CN102737309B - A kind of card method of commerce and system - Google Patents
A kind of card method of commerce and system Download PDFInfo
- Publication number
- CN102737309B CN102737309B CN201110083616.6A CN201110083616A CN102737309B CN 102737309 B CN102737309 B CN 102737309B CN 201110083616 A CN201110083616 A CN 201110083616A CN 102737309 B CN102737309 B CN 102737309B
- Authority
- CN
- China
- Prior art keywords
- card
- module
- terminal
- transaction
- swiping
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Abstract
The present invention relates to a kind of card method of commerce and system.Methods described includes:Make to carry out transaction of swiping the card between card module and card reader module;The card module or the card reader module Transaction Information that will swipe the card are sent to terminal module;And Transaction Information of being swiped the card described in confirming, to complete transaction of swiping the card.The system includes card reader module, card module and terminal module.For existing mode of doing business of swiping the card, the invention enables process of exchange more " transparent " of swiping the card, the security for process of exchange of swiping the card has been ensured.
Description
Technical field
The present invention relates to the safeguard protection for the process of swiping the card, it is specifically one kind on protection card punching safety and improves transaction pair
The card method of commerce and system of user's transparency.
Background technology
With the development of card business, it has not been the exclusive of the bank field to block the mode used, as mass transit card, purchase card, water
Electric card, gas filling card, social security card etc., support of the industry-by-industry to all kinds of cards also come more.On the other hand, existing card process of exchange
It is a black box for user, how much is the how many residues of consumption every time, and user can only be sentenced by card reader (such as POS)
Disconnected, this card reader that may have personation forges the amount of money, extracts user cipher equivalent risk.On the other hand, fake producer can also
This amount of money being filled with is shown with a false top-up machines and actually does not have any operation to card to cheat user.
The existing method for improving transaction security is concentrated mainly on network bank business field (such as Publication No.
CN101393628A, CN101408957A, CN101594611A patent of invention etc.), the raising peace for transaction of being swiped the card towards scene
The solution of the payment system of full property is largely required for doing existing system larger change (such as Publication No.
CN101739763A patent of invention etc.), it is difficult to implement.
The content of the invention
The technical problems to be solved by the invention are to provide a kind of card method of commerce and system, are swiped the card transaction with the scene of improving
Security and the transparency to user, it is to avoid the forgery and illegal imitation of brand-name products amount of money, extract user cipher equivalent risk.
The present invention is solves the card method of commerce that above-mentioned technical problem is provided, and step includes:
Make to carry out transaction of swiping the card between card module and card reader module;
The card module or the card reader module Transaction Information that will swipe the card are sent to terminal module;And
Confirm the Transaction Information of swiping the card, swiped the card transaction with completion.
The beneficial effect of card method of commerce of the present invention is:The Transaction Information that will swipe the card is sent to terminal module, and swipe the card user
Transaction Information of swiping the card is known by terminal module, the security and the transparency of live transaction of swiping the card can be improved, it is to avoid personation is pseudo-
Make the amount of money, extract user cipher equivalent risk.
Further, before the transaction of swiping the card, in addition to:
The card module and terminal module are subjected to pairing and binding.
Beneficial effect using above-mentioned further scheme is so that terminal module can only receive the card module of institute's pairing and binding
Transaction Information of swiping the card, the Transaction Information that prevents from swiping the card receives and revealed by the terminal module of any other unbundling.
Further, pairing and binding includes:Be one-to-one between card module and terminal module or many-one binding, i.e., one card
Module can only bind a terminal module, and a terminal module is mutually bound with least one card module.
Beneficial effect using above-mentioned further scheme is, using one-to-one or many-one binding mode so that a card
The Transaction Information of swiping the card of module is only capable of issuing a terminal module, enhances the confidentiality to Transaction Information of swiping the card;One simultaneously
Terminal can bind multiple cards, be easy to application.
Further, the process of Transaction Information of being swiped the card described in confirming includes:
User inputs password by the card reader module, and the card reader module completes friendship of swiping the card according to the password
Easily;
Or user inputs password by the terminal module, the terminal module sends password to card reader module,
The card reader module completes transaction of swiping the card according to the password;
Or user inputs password by the terminal module, the terminal module sends password to card module, described
Card module sends password to card reader module, and the card reader module completes transaction of swiping the card according to the password;
Or card module embedded digital certificate, user is by terminal module input password, and the terminal module will be close
Code is sent to card module, and after card module judges that the password is correct, card module is digitally signed to the Transaction Information, and should
The digital signature of card module is sent to card reader module, and the card reader module is carried out according to the card module to the Transaction Information
Digital signature complete to swipe the card transaction;
Or terminal module embedded digital certificate, user is by terminal module input password, and the terminal module judges should
After password is correct, the terminal module is digitally signed to the Transaction Information, and signature value is sent to card module or reading
Card device module, if the signature value is sent to card reader module, card reader module is swiped the card transaction according to the signature value completion, if label
Name value is sent to card module, then card module receives and is transferred to card reader module after the signature value again, or card module checking
A new signature is generated with the private key of their own after the correctness of signature, new signature is sent to card reader module, Card Reader
Device module completes transaction of swiping the card according to the signature value or new signature.
