CN103839330B - Smart card and operation requests output intent, operation requests response method and system - Google Patents
Smart card and operation requests output intent, operation requests response method and system Download PDFInfo
- Publication number
- CN103839330B CN103839330B CN201310300386.3A CN201310300386A CN103839330B CN 103839330 B CN103839330 B CN 103839330B CN 201310300386 A CN201310300386 A CN 201310300386A CN 103839330 B CN103839330 B CN 103839330B
- Authority
- CN
- China
- Prior art keywords
- smart card
- verification data
- information
- operation requests
- processing unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention provides a kind of smart card and operation requests output intent, operation requests response method and system, wherein, operation requests output intent, smart card includes the first processing unit and/or the second processing unit, first processing unit is processed for the operation requests got smart card by contact communication mode, and the second processing unit is processed for the operation requests obtained smart card by contactless communication mode;Wherein: smart card obtains operation requests;Acquisition mode according to operation requests, determines the object processing unit that operation requests is corresponding, and wherein object processing unit is the first processing unit or the second processing unit;Operation requests is processed by invocation target processing unit, the operation requests after being processed;And, obtain the smart card operation information of smart card, wherein smart card operation information at least includes the smart card communications mode information that object processing unit is corresponding;Perform the operation requests after at least output processes and the flow process of verification data.
Description
Technical field
The present invention relates to a kind of field of information security technology, particularly relate to a kind of smart card and operation requests output intent, operate and ask
Ask response method and system.
Background technology
Existing bank is issued to the card of user and is mostly magnetic stripe card, however magnetic stripe card itself there are the following problems: once user
Account and trading password are acquired, then can replicate a magnetic stripe card, thus steal user profile, cause user's property loss.
Therefore, it is more likely to now use IC-card (smart card) to replace magnetic stripe card to guarantee the safety of user profile and property.Existing
Some smartcard internal are provided with chip, and this chip includes the pattern of two kinds of cards operation: contact operator scheme and noncontact
Formula operator scheme, which kind of operator scheme chip uses when determining and carry out information transmission with the external world, and which kind of agreement of intrinsic call participates in letter
Breath transmission, information to be output, when the information of carrying out is transmitted, can be processed by chip, the operation such as including encryption or signature,
Further, encrypt or used key of signing can not be read and replicate, thus, use smart card replace magnetic stripe card can in case
Only card is replicated, even if obtaining account and the trading password of user, can not copy same card, therefore can be from
Ensure user profile and the safety of property to a certain extent.
But, if existing smart card has been acquired account and the trading password of user, potential safety hazard, Fig. 1 still can be there is
Illustrating the existing smart card of employing and carry out the structure chart that user profile is stolen, see Fig. 1, ATM 101 is by wired or nothing
Line mode is connected to the server 102 of bank, such that it is able to realize the corresponding business of bank.Under normal circumstances, user holds
The business such as smart card 106 is inserted directly into ATM 101 thus realization is transferred accounts, enchashment.But, if stealer is provided with one
Imitated card 103, by these imitated card 103 insertion ATMs, is only used for imitating the smart card 106 that user holds and inserts ATM
101, receive the information of ATM 101 transmission and send information to ATM 101, now, stealer is by this imitated card
The information transmission that the ATM 101 that 103 are wirelessly received sends steals terminal to the first of stealer's setting
In 104, this first steals terminal 104 for receiving the information of imitated card 103 transmission and sending information to imitated card 103,
Card 103 can be copied by the imitated card 103 of wired connection or wireless connections, first steal terminal 104 by the Internet or
Wireless networks etc. connect second steals terminal 105, and second steals terminal 105 for mobile terminal, can carry with stolen taker,
And its connection has power radio frequency antenna 106, and the smart card 107 held by the user of antenna 106 scanning antenna periphery, by
Can only passively receive information in existing smart card 107, therefore, second steals terminal 105 is easy to by antenna 106 and use
The smart card 107 that family is held sets up wireless connections, and now, second steals the smart card 107 that terminal 105 can be held from user
Middle acquisition smart card information, and the smart card information got is stolen end by the transmission such as the Internet or wireless network to first
End 104, thus by imitated card 103, the smart card information got is sent to ATM 101, now, ATM obtains
After having arrived the real information of the smart card 107 that user holds, after ATM 101 inputs the trading password of this smart card 107,
Then can directly carry out transferring accounts or the business such as enchashment.As can be seen here, by this kind of mode, existing smart card once account is believed
Breath and trading password are revealed, and can cause the massive losses of user's property, and cannot avoid, owing to the mobility of stealer more cannot
Inquiry stealer's identity.
Summary of the invention
Present invention seek to address that the security hidden trouble that existing smart card exists, it is provided that a kind of smart card and operation requests output intent,
Operation requests response method and system.
For reaching above-mentioned purpose, technical scheme is specifically achieved in that
A kind of operation requests output intent, smart card includes the first processing unit and/or the second processing unit, at wherein said first
Reason unit is for carrying out the first process to described smart card by the operation requests that contact communication mode gets, at described second
Reason unit carries out the first process for the operation requests obtained described smart card by contactless communication mode;Wherein said side
Method includes: smart card obtains operation requests;Described smart card, according to the acquisition mode of described operation requests, determines described operation
Request carries out the object processing unit of the first process, and wherein said object processing unit is described first processing unit or described second
Processing unit;Described smart card calls described object processing unit and described operation requests is carried out the first process, after being processed
Operation requests;And, described smart card obtains the smart card operation information of smart card, and wherein said smart card operation information is at least
Including the smart card communications mode information that described object processing unit is corresponding;Described smart card obtains verification data generation strategy, and
Utilize described verification data generation strategy at least smart card operation information to be carried out the second process, obtain verifying data;Described intelligence
Card performs the operation requests after at least exporting described process and the flow process of described verification data.
Additionally, described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding,
Or, described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit
Communication method information corresponding to smart card.
Additionally, described verification data include the first verification data and the second verification data, wherein: described first verification data are institutes
State smart card and smart card operation information is carried out what the second process obtained;Described second verification data are that electronics is deposited by described smart card
Depreciated volume, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out the
Two process obtain.
Additionally, described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook connection
Machine transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Additionally, described second is processed as encryption.
Additionally, described verification data are obtained by following either type, including: mode one: utilize MAC calculative strategy,
At least smart card operation information is carried out MAC calculating, using calculated MAC value as verification data;Mode two: utilize
HASH calculative strategy, at least carries out HASH calculating to smart card operation information, using calculated MAC value as verification
Data;Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated A.L.S.
Breath is as verification data.
