CN103116847A - Intelligent card with electronic signature function, and system and method for intelligent card transactions - Google Patents

Intelligent card with electronic signature function, and system and method for intelligent card transactions Download PDF

Info

Publication number
CN103116847A
CN103116847A CN2013100707535A CN201310070753A CN103116847A CN 103116847 A CN103116847 A CN 103116847A CN 2013100707535 A CN2013100707535 A CN 2013100707535A CN 201310070753 A CN201310070753 A CN 201310070753A CN 103116847 A CN103116847 A CN 103116847A
Authority
CN
China
Prior art keywords
smart card
combined password
message
signature
pos machine
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN2013100707535A
Other languages
Chinese (zh)
Other versions
CN103116847B (en
Inventor
李东声
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tendyron Technology Co Ltd
Original Assignee
Tendyron Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tendyron Technology Co Ltd filed Critical Tendyron Technology Co Ltd
Priority to CN201810462779.7A priority Critical patent/CN108596605A/en
Priority to CN201310070753.5A priority patent/CN103116847B/en
Publication of CN103116847A publication Critical patent/CN103116847A/en
Priority to PCT/CN2014/071657 priority patent/WO2014121721A1/en
Application granted granted Critical
Publication of CN103116847B publication Critical patent/CN103116847B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Cash Registers Or Receiving Machines (AREA)

Abstract

The invention discloses an intelligent card with an electronic signature function, and a system and a method for intelligent card transactions. The method includes that A, the intelligent card is connected with a point of sale (POS) machine for receiving a transaction message; B, the intelligent card generates an associated password; C, the intelligent card generates a signature message according to the transaction message and the associated password; D, the intelligent card sends at least the signature message to the POS machine; E, the POS machine receives the associated password generated by the intelligent card and input through press keys, and sends at least the transaction message, the signature message and the associated password to a bank server; and F, the bank server verifies the signature message and the associated password, and executes a transaction operation according to the transaction message after the signature message and the associated password pass through verification. Interaction of data needed in a transaction is achieved through one time connecting of the intelligent card and the POS machine, and the risks that important information is intercepted and captured caused by repeated connecting are reduced, and furthermore safety is improved.