Beneficial effect using above-mentioned further scheme is that difference that can be as the case may be is realized using various ways
The confirmation and completion of Transaction Information of swiping the card are swiped the card transaction:If only needing to inform user card punching transaction of swiping the card by terminal module
During information, user then can only need to input password by card reader module;If transaction needs the feedback information of terminal module
It can complete, then user needs to input password by terminal module;If transaction needs the feedback of terminal module and card module simultaneously
Information could be completed, then user needs to input password by terminal module and forwarded by card module;If process of exchange
Need safer rank to protect, prevent card module or terminal module to be replicated, then in card module, terminal module respectively
Embedded digital certificate, the password inputted according to user is digitally signed to Transaction Information, with the friendship that ensures to swipe the card to greatest extent
Easy safety.
Card transaction system provided by the present invention, including card reader module, card module and terminal module;The card module is used
Transaction of swiping the card is carried out between card reader module, and for receiving the confirmation for the user that swipes the card and being transmitted to the card reader
Module;The card module or the card reader module Transaction Information that is additionally operable to swipe the card are wirelessly sent to the terminal module;It is described
Terminal module is used to the Transaction Information of swiping the card informing the user that swipes the card, and the confirmation for the user that swipes the card is returned into the card
Module or card reader module;The card reader module is used for the direct confirmation carried out according to the user that swipes the card by card reader module
Or the confirmation received from the terminal module or card module completes transaction of swiping the card.
The beneficial effect of card transaction system of the present invention is:The card transaction system of the present invention is informed by terminal module swipes the card
User card punching information, compared to it is existing swipe the card transaction in user can only by card reader obtain card using information for, merchandised
Cheng Gengjia " transparent ";Card module or card reader module are wirelessly sent to terminal module to Transaction Information of swiping the card,
Terminal module is held and carried with by user, improves the security of transaction.
Further, communicated between the terminal module and card module by RF-wise, the terminal module and reading
Communicated between card device module by RF-wise.
Using the beneficial effect of above-mentioned further scheme communicated using RF-wise, user can easily hold end
End.
Further, the card reader module includes the card reader radio frequency unit and card reader service unit being electrically connected to each other;
The card reader service unit is used between the card module carry out transaction of swiping the card, and sends the Transaction Information of swiping the card to institute
State card reader radio frequency unit, and the confirmation that itself is directly inputted by card reader service unit according to user or from described
Confirmation or transaction of swiping the card is completed according to the confirmation of the card module that card reader radio frequency unit is received;The Card Reader
Device radio frequency unit be used for from the card reader service unit receive described in swipe the card and Transaction Information and institute be sent to by RF-wise
Terminal module is stated, and receives the confirmation from the terminal module and is transmitted to the card reader service unit.
It is to realize card reader module to merchandise and radio frequency while having and swiping the card using the beneficial effect of above-mentioned further scheme
The function of communication.
Further, the Card Reader being connected with computer that the card reader service unit is possessed by POS, personal user
Card reader corresponding to device or mass transit card purchase card.
Beneficial effect using above-mentioned further scheme is so that what POS, personal user were possessed is connected with computer
The equipment such as the card reader corresponding to card reader or mass transit card purchase card connect can slightly be transformed on the basis of original, increase
One card reader radio frequency unit is that their radio communication function can be achieved so that they can utilize radio frequency in user card punching
Technology sends the card using information of user, it is not necessary to individually the reader devices such as above-mentioned POS are redesigned and manufactured, section
Scrap build cost is saved.
Further, the card module includes card service unit and the card radio frequency unit and cartoon letters list that are connected electrically
Member;The cartoon letters unit is used to be communicated with the card reader module is swiped the card transaction with progress, and by the transaction of swiping the card
Information is sent to the terminal module in radio frequencies by the card radio frequency unit;The card radio frequency unit is used for from described
Terminal module receives the confirmation, and is sent out by the card radio frequency unit or cartoon letters unit to the card reader module
Send confirmation;The card service unit is used for the digital certificate for preserving user, and digital label are carried out to the Transaction Information of swiping the card
Name, encryption and decryption is carried out to confirmation and authentication is carried out to the rf terminal and matched somebody with somebody with the rf terminal
It is right.
Beneficial effect using above-mentioned further scheme is so that card module has been provided simultaneously with common function of swiping card and radio frequency
Communication function, and cause the information and Transaction Information of the card module to be difficult to be stolen.