Additionally, after getting described operation requests, before obtaining the smart card operation information of smart card, also include: judge
Whether described operation requests is the destination request prestored;If described operation requests is described destination request, then obtain intelligence
The smart card operation information of card.
Additionally, described contact communication mode is included the communication mode connected by chip communication and/or is communicated even by magnetic stripe
The communication mode connect.
Additionally, described smart card operation information also includes the object-type information that described smart card connects.
A kind of operation requests response method, including:
Smart card use method as described in arbitrary at least export as described in operation requests after process and as described in verification data;Eventually
End obtains the operation requests after described process and described verification data;Described terminal at least send the operation requests after described process and
Described verification data are to background system server;Background system server operation requests after obtaining described process and described verification
After data, obtaining the terminal communication mode information of described terminal, wherein said terminal communication mode information is used for indicating described terminal
The communication mode used when exporting described operation requests;Described background system server obtains identical with what smart card used
Verification data generation strategy, and utilize described verification data generation strategy at least the terminal communication mode of described terminal to be carried out second
Process, obtain check information;
Described verification data are compared with described check information;
If described verification data are identical with described check information, then perform the flow process of the operation requests after responding described process.
If additionally, described smart card operation information also includes the object-type information that described smart card connects, described terminal communication
Mode information also includes the object-type information of terminal.
A kind of smart card, smart card includes that the first processing unit and/or the second processing unit, wherein said first processing unit are used for
By the operation requests that contact communication mode gets, described smart card is carried out the first process, and described second processing unit is used for
The operation requests obtained described smart card by contactless communication mode carries out the first process;Wherein: the first acquisition module,
For obtaining operation requests;Determine module, for the acquisition mode according to described operation requests, determine and described operation requests is entered
The object processing unit that row first processes, wherein said object processing unit is that described first processing unit or described second processes list
Unit;Calling module, is used for calling described object processing unit and described operation requests is carried out the first process, the behaviour after being processed
Ask;Second acquisition module, for obtaining the smart card operation information of smart card, wherein said smart card operation information is at least
Including the smart card communications mode information that described object processing unit is corresponding;3rd acquisition module, is used for obtaining verification data genaration
Strategy;First processing module, is used for utilizing described verification data generation strategy at least smart card operation information to be carried out the second process,
Obtain verifying data;Output module, for performing the operation requests after at least exporting described process and the flow process of described verification data.
Additionally, described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding,
Or, described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit
Communication method information corresponding to smart card.
Additionally, described verification data include the first verification data and the second verification data, wherein: described first verification data are institutes
State smart card and smart card operation information is carried out what the second process obtained;Described second verification data are that electronics is deposited by described smart card
Depreciated volume, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out the
Two process obtain.
Additionally, described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook connection
Machine transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Additionally, described second is processed as encryption.
Additionally, described verification data are obtained by following either type, including: mode one: utilize MAC calculative strategy,
At least smart card operation information is carried out MAC calculating, using calculated MAC value as verification data;Mode two: utilize
HASH calculative strategy, at least carries out HASH calculating to smart card operation information, using calculated MAC value as verification
Data;Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated A.L.S.
Breath is as verification data.
Additionally, described smart card also includes: judge module, for judging whether described operation requests is that the target prestored please
Ask;If described operation requests is described destination request, then obtain the smart card operation information of smart card.
Additionally, described contact communication mode is included the communication mode connected by chip communication and/or is communicated even by magnetic stripe
The communication mode connect.
Additionally, described smart card operation information also includes the object-type information that described smart card connects.
A kind of operation requests response system, including: arbitrary described smart card at least exports the operation requests after described process
With described verification data;The 3rd acquisition module in terminal, the operation requests after obtaining described process and described verification data;
Sending module in described terminal, operation requests and described verification data after at least sending described process take to background system
Business device;The 4th acquisition module in described background system server, for the operation requests after obtaining described process and described school
After testing data, obtaining the terminal communication mode information of described terminal, wherein said terminal communication mode information is used for indicating described end
Hold the communication mode used when exporting described operation requests;The 5th acquisition module in described background system server, is used for
Obtain the identical verification data generation strategy used with smart card;The second processing module in described background system server, uses
In utilizing described verification data generation strategy at least the terminal communication mode of described terminal to be carried out the second process, obtain check information;
Comparing module in described background system server, for comparing described verification data with described check information;Institute
State the respond module in background system server, if identical with described check information for described verification data, then perform response
The flow process of the operation requests after described process.
If additionally, described smart card operation information also includes the object-type information that described smart card connects, described terminal communication
Mode information also includes the object-type information of terminal.
As seen from the above technical solution provided by the invention, in the present invention, smart card selects according to the acquisition mode of operation requests
Select the object processing unit that different communication mode is corresponding, and invocation target processing unit first processes operation requests, and to this target
The smart card communications mode information that processing unit is corresponding carries out the second process, obtains verifying data, and background system server is in verification
Verification data are by the rear flow process performing response operation requests, thus prevent user profile to be stolen, and improve the safety of smart card,
Ensure user profile and the safety of property.
Accompanying drawing explanation
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, the required accompanying drawing used in embodiment being described below
It is briefly described, it should be apparent that, the accompanying drawing in describing below is only some embodiments of the present invention, for this area
From the point of view of those of ordinary skill, on the premise of not paying creative work, it is also possible to obtain other accompanying drawings according to these accompanying drawings.
Fig. 1 is the structure chart that in existing application of IC cards, user profile is stolen;
The flow chart of the verification data output method that Fig. 2 provides for the present invention;
The structural representation of the smart card that Fig. 3 provides for the present invention;
The flow chart of the operation requests response method that Fig. 4 provides for the present invention;
The structural representation of the operation requests response system that Fig. 5 provides for the present invention.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described,
Obviously, described embodiment is only a part of embodiment of the present invention rather than whole embodiments.Reality based on the present invention
Execute example, the every other embodiment that those of ordinary skill in the art are obtained under not making creative work premise, broadly fall into
Protection scope of the present invention.
In describing the invention, it is to be understood that term " " center ", " longitudinally ", " laterally ", " on ", D score, " front ",
Orientation or the position relationship of the instruction such as " afterwards ", "left", "right", " vertically ", " level ", " top ", " end ", " interior ", " outward " are base
In orientation shown in the drawings or position relationship, it is for only for ease of the description present invention and simplifies description rather than instruction or hint institute
The device that refers to or element must have specific orientation, with specific azimuth configuration and operation, therefore it is not intended that to the present invention
Restriction.Additionally, term " first ", " second " are only used for describing purpose, and it is not intended that instruction or hint relative importance
Or quantity or position.
