CN103839330B - Smart card and operation requests output intent, operation requests response method and system - Google Patents

Smart card and operation requests output intent, operation requests response method and system Download PDF

Info

Publication number
CN103839330B
CN103839330B CN201310300386.3A CN201310300386A CN103839330B CN 103839330 B CN103839330 B CN 103839330B CN 201310300386 A CN201310300386 A CN 201310300386A CN 103839330 B CN103839330 B CN 103839330B
Authority
CN
China
Prior art keywords
smart card
verification data
information
operation requests
processing unit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201310300386.3A
Other languages
Chinese (zh)
Other versions
CN103839330A (en
Inventor
李东声
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tendyron Technology Co Ltd
Original Assignee
Tendyron Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tendyron Technology Co Ltd filed Critical Tendyron Technology Co Ltd
Priority to CN201310300386.3A priority Critical patent/CN103839330B/en
Publication of CN103839330A publication Critical patent/CN103839330A/en
Priority to EP14823389.3A priority patent/EP3021296A4/en
Priority to PCT/CN2014/081700 priority patent/WO2015003585A1/en
Priority to JP2016524667A priority patent/JP6236151B2/en
Priority to US14/903,159 priority patent/US20160328712A1/en
Priority to PCT/CN2014/081705 priority patent/WO2015003587A1/en
Priority to HK14112061A priority patent/HK1198599A1/en
Application granted granted Critical
Publication of CN103839330B publication Critical patent/CN103839330B/en
Priority to US16/444,250 priority patent/US11151574B2/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention provides a kind of smart card and operation requests output intent, operation requests response method and system, wherein, operation requests output intent, smart card includes the first processing unit and/or the second processing unit, first processing unit is processed for the operation requests got smart card by contact communication mode, and the second processing unit is processed for the operation requests obtained smart card by contactless communication mode;Wherein: smart card obtains operation requests;Acquisition mode according to operation requests, determines the object processing unit that operation requests is corresponding, and wherein object processing unit is the first processing unit or the second processing unit;Operation requests is processed by invocation target processing unit, the operation requests after being processed;And, obtain the smart card operation information of smart card, wherein smart card operation information at least includes the smart card communications mode information that object processing unit is corresponding;Perform the operation requests after at least output processes and the flow process of verification data.

