Summary of the invention
The object of the invention is to overcome the deficiencies in the prior art, provide a kind of automatic teller machine without card paying system, user is in the automatic teller machine transaction such as withdraw the money, needn't insert bank card, also needn't login the short message-authorized code of bank's station for acquiring, directly utilize own dynamic digital generating apparatus (mobile phone or other mobile hardware) to generate dynamically secret numeral, easily realize safety, easily without blocking the operation such as withdraw the money.
For achieving the above object, the invention provides a kind of automatic teller machine without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate a character string, this character string is very regular, and character late string can be calculated out, this character string is exactly to encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
Secret digital presenter shows numeric string r;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret, user cipher input unit and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string r, in user cipher input unit, input user's bank card password, login authentication device is extrapolated the needed plaintext m of encryption in this term of validity, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string r of input is by checking, also to verify bank card password simultaneously, only have after numeric string r and bank card password are simultaneously by checking, user logins successfully, the operation such as just can withdraw the money, simultaneously, after user logins successfully, login again before the deadline, r is still effective for input numeric string, in term of validity login again outward, it is invalid that user inputs numeric string r.
The second automatic teller machine of the present invention is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate a character string, this character string is very regular, and character late string can be calculated out, this character string is exactly to encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
Secret digital presenter shows numeric string r;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string r, login authentication device is extrapolated the needed plaintext m of encryption in this term of validity, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string r of input is by checking, user logins successfully, the operation such as can withdraw the money, simultaneously, after user logins successfully, login again before the deadline, r is still effective for input numeric string, in term of validity login again outward, it is invalid that user inputs numeric string r.
The third automatic teller machine of the present invention is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate string number, encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
(c) plaintext m and numeric string r are combined into a new numeric string s;
Secret digital presenter shows numeric string s;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret, user cipher input unit and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string s, in user cipher input unit, input user's bank card password, login authentication device is isolated expressly m and numeric string r from numeric string s, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string s of input is by checking, also to verify bank card password simultaneously, only have after numeric string s and bank card password are simultaneously by checking, user logins successfully, the operation such as just can withdraw the money, simultaneously, after user logins successfully, the numeric string s of this input cancels, it is invalid that next user inputs numeric string s.
The 4th kind of automatic teller machine of the present invention is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate string number, encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
(c) plaintext m and numeric string r are combined into a new numeric string s;
Secret digital presenter shows numeric string s;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string s, login authentication device is isolated expressly m and numeric string r from numeric string s, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string s of input is by checking, user logins successfully, the operation such as can withdraw the money, simultaneously, after user logins successfully, the numeric string s of this input cancels, it is invalid that next user inputs numeric string s.
Remarkable result of the present invention is: (1) greatly strengthens the use safety of user's bank card, after reducing to greatest extent user's bank card and using on automatic teller machine, and the risk that bank card is successfully cloned by lawless person.Lawless person can not obtain user's bank card account number, even if obtain bank card password, can not clone bank card.(2) safety, convenient.User need not carry bank card, also need not login the short message-authorized code of bank's station for acquiring, directly utilizes own dynamic digital generating apparatus (mobile phone or other mobile hardware) to generate dynamically secret numeral, easily realizes safely, easily without blocking the operation such as withdraw the money.
Embodiment
Below in conjunction with the drawings and specific embodiments, the present invention is further illustrated.
Embodiment 1, as shown in Figure 1: a kind of automatic teller machine is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate a character string, this character string is very regular, and character late string can be calculated out, this character string is exactly to encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
Secret digital presenter shows numeric string r;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret, user cipher input unit and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string r, in user cipher input unit, input user's bank card password, login authentication device is extrapolated the needed plaintext m of encryption in this term of validity, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string r of input is by checking, also to verify bank card password simultaneously, only have after numeric string r and bank card password are simultaneously by checking, user logins successfully, the operation such as just can withdraw the money, simultaneously, after user logins successfully, login again before the deadline, r is still effective for input numeric string, in term of validity login again outward, it is invalid that user inputs numeric string r.
In the above-described embodiments, secret digital maker dynamically generates a very regular character string, and this character string can be English alphabet or numeral etc., can using the date as dynamic character string, for example: current string is " 20131218 ", and character late string, can calculate out, for: " 20131219 ", i.e. m expressly, this character string can only generate on Dec 19th, 2013, and numeric string r is determined by plaintext m, in order to strengthen security, numeric string r suggestion is advisable with 8 bit digital.User is when automatic teller machine carries out the delivery operation of nothing card, and at input on Dec 19th, 2013 numeric string, r is effective, invalid in other date input.
Embodiment 2, as shown in Figure 2: a kind of automatic teller machine is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate a character string, this character string is very regular, and character late string can be calculated out, this character string is exactly to encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
Secret digital presenter shows numeric string r;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string r, login authentication device is extrapolated the needed plaintext m of encryption in this term of validity, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string r of input is by checking, user logins successfully, the operation such as can withdraw the money, simultaneously, after user logins successfully, login again before the deadline, r is still effective for input numeric string, in term of validity login again outward, it is invalid that user inputs numeric string r.
Embodiment 2 is with unique difference of embodiment 1, and in embodiment 2, user realizes without card and paying, and does not require input bank card password.
Embodiment 3, as shown in Figure 1: a kind of automatic teller machine is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate string number, encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
(c) plaintext m and numeric string r are combined into a new numeric string s;
Secret digital presenter shows numeric string s;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret, user cipher input unit and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string s, in user cipher input unit, input user's bank card password, login authentication device is isolated expressly m and numeric string r from numeric string s, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string s of input is by checking, also to verify bank card password simultaneously, only have after numeric string s and bank card password are simultaneously by checking, user logins successfully, the operation such as just can withdraw the money, simultaneously, after user logins successfully, the numeric string s of this input cancels, it is invalid that next user inputs numeric string s.