In describing the invention, it should be noted that unless otherwise clearly defined and limited, term " install ", " being connected ",
" connect " and should be interpreted broadly, connect for example, it may be fixing, it is also possible to be to removably connect, or be integrally connected;Permissible
It is to be mechanically connected, it is also possible to be electrical connection;Can be to be joined directly together, it is also possible to be indirectly connected to by intermediary, can be two
The connection of individual element internal.For the ordinary skill in the art, can understand that above-mentioned term is in the present invention with concrete condition
In concrete meaning.
Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.
Fig. 2 illustrates the flow chart of the verification data output method of the present invention, sees Fig. 2, the verification data output side of the present invention
Method, comprises the steps:
Step S201, smart card obtains operation requests;
Concrete, smart card can obtain operation requests from terminal, and the operation requests of acquisition can be transferred accounts, withdrawn the money, inquiry etc. is appointed
Meaning operation requests.
Smart card can obtain operation requests by contact mode from terminal, it is also possible to obtains behaviour by contact mode from terminal
Ask.
Certainly, if the user profile created in the application of IC cards as occurred in background technology is stolen, the intelligence of the present invention
Card is to obtain operation information by antenna from the terminal of stealing shown in Fig. 1.
It addition, step S201 get operation requests after, step S203 utilization verify data generation strategy the most right
Before smart card operation information carries out the second process, smart card can also carry out following operation: judges whether operation requests is in advance
The destination request of storage;If operation requests is destination request, then perform to utilize verification data generation strategy at least smart card to be grasped
The operation of the second process is carried out as information.Judging whether operation requests is the destination request prestored, this destination request can be
Relate to the operation requests of user's property safety, such as: transfer accounts, the operation requests such as enchashment, if smart card judges this operation
Request is destination request, then perform the operation utilizing verification data generation strategy that smart card operation information at least carries out the second process;
Otherwise, if it is judged that this operation requests is not destination request, such as: the operation requests such as inquiry, owing to being not related to the wealth of user
Produce safety, do not perform the operation utilizing verification data generation strategy that smart card operation information at least carries out the second process, thus carry
The processing speed of this type of business high.
Step S202, smart card, according to the acquisition mode of operation requests, determines that the target that operation requests carries out the first process processes
Unit;
Concrete, if the acquisition mode of operation requests is contact communication mode, it is determined that object processing unit is the first process
Unit, if the acquisition mode of operation requests is contactless communication mode, it is determined that object processing unit is the second processing unit.
Step S203, smart card invocation target processing unit carries out the first process to operation requests, the operation requests after being processed;
Wherein in prior art, smart card is all applicable to this step to the processing mode of operation requests, and here is omitted.
Step S204, smart card obtains the smart card operation information of smart card, and wherein smart card operation information at least includes at target
The smart card communications mode information that reason unit is corresponding;
Wherein, step S204 and step S202 do not have obvious time order and function order.
Concrete, smart card communications mode information can be used to indicating intelligent card and have employed contactless communication connection mode, or
Indicating intelligent card have employed contact communication connection patterns.Certainly, contact communication connection patterns can include passing through chip communication
Connect pattern and/or by the pattern that magnetic stripe is communicatively coupled, can be used to indicating intelligent card have employed contact communicate to connect
The pattern connected by chip communication in pattern, or indicating intelligent card have employed in contact communication connection patterns to be entered by magnetic stripe
Pattern of row communication connection etc..The communication connection patterns of indicating intelligent card can ensure that the information that smart card exports includes intelligence
The communication connection patterns of card, even if the mode as described in background technology steals user profile, due in the information of smart card output
Include the communication connection patterns of smart card, the i.e. information of smart card output to include and the communication connection mode stealing terminal, this
Time, owing to smart card is with to steal the communication connection mode of terminal be contactless, and the communication connection side of imitated card and ATM
Formula is contact, may determine that in the judgement of follow-up background system server the communication connection patterns that smart card uses be with
Its communication connection mode receiving information is different, thus not performs the flow process of response operation requests, it is ensured that smart card is used
The safety of family information.
It addition, smart card can also obtain, from its end obtaining operation information, the object type being connected with smart card, thus obtain
Taking smart card pattern factor, the object type being connected with the smart card i.e. type of terminal, terminal may include that POS, ATM
Machine, card reader/writer or brushing card device etc. arbitrarily can obtain the terminal of the information of smart card.This smart card pattern factor can refer to
Show the type of terminal.Instruction terminal type can ensure that the information that smart card exports includes the type of connected terminal, i.e.
Just the mode as described in background technology steals user profile, owing to including connected terminal in the information of smart card output
Type, i.e. the information of smart card output includes the type of stealing terminal, now, due to steal the type of terminal often with ATM
The terminal type such as machine is different, may determine that in the judgement of follow-up background system server the approach of smart card output information with just
Often approach is different, thus not performs the flow process of response operation requests, it is ensured that the safety of smart card user information.
Step S205, smart card obtain verification data generation strategy, and utilize verification data generation strategy at least to smart card operation
Information carries out the second process, obtains verifying data;
Concrete, smart card operation information can directly be processed by smart card, obtains verifying data, it is also possible to smart card
Operation information is encrypted, and obtains verifying data.Directly processing simple, processing speed is high;Encryption safety is more preferable.
Such as: can one of in the following way obtain verifying data:
Mode one: smart card operation information is processed by smart card, obtains the first verification data, and to electronic bankbook remaining sum,
Electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour process, and obtain
Second verification data, wherein the combination of the first verification data and the second verification data is as verification data.Now, smart card is grasped
Carry out processing as information and to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark,
Terminating machine numbering and exchange hour carry out process and identical processing mode can be used can also to use different processing modes, use
Identical processing mode processing speed is high, uses different processing mode safeties more preferable.
Mode two: smart card to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering and exchange hour process, and obtain verifying data.
Mode three: smart card operation information is encrypted by smart card, obtains the first verification data, and to electronic bankbook
Remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour are encrypted
Processing, obtain the second verification data, wherein the combination of the first verification data and the second verification data is as verification data.Now,
Smart card operation information is encrypted and to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering are encrypted with exchange hour can also be able to adopt to use identical encryption mode
By different encryption modes, use identical encryption mode processing speed high, use different encryption modes to pacify
Full property is more preferable.Certainly, smart card operation information can be encrypted, to electronic bankbook remaining sum, the online friendship of electronic bankbook
Easily sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour are not encrypted, or to smart card
Operation information is not encrypted, to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction
Mark, terminating machine numbering and exchange hour are encrypted, as long as follow-up can realization carries out verification i.e. to the data after processing
Can.