Description

Smart card and operation requests output intent, operation requests response method and system
Technical field
The present invention relates to a kind of field of information security technology, particularly relate to a kind of smart card and operation requests output intent, operate and ask Ask response method and system.
Background technology
Existing bank is issued to the card of user and is mostly magnetic stripe card, however magnetic stripe card itself there are the following problems: once user Account and trading password are acquired, then can replicate a magnetic stripe card, thus steal user profile, cause user's property loss.
Therefore, it is more likely to now use IC-card (smart card) to replace magnetic stripe card to guarantee the safety of user profile and property.Existing Some smartcard internal are provided with chip, and this chip includes the pattern of two kinds of cards operation: contact operator scheme and noncontact Formula operator scheme, which kind of operator scheme chip uses when determining and carry out information transmission with the external world, and which kind of agreement of intrinsic call participates in letter Breath transmission, information to be output, when the information of carrying out is transmitted, can be processed by chip, the operation such as including encryption or signature, Further, encrypt or used key of signing can not be read and replicate, thus, use smart card replace magnetic stripe card can in case Only card is replicated, even if obtaining account and the trading password of user, can not copy same card, therefore can be from Ensure user profile and the safety of property to a certain extent.
But, if existing smart card has been acquired account and the trading password of user, potential safety hazard, Fig. 1 still can be there is Illustrating the existing smart card of employing and carry out the structure chart that user profile is stolen, see Fig. 1, ATM 101 is by wired or nothing Line mode is connected to the server 102 of bank, such that it is able to realize the corresponding business of bank.Under normal circumstances, user holds The business such as smart card 106 is inserted directly into ATM 101 thus realization is transferred accounts, enchashment.But, if stealer is provided with one Imitated card 103, by these imitated card 103 insertion ATMs, is only used for imitating the smart card 106 that user holds and inserts ATM 101, receive the information of ATM 101 transmission and send information to ATM 101, now, stealer is by this imitated card The information transmission that the ATM 101 that 103 are wirelessly received sends steals terminal to the first of stealer's setting In 104, this first steals terminal 104 for receiving the information of imitated card 103 transmission and sending information to imitated card 103, Card 103 can be copied by the imitated card 103 of wired connection or wireless connections, first steal terminal 104 by the Internet or Wireless networks etc. connect second steals terminal 105, and second steals terminal 105 for mobile terminal, can carry with stolen taker, And its connection has power radio frequency antenna 106, and the smart card 107 held by the user of antenna 106 scanning antenna periphery, by Can only passively receive information in existing smart card 107, therefore, second steals terminal 105 is easy to by antenna 106 and use The smart card 107 that family is held sets up wireless connections, and now, second steals the smart card 107 that terminal 105 can be held from user Middle acquisition smart card information, and the smart card information got is stolen end by the transmission such as the Internet or wireless network to first End 104, thus by imitated card 103, the smart card information got is sent to ATM 101, now, ATM obtains After having arrived the real information of the smart card 107 that user holds, after ATM 101 inputs the trading password of this smart card 107, Then can directly carry out transferring accounts or the business such as enchashment.As can be seen here, by this kind of mode, existing smart card once account is believed Breath and trading password are revealed, and can cause the massive losses of user's property, and cannot avoid, owing to the mobility of stealer more cannot Inquiry stealer's identity.
Summary of the invention
Present invention seek to address that the security hidden trouble that existing smart card exists, it is provided that a kind of smart card and operation requests output intent, Operation requests response method and system.
For reaching above-mentioned purpose, technical scheme is specifically achieved in that
A kind of operation requests output intent, smart card includes the first processing unit and/or the second processing unit, at wherein said first Reason unit is for carrying out the first process to described smart card by the operation requests that contact communication mode gets, at described second Reason unit carries out the first process for the operation requests obtained described smart card by contactless communication mode;Wherein said side Method includes: smart card obtains operation requests;Described smart card, according to the acquisition mode of described operation requests, determines described operation Request carries out the object processing unit of the first process, and wherein said object processing unit is described first processing unit or described second Processing unit;Described smart card calls described object processing unit and described operation requests is carried out the first process, after being processed Operation requests;And, described smart card obtains the smart card operation information of smart card, and wherein said smart card operation information is at least Including the smart card communications mode information that described object processing unit is corresponding;Described smart card obtains verification data generation strategy, and Utilize described verification data generation strategy at least smart card operation information to be carried out the second process, obtain verifying data;Described intelligence Card performs the operation requests after at least exporting described process and the flow process of described verification data.
Additionally, described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding, Or, described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit Communication method information corresponding to smart card.
Additionally, described verification data include the first verification data and the second verification data, wherein: described first verification data are institutes State smart card and smart card operation information is carried out what the second process obtained;Described second verification data are that electronics is deposited by described smart card Depreciated volume, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out the Two process obtain.
Additionally, described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook connection Machine transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Additionally, described second is processed as encryption.
Additionally, described verification data are obtained by following either type, including: mode one: utilize MAC calculative strategy, At least smart card operation information is carried out MAC calculating, using calculated MAC value as verification data;Mode two: utilize HASH calculative strategy, at least carries out HASH calculating to smart card operation information, using calculated MAC value as verification Data;Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated A.L.S. Breath is as verification data.
Additionally, after getting described operation requests, before obtaining the smart card operation information of smart card, also include: judge Whether described operation requests is the destination request prestored;If described operation requests is described destination request, then obtain intelligence The smart card operation information of card.
Additionally, described contact communication mode is included the communication mode connected by chip communication and/or is communicated even by magnetic stripe The communication mode connect.
Additionally, described smart card operation information also includes the object-type information that described smart card connects.
A kind of operation requests response method, including:
Smart card use method as described in arbitrary at least export as described in operation requests after process and as described in verification data;Eventually End obtains the operation requests after described process and described verification data;Described terminal at least send the operation requests after described process and Described verification data are to background system server;Background system server operation requests after obtaining described process and described verification After data, obtaining the terminal communication mode information of described terminal, wherein said terminal communication mode information is used for indicating described terminal The communication mode used when exporting described operation requests;Described background system server obtains identical with what smart card used Verification data generation strategy, and utilize described verification data generation strategy at least the terminal communication mode of described terminal to be carried out second Process, obtain check information;
Described verification data are compared with described check information;
If described verification data are identical with described check information, then perform the flow process of the operation requests after responding described process.
If additionally, described smart card operation information also includes the object-type information that described smart card connects, described terminal communication Mode information also includes the object-type information of terminal.
A kind of smart card, smart card includes that the first processing unit and/or the second processing unit, wherein said first processing unit are used for By the operation requests that contact communication mode gets, described smart card is carried out the first process, and described second processing unit is used for The operation requests obtained described smart card by contactless communication mode carries out the first process;Wherein: the first acquisition module, For obtaining operation requests;Determine module, for the acquisition mode according to described operation requests, determine and described operation requests is entered The object processing unit that row first processes, wherein said object processing unit is that described first processing unit or described second processes list Unit;Calling module, is used for calling described object processing unit and described operation requests is carried out the first process, the behaviour after being processed Ask;Second acquisition module, for obtaining the smart card operation information of smart card, wherein said smart card operation information is at least Including the smart card communications mode information that described object processing unit is corresponding;3rd acquisition module, is used for obtaining verification data genaration Strategy;First processing module, is used for utilizing described verification data generation strategy at least smart card operation information to be carried out the second process, Obtain verifying data;Output module, for performing the operation requests after at least exporting described process and the flow process of described verification data.