Further, the cartoon letters unit is magnetic stripe unit, 7816 communication units of contact chip card or noncontact
The radio frequency communications unit of formula chip card.
It is to realize the extension on existing all kinds of cards to its function using the beneficial effect of above-mentioned further scheme,
It can be achieved so that card transaction system of the present invention only need to slightly be transformed the existing all kinds of cards used and (only increase card radio frequency unit)
Its function in the present invention.
Further, the card module is is connected with radio-frequency enabled with what POS, personal user were possessed with computer
The card that the card reader corresponding to card reader or mass transit card purchase card connect is matched.
Beneficial effect using above-mentioned further scheme is so that existing all kinds of cards can be answered without carrying out any transformation
For the present invention, improvement cost is saved.
Further, the terminal module includes terminal radio frequency unit, terminal service unit and the terminal people sequentially electrically connected
Machine interactive unit;The terminal radio frequency unit is used to carry out radio communication with the card reader module and/or card module, receives institute
State and swipe the card Transaction Information and be transmitted to the terminal service unit;The terminal service unit is used for the Transaction Information of swiping the card
The terminal human-computer interaction unit is sent to, and the confirmation received from the terminal service unit is sent back into the snap gauge
Block or card reader module;The terminal human-computer interaction unit is used to confirm the Transaction Information of swiping the card and will confirm that letter
Breath returns to the terminal service unit.
It is to realize terminal module to receive the Transaction Information and to swiping the card of swiping the card using the beneficial effect of above-mentioned further scheme
User is informed and returns to the function of confirmation.
Further, the terminal service unit is additionally operable to be matched with the card module, and confirmation is encrypted,
Preserve the digital certificate of user and Transaction Information is digitally signed.
Beneficial effect using above-mentioned further scheme is so that Transaction Information, confirmation etc. are difficult to be stolen.
Further, the terminal module is mobile phone or PDA (Personal Digital with radio communication function
Assistant, personal digital assistant, palm PC).
Beneficial effect using above-mentioned further scheme is, using or increase the movement such as existing mobile phone or PDA and set
Standby upper radio-frequency module is the function that the terminal module in the present invention can be achieved.
Further, the confirmation includes the password that user inputs on the card reader module or terminal module,
The digital signature that card module and/or terminal module are carried out to Transaction Information.
The card transaction system of the present invention, only need to slightly be changed on the basis of existing card transaction system, such as existing
Radio-frequency module is added in POS, radio-frequency module is added on existing card (such as bank magnetic stripe card, chip card), utilizes user's hand
In the either mobile device such as PDA or mobile in mobile phone or PDA without radio-frequency enabled etc. of the mobile phone with radio-frequency enabled
Increase radio-frequency module in equipment, the mobile device such as mobile phone or PDA inherently turns into terminal and realizes corresponding function.In addition,
POS can not be modified, existing bank card is only added into radio-frequency module and radio communication is carried out with mobile phone.So take
The card transaction system built up is to existing scrap build very little, it is easy to implement.
Brief description of the drawings
Fig. 1 is card transaction system structured flowchart of the invention;
Fig. 2 is a kind of system and method on bank card business dealing using the present invention;
Fig. 3 sends out digital signature to radio frequency mobile phone to find radio frequency mobile phone from bank card in the bank card system shown in Fig. 2
The whole flow process seen off.
In accompanying drawing, the list of parts representated by each label is as follows:
1st, card reader module, 2, card module, 3, terminal module, 101, card reader service unit, 102, card reader radio frequency list
Member, 201, cartoon letters unit, 202, card service unit, 203, card radio frequency unit, 301, terminal radio frequency unit, 302, terminal service
Unit, 303, terminal human-computer interaction unit
Embodiment
The principle and feature of the present invention are described below in conjunction with accompanying drawing, the given examples are served only to explain the present invention, and
It is non-to be used to limit the scope of the present invention.
Referring to Fig. 1, card method of commerce provided by the present invention includes:
Transaction of swiping the card is carried out between card module 2 and card reader module 1;
Card module 2 or card reader module 1 Transaction Information that will swipe the card are sent to terminal module 3;And
Confirm the Transaction Information of swiping the card, swiped the card transaction with completion.
Before above-mentioned transaction of swiping the card, in addition to:
Pairing and binding is carried out between card reader module 1 and terminal module 3.This binds the binding of one-to-one or many-one, with
Ensure that the terminal module 3 that user uniquely specifies can only be sent to for the card Transaction Information of swiping the card of a certain card module 2, and it is other whole
End module 3 can not receive the Transaction Information of swiping the card of the card module 2, so as to avoid the leakage of the Transaction Information of swiping the card of card module 2.One
Individual terminal module 3 can bind at least one card reader module 1 simultaneously.