Embodiment 3 is with the difference of embodiment 1, and in embodiment 1, user realizes without card and paying, the secret numeral of inputting in the digital input unit of secret, all that effectively for example, the term of validity is one day before the deadline, within that day, inputting on automatic teller machine arbitrarily, be all effective so; And in embodiment 3, user realizes without card and paying, the secret numeral of inputting in the digital input unit of secret does not have the restriction of the term of validity, as long as secret numeral is not inputted and was used in the digital input unit of secret, all effective, but after using, this secret numeral is cancelled, and is equivalent to one-time pad.In order to strengthen security, expressly the suggestion of the length of m and numeric string r is respectively 6, and plaintext m is punctured in numeric string r, for example: be expressly " 167782 ", numeric string r is " 980426 ", and numeric string s can be arranged as so: " 980167426782 ", expressly m can be random digit, also can be the numeral of automatic increase, for example: the plaintext of current generation is: " 000001 ", the plaintext that generate next time is: " 000002 ".
Embodiment 4, as shown in Figure 2: a kind of automatic teller machine is without card paying system, comprise that dynamic digital generates mechanism, user account binding mechanism and automatic teller machine certification authority, it is characterized in that: described dynamic digital generates in mechanism unique sequence number renderer, the built-in device of unique key, numeral generates trigger, the digital maker of secret and secret digital presenter, unique sequence number renderer comprises a sequence number being comprised of a series of numerals completely, this sequence number has uniqueness, be different from other dynamic digital and generate the sequence number in the unique sequence number renderer in mechanism, key in the built-in device of unique key is a character string, there is equally uniqueness, and unique sequence number is corresponding one by one with unique key, if numeral generates trigger and is triggered, the digital maker of secret just starts to carry out following computing:
(a) dynamically generate string number, encrypt the plaintext m of use, adopt cryptographic algorithm n, with unique key, this is expressly encrypted, and generates a ciphertext character string o;
(b) with conversion regime p, all convert the character in ciphertext character string o to numeric string q, then extract the part numeral in numeric string q, form a new numeric string r;
(c) plaintext m and numeric string r are combined into a new numeric string s;
Secret digital presenter shows numeric string s;
In user account binding mechanism, there are account authenticator, account binder, the information of the own identity of proof that account authenticator provides user is identified, if not by authentication, user's bank card account number can not be bound, if by authentication, account binder is bound user's bank card account number and unique sequence number;
In automatic teller machine certification authority, there is sequence number input unit, the digital input unit of secret and login authentication device, user inputs unique sequence number in sequence number input unit, in the digital input unit of secret, input numeric string s, login authentication device is isolated expressly m and numeric string r from numeric string s, the unique key that adopts secret digital maker to use, cryptographic algorithm n and conversion regime p, plaintext m is carried out to computing, if numeric string r is legal numeric string, the numeric string s of input is by checking, user logins successfully, the operation such as can withdraw the money, simultaneously, after user logins successfully, the numeric string s of this input cancels, it is invalid that next user inputs numeric string s.
Embodiment 3 is with unique difference of embodiment 4, and in embodiment 4, user realizes without card and paying, and does not require input bank card password.
The cryptographic algorithm n mentioning in embodiment 1, embodiment 2, embodiment 3 and embodiment 4, in concrete enforcement, can adopt symmetric key algorithm AES, DES, or even the self-designed cryptographic algorithm of company, but for the sake of security, suggestion adopts the ripe aes algorithm very high with Cipher Strength.And conversion regime p has again a plurality of selections, general character conversion is become to numeral, there are many proven technique.
In embodiment 1, embodiment 2, embodiment 3 and embodiment 4, mentioning unique sequence number, can be the numeral number automatically generating, and can be also the cell-phone number that user provides, as long as possess uniqueness.
Identification about above-mentioned account authenticator to user identity, user can directly arrive sales counter and submit the data such as I.D. to, allows staff assist to apply for that automatic teller machine is without card payment transaction.Certainly, user also can login website of bank, the information such as short-message verification code that input handset number, identification card number and mobile phone are received, account authenticator judges that whether user identity legal, if legal, user can online self-service application automatic teller machine without card payment transaction.
Above-mentioned dynamic digital generates mechanism, in concrete implementation process, can be designed to the software using on mobile phone, or the hardware of carrying.
Illustrate below, how to utilize a cell phone software of embodiments of the invention 3 designs, realize safety, on automatic teller machine, without card, pay easily.
User can self-servicely carry out the service paying without card on automatic teller machine in bank's website application, bank's website service system generates the data file of an encryption automatically, the inside comprise distribute to user unique sequence number (according to user's requirement, this unique sequence number is exactly user's cell-phone number), unique key, unique sequence number and the unique key certainly preserved all should be encrypted storage; The data file of user's download online mobile phone client software and encryption then imports the data file of encrypting in mobile phone client software, and so far, an one's own dynamic digital generates mechanism and just produced.User, before withdrawing the money, utilizes cell phone software to generate a secret numeric string s, and when user withdraws the money, input handset number, numeric string s and bank card password, easily carry out automatic teller machine and withdraw the money without card.
Certainly; the present invention also can have other various embodiments; in the situation that not deviating from spirit of the present invention and essence thereof; those of ordinary skill in the art can make according to the present invention various corresponding changes and distortion, but these corresponding changes and distortion all should belong to the protection domain of the appended claim of the present invention.