Description

Smart card, smart card transaction system and method with electronic signature functionality
Technical field
The present invention relates to a kind of electronic technology field, relate in particular to a kind of smart card, smart card transaction system and method with electronic signature functionality.
Background technology
Now, bankcard consumption has become main flow.Adopt following flow process to realize the electronic signature transaction:
Step S101, user hold with cordless access POS machine; Wherein, cordless can be any cordless such as radio frequency, bluetooth, NFC.
Step S102, POS machine are sent to Transaction Information the smart card of user's access; Wherein, Transaction Information can comprise account number and the amount of money at least, certainly can also comprise transaction details information.
Step S103, smart card receives Transaction Information, shows Transaction Information, after the user confirms that Transaction Information is errorless, receives the confirmation password of user's input, and Transaction Information is signed;
Step S104, smart card with cordless access POS machine, are sent to the POS machine with signing messages again;
Step S105, the POS machine is uploaded to bank server with Transaction Information and signing messages, so that bank server is carried out transaction according to Transaction Information.
This shows, existing smart card need to carry out at least twice access with cordless and POS machine in completing the process that Transaction Information is signed, thereby the problem that can exist Transaction Information in access procedure and/or signing messages to be held as a hostage causes the user to lose, and security is not high.
Summary of the invention
The present invention is intended to solve that existing smart card Transaction Information and/or signing messages in access procedure repeatedly are held as a hostage and the not high problem of security that causes.
One object of the present invention is to provide a kind of smart card method of commerce with electronic signature functionality.
One object of the present invention is to provide a kind of smart card with electronic signature functionality.
Another object of the present invention is to provide a kind of smart card transaction system with electronic signature functionality.
For achieving the above object, technical scheme of the present invention specifically is achieved in that
One aspect of the present invention provides a kind of smart card method of commerce with electronic signature functionality, and described method comprises: A, the smart card access POS machine with electronic signature functionality receive transaction message; B, described smart card generate combined password; C, described smart card generate the signature message according to described transaction message and described combined password; D, described smart card to the described signature message of major general are sent to described POS machine; E, described POS machine receive the combined password that the described smart card by key-press input generates, and are sent to bank server to the described transaction message of major general, described signature message and described combined password; F, the described bank server described signature message of checking and described combined password, and after being verified, carry out the transaction operation according to described transaction message.
In addition, described step C comprises: described smart card calculates the summary info of described transaction message; Described smart card is encrypted described combined password and obtains to encrypt combined password; Described smart card is signed to summary info and the described encryption combined password of described transaction message, generates the signature message.
In addition, described step C comprises: described smart card calculates the summary info of described transaction message; Described smart card is encrypted acquisition encryption combined password to the combination of described combined password and random number; Described smart card is signed to summary info and the described encryption combined password of described transaction message, generates the signature message.
In addition, in described step D, described smart card also is sent to described POS machine with described encryption combined password and described signature message; In described step e, described POS machine also is sent to bank server with described encryption combined password, described transaction message, described signature message and described combined password.
In addition, described step C comprises: described smart card calculates the summary info of described transaction message; Described smart card is encrypted described combined password and obtains to encrypt combined password, and calculates the summary info of described encryption combined password; Described smart card is signed to the summary info of described transaction message and the summary info of described encryption combined password, generates the signature message.
In addition, in described step D, described smart card also is sent to described POS machine with summary info and the described signature message of described encryption combined password; In described step e, described POS machine also is sent to bank server with the summary info of described combined password, described transaction message, described signature message and described combined password.
In addition, between described step D and described step e, described method also comprises: described smart card disconnection is connected with described POS machine; Described smart card shows described transaction message; Described smart card receives by the confirmation password of key-press input and/or confirms instruction; Described smart card shows described combined password.
In addition, described smart card accesses described POS machine by cordless.
The present invention also provides a kind of smart card with electronic signature functionality on the other hand, and described smart card comprises: transceiver module, password generation module, signature blocks and display module; Described transceiver module is used for access POS machine, receives transaction message and is sent to described signature blocks; Described password generation module is used for generating combined password, and is sent to described signature blocks and described display module; Described signature blocks generates the signature message according to described transaction message and described combined password, and is sent to described POS machine by described transceiver module to the described signature message of major general.
In addition, described transceiver module is sending described signature message to the described POS machine, also disconnects and being connected of described POS machine; Described display module described transceiver module disconnect with being connected of described POS machine after, also show described transaction message.
In addition, described smart card also comprises: key-press module; Described key-press module is according to the confirmation password that receives and/or confirm instruction, triggers described display module and shows described combined password.
Another aspect of the invention provides a kind of smart card transaction system with electronic signature functionality, and described system comprises: POS machine, bank server and aforesaid smart card; Described POS machine receives the combined password that the described smart card by key-press input generates, and is sent to described bank server to the described transaction message of major general, described signature message and described combined password; The described bank server described signature message of checking and described combined password, and after being verified, carry out the transaction operation according to described transaction message.
As seen from the above technical solution provided by the invention, the invention provides a kind of the have smart card of electronic signature functionality, the smart card method of commerce that has the smart card transaction system of electronic signature functionality and have electronic signature functionality, the mutual of transaction desired data completed in once access by smart card and POS machine, reduce the risk that important information that repeatedly access causes is intercepted and captured, improved security.Combined password of the present invention can be one or more combination of random numeral, letter and the character that generates when each transaction, being different from existing trading password and OTP must adopt ciphertext to transmit, combined password of the present invention can transmit by plaintext, and can not reduce the security of account in process of exchange; Combined password of the present invention is become and be uploaded to bank server at smart card one adnation, also being different from existing OTP needs bank server and terminal to generate simultaneously, one-sided generation combined password of the present invention is also signed, with the security that guarantees the combined password transmission and the accuracy of combined password checking; POS machine of the present invention is to have sent related data (can be transaction message, signature message and combined password) to bank server after having inputted combined password, make by the POS machine and be sent to need to being by the data that bank server is processed through authorizing and active data of bank server, guarantee security, improved work efficiency.