Transaction Information of being swiped the card described in confirming can be realized by following various ways:
User inputs password by card reader module 1, and card reader module 1 completes transaction of swiping the card according to the password;
Or user inputs password by terminal module 3, terminal module 3 sends the password to card reader module 1, Card Reader
Device module 1 completes transaction of swiping the card according to the password;
Or user inputs password by terminal module 3, terminal module 3 sends the password to card module 2, card module 2
The password is sent to card reader module 1, card reader module 1 completes transaction of swiping the card according to the password;
Or the embedded digital certificate of card module 2, user inputs password by terminal module 3, and terminal module 3 sends out the password
Card module 2 is delivered to, after card module 2 judges that the password is correct, 2 pairs of Transaction Informations of card module are digitally signed, and this is blocked
The digital signature of module 2 sends the number carried out to card reader module 1, card reader module 1 according to 2 pairs of Transaction Informations of the card module
Word signature completion is swiped the card transaction;
Or the embedded digital certificate of terminal module 3, user inputs password by the terminal module 3, and the terminal module 3 judges
After the password is correct, 3 pairs of Transaction Informations of the terminal module are digitally signed, and signature value sent to card module 2 or
Card reader module 1, if the signature value is sent to card reader module 1, card reader module 1 is swiped the card friendship according to the signature value completion
Easily, if the signature value is sent to card module 2, card module receives and is transferred to card reader module 1 after the signature value again, or
A new signature is generated with the private key of their own after the correctness of the card module 2 checking signature, new signature is sent to reading
Card device module 1, card reader module 1 completes transaction of swiping the card according to the signature value or new signature.
The card transaction system that the present invention is provided, as shown in figure 1, including card reader module 1, card module 2 and terminal module 3;
Wherein, communicated, led between terminal module 3 and card reader module 1 by RF-wise between terminal module 3 and card module 2
RF-wise is crossed to be communicated;Swipe the card transaction, card module 2 or card reader module are carried out between card module 2 and card reader module 1
The Transaction Information of swiping the card of the transaction of swiping the card is sent to terminal module 3 by 1, and terminal module 3 informs the Transaction Information of swiping the card
Swipe the card user;The user that swipes the card is confirmed by the terminal module 3 or card reader module 1;When swiping the card, user passes through the terminal
When module 3 is confirmed, the confirmation of user is returned to card module 2 or card reader module 1 by terminal module 3;Work as confirmation
When information returns to card module 2 by terminal module 3, the confirmation is sent to card reader module 1 by the card module 2;Card Reader
Confirmation that device module 1 is carried out according to the user that swipes the card by card reader module 1 is received from terminal module 3 or card module 2
Confirmation completes transaction of swiping the card.
More specifically, card reader module 1 includes the card reader radio frequency unit 102 and card reader service unit being electrically connected to each other
101;Card reader service unit 101 is used between card module 2 carry out transaction of swiping the card, and the Transaction Information that will swipe the card sends Card Reader to
Device radio frequency unit 102, meanwhile, card reader service unit 101 is additionally operable to pass through card reader service unit 101 certainly according to user or card
Confirmation that body is directly inputted or the confirmation received from card reader radio frequency unit 102 or according to card module 2 really
Recognize information and complete transaction of swiping the card;Card reader radio frequency unit 102, which is used to receive from card reader service unit 101, swipes the card Transaction Information simultaneously
Terminal module 3 is sent to by RF-wise, and receives confirmation from terminal module 3 and is transmitted to card reader service unit
101.Specifically, the reading being connected with computer that card reader service unit 101 can be possessed by POS, personal user
Card reader corresponding to card device or mass transit card purchase card.
Card module 2 includes card service unit 202 and the card radio frequency unit 203 and cartoon letters unit 201 that are connected electrically;
Card service unit 202 is communicated to enter by cartoon letters unit 201 with the card reader service unit 101 in card reader module 1
Capable transaction of swiping the card, and the Transaction Information that will swipe the card is sent to terminal module 3 in radio frequencies by card radio frequency unit 203;Card clothes
Business unit 202 receives confirmation by card radio frequency unit 203 from terminal module 3, and passes through card radio frequency unit 203 or cartoon letters
Unit 201 sends confirmation to card reader module 1.Card service unit 202 is additionally operable to preserve the digital certificate of user, to swiping the card
Transaction Information is digitally signed, encryption and decryption is carried out to confirmation and the rf terminal is carried out authentication and with
The rf terminal is carried out with equity.Cartoon letters unit 201 can be the magnetic stripe unit of magnetic stripe card, the 7816 of contact chip card
Radio frequency communications unit of communication unit or contactless chip card etc..Card module 2 can be the card with radio-frequency enabled, this kind
The reading corresponding to the card reader being connected with computer or mass transit card purchase card that card is also possessed with POS, personal user
Card device is matched.
