, user select the commodity of required purchase on e-commerce website, and place an order.
S304, e-business network site server are created a new transaction record in this locality, return the relevant information of transaction record simultaneously to this user, and the prompting user confirms and carry out next step delivery operation.
After above-mentioned steps S301~S304 finishes, if the user confirms that Transaction Information is errorless, and select to pay operation, the network payment method for authenticating that then uses the embodiment of the present application to provide carries out authentication to the user who operates that pays.The network payment method for authenticating that the embodiment of the present application provides as shown in Figure 4, specifically comprises the steps:
S401, e-business network site server send the information of network payment to the user, and the prompting user imports the identification information of Web bank of its selection and the identity discriminating identification information corresponding with this Web bank's sign.
Among this step S401, the e-business network site server can show that the sign of a plurality of Web banks supplies the user to select to the user, and after the user has selected one of them Web bank's sign, the prompting of input this user's corresponding with this Web bank's sign identity discriminating identification information is sent in continuation to this user, identity differentiates that identification information is used for the identity of identifying user, for example points out the user to import number of the account in this Web bank, user ID etc.In the embodiment of the present application, identity differentiates that identification information comprises: user ID and/or payment account.
The embodiment of the present application is not limited to above-mentioned identity and differentiates identification information, the information that other can this user identity of unique identification all can, identity differentiates that identification information can be certain single identification information, the perhaps combination of a plurality of identification informations.
For example, the user selects the bank identifier " China Construction Bank " of its selection in the e-commerce website that the e-business network site server provides, under the further prompting of e-commerce website, the user has inputed its user name of registering in advance in the bank system of web of " China Construction Bank ".
S402, e-business network site server receive Web bank's identification information of user's selection and this user's corresponding with this Web bank's sign that the user imports identity is differentiated identification information.
The identity that S403, e-business network site server get access to step S402 differentiates that identification information encrypts, and creates the payment request and also returns to this user, and the identity carry encryption in the payment request after is differentiated identification information.
Preferably, in the embodiment of the present application, adopted identity has been differentiated that identification information carries out method of encrypting, improved safety of data transmission, certainly can described identity discriminating identification information not encrypted in the middle of concrete the enforcement yet, can realize that still the application improves the basic design of network payment safety.
In this step S403, the e-business network site server also needs equally with prior art except the payment request message that returns its establishment to the user, carries out the step of link of payment interface from the Web bank of its selection to this user that return.
S404, user visit this Web bank's server by the payment interface of this Web bank, identity after this Web bank's server transmission carries encryption is differentiated the payment request of identification information, thereby the operation of further finishing following authentication is following step S405~S409.
S405, Web bank's server receive the payment request that the user sends, and initiate this user's delivery operation, and the prompting user imports this user's identity discriminating identification information in this user's delivery operation flow process.
S406, user be according to the prompting of Web bank's server, and the input identity is differentiated identification information in the webpage of the delivery operation that provides of bank server on the net.
Identity after the encryption in the payment request that S407, Web bank's server send the user differentiates that identification information is decrypted, and the identity after the judgement deciphering differentiates whether the identity discriminating identification information of identification information and user's input is consistent, if it is consistent, execution in step S408 then, if inconsistent, execution in step S409 then;
Certainly, the embodiment of the present application is not if encrypt the identity discriminating identification information in the payment request, and then this step S407 does not need described identity is differentiated that identification information is decrypted.
S408, allow this user to finish delivery operation, and return the message of authentication success to the e-business network site server;
S409, refuse this user and finish delivery operation, and return the message of failed authentication to the e-business network site server.
Because the fisherman who utilizes Web bank's payment interface to carry out phishing in the prior art tends to after creating transaction on the e-commerce website, utilization by the fisherman for oneself finishing the payment of commodity payment for goods, and can be which user can not determine (because fisherman can send deceptive information to a plurality of users in advance) in advance before this by the fisherman, from the flow process of above-mentioned network payment authentication as can be seen, the fisherman can not know in advance by fisherman's identity and differentiate identification information, the identity of its input is differentiated identification information, differentiate that with the identity of being imported by the fisherman identification information is inconsistent most probably, therefore can avoid the fisherman to utilize and finish delivery operation, the safety problem of having avoided phishing that the transaction of network payment and e-commerce platform is caused for oneself by the fisherman.In addition, the network payment method for authenticating that the embodiment of the present application provides, the identity of carrying in the described payment request differentiates that identification information is directly input of user, need not e-business network stands in when creating transaction to create authentication information by server self, and stores described authentication information; When banking system was carried out authentication operations on the net, the identity that directly receives user's input was differentiated identification information, need not to search corresponding authentication information or obtain this authentication information to e-commerce website in the authentication information memory cell.So on the whole from the present techniques scheme, saved the system resource that the e-business network site server is created and the storage authentication information is wasted on the one hand, save bank system of web on the other hand and searched the system resource that the authentication information of storage is wasted, and since reduced e-business network site server, bank system of web to the generation of authentication information, handling process such as store, search, can realize the authentication of network payment fast.