Description of drawings
In order to be illustrated more clearly in the technical scheme of the embodiment of the present invention, during the below will describe embodiment, the accompanying drawing of required use is done to introduce simply, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skill in the art, under the prerequisite of not paying creative work, can also obtain other accompanying drawings according to these accompanying drawings.
Fig. 1 is the method flow diagram of existing electronic signature transaction;
Fig. 2 is the process flow diagram that the present invention has the smart card method of commerce embodiment 1 of electronic signature functionality;
Fig. 3 is the process flow diagram that the present invention has the smart card method of commerce embodiment 2 of electronic signature functionality;
Fig. 4 is the structural representation that the present invention has the smart card transaction system of electronic signature functionality.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, rather than whole embodiment.Based on embodiments of the invention, those of ordinary skills belong to protection scope of the present invention not making the every other embodiment that obtains under the creative work prerequisite.
in description of the invention, it will be appreciated that, term " " center ", " vertically ", " laterally ", " on ", D score, " front ", " afterwards ", " left side ", " right side ", " vertically ", " level ", " top ", " end ", " interior ", orientation or the position relationship of indications such as " outward " are based on orientation shown in the drawings or position relationship, only the present invention for convenience of description and simplified characterization, rather than device or the element of indication or hint indication must have specific orientation, with specific orientation structure and operation, therefore can not be interpreted as limitation of the present invention.In addition, term " first ", " second " only are used for describing purpose, and can not be interpreted as indication or hint relative importance or quantity or position.
In description of the invention, need to prove, unless clear and definite regulation and restriction are separately arranged, term " installation ", " being connected ", " connection " should be done broad understanding, for example, can be to be fixedly connected with, and can be also to removably connect, or connect integratedly; Can be mechanical connection, can be also to be electrically connected to; Can be directly to be connected, also can indirectly be connected by intermediary, can be the connection of two element internals.For the ordinary skill in the art, can concrete condition understand above-mentioned term concrete meaning in the present invention.
Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.
Embodiment 1
Fig. 2 is the process flow diagram that the present invention has the smart card method of commerce embodiment 1 of electronic signature functionality.Now in conjunction with Fig. 2, the smart card method of commerce that the present invention is had electronic signature functionality describes, and is specific as follows:
The smart card method of commerce that the present invention has electronic signature functionality comprises:
Step S201: have the smart card access POS machine of electronic signature functionality, receive transaction message;
Concrete, before having the smart card access POS machine of electronic signature functionality, the POS machine can obtain transaction message by modes such as manual input, network, items scanning information.
Smart card can access the POS machine by cordless, receives the transaction message that the POS machine sends.Wherein, transaction message comprises account and the amount of money at least, also can comprise transaction details information.
Certainly, smart card also can access the POS machine by the way of contact.
Smart card of the present invention adopts cordless access POS machine than way of contact access POS facility, higher security to be arranged, and the information of preventing is acquired.
Step S202: smart card generates combined password;
Concrete, smart card is generating digital, letter and/or symbol randomly, selects one or more combination producing combined passwords from numeral, letter and symbol, can guarantee the nonuniqueness of combined password, randomness, the security that improves combined password.
Step S203: smart card generates the signature message according to transaction message and combined password;
Concrete, smart card can directly be signed to transaction message and combined password, generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, calculates the summary info of combined password, and the summary info of transaction message and the summary info of combined password are signed, and generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, combined password is encrypted obtains to encrypt combined password, and summary info and the encryption combined password of transaction message are signed, and generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, combined password is encrypted obtains to encrypt combined password, and calculate the summary info of encrypting combined password, and the summary info of transaction message and the summary info of encryption combined password are signed, generate the signature message.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext itself that obtains by symmetric cryptography.
In addition, cryptographic calculation can be symmetric cryptography or asymmetric encryption (for example the PKI by bank server is encrypted).For the security that further raising combined password transmits, smart card can also generate a random number, combined password and this random number is made up according to default form, and the data after making up are encrypted acquisition encryption combined password.Make up combined password and random number this moment, thereby prevent Replay Attack.
The present invention can adopt by combined password being carried out digest calculations, combined password being encrypted or carrying out digest calculations to encrypting combined password, has guaranteed the security of combined password transmission; Can sign to the summary info of combined password, the summary info encrypting combined password or encrypt combined password, improve the security of transaction.
Step S204: smart card to major general's message of signing is sent to the POS machine;
Concrete, in step S203, if when adopting smart card to calculate the scheme of encrypting combined password, in this step, smart card also will encrypt combined password and the signature message is sent to the POS machine.
In step S203, if when adopting smart card to calculate the scheme of the summary info of encrypting combined password, in this step, summary info and signature message that smart card also will be encrypted combined password are sent to the POS machine.
Certainly, no matter in step S203, which kind of information what smart card calculated is, smart card can be sent to the POS machine with the information of calculating.
Step S205:POS machine receives the combined password that the smart card by key-press input generates, and is sent to bank server to major general's transaction message, signature message and combined password;
Concrete, in step S203, if when adopting smart card to calculate the scheme of encrypting combined password, in this step, the POS machine also will be encrypted combined password, transaction message, signature message and combined password and be sent to bank server.
In step S203, if when adopting smart card to calculate the scheme of the summary info of encrypting combined password, in this step, the POS machine also is sent to bank server with summary info, transaction message, signature message and the combined password of combined password.
Certainly, no matter in step S203, which kind of information what smart card calculated is, the POS machine all can be sent to bank server with the information that smart card calculates.
POS machine of the present invention is only after the combined password that receives user's input, just transaction message, signature message and combined password can be sent to bank server, complete transaction to trigger bank server, so that bank server authenticates user identity according to combined password and signature message, improve the security of transaction.In addition, combined password of the present invention can be one or more combination of random numeral, letter and the character that generates when each transaction, being different from existing trading password and OTP must adopt ciphertext to transmit, combined password of the present invention can transmit by plaintext, and can not reduce the security of account in process of exchange; Combined password of the present invention is become and be uploaded to bank server at smart card one adnation, also being different from existing OTP needs bank server and terminal to generate simultaneously, one-sided generation combined password of the present invention is also signed, with the security that guarantees the combined password transmission and the accuracy of combined password checking; POS machine of the present invention is to have sent related data (can be transaction message, signature message and combined password) to bank server after having inputted combined password, make by the POS machine and be sent to need to being by the data that bank server is processed through authorizing and active data of bank server, guarantee security, improved work efficiency.