Mode four: smart card to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering and exchange hour are encrypted, and obtain verifying data.
Certainly, the encryption of aforesaid way three or mode four can be following any one:
If verification data generation strategy is MAC calculative strategy, then smart card at least carries out MAC meter to smart card operation information
Calculate;At this point it is possible to using calculated MAC value as verification data, it is also possible to the part of calculated MAC value is made
For verification data, using MAC calculative strategy, calculation is simple, and processing speed is high.
If verification data generation strategy is HASH calculative strategy, then smart card at least carries out HASH to smart card operation information
Calculate;At this point it is possible to using calculated HASH value as verification data, it is also possible to by the portion of calculated HASH value
Being allocated as, for verifying data, using HASH calculative strategy, safety is higher.
If verification data generation strategy is Sign Policies, then smart card at least carries out signature calculation to smart card operation information;This
Time, can be using calculated signed data as verification data, it is also possible to using the part of calculated signed data as school
Testing data, use Sign Policies, safety is high and is possible to prevent to deny.
Additionally, the smart card operation information of the present invention is in addition to including the smart card communications mode information that object processing unit is corresponding,
Can also include: random number, this random number can be to arrange randomizer within a smart card, in order to the most all generates one
Different random number, it is ensured that the follow-up verification data obtained when processing smart card operation information are the most different, thus prevent
Verification data are cracked.Certainly, so that background system server is obtained in that this random number, intelligence when verification verification data
This random number together can be exported when can be stuck in output information;Can also be to arrange in background system server to set in smart card
The randomizer put uses identical algorithm to generate random number, and the former makes verification be more prone to, and the latter makes to verify more
Safety.
The smart card operation information processing of the present invention includes outside the smart card communications mode information that object processing unit is corresponding, it is also possible to
Including transaction counter, the count value that the enumerator that this transaction counter can be provided in smart card produces, in intelligence every time
During card output data, this enumerator performs counting operation according to predetermined manner, and exports transaction counter, thus ensure that follow-up
The verification data obtained when processing smart card operation information are the most different, thus prevent verifying data and be cracked.Certainly, for
Making background system server obtain this transaction counter when verification verification data, this transaction counter can be that smart card exists
Together export during output information, it is also possible to be that background system server is adopted when often completing once relevant to this smart card business
Counting with the method for counting identical with this smart card, it is thus achieved that this transaction counter, the former makes verification be more prone to, the latter
Make to verify safer.
Certainly, the smart card operation information of the present invention can with include smart card communications mode information that object processing unit is corresponding,
Random number and transaction counter, so that safety is higher.
Step S206, smart card perform the operation requests after at least output processes and the flow process of verification data.
Concrete, these verification data, after obtaining verification data, are exported to terminal, in order to it is defeated that terminal will verify data by smart card
Go out and verify to background system server, only verify and just perform relevant operation by rear, it is ensured that smart card user information
Safety with property.
As can be seen here, using the operation requests output intent of the present invention, in the present invention, smart card is according to the acquisition mode of operation requests
Select the object processing unit that different communication mode is corresponding, and invocation target processing unit processes operation requests, and to this target
The smart card communications mode information that processing unit is corresponding processes, and obtains verifying data, thus prevents user profile to be stolen,
Improve the safety of smart card, it is ensured that user profile and the safety of property.
Fig. 3 illustrates the structural representation of smart card based on aforesaid operations request output intent, owing to the smart card of the present invention is adopted
With above-mentioned operation requests output intent, therefore the most too much repeat at this, only its structure be briefly described:
Seeing Fig. 3, the smart card 30 of the present invention includes the first processing unit and/or the second processing unit, wherein the first processing unit
For smart card is carried out the first process by the operation requests that contact communication mode gets, the second processing unit is for intelligence
The operation requests obtained by contactless communication mode can be blocked and carry out the first process;Wherein:
First acquisition module 301, is used for obtaining operation requests;
Determine module 302, for the acquisition mode according to operation requests, determine and operation requests is carried out at the target of the first process
Reason unit;
Calling module 303, carries out the first process for invocation target processing unit to operation requests, and the operation after being processed please
Ask;
Second acquisition module 304, for obtaining the smart card operation information of smart card, wherein smart card operation information at least includes
The smart card communications mode information that object processing unit is corresponding;
First processing module 305, is used for obtaining verification data generation strategy, and utilizes verification data generation strategy at least to intelligence
Card operation information carries out the second process, obtains verifying data.
Output module 306, for performing the operation requests after at least output processes and the flow process of verification data.
Wherein, object processing unit information includes the communication method information that smart card that object processing unit is corresponding is corresponding, or,
Object processing unit information includes that random number is corresponding with the smart card that in transaction counter, at least one is corresponding with object processing unit
Communication method information.
Wherein, verification data include the first verification data and the second verification data, wherein:
First verification data are that smart card carries out the second process to smart card operation information and obtains;
Second verification data are that smart card is to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction
Mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Wherein, verification data be smart card to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number,
Dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained
Wherein, second it is processed as encryption.
Wherein, verification data are obtained by following either type, including:
Mode one: utilize MAC calculative strategy, at least smart card operation information is carried out MAC calculating, by calculated
MAC value is as verification data;
Mode two: utilize HASH calculative strategy, at least smart card operation information is carried out HASH calculating, by calculated
MAC value is as verification data;
Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated signing messages
As verification data.
Wherein, smart card also includes:
Judge module, for judging whether operation requests is the destination request prestored;If operation requests is destination request,
Then obtain the smart card operation information of smart card.
Wherein, contact communication mode is included the communication mode connected by chip communication and/or is communicatively coupled by magnetic stripe
Communication mode.
Wherein, smart card operation information also includes the object-type information that smart card connects.
Certainly, the present invention is only to the simple division of functional module in smart card, but is not limited to above-mentioned division, such as: this
The function that the modules of invention smart card performs can also be divided into some submodules and perform correlation function, such as: processing module can
To be divided into the process of the first process submodule executive mode one, second processes the process etc. of submodule executive mode two;It addition, this
The modules of invention smart card can also be integrated into a module and perform correlation function etc..As long as it is equal to have employed the solution of the present invention
Should be within the scope of the present invention.
Fig. 4 is the flow chart illustrating operation requests response method, sees Fig. 4, the operation requests response method of the present invention, bag
Include:
Smart card uses above-mentioned steps S201 to the method at least output verification data of step S206 output verification data;At this not
Repeat again.