Based on same inventive concept, the embodiment of the present application also provides a kind of e-business network site server, Web bank's server and network payment right discriminating system, because this e-business network site server, Web bank's server are similar to aforementioned a kind of network payment method for authenticating with the principle that the network payment right discriminating system is dealt with problems, therefore the enforcement of this system can repeat part and not give unnecessary details referring to the enforcement of method.
The e-business network site server that the embodiment of the present application provides as shown in Figure 5, comprising:
Receiving element 501, receiving element is used to receive the identity discriminating identification information corresponding with this Web bank's sign that Web bank identifies and this user imports that the user selects; And receiving the authenticating result that Web bank's server returns, the identification authentication information that the identification authentication identification information after encrypting in the described payment request that to be Web bank's server send according to the user of described authenticating result is imported in delivery operation the user is carried out authentication and is obtained;
The embodiment of the present application adopts 502 pairs of identity discriminatings of ciphering unit identification information to encrypt can improve safety of data transmission, and the embodiment of the present application also can not adopt ciphering unit 502 certainly, equally also can realize the application's basic design.
Creating unit 503 is used for creating the payment request, carries the identity discriminating identification information after the encryption in this payment request;
Transmitting element 504 is used for this payment request is back to the user.
Further, the transmitting element 504 in the e-business network site server that the embodiment of the present application provides also is used for Web bank's sign of selecting according to the user further, returns the link of payment interface of the Web bank of its selection to described user.
Web bank's server that the embodiment of the present application provides as shown in Figure 6, comprising:
Receiving element 601, be used to receive that the user sends carries the payment request that identity after the encryption is differentiated identification information, the identity after the encryption differentiates that identification information is the e-business network site server the corresponding identification authentication identification information of Web bank's sign of selecting with this user of user's input is encrypted the back generation;
Unit 602 is initiated in delivery operation, is used for initiating this user's delivery operation according to the payment request, receives the identity discriminating identification information that the user imports in delivery operation;
Decrypting device 603, the identity that is used to decipher the encryption that the payment request carries is differentiated identification information;
The embodiment of the present application then also can not be provided with decrypting device 603 herein if 502 pairs of identity discriminatings of ciphering unit identification information is not set to be encrypted.
Authenticating unit 604 is used for using identity after the deciphering to differentiate that the identity that sign is imported in delivery operation the user differentiates that identification information carries out authentication operations, returns authenticating result to described e-business network site server.
Above-mentioned authenticating unit 604 specifically is used for the identity after the deciphering is differentiated that identifying the identity discriminating identification information of importing in delivery operation with the user compares, if consistent, then allow it to finish delivery operation, and returns the results messages of authentication success; If inconsistent, then refuse its operation of paying, and return the results messages of failed authentication.
The network payment right discriminating system that the embodiment of the present application provides as shown in Figure 7, comprising: e-business network site server 701 and Web bank's server 702; Wherein:
E-business network site server 701 is used to receive the identity discriminating identification information corresponding with this Web bank's sign that Web bank identifies and this user imports that the user selects; And crypto identity is differentiated identification information; Create the payment request and also be back to this user, the identity of carrying in the payment request after the encryption is differentiated identification information;
Web bank's server 702, be used to receive the described payment request that the user sends, initiate user's delivery operation, and decipher the identity of encrypting in the described payment request and differentiate identification information, and use the identity after the deciphering to differentiate that identification information carries out authentication operations to the identity discriminating identification information that the user imports in delivery operation, return authenticating result to described e-business network site server.
Above-mentioned identity is differentiated identification information, includes but not limited to: user ID and/or payment accounts.
Further, the e-business network site server 701 in the network payment right discriminating system that the embodiment of the present application provides also is used for sending to the user information of network payment; Information is used to Web bank's sign of pointing out the user to import its selection and identifies corresponding identity with this Web bank differentiate identification information.