Step S206: bank server certifying signature message and combined password, and after being verified, carry out the transaction operation according to transaction message.
This shows smart card method of commerce of the present invention, complete the mutual of transaction desired data by the once access of smart card and POS machine, reduced the risk that important information that repeatedly access causes is intercepted and captured, improved security.
Embodiment 2
Fig. 3 is the process flow diagram that the present invention has the smart card method of commerce embodiment 2 of electronic signature functionality.Now in conjunction with Fig. 3, the smart card method of commerce that the present invention is had electronic signature functionality describes, and is specific as follows:
The smart card method of commerce that the present invention has electronic signature functionality comprises:
Step S301: have the smart card access POS machine of electronic signature functionality, receive transaction message;
Concrete, before having the smart card access POS machine of electronic signature functionality, the POS machine can obtain transaction message by modes such as manual input, network, items scanning information.
Smart card can access the POS machine by cordless, receives the transaction message that the POS machine sends.Wherein, transaction message comprises account and the amount of money at least, also can comprise transaction details information.
Certainly, smart card also can access the POS machine by the way of contact.
Smart card of the present invention adopts cordless access POS machine than way of contact access POS facility, higher security to be arranged, and the information of preventing is acquired.
Step S302: smart card generates combined password;
Concrete, smart card is generating digital, letter and/or symbol randomly, selects one or more combination producing combined passwords from numeral, letter and symbol, can guarantee the nonuniqueness of combined password, randomness, the security that improves combined password.
Step S303: smart card generates the signature message according to transaction message and combined password;
Concrete, smart card can directly be signed to transaction message and combined password, generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, calculates the summary info of combined password, and the summary info of transaction message and the summary info of combined password are signed, and generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, combined password is encrypted obtains to encrypt combined password, and summary info and the encryption combined password of transaction message are signed, and generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, combined password is encrypted obtains to encrypt combined password, and calculate the summary info of encrypting combined password, and the summary info of transaction message and the summary info of encryption combined password are signed, generate the signature message.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext itself that obtains by symmetric cryptography.
In addition, cryptographic calculation can be symmetric cryptography or asymmetric encryption (for example the PKI by bank server is encrypted).For the security that further raising combined password transmits, smart card can also generate a random number, combined password and this random number is made up according to default form, and the data after making up are encrypted acquisition encryption combined password.Make up combined password and random number this moment, thereby prevent Replay Attack.
The present invention can adopt by combined password being carried out digest calculations, combined password being encrypted or carrying out digest calculations to encrypting combined password, has guaranteed the security of combined password transmission; Can sign to the summary info of combined password, the summary info encrypting combined password or encrypt combined password, improve the security of transaction.
Step S304: smart card to major general's message of signing is sent to the POS machine;
Concrete, in step S303, if when adopting smart card to calculate the scheme of encrypting combined password, in this step, smart card also will encrypt combined password and the signature message is sent to the POS machine.
In step S303, if when adopting smart card to calculate the scheme of the summary info of encrypting combined password, in this step, summary info and signature message that smart card also will be encrypted combined password are sent to the POS machine.
Certainly, no matter in step S303, which kind of information what smart card calculated is, smart card can be sent to the POS machine with the information of calculating.
Step S305: the smart card disconnection is connected with the POS machine;
Concrete, in the situation that contactless mode accesses, the user holds the induction range that smart card leaves the POS machine and gets final product; In the situation that the contact mode accesses, the user extracts smart card and gets final product from the POS machine.Disconnect and guaranteed once contacting of smart card and POS machine being connected of POS machine, having reduced the risk that multiple-contact information is intercepted and captured, the security that has improved data transmission.
Step S306: smart card shows transaction message;
Concrete, smart card so that the user confirms the authenticity of this transaction, guarantees the safety of transaction in the transaction message that shows that screen display receives.
Step S307: smart card receives by the confirmation password of key-press input and/or confirms instruction;
Concrete, the user can by the operation of input validation password and/or confirmation instruction, trigger smart card and show the combined password that generates after the authenticity of having confirmed Transaction Information.Trigger smart card by the input validation password and show that combined password can prevent that combined password from being known by other people, improves the confidentiality of combined password.
Step S308: smart card shows combined password.
Concrete, smart card shows combined password, so that the user can be known this combined password, this combined password is inputed to the POS machine, to complete transaction.
In order further to improve the security of combined password, prevent that other people from obtaining the cleartext information of combined password, when step S302, combined password after combined password expressly can also being encrypted and will encrypting with default symmetric encipherment algorithm is stored in smart card, receive the user by the confirmation password of key-press input and/or after confirming instruction at smart card, then decrypt combined password with this default symmetric encipherment algorithm and expressly show.
Step S309:POS machine receives the combined password that the smart card by key-press input generates, and is sent to bank server to major general's transaction message, signature message and combined password;
Concrete, in step S303, if when adopting smart card to calculate the scheme of encrypting combined password, in this step, the POS machine also will be encrypted combined password, transaction message, signature message and combined password and be sent to bank server.
In step S303, if when adopting smart card to calculate the scheme of the summary info of encrypting combined password, in this step, the POS machine also is sent to bank server with summary info, transaction message, signature message and the combined password of combined password.
Certainly, no matter in step S303, which kind of information what smart card calculated is, the POS machine all can be sent to bank server with the information that smart card calculates.