Step S207, terminal acquisition process after operation requests and verification data, and at least transmission process after operation requests and school
Test data to background system server;
Concrete, terminal can be ATM, POS, the smart mobile phone of connection card reader or panel computer or PC, company
Connect smart mobile phone or any form of terminal such as panel computer or PC of antenna.
After step S208, background system server operation requests after being processed and verification data, the terminal obtaining terminal is led to
Letter mode information, the communication mode that wherein terminal communication mode information is used when output function is asked for indicating terminal;
Concrete, background system server can be the server of bank, to realize the related service of bank, it is also possible to be the 3rd
The server of side, such as mass transit card server.If the clothes that all kinds of business that can realize being closely related with user profile are used
Business device can be all the background system server of the present invention.
Background system server, can be according to the intelligence of smart card pattern factor instruction after receiving verification data and operation requests
The communication connection patterns of card, or the two kinds of situations of the object type being connected with smart card according to the instruction of smart card pattern factor, point
The most in the following way verification data are verified:
Step S209, background system server obtains the identical verification data generation strategy used with smart card, and utilizes verification
Data genaration strategy at least carries out the second process to the terminal communication mode of terminal, obtains check information.
Step S210, verification data are compared by background system server with check information, if verification data and check information
Identical, then perform the flow process of the operation requests after response processes.
For example, if the scene stealing user profile in creating such as background technology, then due to smart card be connected sky
The terminal of stealing of line is connected, and includes contactless communication pattern, but copy what card connected in the verification data of smart card output
Terminal is ATM, and now the communication mode of the terminal that background system server obtains is contact communication pattern, therefore, backstage
System server verification verification data can not be passed through, it is ensured that the safety of user profile.
Optionally, if smart card operation information also includes the object-type information that smart card connects, terminal communication mode information is also
Including the object-type information of terminal, wherein the object type of terminal be terminal be ATM, terminal be that POS, terminal are
The type of the terminals such as the smart mobile phone of connection card reader.Now, if the field stealing user profile in creating such as background technology
Scape, then owing to smart card is connected with the terminal being connected antenna, includes this in the verification data of smart card output and steals terminal
Type, but the terminal that imitated card connects is ATM, and the object type of the terminal now got due to background server is
ATM, thus verification can not be passed through, it is ensured that the safety of user profile.
As can be seen here, in the present invention, smart card selects at target corresponding to different communication mode according to the acquisition mode of operation requests
Reason unit, and invocation target processing unit processes operation requests, and the smart card communications mode that this object processing unit is corresponding is believed
Breath carries out the second process, obtains verifying data, and background system server performs response operation requests in verification verification data by rear
Flow process, thus prevent user profile to be stolen, improve the safety of smart card, it is ensured that user profile and the safety of property.
Fig. 5 illustrates the structural representation of operation requests response system, sees Fig. 5, the operation requests response system of the present invention,
Including: terminal 40, background system server 50 and above-mentioned smart card 30 as shown in Figure 3, owing to smart card 30 is above-mentioned
Smart card 30, therefore, does not repeats them here.The most only terminal 40 and background system server 50 are illustrated.
Operation requests after processing such as at least output of arbitrary smart card and verification data;
The 3rd acquisition module 401 in terminal 40, the operation requests after obtaining process and verification data;
Sending module 402 in terminal 40, the operation requests after at least transmission processes and verification data are to background system service
Device;
The 4th acquisition module 501 in background system server, after the operation requests after being processed and verification data,
Obtaining the terminal communication mode information of terminal, wherein terminal communication mode information is used for indicating terminal to be made when output function is asked
Communication mode;
The second processing module 502 in background system server, for utilizing the verification data generation strategy terminal at least to terminal
Communication mode carries out the second process, obtains check information;
Comparing module 503 in background system server, for comparing verification data with check information;
Respond module 504 in background system server, if identical with check information for verification data, then performs at response
The flow process of the operation requests after reason.
Wherein, if smart card operation information also includes that the object-type information that smart card connects, terminal communication mode information are also wrapped
Include the object-type information of terminal.
As can be seen here, owing to smart card generates verification data, background system service according to the smart card operation information obtaining smart card
Device responds the flow process of operation requests in verification verification data by rear execution, thus prevents user profile to be stolen, and improves smart card
Safety, it is ensured that user profile and the safety of property.
Certainly, the present invention is only to the simple division of functional module in smart card and background system server, but on being not limited to
State division, such as: the function that the modules of smart card of the present invention and background system server performs can also be divided into some submodules
Block execution correlation function, such as: the processing module of smart card can be divided into the first of the first process submodule executive mode one to process,
Second the first process etc. processing submodule executive mode two;The correction verification module of background system server is segmented into the first syndrome
Smart card pattern factor is verified by module when the communication connection patterns of the smart card of instruction, and the second syndrome module is to intelligence
The mode card factor verifies when the object type that instruction is connected with smart card;It addition, smart card of the present invention and background system clothes
The modules of business device can also be integrated into a module and perform correlation function etc..All should be at this as long as have employed the solution of the present invention
In the protection domain of invention.
Present invention also offers a kind of smart card system, this smart card system and the above-mentioned verification data output method of employing, at this not
An another explanation, is only briefly described this smart card system, and this smart card system includes: communication interface and intelligence the core of the card
Sheet, wherein,
Communication interface is used for obtaining operation requests, and performs the operation requests after at least output processes and the flow process of verification data;
Intelligent card chip, for the acquisition mode according to operation requests, determines the object processing unit processing operation requests,
And invocation target processing unit carries out the first process to operation requests, the operation requests after being processed;And, obtain smart card
Smart card operation information, wherein smart card operation information at least includes the smart card communications mode information that object processing unit is corresponding,
And obtain verification data generation strategy, utilize verification data generation strategy at least smart card operation information to be carried out the second process,
To verification data.
Wherein, intelligent card chip can one of in the following way obtain verification data:
Mode one: smart card operation information is processed by intelligent card chip, obtains the first verification data, and to electronic bankbook
Remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour process,
Obtaining the second verification data, wherein the combination of the first verification data and the second verification data is as verification data.
Mode two: intelligent card chip is to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, transaction
The amount of money, type of transaction mark, terminating machine numbering and exchange hour process, and obtain verifying data.
Mode three: smart card operation information is encrypted by intelligent card chip, obtains the first verification data, and to electronics
Passbook balance, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour are carried out
Encryption, obtains the second verification data, and wherein the combination of the first verification data and the second verification data is as verification data.When
So, smart card operation information can be encrypted, to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, transaction
The amount of money, type of transaction mark, terminating machine numbering and exchange hour are not encrypted, or do not enter smart card operation information
Row encryption, to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money, type of transaction mark, terminating machine
Numbering and exchange hour are encrypted, as long as the data after processing are verified by follow-up can realization.