Further, e-business network site server 701 also is used for returning to the user link of the payment interface of the Web bank that this user selects;
Web bank's server 702 also is used to receive the payment request that chain that the user uses its payment interface receives and sends.
Above-mentioned e-business network site server and Web bank's server that the embodiment of the present application provides, in the specific implementation, can use the software function module that to realize corresponding function to realize, also the mode that can adopt software function module to combine with hardware realizes, the embodiment of the present application is not done qualification to this.
A kind of network payment method for authenticating that the embodiment of the present application provides, server and system, the e-business network site server receives Web bank's sign of user's selection and the identity corresponding with this Web bank's sign of user's input differentiated identification information, crypto identity is differentiated identification information, the e-business network site server is created the payment request and is back to this user, the identity that carries in this payment request after the encryption is differentiated identification information, Web bank's server receives after this payment request of user's transmission, initiate user's delivery operation, the identity of encrypting in the request of deciphering payment is simultaneously differentiated identification information, use the identity after deciphering to differentiate that identification information carries out authentication operations to the identity discriminating identification information that the user imports in delivery operation, and return the corresponding authentication result to the e-business network site server.
Because the fisherman who utilizes Web bank's payment interface to carry out phishing tends to after creating transaction on the website, just utilize to oneself finishing the payment of commodity payment for goods by the fisherman, and the fisherman is when creating transaction, be impossible know in advance by fisherman's identity to differentiate identification information, therefore, the network payment method for authenticating and the system that adopt the embodiment of the present application to provide, if the fisherman of phishing carry out the situation of phishing, when the identity of being imported self by the fisherman of payment payment for goods is differentiated identification information, (just truly needing to buy the user of commodity) is not same user if Web bank's server is judged user who pays payment for goods this moment and the user who creates transaction, then can notify the result of e-business network site server failed authentication; Otherwise, be same user if create the user of transaction with the user who operates that pays, then can notify the result of e-business network site server authentication success.The seller in the electronic transaction, the result of the authentication that can receive according to the e-business network site server, whether the user identity of determining current transaction is legal reliable, only the user to licit traffic sends the commodity that it is chosen, above-mentioned network payment method for authenticating, server and system that the embodiment of the present application provides, stop to utilize Web bank's payment interface to carry out the illegal act of phishing, ensured the fail safe of the e-business network site server transaction that utilizes network payment.In addition, network payment method for authenticating, system that the embodiment of the present application provides, the identity of carrying in the described payment request differentiates that identification information is directly input of user, need not e-business network stands in when creating transaction to create authentication information by server self, and stores described authentication information; When banking system was carried out authentication operations on the net, the identity that directly receives user's input was differentiated identification information, need not to search corresponding authentication information or obtain this authentication information to e-commerce website in the authentication information memory cell.So on the whole from the present techniques scheme, saved the system resource that the e-business network site server is created and the storage authentication information is wasted on the one hand, save bank system of web on the other hand and searched the system resource that the authentication information of storage is wasted, and since reduced e-business network site server, bank system of web to the generation of authentication information, handling process such as store, search, can realize the authentication of network payment fast.
Obviously, those skilled in the art can carry out various changes and modification and the spirit and scope that do not break away from the application to the application.Like this, if these of the application are revised and modification belongs within the scope of the application's claim and equivalent technologies thereof, then the application also is intended to comprise these changes and modification interior.
Claims (15)
1. a network payment method for authenticating is characterized in that, comprising:
The e-business network site server receives Web bank's sign of user's selection and the identity corresponding with this Web bank's sign of this user input differentiated identification information;
The e-business network site server is created the payment request and is back to described user, carries described identity in the described payment request and differentiates identification information;
The e-business network site server receives the authenticating result that Web bank's server returns, and the identification authentication information that the identification authentication identification information in the described payment request that to be Web bank's server send according to the user of described authenticating result is imported in delivery operation the user is carried out authentication and obtained.
2. the method for claim 1 is characterized in that, the e-business network site server receives Web bank's sign of user's selection and the identity corresponding with this Web bank's sign differentiated before the identification information, also comprises:
The e-business network site server sends the information of network payment to described user, Web bank's sign that described information is used to point out the user to import its selection and the identity discriminating identification information corresponding with this Web bank's sign.
3. the method for claim 1 is characterized in that, also comprises: the e-business network site server is according to Web bank's sign that the user selects, and returns the link of payment interface of the Web bank of its selection to described user;
Described Web bank server receives the payment request that the user uses the chain of described payment interface to receive and send.