POS machine of the present invention is only after the combined password that receives user's input, just transaction message, signature message and combined password can be sent to bank server, complete transaction to trigger bank server, so that bank server authenticates user identity according to combined password and signature message, improve the security of transaction.In addition, combined password of the present invention can be one or more combination of random numeral, letter and the character that generates when each transaction, being different from existing trading password and OTP must adopt ciphertext to transmit, combined password of the present invention can transmit by plaintext, and can not reduce the security of account in process of exchange; Combined password of the present invention is become and be uploaded to bank server at smart card one adnation, also being different from existing OTP needs bank server and terminal to generate simultaneously, one-sided generation combined password of the present invention is also signed, with the security that guarantees the combined password transmission and the accuracy of combined password checking; POS machine of the present invention is to have sent related data (can be transaction message, signature message and combined password) to bank server after having inputted combined password, make by the POS machine and be sent to need to being by the data that bank server is processed through authorizing and active data of bank server, guarantee security, improved work efficiency.
Step S310: bank server certifying signature message and combined password, and after being verified, carry out the transaction operation according to transaction message.
This shows smart card method of commerce of the present invention, complete the mutual of transaction desired data by the once access of smart card and POS machine, reduced the risk that important information that repeatedly access causes is intercepted and captured, improved security.
Fig. 4 is the structural representation that the present invention has the smart card transaction system of electronic signature functionality.First in conjunction with Fig. 4, the structure that the present invention is had the smart card transaction system of electronic signature functionality describes, and is specific as follows:
Smart card transaction system with electronic signature functionality of the present invention comprises: POS machine 10, bank server 20 and the smart card 30 with electronic signature functionality.The equipment of smart card 30 for having electronic signature functionality can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, perhaps comprises the integrated chip with above-mentioned two chip functions.
Wherein, the smart card 30 that has an electronic signature functionality comprises: transceiver module 301, password generation module 302, signature blocks 303 and display module 304; In other words, have the above-mentioned module that the smart card 30 of electronic signature functionality comprises and can be integrated on a chip, quantity and the function of the chip that also can adopt according to smart card 30 are integrated on a plurality of chips, are not just illustrating one by one at this.
Transceiver module 301 is used for access POS machine 10, receives transaction message and is sent to signature blocks 303.
Password generation module 302 is used for generating combined password, and is sent to signature blocks 303 and display module 304.Concrete, password generation module 302 can after transceiver module 301 receives transaction message, generate combined password.
Signature blocks 303 generates the signature message according to transaction message and combined password, and is sent to POS machine 10 by transceiver module 301 to major general's message of signing.
POS machine 10 receives the combined password that the smart card 30 by key-press input generates, and is sent to bank server 20 to major general's transaction message, signature message and combined password.
Bank server 20 certifying signature message and combined passwords, and after being verified, carry out the transaction operation according to transaction message.
Certainly, on the basis of said structure, the transceiver module 301 of smart card 30 of the present invention is sending the signature message to POS machine 10, also disconnects and being connected of POS machine 10, so that display module 304 demonstration transaction message.Thereby guaranteeing that smart card 30 of the present invention only contacts with POS machine 10 has once just completed exchange and has needed data interaction, reduces because the secondary contact produces the risk that data are intercepted and captured, and has improved the security of transaction.
Certainly, bank server 20 can after checking combined password failure preset times (for example 3 times), lock account corresponding to this smart card with the safety of protection user account.
In addition, smart card 30 can also comprise: key-press module 305.Key-press module 305 is according to the confirmation password that receives and/or confirm instruction, triggers display module 304 and shows combined password.
Concrete, for example the user can trigger display module 304 demonstration combined passwords in the following way:
(1) input validation password, after smart card 30 demonstration validation passwords were correct, display module 304 showed combined password; Perhaps
(2) press the confirmation button, trigger display module 304 and show combined password; Perhaps
(3) input validation password, and press the confirmation button, after smart card 30 demonstration validation passwords were correct, display module 304 showed combined password.
Certainly, can arrange for the different consumption amount of money and trigger display module 304 demonstration combined password conditions, for example, small amount consumption only needs the user to press the confirmation button, wholesale consumer need user input validation password etc.
This shows the smart card transaction system that has the smart card of electronic signature functionality and have electronic signature functionality of the present invention, the mutual of transaction desired data completed in once access by smart card and POS machine, reduce the risk that important information that repeatedly access causes is intercepted and captured, improved security.
Describe and to be understood in process flow diagram or in this any process of otherwise describing or method, expression comprises module, fragment or the part of code of the executable instruction of the step that one or more is used to realize specific logical function or process, and the scope of the preferred embodiment of the present invention comprises other realization, wherein can be not according to order shown or that discuss, comprise according to related function by the mode of basic while or by opposite order, carry out function, this should be understood by the embodiments of the invention person of ordinary skill in the field.
Should be appreciated that each several part of the present invention can realize with hardware, software, firmware or their combination.In the above-described embodiment, a plurality of steps or method can realize with being stored in storer and by software or firmware that suitable instruction execution system is carried out.For example, if realize with hardware, the same in another embodiment, can realize with any one in following technology well known in the art or their combination: have for data-signal being realized the discrete logic of the logic gates of logic function, special IC with suitable combinational logic gate circuit, programmable gate array (PGA), field programmable gate array (FPGA) etc.
Those skilled in the art are appreciated that and realize that all or part of step that above-described embodiment method is carried is to come the relevant hardware of instruction to complete by program, described program can be stored in a kind of computer-readable recording medium, this program comprises step of embodiment of the method one or a combination set of when carrying out.
In addition, each functional unit in each embodiment of the present invention can be integrated in a processing module, can be also that the independent physics of unit exists, and also can be integrated in a module two or more unit.Above-mentioned integrated module both can adopt the form of hardware to realize, also can adopt the form of software function module to realize.If described integrated module realizes with the form of software function module and during as independently production marketing or use, also can be stored in a computer read/write memory medium.
The above-mentioned storage medium of mentioning can be ROM (read-only memory), disk or CD etc.
In the description of this instructions, the description of reference term " embodiment ", " some embodiment ", " example ", " concrete example " or " some examples " etc. means to be contained at least one embodiment of the present invention or example in conjunction with specific features, structure, material or the characteristics of this embodiment or example description.In this manual, the schematic statement of above-mentioned term not necessarily referred to identical embodiment or example.And the specific features of description, structure, material or characteristics can be with suitable mode combinations in any one or more embodiment or example.
Although the above has illustrated and has described embodiments of the invention, be understandable that, above-described embodiment is exemplary, can not be interpreted as limitation of the present invention, those of ordinary skill in the art is not in the situation that break away from principle of the present invention and aim can change above-described embodiment within the scope of the invention, modification, replacement and modification.Scope of the present invention is by claims and be equal to and limit.