Mode four: intelligent card chip is to smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, transaction
The amount of money, type of transaction mark, terminating machine numbering and exchange hour are encrypted, and obtain verifying data.
Certainly, the encryption during above-mentioned intelligent card chip obtains the verification mode three of data or mode four can be following arbitrary
Kind:
If verification data generation strategy is MAC calculative strategy, then smart card operation information is at least carried out by intelligent card chip
MAC calculates;
If verification data generation strategy is HASH calculative strategy, then smart card operation information is at least carried out by intelligent card chip
HASH calculates;
If verification data generation strategy is Sign Policies, then intelligent card chip at least carries out signature calculation to smart card operation information.
As can be seen here, use the smart card of the present invention, owing to smart card system is raw according to the smart card operation information obtaining smart card
Become verification data, thus prevent user profile to be stolen, improve the safety of smart card, it is ensured that user profile and the safety of property.
It addition, the intelligent card chip of the present invention is after communication interface gets operation requests, also judge whether operation requests is in advance
The destination request of storage, if it is determined that operation requests is destination request, then utilizes verification data generation strategy at least to grasp smart card
The second process is carried out as information.Thus improve the processing speed of the business using smart card.
The mode of operation of the smart card of the present invention can include the communication connection patterns of smart card, the communication connection patterns bag of smart card
Including contactless communication connection mode and/or contact communication connection patterns, contact communication connection patterns includes passing through chip communication
The pattern connected and/or the pattern being communicatively coupled by magnetic stripe.
It addition, smart card operation information can also include: random number and/or transaction counter.
Present invention also offers a kind of operation requests response computer system, including: terminal, background system server and above-mentioned
Smart card system, owing to smart card system is above-mentioned smart card system, therefore, do not repeat them here.The most only to terminal with
And background system server illustrates.
Terminal, for obtain above-mentioned smart card system output process after operation requests and verification data, and to major general process after
Operation requests and verification data send to background system server;
Background system server includes communication module and background system server CPU;
Communication module, for receiving verification data and the operation requests that terminal sends;
Background system server CPU, after the operation requests after being processed and verification data, the terminal obtaining terminal is led to
Letter mode information, the communication mode that wherein terminal communication mode information is used when output function is asked for indicating terminal;
The 5th acquisition module in background system server, for obtaining the identical verification data generation strategy used with smart card,
Utilize verification data generation strategy at least the terminal communication mode of terminal to be carried out the second process, obtain check information, then will verification
Data are compared with check information, if verification data are identical with check information, then perform the operation requests after response processes
Flow process.
If smart card operation information also includes that the object-type information that smart card connects, terminal communication mode information also include terminal
Object-type information.
As can be seen here, owing to smart card system generates verification data, background system according to the smart card operation information obtaining smart card
Server responds the flow process of operation requests in verification verification data by rear execution, thus prevents user profile to be stolen, and improves intelligence
The safety that can block, it is ensured that user profile and the safety of property.
Any process described otherwise above or method describe and are construed as in flow chart or at this, represent include one or
The module of code, fragment or the part of the executable instruction of the more steps for realizing specific logical function or process, and
The scope of the preferred embodiment of the present invention includes other realization, wherein can not be by order that is shown or that discuss, including root
According to involved function by basic mode simultaneously or in the opposite order, performing function, this should be by embodiments of the invention institute
Belong to those skilled in the art to be understood.
Should be appreciated that each several part of the present invention can realize by hardware, software, firmware or combinations thereof.In above-mentioned enforcement
In mode, multiple steps or method can be with storing the software or firmware that in memory and be performed by suitable instruction execution system
Realize.Such as, if realized with hardware, with the most the same, available following technology well known in the art
In any one or their combination realize: have and patrol for the discrete of logic gates that data signal is realized logic function
Collect circuit, there is the special IC of suitable combination logic gate circuit, programmable gate array (PGA), field programmable gate
Array (FPGA) etc..
Those skilled in the art are appreciated that it is permissible for realizing all or part of step that above-described embodiment method carries
Instructing relevant hardware by program to complete, described program can be stored in a kind of computer-readable recording medium, this journey
Sequence upon execution, including one or a combination set of the step of embodiment of the method.
Additionally, each functional unit in each embodiment of the present invention can be integrated in a processing module, it is also possible to be each
Unit is individually physically present, it is also possible to two or more unit are integrated in a module.Above-mentioned integrated module is the most permissible
The form using hardware realizes, it would however also be possible to employ the form of software function module realizes.If described integrated module is with software merit
Can the form of module realize and as independent production marketing or when using, it is also possible to be stored in the storage of embodied on computer readable and be situated between
In matter.
Storage medium mentioned above can be read only memory, disk or CD etc..
In the description of this specification, reference term " embodiment ", " some embodiments ", " example ", " concrete example ",
Or specific features, structure, material or the feature that the description of " some examples " etc. means to combine this embodiment or example describes comprises
In at least one embodiment or example of the present invention.In this manual, the schematic representation to above-mentioned term not necessarily refers to
It is identical embodiment or example.And, the specific features of description, structure, material or feature can at any one or
Multiple embodiments or example combine in an appropriate manner.
Although above it has been shown and described that embodiments of the invention, it is to be understood that above-described embodiment is exemplary,
Being not considered as limiting the invention, those of ordinary skill in the art is in the case of without departing from the principle of the present invention and objective
Above-described embodiment can be changed within the scope of the invention, revise, replace and modification.The scope of the present invention is by appended power
Profit requires and equivalent limits.
Claims (32)
1. an operation requests output intent, it is characterised in that smart card includes the first processing unit and/or the second processing unit,
Wherein said first processing unit is carried out at first for the operation requests got described smart card by contact communication mode
Reason, described second processing unit is carried out at first for the operation requests obtained described smart card by contactless communication mode
Reason;The method comprise the steps that
Smart card obtains operation requests;
Described smart card, according to the acquisition mode of described operation requests, determines and carries out described operation requests at the target of the first process
Reason unit, wherein said object processing unit is described first processing unit or described second processing unit;
Described smart card calls described object processing unit and described operation requests is carried out the first process, and the operation after being processed please
Ask;And,
Described smart card obtains the smart card operation information of smart card, and wherein said smart card operation information at least includes described target
The smart card communications mode information that processing unit is corresponding;
Described smart card obtains verification data generation strategy, and utilizes described verification data generation strategy at least to believe smart card operation
Breath carries out the second process, obtains verifying data;
Described smart card performs the operation requests after at least exporting described process and the flow process of described verification data.