4. the method for claim 1 is characterized in that, the identification authentication identification information that carries in the described payment request of Web bank's server according to user's transmission carries out authentication to the identification authentication information that the user imports in delivery operation, comprising:
Web bank's server receives the described payment request that the user sends, and initiates user's delivery operation;
Identity in the described payment request is differentiated that identity that identification information and user import differentiates that identification information compares in delivery operation, if consistent, then allow it to finish delivery operation, and export the results messages of authentication success; If inconsistent, then refuse its operation of paying, and the results messages of output failed authentication.
5. the method for claim 1 is characterized in that, the e-business network site server receives the identity of user's input and differentiates after the identification information, also comprises: encrypt described identity and differentiate identification information;
The e-business network site server is created the payment request, comprising: described e-business network site server establishment carries the payment request of the identity discriminating identification information after the encryption;
The identification authentication information that Web bank's server is imported in delivery operation the user is carried out authentication and comprised: Web bank's server is deciphered the identity authentication information in the described payment request, according to the identity authentication information after the deciphering identification authentication information that the user imports in delivery operation is carried out authentication.
6. as each described method of claim 1-5, it is characterized in that described identity differentiates that sign comprises: user ID and/or payment accounts.
7. an e-business network site server is characterized in that, comprising:
Receiving element is used to receive the identity discriminating identification information corresponding with this Web bank's sign that Web bank identifies and this user imports that the user selects; And receiving the authenticating result that Web bank's server returns, the identification authentication information that the identification authentication identification information in the described payment request that to be Web bank's server send according to the user of described authenticating result is imported in delivery operation the user is carried out authentication and is obtained;
Creating unit is used for creating the payment request, carries described identity in the described payment request and differentiates identification information;
Transmitting element is used for described payment request is back to described user.
8. e-business network site server as claimed in claim 7 is characterized in that, described transmitting element further also is used for Web bank's sign of selecting according to the user, returns the link of payment interface of the Web bank of its selection to described user.
9. e-business network site server as claimed in claim 7 is characterized in that, also comprises: ciphering unit is used to encrypt the identity discriminating identification information that receiving element receives;
Described creating unit also is used to create the payment request that carries the identification information after the encryption.
10. Web bank's server is characterized in that, comprising:
Receiving element is used to receive the payment request that carries identity discriminating identification information that the user sends, and described identity differentiates that identification information is that the Web bank with this user selects that the user imports identifies corresponding identification authentication identification information;
The unit is initiated in delivery operation, is used for initiating described user's delivery operation according to described payment request, receives the identity discriminating identification information that the user imports in delivery operation;
Authenticating unit is used for using the identity of described payment request to differentiate that identifying the identity that the user is imported in delivery operation differentiates that identification information carries out authentication operations, returns authenticating result to described e-business network site server.
11. Web bank as claimed in claim 10 server, it is characterized in that, described authenticating unit, specifically be used for described identity and differentiate that identifying the identity discriminating identification information of importing in delivery operation with the user compares, if it is consistent, then allow it to finish delivery operation, and return the results messages of authentication success; If inconsistent, then refuse its operation of paying, and return the results messages of failed authentication.
12. Web bank as claimed in claim 11 server is characterized in that, also comprises: decrypting device;
Described receiving element also is used to receive the payment request that the back identity is differentiated identification information of encrypting that carries;
Described decrypting device is used to decipher the identity discriminating identification information that described payment request is carried;
Described authenticating unit also is used for using identity after the deciphering to differentiate that the identity that identification information is imported in delivery operation the user differentiates that identification information carries out authentication operations.
13. a network payment right discriminating system is characterized in that, comprising:
The e-business network site server is used to receive the identity discriminating identification information corresponding with this Web bank's sign that Web bank identifies and this user imports that the user selects; Create the payment request and be back to described user, carry described identity in the described payment request and differentiate identification information;
Web bank's server, be used to receive the described payment request that the user sends, initiate user's delivery operation, and use the identity in the described payment request to differentiate that identification information carries out authentication operations to the identity discriminating identification information that the user imports in delivery operation, return authenticating result to described e-business network site server.
14. system as claimed in claim 13, it is characterized in that, described e-business network site server also is used for sending to described user the information of network payment, and the identity corresponding with this Web bank's sign that Web bank identifies and this user imports that described information is used to point out the user to import its selection differentiated identification information.