Claims (12)

1. the smart card method of commerce with electronic signature functionality, is characterized in that, described method comprises:
A, the smart card access POS machine with electronic signature functionality receive transaction message;
B, described smart card generate combined password;
C, described smart card generate the signature message according to described transaction message and described combined password;
D, described smart card to the described signature message of major general are sent to described POS machine;
E, described POS machine receive the combined password that the described smart card by key-press input generates, and are sent to bank server to the described transaction message of major general, described signature message and described combined password;
F, the described bank server described signature message of checking and described combined password, and after being verified, carry out the transaction operation according to described transaction message.
2. method according to claim 1, is characterized in that, described step C comprises:
Described smart card calculates the summary info of described transaction message;
Described smart card is encrypted described combined password and obtains to encrypt combined password;
Described smart card is signed to summary info and the described encryption combined password of described transaction message, generates the signature message.
3. method according to claim 1, is characterized in that, described step C comprises:
Described smart card calculates the summary info of described transaction message;
Described smart card is encrypted acquisition encryption combined password to the combination of described combined password and random number;
Described smart card is signed to summary info and the described encryption combined password of described transaction message, generates the signature message.
4. according to claim 2 or 3 described methods, is characterized in that,
In described step D, described smart card also is sent to described POS machine with described encryption combined password and described signature message;
In described step e, described POS machine also is sent to bank server with described encryption combined password, described transaction message, described signature message and described combined password.
5. method according to claim 1, is characterized in that, described step C comprises:
Described smart card calculates the summary info of described transaction message;
Described smart card is encrypted described combined password and obtains to encrypt combined password, and calculates the summary info of described encryption combined password;
Described smart card is signed to the summary info of described transaction message and the summary info of described encryption combined password, generates the signature message.
6. method according to claim 5, is characterized in that,
In described step D, described smart card also is sent to described POS machine with summary info and the described signature message of described encryption combined password;
In described step e, described POS machine also is sent to bank server with the summary info of described combined password, described transaction message, described signature message and described combined password.
7. method according to claim 1, is characterized in that, between described step D and described step e, described method also comprises:
Described smart card disconnection is connected with described POS machine;
Described smart card shows described transaction message;
Described smart card receives by the confirmation password of key-press input and/or confirms instruction;
Described smart card shows described combined password.
8. the described method of according to claim 1 to 7 any one, is characterized in that, described smart card accesses described POS machine by cordless.
9. the smart card with electronic signature functionality, is characterized in that, described smart card comprises: transceiver module, password generation module, signature blocks and display module;
Described transceiver module is used for access POS machine, receives transaction message and is sent to described signature blocks;
Described password generation module is used for generating combined password, and is sent to described signature blocks and described display module;
Described signature blocks generates the signature message according to described transaction message and described combined password, and is sent to described POS machine by described transceiver module to the described signature message of major general.
10. smart card according to claim 9, is characterized in that, described transceiver module is sending described signature message to the described POS machine, also disconnects and being connected of described POS machine;
Described display module described transceiver module disconnect with being connected of described POS machine after, also show described transaction message.
11. smart card according to claim 10 is characterized in that, described smart card also comprises: key-press module;
Described key-press module is according to the confirmation password that receives and/or confirm instruction, triggers described display module and shows described combined password.
12. the smart card transaction system with electronic signature functionality is characterized in that, described system comprises: POS machine, bank server and the described smart card of aforementioned claim 9 to 11 any one;
Described POS machine receives the combined password that the described smart card by key-press input generates, and is sent to described bank server to the described transaction message of major general, described signature message and described combined password;
The described bank server described signature message of checking and described combined password, and after being verified, carry out the transaction operation according to described transaction message.
CN201310070753.5A 2013-02-06 2013-03-06 Smart card, intelligent card transaction system and method with electronic signature functionality Active CN103116847B (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CN201810462779.7A CN108596605A (en) 2013-02-06 2013-03-06 Smart card with electronic signature functionality
CN201310070753.5A CN103116847B (en) 2013-02-06 2013-03-06 Smart card, intelligent card transaction system and method with electronic signature functionality
PCT/CN2014/071657 WO2014121721A1 (en) 2013-02-06 2014-01-28 Smart card with electronic signature function, and smart card transaction system and method