Additionally, described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding, Or, described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit Communication method information corresponding to smart card.
Additionally, described verification data include the first verification data and the second verification data, wherein: described first verification data are institutes State smart card and smart card operation information is carried out what the second process obtained;Described second verification data are that electronics is deposited by described smart card Depreciated volume, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out the Two process obtain.
Additionally, described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook connection Machine transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Additionally, described second is processed as encryption.
Additionally, described verification data are obtained by following either type, including: mode one: utilize MAC calculative strategy, At least smart card operation information is carried out MAC calculating, using calculated MAC value as verification data;Mode two: utilize HASH calculative strategy, at least carries out HASH calculating to smart card operation information, using calculated MAC value as verification Data;Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated A.L.S. Breath is as verification data.
Additionally, described smart card also includes: judge module, for judging whether described operation requests is that the target prestored please Ask;If described operation requests is described destination request, then obtain the smart card operation information of smart card.
Additionally, described contact communication mode is included the communication mode connected by chip communication and/or is communicated even by magnetic stripe The communication mode connect.
Additionally, described smart card operation information also includes the object-type information that described smart card connects.
A kind of operation requests response system, including: arbitrary described smart card at least exports the operation requests after described process With described verification data;The 3rd acquisition module in terminal, the operation requests after obtaining described process and described verification data; Sending module in described terminal, operation requests and described verification data after at least sending described process take to background system Business device;The 4th acquisition module in described background system server, for the operation requests after obtaining described process and described school After testing data, obtaining the terminal communication mode information of described terminal, wherein said terminal communication mode information is used for indicating described end Hold the communication mode used when exporting described operation requests;The 5th acquisition module in described background system server, is used for Obtain the identical verification data generation strategy used with smart card;The second processing module in described background system server, uses In utilizing described verification data generation strategy at least the terminal communication mode of described terminal to be carried out the second process, obtain check information;
Comparing module in described background system server, for comparing described verification data with described check information;Institute State the respond module in background system server, if identical with described check information for described verification data, then perform response The flow process of the operation requests after described process.
If additionally, described smart card operation information also includes the object-type information that described smart card connects, described terminal communication Mode information also includes the object-type information of terminal.
As seen from the above technical solution provided by the invention, in the present invention, smart card selects according to the acquisition mode of operation requests Select the object processing unit that different communication mode is corresponding, and invocation target processing unit first processes operation requests, and to this target The smart card communications mode information that processing unit is corresponding carries out the second process, obtains verifying data, and background system server is in verification Verification data are by the rear flow process performing response operation requests, thus prevent user profile to be stolen, and improve the safety of smart card, Ensure user profile and the safety of property.
Accompanying drawing explanation
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, the required accompanying drawing used in embodiment being described below It is briefly described, it should be apparent that, the accompanying drawing in describing below is only some embodiments of the present invention, for this area From the point of view of those of ordinary skill, on the premise of not paying creative work, it is also possible to obtain other accompanying drawings according to these accompanying drawings.
Fig. 1 is the structure chart that in existing application of IC cards, user profile is stolen;
The flow chart of the verification data output method that Fig. 2 provides for the present invention;
The structural representation of the smart card that Fig. 3 provides for the present invention;
The flow chart of the operation requests response method that Fig. 4 provides for the present invention;
The structural representation of the operation requests response system that Fig. 5 provides for the present invention.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, Obviously, described embodiment is only a part of embodiment of the present invention rather than whole embodiments.Reality based on the present invention Execute example, the every other embodiment that those of ordinary skill in the art are obtained under not making creative work premise, broadly fall into Protection scope of the present invention.
In describing the invention, it is to be understood that term " " center ", " longitudinally ", " laterally ", " on ", D score, " front ", Orientation or the position relationship of the instruction such as " afterwards ", "left", "right", " vertically ", " level ", " top ", " end ", " interior ", " outward " are base In orientation shown in the drawings or position relationship, it is for only for ease of the description present invention and simplifies description rather than instruction or hint institute The device that refers to or element must have specific orientation, with specific azimuth configuration and operation, therefore it is not intended that to the present invention Restriction.Additionally, term " first ", " second " are only used for describing purpose, and it is not intended that instruction or hint relative importance Or quantity or position.
In describing the invention, it should be noted that unless otherwise clearly defined and limited, term " install ", " being connected ", " connect " and should be interpreted broadly, connect for example, it may be fixing, it is also possible to be to removably connect, or be integrally connected;Permissible It is to be mechanically connected, it is also possible to be electrical connection;Can be to be joined directly together, it is also possible to be indirectly connected to by intermediary, can be two The connection of individual element internal.For the ordinary skill in the art, can understand that above-mentioned term is in the present invention with concrete condition In concrete meaning.
Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.
Fig. 2 illustrates the flow chart of the verification data output method of the present invention, sees Fig. 2, the verification data output side of the present invention Method, comprises the steps:
Step S201, smart card obtains operation requests;
Concrete, smart card can obtain operation requests from terminal, and the operation requests of acquisition can be transferred accounts, withdrawn the money, inquiry etc. is appointed Meaning operation requests.
Smart card can obtain operation requests by contact mode from terminal, it is also possible to obtains behaviour by contact mode from terminal Ask.
Certainly, if the user profile created in the application of IC cards as occurred in background technology is stolen, the intelligence of the present invention Card is to obtain operation information by antenna from the terminal of stealing shown in Fig. 1.
It addition, step S201 get operation requests after, step S203 utilization verify data generation strategy the most right Before smart card operation information carries out the second process, smart card can also carry out following operation: judges whether operation requests is in advance The destination request of storage;If operation requests is destination request, then perform to utilize verification data generation strategy at least smart card to be grasped The operation of the second process is carried out as information.Judging whether operation requests is the destination request prestored, this destination request can be Relate to the operation requests of user's property safety, such as: transfer accounts, the operation requests such as enchashment, if smart card judges this operation Request is destination request, then perform the operation utilizing verification data generation strategy that smart card operation information at least carries out the second process; Otherwise, if it is judged that this operation requests is not destination request, such as: the operation requests such as inquiry, owing to being not related to the wealth of user Produce safety, do not perform the operation utilizing verification data generation strategy that smart card operation information at least carries out the second process, thus carry The processing speed of this type of business high.
Step S202, smart card, according to the acquisition mode of operation requests, determines that the target that operation requests carries out the first process processes Unit;
Concrete, if the acquisition mode of operation requests is contact communication mode, it is determined that object processing unit is the first process Unit, if the acquisition mode of operation requests is contactless communication mode, it is determined that object processing unit is the second processing unit.
Step S203, smart card invocation target processing unit carries out the first process to operation requests, the operation requests after being processed;
Wherein in prior art, smart card is all applicable to this step to the processing mode of operation requests, and here is omitted.
Step S204, smart card obtains the smart card operation information of smart card, and wherein smart card operation information at least includes at target The smart card communications mode information that reason unit is corresponding;
Wherein, step S204 and step S202 do not have obvious time order and function order.