The terminal radio frequency unit 301, terminal service unit 302 and terminal that terminal module 3 includes sequentially electrically connecting are man-machine
Interactive unit 303;In card reader radio frequency unit 102 and/or card module 2 in terminal radio frequency unit 301 and card reader module 1
Card radio frequency unit 203 carries out radio communication, and reception, which is swiped the card, Transaction Information and is transmitted to terminal service unit 302, terminal service list
The Transaction Information that will swipe the card of member 302 is sent to terminal human-computer interaction unit 303, and 303 pairs of terminal human-computer interaction unit is swiped the card transaction letter
Breath is confirmed and will confirm that information returns to terminal service unit 302, and terminal service unit 302 passes through terminal radio frequency unit
301 will confirm that information sends back the card radio frequency unit 203 in card module 2 or the card reader radio frequency unit in card reader module 1
102.Terminal service unit 302 is additionally operable to be matched with card module 2, and confirmation is encrypted, and preserves the numeral of user
Certificate and Transaction Information is digitally signed.The movement such as mobile phone with radio-frequency enabled or PDA in user's hand is set
It is standby to can be used as terminal module 3 to realize corresponding function, in addition, these mobile devices are all the personal objects of user, therefore also
More preferable security can be brought., can be if the mobile devices such as mobile phone or PDA in user's hand do not have radio-frequency enabled
Simply increase a radio-frequency module in these equipment, can equally realize corresponding function.
The content of above-mentioned confirmation mainly includes the password that user inputs on card reader module 1 or terminal module 3
And the digital signature that card module 2 and/or terminal module 3 are carried out to Transaction Information.
Hereinafter, the present invention specifically is expanded on further with application with one.
Fig. 2 describes a kind of system and method on bank card business dealing using the present invention.The system is by POS, silver
Row card and radio frequency mobile phone (hand-held rf terminal) composition.
Wherein, POS includes POS radio frequency unit and POS service unit.POS radio frequency unit is responsible for POS with penetrating
The radio communication of frequency mobile phone;POS service unit completes the on-line transaction function of common POS.
Bank card includes bank card radio frequency unit, bank card service unit and bank card communication unit.Bank card radio frequency list
The radio communication of the responsible bank card of member and radio frequency mobile phone;Bank card service unit is responsible for the business work(that bank card needs to have in itself
Can, as digital signature, checking, encryption and decryption, authentication and with radio frequency mobile phone with equity;Bank card communication unit is responsible for bank
Communication between card and POS, mainly includes magnetic stripe unit, 7816 communication units of contact chip card and the noncontact of magnetic stripe card
14443 communication units of chip card etc..
Radio frequency mobile phone includes mobile phone radio frequency unit, cellular service unit and terminal human-computer interaction unit.Mobile phone radio frequency unit
It is responsible for the radio communication between mobile phone and bank card and POS;Cellular service unit is responsible for the business function of terminal, including with silver
Pairing, the docking of row card transmit/receive the processing for sending data and communication protocol response, while being responsible for the number card having in mobile phone
The management of book is with using;Man-machine interaction unit is mainly responsible for that the information of reception is presented into user and the input of user is sent to
Cellular service unit.
When user is to bank's application to bank card, bound with oneself radio frequency mobile phone and the bank card.This binding
Process be bank card and mobile phone sets up the process recognized mutually.After binding terminates, there is the radio frequency identification of mobile phone in bank card
There are the radio frequency identification information and bank card of bank card in information, the private key of the digital certificate and card itself of mobile phone, mobile phone
Digital certificate and mobile phone itself private key, when being used for bank card and mobile phone radio communication and trade confirmation.
User is in trade company's POS during bankcard consumption, and bank card is set up with POS and communicated first, and POS service unit leads to
Cross the legitimacy confirmation that background server completes bank card.After the legitimacy that Confirm Bank blocks, POS transmits Transaction Information
To bank card.
Bank card communication unit is after the Transaction Information of POS is received, the digital certificate of bank card service unit mobile phone
Transaction Information is encrypted, and the Transaction Information after encryption and unpaired message are sent to bank card radio frequency unit.
Bank card radio frequency unit begins look for mobile phone, according to mobile phone after the information of bank card service unit transmission is received
Unpaired message send challenge message;The information of pairing comprising mobile phone and card itself in challenge message, only binds with card
Mobile phone could respond.
The radio frequency unit of mobile phone examines whether bank card information ties up with itself after the challenge message of bank card transmission is received
Fixed bank card information is consistent, if inconsistent, waits challenge next time, if unanimously, according to the information of itself and storage
Pairing bank card information carry out response.The message content of response is mutually bound with the information of card
Bank card is received after the response of mobile phone, and the legitimacy of response is judged according to the digital certificate of unpaired message and mobile phone,
If response is legal, the Transaction Information after encryption is sent to bank card, if response is illegal, bank card continues to send challenge
Information.