Method the most according to claim 1, it is characterised in that:
Described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding, or,
Described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit
The communication method information that smart card is corresponding.
Method the most according to claim 1, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Method the most according to claim 2, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Method the most according to claim 1, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction
Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
Method the most according to claim 2, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction
Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
7. according to the arbitrary described method of Claims 1-4, it is characterised in that described second is processed as encryption.
Method the most according to claim 7, it is characterised in that described verification data are obtained by following either type,
Including:
Mode one: utilize MAC calculative strategy, at least smart card operation information is carried out MAC calculating, by calculated
MAC value is as verification data;
Mode two: utilize HASH calculative strategy, at least smart card operation information is carried out HASH calculating, by calculated
MAC value is as verification data;
Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated signing messages
As verification data.
Method the most according to claim 1, it is characterised in that after getting described operation requests, is obtaining smart card
Smart card operation information before, also include:
Judge whether described operation requests is the destination request prestored;
If described operation requests is described destination request, then obtain the smart card operation information of smart card.
10. according to the arbitrary described method in claim 1 to 6,8 or 9, it is characterised in that described contact communication mode bag
Include the communication mode connected by chip communication and/or the communication mode being communicatively coupled by magnetic stripe.
11. methods according to claim 7, it is characterised in that described contact communication mode includes passing through chip communication
The communication mode connected and/or the communication mode being communicatively coupled by magnetic stripe.
12. according to method described in any one of claim 1 to 6,8 or 9, it is characterised in that described smart card operation information
Also include the object-type information that described smart card connects.
13. methods according to claim 7, it is characterised in that described smart card operation information also includes described smart card
The object-type information connected.
14. methods according to claim 10, it is characterised in that described smart card operation information also includes described smart card
The object-type information connected.
15. 1 kinds of operation requests response methods, it is characterised in that including:
The arbitrary described method of smart card employing as claimed in claim 1 to 14 at least exports the operation requests after described process and institute
State verification data;
Terminal obtains the operation requests after described process and described verification data;
Described terminal at least sends the operation requests after described process and described verification data to background system server;
After background system server operation requests after obtaining described process and described verification data, obtain the terminal of described terminal
Communication method information, wherein said terminal communication mode information is used for indicating described terminal to be used when exporting described operation requests
Communication mode;
Described background system server obtains the identical verification data generation strategy used with smart card, and utilizes described check number
At least the terminal communication mode of described terminal is carried out the second process according to generation strategy, obtain check information;
Described verification data are compared with described check information;
If described verification data are identical with described check information, then perform the flow process of the operation requests after responding described process.
16. methods according to claim 15, it is characterised in that if described smart card operation information also includes described intelligence
Can block the object-type information connected, described terminal communication mode information also includes the object-type information of terminal.
17. 1 kinds of smart cards, it is characterised in that smart card includes the first processing unit and/or the second processing unit, wherein said
First processing unit is for carrying out the first process to described smart card by the operation requests that contact communication mode gets, described
Second processing unit carries out the first process for the operation requests obtained described smart card by contactless communication mode;Wherein:
First acquisition module, is used for obtaining operation requests;
Determine module, for the acquisition mode according to described operation requests, determine the mesh that described operation requests is carried out the first process
Mark processing unit, wherein said object processing unit is described first processing unit or described second processing unit;
Calling module, is used for calling described object processing unit and described operation requests is carried out the first process, the behaviour after being processed
Ask;
Second acquisition module, for obtaining the smart card operation information of smart card, wherein said smart card operation information at least includes
The smart card communications mode information that described object processing unit is corresponding;
3rd acquisition module, is used for obtaining verification data generation strategy;
First processing module, is used for utilizing described verification data generation strategy at least smart card operation information to be carried out the second process,
Obtain verifying data;
Output module, for performing the operation requests after at least exporting described process and the flow process of described verification data.
18. smart cards according to claim 17, it is characterised in that:
Described object processing unit information includes the communication method information that smart card that described object processing unit is corresponding is corresponding, or,
Described object processing unit information includes that random number is with in transaction counter at least one is corresponding with described object processing unit
The communication method information that smart card is corresponding.
19. smart cards according to claim 17, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
20. smart cards according to claim 18, it is characterised in that:
Described verification data include the first verification data and the second verification data, wherein:
Described first verification data are that described smart card carries out the second process to smart card operation information and obtains;
Described second verification data be described smart card to electronic bankbook remaining sum, electronic bankbook on-line transaction sequence number, dealing money,
Type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
21. smart cards according to claim 17, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction
Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
22. smart cards according to claim 18, it is characterised in that:
Described verification data are that described smart card is to described smart card operation information, electronic bankbook remaining sum, electronic bankbook on-line transaction
Sequence number, dealing money, type of transaction mark, terminating machine numbering and exchange hour carry out what the second process obtained.
23. according to the arbitrary described smart card of claim 17 to 22, it is characterised in that described second is processed as encryption.
24. smart cards according to claim 23, it is characterised in that described verification data are to be obtained by following either type
Arrive, including:
Mode one: utilize MAC calculative strategy, at least smart card operation information is carried out MAC calculating, by calculated
MAC value is as verification data;
Mode two: utilize HASH calculative strategy, at least smart card operation information is carried out HASH calculating, by calculated
MAC value is as verification data;
Mode three: utilize Sign Policies, at least carries out signature calculation to smart card operation information, by calculated signing messages
As verification data.
25. smart cards according to claim 17, it is characterised in that described smart card also includes:
Judge module, for judging whether described operation requests is the destination request prestored;If described operation requests is institute
State destination request, then obtain the smart card operation information of smart card.
26. according to claim 17 to 22,24,25 arbitrary described smart cards, it is characterised in that described contact communication
Mode includes the communication mode connected by chip communication and/or the communication mode being communicatively coupled by magnetic stripe.
27. smart cards according to claim 23, it is characterised in that described contact communication mode includes being led to by chip
Believe the communication mode connected and/or the communication mode being communicatively coupled by magnetic stripe.
28. according to the smart card described in claim 17 to 22,24,25 any one, it is characterised in that described smart card is grasped
Make the object-type information that information also includes that described smart card connects.
29. smart cards according to claim 23, it is characterised in that described smart card operation information also includes described intelligence
The object-type information that card connects.
30. smart cards according to claim 26, it is characterised in that described smart card operation information also includes described intelligence
The object-type information that card connects.