Applications Claiming Priority (7)

Application Number Priority Date Filing Date Title
CN201310047316 2013-02-06
CN201320069875 2013-02-06
CN2013100473161 2013-02-06
CN2013200698758 2013-02-06
CN201320069875.8 2013-02-06
CN201310047316.1 2013-02-06
CN201310070753.5A CN103116847B (en) 2013-02-06 2013-03-06 Smart card, intelligent card transaction system and method with electronic signature functionality

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN201810462779.7A Division CN108596605A (en) 2013-02-06 2013-03-06 Smart card with electronic signature functionality

Publications (2)

Publication Number Publication Date
CN103116847A true CN103116847A (en) 2013-05-22
CN103116847B CN103116847B (en) 2019-06-25

Family

ID=48415212

Family Applications (3)

Application Number Title Priority Date Filing Date
CN201810462779.7A Pending CN108596605A (en) 2013-02-06 2013-03-06 Smart card with electronic signature functionality
CN201310070753.5A Active CN103116847B (en) 2013-02-06 2013-03-06 Smart card, intelligent card transaction system and method with electronic signature functionality
CN 201320102167 Expired - Lifetime CN203242029U (en) 2013-02-06 2013-03-06 An intelligent card containing an electronic signature function and an intelligent card transaction system

Family Applications Before (1)

Application Number Title Priority Date Filing Date
CN201810462779.7A Pending CN108596605A (en) 2013-02-06 2013-03-06 Smart card with electronic signature functionality

Family Applications After (1)

Application Number Title Priority Date Filing Date
CN 201320102167 Expired - Lifetime CN203242029U (en) 2013-02-06 2013-03-06 An intelligent card containing an electronic signature function and an intelligent card transaction system

Country Status (2)

Country Link
CN (3) CN108596605A (en)
HK (1) HK1194247A2 (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103973455A (en) * 2014-05-28 2014-08-06 天地融科技股份有限公司 Information interaction method
WO2014121721A1 (en) * 2013-02-06 2014-08-14 天地融科技股份有限公司 Smart card with electronic signature function, and smart card transaction system and method
WO2014194730A1 (en) * 2013-06-04 2014-12-11 天地融科技股份有限公司 Method and system for processing operation request
CN104282092A (en) * 2013-07-04 2015-01-14 中国银联股份有限公司 Method for achieving digital signature and POS terminal used for achieving digital signature
CN105023150A (en) * 2015-07-22 2015-11-04 天地融科技股份有限公司 Data processing method and device for POS machine
CN105023374A (en) * 2015-07-22 2015-11-04 天地融科技股份有限公司 Transaction system of POS machine
WO2017000479A1 (en) * 2015-06-30 2017-01-05 京东方科技集团股份有限公司 Identity information authentication method, user terminal, service terminal, authentication server, and service system
CN103984906B (en) * 2014-05-28 2018-01-16 天地融科技股份有限公司 A kind of electronic key equipment of no button
CN112950200A (en) * 2021-02-05 2021-06-11 中国建设银行股份有限公司 Transaction management method and system suitable for bankbook

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104166914A (en) * 2014-08-20 2014-11-26 武汉天喻信息产业股份有限公司 Secure system and method based on secure element and applied to host card emulation technology

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1831865A (en) * 2006-04-24 2006-09-13 北京易恒信认证科技有限公司 Electronic bank safety authorization system and method based on CPK
CN101178802A (en) * 2006-11-08 2008-05-14 李东声 Dynamic password realization method in network bank trading and electronic signing device
CN102609750A (en) * 2012-02-15 2012-07-25 东信和平智能卡股份有限公司 Intelligent card provided with input device and output device
US20120318864A1 (en) * 2005-02-22 2012-12-20 Tyfone, Inc. Methods for over the network transactions on a wearable device