The pattern of this challenge response enables the correct rf terminal matched and card that only user uses correct
Reception/transmission information, other same rf terminals or card can not receive/send correct data.It ensure that to be stuck in and use process
In radio communication safety, will not by other equipment monitor or distort.
Mobile phone radio frequency form unit is received after the Transaction Information of bank card transmission, service unit according to the private key itself stored and
The content received is decrypted bank card unpaired message, and the content after decryption is sent into man-machine interaction unit.Man-machine friendship
Message is presented to user by mutual unit, is confirmed by user.
User confirms after transaction that the selection of user is passed to service unit by man-machine interaction unit on mobile phone.If transaction
Information is incorrect, and user's negative is this time merchandised, and mobile phone feeds back NACK messages, this closing the transaction;If Transaction Information is correct,
Service unit is digitally signed SignMob with the private key stored in mobile phone to this Transaction Information, and by digital signature
SignMob sends mobile phone radio frequency unit to, is sent digital signature SignMob by receipts radio frequency unit.Found from bank card
The whole flow process that mobile phone sends digital signature SignMob to mobile phone is as shown in Figure 3.
Bank card and POS have two ways for signature value SignMob reception:Mobile phone is received to transaction by bank card
Signature SignMob or mobile phone is received to the signature SignMob of transaction by POS.
Bank card is received after radio-frequency information SignMob, correct first with the digital certificate authentication SignMob of mobile phone
Property, if SignMob signatures are incorrect, shut the book;If SignMob signatures are correct, bank card service unit with itself
SignCard is sent to POS by private key to trading signature SignCard, and by bank card communication unit.POS bank
SignCard is submitted into background server after the certification authentication SignCard of card legitimacy, is confirmed to complete after signature by server
Transaction.Or bank card is after receiving SignMob and verifying its legitimacy, SignMob is directly submitted into POS, POS will
SignMob is committed to background server and completes transaction.
If receiving radio-frequency information SignMob with POS, it is necessary first to transmit mobile phone unpaired message to POS with bank card,
POS carries out SignMob reception according to unpaired message.POS is received after SignMob, sends SignMob to banks first
Card, SignMob legitimacy is confirmed by bank card, if bank card confirms that SignMob is incorrect, stops this transaction;If silver-colored
Row card confirms that SignMob is correct, then SignMob is submitted to background server by POS, is confirmed to complete to hand over after signature by server
Easily.Or POS sends SignMob to bank cards, the private key life after SignMob legitimacy with oneself is confirmed by bank card
The signature SignCard of this transaction, submits to background server by SignCard by POS and completes transaction in pairs.
Above-mentioned flow is a kind of situation of concrete application.The peace of password is inputted in a variety of card transaction systems to client
Full property requirement is also not quite similar, can suitably change the specific steps of above-mentioned several flows to realize.As present POS system
System, larger change will be had by making it have the Content of Communication of radio-frequency module and change and bank card, can use following method
Avoid being modified POS, while reaching that user confirms the purpose of Transaction Information:POS end is not changed, and bank card band is penetrated
Frequency module, when bank card is consumed, consumption information is sent to the mobile phone of user by radio-frequency module, and user is true on mobile phone
Recognize after Transaction Information, password is inputted in POS.So, as long as making simple modification i.e. in the mobile phone terminal of bank card and user
The security and the transparency of transaction can be greatly improved.
The foregoing is only presently preferred embodiments of the present invention, be not intended to limit the invention, it is all the present invention spirit and
Within principle, any modification, equivalent substitution and improvements made etc. should be included in the scope of the protection.
Claims (13)
1. a kind of card method of commerce, comprises the following steps:
Make to carry out transaction of swiping the card between card module and card reader module;
The card module or the card reader module Transaction Information that will swipe the card are sent to terminal module;And
Confirm the Transaction Information of swiping the card, swiped the card transaction with completion:Including
Card module embedded digital certificate, user by the terminal module input password, the terminal module by password send to
Card module, after card module judges that the password is correct, card module is digitally signed to the Transaction Information of swiping the card, and by the snap gauge
The digital signature of block is sent to card reader module, and the card reader module is carried out according to the card module to the Transaction Information of swiping the card
Digital signature complete to swipe the card transaction;
Or terminal module embedded digital certificate, user inputs password by the terminal module, and the terminal module judges the password
After correct, the terminal module is digitally signed to the Transaction Information of swiping the card, and signature value is sent to card module, card module
Private key one new signature of generation with their own after the correctness of signature is verified, new signature is sent to card reader module,
Card reader module completes transaction of swiping the card according to new signature.
2. card method of commerce according to claim 1, it is characterised in that before the transaction of swiping the card, in addition to:
The card module and terminal module are subjected to pairing and binding.
3. card method of commerce according to claim 2, it is characterised in that:The pairing and binding includes:Card module and terminal
It is one-to-one between module or many-one binding, i.e., one card module can only bind a terminal module, and a terminal module is same
At least one card module is mutually bound.