31. 1 kinds of operation requests response systems, it is characterised in that including:
As claimed in claim 17 to 30 arbitrary described smart cards at least export the operation requests after described process and described verification
Data;
The 3rd acquisition module in terminal, the operation requests after obtaining described process and described verification data;
Sending module in described terminal, operation requests and described verification data after at least sending described process to backstage are
System server;
The 4th acquisition module in described background system server, for the operation requests after obtaining described process and described verification
After data, obtaining the terminal communication mode information of described terminal, wherein said terminal communication mode information is used for indicating described terminal
The communication mode used when exporting described operation requests;
The 5th acquisition module in described background system server, for obtaining the identical verification data genaration used with smart card
Strategy;
The second processing module in described background system server, is used for utilizing described verification data generation strategy at least to described end
The terminal communication mode of end carries out the second process, obtains check information;
Comparing module in described background system server, for comparing described verification data with described check information;
Respond module in described background system server, if identical with described check information for described verification data, then holds
Row responds the flow process of the operation requests after described process.
32. systems according to claim 31, it is characterised in that if described smart card operation information also includes described intelligence
Can block the object-type information connected, described terminal communication mode information also includes the object-type information of terminal.
Priority Applications (8)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310300386.3A CN103839330B (en) | 2013-07-17 | 2013-07-17 | Smart card and operation requests output intent, operation requests response method and system |
US14/903,159 US20160328712A1 (en) | 2013-07-10 | 2014-07-04 | Smart card method for outputting validation data and method for responding to operation request |
PCT/CN2014/081700 WO2015003585A1 (en) | 2013-07-10 | 2014-07-04 | Smart card, operation request outputting method, operation request responding method and system |
JP2016524667A JP6236151B2 (en) | 2013-07-10 | 2014-07-04 | Smart card, verification data output method, operation request response method and system |
EP14823389.3A EP3021296A4 (en) | 2013-07-10 | 2014-07-04 | Smart card, verification data outputting method, and operation request responding method and system |
PCT/CN2014/081705 WO2015003587A1 (en) | 2013-07-10 | 2014-07-04 | Smart card, verification data outputting method, and operation request responding method and system |
HK14112061A HK1198599A1 (en) | 2013-07-17 | 2014-11-29 | Smart card, operation request output method and operation request response method and system |
US16/444,250 US11151574B2 (en) | 2013-07-10 | 2019-06-18 | Smart card, method for outputting validation data, and method for responding to operation request |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201310300386.3A CN103839330B (en) | 2013-07-17 | 2013-07-17 | Smart card and operation requests output intent, operation requests response method and system |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103839330A CN103839330A (en) | 2014-06-04 |
CN103839330B true CN103839330B (en) | 2016-12-28 |
Family
ID=50802789
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201310300386.3A Active CN103839330B (en) | 2013-07-10 | 2013-07-17 | Smart card and operation requests output intent, operation requests response method and system |
Country Status (2)
Country | Link |
---|---|
CN (1) | CN103839330B (en) |
HK (1) | HK1198599A1 (en) |
Families Citing this family (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP6236151B2 (en) * | 2013-07-10 | 2017-11-22 | 天地融科技股▲ふん▼有限公司 | Smart card, verification data output method, operation request response method and system |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1914938A1 (en) * | 2005-08-11 | 2008-04-23 | Beijing Watch Data System Co. Ltd. | A method of physical authentication and a digital device |
CN101281610A (en) * | 2008-05-23 | 2008-10-08 | 北京握奇数据系统有限公司 | Double-interface smart card and method for starting non-contact application |
CN101673434A (en) * | 2009-09-29 | 2010-03-17 | 上海捷惠达网络科技有限公司 | Secret key management method of IC card terminal |
-
2013
- 2013-07-17 CN CN201310300386.3A patent/CN103839330B/en active Active
-
2014
- 2014-11-29 HK HK14112061A patent/HK1198599A1/en unknown
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP1914938A1 (en) * | 2005-08-11 | 2008-04-23 | Beijing Watch Data System Co. Ltd. | A method of physical authentication and a digital device |
CN101281610A (en) * | 2008-05-23 | 2008-10-08 | 北京握奇数据系统有限公司 | Double-interface smart card and method for starting non-contact application |
CN101673434A (en) * | 2009-09-29 | 2010-03-17 | 上海捷惠达网络科技有限公司 | Secret key management method of IC card terminal |
Also Published As
Publication number | Publication date |
---|---|
CN103839330A (en) | 2014-06-04 |
HK1198599A1 (en) | 2015-04-30 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN101923660B (en) | Dynamic password identity authorization system and method based on RFID | |
CN103338188B (en) | A kind of dynamic authentication method of client side being applicable to mobile cloud | |
CN104217327B (en) | A kind of financial IC card internet terminal and its method of commerce | |
EP3017580B1 (en) | Signatures for near field communications | |
CN102737311A (en) | Internet bank security authentication method and system | |
US20150142666A1 (en) | Authentication service | |
CN102271040B (en) | Identity verifying system and method | |
CN102238193A (en) | Data authentication method and system using same | |
CN104933565A (en) | IC card transaction method and IC card transaction system | |
CN111738725A (en) | Cross-border resource transfer authenticity auditing method and device and electronic equipment | |
CN103516517A (en) | Production method, RFID transponder, authentication method, and reader device | |
CN103107888B (en) | The identity identifying method that the dynamic multi-attribute of facing moving terminal is multi-level | |
CN106033571A (en) | Trading method of electronic signature devices, electronic signature devices and trading system | |
CN108880789B (en) | Hardware product anti-counterfeiting tracing method, node equipment and system | |
CN107657441A (en) | Self-service dealing method, system, server and mobile terminal | |
CN105631662A (en) | NFC payment method, NFC payment system and mobile terminal | |
CN109389396A (en) | Transportation card account automatic charging method, device, equipment and computer storage medium | |
CN205015906U (en) | Anti -fake verification system of electron certificate | |
CN106709534A (en) | Anti-counterfeit verification system of electronic certificate | |
CN103839322B (en) | Intelligent card, verification data output method, operation request response method and system | |
CN108334927A (en) | A kind of NFC receives single label and its method of payment | |
CN103138919A (en) | Front-end secret key filling system and method of secret key filling | |
CN103136667B (en) | There is the smart card of electronic signature functionality, smart card transaction system and method | |
CN103839330B (en) | Smart card and operation requests output intent, operation requests response method and system | |
CN104102934A (en) | Portable IC card read-write device, system and method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1198599 Country of ref document: HK |
|
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
REG | Reference to a national code |
Ref country code: HK Ref legal event code: GR Ref document number: 1198599 Country of ref document: HK |