15. system as claimed in claim 13 is characterized in that, described e-business network site server also is used for returning to described user the link of the payment interface of the Web bank that this user selects;
Described Web bank server also is used to receive the payment request that chain that the user uses described payment interface receives and sends.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010150012.4A CN102223354B (en) | 2010-04-14 | 2010-04-14 | Network payment authentication method, server and system |
| HK12100156.6A HK1159897A1 (en) | 2010-04-14 | 2012-01-06 | Method, server and system for authenticating network payment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201010150012.4A CN102223354B (en) | 2010-04-14 | 2010-04-14 | Network payment authentication method, server and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102223354A true CN102223354A (en) | 2011-10-19 |
| CN102223354B CN102223354B (en) | 2015-05-13 |
Family
ID=44779785
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201010150012.4A Active CN102223354B (en) | 2010-04-14 | 2010-04-14 | Network payment authentication method, server and system |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN102223354B (en) |
| HK (1) | HK1159897A1 (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103093341A (en) * | 2012-12-27 | 2013-05-08 | 德赛电子(惠州)有限公司 | Safe payment pattern based on radio frequency identification device (RFID) intelligent payment system |
| CN103632258A (en) * | 2012-08-27 | 2014-03-12 | 深圳市一兆科技发展有限公司 | Consumption payment method and system, and equipment |
| CN103778528A (en) * | 2012-10-26 | 2014-05-07 | 华为技术有限公司 | Payment processing method, payment processing system and payment processing device |
| CN103996114A (en) * | 2014-05-16 | 2014-08-20 | 网银在线(北京)科技有限公司 | Online payment method and device |
| CN105184559A (en) * | 2015-08-18 | 2015-12-23 | 中国联合网络通信集团有限公司 | System and method for payment |
| CN106157027A (en) * | 2016-07-27 | 2016-11-23 | 北京小米移动软件有限公司 | Method of payment, device and system |
| CN110298678A (en) * | 2018-03-23 | 2019-10-01 | 阿里巴巴集团控股有限公司 | User's right information processing method, apparatus and system |
| CN111260343A (en) * | 2014-12-24 | 2020-06-09 | 阿里巴巴集团控股有限公司 | Information authentication method, device and system based on confirmation code |
| CN112118206A (en) * | 2019-06-19 | 2020-12-22 | 贵州白山云科技股份有限公司 | Decryption method, device, system, medium and equipment |
| CN114363307A (en) * | 2022-03-18 | 2022-04-15 | 浙江网商银行股份有限公司 | Information processing method and system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1893355A (en) * | 2005-07-05 | 2007-01-10 | 淘宝控股有限公司 | Method and system for identifying identity of network user end |
| US20090094150A1 (en) * | 2007-10-08 | 2009-04-09 | Lenovo (Beijing) Limited | Method and client system for implementing online secure payment |
| CN101527070A (en) * | 2009-04-15 | 2009-09-09 | 唐宇良 | Safe transaction control method and system thereof |
-
2010
- 2010-04-14 CN CN201010150012.4A patent/CN102223354B/en active Active
-
2012
- 2012-01-06 HK HK12100156.6A patent/HK1159897A1/en unknown
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1893355A (en) * | 2005-07-05 | 2007-01-10 | 淘宝控股有限公司 | Method and system for identifying identity of network user end |
| US20090094150A1 (en) * | 2007-10-08 | 2009-04-09 | Lenovo (Beijing) Limited | Method and client system for implementing online secure payment |
| CN101527070A (en) * | 2009-04-15 | 2009-09-09 | 唐宇良 | Safe transaction control method and system thereof |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103632258A (en) * | 2012-08-27 | 2014-03-12 | 深圳市一兆科技发展有限公司 | Consumption payment method and system, and equipment |
| CN103778528A (en) * | 2012-10-26 | 2014-05-07 | 华为技术有限公司 | Payment processing method, payment processing system and payment processing device |
| CN103778528B (en) * | 2012-10-26 | 2017-11-21 | 华为技术有限公司 | The processing method and system and device of payment |
| CN103093341A (en) * | 2012-12-27 | 2013-05-08 | 德赛电子(惠州)有限公司 | Safe payment pattern based on radio frequency identification device (RFID) intelligent payment system |
| CN103093341B (en) * | 2012-12-27 | 2016-02-24 | 惠州市德赛工业研究院有限公司 | A kind of safe payment method based on RFID intelligence payment system |
| CN103996114B (en) * | 2014-05-16 | 2017-10-20 | 网银在线(北京)科技有限公司 | A kind of method and apparatus of on-line payment |