4. a kind of card transaction system, it is characterised in that:Including card reader module, card module and terminal module;
The card module is used between card reader module carry out transaction of swiping the card, and for receiving the confirmation for the user that swipes the card simultaneously
It is transmitted to the card reader module;
The card module or the card reader module Transaction Information that is additionally operable to swipe the card are wirelessly sent to the terminal module;
The terminal module is used to the Transaction Information of swiping the card informing the user that swipes the card, and the confirmation for the user that swipes the card is returned
To the card module or card reader module;
The card reader module is used for the direct confirmation that user carried out by card reader module according to swiping the card or from the terminal
The confirmation that module or card module are received completes transaction of swiping the card;
The card reader module transaction that completes to swipe the card is implemented as follows:
Card module embedded digital certificate, user by the terminal module input password, the terminal module by password send to
Card module, after card module judges that the password is correct, card module is digitally signed to the Transaction Information of swiping the card, and by the snap gauge
The digital signature of block is sent to card reader module, and the card reader module is carried out according to the card module to the Transaction Information of swiping the card
Digital signature complete to swipe the card transaction;
Or terminal module embedded digital certificate, user inputs password by the terminal module, and the terminal module judges the password
After correct, the terminal module is digitally signed to the Transaction Information of swiping the card, and signature value is sent to card module, card module
Private key one new signature of generation with their own after the correctness of signature is verified, new signature is sent to card reader module,
Card reader module completes transaction of swiping the card according to new signature.
5. card transaction system according to claim 4, it is characterised in that:By penetrating between the terminal module and card module
Frequency mode is communicated, and is communicated between the terminal module and card reader module by RF-wise.
6. card transaction system according to claim 4, it is characterised in that:The card reader module includes what is be electrically connected to each other
Card reader radio frequency unit and card reader service unit;The card reader service unit is used to be swiped the card between the card module
Transaction, sends the Transaction Information of swiping the card to the card reader radio frequency unit, and pass through card reader service unit according to user
The confirmation that itself directly inputs or the confirmation received from the card reader radio frequency unit or according to the snap gauge
The confirmation of block completes transaction of swiping the card;The card reader radio frequency unit is used to receive the brush from the card reader service unit
Card Transaction Information is simultaneously sent to the terminal module, and receive the confirmation simultaneously from the terminal module by RF-wise
It is transmitted to the card reader service unit.
7. card transaction system according to claim 6, it is characterised in that:The card reader service unit is POS, individual
The card reader corresponding to the card reader being connected with computer or mass transit card purchase card that user is possessed.
8. card transaction system according to claim 4, it is characterised in that:The card module include card service unit and with
Its card radio frequency unit and cartoon letters unit for electrically connecting;The cartoon letters unit be used for communicated with the card reader module with
Progress is swiped the card transaction, and the Transaction Information of swiping the card is sent into the terminal in radio frequencies by the card radio frequency unit
Module;The card radio frequency unit is used to receive the confirmation from the terminal module, and by the card radio frequency unit or
Person's cartoon letters unit sends confirmation to the card reader module;The card service unit is used for the numeral card for preserving user
Book, is digitally signed to the Transaction Information of swiping the card, encryption and decryption is carried out to confirmation and identity is carried out to rf terminal
Verify and matched with the card reader module.
9. card transaction system according to claim 8, it is characterised in that:The cartoon letters unit is magnetic stripe unit, contact
7816 communication units or the radio frequency communications unit of contactless chip card of formula chip card.
10. card transaction system according to claim 4, it is characterised in that:The card module be with radio-frequency enabled with
The card reader institute corresponding to the card reader being connected with computer or mass transit card purchase card that POS, personal user are possessed
The card of matching.
11. card transaction system according to claim 4, it is characterised in that:The terminal module includes what is sequentially electrically connected
Terminal radio frequency unit, terminal service unit and terminal human-computer interaction unit;The terminal radio frequency unit is used for and the card reader
Module and/or card module carry out radio communication, receive described in swipe the card and Transaction Information and be transmitted to the terminal service unit;It is described
Terminal service unit is used to the Transaction Information of swiping the card being sent to the terminal human-computer interaction unit, and will be taken from the terminal
The confirmation that business unit is received sends back the card module or card reader module;The terminal human-computer interaction unit be used for pair
The Transaction Information of swiping the card is confirmed and will confirm that information returns to the terminal service unit.
12. card transaction system according to claim 11, it is characterised in that:The terminal service unit be additionally operable to it is described
Card module is matched, and confirmation is encrypted, and is preserved the digital certificate of user and is entered line number to Transaction Information of swiping the card
Word is signed.