Concrete, smart card communications mode information can be used to indicating intelligent card and have employed contactless communication connection mode, or Indicating intelligent card have employed contact communication connection patterns.Certainly, contact communication connection patterns can include passing through chip communication Connect pattern and/or by the pattern that magnetic stripe is communicatively coupled, can be used to indicating intelligent card have employed contact communicate to connect The pattern connected by chip communication in pattern, or indicating intelligent card have employed in contact communication connection patterns to be entered by magnetic stripe Pattern of row communication connection etc..The communication connection patterns of indicating intelligent card can ensure that the information that smart card exports includes intelligence The communication connection patterns of card, even if the mode as described in background technology steals user profile, due in the information of smart card output Include the communication connection patterns of smart card, the i.e. information of smart card output to include and the communication connection mode stealing terminal, this Time, owing to smart card is with to steal the communication connection mode of terminal be contactless, and the communication connection side of imitated card and ATM Formula is contact, may determine that in the judgement of follow-up background system server the communication connection patterns that smart card uses be with Its communication connection mode receiving information is different, thus not performs the flow process of response operation requests, it is ensured that smart card is used The safety of family information.
It addition, smart card can also obtain, from its end obtaining operation information, the object type being connected with smart card, thus obtain Taking smart card pattern factor, the object type being connected with the smart card i.e. type of terminal, terminal may include that POS, ATM Machine, card reader/writer or brushing card device etc. arbitrarily can obtain the terminal of the information of smart card.This smart card pattern factor can refer to Show the type of terminal.Instruction terminal type can ensure that the information that smart card exports includes the type of connected terminal, i.e. Just the mode as described in background technology steals user profile, owing to including connected terminal in the information of smart card output Type, i.e. the information of smart card output includes the type of stealing terminal, now, due to steal the type of terminal often with ATM The terminal type such as machine is different, may determine that in the judgement of follow-up background system server the approach of smart card output information with just Often approach is different, thus not performs the flow process of response operation requests, it is ensured that the safety of smart card user information.
Step S205, smart card obtain verification data generation strategy, and utilize verification data generation strategy at least to smart card operation Information carries out the second process, obtains verifying data;
Concrete, smart card operation information can directly be processed by smart card, obtains verifying data, it is also possible to smart card Operation information is encrypted, and obtains verifying data.Directly processing simple, processing speed is high;Encryption safety is more preferable.
Such as: can one of in the following way obtain verifying data:
Mode one: smart card operation information is processed by smart card, obtains the first verification data, and to electronic bankbook remaining sum, Electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour process, and obtain Second verification data, wherein the combination of the first verification data and the second verification data is as verification data.Now, smart card is grasped Carry out processing as information and to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, Terminating machine numbering and exchange hour carry out process and identical processing mode can be used can also to use different processing modes, use Identical processing mode processing speed is high, uses different processing mode safeties more preferable.
Mode two: smart card to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering and exchange hour process, and obtain verifying data.
Mode three: smart card operation information is encrypted by smart card, obtains the first verification data, and to electronic bankbook Remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour are encrypted Processing, obtain the second verification data, wherein the combination of the first verification data and the second verification data is as verification data.Now, Smart card operation information is encrypted and to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering are encrypted with exchange hour can also be able to adopt to use identical encryption mode By different encryption modes, use identical encryption mode processing speed high, use different encryption modes to pacify Full property is more preferable.Certainly, smart card operation information can be encrypted, to electronic bankbook remaining sum, the online friendship of electronic bankbook Easily sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour are not encrypted, or to smart card Operation information is not encrypted, to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction Mark, terminating machine numbering and exchange hour are encrypted, as long as follow-up can realization carries out verification i.e. to the data after processing Can.
Mode four: smart card to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering and exchange hour are encrypted, and obtain verifying data.
Certainly, the encryption of aforesaid way three or mode four can be following any one:
If verification data generation strategy is MAC calculative strategy, then smart card at least carries out MAC meter to smart card operation information Calculate;At this point it is possible to using calculated MAC value as verification data, it is also possible to the part of calculated MAC value is made For verification data, using MAC calculative strategy, calculation is simple, and processing speed is high.
If verification data generation strategy is HASH calculative strategy, then smart card at least carries out HASH to smart card operation information Calculate;At this point it is possible to using calculated HASH value as verification data, it is also possible to by the portion of calculated HASH value Being allocated as, for verifying data, using HASH calculative strategy, safety is higher.
If verification data generation strategy is Sign Policies, then smart card at least carries out signature calculation to smart card operation information;This Time, can be using calculated signed data as verification data, it is also possible to using the part of calculated signed data as school Testing data, use Sign Policies, safety is high and is possible to prevent to deny.
Additionally, the smart card operation information of the present invention is in addition to including the smart card communications mode information that object processing unit is corresponding, Can also include: random number, this random number can be to arrange randomizer within a smart card, in order to the most all generates one Different random number, it is ensured that the follow-up verification data obtained when processing smart card operation information are the most different, thus prevent Verification data are cracked.Certainly, so that background system server is obtained in that this random number, intelligence when verification verification data This random number together can be exported when can be stuck in output information;Can also be to arrange in background system server to set in smart card The randomizer put uses identical algorithm to generate random number, and the former makes verification be more prone to, and the latter makes to verify more Safety.
The smart card operation information processing of the present invention includes outside the smart card communications mode information that object processing unit is corresponding, it is also possible to Including transaction counter, the count value that the enumerator that this transaction counter can be provided in smart card produces, in intelligence every time During card output data, this enumerator performs counting operation according to predetermined manner, and exports transaction counter, thus ensure that follow-up The verification data obtained when processing smart card operation information are the most different, thus prevent verifying data and be cracked.Certainly, for Making background system server obtain this transaction counter when verification verification data, this transaction counter can be that smart card exists Together export during output information, it is also possible to be that background system server is adopted when often completing once relevant to this smart card business Counting with the method for counting identical with this smart card, it is thus achieved that this transaction counter, the former makes verification be more prone to, the latter Make to verify safer.
Certainly, the smart card operation information of the present invention can with include smart card communications mode information that object processing unit is corresponding, Random number and transaction counter, so that safety is higher.
Step S206, smart card perform the operation requests after at least output processes and the flow process of verification data.
Concrete, these verification data, after obtaining verification data, are exported to terminal, in order to it is defeated that terminal will verify data by smart card Go out and verify to background system server, only verify and just perform relevant operation by rear, it is ensured that smart card user information Safety with property.
As can be seen here, using the operation requests output intent of the present invention, in the present invention, smart card is according to the acquisition mode of operation requests Select the object processing unit that different communication mode is corresponding, and invocation target processing unit processes operation requests, and to this target The smart card communications mode information that processing unit is corresponding processes, and obtains verifying data, thus prevents user profile to be stolen, Improve the safety of smart card, it is ensured that user profile and the safety of property.
Fig. 3 illustrates the structural representation of smart card based on aforesaid operations request output intent, owing to the smart card of the present invention is adopted With above-mentioned operation requests output intent, therefore the most too much repeat at this, only its structure be briefly described:
Seeing Fig. 3, the smart card 30 of the present invention includes the first processing unit and/or the second processing unit, wherein the first processing unit For smart card is carried out the first process by the operation requests that contact communication mode gets, the second processing unit is for intelligence The operation requests obtained by contactless communication mode can be blocked and carry out the first process;Wherein:
First acquisition module 301, is used for obtaining operation requests;
Determine module 302, for the acquisition mode according to operation requests, determine and operation requests is carried out at the target of the first process Reason unit;
Calling module 303, carries out the first process for invocation target processing unit to operation requests, and the operation after being processed please Ask;
Second acquisition module 304, for obtaining the smart card operation information of smart card, wherein smart card operation information at least includes The smart card communications mode information that object processing unit is corresponding;
First processing module 305, is used for obtaining verification data generation strategy, and utilizes verification data generation strategy at least to intelligence Card operation information carries out the second process, obtains verifying data.
Output module 306, for performing the operation requests after at least output processes and the flow process of verification data.
Wherein, object processing unit information includes the communication method information that smart card that object processing unit is corresponding is corresponding, or, Object processing unit information includes that random number is corresponding with the smart card that in transaction counter, at least one is corresponding with object processing unit Communication method information.
Wherein, verification data include the first verification data and the second verification data, wherein:
First verification data are that smart card carries out the second process to smart card operation information and obtains;
Second verification data are that smart card is to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction Mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Wherein, verification data be smart card to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, Dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained
Wherein, second it is processed as encryption.
Wherein, verification data are obtained by following either type, including:
Mode one: utilize MAC calculative strategy, at least smart card operation information is carried out MAC calculating, by calculated MAC value is as verification data;
Mode two: utilize HASH calculative strategy, at least smart card operation information is carried out HASH calculating, by calculated MAC value is as verification data;
Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated signing messages As verification data.
Wherein, smart card also includes:
Judge module, for judging whether operation requests is the destination request prestored;If operation requests is destination request, Then obtain the smart card operation information of smart card.
Wherein, contact communication mode is included the communication mode connected by chip communication and/or is communicatively coupled by magnetic stripe Communication mode.
Wherein, smart card operation information also includes the object-type information that smart card connects.
Certainly, the present invention is only to the simple division of functional module in smart card, but is not limited to above-mentioned division, such as: this The function that the modules of invention smart card performs can also be divided into some submodules and perform correlation function, such as: processing module can To be divided into the process of the first process submodule executive mode one, second processes the process etc. of submodule executive mode two;It addition, this The modules of invention smart card can also be integrated into a module and perform correlation function etc..As long as it is equal to have employed the solution of the present invention Should be within the scope of the present invention.
Fig. 4 is the flow chart illustrating operation requests response method, sees Fig. 4, the operation requests response method of the present invention, bag Include:
Smart card uses above-mentioned steps S201 to the method at least output verification data of step S206 output verification data;At this not Repeat again.
Step S207, terminal acquisition process after operation requests and verification data, and at least transmission process after operation requests and school Test data to background system server;
Concrete, terminal can be ATM, POS, the smart mobile phone of connection card reader or panel computer or PC, company Connect smart mobile phone or any form of terminal such as panel computer or PC of antenna.
After step S208, background system server operation requests after being processed and verification data, the terminal obtaining terminal is led to Letter mode information, the communication mode that wherein terminal communication mode information is used when output function is asked for indicating terminal;
Concrete, background system server can be the server of bank, to realize the related service of bank, it is also possible to be the 3rd The server of side, such as mass transit card server.If the clothes that all kinds of business that can realize being closely related with user profile are used Business device can be all the background system server of the present invention.
Background system server, can be according to the intelligence of smart card pattern factor instruction after receiving verification data and operation requests The communication connection patterns of card, or the two kinds of situations of the object type being connected with smart card according to the instruction of smart card pattern factor, point The most in the following way verification data are verified:
Step S209, background system server obtains the identical verification data generation strategy used with smart card, and utilizes verification Data genaration strategy at least carries out the second process to the terminal communication mode of terminal, obtains check information.
Step S210, verification data are compared by background system server with check information, if verification data and check information Identical, then perform the flow process of the operation requests after response processes.
For example, if the scene stealing user profile in creating such as background technology, then due to smart card be connected sky The terminal of stealing of line is connected, and includes contactless communication pattern, but copy what card connected in the verification data of smart card output Terminal is ATM, and now the communication mode of the terminal that background system server obtains is contact communication pattern, therefore, backstage System server verification verification data can not be passed through, it is ensured that the safety of user profile.
Optionally, if smart card operation information also includes the object-type information that smart card connects, terminal communication mode information is also Including the object-type information of terminal, wherein the object type of terminal be terminal be ATM, terminal be that POS, terminal are The type of the terminals such as the smart mobile phone of connection card reader.Now, if the field stealing user profile in creating such as background technology Scape, then owing to smart card is connected with the terminal being connected antenna, includes this in the verification data of smart card output and steals terminal Type, but the terminal that imitated card connects is ATM, and the object type of the terminal now got due to background server is ATM, thus verification can not be passed through, it is ensured that the safety of user profile.
As can be seen here, in the present invention, smart card selects at target corresponding to different communication mode according to the acquisition mode of operation requests Reason unit, and invocation target processing unit processes operation requests, and the smart card communications mode that this object processing unit is corresponding is believed Breath carries out the second process, obtains verifying data, and background system server performs response operation requests in verification verification data by rear Flow process, thus prevent user profile to be stolen, improve the safety of smart card, it is ensured that user profile and the safety of property.
Fig. 5 illustrates the structural representation of operation requests response system, sees Fig. 5, the operation requests response system of the present invention, Including: terminal 40, background system server 50 and above-mentioned smart card 30 as shown in Figure 3, owing to smart card 30 is above-mentioned Smart card 30, therefore, does not repeats them here.The most only terminal 40 and background system server 50 are illustrated.
Operation requests after processing such as at least output of arbitrary smart card and verification data;
The 3rd acquisition module 401 in terminal 40, the operation requests after obtaining process and verification data;
Sending module 402 in terminal 40, the operation requests after at least transmission processes and verification data are to background system service Device;
The 4th acquisition module 501 in background system server, after the operation requests after being processed and verification data, Obtaining the terminal communication mode information of terminal, wherein terminal communication mode information is used for indicating terminal to be made when output function is asked Communication mode;
The second processing module 502 in background system server, for utilizing the verification data generation strategy terminal at least to terminal Communication mode carries out the second process, obtains check information;
Comparing module 503 in background system server, for comparing verification data with check information;
Respond module 504 in background system server, if identical with check information for verification data, then performs at response The flow process of the operation requests after reason.
Wherein, if smart card operation information also includes that the object-type information that smart card connects, terminal communication mode information are also wrapped Include the object-type information of terminal.
As can be seen here, owing to smart card generates verification data, background system service according to the smart card operation information obtaining smart card Device responds the flow process of operation requests in verification verification data by rear execution, thus prevents user profile to be stolen, and improves smart card Safety, it is ensured that user profile and the safety of property.
Certainly, the present invention is only to the simple division of functional module in smart card and background system server, but on being not limited to State division, such as: the function that the modules of smart card of the present invention and background system server performs can also be divided into some submodules Block execution correlation function, such as: the processing module of smart card can be divided into the first of the first process submodule executive mode one to process, Second the first process etc. processing submodule executive mode two;The correction verification module of background system server is segmented into the first syndrome Smart card pattern factor is verified by module when the communication connection patterns of the smart card of instruction, and the second syndrome module is to intelligence The mode card factor verifies when the object type that instruction is connected with smart card;It addition, smart card of the present invention and background system clothes The modules of business device can also be integrated into a module and perform correlation function etc..All should be at this as long as have employed the solution of the present invention In the protection domain of invention.
Present invention also offers a kind of smart card system, this smart card system and the above-mentioned verification data output method of employing, at this not An another explanation, is only briefly described this smart card system, and this smart card system includes: communication interface and intelligence the core of the card Sheet, wherein,
Communication interface is used for obtaining operation requests, and performs the operation requests after at least output processes and the flow process of verification data;
Intelligent card chip, for the acquisition mode according to operation requests, determines the object processing unit processing operation requests, And invocation target processing unit carries out the first process to operation requests, the operation requests after being processed;And, obtain smart card Smart card operation information, wherein smart card operation information at least includes the smart card communications mode information that object processing unit is corresponding, And obtain verification data generation strategy, utilize verification data generation strategy at least smart card operation information to be carried out the second process, To verification data.
Wherein, intelligent card chip can one of in the following way obtain verification data:
Mode one: smart card operation information is processed by intelligent card chip, obtains the first verification data, and to electronic bankbook Remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour process, Obtaining the second verification data, wherein the combination of the first verification data and the second verification data is as verification data.
Mode two: intelligent card chip is to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, transaction The amount of money, type of transaction mark, terminating machine numbering and exchange hour process, and obtain verifying data.
Mode three: smart card operation information is encrypted by intelligent card chip, obtains the first verification data, and to electronics Passbook balance, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour are carried out Encryption, obtains the second verification data, and wherein the combination of the first verification data and the second verification data is as verification data.When So, smart card operation information can be encrypted, to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, transaction The amount of money, type of transaction mark, terminating machine numbering and exchange hour are not encrypted, or do not enter smart card operation information Row encryption, to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine Numbering and exchange hour are encrypted, as long as the data after processing are verified by follow-up can realization.
Mode four: intelligent card chip is to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, transaction The amount of money, type of transaction mark, terminating machine numbering and exchange hour are encrypted, and obtain verifying data.
Certainly, the encryption during above-mentioned intelligent card chip obtains the verification mode three of data or mode four can be following arbitrary Kind:
If verification data generation strategy is MAC calculative strategy, then smart card operation information is at least carried out by intelligent card chip MAC calculates;
If verification data generation strategy is HASH calculative strategy, then smart card operation information is at least carried out by intelligent card chip HASH calculates;
If verification data generation strategy is Sign Policies, then intelligent card chip at least carries out signature calculation to smart card operation information.
As can be seen here, use the smart card of the present invention, owing to smart card system is raw according to the smart card operation information obtaining smart card Become verification data, thus prevent user profile to be stolen, improve the safety of smart card, it is ensured that user profile and the safety of property.
It addition, the intelligent card chip of the present invention is after communication interface gets operation requests, also judge whether operation requests is in advance The destination request of storage, if it is determined that operation requests is destination request, then utilizes verification data generation strategy at least to grasp smart card The second process is carried out as information.Thus improve the processing speed of the business using smart card.
The mode of operation of the smart card of the present invention can include the communication connection patterns of smart card, the communication connection patterns bag of smart card Including contactless communication connection mode and/or contact communication connection patterns, contact communication connection patterns includes passing through chip communication The pattern connected and/or the pattern being communicatively coupled by magnetic stripe.
It addition, smart card operation information can also include: random number and/or transaction counter.
Present invention also offers a kind of operation requests response computer system, including: terminal, background system server and above-mentioned Smart card system, owing to smart card system is above-mentioned smart card system, therefore, do not repeat them here.The most only to terminal with And background system server illustrates.
Terminal, for obtain above-mentioned smart card system output process after operation requests and verification data, and to major general process after Operation requests and verification data send to background system server;
Background system server includes communication module and background system server CPU;
Communication module, for receiving verification data and the operation requests that terminal sends;
Background system server CPU, after the operation requests after being processed and verification data, the terminal obtaining terminal is led to Letter mode information, the communication mode that wherein terminal communication mode information is used when output function is asked for indicating terminal;
The 5th acquisition module in background system server, for obtaining the identical verification data generation strategy used with smart card, Utilize verification data generation strategy at least the terminal communication mode of terminal to be carried out the second process, obtain check information, then will verification Data are compared with check information, if verification data are identical with check information, then perform the operation requests after response processes Flow process.
If smart card operation information also includes that the object-type information that smart card connects, terminal communication mode information also include terminal Object-type information.
As can be seen here, owing to smart card system generates verification data, background system according to the smart card operation information obtaining smart card Server responds the flow process of operation requests in verification verification data by rear execution, thus prevents user profile to be stolen, and improves intelligence The safety that can block, it is ensured that user profile and the safety of property.
Any process described otherwise above or method describe and are construed as in flow chart or at this, represent include one or The module of code, fragment or the part of the executable instruction of the more steps for realizing specific logical function or process, and The scope of the preferred embodiment of the present invention includes other realization, wherein can not be by order that is shown or that discuss, including root According to involved function by basic mode simultaneously or in the opposite order, performing function, this should be by embodiments of the invention institute Belong to those skilled in the art to be understood.
Should be appreciated that each several part of the present invention can realize by hardware, software, firmware or combinations thereof.In above-mentioned enforcement In mode, multiple steps or method can be with storing the software or firmware that in memory and be performed by suitable instruction execution system Realize.Such as, if realized with hardware, with the most the same, available following technology well known in the art In any one or their combination realize: have and patrol for the discrete of logic gates that data signal is realized logic function Collect circuit, there is the special IC of suitable combination logic gate circuit, programmable gate array (PGA), field programmable gate Array (FPGA) etc..
Those skilled in the art are appreciated that it is permissible for realizing all or part of step that above-described embodiment method carries Instructing relevant hardware by program to complete, described program can be stored in a kind of computer-readable recording medium, this journey Sequence upon execution, including one or a combination set of the step of embodiment of the method.
Additionally, each functional unit in each embodiment of the present invention can be integrated in a processing module, it is also possible to be each Unit is individually physically present, it is also possible to two or more unit are integrated in a module.Above-mentioned integrated module is the most permissible The form using hardware realizes, it would however also be possible to employ the form of software function module realizes.If described integrated module is with software merit Can the form of module realize and as independent production marketing or when using, it is also possible to be stored in the storage of embodied on computer readable and be situated between In matter.
Storage medium mentioned above can be read only memory, disk or CD etc..
In the description of this specification, reference term " embodiment ", " some embodiments ", " example ", " concrete example ", Or specific features, structure, material or the feature that the description of " some examples " etc. means to combine this embodiment or example describes comprises In at least one embodiment or example of the present invention.In this manual, the schematic representation to above-mentioned term not necessarily refers to It is identical embodiment or example.And, the specific features of description, structure, material or feature can at any one or Multiple embodiments or example combine in an appropriate manner.
Although above it has been shown and described that embodiments of the invention, it is to be understood that above-described embodiment is exemplary, Being not considered as limiting the invention, those of ordinary skill in the art is in the case of without departing from the principle of the present invention and objective Above-described embodiment can be changed within the scope of the invention, revise, replace and modification.The scope of the present invention is by appended power Profit requires and equivalent limits.

Claims (32)

1. an operation requests output intent, it is characterised in that smart card includes the first processing unit and/or the second processing unit, Wherein said first processing unit is carried out at first for the operation requests got described smart card by contact communication mode Reason, described second processing unit is carried out at first for the operation requests obtained described smart card by contactless communication mode Reason;The method comprise the steps that
Smart card obtains operation requests;
Described smart card, according to the acquisition mode of described operation requests, determines and carries out described operation requests at the target of the first process Reason unit, wherein said object processing unit is described first processing unit or described second processing unit;
Described smart card calls described object processing unit and described operation requests is carried out the first process, and the operation after being processed please Ask;And,
Described smart card obtains the smart card operation information of smart card, and wherein said smart card operation information at least includes described target The smart card communications mode information that processing unit is corresponding;
Described smart card obtains verification data generation strategy, and utilizes described verification data generation strategy at least to believe smart card operation Breath carries out the second process, obtains verifying data;
Described smart card performs the operation requests after at least exporting described process and the flow process of described verification data.
Method the most according to claim 1, it is characterised in that:
Described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding, or,
Described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit The communication method information that smart card is corresponding.
Method the most according to claim 1, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Method the most according to claim 2, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Method the most according to claim 1, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Method the most according to claim 2, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
7. according to the arbitrary described method of Claims 1-4, it is characterised in that described second is processed as encryption.
Method the most according to claim 7, it is characterised in that described verification data are obtained by following either type, Including:
Mode one: utilize MAC calculative strategy, at least smart card operation information is carried out MAC calculating, by calculated MAC value is as verification data;
Mode two: utilize HASH calculative strategy, at least smart card operation information is carried out HASH calculating, by calculated MAC value is as verification data;
Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated signing messages As verification data.
Method the most according to claim 1, it is characterised in that after getting described operation requests, is obtaining smart card Smart card operation information before, also include:
Judge whether described operation requests is the destination request prestored;
If described operation requests is described destination request, then obtain the smart card operation information of smart card.
10. according to the arbitrary described method in claim 1 to 6,8 or 9, it is characterised in that described contact communication mode bag Include the communication mode connected by chip communication and/or the communication mode being communicatively coupled by magnetic stripe.
11. methods according to claim 7, it is characterised in that described contact communication mode includes passing through chip communication The communication mode connected and/or the communication mode being communicatively coupled by magnetic stripe.
12. according to method described in any one of claim 1 to 6,8 or 9, it is characterised in that described smart card operation information Also include the object-type information that described smart card connects.
13. methods according to claim 7, it is characterised in that described smart card operation information also includes described smart card The object-type information connected.
14. methods according to claim 10, it is characterised in that described smart card operation information also includes described smart card The object-type information connected.
15. 1 kinds of operation requests response methods, it is characterised in that including:
The arbitrary described method of smart card employing as claimed in claim 1 to 14 at least exports the operation requests after described process and institute State verification data;
Terminal obtains the operation requests after described process and described verification data;
Described terminal at least sends the operation requests after described process and described verification data to background system server;
After background system server operation requests after obtaining described process and described verification data, obtain the terminal of described terminal Communication method information, wherein said terminal communication mode information is used for indicating described terminal to be used when exporting described operation requests Communication mode;
Described background system server obtains the identical verification data generation strategy used with smart card, and utilizes described check number At least the terminal communication mode of described terminal is carried out the second process according to generation strategy, obtain check information;
Described verification data are compared with described check information;
If described verification data are identical with described check information, then perform the flow process of the operation requests after responding described process.
16. methods according to claim 15, it is characterised in that if described smart card operation information also includes described intelligence Can block the object-type information connected, described terminal communication mode information also includes the object-type information of terminal.
17. 1 kinds of smart cards, it is characterised in that smart card includes the first processing unit and/or the second processing unit, wherein said First processing unit is for carrying out the first process to described smart card by the operation requests that contact communication mode gets, described Second processing unit carries out the first process for the operation requests obtained described smart card by contactless communication mode;Wherein:
First acquisition module, is used for obtaining operation requests;
Determine module, for the acquisition mode according to described operation requests, determine the mesh that described operation requests is carried out the first process Mark processing unit, wherein said object processing unit is described first processing unit or described second processing unit;
Calling module, is used for calling described object processing unit and described operation requests is carried out the first process, the behaviour after being processed Ask;
Second acquisition module, for obtaining the smart card operation information of smart card, wherein said smart card operation information at least includes The smart card communications mode information that described object processing unit is corresponding;
3rd acquisition module, is used for obtaining verification data generation strategy;
First processing module, is used for utilizing described verification data generation strategy at least smart card operation information to be carried out the second process, Obtain verifying data;
Output module, for performing the operation requests after at least exporting described process and the flow process of described verification data.
18. smart cards according to claim 17, it is characterised in that:
Described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding, or, Described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit The communication method information that smart card is corresponding.
19. smart cards according to claim 17, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
20. smart cards according to claim 18, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
21. smart cards according to claim 17, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
22. smart cards according to claim 18, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
23. according to the arbitrary described smart card of claim 17 to 22, it is characterised in that described second is processed as encryption.
24. smart cards according to claim 23, it is characterised in that described verification data are to be obtained by following either type Arrive, including:
Mode one: utilize MAC calculative strategy, at least smart card operation information is carried out MAC calculating, by calculated MAC value is as verification data;
Mode two: utilize HASH calculative strategy, at least smart card operation information is carried out HASH calculating, by calculated MAC value is as verification data;
Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated signing messages As verification data.
25. smart cards according to claim 17, it is characterised in that described smart card also includes:
Judge module, for judging whether described operation requests is the destination request prestored;If described operation requests is institute State destination request, then obtain the smart card operation information of smart card.
26. according to claim 17 to 22,24,25 arbitrary described smart cards, it is characterised in that described contact communication Mode includes the communication mode connected by chip communication and/or the communication mode being communicatively coupled by magnetic stripe.
27. smart cards according to claim 23, it is characterised in that described contact communication mode includes being led to by chip Believe the communication mode connected and/or the communication mode being communicatively coupled by magnetic stripe.
28. according to the smart card described in claim 17 to 22,24,25 any one, it is characterised in that described smart card is grasped Make the object-type information that information also includes that described smart card connects.
29. smart cards according to claim 23, it is characterised in that described smart card operation information also includes described intelligence The object-type information that card connects.
30. smart cards according to claim 26, it is characterised in that described smart card operation information also includes described intelligence The object-type information that card connects.
31. 1 kinds of operation requests response systems, it is characterised in that including:
As claimed in claim 17 to 30 arbitrary described smart cards at least export the operation requests after described process and described verification Data;
The 3rd acquisition module in terminal, the operation requests after obtaining described process and described verification data;
Sending module in described terminal, operation requests and described verification data after at least sending described process to backstage are System server;
The 4th acquisition module in described background system server, for the operation requests after obtaining described process and described verification After data, obtaining the terminal communication mode information of described terminal, wherein said terminal communication mode information is used for indicating described terminal The communication mode used when exporting described operation requests;
The 5th acquisition module in described background system server, for obtaining the identical verification data genaration used with smart card Strategy;
The second processing module in described background system server, is used for utilizing described verification data generation strategy at least to described end The terminal communication mode of end carries out the second process, obtains check information;
Comparing module in described background system server, for comparing described verification data with described check information;
Respond module in described background system server, if identical with described check information for described verification data, then holds Row responds the flow process of the operation requests after described process.
32. systems according to claim 31, it is characterised in that if described smart card operation information also includes described intelligence Can block the object-type information connected, described terminal communication mode information also includes the object-type information of terminal.
CN201310300386.3A 2013-07-10 2013-07-17 Smart card and operation requests output intent, operation requests response method and system Active CN103839330B (en)

Priority Applications (8)

Application Number Priority Date Filing Date Title
CN201310300386.3A CN103839330B (en) 2013-07-17 2013-07-17 Smart card and operation requests output intent, operation requests response method and system
US14/903,159 US20160328712A1 (en) 2013-07-10 2014-07-04 Smart card method for outputting validation data and method for responding to operation request
PCT/CN2014/081700 WO2015003585A1 (en) 2013-07-10 2014-07-04 Smart card, operation request outputting method, operation request responding method and system
JP2016524667A JP6236151B2 (en) 2013-07-10 2014-07-04 Smart card, verification data output method, operation request response method and system
EP14823389.3A EP3021296A4 (en) 2013-07-10 2014-07-04 Smart card, verification data outputting method, and operation request responding method and system
PCT/CN2014/081705 WO2015003587A1 (en) 2013-07-10 2014-07-04 Smart card, verification data outputting method, and operation request responding method and system
HK14112061A HK1198599A1 (en) 2013-07-17 2014-11-29 Smart card, operation request output method and operation request response method and system
US16/444,250 US11151574B2 (en) 2013-07-10 2019-06-18 Smart card, method for outputting validation data, and method for responding to operation request

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201310300386.3A CN103839330B (en) 2013-07-17 2013-07-17 Smart card and operation requests output intent, operation requests response method and system

Publications (2)

Publication Number Publication Date
CN103839330A CN103839330A (en) 2014-06-04
CN103839330B true CN103839330B (en) 2016-12-28

Family

ID=50802789

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201310300386.3A Active CN103839330B (en) 2013-07-10 2013-07-17 Smart card and operation requests output intent, operation requests response method and system

Country Status (2)

Country Link
CN (1) CN103839330B (en)
HK (1) HK1198599A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP6236151B2 (en) * 2013-07-10 2017-11-22 天地融科技股▲ふん▼有限公司 Smart card, verification data output method, operation request response method and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1914938A1 (en) * 2005-08-11 2008-04-23 Beijing Watch Data System Co. Ltd. A method of physical authentication and a digital device
CN101281610A (en) * 2008-05-23 2008-10-08 北京握奇数据系统有限公司 Double-interface smart card and method for starting non-contact application
CN101673434A (en) * 2009-09-29 2010-03-17 上海捷惠达网络科技有限公司 Secret key management method of IC card terminal

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1914938A1 (en) * 2005-08-11 2008-04-23 Beijing Watch Data System Co. Ltd. A method of physical authentication and a digital device
CN101281610A (en) * 2008-05-23 2008-10-08 北京握奇数据系统有限公司 Double-interface smart card and method for starting non-contact application
CN101673434A (en) * 2009-09-29 2010-03-17 上海捷惠达网络科技有限公司 Secret key management method of IC card terminal

Also Published As

Publication number Publication date
CN103839330A (en) 2014-06-04
HK1198599A1 (en) 2015-04-30

Similar Documents

Publication Publication Date Title
CN101923660B (en) Dynamic password identity authorization system and method based on RFID
CN103338188B (en) A kind of dynamic authentication method of client side being applicable to mobile cloud
CN104217327B (en) A kind of financial IC card internet terminal and its method of commerce
EP3017580B1 (en) Signatures for near field communications
CN102737311A (en) Internet bank security authentication method and system
US20150142666A1 (en) Authentication service
CN102271040B (en) Identity verifying system and method
CN102238193A (en) Data authentication method and system using same
CN104933565A (en) IC card transaction method and IC card transaction system
CN111738725A (en) Cross-border resource transfer authenticity auditing method and device and electronic equipment
CN103516517A (en) Production method, RFID transponder, authentication method, and reader device
CN103107888B (en) The identity identifying method that the dynamic multi-attribute of facing moving terminal is multi-level
CN106033571A (en) Trading method of electronic signature devices, electronic signature devices and trading system
CN108880789B (en) Hardware product anti-counterfeiting tracing method, node equipment and system
CN107657441A (en) Self-service dealing method, system, server and mobile terminal
CN105631662A (en) NFC payment method, NFC payment system and mobile terminal
CN109389396A (en) Transportation card account automatic charging method, device, equipment and computer storage medium
CN205015906U (en) Anti -fake verification system of electron certificate
CN106709534A (en) Anti-counterfeit verification system of electronic certificate
CN103839322B (en) Intelligent card, verification data output method, operation request response method and system
CN108334927A (en) A kind of NFC receives single label and its method of payment
CN103138919A (en) Front-end secret key filling system and method of secret key filling
CN103136667B (en) There is the smart card of electronic signature functionality, smart card transaction system and method
CN103839330B (en) Smart card and operation requests output intent, operation requests response method and system
CN104102934A (en) Portable IC card read-write device, system and method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
REG Reference to a national code

Ref country code: HK

Ref legal event code: DE

Ref document number: 1198599

Country of ref document: HK

C14 Grant of patent or utility model
GR01 Patent grant
REG Reference to a national code

Ref country code: HK

Ref legal event code: GR

Ref document number: 1198599

Country of ref document: HK