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH0670818B2 (en) * 1984-09-07 1994-09-07 カシオ計算機株式会社 Verification card and its authentication method
US5317636A (en) * 1992-12-09 1994-05-31 Arris, Inc. Method and apparatus for securing credit card transactions
FR2771533B1 (en) * 1997-11-21 2003-01-31 Taib Thierry Baillie SECURITY CARD FOR SECURE PAYMENT BY CREDIT CARD
US6816058B2 (en) * 2001-04-26 2004-11-09 Mcgregor Christopher M Bio-metric smart card, bio-metric smart card reader and method of use
US20070241183A1 (en) * 2006-04-14 2007-10-18 Brown Kerry D Pin-secured dynamic magnetic stripe payment card
CN102542452A (en) * 2011-11-09 2012-07-04 王筱雨 Method and system for verifying transaction passwords of point-of-sale (POS) machine terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120318864A1 (en) * 2005-02-22 2012-12-20 Tyfone, Inc. Methods for over the network transactions on a wearable device
CN1831865A (en) * 2006-04-24 2006-09-13 北京易恒信认证科技有限公司 Electronic bank safety authorization system and method based on CPK
CN101178802A (en) * 2006-11-08 2008-05-14 李东声 Dynamic password realization method in network bank trading and electronic signing device
CN102609750A (en) * 2012-02-15 2012-07-25 东信和平智能卡股份有限公司 Intelligent card provided with input device and output device

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2014121721A1 (en) * 2013-02-06 2014-08-14 天地融科技股份有限公司 Smart card with electronic signature function, and smart card transaction system and method
WO2014194730A1 (en) * 2013-06-04 2014-12-11 天地融科技股份有限公司 Method and system for processing operation request
CN104282092A (en) * 2013-07-04 2015-01-14 中国银联股份有限公司 Method for achieving digital signature and POS terminal used for achieving digital signature
CN104282092B (en) * 2013-07-04 2017-02-08 中国银联股份有限公司 Method for achieving digital signature and POS terminal used for achieving digital signature
CN103973455A (en) * 2014-05-28 2014-08-06 天地融科技股份有限公司 Information interaction method
CN103984906B (en) * 2014-05-28 2018-01-16 天地融科技股份有限公司 A kind of electronic key equipment of no button
CN103973455B (en) * 2014-05-28 2018-09-18 天地融科技股份有限公司 A kind of information interacting method
WO2017000479A1 (en) * 2015-06-30 2017-01-05 京东方科技集团股份有限公司 Identity information authentication method, user terminal, service terminal, authentication server, and service system
CN105023150A (en) * 2015-07-22 2015-11-04 天地融科技股份有限公司 Data processing method and device for POS machine
CN105023374A (en) * 2015-07-22 2015-11-04 天地融科技股份有限公司 Transaction system of POS machine
CN112950200A (en) * 2021-02-05 2021-06-11 中国建设银行股份有限公司 Transaction management method and system suitable for bankbook

Also Published As

Publication number Publication date
CN103116847B (en) 2019-06-25
CN108596605A (en) 2018-09-28
HK1194247A2 (en) 2014-10-10
CN203242029U (en) 2013-10-16

Similar Documents

Publication Publication Date Title
CN203242029U (en) An intelligent card containing an electronic signature function and an intelligent card transaction system
CN103136664B (en) There is smart card transaction system and the method for electronic signature functionality
CN107358441B (en) Payment verification method and system, mobile device and security authentication device
CN103067401B (en) Method and system for key protection
CN104243451A (en) Information interaction method and system and smart key equipment
CN103220148B (en) The method of electronic signature token operation response request, system and electronic signature token
CA2907889C (en) Method and system for processing operation requests
CN103078742B (en) Generation method and system of digital certificate
CN103220280A (en) Dynamic password token and data transmission method and system for dynamic password token
AU2017299473A1 (en) Secure channel establishment
CN103532719A (en) Dynamic password generation method, dynamic password generation system, as well as processing method and processing system of transaction request
CN103136665A (en) Method and system of network transaction
CN103516525A (en) Dynamic password generation method and system
CN104243162B (en) A kind of information interacting method, system and intelligent cipher key equipment
CN103269271A (en) Method and system for back-upping private key in electronic signature token
CN106027250A (en) Identity card information safety transmission method and system
CN103888453A (en) Data processing method based on negotiation secret keys
CN103136667A (en) Smart card with electronic signature function, smart card trading system and smart card trading method
CN103813333A (en) Data processing method based on negotiation keys
CN103198401A (en) Smart card transaction method and smart card transaction system with electronic signature function
CN111027983A (en) Anti-counterfeiting identification method and system for intelligent household appliance
CN103761660A (en) Method and device for verifying authenticity of product
CN104796266A (en) Authentication method, device and system
CN104598799A (en) Read-write terminal, system and method of storage medium
CN103346886A (en) Signature data sending method and electronic signature token

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
REG Reference to a national code

Ref country code: HK

Ref legal event code: DE

Ref document number: 1184894

Country of ref document: HK

GR01 Patent grant
GR01 Patent grant