| CN103996114A (en) * | 2014-05-16 | 2014-08-20 | 网银在线(北京)科技有限公司 | Online payment method and device |
| CN111260343A (en) * | 2014-12-24 | 2020-06-09 | 阿里巴巴集团控股有限公司 | Information authentication method, device and system based on confirmation code |
| CN111260343B (en) * | 2014-12-24 | 2023-07-07 | 创新先进技术有限公司 | Information authentication method, device and system based on confirmation code |
| CN105184559B (en) * | 2015-08-18 | 2018-12-28 | 中国联合网络通信集团有限公司 | A kind of payment system and method |
| CN105184559A (en) * | 2015-08-18 | 2015-12-23 | 中国联合网络通信集团有限公司 | System and method for payment |
| CN106157027A (en) * | 2016-07-27 | 2016-11-23 | 北京小米移动软件有限公司 | Method of payment, device and system |
| CN106157027B (en) * | 2016-07-27 | 2020-01-10 | 北京小米移动软件有限公司 | Payment method, device and system |
| CN110298678A (en) * | 2018-03-23 | 2019-10-01 | 阿里巴巴集团控股有限公司 | User's right information processing method, apparatus and system |
| CN110298678B (en) * | 2018-03-23 | 2023-12-05 | 阿里巴巴集团控股有限公司 | User rights and interests information processing method, device and system |
| CN112118206A (en) * | 2019-06-19 | 2020-12-22 | 贵州白山云科技股份有限公司 | Decryption method, device, system, medium and equipment |
| CN112118206B (en) * | 2019-06-19 | 2022-04-12 | 贵州白山云科技股份有限公司 | Decryption method, device, system, medium and equipment |
| CN114363307A (en) * | 2022-03-18 | 2022-04-15 | 浙江网商银行股份有限公司 | Information processing method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| HK1159897A1 (en) | 2012-08-03 |
| CN102223354B (en) | 2015-05-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102223354B (en) | Network payment authentication method, server and system | |
| CN105453483B (en) | For method and apparatus derived from the key based on image | |
| Ahmed et al. | Security in next generation mobile payment systems: A comprehensive survey | |
| CA2937850C (en) | Verification of portable consumer devices | |
| CN101373528B (en) | Electronic payment system, device and method based on position authentication | |
| CN107067251A (en) | It is traded using the electronic equipment with geographically limited non-local authority | |
| US10915897B2 (en) | Token management for enhanced omni-channel payments experience and analytics | |
| CN107278307A (en) | Software layer is mutually authenticated | |
| JP2013512503A (en) | Secure mobile payment processing | |
| JP2009526321A (en) | System for executing a transaction in a point-of-sale information management terminal using a changing identifier | |
| WO2013119914A1 (en) | Tokenization in mobile and payment environments | |
| CN103903140B (en) | A kind of O2O safe payment methods, system and a kind of secure payment backstage | |
| WO2015065249A1 (en) | Method and system for protecting information against unauthorized use (variants) | |
| CN101589569A (en) | Secure password distribution to a client device of a network | |
| CN106302328A (en) | Sensitive user data processing system and method | |
| Hudaib | E-payment security analysis in depth | |
| CA2773543A1 (en) | Secure communication of payment information to merchants using a verification token | |
| Leu et al. | A Secure M-Commerce System based on credit card transaction | |
| CN101615318A (en) | E-payment system and device thereof | |
| Sanyal et al. | A multifactor secure authentication system for wireless payment | |
| CN104184580A (en) | Network operating method and network operating system | |
| US20120290483A1 (en) | Methods, systems and nodes for authorizing a securized exchange between a user and a provider site | |
| CN104283840B (en) | Improve method, client and the system of network-access security | |
| TW201619880A (en) | Network authentication method using card device | |
| WO2019056343A1 (en) | System and method for avoiding internet and mobile payment fraud |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1159897 Country of ref document: HK |
|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: GR Ref document number: 1159897 Country of ref document: HK |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20191210 Address after: P.O. Box 31119, grand exhibition hall, hibiscus street, 802 West Bay Road, Grand Cayman, Cayman Islands Patentee after: Innovative advanced technology Co., Ltd Address before: Cayman Islands Grand Cayman capital building, a four storey No. 847 mailbox Patentee before: Alibaba Group Holding Co., Ltd. |