13. the card transaction system according to any one of claim 4 to 12, it is characterised in that:The confirmation includes using
The password that family is inputted on the card reader module or terminal module, card module and/or terminal module are to Transaction Information of swiping the card
The digital signature of progress.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110083616.6A CN102737309B (en) | 2011-04-02 | 2011-04-02 | A kind of card method of commerce and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110083616.6A CN102737309B (en) | 2011-04-02 | 2011-04-02 | A kind of card method of commerce and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102737309A CN102737309A (en) | 2012-10-17 |
| CN102737309B true CN102737309B (en) | 2017-08-01 |
Family
ID=46992760
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110083616.6A Active CN102737309B (en) | 2011-04-02 | 2011-04-02 | A kind of card method of commerce and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102737309B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104102995B (en) * | 2013-04-12 | 2017-12-22 | 联芯科技有限公司 | Bank card, mobile terminal, binding method and the method for payment based on mobile terminal |
| KR101616847B1 (en) * | 2013-09-30 | 2016-04-29 | 정혜진 | System for providing card settlement service using smart device and method thereof |
| CN104484943A (en) * | 2014-11-20 | 2015-04-01 | 北京启能万维科技有限公司 | Intelligent bus card swiping method, card swiping device and user terminal |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101105776A (en) * | 2007-01-10 | 2008-01-16 | 上海瀚银信息技术有限公司 | Standard extension card with embedded CPU IC and method for realizing electronic payment |
| CN101201947A (en) * | 2006-12-13 | 2008-06-18 | J&D易多喜有限公司 | Multifunctional EC card as well as method for machine card separation payment and energy consumption control thereof |
| CN101478749A (en) * | 2009-01-21 | 2009-07-08 | 陕西海基业高科技实业有限公司 | Safety service system and method for short range radio frequency communication |
| CN101887617A (en) * | 2010-07-13 | 2010-11-17 | 武汉天喻信息产业股份有限公司 | Method and system for establishing data channel of mobile payment |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8505820B2 (en) * | 2008-07-10 | 2013-08-13 | Uniform Industrial Corp. | Card reading device for transaction system |
-
2011
- 2011-04-02 CN CN201110083616.6A patent/CN102737309B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101201947A (en) * | 2006-12-13 | 2008-06-18 | J&D易多喜有限公司 | Multifunctional EC card as well as method for machine card separation payment and energy consumption control thereof |
| CN101105776A (en) * | 2007-01-10 | 2008-01-16 | 上海瀚银信息技术有限公司 | Standard extension card with embedded CPU IC and method for realizing electronic payment |
| CN101478749A (en) * | 2009-01-21 | 2009-07-08 | 陕西海基业高科技实业有限公司 | Safety service system and method for short range radio frequency communication |
| CN101887617A (en) * | 2010-07-13 | 2010-11-17 | 武汉天喻信息产业股份有限公司 | Method and system for establishing data channel of mobile payment |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102737309A (en) | 2012-10-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN202210326U (en) | Personal payment terminal provided with keyboard | |
| CN107077670A (en) | Transaction message is sent | |
| CN103123708A (en) | Secure payment method, mobile device and secure payment system | |
| CN101162535B (en) | Method and system for realizing magnetic stripe card trading by IC card | |
| CN102609750A (en) | Intelligent card provided with input device and output device | |
| CN104243162B (en) | A kind of information interacting method, system and intelligent cipher key equipment | |
| CN104021473A (en) | Safe payment method of visual financial card | |
| CN104240074A (en) | Prepaid card online payment system based on identity authentication and payment method of prepaid card online payment system | |
| CN104182875A (en) | Payment method and payment system | |
| CN102131164A (en) | System for performing loan transaction service based on mobile phone short message | |
| CN104123793A (en) | Money withdrawing system based on NFC function, money withdrawing method of money withdrawing system based on NFC function and money withdrawing machine | |
| CN104318436A (en) | Safety payment method and system based on mobile terminal and mobile terminal | |
| CN101330675A (en) | Mobile payment terminal equipment | |
| CN102737309B (en) | A kind of card method of commerce and system | |
| CN102136057A (en) | 2.4G/13.56M safety radio frequency card reader and authentication method thereof | |
| CN108334927A (en) | A kind of NFC receives single label and its method of payment | |
| CN103077457B (en) | A kind of intelligent RFID payment terminal and method | |
| WO2008154872A1 (en) | A mobile terminal, a method and a system for downloading bank card information or payment application information | |
| CN102779302A (en) | Payment method and payment system | |
| EP1171849B1 (en) | Communication system and method for efficiently implementing electronic transactions in mobile communication networks | |
| CN101758694B (en) | Electronic bill containing electronic part | |
| CN102034118B (en) | Electronic seal with external safety component | |
| CN101763677B (en) | System for authenticating endorsement signature on information medium | |
| CN101763678B (en) | System for authenticating signature on information medium | |
| CN101702193B (en) | Electronic signature of external safe component for signing electronic paper |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |