CN103942688A - Data security interactive system - Google Patents

Data security interactive system Download PDF

Info

Publication number
CN103942688A
CN103942688A CN 201410171463 CN201410171463A CN103942688A CN 103942688 A CN103942688 A CN 103942688A CN 201410171463 CN201410171463 CN 201410171463 CN 201410171463 A CN201410171463 A CN 201410171463A CN 103942688 A CN103942688 A CN 103942688A
Authority
CN
China
Prior art keywords
information
terminal
smart
device
cryptographic
Prior art date
Application number
CN 201410171463
Other languages
Chinese (zh)
Inventor
李东声
Original Assignee
天地融科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 天地融科技股份有限公司 filed Critical 天地融科技股份有限公司
Priority to CN 201410171463 priority Critical patent/CN103942688A/en
Publication of CN103942688A publication Critical patent/CN103942688A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network
    • H04L63/083Network architectures or network communication protocols for network security for supporting authentication of entities communicating through a packet data network using passwords

Abstract

The invention provides a data security interactive system. According to the system, a terminal obtains the identification information of intelligent code devices through scanning, obtains user information according to the identification information, stores the user information in a pre-established current user list, generates transaction information, conducts encryption computation and/or check computation on the transaction information by means of a second session key to obtain transaction request information, sends the transaction request information to the intelligent code devices, receives transaction confirmation information, conducts encryption computation and/or check computation on the transaction confirmation information by means of a first session key to obtain a transaction data packet, and sends the transaction data packet to a background system server; the intelligent code devices conduct encryption computation and/or check computation on the transaction request information by means of the second session key to obtain the transaction information, give a prompt, receive a confirmation instruction, and generate the transaction conformation information; the background system server conducts encryption computation and/or check computation on the transaction data packet by means of the first session key to obtain the transaction confirmation information, verifies the transaction confirmation information, and executes the transaction after the transition conformation information passes the verification.

Description

数据安全交互系统 Data security interactive system

技术领域 FIELD

[0001] 本发明涉及一种信息安全领域,尤其涉及一种数据安全交互系统。 [0001] The present invention relates to an information security, and in particular relates to a data security interactive system.

背景技术 Background technique

[0002] 移动支付就是允许用户使用其移动终端(例如智能手机、PDA、平板电脑、笔记本电脑等终端)对所消费的商品或服务进行账务支付的一种服务方式。 [0002] Mobile payment is to allow users to use their mobile devices (such as smart phones, PDA, tablet PCs, notebook computers and other terminal) of goods or services consumed way be a service of paid accounts. 单位或个人通过移动终端、互联网或者近距离传感直接或间接向银行金融机构发送支付指令产生货币支付与资金流转的行为,从而实现移动支付功能。 Units or individuals through mobile terminals, the Internet or proximity sensing send payment instructions directly or indirectly generate money payment and transfer of funds to conduct bank financial institutions, enabling mobile payment function. 移动支付将移动终端、互联网、应用提供商以及金融机构相融合,为用户提供货币支付、缴费等金融业务。 The mobile payment mobile terminal, the Internet, application providers and financial institutions of integration, to provide users with monetary payments, payment and other financial services.

[0003] 移动支付主要包括远程支付和近场支付两种。 [0003] mobile payments including remote payment and near-field payment two kinds. 远程支付指用户通过移动终端登录银行网页进行支付、账户操作等,主要应用于线上电子商务网站的购物与消费;近场支付是指消费者在购买商品或服务时,即时通过移动终端向商家进行支付,支付的处理在现场进行,并且是不需要使用移动网络的线下操作,通过使用移动终端的射频(NFC)、红外、蓝牙等通道,实现与自动售货机以及POS机的本地通讯。 Remote payment means the user login page by bank mobile payment terminals, account operation, mainly used in consumer online shopping and e-commerce site; near-field payment refers consumers to purchase goods or services, real-time via the mobile device business payment, payment processing site, and the operation of the line is no need to use the mobile network, the mobile terminal by using a radio frequency (the NFC), infrared, Bluetooth channels for local communication with the vending machine and a POS machine.

[0004] 在整个移动支付的过程中,涉及到支付的参与者包括:消费用户、商户、移动运营商、第三方服务提供商、银行。 [0004] In the course of the entire mobile payment, involving participants paid include: consumer users, merchants, mobile operators, third-party service providers, banks. 消费用户和商户是系统的服务对象,移动运营商提供网络支持,银行方提供银行相关服务,第三方服务提供商提供支付平台服务,通过各方的结合以实现业务。 Consumer users and businesses are clients of the system, the mobile operator to provide network support, provided by the bank bank-related services, third-party service providers to offer payment services platform by combining the parties to achieve the business. 支付手段的电子化和移动化已经成为了不可避免的发展趋势,而移动支付系统的安全性问题又是移动电子商务安全的核心问题。 Electronic means of payment and mobile has become the inevitable trend of development, and security issues mobile payment system is the core problem of mobile e-commerce security.

[0005] 如何在移动支付的过程中保证数据交互的安全性是亟待解决的问题。 [0005] In the process of how to ensure the security of mobile payments in the data exchange is a serious problem.

发明内容 SUMMARY

[0006] 本发明旨在解决上述问题之一。 [0006] The present invention aims to solve one of the problems described above.

[0007] 本发明的主要目的在于提供一种数据安全交互系统。 [0007] The main object of the present invention is to provide a data security interactive system.

[0008] 为达到上述目的,本发明的技术方案具体是这样实现的: [0008] To achieve the above object, the technical solution of the present invention is specifically implemented as follows:

[0009] 本发明一方面提供了一种数据安全交互系统,包括:终端,用于在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息;根据所述智能密码设备的标识信息获取所述智能密码设备对应的用户信息;将所述用户信息存储到预先建立的当前用户列表中;根据待交易的智能密码设备对应的用户信息生成交易信息,并利用第二会话密钥对所述交易信息进行加密计算和/或校验计算获得交易请求信息;向所述智能密码设备发送所述交易请求信息;接收所述交易确认信息;利用第一会话密钥对所述交易确认信息进行加密计算和/或校验计算获得交易数据包,并向所述后台系统服务器发送所述交易数据包;所述智能密码设备,用于接收所述终端发送的所述交易请求信息,利用所述第二会话密钥对所述交易请求信息进行解密计算和/或 [0009] In one aspect the present invention provides a data security interactive system, comprising: a terminal in the coverage area for a scanning device smart password, and obtains the identification information to the intelligent scanning cryptographic device; according to the smart password identification apparatus acquires user information corresponding to the smart cryptographic device; current user list stored in the user information pre-established; generating transaction information from the user information to be smart password corresponding to the transaction apparatus, and using a second session key to encrypt the transaction information is calculated and / or verified transaction request information obtained by calculation; transmitting the request information to the smart cryptographic transaction apparatus; receiving the transaction acknowledgment information; using the first session key pair said transaction confirmation information is encrypted calculate and / or check transaction data packet obtained by calculation, and the backend system server sends the transaction data packet; said intelligent cryptographic device, for receiving the terminal transmits the transaction request information request using said second session key to decrypt the transaction information is calculated and / or 验验证计算获得所述交易信息;提示所述交易信息;接收确认指令,并生成交易确认信息;所述后台系统服务器,用于接收所述终端发送的所述交易数据包,利用所述第一会话密钥对所述交易数据包进行解密计算和/或校验验证计算获得所述交易确认信息;对所述交易确认信息进行验证,并在验证通过后执行交易。 Test verification calculation to obtain the transaction information; prompt the transaction information; receiving an acknowledgment command and generates a transaction acknowledgment information; the packet back to the system's server for receiving sent by the terminal, with the first session key to decrypt the transaction data packet is calculated and / or verify the transaction authentication acknowledgment information obtained by calculation; acknowledgment information in verification of the transaction, and the transaction executed after the verification.

[0010] 此外,所述终端,还用于向所述后台系统服务器发送所述智能密码设备的标识信息以及用户信息读取请求;接收所述后台系统服务器发送的用户信息读取请求的响应信息,利用所述第一会话密钥对所述用户信息读取请求的响应信息进行解密计算和/或校验验证计算获得所述用户信息;所述后台系统服务器,还用于接收所述终端发送的所述智能密码设备的标识信息以及所述用户信息读取请求,根据所述智能密码设备的标识信息获取与所述智能密码设备对应的用户信息;利用所述第一会话密钥对所述用户信息进行加密计算和/或校验计算获得所述用户信息读取请求的响应信息,并向所述终端发送所述用户信息读取请求的响应息。 [0010] Further, the terminal is further configured to read identification information and user information request to the smart cryptographic device the background system server; information read request in response to receiving the user information sent by the server back-end system, using said first session key information in response to the read request to decrypt the user information is calculated and / or verification check the user information obtained by calculation; the backend system server is further configured to receive the transmission terminal cryptographic identification information of the smart device and the user information read request, and obtain user information corresponding to the smart cryptographic device according to identification information of the cryptographic smart device; the first session key using the calculating the user information is encrypted and / or verification information obtained by calculation in response to the subscriber information read request, and send the subscriber information read request message in response to the terminal.

[0011] 此外,所述终端,还用于根据所述智能密码设备的标识信息向所述智能密码设备发送用户信息读取请求;接收所述智能密码设备发送的所述用户信息读取请求的响应信息,利用所述第二会话密钥对所述用户信息读取请求的响应信息进行解密计算和/或校验验证计算获得所述用户信息;所述智能密码设备,还用于获得预先存储的用户信息,利用所述第二会话密钥对所述用户信息进行加密计算和/或校验计算获得所述用户信息读取请求的响应信息,并向所述终端发送所述用户信息读取请求的响应信息。 [0011] Further, the terminal is further configured to read requests in accordance with the identification information of the smart cryptographic device transmits the user information to the smart cryptographic device; receiving the intelligent device transmitting the code information read request of the user response information using said second session key information read request to the user response information to decrypt calculations and / or checksum to verify the user information obtained by calculation; the smart cryptographic device is further configured to obtain previously stored user information, a second session key using the user information is encrypted calculate and / or check information obtained by calculation in response to the read request user information, and the terminal transmits the user information reading response to the request message.

[0012] 此外,所述终端,还用于在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息之后,获得在所述终端的信号覆盖范围内的全部智能密码设备的标识信息,生成实时标识列表;根据预设的时间间隔将所述实时标识列表中的智能密码设备的标识信息与所述当前用户列表中的智能密码设备的标识信息进行比对;如果所述实时标识列表中的智能密码设备的标识信息不在所述当前用户列表中,则根据所述智能密码设备的标识信息获取所述智能密码设备对应的用户信息;且如果所述当前用户列表中的智能密码设备的标识信息不在所述实时标识列表中,则删除所述当前用户列表中不在所述实时标识列表中的智能密码设备的用户信息。 After [0012] Furthermore, the terminal device is further configured to scan the smart password within range, and to obtain identification information of the smart password scanning device, all the intelligence is obtained within the coverage area of ​​the terminal password identification device, generating real-time identification list; smart password identification information spacer device identification information of the intelligent real-time password device identifier list with the list of current users are aligned in accordance with a preset time; if identification information of the intelligent real-time password identification apparatus is not in the list of the current user list, the user information is acquired smart password identification information corresponding to the device according to the smart cryptographic device; and if the current user list smart password identification information of the device is not in the real-time identification list, delete the user information is not in the user list intelligent real-time password device identification list of the current.

[0013] 此外,所述终端,还用于在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息之后,获得在所述终端的信号覆盖范围内的全部智能密码设备的标识信息,生成实时标识列表;根据预设的时间间隔将所述实时标识列表中的智能密码设备的标识信息与所述当前用户列表中的智能密码设备的标识信息进行比对;如果所述实时标识列表中的智能密码设备的标识信息不在所述当前用户列表中,则根据所述智能密码设备的标识信息获取所述智能密码设备对应的用户信息,并在所述终端获得所述用户信息后,将所述用户信息存储至所述实时标识列表中;且如果所述实时标识列表中的智能密码设备的标识信息在所述当前用户列表中,则将所述在所述当前用户列表中的智能密码设备的用户信息存储至所述实时标识列表中;将所述实 After [0013] Furthermore, the terminal device is further configured to scan the smart password within range, and to obtain identification information of the smart password scanning device, all the intelligence is obtained within the coverage area of ​​the terminal password identification device, generating real-time identification list; smart password identification information spacer device identification information of the intelligent real-time password device identifier list with the list of current users are aligned in accordance with a preset time; if identification information of the intelligent real-time password identification apparatus is not in the list of the current user list, the user information is acquired smart password identification information corresponding to the device according to the smart cryptographic device and the terminal of the obtained after the user information, the user identification information stored in the list in real time; and if the identification information of the intelligent real-time password device identifier list in the current user list, then the current user of the the user information storage device smart password to the list of real-time identification list; the real 时标识列表作为更新后的所述当前用户列表。 When the ID list as the updated list of current users.

[0014] 此外,所述后台系统服务器,还用于在所述终端向所述后台系统服务器发送所述智能密码设备的标识信息以及用户信息读取请求之后,判断所述智能密码设备的标识信息是否包含在所述后台系统服务器中预存的智能密码设备异常名单中;在判断出所述智能密码设备的标识信息在所述智能密码设备异常名单中后,获取锁定智能密码设备指令,以及利用所述后台系统服务器的私钥对锁定智能密码设备指令进行签名获得第五签名信息,并通过所述终端向所述智能密码设备发送所述锁定智能密码设备指令以及所述第五签名信息;所述智能密码设备,还用于接收所述后台系统服务器通过所述终端发送的所述锁定智能密码设备指令以及所述第五签名信息,利用预存的所述后台系统服务器证书中的公钥对所述第五签名信息进行验证;在验证所述第五签名信息 [0014] In addition, the system back-end server is further configured to, after the terminal transmits the identification information and the user information read request to the cryptographic device intelligent background system server, determining whether the password identification information of the smart devices smart cryptographic device list is included in the abnormal background system stored in the server; determined that the identification information of the smart cryptographic device after the device list abnormal smart password, smart password to acquire the lock command device, and using the said backend system server private key of smart password locking device to obtain a fifth instruction signed signature information, and the cryptographic smart locking device and the fifth command information to the smart signature password is sent by the terminal apparatus; the smart password device further configured to receive the smart cryptographic signature apparatus and the fifth command information sent by the server to the background system by locking the terminal, the background system by using pre-stored in the server certificate to the public key fifth signature information for verification; in the fifth signature information verification 通过后,根据所述锁定智能密码设备指令执行锁定操作。 Passed, according to the apparatus instructions smart password lock locking operation is performed.

[0015] 此外,所述后台系统服务器,还用于接收终端注册申请,并对所述终端注册申请进行审核;在审核所述终端注册申请通过后,向所述终端发送终端密钥对生成指令;接收所述终端发送的所述终端密钥对中的公钥后,生成所述终端证书,并向所述终端发送所述终端证书;所述终端,还用于接收所述后台系统服务器发送的所述终端密钥对生成指令,生成终端密钥对;向所述后台系统服务器发送所述终端密钥对中的公钥;存储所述终端证书;以及所述后台系统服务器,还用于接收智能密码设备注册申请,并对所述智能密码设备注册申请进行审核;在审核所述智能密码设备注册申请通过后,向所述智能密码设备发送智能密码设备密钥对生成指令;接收所述智能密码设备发送的所述智能密码设备密钥对中的公钥,生成所述智能密码设备证书,并向所述智 [0015] In addition, the system back-end server is further used to register for the reception terminal, and the terminal registration review; reviewed after registration by the terminal, the terminal transmits key generation instruction to the terminal ; terminal after receiving the key sent by the terminal in the public key certificate of said terminal, and the terminal certificate sent by the terminal; a terminal for receiving said further server sending background system the terminal key pair generation command, the terminal generates a key pair; transmitting the terminal key to the public key to the back-end server system; storing the terminal certificate; and the backend system server is further configured to smart receiving apparatus registration password, and the smart password registration device for review; review after registration by the smart cryptographic device, the cryptographic device sending the smart key generation instruction to the smart cryptographic device; receiving the the smart key cryptographic apparatus smart password sent by the public key, generating a cryptographic smart device certificate, and the chi 能密码设备发送所述智能密码设备证书;所述智能密码设备,还用于接收所述后台系统服务器发送的所述智能密码设备密钥对生成指令,生成智能密码设备密钥对;向所述后台系统服务器发送所述智能密码设备密钥对中的公钥;存储所述智能密码设备证书。 Cryptographic device can transmit the cryptographic smart device certificate; the smart cryptographic device, the cryptographic device further for the smart key receiving the background system server sends the generated command to generate cryptographic smart key devices; to the background system server sends the public key smart key in the cryptographic device; storing the cryptographic smart device certificate.

[0016] 此外,所述终端,还用于获取终端销户申请,利用所述终端的私钥对所述销户申请进行签名获得第六签名信息,并向所述后台系统服务器发送所述终端销户申请以及所述第六签名信息;所述后台系统服务器接收到所述终端销户申请以及所述第六签名信息后,利用预存的所述终端证书中的公钥对所述第六签名信息进行验证;接收所述后台系统服务器发送的所述终端销户完成信息,删除所述终端的私钥;所述后台系统服务器,还用于在验证所述第六签名信息通过后,删除预存的所述终端证书,并生成终端销户完成信息,向所述终端发送所述终端销户完成信息;和/或所述智能密码设备,还用于获取智能密码设备销户申请,利用所述智能密码设备的私钥对所述销户申请进行签名获得第七签名信息,并向所述后台系统服务器发送所述智能密码设备销户 [0016] In addition, the terminal, the terminal further configured to obtain cancellation application, the private key of the terminal pin sign the request to obtain a sixth user signature information transmitted to the background system to the terminal server cancellation, and the sixth application signature information; background system after the server receives the request and the user terminal pin sixth signature information, the terminal certificate by using the public key stored in the signature sixth to verify the information; receiving the user of the terminal pin background system completion information sent by the server to delete the private key of the terminal; the backend system server is further configured to, after verifying the signature sixth information, deleting stored the terminal certificate, and generates a cancellation completion information terminal, the terminal transmits to the user terminal pin completion information; and / or the smart cryptographic device, the cryptographic device further configured to obtain cancellation intelligent application, using the private key cryptographic smart device application for cancellation of the signing in seventh signature information, and the back-end server sends the intelligent system device to cancel the account password 请以及所述第七签名信息;所述后台系统服务器接收到所述智能密码设备销户申请以及所述第七签名信息后,利用预存的所述智能密码设备证书中的公钥对所述第七签名信息进行验证;接收所述后台系统服务器发送的所述智能密码设备销户完成信息,删除所述智能密码设备的私钥;所述后台系统服务器,还用于在验证所述第七签名信息通过后,删除预存的所述智能密码设备证书,并生成智能密码设备销户完成信息,向所述智能密码设备发送所述智能密码设备销户完成信息。 Please seventh and the signature information; the background system receives the smart server cryptographic device after application and cancellation of the seventh signature information, by using the intelligent cryptographic device certificate stored in said second public key seven signature information for verification; the smart cryptographic device the background system receives the cancellation completion information sent by the server, the smart deleting the private key of the cryptographic device; the backend system server further configured to verify the signature seventh after the information, deleting the password stored in the smart device certificate, and generates a cancellation intelligent completion information cryptographic device, the cryptographic device to the intelligent device transmitting the cryptographic smart cancellation completion information.

[0017] 此外,所述后台系统服务器,还用于通过所述终端向所述智能密码设备发送用户授权请求信息;接收所述授权信息,向所述终端发送所述用户信息读取请求的响应信息;所述智能密码设备,还用于接收所述用户授权请求信息,生成授权信息,并通过所述终端向所述后台系统服务器发送所述授权信息。 [0017] In addition, the system back-end server, a request for authorization further by the intelligent terminal to the cryptographic device transmitting user information; receiving the authorization information to the user terminal transmitting the response information read request information; the smart cryptographic device, for receiving a further request for said user authorization information, generates an authorization message and transmit the authorization information back to the server system via the terminal.

[0018] 此外,所述智能密码设备,还用于在接收到所述用户授权请求信息后,由休眠状态转换为唤醒状态;在唤醒状态下生成授权信息。 [0018] Further, the smart cryptographic device further configured to, after receiving the user authorization request information, from the sleep state to an awake state; generating the authorization information in the awake state.

[0019] 此外,所述智能密码设备,还用于接收到所述交易请求信息后,由休眠状态转换为唤醒状态;在唤醒状态下利用所述第二会话密钥对所述交易请求信息进行解密计算和/或校验验证计算获得所述交易信息。 [0019] Further, the smart cryptographic device further configured to receive the transaction request information, from the sleep state to an awake state; in the awake state using the second session key to the transaction request information calculating decryption and / or verification check the transaction information obtained by calculation.

[0020] 此外,所述智能密码设备,还利用所述智能密码设备的私钥对所述交易信息进行签名,生成交易签名信息作为交易确认信息或者生成动态口令作为交易确认信息。 [0020] Further, the smart cryptographic device, also using the private key of the smart cryptographic device signature of the transaction information, transaction information as the transaction signature generates acknowledgment information or generates a dynamic password as a transaction confirmation.

[0021] 此外,所述智能密码设备,还用于生成单次交易标识,并利用所述智能密码设备的私钥对所述交易信息以及所述单次交易标识进行签名,生成交易签名信息作为交易确认信息;或者所述智能密码设备,还用于生成单次交易标识,利用所述智能密码设备的私钥对所述单次交易标识进行签名获得单次交易标识的签名信息,并生成动态口令,将单次交易标识的签名信息以及所述动态口令作为交易确认信息。 [0021] Further, the smart cryptographic device is further configured to generate a single transaction identification, and using the private key of the cryptographic device intelligent transaction information per transaction and the identification sign, to generate the transaction signature information as transaction acknowledgment information; smart password or the device is further configured to generate a single transaction identifier, using the private key of the cryptographic device intelligent single transaction identification information to be signed to obtain the signature of the single transaction identifier, and generate dynamic password, transaction information to identify a single signature and the dynamic password as a transaction confirmation.

[0022] 此外,所述终端,还用于接收所述智能密码设备发送的声波信号并对所述声波信号进行解码获得交易确认信息;或者采集所述智能密码设备显示的图像信息并对所述图像信息进行解码获得所述交易确认信息;或者通过所述终端与所述智能密码设备匹配的通信接口接收所述交易确认信息;或者通过所述终端输入的信息获得所述交易确认信息。 [0022] In addition, the terminal, for further sound wave signal and said acoustic wave receiving device of the smart password obtained by decoding the transmission acknowledgment information transactions; or collecting the information and the image display apparatus smart password the image information obtained by decoding the transaction profile; or by the terminal and the smart password matches the communication interface apparatus receiving the transaction acknowledgment information; or the information obtained via said input terminal of said transaction confirmation.

[0023] 此外,所述后台系统服务器,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述终端发送交易成功回执信息和/或通过所述终端向所述智能密码设备发送交易成功回执信息;所述智能密码设备,还用于接收所述后台系统服务器通过所述终端发送的所述交易成功回执信息,提示所述交易成功回执信肩、O [0023] In addition, the back-end server system further configured to verify the acknowledgment information to the background system in a transaction server, and after performing the authentication by the transaction, sending the transaction success information to the terminal receipt and / or the information terminal device sends the password to the smart successful receipt transactions; the smart cryptographic device further configured to receive the background system by the server receipt transaction success information sent by the terminal, indicating successful receipt of the transaction letter shoulder, O

[0024] 此外,所述终端,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述智能密码设备发送退款信息;接收所述退款确认信息,对所述退款确认信息进行验证,并在验证通过后,利用所述终端的私钥对所述退款确认信息进行签名生成退款确认包;向所述后台系统服务器发送所述退款确认包和所述退款确认信息;所述智能密码设备,还用于接收所述终端发送的所述退款信息,提示所述退款信息;接收退款确认指令,并利用所述智能密码设备的私钥对所述退款信息进行签名,生成退款确认信息;所述后台系统服务器,还用于接收所述终端发送的所述退款确认包和所述退款确认信息,分别对所述退款确认包和所述退款确认信息进行验证,并在全部验证通过后,执行退款操作。 [0024] Further, the terminal is further configured to verify the acknowledgment information to the background system in a transaction server, and after performing the transaction upon successful authentication to the smart cryptographic device transmits the refund information; receiving the refund confirmation information, the refund confirmation information will be verified, and after verification by using the private key of the terminal information of the refund confirmation signature generating refund confirmation packet; transmitting back to the server system the refund confirmation packet and the refund confirmation information; the smart cryptographic device, further for receiving the refund information sent by the terminal, prompting the refund information; receiving the refund confirmation instruction, and using the private key of the cryptographic device intelligent refund information for a signature, generating refund confirmation information; and the background system server further for receiving the refund confirmation packet sent by the terminal and the refund confirmation information on each of the refund confirmation packet and the refund confirmation information will be verified, validated and, after all, perform the refund operation.

[0025] 此外,所述智能密码设备,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述终端发送退款请求;接收所述终端发送的所述退款信息,提示所述退款信息;接收退款确认指令,并利用所述智能密码设备的私钥对所述退款信息进行签名,生成退款确认信息;所述终端,还用于生成退款信息,并向所述智能密码设备发送所述退款信息;接收所述退款确认信息,对所述退款确认信息进行验证,并在验证通过后,利用所述终端的私钥对所述退款确认信息进行签名生成退款确认包;向所述后台系统服务器发送所述退款确认包和所述退款确认信息;所述后台系统服务器,还用于接收所述终端发送的所述退款确认包和所述退款确认信息,分别对所述退款确认包和所述退款确认信息进行验证,并在全部验证通过 [0025] Further, the smart cryptographic device, acknowledgment information for further verification of the transaction server in the background system, and after performing the authentication by the transaction, sending a refund request to the terminal; receiving the refund information transmitted by the terminal, prompting the refund information; receiving the refund confirmation instruction, and using the private key of the cryptographic device intelligent refund information for a signature, generating refund confirmation information; and the terminal is further configured to generate the refund information to the intelligent device transmitting the cryptographic refund information; receiving the refund confirmation information, the refund confirmation information will be verified, and after the verification by the private key of the terminal information of the refund confirmation signature generating refund confirmation packet; transmitting said refund confirmation packet and the refund confirmation information to the backend system server; the backend system server is further configured to receive the refund confirmation packet sent by a terminal and the refund confirmation information on each of the refund confirmation packet and the refund confirmation information will be verified and validated by all 后,执行退款操作。 After the implementation of the refund operation.

[0026] 此外,所述智能密码设备,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述终端发送退款请求;接收所述终端发送的所述退款请求标识,生成退款信息,并利用所述智能密码设备的私钥对所述退款信息进行签名,得到退款确认信息,并向所述终端发送所述退款确认信息;所述终端,还用于生成退款请求标识,并向所述智能密码设备发送所述退款请求标识;接收所述退款确认信息,对所述退款确认信息进行验证,并在验证通过后,利用所述终端的私钥对所述退款确认信息进行签名生成退款确认包;向所述后台系统服务器发送所述退款确认包和所述退款确认信息;所述后台系统服务器,还用于接收所述终端发送的所述退款确认包和所述退款确认信息,分别对所述退款确认包和所述退款确认信息进 [0026] Further, the smart cryptographic device, acknowledgment information for further verification of the transaction server in the background system, and after performing the authentication by the transaction, sending a refund request to the terminal; receiving the the refund request identifier sent by the terminal, generating refund information, and using the private key of the cryptographic device intelligent refund information is signed to obtain a refund confirmation information, and the terminal transmits the refund acknowledgment information; the terminal is further configured to generate a refund request identifier, and the cryptographic smart device transmits the refund request identifier; receiving the refund confirmation information, the refund confirmation to verify the information, and after the verification using the private key of the terminal information of the refund confirmation signature generating refund confirmation packet; transmitting said refund confirmation packet and the refund confirmation information to the backend system server; the the refund confirmation packet back-end server systems further configured to receive said transmitting terminal and said refund confirmation information, acknowledgment information respectively into the refund confirmation packet and the refund 行验证,并在全部验证通过后,执行退款操作。 Line verification and validation through after all, perform the refund operation.

[0027] 此外,所述退款信息中还包含电子对账单。 [0027] In addition, the refund information further comprises an electronic statement.

[0028] 此外,所述交易成功回执信息还包含电子对账单。 [0028] In addition, the transaction information further comprises an electron successful receipt statement.

[0029] 此外,所述交易信息中还包含电子对账单。 [0029] In addition, the transaction information further comprises an electronic statement.

[0030] 此外,所述终端在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息之前,所述系统还包括:所述智能密码设备进入可被扫描状态。 Before [0030] In addition, the intelligent terminal scans the cryptographic device within the coverage area, and obtains the identification information to the intelligent scanning cryptographic device, said system further comprising: the intelligent cryptographic device may be scanned into the state.

[0031] 此外,所述第一会话密钥预存在所述后台系统服务器和所述终端中或者所述第一会话密钥通过所述后台系统服务器和所述终端协商生成;所述第二会话密钥预存在所述终端和所述智能密码设备中或者所述第二会话密钥通过所述终端和所述智能密码设备协商生成。 [0031] In addition, the first session key pre-stored in the back-end server and the terminal in the first session key or the background system by said server and said terminal generating negotiation; said second session the key pre-stored in the intelligent terminal and the second device or cryptographic session key by the terminal and the smart password generating device negotiation.

[0032] 此外,所述后台系统服务器与所述终端之间传输的信息均通过第一会话密钥加密计算和/或校验计算后传输;所述终端与所述智能密码设备之间传输的信息均通过第二会话密钥加密计算和/或校验计算后传输。 [0032] Further, the information transmitted between the terminal server and the back-end system are calculated first session key encrypted and / or calculated by the transmission check; between the terminal device and the smart password transmission key encryption information is transmitted after calculation and / or checksum is calculated by the second session.

[0033] 此外,所述终端还与所述后台系统服务器进行相互认证,并分别生成所述第一会话密钥。 [0033] In addition, the terminal further performs mutual authentication with the backend system server, and generating the first session key, respectively.

[0034] 此外,所述终端,还用于生成第一待签名信息;向后台系统服务器发送所述第一待签名信息以及第一认证请求信息;接收所述后台系统服务器发送的所述第二待签名信息以及所述后台系统服务器证书,利用预存的后台系统服务器证书对应的根证书验证所述后台系统服务器证书是否合法;在验证所述后台系统服务器证书合法后,生成共享主密钥;利用所述后台系统服务器证书中的公钥对所述共享主密钥进行加密生成第一加密信息,利用所述终端的私钥对所述第一待签名信息和所述第二待签名信息进行签名生成第一签名信息;向所述后台系统服务器发送所述第一加密信息、所述第一签名信息以及终端证书;接收所述后台系统服务器发送的所述后台认证完成消息,验证所述后台认证完成消息;在验证所述后台认证完成消息通过后,生成终端认证第一 [0034] In addition, the terminal further be configured to generate a first signature information; transmitting the first information to be signed and the first authentication request message to the backend system server; the background system receives the transmitted second server information to be signed server certificate and the background system, using pre-stored background system corresponding to the server certificate of the root certificate validation server certificate valid background system; background system after verifying the server certificate is valid, generate a shared master key; using the back-end server system a public key certificate of the shared master key to generate first encrypted information is encrypted, signed using the private key of the terminal to be the first signature information and the second signature information to be generating a first signature information; transmitting the encrypted first information to the backend system server, the first signature information and the terminal certificate; background of the background system receives the authentication complete message sent by the server, verifying the authentication background complete message; after completion message authentication by verifying the background, to generate a first terminal authentication 完成消息,向所述后台系统服务器发送所述终端认证第一完成消息,并根据所述共享主密钥计算第一会话密钥;所述后台系统服务器,还用于接收所述终端发送的所述第一待签名信息以及所述第一认证请求信息,生成第二待签名信息;向所述终端发送所述第二待签名信息以及后台系统服务器证书;利用预存的终端证书对应的根证书验证所述终端证书是否合法;在验证所述终端证书合法后,利用所述终端证书中的公钥验证所述第一签名信息;在验证所述第一签名信息通过后,利用所述后台系统服务器的私钥解密所述第一加密信息,获得所述共享主密钥;生成后台认证完成消息,并向所述终端发送所述后台认证完成消息;接收所述终端发送的所述终端认证第一完成消息,验证所述终端认证第一完成消息;在验证所述终端认证第一完成消息通过后,根据 Completion message back to the server system transmits the first terminal authentication complete message, and calculates the first master session key according to the shared key; the backend system server, the receiving terminal is further configured to transmit to the said first information to be signed and the first authentication request message, generating a second message to be signed; to the second terminal transmitting the information to be signed server certificate and a background system; root certificate pre-stored terminal certificate using the corresponding authentication the terminal certificate is valid; after the terminal certificate authentication method, authentication using a public key certificate of the terminal in the first signature information; after verifying the first signature information, using the back-end server system the first private key to decrypt the encrypted information to obtain the shared master key; generating a back-end authentication complete message, the terminal sends back to the authentication complete message; transmitting the terminal receiving the first terminal authentication complete message, verifying that the first terminal authentication complete message; after verification of the terminal authentication complete message via a first, in accordance with 述共享主密钥计算所述第一会话密钥。 Calculating said shared master key of the first session key.

[0035] 此外,所述后台系统服务器,还用于接收所述终端发送的所述第一待签名信息以及所述第一认证请求信息,其中,所述第一认证请求信息包括所述终端的标识信息;判断所述终端的标识信息是否包含在所述后台系统服务器中预存的终端异常名单中;在判断出所述终端的标识信息在所述终端异常名单中后,获取锁定终端指令,以及利用所述后台系统服务器的私钥对锁定终端指令进行签名获得第四签名信息,并向所述终端发送所述锁定终端指令以及所述第四签名信息;所述终端,还用于接收所述后台系统服务器发送的所述锁定终端指令以及所述第四签名信息,利用预存的所述后台系统服务器证书中的公钥对所述第四签名信息进行验证;在验证所述第四签名信息通过后,根据所述锁定终端指令执行锁定操作。 [0035] In addition, the system back-end server is further configured to receive the first terminal transmitting information to be signed and the first authentication request message, wherein the first authentication request information includes the terminal identification information; determining the terminal identifier information is included in the terminal system exception list stored in the server in the background; it is judged that the identification information of the terminal after the terminal exception list, the terminal to acquire the lock command, and the back-end server system using the private key of the terminal locking obtain a fourth instruction signed signature information, the terminal transmits an instruction to the terminal, and the fourth locking said signature information; said terminal for receiving said further the back-end server system transmitting a locking command and the fourth terminal signature information, the signature fourth verification information stored in the background system using the server's public key certificate; in the fourth verification signature information by after locking the terminal in accordance with an instruction execution locking operation.

[0036] 此外,所述终端还与所述智能密码设备进行相互认证,并分别生成所述第二会话密钥。 [0036] In addition, the terminal further performs mutual authentication with the smart device password, and generating the second session key, respectively.

[0037] 此外,所述终端,还用于生成第三待签名信息;向所述智能密码设备发送所述第三待签名信息以及第二认证请求信息;接收所述智能密码设备发送的所述第四待签名信息、所述第二签名信息以及所述智能密码设备证书,利用预存的智能密码设备证书对应的根证书验证所述智能密码设备证书是否合法;在验证所述智能密码设备证书合法后,利用所述智能密码设备证书中的公钥对所述第二签名信息进行验证;在验证所述第二签名信息通过后,利用所述终端的私钥对所述第三待签名信息和所述第四待签名信息进行签名获得第三签名信息,生成第一会话密钥生成因子,利用所述智能密码设备证书中的公钥对所述第一会话密钥生成因子进行加密获得第二加密信息;向所述智能密码设备发送所述第三签名信息、所述第二加密信息以及所述终端证书;接收所 [0037] Further, the terminal is further for generating a third information to be signed; smart password request information to the transmitting apparatus of the second and the third authentication information to be signed; smart cryptographic device to receive the transmitted the fourth message to be signed, the signature information and the second cryptographic smart device certificate, a root certificate stored on the smart password using the corresponding device certificate verifying the cryptographic device certificate is valid smart; smart password valid in the authentication device certificate after the smart device using the public key cryptographic certificate of the second signature to verify the information; after verifying the second signature information, signature private key of the terminal to be the third information and the fourth signature information to be signed to obtain the signature of the third information, generating a first session key generation factor, the smart device using the public key cryptographic certificate of the first session key generation factor to obtain a second encrypted encryption information; transmitting the password to the intelligent device of the third signature information, the second encryption information, and the terminal certificate; receiving 述智能密码设备发送的所述第三加密信息以及所述智能密码设备认证完成消息,验证所述智能密码设备认证完成消息;在验证所述智能密码设备认证完成消息通过后,生成终端认证第二完成消息,向所述智能密码设备发送所述终端认证第二完成消息,并根据第一会话密钥生成因子以及解密所述第三加密信息获得的所述第二会话密钥生成因子生成所述第二会话密钥;所述智能密码设备,还用于接收所述终端发送的所述第三待签名信息以及所述第二认证请求信息,生成第四待签名信息;利用所述智能密码设备的私钥对所述第三待签名信息进行签名获得第二签名信息,并向所述终端发送所述第四待签名信息、所述第二签名信息以及智能密码设备证书;接收所述终端发送的所述第三签名信息、所述第二加密信息以及所述终端证书,利用预存的所述终端证书 The said smart password encrypted information sent by the third device and the smart password authentication complete message, the smart password verification device authentication completion message; smart password after said authentication device authentication complete message by generating a second terminal authentication completion message, transmitting to the smart cryptographic device the second terminal authentication complete message, and in accordance with a first factor to generate the session key and decrypting the third encrypted information obtained from a second factor to generate the session key generation second session key; the smart cryptographic device, the receiving terminal is further configured to transmit the third information to be signed and the second authentication request message, generates a fourth message to be signed; cryptographic device using the smart third private key of the signature information to be signed to obtain the second signature information, and the fourth terminal transmits the information to be signed, the signature information and the second cryptographic smart device certificate; receiving said transmission terminal the third signature information, the second encryption information, and the terminal certificate by using the pre-stored terminal certificate 应的根证书验证所述终端证书是否合法;在验证所述终端证书合法后,利用所述终端证书中的公钥对所述第三签名信息进行验证;在验证所述第三签名信息通过后,生成第二会话密钥生成因子,利用所述终端证书中的公钥对所述第二会话密钥生成因子进行加密获得第三加密信息,并生成智能密码设备认证完成消息;向所述终端发送所述第三加密信息以及所述智能密码设备认证完成消息;接收所述终端发送的所述终端认证第二完成消息,验证所述终端认证第二完成消息;验证所述终端认证第二完成消息后,根据第二会话密钥生成因子以及解密所述第二加密信息获得的所述第一会话密钥生成因子生成所述第二会话密钥。 Corresponding root certificate to verify the legality of the certificate of the terminal; after the terminal certificate authentication method, the terminal certificate using the public key of the third signature to verify the information; After verifying the third signature information generating a second session key generation factor, using the terminal's public key certificate of the second session key generation factor to obtain a third encrypted information is encrypted, and generates a complete message smart password authentication apparatus; to the terminal transmitting the third encrypted information and said cryptographic smart device authentication complete message; the transmitting terminal receives the terminal authentication complete message a second, a second verification of the terminal authentication complete message; verifying the authentication of the second terminal to complete after the message, the session key generation in accordance with a second factor, and the first session information obtaining decrypting the second encrypted key generation factor for generating the second session key.

[0038] 此外,所述智能密码设备,还用于在接收到所述第二认证请求信息后,由休眠状态转换为唤醒状态;在唤醒状态下生成第四待签名信息。 [0038] Further, the smart cryptographic device, also for receiving the second authentication request message after conversion by the sleep state to the awake state; generating a fourth signature information to be in the awake state.

[0039] 由上述本发明提供的技术方案可以看出,顾客可以无需借助钱包、信用卡、手机等方式来完成支付,从而简化了顾客与商户在支付过程中的交互操作,提高了支付效率,提升了顾客在近场支付过程中的体验;同时利用智能密码设备的安全性特点保证顾客支付过程的安全性。 [0039] provided by the technical solution of the present invention can be seen, the customer may not need to complete the payment by means of purses, credit card, mobile phone, etc., thus simplifying the merchant and customer interaction in the payment process, to improve the efficiency of payments, to enhance the customer experience in the near field of the payment process; while taking advantage of the security features of the smart device password to ensure the safety of the customer payment process.

[0040] 顾客选购好商品以后在结账时,终端无需再通过让顾客手动刷卡或刷手机的方式获得用户信息,结账时顾客只需报出自己的姓名,终端即可直接将结算后的金额等交易信息发送至顾客的智能密码设备并显示,此时,顾客只需利用智能密码设备进行确认,并输出交易确认信息,终端生成交易数据包发送给后台系统服务器,后台系统服务器验证该交易数据包准确无误后进行转账处理,即可完成支付过程。 [0040] After customers to buy good merchandise at checkout, the terminal no longer need to manually credit card customers through phone or brush way to get user information, customers only need to give your name at checkout, the amount can be directly after the settlement terminal and other transaction information is transmitted to the password client smart device and display, this time, the customer simply using a smart device password confirmation, and outputs transaction confirmation information, the terminal generates a transaction packet to the backend system server, the server verifies that the background system's make transfers accurate treatment packages, to complete the payment process.

[0041] 当顾客走出这家店铺的信号覆盖范围时,智能密码设备与终端之间的网络连接就会自动中断,用户信息从该店铺的当前用户列表中消失。 [0041] When the customer out of the signal coverage of this shop, the network connection between the device and the terminal smart password will automatically interrupt the user information disappears from the list of current users in this shop. 若顾客又进入另一家店铺时,将会自动进入该另一家店铺的当前用户列表中,开始另一次购物。 If the customer has entered another shop, the other will automatically enter the shop of the current user list, start another shopping. 这样不需要顾客执行任何操作,就可以为顾客带来无缝使用体验。 So customers do not need to take any action that can bring customers a seamless experience.

附图说明 BRIEF DESCRIPTION

[0042] 为了更清楚地说明本发明实施例的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域的普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他附图。 [0042] In order to more clearly illustrate the technical solutions in the embodiments of the present invention, briefly describes the accompanying drawings required for describing the embodiments used in the following embodiments will be apparent in the following description of the accompanying drawings are merely some embodiments of the present invention. embodiment, those of ordinary skill in the art is concerned, without creative efforts, other figures may also be obtained according to these drawings.

[0043] 图1为本发明提供的数据安全交互系统结构示意图; [0043] FIG security data structure of the present invention provides an interaction system schematic;

[0044] 图2为本发明提供的数据安全交互方法的流程图。 [0044] FIG 2 is a flowchart of the data security interaction method provided by the present invention.

具体实施方式 Detailed ways

[0045] 下面结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。 [0045] Next, in conjunction with the present invention in the accompanying drawings, technical solutions of embodiments of the present invention are clearly and completely described, obviously, the described embodiments are merely part of embodiments of the present invention rather than all embodiments . 基于本发明的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明的保护范围。 Based on the embodiments of the present invention, all other embodiments of ordinary skill in the art without any creative effort shall fall within the scope of the present invention.

[0046] 在本发明的描述中,需要理解的是,术语“中心”、“纵向”、“横向”、“上”、“下”、“前”、“后”、“左”、“右”、“竖直”、“水平”、“顶”、“底”、“内”、“外”等指示的方位或位置关系为基于 [0046] In the description of the present invention, it is to be understood that the term "center", "longitudinal", "lateral", "upper", "lower", "front", "rear", "left", "right "," vertical "," horizontal "," top "," bottom "," inner "," outer position or positional relationship "and the like based on the indication

附图所示的方位或位置关系,仅是为了便于描述本发明和简化描述,而不是指示或暗示所指的装置或元件必须具有特定的方位、以特定的方位构造和操作,因此不能理解为对本发明的限制。 Merely for convenience and to simplify the description of the present invention is described, but not indicate or imply that the device or element referred to must have a particular orientation or positional relationship of the orientation shown in the drawings, a specific configuration and orientation of the operation, and therefore not to be considered limit the present invention. 此外,术语“第一”、“第二”仅用于描述目的,而不能理解为指示或暗示相对重要性或数量或位置。 In addition, the terms "first", "second" are for illustrative purposes only, and not intended to indicate or imply relative importance or number or location.

[0047] 在本发明的描述中,需要说明的是,除非另有明确的规定和限定,术语“安装”、“相连”、“连接”应做广义理解,例如,可以是固定连接,也可以是可拆卸连接,或一体地连接;可以是机械连接,也可以是电连接;可以是直接相连,也可以通过中间媒介间接相连,可以是两个元件内部的连通。 [0047] In the description of the present invention, it is noted that, unless otherwise expressly specified or limited, the terms "mounted," "connected to", "connected" are to be broadly understood, for example, may be a fixed connection, may be a detachable connection, or integrally connected; may be a mechanical connector may be electrically connected; may be directly connected, can also be connected indirectly through intervening structures, it may be in communication the interior of the two elements. 对于本领域的普通技术人员而言,可以具体情况理解上述术语在本发明中的具体含义。 Those of ordinary skill in the art, be appreciated that the specific circumstances of the specific meanings in the present invention.

[0048] 下面将结合附图对本发明实施例作进一步地详细描述。 [0048] conjunction with the accompanying drawings will be described in detail embodiments of the present invention is further embodied.

[0049] 本发明提供的数据安全交互系统,可适用的系统架构如图1所示,包括:后台系统服务器、终端以及智能密码设备。 [0049] The interaction data security system provided by the present invention, the applicable system architecture shown in Figure 1, comprising: a back-end server systems, cryptographic devices and smart terminals. 其中:[0050] 后台系统服务器可以完成对终端和智能密码设备的管理以及对用户信息的存储和下发管理,例如包括对终端和智能密码设备的注册、销户、锁定、认证等管理,其可以提供银行相关服务、支付平台服务等金融服务;可以包括支付服务器、认证服务器、管理服务器等一个或多个服务器的组合。 Wherein: [0050] back-end system server may complete management of the terminal and smart password devices and a storage and issued management of user information, for example, comprising a terminal and a smart password device registration, cancellation, locking and authentication management, which banks can provide related services, payment services, financial services platform; may include a combination of one or more servers payment servers, authentication servers, management servers.

[0051] 终端可以为商户端的终端,以完成移动支付的发起,对智能S码设备和后台系统服务器的认证,用户信息的维护等,该终端可以自动扫描到其信号覆盖范围内的智能密码设备,并建立与智能密码设备的通信连接,获取智能密码设备对应的用户信息。 [0051] The terminal may be a terminal merchant terminal, to complete the initiating mobile payment authentication smart S code devices and the backend system server, maintain user information and the like, the terminal may automatically scan the smart password devices within its signal coverage and cryptographic communication connection establishment with the smart device, the device acquires the user information corresponding smart password.

[0052] 智能密码设备具备安全支付(例如:电子签名、动态口令生成)功能,以及对终端的认证,该智能密码设备具备无线通信模块(例如:蓝牙、红外线、RFID、NFC、光、声波、热能、振动、WIFI等),可以与终端之间通过该无线通信模块进行通信,当然,该智能密码设备还可以包括有线接口(例如:音频接口、USB接口、串口等),并通过有线接口与终端进行通信。 [0052] Smart cryptographic device includes a secure payment (for example: an electronic signature, the dynamic password generating) function, and the terminal authentication, the smart cryptographic device includes a wireless communication module (e.g.: Bluetooth, infrared, RFID, NFC, light, sound waves, heat, vibration, WIFI, etc.), and may be performed between the terminal via the wireless communication module, of course, the apparatus may further include a smart password wired interface (e.g.: an audio interface, USB interface, serial port), and via a wired interface terminal communicates. 另外,智能密码设备还可以具备连接选项功能,如果用户不开启该功能,则终端无法获取智能密码设备的标识信息和对应的用户信息。 Further, the cryptographic device may further includes a intelligent connection options feature, if the user does not open the function, the terminal can not obtain the identification information of the smart device and the password corresponding to the user information. 例如:智能密码设备可以进入可被扫描的状态,以便终端扫描到该智能密码设备。 For example: a smart device may enter a state code can be scanned, so as to scan the smart terminal cryptographic device. 智能密码设备具备的连接选项功能,可以为在智能密码设备上设置的硬件开关开启实现的,也可以为智能密码设备通过软件开启实现的。 Smart password devices with connectivity options function can be turned on to achieve, it can also be implemented as a smart password to open the device hardware through software switch setting on the smart device password.

[0053] 如图2所示,应用图1所示的架构,本发明提供的数据安全交互系统可以按照如下方式执行相关操作: [0053] As shown, the application of the architecture shown in FIG. 1, the data system of the present invention provides a secure interaction may perform actions 2 as follows:

[0054] 终端和智能密码设备向后台系统服务器进行注册: [0054] terminal devices and smart password registered with the backend server systems:

[0055] 包括以下两个方面: [0055] includes the following two aspects:

[0056] 1、终端向后台系统服务器进行注册,其中: [0056] 1, the terminal server to register the background system, wherein:

[0057] 后台系统服务器接收终端注册申请,并对终端注册申请进行审核;具体的,商户可以到银行柜台办理该终端的注册申请,也可以通过互联网办理该终端的注册申请,后台系统服务器接收到该注册申请后,对该商户的身份的合法性进行审核。 [0057] back-end server system receives an application for registration terminal, and review applications for registration terminal; specifically, the merchant can go to the bank counter application for registration of the terminal, you can also apply for registration of the terminal through the Internet, the server receives the back-office systems after the application of the registration, the legitimacy of the identity of the merchant review.

[0058] 后台系统服务器在审核终端注册申请通过后,向终端发送终端密钥对生成指令;具体的,后台系统服务器审核商户身份的合法性等通过后,予以同意对商户的终端进行注册,同时向终端发送密钥对生成指令,用于指示终端生成终端密钥对,该终端密钥对包括一对公私钥。 After the application through the [0058] back-end server system in the terminal registration audit, the transmitting terminal to terminal key pair generation command; specifically, the background system server reviewing your business identity legitimacy after the passage of the merchant's terminal to be agreed to register, at the same time to the terminal key pair generation command for instructing the terminal to generate a terminal key, the terminal comprises a pair of public key private key pair.

[0059] 终端接收到终端S钥对生成指令后,生成终端S钥对;具体的,在终端中可以预设一个密钥对的生成方式,在终端接收到终端密钥对生成指令后,根据预设的密钥对生成方式生成终端密钥对,即生成一对公私钥。 [0059] The terminal receives the terminal S of the key generation instruction, the terminal generates a key pair S; Specifically, in the terminal can preset a key pair generation mode, the terminal receives the terminal key pair generation instruction, in accordance with preset key generation method generates a terminal key pair that generates a pair of public and private key.

[0060] 终端向后台系统服务器发送终端密钥对中的公钥;具体的,终端可以通过可信的通信链路将其生成的终端密钥对中的公钥向后台系统服务器进行发送,以保证终端的公钥发送的安全性;也可以通过互联网将其生成的终端密钥对中的公钥向后台系统服务器进行发送,以提高终端的公钥传输的便捷性。 [0060] The terminal transmits the terminal key pair the public key of the backend system server; Specifically, the terminal may be generated by the terminal public key pair transmitted to the backend system server via a trusted communication link, to transmitting the public key to ensure the security of the terminal; also generates the key pair the public key of the terminal may be transmitted to the backend system server through the Internet, to improve the convenience of the public key transmitted from the terminal.

[0061] 后台系统服务器接收到终端密钥对中的公钥后,生成终端证书,并向终端发送终端证书;具体的,后台系统服务器可以以后台系统服务器的私钥对商户的信息以及终端的公钥进行计算生成终端证书;后台系统服务器中还可以包含CA服务器,通过该CA服务器的私钥对商户的信息以及终端的公钥进行计算生成终端证书;后台系统服务器还可以将商户的信息以及终端的公钥发送至CA,CA根据CA的私钥对商户的信息以及终端的公钥进行计算生成终端证书,并通过后台系统服务器发送给终端。 After the [0061] back-end server system receives the terminal key pair of the public key, generates the terminal certificate and the terminal certificate of the transmitting terminal; Specifically, the backend system server private key can later merchant station and the terminal information server system calculates and generates public key certificate of the terminal; back-end server system may further comprise CA server, calculates the public key of the merchant and the terminal information by the private key of the terminal certificate generation server CA; background system information server may further merchant and transmitting the public key to the CA terminal, CA CA's private key is calculated based on the merchant's public key and the terminal information of the terminal certificate is generated, and transmitted to the terminal through a back-end server systems.

[0062] 终端存储终端证书;具体的,终端在接收到后台系统服务器发送的终端证书后,将该终端证书存储在执行安全功能的存储区中。 [0062] The terminal stores the terminal certificate; Specifically, after the terminal receives the terminal certificate sent from the server back-end system, the terminal certificate in the storage area in the implementation of security functions. 当然,针对不同的后台系统服务器,终端还可以存储不同的后台系统服务器发送的不同的终端证书。 Of course, different for different terminal certificate server background system, the terminal may also store different background system sent by the server.

[0063] 2、智能密码设备向后台系统服务器进行注册,其中: [0063] 2, the smart device password to register, which the back-end server systems:

[0064] 后台系统服务器接收智能密码设备注册申请,并对智能密码设备注册申请进行审核;具体的,持有智能密码设备的用户可以到银行柜台办理该智能密码设备的注册申请,也可以通过互联网办理该智能密码设备的注册申请,后台系统服务器接收到该注册申请后,对该用户的身份的合法性进行审核。 [0064] back-end server system receives an application for registration intelligent cryptographic device, cryptographic devices and smart applications for registration review; Specifically, the user holds the device can be smart password to the bank counter application for registration of the intelligent cryptographic device, also via the Internet after the application for registration of the smart password devices, back-office systems server receives the application for registration, the legitimacy of the identity of the user for review.

[0065] 后台系统服务器在审核智能密码设备注册申请通过后,向智能密码设备发送智能密码设备密钥对生成指令;具体的,后台系统服务器审核用户身份的合法性等通过后,予以同意对用户的智能密码设备进行注册,同时向智能密码设备发送密钥对生成指令,用于指示智能密码设备生成智能密码设备密钥对,该智能密码设备密钥对包括一对公私钥。 [0065] back-end systems server after the application for registration review by the intelligent cryptographic devices, smart password sent to the smart device key cryptographic device to generate a command; specifically, the audit server back-end systems such as the legitimacy of the user identity is passed, give its consent to the user the smart password registration device, while sending cryptographic device to the smart key pair generation command for instructing the intelligent intelligent device generates a password key cryptographic device, the smart key cryptographic apparatus comprises a pair of public and private key pair.

[0066] 智能密码设备接收到智能密码设备密钥对生成指令后,生成智能密码设备密钥对;具体的,在智能密码设备中可以预设一个密钥对的生成方式,在智能密码设备接收到智能密码设备密钥对生成指令后,根据预设的密钥对生成方式生成智能密码设备密钥对,即生成一对公私钥。 [0066] Smart cryptographic device the cryptographic device receives the smart key pair generation command to generate cryptographic smart key device; Specifically, the device may be preset smart password generation mode a key pair, the cryptographic device receiving the smart smart key to the cryptographic device after generation instruction, according to a predetermined cryptographic key generating apparatus for smart key pair generation mode, i.e., generates a pair of public and private key.

[0067] 智能密码设备向后台系统服务器发送智能密码设备密钥对中的公钥;具体的,智能密码设备可以通过可信的通信链路将其生成的智能密码设备密钥对中的公钥向后台系统服务器进行发送,以保证智能密码设备的公钥发送的安全性;也可以通过互联网将其生成的智能密码设备密钥对中的公钥向后台系统服务器进行发送,以提高智能密码设备的公钥传输的便捷性。 [0067] Smart device sends the password to smart key cryptographic device public key to backend system server; Specifically, smart password trusted device may generate a communication link to the intelligent cryptographic device public key pair were sent to the back-end server systems, in order to ensure the safety of the public key to send the smart password devices; it also generates a cryptographic smart device key to the public key can be sent to the back-end server system via the Internet, to improve the smart device password the convenience of public transport.

[0068] 后台系统服务器接收到智能密码设备密钥对中的公钥后,生成智能密码设备证书,并向智能密码设备发送智能密码设备证书;具体的,后台系统服务器可以以后台系统服务器的私钥对用户的信息以及智能密码设备的公钥进行计算生成智能密码设备证书;后台系统服务器中还可以包含CA服务器,通过该CA服务器的私钥对用户的信息以及智能密码设备的公钥进行计算生成智能密码设备证书;后台系统服务器还可以将用户的信息以及智能密码设备的公钥发送至CA,CA根据CA的私钥对用户的信息以及智能密码设备的公钥进行计算生成智能密码设备证书,并通过后台系统服务器发送给智能密码设备。 After the [0068] back-end server system receives the smart key cryptographic device public key pair, a device certificate generation smart password, and sends a device certificate intelligent smart password cryptographic device; Specifically, the backend system server can later stage private system server key information and the user public key of the cryptographic device calculates intelligent smart password generating device certificate; back-end server system may further comprise CA server, calculates the public key information and the user's smart cryptographic device by the private key of the CA server smart password generating device certificate; backend system server may also send the public key information and the user's device to the CA smart password, smart CA generating cryptographic device calculates the public key certificate and the user's smart password information apparatus according to the CA private key and sends the password to the smart device by back-end server systems.

[0069] 智能密码设备存储智能密码设备证书;具体的,智能密码设备在接收到后台系统服务器发送的智能密码设备证书后,将该智能密码设备证书存储在执行安全功能的存储区中。 [0069] Smart device for storing cryptographic smart cryptographic device certificate; Specifically, smart cryptographic device after receiving the device certificate background system smart password sent by the server, the cryptographic smart device certificate stored in the memory area of ​​the implementation of security functions. 当然,针对不同的后台系统服务器,智能密码设备还可以存储不同的后台系统服务器发送的不同的智能密码设备证书。 Of course, for different back-end server systems, intelligent cryptographic device can also store different smart cryptographic device certificate different back-end systems sent by the server.

[0070] 终端在信号覆盖范围内扫描智能密码设备,并获得扫描到的智能密码设备的标识信息: [0070] intelligent terminal scans the cryptographic device within the coverage area, and obtains the identification information to the intelligent scanning device password:

[0071] 具体的,终端可以按照一定的时间间隔发送查询信号(例如终端的序列号)查询一定无线信号覆盖范围内的智能密码设备; [0071] Specifically, the terminal may send a query signal interval (e.g. SEQ ID NO terminal) according to a certain time within a cryptographic device query smart wireless signal coverage;

[0072] 智能密码设备对终端的查询进行侦听(查询扫描),当智能密码设备进入终端的信号覆盖范围内后,向终端发送智能密码设备的标识信息,由此,终端扫描到了智能密码设备的标识信息。 [0072] intelligent terminal cryptographic device listens for inquiry (inquiry scan), when the smart terminal device enters a password signal coverage, transmitting the identification information to the intelligent terminal cryptographic device, whereby the terminal equipment scans the smart password the identification information.

[0073] 以下,提供两种实现终端扫描得到智能密码设备的标识信息的方式: [0073] The following provides two ways to achieve the terminal identification information is obtained by scanning devices smart password:

[0074] (I)终端可以使用IAC (Inquiry Access Code,查询访问码)查询一定无线信号覆盖范围内的智能密码设备; [0074] (I) terminal may use the IAC (Inquiry Access Code, Inquiry Access Code) within a cryptographic device query smart wireless signal coverage;

[0075] 智能密码设备对终端的查询进行侦听(查询扫描),当智能密码设备进入终端的信号覆盖范围内后,向终端发送智能密码设备的地址和时钟信息; [0075] intelligent terminal cryptographic device listens for inquiry (inquiry scan), when the smart terminal device enters a password signal coverage, address and clock information transmitting device smart password to a terminal;

[0076] 智能密码设备侦听来自终端的寻呼信息,进行寻呼扫描; [0076] smart password from the terminal equipment listens to paging information, paging scans;

[0077] 终端寻呼已经查询到的智能密码设备; [0077] paging terminal has been queried intelligent cryptographic device;

[0078] 智能密码设备接收到寻呼信息后,向终端发送智能密码设备的DAC(DeviCeAccess Code,设备访问码)。 [0078] Smart cryptographic device after receiving the paging message, transmitting to the terminal device smart password DAC (DeviCeAccess Code, the device access code).

[0079] (2)终端发送查询信号查询一定无线信号覆盖范围内的智能密码设备; [0079] (2) transmits a query signal terminal cryptographic device within a smart query the wireless signal coverage;

[0080] 智能密码设备对终端的查询信号进行侦听(查询扫描),当智能密码设备进入终端的信号覆盖范围内后,向终端发送智能密码设备的地址。 [0080] smart password interrogation signal terminal equipment listens (inquiry scan), when the smart terminal device enters a password signal coverage, sends the address to the terminal device smart password.

[0081] 当然,本发明仅以以上两个示例说明终端如何获得智能密码设备的标识信息,但本发明并不局限于此,基于上述两个获得智能密码设备的标识信息的方式,智能密码设备可以在接收到终端发送的任何信息时,均可以将终端发送的信息作为休眠唤醒信号,智能密码设备根据休眠唤醒信号,将休眠状态切换为唤醒状态(即正常工作模式)。 [0081] Of course, the invention only the above two examples show how intelligent terminal obtains identification information of the cryptographic device, but the present invention is not limited to this embodiment based on the above two smart password obtained device identification information, intelligent cryptographic device may upon receiving any information sent by the terminal, the terminal information can be transmitted as a wake-up signal, the cryptographic device in accordance with intelligent wake-up signal, the sleep state to the awake state (i.e. normal operating mode). 同时,智能密码设备在任何命令执行结束以后,均可以自动回复休眠状态。 Meanwhile, the smart device password after the end of execution of any order, can automatically reply to a dormant state. 智能密码设备进入休眠状态以节省智能密码设备的电能,延长使用寿命。 Smart password goes into sleep mode to save power smart password devices and prolong life.

[0082] 在终端扫描智能密码设备之前,智能密码设备还需要进入可被扫描的状态,以便终端可以扫描到该智能密码设备,其中,智能密码设备进入可被扫描的状态可以通过在智能密码设备上设置的硬件开关开启实现,也可以通过智能密码设备软件开启实现。 [0082] Before the terminal scans the smart cryptographic devices, smart cryptographic device further required to enter state can be scanned, so that the terminal can be scanned into the smart cryptographic device, wherein the smart password device enters may be scanned state via the intelligent cryptographic device set on the hardware switch on to achieve, can be achieved through smart password to open the device software.

[0083] 本发明中,终端可以与后台系统服务器进行相互认证,并分别生成第一会话密钥:和/或终端可以与智能密码设备进行相互认证,并分别生成第二会话密钥: [0083] In the present invention, the terminal may perform mutual authentication with the backend system server, and generates a first session key: and / or the terminal can perform mutual authentication with the smart device password, and generates a second session key, respectively:

[0084] 其中,终端与后台系统服务器进行相互认证,并分别生成第一会话密钥的过程如下: [0084] wherein the server terminal and the background system for mutual authentication, and the first session key generation process are as follows:

[0085] 终端生成第一待签名信息;具体的,终端可以通过随机数生成器生成随机数作为第一待签名信息,也可以采用自身的序列号、MAC地址或者其他的标识信息作为第一待签名信息,也可以是随机数和标识信息的组合作为第一待签名信息。 [0085] The terminal generates a first message to be signed; Specifically, the terminal may generate a random number by a random number generator to be the first to be used as the first signature information, may also be employed own serial number, MAC address or other identifying information as signature information may be a combination of the random number and the identification information as the first information to be signed. 其中,只要可以被后台系统服务器进行签名的信息均可以作为第一待签名信息,以便后台系统服务器返回签名信息后对后台系统服务器进行认证。 Wherein, as long as the information can be signed background system servers may be used as the first signature information to the backend system server authenticates signature information returned back to the server system. 随机数可以为数字、字母、特殊字符等字符中的一种或任意几种的组合。 The random number may be numbers, letters, special characters and other characters of one or a combination of arbitrary ones.

[0086] 终端向后台系统服务器发送第一待签名信息以及第一认证请求信息;具体的,终端可以通过可信的通信链路将第一待签名信息以及第一认证请求信息向后台系统服务器进行发送,以保证信息发送的安全性;也可以通过互联网将第一待签名信息以及第一认证请求信息向后台系统服务器进行发送,以提高信息传输的便捷性。 [0086] The terminal sends the server a first background system information to be signed and the first authentication request message; Specifically, the first terminal may be signed by a trusted authentication information and the first communication link request information to the backend system server transmitting, to ensure the security of information transmitted; may be the first signature information and the first authentication request message transmitted by the Internet back to the server system, to improve the convenience of information transmission.

[0087] 此外,后台系统服务器为了确保数据交互的安全性以及终端的合法性,后台系统服务器还可以在接收到第一待签名信息以及第一认证请求信息后,判断终端的标识信息是否包含在后台系统服务器中预存的终端异常名单中,其中,第一认证请求信息包括终端的标识信息;后台系统服务器在判断出终端的标识信息在终端异常名单中后,获取锁定终端指令,以及利用后台系统服务器的私钥对锁定终端指令进行签名获得第四签名信息,并向终端发送锁定终端指令以及第四签名信息;端接收到锁定终端指令以及第四签名信息后,利用预存的后台系统服务器证书中的公钥对第四签名信息进行验证;终端在验证第四签名信息通过后,根据锁定终端指令执行锁定操作。 [0087] In addition, the system back-end server to ensure the legitimacy and security of data interaction terminal, a first backend system server may also be a first authentication signature information, and upon receiving the request information, the terminal determines the identification information is included in abnormal terminal list stored in the background system in a server, wherein the first authentication request information includes identification information of the terminal; backend system server determines that the identification information of the terminal after the terminal in the exception list, the terminal to acquire the lock instruction, and the use of background system lock the terminal server's private key to sign the directive was fourth signature information, and sends a command terminal, and a fourth signature information locked terminal; and a fourth instruction after terminating terminal locking signature information received, the use of pre-existing back-office system server certificate a fourth public key to verify the signature information; terminal after the signature fourth verification information, in accordance with an instruction execution terminal locking the locking operation.

[0088] 具体的,终端异常名单可以为黑名单、挂失名单、失效名单等任意表示终端身份非法的名单;如果终端的标识信息在终端异常名单中,则说明该终端是非法的终端,此时,为了确保安全性,后台系统服务器向该非法终端发送锁定指令以锁定该非法终端,同时,后台系统服务器还对该锁定指令进行签名,以确保锁定指令的合法来源,避免非法锁定终端的恶意操作。 [0088] Specifically, the terminal may be a blacklist exception list, the list loss report, the list of the failure represented by any other terminal identity list unlawful; if the identification information of the terminal in the terminal exception list, the terminal then the terminal is illegal, then in order to ensure security, back-end server systems to send illegal terminal lock command to lock the illegal terminal, while the back-end server systems also sign the lock command to ensure that legitimate sources of instruction locked to prevent unauthorized operation of the terminal locking malicious .

[0089] 当然,本发明并不局限于此,对于实际应用来说,只要可以合法锁定非法终端即可。 [0089] Of course, the present invention is not limited to this, for practical applications, as long as illegal terminal can legally lock.

[0090] 另外,后台系统服务器也可以不对锁定指令进行签名,仅发送锁定指令至非法终端以锁定该非法终端。 [0090] Further, backend system server may not lock instruction sign, only to send a lock instruction to lock the illegal terminal illegal terminal.

[0091] 终端根据锁定终端指令执行锁定操作可以包括:终端拒绝执行任何请求,销毁自身存储的证书等任意方式。 [0091] The terminal performs a locking operation instruction can lock the terminal comprising: a terminal refuse to accept any request, to destroy any way certificate stored therein.

[0092] 当然,后台系统服务器在发送锁定指令后,还可以执行拒绝该非法终端的任何请求。 [0092] Of course, the backend system server after transmitting the lock command, the request may also perform any illegal terminal is rejected.

[0093] 由此可见,当终端出现遗失或遭到非法举报等异常情况时,该终端的标识信息将被录入到后台系统服务器的挂失名单或黑名单等异常名单中,此后,若再有人企图使用该终端进行交易以非法转账盗取资金时,在终端与后台系统服务器进行认证时,后台系统服务器会将终端标识信息在异常名单进行比对,若发现该终端的标识信息在异常名单中,后台系统服务器就会对终端进行锁定,从而保护用户账户安全。 [0093] Thus, when the terminal was illegal to report lost or appear abnormal conditions, the identification information of the terminal will be entered into back-end systems such as a server exception list report the loss or black list, after which, if more attempts use the terminal transactions to steal illegal transfer of funds, when the terminal server for authentication and back-end systems, back-end server system will be the terminal identification information to compare abnormalities in the list, if the identification information of the terminal anomalies found in the list, background system to the terminal server will be locked to protect the user account security.

[0094] 后台系统服务器接收到第一待签名信息以及第一认证请求信息后,生成第二待签名信息;具体的,后台系统服务器可以在接收到第一认证请求信息后,生成第二待签名信息,可以通过随机数生成器生成随机数作为第二待签名信息,也可以采用自身的序列号、MAC地址或者其他的标识信息作为第二待签名信息,也可以是随机数和标识信息的组合作为第二待签名信息。 After the [0094] back-end server receives a first system information to be signed and the first authentication request message, generating the second information to be signed; Specifically, the backend system server may after receiving the first authentication request message, generating a second signature to be information, a random number may be generated by a random number generator to be used as the second signature information, may also be employed own serial number, MAC address or other identifying information to be used as the second signature information, it may be a combination of the random number and the identification information as the second to be signed information. 其中,只要可以被终端进行签名的信息均可以作为第二待签名信息,以便终端返回签名信息后对终端进行认证。 Wherein, as long as the information can be signed to be the terminal can be used as the second signature information, the signature information in order to return the terminal authenticating the terminal. 随机数可以为数字、字母、特殊字符等字符中的一种或任意几种的组合。 The random number may be numbers, letters, special characters and other characters of one or a combination of arbitrary ones.

[0095] 后台系统服务器向终端发送第二待签名信息以及后台系统服务器证书;具体的,后台系统服务器可以通过可信的通信链路将第二待签名信息以及后台系统服务器证书向终端进行发送,以保证信息发送的安全性;也可以通过互联网将第二待签名信息以及后台系统服务器证书向终端进行发送,以提高信息传输的便捷性。 [0095] back-end server system transmits the second information to be signed and the background system to the terminal server certificates; Specifically, the backend system server may be a second signature information and the background system transmits the server certificate to the terminal via a trusted communication link, to ensure the security of information transmitted; also the second signature information and back office system to be a server certificate can be transmitted to the terminal through the Internet, in order to improve the convenience of information transmission.

[0096] 终端接收到第二待签名信息以及后台系统服务器证书后,利用预存的后台系统服务器证书对应的根证书验证后台系统服务器证书是否合法;具体的,终端在注册过程中还需获取到后台系统服务器证书对应的根证书,以便对后台系统服务器证书进行合法性验证。 After [0096] receiving the second terminal and the background system information to be signed server certificate, the root certificate stored in the background system using server certificate corresponding to the background system to verify the legality of the server certificate; Specifically, the terminal needs to obtain the registration process in the background root certificate corresponding to the certificate server system, to verify the legitimacy of the backend system server certificates.

[0097] 终端在验证后台系统服务器证书合法后,生成共享主密钥;具体的,终端验证后台系统服务器证书合法后,生成共享主密钥,该共享主密钥具体可以用于生成第一会话密钥。 [0097] After the terminal authentication server certificate valid background system, generating a shared master key; Specifically, the terminal verifies the server certificate valid background system, generating a shared master key, the master key is shared for generating a first session can be particularly key.

[0098] 终端利用后台系统服务器证书中的公钥对共享主密钥进行加密生成第一加密信息,利用终端的私钥对第一待签名信息和第二待签名信息进行签名生成第一签名信息;具体的,为了安全传输共享主密钥,终端利用后台系统服务器的公钥对共享主密钥进行加密,同时,为了保证传输至后台系统服务器的数据的合法来源以及不可抵赖性,终端还对第一待签名信息和第二待签名信息进行签名,由此,终端将签名信息和加密信息共同传输至后台系统服务器,即可以保证该数据的合法来源,也保证了数据中重要信息的安全性。 [0098] Terminal background system utilizing a public key of the server certificate encrypting the shared master key information to generate a first encrypted using the private key of the first terminal and the second signature information to be information to be signed, a signature generating a first signature information ; specifically, the shared master key for secure transmission, the terminal with the public key of the backend system server shared master key encrypted, at the same time, in order to ensure the transmission source of the data valid backend system server, and non-repudiation, the terminal also the first information to be signed and to be signed second signature information, thus, the terminal signature information and encrypted information transmitted together to the background system server, which can ensure the legal origin of the data, but also to ensure the security of data in critical information . 本发明中的第一签名信息可以是将第一待签名信息和第二待签名信息连接后的信息进行签名获得的,也可以是将第一待签名信息和第二待签名信息按照预先协商的调整方案进行调整后的信息进行签名获得的。 The first signature information in the present invention may be the first signature information and second connection information to be signed, signature information acquired, may be a signature of the first information and the second information to be signed in accordance with the pre-negotiated adjustment program information adjusted to sign obtained.

[0099] 终端向后台系统服务器发送第一加密信息、第一签名信息以及终端证书; [0099] The first terminal transmits the encrypted information to the backend system server, a first terminal certificate and signature information;

[0100] 后台系统服务器利用预存的终端证书对应的根证书验证终端证书是否合法;具体的,后台系统服务器在终端的注册过程中还获取到终端证书对应的根证书,以便对终端证书进行合法性验证。 [0100] back-end system using a root certificate to verify the server certificate stored in the terminal corresponding to the terminal certificate is legitimate; Specifically, the backend system server during the registration process of the terminal further acquires terminal certificate to the root certificate corresponding to the terminal certificate validity verification.

[0101] 后台系统服务器在验证终端证书合法后,利用终端证书中的公钥验证第一签名信息; [0101] back-end server after authentication system terminal certificate method, the certificate using the terminal public key to verify the first signature information;

[0102] 后台系统服务器在验证第一签名信息通过后,利用后台系统服务器的私钥解密第一加密信息,获得共享主密钥; [0102] In the back-end server system after verifying the first signature information, using the background system server private key to decrypt the first encrypted information, obtain the shared master key;

[0103] 后台系统服务器生成后台认证完成消息,并向终端发送后台认证完成消息; [0103] back-end authentication server generates a background system complete message, and sends back the terminal authentication complete message;

[0104] 终端接收到后台认证完成消息后,验证后台认证完成消息;具体的,终端对后台认证完成消息进行合法性验证。 After [0104] receiving terminal authentication complete message to the background, the background verification authentication complete message; Specifically, the terminal authentication complete message back legality verification.

[0105] 终端在验证后台认证完成消息通过后,生成终端认证弟一完成消息,向后台系统服务器发送终端认证第一完成消息,并根据共享主密钥计算第一会话密钥; [0105] After the terminal authentication complete message verified by the background, a brother generating the terminal authentication complete message to the background system transmits terminal authentication server a first message is completed, and calculates the first master session key according to the shared key;

[0106] 后台系统服务器接收到终端认证第一完成消息后,验证终端认证第一完成消息;具体的后台系统服务器对终端认证第一完成消息进行合法性验证。 [0106] The system back-end server receives the first terminal authentication complete message, the terminal authentication of the first authentication completion message; specific backend server system a first terminal authentication complete message legality verification.

[0107] 后台系统服务器在验证终端认证第一完成消息通过后,根据共享主密钥计算第一会话密钥。 After the [0107] back-end server authentication system terminal authentication complete message via a first, first session key shared master key calculated.

[0108] 基于上述方式,后台系统服务器与终端之间产生了保证数据传输安全性和/或完整性的第一会话密钥,以便后台系统服务器与终端进行后续数据传输时,对待传输数据进行加密计算和/或校验计算。 When [0108] Based on the above embodiment, generates a safe data transmission and / or integrity of the session key between the first server and a terminal back-office systems to the background system server and the terminal for subsequent transmission data, encrypts the data to be transmitted computing and / or checksum calculations. 该第一会话密钥可以包括加密密钥和/或校验密钥,校验密钥可以为MAC校验计算密钥或HASH校验计算密钥,加密密钥为对称加密计算密钥,该第一会话密钥所包括的加密密钥和/或校验密钥可以为通过共享主密钥进行分解得到的。 The first session key may include an encryption key and / or verification key, the verification key may be calculated as a symmetric encryption key for the MAC calculation of the checksum calculation or a HASH verification key, key encryption keys, which an encryption key included in the first session key and / or verification key may be obtained through the decomposition shared master key.

[0109] 当然,本发明并不局限于此种由终端发起的第一会话密钥生成过程,还可以由后台系统服务器发起该第一会话密钥生成过程。 [0109] Of course, the present invention is not limited to this terminal initiates a first session by the key generation process, the first session key generation process may also be initiated by the backend system server. 此时对于终端的锁定,只要在后台系统服务器接收到终端的标识信息后即可以由后台系统服务器进行判断即可。 At this time, the locking of the terminal, as long as the terminal identification information received in the background after the server system can be determined by a background system to the server.

[0110] 此外,第一会话密钥可以由终端或者后台系统服务器中的任一方生成后,并以对方的公钥进行加密后发送给对方,减少一方的计算复杂度。 [0110] Further, the first session key may be generated by either the terminal or the server after the background system, and transmitted to the other party to the other party's public key is encrypted, the one to reduce the computational complexity.

[0111] 另外,后台系统服务器在验证终端认证第一完成消息通过后,还对终端开放相应的权限,例如:终端可以从后台系统服务器获取智能密码设备对应的用户信息,以便实现后台系统服务器对终端的管理。 [0111] Further, backend system authentication server after the terminal authentication complete message via a first, further appropriate permissions to open the terminal, for example: the user terminal may acquire the device information of the smart password corresponding to the server from back-end systems, in order to achieve back-end server system management of the terminal.

[0112] 终端与后台系统服务器之间生成第一会话密钥的过程可以与下述终端与智能密码设备之间生成第二会话密钥的过程相同。 [0112] generating a first session key between the terminal and the system back-end server processes may be the same key generation process of the second session between the intelligent terminal and the password following device.

[0113] 通过终端与后台系统服务器之间的双向认证,可以确保双方合法性,提高后续处理的安全性。 [0113] By two-way authentication between the terminal and the background system server, you can ensure that both legitimacy and improve the safety of subsequent treatment.

[0114] 以下,给出一个具体的生成第一会话密钥的方式,当然本发明并不局限于此: [0114] The following gives a specific generation method of the first session key, of course, the present invention is not limited thereto:

[0115] I)商户端的终端产生随机数Rl ; Terminal [0115] I) the merchant terminal generates a random number Rl;

[0116] 2)商户端的终端将随机数Rl发送给后台系统服务器,并向后台系统服务器发送认证请求; Terminal [0116] 2) The merchant terminal transmits the random number Rl to the backend system server, and sends the authentication request to the backend system server;

[0117] 3)后台系统服务器接收到来自终端的认证请求,产生随机数R2 ; [0117] 3) background system server receives the authentication request from the terminal, generates a random number R2;

[0118] 4)后台系统服务器向终端发送随机数R2和后台系统服务器证书; [0118] 4) background system server sends the random number R2 and the background system to the terminal server certificates;

[0119] 5)终端使用终端中预存的后台系统服务器证书对应的根证书验证收到的后台系统服务器证书; Root certificate [0119] 5) pre-stored in the terminal using the terminal in the background system to verify the server certificate corresponding to the background system receives the server certificate;

[0120] 如果验证不通过,则结束; [0120] If the authentication is not passed, the ends;

[0121] 如果验证通过,终端产生共享主密钥MKey,用后台系统服务器证书中的公钥对MKey加密得到El ; [0121] If the authentication is passed, the shared master key MKEY terminal generates, using the background system server certificate on the public key MKEY to give El encryption;

[0122] 6)终端连接Rl和R2得到R3,对R3进行摘要计算得到Hl,然后使用终端的私钥对Hl进行签名计算得到SI ; [0122] 6) connected to the terminal obtained Rl and R2 R3, R3 to calculate Hl digest, and then use the private key of the terminal is calculated Hl sign the SI;

[0123] 7)终端将S1、E1和终端证书发送至后台系统服务器; [0123] 7) The terminal S1, E1 and the terminal certificate to the backend system server;

[0124] 8)后台系统服务器使用终端证书对应的根证书验证终端证书合法性; [0124] 8) background system using a server terminal certificate corresponding to the certificate of the root certificate to verify the legitimacy of the terminal;

[0125] 如果验证终端证书不通过,则结束; [0125] If the certificate is not verified by the terminal, the ends;

[0126] 如果验证终端证书通过,则使用终端证书验证SI ; [0126] If the authentication by the terminal certificate, the certificate verification using the SI terminal;

[0127] 如果验证SI不通过,则结束; [0127] If the authentication does not pass SI is ended;

[0128] 如果验证SI通过,则从El中解密得到共享主密钥MKey ; [0128] If the authentication by SI, obtained from El decryption shared master key MKEY;

[0129] 9)后台系统服务器对后台系统服务器证书进行摘要计算得到H2,对终端证书进行摘要计算得到H3,将Rl、R2、H2、H3、S1、El连接后得到Tl,对Tl进行摘要计算后再经过HMAC计算得到“后台系统服务器认证完成消息”; [0129] 9) background system server backend system server certificates the digest calculated H2, the terminal certificate digest calculated H3, the Rl, R2, H2, H3, S1, the El connections obtained Tl, to Tl digest calculated then through the HMAC computed "back-end systems server authentication completion message";

[0130] 10)后台系统服务器发送“后台系统服务器认证完成消息”到终端; [0130] 10) The system server sends back "backend system server authentication completion message" to the terminal;

[0131] 11)终端验证接收到的后台系统服务器发来的“后台系统服务器认证完成消息”; [0131] 11) the received terminal authentication backend system server sent a "back-end server authentication complete message system";

[0132] 如果验证不通过,则结束; [0132] If the authentication is not passed, the ends;

[0133] 如果验证通过,则生成“终端认证完成消息”(参见上述生成“后台系统服务器认证完成消息”的方式); [0133] If verified, the generated "the terminal authentication complete message" (see the above-described embodiment generates a "backend system server authentication completion message"); and

[0134] 12)终端发送“终端认证完成消息”到后台系统服务器; [0134] 12) transmits the terminal "terminal authentication complete message" to the backend system server;

[0135] 13)后台系统服务器验证接收到的“终端认证完成消息”; [0135] 13) backend system server verifies the received "terminal authentication complete message";

[0136] 如果验证不通过,则结束; [0136] If the authentication is not passed, the ends;

[0137] 如果验证通过,则表示双向认证过程成功,双方计算会话密钥,并从会话密钥中分解出的加密密钥K1,用于后台系统服务器与终端之间进行数据传输的加密解密,和/或校验计算的校验密钥MACKEY,用于校验值的生成与校验。 [0137] If verified, then the mutual authentication procedure is successful, both calculated session key and the session key from the decomposition of the encryption key K1, for encryption and decryption of data transmitted between the terminal server and the background system, and / or a checksum calculated verification key MACKEY, for generating a parity check value.

[0138] 如此商户的终端与后台系统服务器之间就进行了双向的身份认证,确保了对方是合法的,并协商出了公共的会话密钥(包括加密密钥和/或校验密钥),可用于终端与后台系统服务器之间数据互传时的数据加密和/或校验值的生成。 [0138] between such merchant terminal server and back-office systems were two-way authentication, to ensure that the other party is legitimate, and a public consultation session key (including encryption keys and / or check key) , generates a data encryption and / or when the check value data to each other between the terminal and the server can be used for background system. 该商户的终端也完成了在后台系统服务器处的“签到”,即可以进行后续的用户信息读取和交易请求的操作请求。 The merchant terminal also completed at the server, back office systems, "check-in", i.e., the operation request may be information reading and subsequent user transaction request.

[0139] 需要说明的是,本例中后台系统服务器与终端之间的传输数据的时候生成的校验值是MAC形式的。 [0139] Note that when transferring data between the present embodiment, the background system server and the terminal is generated check value MAC form. 在具体实现时,所述的校验值并不一定只是用MAC密钥生成的MAC值,也可以通过生成摘要再签名的方式生成校验值。 In specific implementation, the check value is not necessarily just a key MAC value generated by MAC, the check value may be generated by generating a digest further signatures.

[0140] 通过终端与后台系统服务器相互认证建立安全通道,认证通过以后即完成了持有该终端的商户在后台系统服务器的“签到”,即后台系统服务器认定了持有该终端的商户的合法性并与终端协商出第一会话密钥,以便利用该第一会话密钥实现了后台系统服务器与终端的交易数据交互时的加密传输,做好后续对智能密码设备对应的用户信息传输以及交易数据传输等操作的准备工作。 [0140] certification to establish a secure channel through a terminal server and back-end systems to each other, after certification by holding the terminal to complete the merchants in the "check-in" back-end server systems, namely, back-office systems identified merchant server holding the terminal legitimate and negotiate with the terminal of the first session key, in order to achieve by using the first session key encrypted transmission when the background system transaction data exchange server and the terminal, do follow smart password for user information corresponding to the device and transaction data transmission preparation operation. 之后该经过后台系统服务器认证的终端可以通过后台系统服务器对智能密码设备的合法性进行验证,并获取合法智能密码设备的相关用户信息。 After the back-end system through a terminal server authentication can be performed by the server back-end system to verify the legality of smart password devices and smart password device to obtain legal information related to the user.

[0141] 其中,终端与智能密码设备进行相互认证,并分别生成第二会话密钥的过程如下: [0141] wherein the intelligent terminal and the cryptographic device mutual authentication, and the second session key generation process are as follows:

[0142] 终端生成第三待签名信息;具体的,终端可以通过随机数生成器生成随机数作为第三待签名信息,也可以采用自身的序列号、MAC地址或者其他的标识信息作为第三待签名信息,也可以是随机数和标识信息的组合作为第三待签名信息。 [0142] The third terminal generates information to be signed; Specifically, the terminal may be a random number as the third signature information itself may be used to generate the sequence number by a random number generator, MAC address or other identifying information to be used as a third signature information may be a combination of the random number and the identification information as the third information to be signed. 其中,只要可以被智能密码设备进行签名的信息均可以作为第三待签名信息,以便智能密码设备返回签名信息后对智能密码设备进行认证。 Among them, as long as the information can be signed smart password devices can be used as a third signature information in order to return the device signature smart password information for the smart device password authentication. 随机数可以为数字、字母、特殊字符等字符中的一种或任意几种的组 The random number may be one or several arbitrary numbers, letters, special characters in the character set

口ο Mouth ο

[0143] 终端向智能密码设备发送第三待签名信息以及第二认证请求信息;具体的,终端可以通过无线通信链路将第三待签名信息以及第二认证请求信息向智能密码设备进行发送,以保证信息发送的便捷性;也可以通过有线接口将第三待签名信息以及第二认证请求信息向智能密码设备进行发送,以提高信息传输的安全性。 [0143] The third terminal transmits information to be signed and a second device authentication password request information to the smart; Specifically, the third terminal may be signed information and the second authentication request message over a wireless communication link to transmit to the smart cryptographic device, to ensure ease of information transmitted; may be the third signature and the second authentication information request message via the wired interface transmits the password to the smart device, to improve the security of information transmission.

[0144] 智能密码设备接收到第三待签名信息以及第二认证请求信息后,生成第四待签名信息;具体的,智能密码设备可以在接收到第二认证请求信息后,生成第四待签名信息,可以通过随机数生成器生成随机数作为第四待签名信息,也可以采用自身的序列号、MAC地址或者其他的标识信息(例如设备访问码DAC)作为第四待签名信息,也可以是随机数和标识信息的组合作为第四待签名信息。 [0144] Smart device after receiving the third password to be signed authentication information and the second request information, generating the fourth information to be signed; Specifically, the intelligent device may be password after receiving the second authentication request message, generating a fourth signature to be information, a random number may be generated by a random number generator to be used as a fourth signature information, may also be employed own serial number, MAC address or other identification information (e.g., device access code DAC) to be the fourth signature information, and may be a combination of the random number and the identification information of a fourth message to be signed. 其中,只要可以被终端进行签名的信息均可以作为第四待签名信息,以便终端返回签名信息后对终端进行认证。 Wherein, as long as the information can be signed can be used as a fourth terminal information to be signed, the signature information is returned to the terminal authenticating the terminal. 随机数可以为数字、字母、特殊字符等字符中的一种或任意几种的组合。 The random number may be numbers, letters, special characters and other characters of one or a combination of arbitrary ones.

[0145] 另外,智能密码设备在接收到第三待签名信息以及第二认证请求信息后,生成第四待签名信息时,智能密码设备还可以在接收到第二认证请求信息后,由休眠状态转换为唤醒状态;智能密码设备在唤醒状态下生成第四待签名信息。 When [0145] Further, the smart cryptographic device after receiving the third message to be signed and the second authentication request message, generates a fourth message to be signed, the device may also be smart password after receiving a second authentication request message, the sleep state converted into an awake state; fourth generation intelligent device password information to be signed in the wake state. 由休眠状态转换为唤醒状态以完成正常工作,并在智能密码设备完成工作后,再次切换为休眠状态,以减少电能损耗,延长使用寿命。 It converted from the sleep state to the awake state to complete the work, and the work done smart cryptographic device, again switched to the sleep state to reduce power consumption, prolong life.

[0146] 智能密码设备利用智能密码设备的私钥对第三待签名信息进行签名获得第二签名信息,并向终端发送第四待签名信息、第二签名信息以及智能密码设备证书; [0146] Smart device password using a smart third private key of the cryptographic device signature information to be signed to obtain the second signature information, and transmits fourth information terminal to be signed, the signature information and the second cryptographic smart device certificate;

[0147] 终端接收到第四待签名信息、第二签名信息以及智能密码设备证书后,利用预存的智能密码设备证书对应的根证书验证智能密码设备证书是否合法;具体的,终端还需要获取智能密码设备证书对应的根证书,以便对智能密码设备证书进行合法性验证。 [0147] the terminal receiving the fourth message to be signed, the signature information and the second cryptographic smart device certificate, a root certificate stored on the smart password using the corresponding device certificate to verify whether the certificate is valid smart cryptographic device; Specifically, the terminal needs to obtain intelligence root certificate corresponding cryptographic device certificate in order to verify the legitimacy of the smart device certificate password.

[0148] 终端在验证智能密码设备证书合法后,利用智能密码设备证书中的公钥对第二签名信息进行验证; [0148] After the terminal device certificate valid smart password verification, the smart device using the public key certificate in the second cryptographic signature information for verification;

[0149] 终端在验证第二签名信息通过后,利用终端的私钥对第三待签名信息和第四待签名信息进行签名获得第三签名信息,生成第一会话密钥生成因子,利用智能密码设备证书中的公钥对第一会话密钥生成因子进行加密获得第二加密信息;具体的,终端在验证智能密码设备证书以及智能密码设备的签名均通过后,生成终端与智能密码设备之间数据交互的会话密钥的生成因子(即第一会话密钥生成因子,该第一会话密钥生成因子用于生成终端与智能密码设备之间数据交互的会话密钥),同时,利用智能密码设备证书中的公钥对该第一会话密钥生成因子进行加密,以便保证第一会话密钥生成因子传输的安全性。 [0149] After the second signature verification in the terminal information, the terminal using the third private key to be signed, signature information and the fourth information to be signed to obtain a third signature information generation factor to generate a first session key, using a smart password between the terminal and the smart device specific password, the intelligent terminal the cryptographic device after the verification certificate and signature devices are smart password by generating; device certificate a public key of the first session key generation factor to obtain a second encrypted information is encrypted session key generating data exchange factor (i.e., the first session key generation factor, the first session key factor for generating the session key generation data interaction between the intelligent terminal and the cryptographic device), while using a smart password device certificate public key factors for the first session key generated for encryption, in order to ensure that the first generation session key transmission safety factor.

[0150] 终端向智能密码设备发送第三签名信息、第二加密信息以及终端证书; [0150] The third signature information terminal transmits to the smart cryptographic device, and a second terminal certificate encrypted information;

[0151] 智能密码设备接收到第三签名信息、第二加密信息以及终端证书后,利用预存的终端证书对应的根证书验证终端证书是否合法;具体的,智能密码设备还需要获取到终端证书对应的根证书,以便对终端证书进行合法性验证。 [0151] Smart device receives the third cryptographic signature information, the second encrypted information and a terminal certificate, the root certificate verification using the pre-stored terminal certificate corresponding to the terminal certificate is legitimate; Specifically, the smart password to the terminal device needs to obtain the corresponding certificate root certificate to verify the legitimacy of the terminal certificate.

[0152] 智能密码设备在验证终端证书合法后,利用终端证书中的公钥对第三签名信息进行验证; [0152] After verifying that the cryptographic device intelligent terminal certificate valid, the signature third verification information using the terminal's public key certificate;

[0153] 智能密码设备在验证第三签名信息通过后,生成第二会话密钥生成因子,利用终端证书中的公钥对第二会话密钥生成因子进行加密获得第三加密信息,并生成智能密码设备认证完成消息;具体的,智能密码设备在验证终端证书以及终端的签名信息均通过后,生成终端与智能密码设备之间数据交互的会话密钥的生成因子(即第二会话密钥生成因子,该第二会话密钥生成因子用于生成终端与智能密码设备之间数据交互的会话密钥),同时,利用终端证书中的公钥对该第二会话密钥生成因子进行加密,以便保证第二会话密钥生成因子传输的安全性,另外,还生成智能密码设备认证完成消息,以便告知终端智能密码设备认证完成。 [0153] smart password authentication device after the third signature information, generating a second session key generation factor, using the terminal's public key certificate generation factor of the second session key to obtain encrypted third encryption information, and generate smart cryptographic device authentication complete message; specifically, the cryptographic device after the verification smart terminal certificate and signature information are by the terminal, generating a session key factors generates data interaction between the intelligent terminal and the cryptographic device (i.e., a second session key generating factor, the second session key to generate a session key factor for data exchange between the terminal and the smart password generating device), while the terminal public key certificate generates a second session key encrypted factors to generating a second session key to ensure the security of the transmission factor, in addition, also generates cryptographic smart device authentication complete message to inform the terminal equipment smart password authentication is completed.

[0154] 智能密码设备向终端发送第三加密信息以及智能密码设备认证完成消息; [0154] Smart device transmits the password information, and the third smart password encryption device authentication complete message to the terminal;

[0155] 终端接收到第三加密信息以及智能密码设备认证完成消息后,验证智能密码设备认证完成消息;具体的,终端还认证智能密码设备认证完成消息,以确保认证完成消息的合法来源。 [0155] After receiving the encrypted information, and the third device authentication complete message smart password, smart password verification device authentication complete message; Specifically, the terminal authentication complete message smart password authentication device, the authentication is completed in order to ensure the legitimate sources.

[0156] 终端在验证智能密码设备认证完成消息通过后,生成终端认证第二完成消息,向智能密码设备发送终端认证第二完成消息,并根据第一会话密钥生成因子以及解密第三加密信息获得的第二会话密钥生成因子生成第二会话密钥;具体的,终端在认证智能密码设备认证完成消息通过后,生成终端认证第二完成消息,以告知智能密码设备终端认证完成,同时终端根据第一会话密钥生成因子以及解密第三加密信息获得的第二会话密钥生成因子生成第二会话密钥,以便与智能密码设备之间通过该第二会话密钥进行数据交互。 [0156] In the terminal device authentication smart password authentication completion message through, generating a second terminal authentication complete message, the intelligent information to a second cryptographic device transmits the terminal authentication complete message, and generates a first session key factor in accordance with a third encryption and decryption obtaining a second session key generation factor generated second session key; specifically, after completion message through the terminal, generating a second terminal authentication complete message authentication smart password authentication device, the cryptographic device to notify the intelligent terminal authentication is completed, while the terminal generating a first session key according to a second factor and a third decrypting the encrypted session key obtained information generation factor generated second session key, for data exchange between the device and smart password via the second session key.

[0157] 智能密码设备接收到终端认证第二完成消息后,验证终端认证第二完成消息;具体的,智能密码设备还认证终端认证第二完成消息,以确保认证完成消息的合法来源。 [0157] smart password to the terminal device receives second authentication complete message, a second authentication terminal authentication complete message; Specifically, the apparatus further smart password authentication terminal authentication complete message to the second, to ensure that legitimate source authentication completion message.

[0158] 智能密码设备验证终端认证第二完成消息后,根据第二会话密钥生成因子以及解密第二加密信息获得的第一会话密钥生成因子生成第二会话密钥。 [0158] smart password authentication terminal device verification after completion of the second message, according to the first session and the second session key generation factor decrypting the second encrypted key information generation factor generation obtained second session key. 具体的,智能密码设备在验证终端认证第二完成消息后,根据第二会话密钥生成因子以及解密第二加密信息获得的第一会话密钥生成因子生成第二会话密钥,以便与终端之间通过该第二会话密钥进行数据交互。 Specifically, after the intelligent terminal authentication password device in the second authentication complete message, the session key generation in accordance with a second factor, and a first decrypting the second encrypted session key obtained information generation factor generated second session key, to the terminal between exchanges data through the second session key.

[0159] 当然,本发明并不局限于此种由终端发起的第二会话密钥生成过程,还可以由智能密码设备发起该第二会话密钥生成过程。 [0159] Of course, the present invention is not limited to such a terminal initiates a second session key generation process may also initiate the second session key generation process by the smart cryptographic device.

[0160] 此外,第二会话密钥可以由终端或者智能密码设备中的任一方生成后,并以对方的公钥进行加密后发送给对方,减少一方的计算复杂度。 [0160] Further, the second session key may be generated by either a password or a smart terminal device, the public key of the other party and to send to each other is encrypted, the one to reduce the computational complexity.

[0161] 当然,本发明的终端与智能密码设备之间生成第二会话密钥的过程可以与上述终端与后台系统服务器之间生成第一会话密钥的过程相同。 Of course the same, generating a second session between the terminal and the smart key cryptographic apparatus of the present invention [0161] may be generated during the first session key between the terminal and the background system server process. 即第二会话密钥也可以通过分解共享主密钥的方式获得。 I.e., obtain a second session key may be shared by the master key in an exploded manner.

[0162] 以下,给出一个具体的生成第二会话密钥的方式,当然本发明并不局限于此: [0162] The following gives a specific manner to generate a second session key, of course, the present invention is not limited thereto:

[0163] I)终端向智能密码设备发送认证请求,并发送随机数ROl ; [0163] I) the terminal sends an authentication request to the smart device password, and transmits the random number ROl;

[0164] 2)处于休眠状态的智能密码设备在接收到终端发来的认证请求以后被唤醒; Smart cryptographic device [0164] 2) is in a dormant state after receiving the wake-up terminal sent an authentication request;

[0165] 3)智能密码设备生成随机数R02,并对ROl进行摘要计算并用其私钥加密摘要生成签名S01,智能密码设备将随机数R02、签名SOl以及智能密码设备证书发送给终端; [0165] 3) Intelligent cryptographic device generates a random number R02, and ROl calculated digest and encrypted digest with its private key to generate the signature S01, the cryptographic device intelligent random number R02, and the terminal SOl Smart signature certificate to the cryptographic device;

[0166] 4)终端使用终端内预存的智能密码设备证书对应的根证书验证智能密码设备证书的合法性; [0166] 4) pre-stored in the terminal using the terminal device certificate smart password corresponding to the root certificate to verify the legitimacy of the certificate of the smart device password;

[0167] 如果验证智能密码设备证书不合法,则结束连接; [0167] If the authentication smart password device certificate is invalid, the end of the connection;

[0168] 如果验证智能密码设备证书合法,则执行步骤5); [0168] If the authentication device certificate valid smart password, step 5);

[0169] 5)终端验证签名SOl是否正确, [0169] 5) SOl terminal to verify the signature is correct,

[0170] 如果验证签名SOl不正确,则结束连接; [0170] If the signature verification SOl is not correct, end the connection;

[0171] 如果验证签名SOl正确,则执行步骤6); [0171] If the verification of the signature SOl correct, step 6);

[0172] 6)终端将ROl、R02连接起来组成R01| R02,对R01| R02生成摘要并签名,得到签名S02,生成随机数R03,利用智能密码设备的公钥加密R03生成密文EOlt^f EO1、终端证书和S02发送给智能密码设备; [0172] 6) The terminal ROl, R02 are connected together to form R01 | R02, to R01 | R02 digest and signature generation, signature S02 is obtained, R03 generates a random number, generates a ciphertext using the public key encryption EOlt ^ f R03 smart password device EO1, S02 and transmitted to the terminal certificate smart cryptographic device;

[0173] 7)智能密码设备使用智能密码设备预存的终端证书对应的根证书验证终端证书的合法性; Terminal certificate root certificate [0173] 7) using a smart device smart password stored cryptographic device corresponding to the terminal to verify the legitimacy of the certificate;

[0174] 如果验证终端证书不合法,则结束连接; [0174] If the authentication terminal certificate is invalid, the connection end;

[0175] 如果验证终端证书合法,则执行步骤8); [0175] If the authentication terminal certificate valid, step 8);

[0176] 8)智能密码设备验证签名S02是否正确; [0176] 8) smart password to verify the signature device S02 is correct;

[0177] 如果验证签名S02不正确,则结束连接; [0177] If the signature verification S02 is not correct, end the connection;

[0178] 如果验证签名S02正确,则执行步骤9); [0178] If the correct verification of the signature S02, step 9 is performed);

[0179] 9)智能密码设备生成随机数R04,利用终端的公钥对R04加密生成密文E02,将密文E02发给终端; [0179] 9) cryptographic smart device generates a random number R04, R04 using the terminal's public key to generate a ciphertext encrypted E02, E02 ciphertext to the terminal;

[0180] 10)终端生成认证完成消息,终端对终端证书进行摘要运算得到H01,对智能密码设备证书进行摘要运算得到H02,将R01、R02、E01,E02,H01、H02、S01、S02连接后得到TOI,然后对TOl进行摘要并签名,得到“后台认证完成消息” H)l,向智能密码设备发送H)1 ; After [0180] 10) the terminal generates an authentication complete message, the terminal of the terminal certificate digest is obtained H01, intelligent device certificate password digest is obtained H02, connect R01, R02, E01, E02, H01, H02, S01, S02 to give a TOI, and then TOl digest signature to obtain a "back-end authentication complete message" H) L, the device transmits a password to the intelligent H) 1;

[0181] 11)智能密码设备收到R)1 JiFOl进行验证; [0181] 11) cryptographic smart device receives R) 1 JiFOl be verified;

[0182] 如果验证FOl不通过,则返回错误信息结束连接;[0183] 如果验证FOl通过,则执行步骤12); [0182] If the authentication FOl not passed, the error message returned to end the connection; [0183] If the authentication by FOl, step 12);

[0184] 12)智能密码设备以同样方式生成认证完成消息H)2,并将生成的认证完成信息发送给终端; [0184] 12) smart password authentication device generates a complete message in the same manner H) 2, and the completion of the generated authentication information to the terminal;

[0185] 13)终端验证F02; [0185] 13) the terminal authentication F02;

[0186] 如果验证F02不通过,则返回错误信息结束连接; [0186] If the authentication is not through F02, the error message is returned to end the connection;

[0187] 如果验证F02通过,则执行步骤14); [0187] If the authentication by F02, step 14);

[0188] 14)智能密码设备与终端分别连接R03、R04,得到R03 | R04,利用R03 | R04生成第二会话密钥K2(该密钥可以仅为加密密钥),用于两者之后数据的安全传输。 [0188] 14) intelligent terminals respectively connected cryptographic devices and R03, R04, to give R03 | R04, using R03 | R04 generates a second session key K2 (the key encryption key can only), after the data for both the secure transmission.

[0189] 由此可见,终端与智能密码设备的相互认证过程(过程二)与后台和终端相互认证(过程一)不同之处在于: [0189] Thus the process of mutual authentication, cryptographic devices and intelligent terminal (Process II) and the back terminal mutual authentication (process a) except that:

[0190] 过程一生成了加密密钥以及校验密钥(例如MACKEY),过程二只生成了加密密钥,没有生成校验密钥(当然也可以生成校验密钥)。 [0190] Process life became verification key and the encryption key (e.g. MACKEY), the process generates two encryption keys, not generated verification key (verification key may be generated, of course).

[0191] 校验密钥的作用是用来生成校验值,校验值是用来校验数据传输过程中是否被篡改的。 Effect [0191] verification key is used to generate the check value, check value is used to verify whether the data has been tampered with during transmission. 数据发送方采用特定算法利用校验密钥将传输的数据生成校验值,数据接收方利用校验值和校验密钥来校验接收的数据是否被篡改。 If a data sender uses a specific algorithm using the data transmission verification key check value is generated, the data receiving side using the check value and the verification key to verify the received data from being tampered. 而针对于本发明终端与智能密码设备后续的流程,终端与智能密码设备之间传输交易数据时,用户可以通过智能密码设备上显示的信息进行人为判断数据是否正确,所以无须再引入校验值;对于终端也可以通过校验智能密码设备发来的签名来判断信息是否被篡改,也无需引入校验值,因此为了简化处理流程,提高通信效率,在生成第二会话密钥时,可以不需要生成校验密钥。 Determining whether the data is correct for human use in the present invention, the intelligent terminal and the cryptographic device's transmission between subsequent processes, the intelligent terminal and the cryptographic device, the user can display the information on the smart device password, the check value without reintroduction ; for the terminal may also be smart password by checking the signature sent by the apparatus determines whether information has been tampered with, and without the introduction of the check value, so in order to simplify the process flow, improve the communication efficiency when generating the second session key may not be verification key needs to be generated. 当然,为了进一步提高安全性,也可以生成校验密钥。 Of course, in order to further improve security, verification key may be generated.

[0192] 对于后台系统服务器和终端之间,因为后台系统服务器并不知晓交易具体内容,为保证安全,则需通过引入校验值的方式来判断数据是否被篡改。 [0192] For background system between the server and the terminal, because the back-end server system does not know the transaction details, for safety need to check value is determined by way of introduction has been tampered data.

[0193] 由此可见,过程一是通过一方产生共享主密钥,再采用特殊的算法对共享主密钥进行处理,而分解得到加密密钥和校验密钥;过程二是认证双方各产生一个加密密钥的组成因子,最后合成加密密钥。 [0193] Thus, one produced by the process of one of the shared master key, and then using special algorithms for processing the shared master key, encryption key and decomposed to obtain verification key; process two sides are each generated authentication the form factor of a cryptographic key, the encryption key last synthesis. 当然,过程一中采用的会话密钥生成方式与过程二中采用的会话密钥生成方式既可以用于终端与后台系统服务器之间会话密钥的生成,也可以用于终端与智能密码设备之间会话密钥的生成。 Of course, the session key generation session key generation described manner during a procedure employed two used both for generating a session key between the terminal server and the background system, the terminal may also be used for equipment with a smart password Room session key generation.

[0194] 由此,在终端与智能密码设备进行了双向认证后,可以防范钓鱼风险,防止传输信息的篡改、远程劫持和中间人攻击等交易风险,从而有效的保障终端与智能密码设备的资金安全。 [0194] Thus, in the terminal equipment and intelligent two-way authentication password, you can prevent the risk of fishing, to prevent tampering with information transmission, remote hijacking, and intermediary attacks trading risk, which funds safe and effective and smart password protection terminal equipment .

[0195] 通过构建后台系统服务器与终端、智能密码设备之间进行相互认证的体系,建立三者之间的安全通道,防范钓鱼风险,防止交易信息篡改、远程劫持和中间人攻击等交易风险,从而有效保障持有智能密码设备的用户与持有终端的商户的账户资金安全。 [0195] by between back-office systems and terminal servers, smart devices to build mutual authentication password system, establish a secure channel between the three, to prevent the risk of fishing, transaction information to prevent tampering, hijacking, and man in the middle attacks and other remote transaction risk, thus effective security funds in the account held by the user and the terminal holding smart password device business.

[0196] 当然,本发明中的第一会话密钥可以预存在后台系统服务器和终端中,也可以通过后台系统服务器和终端协商生成,在协商生成弟一会话S钥时,可以在终端与后台系统服务器进行认证的过程中协商生成(参见上述终端与后台系统服务器进行相互认证,并分别生成第一会话密钥的流程)。 [0196] Of course, the first session key of the present invention may be stored in the server and the terminal in the background system, negotiation may be generated by a background system server and the terminal, when a session negotiation brother generating key S, and the background may be a terminal process for authentication of the server system generates a negotiation (see above background system terminal and the server perform mutual authentication, and generate a first flow of the session key).

[0197] 当然,本发明中后台系统服务器与终端之间传输的所有信息均可以通过第一会话密钥加密计算和/或校验计算后传输。 [0197] Of course, the present invention all of the information transfer between the server and the terminal background system can be calculated after the first session key encrypted and / or checksum calculated transmission. [0198] 本发明中的第二会话密钥可以预存在终端和智能密码设备中,也可以通过终端和智能密码设备协商生成,在协商生成第二会话密钥时,可以在终端与智能密码设备进行认证的过程中协商生成(参见上述终端与智能密码设备进行相互认证,并分别生成第二会话密钥的流程)。 [0198] The second session key of the present invention may be pre-stored in the terminal device and smart password may be generated by the terminal equipment and a smart password negotiation, when generating the second session key negotiation, smart terminal may cryptographic device negotiating the authentication process generates (see above and the smart terminal device mutual authentication password, and generates a second session key of the process).

[0199] 当然,本发明中终端与智能密码设备之间传输的所有信息也均可以通过第二会话密钥加密计算和/或校验计算后传输。 [0199] Of course, the present invention all of the information transmitted between the intelligent terminal and the cryptographic device also can be calculated after the second session key to encrypt and / or checksum calculated transmission.

[0200] 终端获取用户信息: [0200] User terminal acquires information:

[0201] 具体的,本步骤中,终端根据扫描到的智能密码设备的标识信息获取智能密码设备对应的用户信息(例如,可以是用户的照片、姓名、账号等信息),具体可以通过但不限于以下方式获取智能密码设备对应的用户信息: [0201] Specifically, in this step, the terminal acquires the user information of the smart password corresponding to the device according to the identification information scanned smart cryptographic device (for example, a user's photo, name, account number and other information), in particular by, but not limited to the following smart way to get user password information corresponding to the device:

[0202] 方式一、终端从后台系统服务器获取智能密码设备对应的用户信息: [0202] one embodiment, the terminal apparatus acquires the user information corresponding to the password from the smart backend system server:

[0203] 终端向后台系统服务器发送智能密码设备的标识信息以及用户信息读取请求;具体的,在终端向后台系统服务器发送智能密码设备的标识信息以及用户信息读取请求时,可以直接向后台系统服务器发送智能密码设备的标识信息以及用户信息读取请求,也可以利用第一会话密钥对智能密码设备的标识信息和/或用户信息读取请求进行加密计算和/或校验计算后再发送,以保证信息传输的安全性和完整性。 [0203] transmits the terminal identification information of the smart device password and the user information fetch request to the backend system server; Specifically, when transmitting the identification information of the smart device password and the user information fetch request to the backend system server terminal, directly to the background the system server sends the smart cryptographic device identification information and the user information read request, the session key can also use the identification information of the first intelligent device password and / or user information read request for cryptographic computations and / or checksum calculated after send to guarantee the security and integrity of information transmission.

[0204] 后台系统服务器接收到智能密码设备的标识信息以及用户信息读取请求后,根据智能密码设备的标识信息获取与智能密码设备对应的用户信息;具体的,后台系统服务器预存了已注册的每个智能密码设备对应的用户信息,以便根据接收到的智能密码设备的标识信息获得该智能密码设备对应的用户信息。 [0204] After the background system receives the identification information of the server device and the user smart password information read request, the user information acquisition device corresponding to the identification information of the intelligent smart password according to the password device; Specifically, the backend system server prestores registered each smart user information corresponding to the cryptographic device, to obtain user information corresponding to the smart cryptographic apparatus according to the identification information of the smart device received password. 当然,如果终端向后台系统服务器发送了加密计算和/或校验计算后的信息,那么后台系统服务器还需要利用第一会话密钥对接收到的信息进行解密和/或校验验证计算无误后,获得完整的智能密码设备的标识信息和/或用户信息读取请求。 Of course, if the terminal transmits the encrypted information and the calculation / or to the background system calculates check server, the backend system server requires the use of information received first session key to decrypt and / or verify the checksum calculation is correct , complete intelligent identification information of the cryptographic device and / or subscriber information read request.

[0205] 此外,为了确保数据交互的安全性以及智能密码设备的合法性,后台系统服务器在接收到智能密码设备的标识信息以及用户信息读取请求后,还判断智能密码设备的标识信息是否包含在后台系统服务器中预存的智能密码设备异常名单中;后台系统服务器在判断出智能密码设备的标识信息在智能密码设备异常名单中后,获取锁定智能密码设备指令,以及利用后台系统服务器的私钥对锁定智能密码设备指令进行签名获得第五签名信息,并通过终端向智能密码设备发送锁定智能密码设备指令以及第五签名信息;智能密码设备接收到锁定智能密码设备指令以及第五签名信息后,利用预存的后台系统服务器证书中的公钥对第五签名信息进行验证;智能密码设备在验证第五签名信息通过后,根据锁定智能密码设备指令执行锁定操作。 [0205] Further, in order to ensure the legitimacy and security of cryptographic devices intelligent data interaction, the system back-end server receives the password identification information of the smart device and the user information read request, the identification information of the smart further determines whether the cryptographic device comprising list of equipment malfunction smart password stored in the background system server; backend system server determines that the password identification information of the smart device list after the abnormality cryptographic smart devices, smart password locking device acquires instruction, and the use of the private key of the backend system server smart password locking device to obtain a fifth instruction signed signature information, and transmits lock command to the smart device smart password through the terminal device, and a fifth cryptographic signature information; receiving the intelligent cryptographic device the cryptographic device locking command and smart fifth signature information, fifth signature verification information stored in the background system using the server's public key certificate; intelligent device password verification signature information through the fifth, the locking device instruction smart password locking operation is performed.

[0206] 具体的,智能密码设备异常名单可以为黑名单、挂失名单、失效名单等任意表示智能密码设备身份非法的名单;如果智能密码设备的标识信息在智能密码设备异常名单中,则说明该智能密码设备是非法的智能密码设备,此时,为了确保安全性,后台系统服务器通过终端向该非法智能密码设备发送锁定指令以锁定该非法智能密码设备,同时,后台系统服务器还对该锁定指令进行签名,以确保锁定指令的合法来源,避免非法锁定智能密码设备的恶意操作。 [0206] In particular, the device may be abnormal smart password list is a blacklist, report the loss list, failure list, etc. represent any unlawful list of smart password device identity; if the identification information of the device in the list of smart password abnormal smart password device, it indicates that the intelligent smart cryptographic device the cryptographic device is illegal, this time, in order to ensure security, the background system to the server via the terminal lock instruction sent illegal smart cryptographic device to lock the smart password illegal devices, while the background system server further lock instruction sign, in order to ensure legal sources locked instruction, to avoid illegal smart password locking device malicious actions.

[0207] 当然,本发明并不局限于此,对于实际应用来说,只要可以合法锁定非法智能密码设备即可。 [0207] Of course, the invention is not limited to this, for practical purposes, as long as you can legally lock the device to illegal smart password.

[0208] 另外,后台系统服务器也可以不对锁定指令进行签名,仅发送锁定指令至非法终端以锁定该非法终端。 [0208] Further, backend system server may not lock instruction sign, only to send a lock instruction to lock the illegal terminal illegal terminal.

[0209] 智能密码设备根据锁定智能密码设备指令执行锁定操作可以包括:智能密码设备拒绝执行任何请求,销毁自身存储的证书等任意方式。 [0209] The smart password lock the locking device to perform instruction operations may smart cryptographic device comprising: a cryptographic smart devices refuse to accept any request, to destroy any way certificate stored therein.

[0210] 当然,后台系统服务器在发送锁定指令后,还可以执行拒绝该非法智能密码设备的任何请求。 [0210] Of course, the backend system server after transmitting the lock command, the request may also perform any illegal smart password rejected devices.

[0211] 可见,当用户遗失了智能密码设备后可以向后台系统服务器进行挂失,后台系统服务器将该智能密码设备的设备识别码登记到挂失名单上;或者出现账户异常遭到举报等情况,后台系统服务器也会将这些智能密码设备登记在黑名单中。 [0211] visible, when the user password is lost smart device may report the loss to the backend system server, the backend system server registration device identification code on the smart password to report the loss of the device list; or the like where the account is flagged abnormality occurs, background the system server will these smart password device registration in the blacklist. 这些异常名单中的设备都会作为异常设备登记在异常名单上。 These abnormalities are a list of devices registered on the device abnormality exception list. 每次交易之前,后台系统服务器会对智能密码设备进行认证,认证过程中会将该设备标识与异常名单比对,若在名单上即对该智能密码设备进行锁定。 Before each transaction, the server will back-office systems smart password authentication device, the authentication process will identify and list the equipment abnormal alignment, if that is the smart password locking device on the list. 应用该方式,若有人盗用他人的智能密码设备,并企图非法使用该智能密码设备进行转账盗取用户资金时,由于后台系统服务器每次交易之前都会对智能密码设备进行认证,后台系统服务器可以远程将这个智能密码设备锁定,因此即使该智能密码设备被别人被非法盗用也能保障用户账户不受损失。 In applying this way, if anyone is smart password theft devices of others, and attempted illegal use of the smart password to steal user equipment transfers of funds, due to the equipment will be on smart password authentication server before each transaction back-office systems, back-end server systems remotely this smart password device lock, even if the others are smart password device is also illegal use of user accounts to protect against losses.

[0212] 此外,本发明中,后台系统服务器通过终端向智能密码设备发送锁定智能密码设备指令以及第五签名信息时,还可以利用第一会话密钥对锁定智能密码设备指令以及第五签名信息进行加密计算和/或校验计算,以便保证锁定智能密码设备指令以及第五签名信息传输的安全性和/或完整性,终端接收到经加密计算和/或校验计算后的信息后,利用第一会话密钥进行解密计算和/或校验验证计算后,获得锁定智能密码设备指令以及第五签名信息。 When [0212] In the present invention, the backend system server device command and a fifth cryptographic smart signature information transmitted to the smart lock password through the terminal device, may also use the session key information of the first intelligent lock instruction and the fifth signature cryptographic apparatus after encryption calculation and / or checksum calculation, in order to ensure the locking device smart password command and fifth security information transfer signature and / or integrity of the information receiving terminal and / or post-encrypted checksum calculation calculated using after the first session key to decrypt calculations and / or verify the checksum calculation to obtain intelligent lock instruction and a fifth cryptographic device signature information. 当然,终端在获得锁定智能密码设备指令以及第五签名信息后,还可以利用第二会话密钥对锁定智能密码设备指令以及第五签名信息进行加密计算和/或校验计算后,将加密计算和/或校验计算后的信息发送至智能密码设备,以保证信息传输的安全性和/或完整性,智能密码设备在接收到终端发送的信息后,进行解密计算和/或校验验证计算,以获得锁定智能密码设备指令以及第五签名信息。 Of course, the terminal after receiving a locking command and a fifth cryptographic device intelligent signature information, the device may also be smart password lock command and a fifth encrypted signature information is calculated and / or checksum calculated using the second session key, the encryption calculation and information and / or cryptographic checksum calculation is sent to the intelligent device to ensure the security of information transmission and / or integrity, cryptographic smart device after receiving the message sent by the terminal, to decrypt calculate and / or verify the checksum calculated to get smart password lock equipment Directive and the fifth signature information.

[0213] 另外,为了保证用户信息的安全性,后台系统服务器还需要通过智能密码设备持有者的授权才能将该智能密码设备对应的用户信息发送给终端。 [0213] Further, in order to ensure security, the background system needs the user information server sends the user information to the smart password corresponding to the terminal device through an authorized password to the intelligent device holder. 后台系统服务器通过终端向智能密码设备发送用户授权请求信息(例如,该用户授权请求信息可以是随机数);智能密码设备接收到用户授权请求信息后,生成授权信息(例如,该授权信息可以是对该随机数进行签名后得到的信息),并通过终端向后台系统服务器发送授权信息;后台系统服务器接收到授权信息后,向终端发送用户信息读取请求的响应信息。 Backend system server authorization request information through the terminal to the smart password sent by the user (e.g., the user authorization request message can be a random number); the intelligent cryptographic device receives a user authorization request information, generating authorization information (e.g., the authorization information may be after signing the random number obtained information), and transmits authorization information to the background system server via a terminal; backend system server after receiving the authorization message, transmits the response information of the user information read request to the terminal. 当然,后台系统服务器还可以利用后台系统服务器的私钥将用户授权请求信息进行签名后,通过终端向智能密码设备进行发送,智能密码设备接收到签名的信息后,对签名进行验证,验证通过后则认为用户授权请求信息是来自于合法的后台系统服务器,并对该请求进行确认以授权后台系统服务器;智能密码设备也可以利用智能密码设备的私钥对授权信息进行签名后通过终端发送给后台系统服务器,后台系统服务器接收到签名的信息后,对签名进行验证,验证通过后则认为授权信息是来自于正确的智能密码设备,以根据授权信息进行后续操作;后台系统服务器还可以利用第一会话密钥对用户授权请求信息进行加密计算和/或校验计算后发送给终端,终端利用第一会话密钥对接收到的信息进行解密计算和/或校验验证计算;终端利用第二会话密钥对用户 Of course, back-end server system can also use the private key of the backend system server after the user authorization request signed message, transmits, intelligent cryptographic device after receiving the information of the signature, verifies the signature by the cryptographic device to the intelligent terminal, verified by It believes that the user authorization request message is from a legitimate back-end systems server and confirm the request to authorize the server back-end systems; smart password device can also be used to send back through the terminal equipment of the private key smart password information to sign the authorization after the system server, the backend system server receives the signature information, verifies the signature, and after the verification is considered authorization information from the correct password intelligent devices to subsequent operations in accordance with authorization information; background system may also utilize a first server after the user authorization session key encryption calculation request information and / or parity calculation, to the terminal, the terminal information using the received first session key to decrypt calculate and / or verify the checksum calculation; session with the second terminal keys for user 权请求信息进行加密计算和/或校验计算后发送给智能密码设备,智能密码设备利用第二会话密钥对接收到的信息进行解密计算和/或校验验证计算;后台系统服务器还可以利用后台系统服务器的私钥对用户授权请求信息进行签名后再利用第一会话密钥进行加密计算和/或校验计算,终端利用第一会话密钥对接收到的信息进行解密计算和/或校验验证计算;终端利用第二会话密钥对后台系统服务器签名后的信息进行加密计算和/或校验计算后发送至智能密码设备,智能密码设备利用第二会话密钥对接收到的信息进行解密计算和/或校验验证计算,并对签名进行验签。 Right after the encryption calculation request information and / or parity computing device to a smart password, the password information of the smart device using the received second session key to decrypt calculations and / or checksum verification calculation; backend system server may also use backend system server private key to the user signed authorization request information using the first session key and then encrypts calculations and / or checksum calculations, information of the terminal using the received first session key to decrypt calculation and / or correction test verification calculation; background information terminal system server signature encryption calculation and / or verify the information sent to the smart password computing devices, smart cryptographic device using a second session key using the received second session key decryption compute and / or calculate the checksum to verify, sign and verify signatures. 以上仅是后台系统服务器向智能密码设备请求授权的几种方式,本发明并不局限于此,以上的各类变形组合也应属于本发明的保护范围。 These are only authorized to the backend system server device requests the smart password ways, the present invention is not limited thereto, combinations of the above various types of modification should also fall within the scope of the present invention.

[0214] 当然,在智能密码设备在接收到用户授权请求信息后,还可以由休眠状态转换为唤醒状态;智能密码设备在唤醒状态下生成授权信息。 [0214] Of course, the cryptographic device after the intelligent information received authorization request to a user, may also be converted from the sleep state to the awake state; smart password authorization information generating device in the awake state. 以便节省电能,延长智能密码设备的使用寿命。 To conserve power, extend the life of the intelligent cryptographic device.

[0215] 后台系统服务器利用第一会话密钥对用户信息进行加密计算和/或校验计算获得用户信息读取请求的响应信息,并向终端发送用户信息读取请求的响应信息; [0215] The system back-end server by using a first session key encryption calculation user information and / or verification information of the user information obtained by calculation in response to the read request, and sends the user information read request response information terminal;

[0216] 终端接收到用户信息读取请求的响应信息后,利用第一会话密钥对用户信息读取请求的响应信息进行解密计算和/或校验验证计算获得用户信息。 [0216] After the terminal receives the response information of the user information read request, the session key using the first user information in response to the read request to decrypt calculate and / or verify the user authentication information is obtained by calculation.

[0217] 方式二、终端从智能密码设备获取智能密码设备对应的用户信息: [0217] Second way, the terminal apparatus acquiring smart password corresponding to the user information from the smart cryptographic device:

[0218] 终端根据智能密码设备的标识信息向智能密码设备发送用户信息读取请求;具体的,终端可以直接向智能密码设备发送用户信息读取请求,也可以利用第二会话密钥对用户信息读取请求进行加密计算和/或校验计算后再发送,以保证信息传输的安全性和完整性。 [0218] The terminal reads the identification information request device to the intelligent smart password password device transmits the user information; Specifically, the terminal can directly request the information reading device sends to the smart user password, using the second session key may be the user information calculating a read request is encrypted and / or calculated checksum before sending to ensure the safety and integrity of transmitted information.

[0219] 智能密码设备获得预先存储的用户信息,利用第二会话密钥对获取到的用户信息进行加密计算和/或校验计算后获得用户信息读取请求的响应信息,并向终端发送用户信息读取请求的响应息; After the [0219] smart password device obtains user information stored in advance, of the acquired user information is encrypted is calculated and / or checksum calculated using the second session key to obtain user information in response to the read request, and transmits the user terminal information reading request response message;

[0220] 终端接收到用户信息读取请求的响应信息后,利用第二会话密钥对用户信息读取请求的响应信息进行解密计算和/或校验验证计算获得用户信息。 [0220] After the terminal receives the response information of the user information read request, the second session key using the user information in response to the read request to decrypt calculate and / or verify the user authentication information is obtained by calculation.

[0221] 此外,如果智能密码设备的持有者拒绝发送用户信息,则可以通过智能密码设备上设置的按键或者通过软件控制向终端发送拒绝信息,以保证用户信息的安全。 [0221] Further, if the smart password holder device refuses to send the user information, may be provided on the smart key by the cryptographic device, or send a rejection message to the terminal through software control, to ensure the security of user information. 当然,该拒绝信息也可以通过第二会话密钥加密计算和/或校验计算后发送。 Of course, the rejection information is transmitted after calculation of the second session key to encrypt and / or checksum calculations can also be adopted.

[0222] 终端将用户信息存储到预先建立的当前用户列表中;具体的,由于终端所在店铺内客流量的变化、人员的流动,探测到的智能密码设备也是不断变化的,此时,该当前用户列表可以通过但不限于如下方式进行更新: [0222] The current user list of user terminal information is stored in pre-established; Specifically, the traffic due to changes in the shop terminal is located, movement of persons detected smart password changing device is, at this time, the current user list can be updated, but not limited to, the following manner:

[0223]方式一: [0223] Method 1:

[0224] 终端获得在终端的信号覆盖范围内的全部智能密码设备的标识信息,生成实时标识列表; Identification information of the [0224] terminal in the coverage area of ​​the terminal equipment of all smart password, generating real-time identification list;

[0225] 终端根据预设的时间间隔将实时标识列表中的智能密码设备的标识信息与当前用户列表中的智能密码设备的标识信息进行比对; [0225] The identification information of the terminal spacer intelligent real-time password device identifier list for comparison with the current device password identification information of the smart user list according to a preset time;

[0226] 如果实时标识列表中的智能密码设备的标识信息不在当前用户列表中,则根据扫描到的智能密码设备的标识信息获取智能密码设备对应的用户信息;且如果当前用户列表中的智能密码设备的标识信息不在实时标识列表中,则删除当前用户列表中不在实时标识列表中的智能密码设备的用户信息。 [0226] If the identification information of the smart cryptographic device real-time identification list is not the current user list, acquires the user information of the smart password corresponding to the device according to the identification information scanned smart password device; and if the smart password for the current user list device identification information is not real-time identification in the list, delete the current user list of user information is not real-time device identification smart password list of.

[0227] 通过本方式对当前用户列表进行更新,可以保证在终端信号覆盖范围内的智能密码设备对应的用户信息可以及时更新到当前用户列表中,对于离开终端信号覆盖范围内的智能密码设备对应的用户信息可以及时从当前用户列表中删除,保证安全性。 [0227] carried out by the present embodiment of the current user list, can ensure that the user information in the terminal signal coverage corresponding intelligent cryptographic device can update the current user list, for leaving the intelligent cryptographic device within the terminal signal coverage corresponding user information can be promptly removed from the current list of users, to ensure safety.

[0228]方式二: [0228] Second way:

[0229] 终端获得在终端的信号覆盖范围内的全部智能密码设备的标识信息,生成实时标识列表; Identification information of the [0229] terminal in the coverage area of ​​the terminal equipment of all smart password, generating real-time identification list;

[0230] 终端根据预设的时间间隔将实时标识列表中的智能密码设备的标识信息与当前用户列表中的智能密码设备的标识信息进行比对; [0230] The identification information of the terminal spacer intelligent real-time password device identifier list for comparison with the current device password identification information of the smart user list according to a preset time;

[0231] 如果实时标识列表中的智能密码设备的标识信息不在当前用户列表中,则根据扫描到的智能密码设备的标识信息获取智能密码设备对应的用户信息,并在终端获得用户信息后,将用户信息存储至实时标识列表中;且如果实时标识列表中的智能密码设备的标识信息在当前用户列表中,则将在当前用户列表中的智能密码设备的用户信息存储至实时标识列表中; [0231] If the identification information of the smart cryptographic device real-time identification list is not the current user list, acquires the user information of the smart password corresponding to the device according to the identification information scanned smart cryptographic device, and user information is obtained in a terminal, user information is stored in real-time to identify the list; and if the identification information of the smart device password list in real-time to identify the current user list, the user is smart password information storage device in the list of current users in real-time to identify the list;

[0232] 将实时标识列表作为更新后的当前用户列表。 [0232] The real-time identification list as the current list of users after the update.

[0233] 通过本方式对当前用户列表进行更新,可以仅将在终端的信号覆盖范围内的智能密码设备对应的用户信息进行及时更新,提高更新效率。 [0233] update the list of current users present embodiment, the user information can only be within range of the terminal device corresponding to smart password update, update improve efficiency. 利用本方式,终端在获取用户信息时,可以将店内原有智能密码设备对应的用户信息直接从原有的当前用户列表中复制到实时标识列表中,新进店的顾客对应的用户信息可以通过向后台系统服务器或者智能密码设备提出用户信息读取请求来获得。 When utilizing this mode, the user terminal in obtaining information, the user information store original smart password corresponding to the device can be copied directly from the original list of current users in real-time to identify the list, the user information about new customers into the store by the corresponding proposed user information read request to the backend system server or device to get smart password.

[0234] 由此可见,当终端所在店铺客流量发生变化时,不需要商户进行任何操作,当前用户列表可以自动进行更新,方便了商户的店员对顾客的信息管理维护。 [0234] Thus, when the terminal is located changes in store traffic, businesses do not need to do anything, the current user list can be updated automatically to facilitate the business of the clerk of the customer information management and maintenance.

[0235] 另外,终端可以将所存储的当前用户列表中用户对应的用户信息显示出来,以便智能密码设备的持有者查看该用户信息,确保交易的正确性。 [0235] Further, the terminal may be the user information of the current user list corresponding to the stored user is displayed to view the holder device smart password information of the user, to ensure the accuracy of the transaction.

[0236] 现有技术中,交易过程均需要SIM卡或智能卡等具备账户存储功能的设备,用户需要进行刷卡刷手机等操作,如此商户才能获得用户的账户信息。 [0236] prior art, the transaction process require SIM cards or smart cards with account storage device functionality, users need to brush mobile phone card and other operations, so the merchant to get the user's account information.

[0237] 区别于现有技术,商户的终端可以通过先读取智能密码设备的标识信息,再利用该智能密码设备的标识信息获取智能密码设备对应的用户信息。 [0237] distinguished from the prior art, the merchant terminal may read the identification information of the first device smart password, and then use the password identification information of the intelligent device acquires user information corresponding to the smart device password. 因此,顾客可以无需借助钱包、信用卡、手机等方式来支付商品,从而简化了顾客与商户的交互操作,提升了用户体验。 Thus, a customer can pay for goods without having to help wallet, credit cards, cell phones, etc., thus simplifying the interaction between customers and merchants, enhance the user experience.

[0238] 交易信息处理: [0238] transaction information processing:

[0239] 终端根据待交易的智能密码设备对应的用户信息生成交易信息,并利用第二会话密钥对交易信息进行加密计算和/或校验计算获得交易请求信息;具体的,交易信息可以包含交易金额、收付款双方的账号信息、收付款双方的标识信息等信息,交易信息中还可以包括电子对账单,用户可以根据电子对账单审核交易细节,例如,具体交易时间、交易单号,交易金额、购买的物品等。 [0239] The user terminal generates transaction information apparatus to be smart password information corresponding to the transaction, and the transaction information is encrypted calculate and / or verify the transaction request information obtained by calculation using the second session key; Specifically, the transaction information may include the transaction amount, payment and collection account information of both parties, collection and payment identification information such as the two sides of information, transaction information may also include electronic statements, users can e-audit transaction details on the bill, for example, specific trading hours, order number, transaction the amount of items purchased and so on. 终端利用第二会话密钥对交易信息进行加密计算和/或校验计算以确保交易信息传输的安全性和/或完整性。 Terminal using a second session key to encrypt the transaction information is calculated and / or checksum is calculated to ensure the security transaction information transmission and / or integrity. [0240] 终端向智能密码设备发送交易请求信息;具体的,终端可以通过但不限于如下方式发送交易请求信息:终端对交易请求信息进行编码后通过声波信号发送;或者终端对交易请求信息进行图形编码后并显示以便智能密码设备进行图像采集;或者终端通过终端与智能密码设备匹配的通信接口发送交易请求信息。 [0240] the terminal request information to smart password sent by the transaction; Specifically, the terminal may be by, but not sent to the manner transaction request information: the terminal transaction request information encoded transmitted via acoustic signals; or a terminal transaction request information pattern and displaying the coded password to the intelligent image capture device; or a terminal transmits request information via the communication interface with the transaction terminal smart password matches the device.

[0241] 智能密码设备接收到交易请求信息后,利用第二会话密钥对交易请求信息进行解密计算和/或校验验证计算获得交易信息; [0241] After receiving the cryptographic device intelligent transaction request information, using the second session key to decrypt the transaction request information is calculated and / or checksum validation transaction information obtained by calculation;

[0242] 为了节约智能密码设备的电能,延长使用寿命,智能密码设备还可以在接收到交易请求信息后,由休眠状态转换为唤醒状态;智能密码设备在唤醒状态下利用第二会话密钥对交易请求信息进行解密计算和/或校验验证计算获得交易信息。 [0242] In order to save power devices smart password, extend the service life, the cryptographic device may also be smart after receiving the transaction request information, converted from the sleep state to the awake state; intelligent cryptographic device using the second session key pair in the awake state decrypting the transaction request information is calculated and / or checksum validation transaction information obtained by calculation.

[0243] 智能密码设备提示交易信息;具体的,智能密码设备可以通过显示屏将交易信息显示出来,也可以通过扬声器等将交易信息以语音的方式播放出来。 [0243] intelligent device password prompt transaction information; specifically, intelligent cryptographic device can display the transaction information displayed, transaction information can also be a way to voice broadcast through speakers. 当然,智能密码设备还可以通过其他方式提示用户以获知真实的交易信息,确保交易的安全。 Of course, the smart device can also prompt the user for a password through other means in order to know the real transaction information to ensure secure transactions. 此外,智能密码设备获取到交易信息后,还可以对交易信息进行关键信息的提取,智能密码设备仅对关键信息进行提示,具体提示方式可以参见智能密码设备对交易信息的提示方式。 In addition, the intelligent cryptographic device after obtaining the transaction information, may also be only the key information extraction and intelligent device password prompt critical information on transaction information, refer to specific ways to prompt smart password prompt mode device for transaction information.

[0244] 智能密码设备接收确认指令,并生成交易确认信息;具体的,智能密码设备可以通过检测到设置在智能密码设备上的确认键被按下时发送的信息接收确认指令,也可以通过检测到触摸屏上显示的虚拟确认键被点击时发送的信息接收确认指令,还可以通过检测到的语音、指纹、虹膜等生物特征信息作为确认指令等任意方式。 [0244] Smart device receives the password confirmation instruction, and generates a transaction confirmation; Specifically, the intelligent device may receive the password confirmation instruction information transmitted by detecting when the enter key is pressed to set the password on the smart device, can be detected by information transmitted is clicked virtual OK button on the touch screen display command reception acknowledgment, also through biometric voice, fingerprints, iris detected information in any manner as a confirmation command and the like. 进一步,智能密码设备可以通过但不限于如下方式生成交易确认信息:智能密码设备利用智能密码设备的私钥对交易信息进行签名,生成交易签名信息作为交易确认信息;或者智能密码设备生成动态口令作为交易确认信息,当然上述交易确认信息还可以是利用第二会话密钥加密计算和/或校验计算后的信息。 Further, the device can be confirmed by smart password but is not limited to the following embodiment generates a transaction information: the private key of the cryptographic device intelligent smart cryptographic device signature information for the transaction, the transaction information as the transaction signature generates acknowledgment information; or intelligent device generates a dynamic password as the password transaction confirmation information, of course, the above-described transaction confirmation information may also be using the second session key information and / or post-check calculation encryption calculation. 当然,为了防止重复交易,保证用户的账户安全,在智能密码设备每次生成交易确认信息时,智能密码设备还生成单次交易标识,并利用智能密码设备的私钥对交易信息以及单次交易标识进行签名,生成交易签名信息作为交易确认信息;或者智能密码设备生成单次交易标识,利用智能密码设备的私钥对单次交易标识进行签名获得单次交易标识的签名信息,并生成动态口令,将单次交易标识的签名信息以及动态口令作为交易确认信息,以保证一次交易仅被成功执行一次,其中单次交易标识可以为随机数等,当然上述交易确认信息也可以是利用第二会话密钥加密计算和/或校验计算后的信息。 Of course, in order to prevent recurring transactions, to ensure the security of user accounts, each transaction generated in the smart device password confirmation message, the smart device also generates a password to identify a single transaction, and the transaction information with the private key cryptographic devices and intelligent single transaction private key pair to sign a single transaction identification information to obtain the signature of a single transaction identifier, and generates a dynamic password or smart password device to generate a single transaction identifier, use smart password devices; identification sign, generate transaction signature information as a transaction confirmation the single transaction identification signature information and the dynamic password as a transaction confirmation, in order to ensure that a transaction is successfully performed only once, which may be a single transaction identifier random number, of course, the above-described acknowledgment information may be a transaction using the second session calculating the encrypted key information and / or parity calculations. 由于无线网络传输线路不稳定,可能出现智能密码设备收不到回执的情况,如果不设置单次交易标识,终端在没有收到智能密码设备的签名信息时,可能需要持有该智能密码设备的用户多次进行确认签名操作,也就是智能密码设备多次向终端发送签名信息,那么就有可能造成终端可以利用这多个签名值生成多个交易数据包发送给后台系统服务器,从而对智能密码设备对应的账户进行重复扣款。 Because the wireless network transmission line is unstable, the situation is smart password device can not receive a receipt may occur if you do not set up a single transaction identification, terminal without receiving signature information smart password device, you may need to hold the intelligent cryptographic device multiple users confirm the signing operation, that is, the smart device password repeatedly send a signed message to the terminal, then it may cause multiple terminals can use this signature value generating more transaction data packet sent to the back-end server systems, thus smart password repeating apparatus corresponding debit accounts. 而如果设置了单次交易标识,当出现线路不稳定时,智能密码设备就会继续再对交易信息和同一个单次交易标识进行签名再发送给终端,直到收到回执为止。 And if you set a single transaction identifier, when there is instability in the line, intelligent cryptographic device will continue again with a single transaction information and transaction identification sign and then sent to the terminal until acknowledgment of receipt. 终端用智能密码设备发来的签名值生成交易数据包,后台系统服务器收到交易数据包会对里面的单次交易标识进行判定,若此单次交易标识已经保存在交易日志中,也就是说已经交易过了,就不会再对这个交易数据包进行处理,不会造成多次或者重复扣款,从而保护了智能密码设备用户的账户资金安全。 End-use smart password sent by the device signature value generated transaction data packet, backend system server receives transaction data packet inside a single transaction will identify the determination, if this single transaction identification has been saved in the transaction log, that is to say It has been traded, and this transaction will not process the packet, or multiple times will not cause a double charge, thereby protecting the funds in the account password security smart device users.

[0245] 终端接收交易确认信息;具体的,终端可以通过但不限于如下方式接收交易确认信息:终端接收智能密码设备发送的声波信号并对声波信号进行解码获得交易确认信息(例如,可以采用声波识别设备对声波信号进行识别,采用声波解码器对声波信号进行解码获得交易确认信息);或者终端采集智能密码设备显示的图像信息并对图像信息(例如,二维码、条形码等)进行解码获得交易确认信息(例如采用图像采集设备对图像信息进行采集,采用解码器对图像信息进行解码后获得交易确认信息);或者终端通过终端与智能密码设备匹配的通信接口接收交易确认信息;或者终端通过终端输入的信息获得交易确认信息。 [0245] The terminal receives the transaction acknowledgment information; Specifically, the terminal may confirm the transaction information, but is not limited to receiving a manner that: the terminal receiving an acoustic signal and the acoustic signal transmission apparatus smart password obtained by decoding the transaction confirmation information (e.g., sound waves may be employed identification device for identifying an acoustic signal, acoustic decoder using acoustic signals obtained by decoding the acknowledgment information transactions); or the terminal information and the image information captured image (e.g., two-dimensional codes, bar codes, etc.) smart password obtained by decoding the display device transaction confirmation message (e.g., using an image acquisition device for image information acquired using the decoder obtains transaction confirmation information to the image information is decoded); or the terminal profile through the interface to receive a transaction terminal with smart password matches the device communication; or the terminal via information input terminal of the transaction confirmed the information. 如果交易确认信息是利用第二会话密钥加密计算和/或校验计算得到的,那么还利用第二会话密钥对计算后的信息进行解密计算和/或校验验证计算。 If the transaction confirmation message encrypted using a second session key calculation and / or checksum calculated, then also using the second session key to decrypt information calculation calculations and / or checksum verification calculation.

[0246] 终端利用第一会话密钥对交易确认信息进行加密计算和/或校验计算获得交易数据包,并向后台系统服务器发送交易数据包;具体的,终端利用第一会话密钥对交易确认信息或者对交易确认信息解密后的信息进行加密计算和/或校验计算;交易数据包中也可以包括交易信息等其他信息。 [0246] The first terminal using the session key to encrypt the transaction calculated profile and / or the packet's checksum obtained by calculation, and sends back a packet transaction system server; Specifically, the terminal of the transaction using the first session key confirmation or acknowledgment information after the transaction information decrypted encryption calculation and / or checksum is calculated; transaction data packet may also include other information about the transaction information. 交易信息可以包含交易金额、收付款双方的账号信息、收付款双方的标识信息等信息,交易信息中还可以包括电子对账单,用户可以根据电子对账单审核交易细节,例如,具体交易时间、交易单号,交易金额、购买的物品等。 Transaction information may include transaction amount, payment and collection account information of both parties, collection and payment identification information such as the two sides of information, transaction information may also include electronic statements, users can e-audit transaction details on the bill, for example, specific trading hours, single number, transaction amount, items purchased and so on.

[0247] 后台系统服务器接收到交易数据包后,利用第一会话密钥对交易数据包进行解密计算和/或校验验证计算获得交易确认信息; After the [0247] back-end server systems transaction data packet received using a first session key to decrypt the packet's calculation and / or verify the transaction authentication acknowledgment information obtained by calculation;

[0248] 后台系统服务器对交易确认信息进行验证,并在验证通过后执行交易;具体的,后台系统服务器只有在验证交易确认信息验证通过后,才说明本次交易经过了合法的智能密码设备的确认,并根据确认后的结果执行交易。 [0248] back-end system server for transaction confirmation to verify the information, and execute trades after the verification; specifically, the background system server only verified after the transaction confirmed the information verified, only that the transaction through a legitimate smart password devices confirm and execute transactions based on the result of confirmation. 当然,为了保证智能密码设备的持有者知晓交易已经完成,后台系统服务器还可以通过终端向智能密码设备发送交易成功回执信息;智能密码设备接收到交易成功回执信息后,提示交易成功回执信息,交易成功回执信息中还可以包括电子对账单,用户可以根据电子对账单审核交易细节,例如,具体交易时间、交易单号,交易金额、购买的物品等。 Of course, in order to ensure that the holder of the smart device knows the password transaction has been completed, the background system server can also send transaction information to the smart password successful receipt by terminal equipment; intelligent cryptographic device receives the transaction is successful receipt of information after the transaction was successful receipt information, successful receipt transaction information may also include electronic statements, electronic users can review details of the transaction on the bill, for example, specific trading hours, order number, transaction amount, items purchased and so on. 另外,后台系统服务器还可以向终端发送交易成功回执信息,以便终端获知交易完成。 In addition, the background system server can also send successful transaction receipt information to the terminal so that the terminal learned completion of the transaction. 当然,交易成功回执信息可以利用第一会话密钥加密计算和/或校验计算后发送给终端,终端解密计算和/或校验验证计算后利用第二会话密钥进行加密计算和/或校验计算后发送给智能密码设备,智能密码设备解密计算和/或校验验证计算后提示给用户知晓;交易成功回执信息也可以是后台系统服务器利用后台系统服务器的私钥进行签名后通过终端发送给智能密码设备,智能密码设备对签名的信息进行验签通过后提示给用户知晓;还可以是后台系统服务器签名后利用第一会话密钥加密计算和/或校验计算后发送给终端,终端解密计算和/或校验计算后利用第二会话密钥加密计算和/或校验计算后发送给智能密码设备,智能密码设备解密计算和/或校验验证计算后并验签通过后提示给用户知晓。 Of course, the success of the transaction receipt information may be encrypted using the first session key calculation and / or transmitted to the terminal after the checksum calculation, calculation for encryption and / or correction after and / or checksum validation terminal is calculated using the second session key to decrypt calculated after sending test computing device to the smart password, password decryption intelligent computing devices and / or verify the checksum calculation to the user knows; Following the transaction receipt information may also be a back-end server systems using the private key to sign the server back-end system sends through the terminal password to the intelligent device, smart cryptographic device to carry out inspection to check the signature information after its presentation to a user; background system server may also be sent to the terminal after the signature after encryption using the first session key calculation and / or calibration calculations, the terminal decryption calculation and / or after a second checksum is calculated using the calculated session key to encrypt and / or after the password sent to the smart devices, smart computing device decrypts the password and / or verify the checksum calculation and verification calculation to check for presentation to a test the user knows.

[0249]退款: [0249] Refund:

[0250] 当顾客需要退款时,可以执行但不限于如下几种方式以实现退款操作: [0250] When a customer needs a refund, but not limited to be performed in several ways to accomplish the operations Refund:

[0251] 方式一、终端向智能密码设备发送退款信息;具体的,退款信息可以包括:退款双方的账号、退款金额、退款交易单号、退款双方的标识信息等任意组合,退款信息中还可以包括电子对账单,用户可以根据电子对账单审核退款细节,例如,具体退款时间、退款交易单号,退款金额、退换的物品等。 [0251] a way, the terminal sends the refund information to the intelligent cryptographic device; specifically, the refund information may include: a refund of both accounts, the amount of the refund, the refund transaction order number, refund identification information such as any combination of both refund information may also include electronic statements, electronic user can review the refund details of the bill, for example, the specific time of the refund, the refund transaction order number, the amount of the refund, returned items and so on. 当然,该退款信息还可以通过第二会话密钥进行加密计算和/或校验计算后发送至智能密码设备,以保证信息传输的安全性和/或完整性。 Of course, this information may also be encrypted refund calculation and / or security information transmission and / or integrity of the password sent to the smart device, to ensure that calculated by the second session key verification. 终端还可以通过但不限于如下方式发送退款信息:终端对退款信息进行编码后通过声波信号发送;或者终端对退款信息进行图形编码后并显示以便智能密码设备进行图像采集;或者终端通过终端与智能密码设备匹配的通信接口发送退款信息。 The terminal can also, but not limited to the following embodiment refund information transmission: the terminal transmits the refund information is encoded by the acoustic signal; or refund information terminal after encoding and graphically displays the password to the intelligent image capture device; or via a terminal the communication interface device and the smart password matches the device transmits the refund information.

[0252] 智能密码设备接收到退款信息后,提示退款信息;具体的,智能密码设备在接收到退款信息后,将该退款信息通过语音播放或者显示屏显示等任意方式提示给用户知晓,以便用户确定该退款信息是真实的退款信息。 After the [0252] smart password device receives refund information, prompt refund information; Specifically, smart cryptographic device after receiving the refund information, the refund information by voice playback or display screen presented to the user in any way known, so that the user determines that the information is true refund refund information. 当终端利用第二会话密钥对退款信息进行加密计算和/或校验计算后,还需利用第二会话密钥对接收到的信息进行解密计算和/或校验验证计算。 When the terminal calculates the refund information is encrypted and / or checksum is calculated using a second session key, needed to decrypt calculations and / or checksum calculated authentication information using the received second session key.

[0253] 为了节约智能密码设备的电能,延长使用寿命,智能密码设备还可以在接收到退款信息后,由休眠状态转换为唤醒状态;智能密码设备在唤醒状态下提示退款信息。 [0253] In order to save power devices smart password, long life, cryptographic smart device may also refund after receiving the information, converted from the sleep state to the awake state; smart password prompt refund information device in the awake state. 智能密码设备接收退款确认指令,并利用智能密码设备的私钥对退款信息进行签名,生成退款确认信息;具体的,用户在确定了退款信息是真实的退款信息后,通过智能密码设备上设置的实体按键或者虚拟按键等方式进行确认。 Specifically, after the user determines the refund information is true refund information, smart; intelligent device receives a refund confirmation instruction code, using the private key of the cryptographic device intelligent refund information sign, generate refund confirmation device password set on the physical keys or virtual keys, etc. for confirmation. 智能密码设备在向终端发送退款确认信息后(例如,发送退款确认信息对应的声波信号后,或者显示退款确认信息对应的图像信息达到预定的时间后),由唤醒状态转换为休眠状态。 (E.g. after sending a refund confirmation information corresponding to the acoustic signal, or a refund confirmation display image information corresponding to a predetermined time) smart password confirmation device transmits the refund information to the terminal, converted from the awake state to the sleep state .

[0254] 终端接收退款确认信息,对退款确认信息进行验证,并在验证通过后,利用终端的私钥对退款确认信息进行签名生成退款确认包;具体的,终端可以通过但不限于如下方式接收退款确认信息:终端接收智能密码设备发送的声波信号并对声波信号进行解码获得退款确认信息(例如,可以采用声波识别设备对声波信号进行识别,采用声波解码器对声波信号进行解码获得退款确认信息);或者终端采集智能密码设备显示的图像信息并对图像信息(例如,二维码、条形码等)进行解码获得退款确认信息(例如采用图像采集设备对图像信息进行采集,采用解码器对图像信息进行解码后获得退款确认信息);或者终端通过终端与智能密码设备匹配的通信接口接收退款确认信息。 [0254] The terminal receives refund confirmation message, verification of the refund confirmation information, and after the verification, using the terminal's private key to sign the refund confirmation information generating refund confirmation packet; Specifically, the terminal may, but not restricted manner refund confirmation message received: the terminal receives the acoustic signal and the acoustic signal transmission apparatus smart password obtained by decoding the refund confirmation (e.g., the identification device may be employed for acoustic wave signal recognition using acoustic wave signal decoder decoding refund confirmation); or the terminal information and the image information captured image (e.g., two-dimensional codes, bar codes, etc.) smart password decoding apparatus shown refund confirmation information (e.g. image acquisition device using the image information collection, to obtain a refund of the image information is decoded using the decoder profile); or the terminal interface to receive a refund confirmation information communication terminal and smart password matches the device. 此外,终端利用智能密码设备的公钥对退款确认信息进行验证。 In addition, the terminal for a refund confirmation to verify the use of public key cryptographic smart devices.

[0255] 终端向后台系统服务器发送退款确认包和退款确认信息;具体的,终端可以利用第一会话密钥对退款确认包和退款确认信息进行加密计算和/或校验计算后发送至后台系统服务器,以保证信息传输的安全性和/或完整性。 [0255] refund confirmation packet sent by the terminal to the background and refund confirmation system server; Specifically, the terminal can after the first session key confirmation packet and refund confirmation information is encrypted refund calculation and / or checksum calculated using sent back to the server system, to ensure the security and / or integrity of information transmitted.

[0256] 后台系统服务器接收到退款确认包和退款确认信息后,分别对退款确认包和退款确认信息进行验证,并在全部验证通过后,执行退款操作。 [0256] The system back-end server receives a refund refund confirmation packet and acknowledgment information respectively refund confirmation packet acknowledgment and refund information for authentication, and all authentication is passed, performing a refund operation. 具体的,如果终端利用了第一会话密钥对退款确认包和退款确认信息进行了加密计算和/或校验计算,那么后台系统服务器还利用第一会话密钥对接收到的信息进行解密计算和/或校验验证计算。 Specifically, if the terminal using the first session key pair and refund confirmation packet refund confirmation information is encrypted calculate and / or check calculation, then the backend system server further first session key information using the received decryption calculation and / or checksum verification calculation. 此外,后台系统服务器还利用终端的公钥对退款确认包进行验证,利用智能密码设备的公钥对退款确认信息进行验证。 Additionally, further background system server using the public key of the terminal refund confirmation packet authentication, public key cryptographic smart devices to verify the refund confirmation information.

[0257] 以下针对方式一,提供一种退款的应用场景,但本发明并不局限于此: [0257] below for a way to provide one kind of refund application scenario, but the present invention is not limited thereto:

[0258] 店铺根据顾客的退款意向,由终端生成退款信息(该退款信息可以是通过查找已记录的交易信息获得,也可以是重新生成的一个退款信息或其他形式的退款信息),并使用终端和智能密码设备之间的第二会话密钥加密退款信息,并发送给智能密码设备; [0258] According to store customer refund intention refund information generated by the terminal (the refund information can be obtained by looking up the transaction information has been recorded, it can be regenerated a refund information or other form of refund information ), using the second session key and the encrypted password between the terminal and the smart devices refund information, sends the smart cryptographic device;

[0259] 智能密码设备在接收到加密后的退款信息后,由休眠状态转换为唤醒状态,并利用第二会话密钥解密该加密退款信息,获得退款信息,并对退款信息进行显示,以供顾客进行确认; [0259] Smart cryptographic device after receiving the refund information encrypted, converted from the sleep state to the awake state, and using the second session key to decrypt the encrypted information refund, refund information, and the refund information show for the customer for confirmation;

[0260] 顾客确认该退款信息正确,按下智能密码设备上的确认键进行确认,智能密码设备接收到该退款确认指令后,利用智能密码设备的私钥对退款信息进行签名得到退款确认信息,并利用第二会话密钥对退款确认信息进行加密,发送给终端; After [0260] The refund confirmation customer information is correct, pressing the Enter key on the smart password confirmation device, the device receiving the smart password refund confirmation command, using the private key of the cryptographic device intelligent refund information obtained sign-off section profile, and refund confirmation information is encrypted, transmitted to the terminal using the second session key;

[0261] 终端接收到加密后的退款确认信息后,利用第二会话密钥解密此信息,获得退款确认信息,并利用智能密码设备的公钥验证退款确认信息的正确性,若正确,终端利用终端的私钥对退款确认信息再进行签名得到退款确认包,当然,终端还可以直接对退款信息进行签名得到退款确认包; [0261] The terminal receives the refund confirmation message encrypted using the second session key to decrypt the information, refund confirmation and verification using the public key cryptographic smart devices refund confirmation information is correct, if correct , the terminal using the terminal's private key to sign again refund confirmation information obtained refund confirmation packet, of course, the terminal may also be signed directly refund information obtained refund confirmation packet;

[0262] 终端利用第一会话密钥对退款确认包和退款确认信息进行加密后发送至后台系统服务器; [0262] terminal session key using the first refund confirmation packet back and refund confirmation to the server system after the encrypted information;

[0263] 后台系统服务器接收到加密后的信息后,利用第一会话密钥对接收到的信息进行解密,并利用终端的公钥对退款确认包进行验证,利用智能密码设备的公钥对退款确认信息进行验证,并在二者验证均通过后,执行退款操作,并发送退款成功回执信息给终端和/或智能密码设备。 After the [0263] back-end server system receives the encrypted information, using the information received first session key to decrypt, using the public key of the terminal refund confirmation packet authentication, public key cryptographic smart devices refund confirmation information will be verified, and after both are verified by performing a refund operation, and transmits the refund receipt success information to the terminal and / or smart cryptographic device.

[0264] 方式二、该方式二与方式一的区别在于:在终端向智能密码设备发送退款信息之前,该终端还接收该智能密码设备发送的退款请求,并根据退款请求生成退款信息。 [0264] second approach, the second approach is a manner except that: before the terminal transmits the refund information to the smart device password, the terminal also receives refund request sent by the smart password, and generates a refund request according to a refund information. 具体的,顾客可以通过按下智能密码设备上的按键以生成退款请求,智能密码设备接收到该退款请求后,将该退款请求发送给该终端。 Specifically, the customer can press a key on the smart device to generate a refund request a password, smart cryptographic device after receiving the refund request, the refund request is sent to the terminal. 退款信息中还可以包括电子对账单,用户可以根据电子对账单审核退款细节,例如,具体退款时间、退款交易单号,退款金额、退换的物品等。 Refund information may also include electronic statements, electronic user can review the refund details of the bill, for example, the specific time of the refund, the refund transaction order number, the amount of the refund, returned items and so on. 当然,任何可以触发智能密码设备生成退款请求的实现方式都属于本发明的保护范围内。 Of course, any device can be triggered to generate cryptographic smart refund requests implementations are within the scope of the present invention.

[0265] 为了节约智能密码设备的电能,延长使用寿命,智能密码设备还可以在向终端发送退款请求前,由休眠状态转换为唤醒状态;智能密码设备在唤醒状态下向终端发送退款请求。 [0265] In order to save power devices smart password, extend the service life, the intelligent device may also send a password to the terminal before the refund request, converted from the sleep state to the awake state; smart password request to the terminal apparatus transmits a refund in the awake state . 智能密码设备发送退款请求之后,由唤醒状态转换为休眠状态。 Smart password device after sending a refund request, converted from the awake state to the sleep state. 当智能密码设备接收到终端发送的退款信息时,由休眠状态转换为唤醒状态,在唤醒状态下执行提示退款信息和生成退款确认信息的操作。 When smart password refund information terminal apparatus receives transmitted, converted from the sleep state to the awake state, and performs the refund information prompt refund confirmation operation information generated in the awake state. 智能密码设备在向终端发送退款确认信息后(例如,发送退款确认信息对应的声波信号后,或者显示退款确认信息对应的图像信息达到预定的时间后),由唤醒状态转换为休眠状态。 (E.g. after sending a refund confirmation information corresponding to the acoustic signal, or a refund confirmation display image information corresponding to a predetermined time) smart password confirmation device transmits the refund information to the terminal, converted from the awake state to the sleep state .

[0266] 方式三、智能密码设备向终端发送退款请求;具体的,顾客可以通过按下智能密码设备上的按键以生成退款请求,智能密码设备接收到该退款请求后,将该退款请求发送给该终端。 [0266] Three ways, smart password request to the terminal device transmits the refund; Specifically, the customer can by pressing a key on the smart device to generate a password request refund after receiving the cryptographic device intelligent refund request, the refund shall request to the terminal. 当然,任何可以触发智能密码设备生成退款请求的实现方式都属于本发明的保护范围内。 Of course, any device can be triggered to generate cryptographic smart refund requests implementations are within the scope of the present invention.

[0267] 为了节约智能密码设备的电能,延长使用寿命,智能密码设备还可以在向终端发送退款请求前,由休眠状态转换为唤醒状态;智能密码设备在唤醒状态下向终端发送退款请求。 [0267] In order to save power devices smart password, extend the service life, the intelligent device may also send a password to the terminal before the refund request, converted from the sleep state to the awake state; smart password request to the terminal apparatus transmits a refund in the awake state .

[0268] 终端生成退款请求标识,并向智能密码设备发送退款请求标识;具体的,终端可以生成随机数,将该随机数作为退款请求标识,该随机数用于提供给智能密码设备以生成退政Ih息。 [0268] The terminal generates a refund request identifier, and requests the transmitting device identification smart password refundable; Specifically, the terminal may generate a random number, the random number as a refund request identifier, the random number for the cryptographic device provided to the intelligence Ih retreat to generate political interest.

[0269] 智能密码设备接收到退款请求标识后,生成退款信息,并利用智能密码设备的私钥对退款信息进行签名,得到退款确认信息,并向终端发送退款确认信息;具体的,智能密码设备利用该退款请求标识、退款金额、退款账户等信息生成退款信息,该退款信息还可以包括退款交易单号、退款双方的标识信息等任意组合;其中,退款金额可以通过智能密码设备上的按键进行输入,当然,也可以通过其他方式(例如,语音输入)输入,退款账户可以通过智能密码设备上的按键进行输入,还可以通过读取预先存储在智能密码设备中的退款账户来输入;当然,还可以在交易完成后,在智能密码设备上保存交易信息,通过查询交易信息以获得退款金额和退款账户等信息;当然,该退款信息还可以通过第二会话密钥进行加密计算和/或校验计算后发送至终端,以保 [0269] Smart device receives the cryptographic private key a refund request identifier, generating refund information, and cryptographic smart device using the refund information is signed to obtain a refund confirmation information, and transmits acknowledgment information terminal refund; Specific the intelligent use of the cryptographic device identification request a refund, the refund amount, the refund account information and other information to generate a refund, the refund information may also include any combination of a refund transaction order number, refunds and other identifying information of both parties; which , the refund amount can be entered using the keys on the smart password device, of course, also possible, refund accounts can be entered using the keys on the smart device password through other means (for example, voice input) input, can also be read in advance refund account passwords stored on the smart device to enter; of course, you can also save transaction information on a smart password device after completion of the transaction, by querying the transaction information to obtain the refund amount and refund accounts and other information; of course, the after the refund calculation information may also be encrypted and / or checksum is calculated by the second session key to the terminal, in order to maintain 证信息传输的安全性和/或完整性。 Security and / or integrity of the card information transmission. 智能密码设备还可以通过但不限于如下方式发送退款信息:智能密码设备对退款信息进行编码后通过声波信号发送;或者智能密码设备对退款信息进行图形编码后并显示以便终端进行图像采集;或者智能密码设备通过智能密码设备与终端匹配的通信接口发送退款信息。 Smart cryptographic device may also be transmitted by, but is not limited to the following embodiment refund information: intelligent cryptographic device after refund information transmitted by the acoustic signal encoding; or the smart cryptographic device after the refund information is encoded and the graphic display terminal for image acquisition ; or communications interface device transmits the refund information smart password matches the password by the intelligent terminal device.

[0270] 为了节约智能密码设备的电能,延长使用寿命,智能密码设备还可以在向终端发送退款确认信息后(例如,发送退款确认信息对应的声波信号后,或者显示退款确认信息对应的图像信息达到预定的时间后),由唤醒状态转换为休眠状态。 [0270] In order to save power devices smart password, extend the service life, the intelligent device may send the password to the terminal a refund confirmation information (e.g., sending a refund confirmation information corresponding to the acoustic signal, or information corresponding to the refund confirmation after the image information reaches a predetermined time), converted from the awake state to the sleep state.

[0271] 终端接收退款确认信息,对退款确认信息进行验证,并在验证通过后,利用终端的私钥对退款确认信息进行签名生成退款确认包;具体的,当智能密码设备利用第二会话密钥对退款信息进行加密计算和/或校验计算后,还需利用第二会话密钥对接收到的信息进行解密计算和/或校验验证计算;终端可以通过但不限于如下方式接收退款确认信息:终端接收智能密码设备发送的声波信号并对声波信号进行解码获得退款确认信息(例如,可以采用声波识别设备对声波信号进行识别,采用声波解码器对声波信号进行解码获得退款确认信息);或者终端采集智能密码设备显示的图像信息并对图像信息(例如,二维码、条形码等)进行解码获得退款确认信息(例如采用图像采集设备对图像信息进行采集,采用解码器对图像信息进行解码后获得退款确认信息);或者终端 [0271] The terminal receives refund confirmation message, verification of the refund confirmation information, and after the verification using the private key of the terminal profile for the refund signature generating refund confirmation packet; Specifically, when the smart device using the password after the second session key information is encrypted the refund is calculated and / or verified computing, information need to use the received second session key to decrypt calculations and / or verify the checksum calculation; terminal may, without limitation, refund confirmation message received in the following manner: the terminal receives the acoustic signal and the acoustic signal transmission apparatus smart password obtained by decoding the refund confirmation (e.g., the identification device may be employed for acoustic wave signal recognition using acoustic sound wave signal decoder refund confirmation information obtained by decoding); or the terminal information and the image information captured image (e.g., two-dimensional codes, bar codes, etc.) smart password device displays information obtained by decoding the refund confirmation (e.g., using image acquisition device to capture image information after the image information is decoded using the decoder refund confirmation); or the terminal 通过终端与智能密码设备匹配的通信接口接收退款确认信息。 Refund confirmation information received through the communication interface device and the smart device password matches. 此外,终端利用智能密码设备的公钥对退款确认信息进行验证。 In addition, the terminal for a refund confirmation to verify the use of public key cryptographic smart devices.

[0272] 终端向后台系统服务器发送退款确认包和退款确认信息;具体的,终端可以利用第一会话密钥对退款确认包和退款确认信息进行加密计算和/或校验计算后发送至后台系统服务器,以保证信息传输的安全性和/或完整性。 [0272] refund confirmation packet sent by the terminal to the background and refund confirmation system server; Specifically, the terminal can after the first session key confirmation packet and refund confirmation information is encrypted refund calculation and / or checksum calculated using sent back to the server system, to ensure the security and / or integrity of information transmitted.

[0273] 后台系统服务器接收到退款确认包和退款确认信息后,分别对退款确认包和退款确认信息进行验证,并在全部验证通过后,执行退款操作。 [0273] The system back-end server receives a refund refund confirmation packet and acknowledgment information respectively refund confirmation packet acknowledgment and refund information for authentication, and all authentication is passed, performing a refund operation. 具体的,如果终端利用了第一会话密钥对退款确认包和退款确认信息进行了加密计算和/或校验计算,那么后台系统服务器还利用第一会话密钥对接收到的信息进行解密计算和/或校验验证计算。 Specifically, if the terminal using the first session key pair and refund confirmation packet refund confirmation information is encrypted calculate and / or check calculation, then the backend system server further first session key information using the received decryption calculation and / or checksum verification calculation. 此外,后台系统服务器还利用终端的公钥对退款确认包进行验证,利用智能密码设备的公钥对退款确认信息进行验证。 Additionally, further background system server using the public key of the terminal refund confirmation packet authentication, public key cryptographic smart devices to verify the refund confirmation information.

[0274] 以下针对方式三,提供一种退款的应用场景,但本发明并不局限于此: [0274] For the following three ways, there is provided a refund application scenario, but the present invention is not limited thereto:

[0275] 智能密码设备由休眠状态转换为唤醒状态;例如,可以通过持有该智能密码设备的顾客的按键操作使得智能密码设备进入唤醒状态; [0275] smart password by a device into a sleep state to an awake state; for example, by holding the smart key cryptographic operation apparatus so that the customer enters the awake state smart cryptographic device;

[0276] 顾客可以通过按下智能密码设备上的按键以生成退款请求,智能密码设备接收到该退款请求后,将该退款请求发送给该终端; [0276] Customers can by pressing a key on the smart device to generate a refund request a password, smart cryptographic device after receiving the refund request, the refund request is sent to the terminal;

[0277] 终端可以生成随机数R,将该随机数作R为退款请求标识,并向智能密码设备发送退款请求标识; [0277] The terminal may generate a random number R, the random number R is as refund request identifier, the device transmits to the smart password refund request identifier;

[0278] 智能密码设备生成退款信息,并利用智能密码设备的私钥对退款信息进行签名,得到退款确认信息,并向终端发送退款确认信息;其中,该退款信息至少包括:退款请求标识、退款金额、退款账户等信息,其中,退款金额、退款账户等信息可以由顾客通过智能密码设备上的按键进行输入,或者退款金额可以由顾客通过智能密码设备上的按键输入,退款账户从智能密码设备预存的信息中读取获得,或者退款金额、退款账户等信息均可以从智能密码设备预存的信息中读取获得,智能密码设备使用终端和智能密码设备之间的第二会话密钥加密退款确认信息,并发送给终端; [0278] Smart device generates a refund cryptographic information using a private key of the cryptographic device intelligent refund information sign, get a refund confirmation message, and transmits the refund confirmation terminal; wherein the refund information comprising at least: logo refund request, refund amount, refunds and other account information, wherein the amount of the refund, the refund account and other information can be entered by the customer via the buttons on the smart password device, or the amount of the refund may be made by the customer smart password device key input on the refund account information read from the smart password pre-stored in the device is obtained, or refund amount, a refund account information can be read from the information obtained in the pre-stored smart cryptographic device, the cryptographic device using intelligent terminals and a second session between the intelligent key encryption password device refund confirmation information, and sends the terminal;

[0279] 终端接收到加密后的退款确认信息后,利用第二会话密钥解密此信息,获得退款确认信息,并利用智能密码设备的公钥验证退款确认信息的正确性,若正确,终端利用终端的私钥对退款确认信息再进行签名得到退款确认包,当然,终端还可以直接对退款信息进行签名得到退款确认包; [0279] The terminal receives the refund confirmation message encrypted using the second session key to decrypt the information, refund confirmation and verification using the public key cryptographic smart devices refund confirmation information is correct, if correct , the terminal using the terminal's private key to sign again refund confirmation information obtained refund confirmation packet, of course, the terminal may also be signed directly refund information obtained refund confirmation packet;

[0280] 终端利用第一会话密钥对退款确认包和退款确认信息进行加密后发送至后台系统服务器; [0280] terminal session key using the first refund confirmation packet back and refund confirmation to the server system after the encrypted information;

[0281] 后台系统服务器接收到加密后的信息后,利用第一会话密钥对接收到的信息进行解密,并利用终端的公钥对退款确认包进行验证,利用智能密码设备的公钥对退款确认信息进行验证,并在二者验证均通过后,执行退款操作,并发送退款成功回执信息给终端和/或智能密码设备。 After the [0281] back-end server system receives the encrypted information, using the information received first session key to decrypt, using the public key of the terminal refund confirmation packet authentication, public key cryptographic smart devices refund confirmation information will be verified, and after both are verified by performing a refund operation, and transmits the refund receipt success information to the terminal and / or smart cryptographic device.

[0282] 以上三种退款方式中,退款确认包或者退款确认信息中还可以包含单次退款标识,该单次退款标识可以为随机数,以保证一次退款仅被成功执行一次。 [0282] The above three refund, the refund confirmation packet or refund confirmation information may also comprise a single refund identifier, the identifier may be single refund random number, to ensure that only a refund is successfully performed once. 当然,该单次退款标识可以由终端生成,也可以由智能密码设备生成,可以在退款确认包中被终端签名,也可以在退款确认信息中被智能密码设备签名。 Of course, the single refund may be generated by the terminal identifier, a password may be generated by the smart devices, the terminal may be signed refund confirmation packet, the acknowledgment information may be signed in the cryptographic device intelligent refund.

[0283] 当然,后台系统服务器在执行退款操作后,还可以向终端和/或智能密码设备发送退款成功回执信息,以便店铺和/或顾客可以得知退款成功。 [0283] Of course, the back-end server systems operations after performing a refund, the refund can also be sent to the successful receipt of information terminals and / or smart password device to store and / or customers can learn refund success.

[0284] 由此可见,通过上述退款流程,可以大大简化顾客在退款过程中的操作,应用智能密码设备相关的安全功能能保障顾客退款过程的安全性,为消费者带来无缝使用体验。 [0284] Thus, the above refund process, customers can greatly simplify the operation in the refund process, the device applies a smart password security-related functions to protect the safety of customer refund process, seamless for consumers experience.

[0285]销户: [0285] cancellation:

[0286] 包括终端的销户和智能密码设备的销户,以下先对终端的销户进行说明: [0286] comprising a pin and a user terminal smart password cancellation apparatus, the user terminal first pair of pins will be described:

[0287] 终端获取终端销户申请,利用终端的私钥对销户申请进行签名获得第六签名信息,并向后台系统服务器发送终端销户申请以及第六签名信息;具体的,终端还可以利用第一会话密钥对第六签名信息进行加密计算和/或校验计算,并将计算后的信息发送至后台系统服务器,以保证信息传输的安全性和/或完整性。 [0287] Application user terminal acquires the terminal pin, the terminal using the user's private key to sign the request pin obtain a sixth signature information, and transmits the user terminal pin and a sixth application backend system server signature information; Specifically, the terminal may also use a sixth first session key encrypted signature information is calculated and / or checksum calculation, and sends back the calculated information to the server system, to ensure the safety of information transmission and / or integrity.

[0288] 后台系统服务器接收到终端销户申请以及第六签名信息后,利用预存的终端证书中的公钥对第六签名信息进行验证;具体的,如果终端还利用第一会话密钥进行了加密计算和/或校验计算,后台系统服务器还利用第一会话密钥对接收到的信息进行解密计算和/或校验验证计算。 After the [0288] back-end server system receives the user request to the terminal pin and a sixth signature information stored in the terminal certificate by using the public key to verify the signature information VI; Specifically, if the terminal is also performed using the first session key ciphering and / or checksum calculation, calculates decryption and / or verification check server computing system further background information first session key using the received.

[0289] 后台系统服务器在验证第六签名信息通过后,删除预存的终端证书,并生成终端销户完成信息,向终端发送终端销户完成信息;具体的,后台系统服务器在进行销户时,除了删除预存的终端证书外,还可以将该终端对应的信息放到后台系统服务器预设的销户列表里等其他销户操作。 Specifically, the backend system server performing cancellation,; [0289] back-end server system after verifying the signature sixth information, deleting the stored terminal certificate, and generates a cancellation completion information terminal, the terminal transmits completion information to the user terminal pin in addition to deleting the pre-stored terminal certificate, this information may also be corresponding to the terminal in the background system server in the preset list cancellation cancellation and other operations. 另外,销户完成信息也可以是利用第一会话密钥进行加密计算和/或校验计算得到的,也可以是利用后台系统服务器的私钥进行签名得到的,或者利用后台系统服务器的私钥进行签名后再利用第一会话密钥进行加密计算和/或校验计算得到的。 Further, the cancellation completion information may be encrypted using the first session key calculation and / or checksum calculated may be a background system server with the private key to sign obtained, or with the private key of the backend system server and then signed using a first session key for encryption calculation and / or checksum calculated.

[0290] 终端接收到终端销户完成信息后,删除终端的私钥。 [0290] After the terminal receives the cancellation completion information terminal, to delete the private key of the terminal. 具体的,终端接收到终端销户完成信息后,删除私钥,当然,还可以拒绝执行任何与发送该终端销户完成信息的后台系统服务器有关的交易操作。 Specifically, the terminal after the terminal receives the cancellation completion information and delete the private key, of course, may also refuse to perform any background system server transmits completion information to the terminal pin with user transactions related operations. 此外,终端还可以利用第一会话密钥进行解密计算和/或校验验证计算和/或验签操作等。 In addition, the terminal may calculate the decryption key and / or verify the checksum calculation and / or inspection operation by the first check session.

[0291] 以下对智能密码设备的销户进行说明: [0291] The following cancellation of smart password device will be described below:

[0292] 智能密码设备获取智能密码设备销户申请,利用智能密码设备的私钥对销户申请进行签名获得第七签名信息,并向后台系统服务器发送智能密码设备销户申请以及第七签名信息;具体的,该第七签名信息可以是通过终端发送的,也可以是人工办理的,在通过终端发送时,可以利用第一会话密钥和第二会话密钥进行加密计算和/或校验计算等计算,以保证信息传输的安全性。 [0292] intelligent cryptographic devices get smart password device cancel the account application, using the private key cryptographic smart device application to cancel the account to sign in seventh signature information, and send intelligent cryptographic devices cancellation application server and back-office systems seventh signature information ; specifically, the seventh signature information may be transmitted by the terminal, may be an artificial handled, when sent through the terminal, may be utilized first session key and the second session key for encryption calculation and / or calibration calculation calculations to ensure the security of information transmission.

[0293] 后台系统服务器接收到智能密码设备销户申请以及第七签名信息后,利用预存的智能密码设备证书中的公钥对第七签名信息进行验证;具体的,如果终端还利用第一会话密钥进行了加密计算和/或校验计算,后台系统服务器还利用第一会话密钥对接收到的信息进行解密计算和/或校验验证计算。 [0293] back-end server system receives the smart password application and cancellation device after a seventh signature information, intelligent device certificate using the cryptographic public key stored in the seventh to verify signature information; Specifically, if the terminal also uses the first session calculating encryption key and / checksum calculation, calculation, or the backend system server further using information of the received first session key to decrypt calculations and / or verification check.

[0294] 后台系统服务器在验证第七签名信息通过后,删除预存的智能密码设备证书,并生成智能密码设备销户完成信息,向智能密码设备发送智能密码设备销户完成信息;具体的,后台系统服务器在进行销户时,除了删除预存的智能密码设备证书外,还可以将该智能密码设备对应的信息放到后台系统服务器预设的销户列表里等其他销户操作。 [0294] back-end server system in the seventh after verifying the signature information, deleting stored passwords smart device certificate, cryptographic equipment and generate intelligent complete cancellation information, send the smart device password to cancel the account password to complete the information to the smart device; specifically, the background when the system server during an account, in addition to the smart device certificate password to delete pre-stored, the information can also be smart password corresponding to the device in the background system server preset list of cancellation cancellation in other operations. 另外,销户完成信息也可以通过终端发送至智能密码设备,此时可以利用第一会话密钥进行加密计算和/或校验计算得到的,也可以是利用后台系统服务器的私钥进行签名得到的,或者利用后台系统服务器的私钥进行签名后再利用第一会话密钥进行加密计算和/或校验计算得到的。 Further, the cancellation completion information may be transmitted by the intelligent terminal to the cryptographic device, using the first session key at this time can be calculated for encryption and / or checksum calculated, using the background system may be a server private key to obtain a signature or backend system server with the private key to sign and then encrypted using the first session key calculation and / or checksum calculated.

[0295] 智能密码设备接收到智能密码设备销户完成信息后,删除智能密码设备的私钥。 [0295] After receiving the cryptographic device intelligent smart password cancellation device completion information, the password deleting the private key of smart devices. 具体的,智能密码设备可以对签名信息进行验签,并在验签通过后,执行删除操作,也可以利用第二会话密钥解密和/或校验验证得到的信息,当然,还可以利用第二会话密钥解密和/或校验验证得到的信息后再对签名信息进行验签,只要保证信息传输的安全性和/或完整性均应包含在本发明的保护范围内。 Specifically, the smart password device may check the signature information of the subject, and by a posteriori check, delete operation may be using the second session key to decrypt and / or verify the verification information obtained, of course, may also be utilized on two session key information and / or verification check obtained after decrypting the signature information sign test, as long as the safety of information transmission and / or integrity should be included within the scope of the present invention.

[0296] 后台系统服务器通过管理终端和智能密码设备的注册、销户、认证以及锁定几个方面,确保终端和智能密码设备的合法性,杜绝了由于终端或者智能密码设备被非法盗用时产生的财产损失。 [0296] back-end systems through server management terminal devices and smart password registration, cancellation, certification as well as several aspects of the lock, to ensure the legitimacy of terminal devices and smart password, put an end due to a terminal device or a smart password theft is illegal property loss.

[0297] 值得说明的是,以上的操作并非依次执行的,其可以仅完成其中几个操作,另外,以上的操作也不仅限于同一应用场景下完成,无论在何种应用场景下,只要使用本发明的任一操作,并可以安全的执行完交易即应属于本发明的保护范围。 [0297] It should be noted that the above operation is not performed sequentially, which may be only one of several operations to complete, further, the above operation is completed is not limited to the same scenario, In any scenario, as long as the use of the the invention according to any one operation, and can safely executing the transaction shall fall within the protection scope of the present invention.

[0298] 当然,本发明中,终端与后台系统服务器之间传输的信息可以根据需要利用第一会话密钥加密计算和/或校验计算后传输,终端与智能密码设备之间传输的信息也可以根据需要利用第二会话密钥加密计算和/或校验计算后传输,只要待传输的信息需要保证安全性和/或完整性,均可以利用会话密钥完成信息传输。 [0298] Of course, the present invention, the information transferred between the terminal and the background system may need to use the server information key encryption calculation / or transmit a first session between the transmission and the checksum is calculated, the intelligent terminal and the cryptographic device also You may need to use the second session key encryption calculation and / or after transmission of the checksum calculation, so long as the information to be transmitted need to ensure the security and / or integrity, can be completed using the session key information transmission.

[0299] 以下,给出本发明示例性的一种应用场景: [0299] Here, an example is given of an application scenario of the present invention:

[0300] 本应用场景中,在智能密码设备上集成无线通信模块,以及状态控制模块形成本发明的新型的可用于安全支付的智能密码设备。 [0300] In this application scenario, integrated cryptographic device on the smart wireless communication module, and a status control module smart password forming apparatus of the present invention may be novel for secure payment. 该智能密码设备包括无线通信模块,其可以是蓝牙通信模块或者WIFI通信模块等,该无线通信模块可以对其他设备进行查询扫描和寻呼扫描,并可以与其他无线设备进行信号和数据的交互。 The cryptographic smart device includes a wireless communication module, which may be a Bluetooth communication module or WIFI communication module, the wireless communication module may perform inquiry scan and page scan to other devices, and may interact with other signals and data wireless device. 同时该智能密码设备上还包括一个状态控制模块,可以控制智能密码设备的无线通信模块和主机的工作状态。 Meanwhile, the password on the smart device further comprises a status control module operating state, the cryptographic device may control the intelligent wireless communication module and the host. 且本发明的智能密码设备具备两个状态:休眠状态以及唤醒状态,在休眠状态下只有收发器(无线通信模块)和状态控制模块处于工作,CPU将关闭,不能进行指令操作(例如:签名,接收、发送数据等功能),从而使智能密码设备处于一种低功耗的状态。 Smart password and apparatus of the present invention includes two states: the sleep state and the awake state only in the sleep state the transceiver (wireless communication module) and a state control module in operation, the CPU will be closed, not possible instruction operation (for example: the signature, receive and send data etc.), so that the smart password device in a state of low power consumption. 当其他无线设备从外部发给该智能密码设备应用指令时,状态控制模块可以对这些信号进行识别,并生成唤醒信号,将CPU唤醒为唤醒状态,开始执行这个应用命令。 When the other wireless devices smart password sent from an external instruction device application, the state control module may identify these signals and generates a wake-up signal, the wake-up state to wake up the CPU starts executing the application command. 当命令执行完毕以后,CPU将再次进入休眠状态。 When the command is complete, CPU will go into hibernation again.

[0301] 以下,对于本发明的完整交易流程进行简单说明: [0301] Hereinafter, the present invention is to complete the transaction process will be briefly described:

[0302] 智能密码设备处于休眠状态,用户带着该智能密码设备进入终端的无线信号覆盖范围内,智能密码设备与终端完成无线设备的交互识别,即终端可以知道有智能密码设备进入终端所在店铺并与该智能密码设备建立连接。 [0302] Smart cryptographic device in the dormant state, the user password with the smart device enters wireless coverage area of ​​a terminal, intelligent terminal completes the cryptographic device and the wireless identification device interaction, i.e., the terminal device can know the password into the intelligent terminal stores located and establish a connection with the intelligent cryptographic device.

[0303] 终端与智能密码设备建立连接以后,终端会向智能密码设备发送认证设备的请求,智能密码设备接收到该请求,状态控制模块会发出唤醒信号,此时CPU就会被唤醒,智能密码设备进入唤醒状态,并执行相应的操作。 [0303] After the establishment of the connection device and the smart device password, the terminal will, smart password to the requesting device receives the password sent by the intelligent device to the authentication request, the status control module will send a wakeup signal, and the CPU will be awakened, the smart password the device enters the awake state, and performs a corresponding operation.

[0304] 智能密码设备完成相应指令以后,恢复至休眠状态,并继续保持与终端的设备交互识别,以便终端能够判断智能密码设备的持有者是否离店。 After the [0304] smart cryptographic device corresponding instruction is completed, return to a sleep state, and to continue to interact with the device identification of the terminal so that the terminal device can be determined whether the smart password holder out.

[0305] 终端与智能密码设备相互认证通过以后,终端会向后台系统服务器提出读取用户信息的请求,后台系统服务器提出输入用户授权信息的请求,此时终端会向智能密码设备发送用户授权请求。 [0305] intelligent terminal and the cryptographic device after mutual authentication, the terminal will read the user information request made to the background system server, backend system server requesting user authorization information is input, then the user terminal will send an authorization request to the smart cryptographic device .

[0306] 休眠状态下的智能密码设备接收到来自终端发送的用户授权请求,进入唤醒状态。 [0306] Smart device in a dormant state password received from the user terminal sends a request for authorization, enters the awake state. 智能密码设备将显示终端的请求,提示用户进行判断是否授权。 Smart device displays the password request from the terminal, determining whether to prompt the user for authorization.

[0307] 用户根据显示的终端发送的请求判断是否授权,若授权,则按下智能密码设备上的确认键使智能密码设备产生授权信息并发送给终端,然后转入休眠状态,否则,智能密码设备结束执行命令,直接转入休眠状态。 [0307] The authorized user to determine whether the request sent by the terminal display, if authorized, press enter a password on the smart device enables intelligent device generates a password authorization information sent to the terminal, and then goes to sleep, otherwise, the Cryptography end devices execute commands directly into hibernation.

[0308] 在结算时,终端又会向休眠状态的智能密码设备发送用户交易确认请求指令,处于休眠状态下的智能密码设备接收到该指令进入唤醒状态,智能密码设备显示接收到的交易信息,用户进行确认,若交易信息正确,则按下确认键使智能密码设备对交易信息签名,并返回给终端;否则,结束执行操作,智能密码设备转入休眠状态。 [0308] When the settlement, the terminal will send the password to the intelligent user transaction device sleep state confirmation request command, the device is a smart password dormant state receiving the instruction enters the awake state, the intelligent display device password to the received transaction information, user confirmation, if the transaction information is correct, press the Enter key cryptographic device to make intelligent transaction signature information, and return to the terminal; otherwise, ends the execution of the operation, the intelligent cryptographic device into hibernation.

[0309] 以下,给出本发明的另一种应用场景: [0309] Hereinafter, the present invention gives another application scenario:

[0310] 后台系统服务器与终端进行相互认证,建立安全通道协商共同的会话密钥Kl ; [0310] back-end system with the terminal server mutual authentication to establish a secure channel negotiation common session key Kl;

[0311] 终端在本地服务器建立一个当前用户列表,该当前用户列表可以用来存储当前店内的顾客持有的智能密码设备对应的用户信息; [0311] the terminal to establish a list of current users in the local server, the list of current users may be used to store user information corresponding to the current equipment smart password store customer holdings;

[0312] 终端本地服务器通过无线方式(例如采用无线探测设备)对终端的无线信号覆盖范围内的智能密码设备进行监测; [0312] Terminal local server (e.g., wireless detection device) of the cryptographic smart devices within a wireless coverage area monitor terminal by wireless;

[0313] 顾客携带着具有无线通讯功能的智能密码设备(处于休眠状态)逛街购物,当该顾客进入终端的无线信号覆盖范围内,智能密码设备可以被终端搜索到,并与终端建立无线连接; [0313] Customers carrying smart cryptographic device having a wireless communication function (in a dormant state) shopping, when within the customer enters the terminal's wireless coverage area, the smart cryptographic device may be a terminal search and establish a wireless connection with the terminal;

[0314] 终端与智能密码设备进行相互认证,并建立安全通道协商出共同的会话密钥K2 ; [0314] device and the smart device mutual authentication password, and establish a secure channel to negotiate a common session key K2;

[0315] 终端向后台系统服务器发送读取智能密码设备对应的用户信息的请求; [0315] The terminal sends the user background system server reads the requested information corresponding to the smart cryptographic device;

[0316] 后台系统服务器产生随机数(单次授权标识),作为生成用户授权信息的参数,后台系统服务器利用会话密钥Kl加密该随机数; [0316] The system back-end server generates a random number (single license identifier), as a parameter to generate a user authorization information, background system server using the session key Kl encrypts the random number;

[0317] 后台系统服务器向终端发出用户授权请求信息,并将该随机数密文发送给终端; [0317] The system back-end server sends the user authorization request information to the terminal, and the encrypted random number to the terminal;

[0318] 终端解密密文,再利用终端与智能密码设备之间协商的会话密钥K2对该随机数加密; [0318] terminal to decrypt the ciphertext, reusing a session negotiation between the terminal device and the smart password key K2 to encrypt the random number;

[0319] 终端向智能密码设备发送用户授权请求信息,并将该随机数密文发给智能密码设备; [0319] grant to the terminal device transmitting user smart password request information, and the random number encrypted password sent to the smart device;

[0320] 智能密码设备接收到该用户授权请求信息后,转换成唤醒状态,并利用会话密钥K2对接收到的该随机数密文进行解密,然后在智能密码设备的显示屏上显示该用户授权请求信息,等待用户进行确认; [0320] smart password to the user device receives the authorization request information, converted into an awake state, and using the random number received session key K2 decrypt the ciphertext, then the user is displayed on the display device smart password authorization request message, waits for the user to confirm;

[0321] 用户对该信息进行判断,如果不允许则拒绝,智能密码设备转入休眠状态; [0321] determining information of the user, if not allowed to reject the smart cryptographic device goes to sleep;

[0322] 如果允许,则按下智能密码设备上的确认键,智能密码设备对该随机数(单次授权标识)进行摘要并签名,并将签名值作为用户授权信息,利用会话密钥K2加密签名值发送至终端,然后转入休眠状态; [0322] If allowed, then press enter, smart password on the smart device password device digest the random number (single license identification) and signature, and the signature value as the user authorization information, encrypted using the session key K2 signature value to the terminal, and then go to sleep;

[0323] 终端接到签名值利用会话密钥K2解密,再利用会话密钥Kl加密,传送给后台系统服务器; [0323] signature value to the terminal using the session key K2 and decryption, using the session key Kl encrypted, transmitted to the backend system server;

[0324] 后台系统服务器利用会话密钥Kl解密得到签名,再利用智能密码设备的公钥解密签名,将利用其自身生成的随机数生成的摘要与解密签名后得到的值进行对比,若不一致,则返回错误信息结束操作; [0324] The system back-end server by using the session key Kl decrypted signature, then a public key cryptographic smart device decrypts the signature, the digest using its own random number generator is generated compared with the decrypted signature value obtained, if not, error message is returned end of the operation;

[0325] 若一致,则后台系统服务器将用户信息利用会话密钥Kl进行加密,并生成用户授权信息校验值(第一校验值),该校验值可以是MAC形式或者哈希函数加签名的形式等,将密文以及校验值发送给终端; [0325] if they are consistent, then the back-end server system user information is encrypted using the session key Kl, and generates the user authorization information check value (first check value), the check value may be a hash function or increase in MAC in the form of signatures, and the like, and the ciphertext verification value sent to the terminal;

[0326] 终端收到用户信息以后,将用户信息存储在当前用户列表中; After [0326] The terminal receives the user information, the user information stored in the current user list;

[0327] 顾客购物结束以后到收银处进行结算; [0327] After the end of customers shopping to be settled at the cash register;

[0328] 终端结算金额,并在当前用户列表中选中该顾客持有的智能密码设备对应的账户; [0328] terminal payment amount and check the current user list, the customer holds a smart device password corresponding to the account;

[0329] 终端将交易金额、收付款双方账号、收付款双方标识信息等生成交易信息,利用会话密钥K2加密交易信息; [0329] The amount of the transaction terminal, both the collection and payment account, payment and collection transactions generate both the identification information and other information, using the session key K2 encrypted transaction information;

[0330] 终端向智能密码设备发送交易请求信息,并将交易信息密文发送给智能密码设备; [0330] the terminal sends the transaction request information to the intelligent device password, transaction information and transmits the ciphertext to the cryptographic smart device;

[0331] 智能密码设备接收到终端的交易请求信息,则转入唤醒状态,对交易信息解密成明文并在屏幕上显示出来; [0331] Smart device receives the password request information to the transaction terminal, the process proceeds to the awake state, the transaction information decrypted back into plain text and displayed on a screen;

[0332] 顾客对交易信息进行确认,若有问题则按取消,交易中止,智能密码设备转入休眠状态; [0332] customer transaction information to confirm if the problem press cancel, abort the transaction, intelligent cryptographic device goes to sleep;

[0333] 若没有问题,则按下确认键,智能密码设备生成随机数,作为单次交易标识; [0333] If there is no problem, then press enter, cryptographic smart device generates a random number, as a single transaction identification;

[0334] 智能密码设备对交易信息以及该随机数进行摘要并签名,利用会话密钥K2加密签名,得到用户交易确认信息并发送给终端; [0334] intelligent cryptographic device for transaction information and the random number and signature digest, using the session key K2 encrypted signature, users get a transaction confirmation message sent to the terminal;

[0335] 终端对用户交易确认信息进行解密,并生成交易数据包(包括交易金额,收付款双方账号以及各自的唯一识别信息等),利用会话密钥Kl对交易数据包加密,并生成交易数据包校验值(第二校验值); [0335] transaction user terminal decrypts the acknowledgment information, and generates transaction data packet (including the transaction amount, account number and the respective sides of payments received unique identification information, etc.), with the session key Kl encrypted transaction data packets, and generates transaction data packet check value (a second check value);

[0336] 终端向后台系统服务器发送转账申请并发送交易数据包密文以及第二校验值; [0336] Transfer request sent by the terminal and transmitted to the background system server's cipher text packet and a second check value;

[0337] 后台系统服务器进行转账处理,并向终端发送转账成功的支付完成信息,当然,后台系统服务器还可以将支付完成信息通过终端发送给智能密码设备,以便顾客得知交易完成; [0337] back-end server systems transfer process, transfer and send payment terminal successful completion of information, of course, the background system server can also complete the payment information is sent to the smart device password through the terminal to the customer that the transaction is completed;

[0338] 终端收到该支付完成信息,向顾客交付商品,结账完成。 [0338] The payment terminal receives complete information, delivery of goods to customers, completion of settlement.

[0339] 通过终端与后台系统服务器之间进行的认证,终端认定了后台系统服务器的合法性以后,可以利用可信的后台系统服务器对智能密码设备的合法性进行认证。 [0339] carried out between the terminal and back-end systems through server authentication, recognized the legitimacy of the terminal server back-end systems of the future, can the legality of smart password authentication device uses a trustworthy back-end server systems. 在同时确定了后台系统服务器与智能密码设备是可信的情况下,这样就保证了终端的交易安全。 While determining the back-end server systems and intelligent cryptographic device is a credible case, thus ensuring transaction security terminal. 同时利用后台系统服务器对终端的合法性认证以及交易时智能密码设备对显示信息手动确认的环节,也保证了智能密码设备持有者的交易安全。 While taking advantage of back-end server-to-end system certification and legality of the transaction information displayed on the smart device password manually confirm the link, but also to ensure transaction security smart password device holder.

[0340] 基于本发明提供的数据安全交互系统,顾客在进入店铺进行交易时,无需配合手机、银行卡或金融IC卡等相关账户载体设备完成支付,而原有技术的支付过程均需要借助SIM卡或智能卡等具备账户存储功能的设备,用户还需要进行刷卡、刷手机等操作才能完成交易。 [0340] interaction data security system of the invention to provide based on customer entering the shop at the time of the transaction, with no need to phone, bank cards or financial IC card account and other related support equipment to complete the payment, and the payment process by means of existing technologies require SIM cards or smart cards with account storage function, users need to swipe the brush mobile phones and other operations to complete the transaction. 采用本发明提供的系统,顾客可以无需借助钱包、信用卡、手机等方式来完成支付,从而简化了顾客与商户在支付过程中的交互操作,提高了支付效率,提升了顾客在近场支付过程中的体验;同时利用智能密码设备的安全性特点保证顾客支付过程的安全性。 Using the system provided by the invention, customers may not need to complete the payment by means of purse, credit cards, cell phones, etc., thus simplifying the customer and merchant interaction in the payment process, improve payment efficiency, enhance customer near-field payment process in experience; while taking advantage of the security features of the smart device password to ensure the safety of the customer payment process.

[0341] 顾客选购好商品以后在结账时,终端无需再通过让顾客手动刷卡或刷手机的方式获得用户信息,是因为该用户信息在刚进店时已经存储在终端的当前用户列表中了,结账时顾客只需报出自己的姓名,终端即可直接将结算后的金额等交易信息发送至顾客的智能密码设备并显示,此时,顾客只需利用智能密码设备进行确认,并输出交易确认信息,终端生成交易数据包发送给后台系统服务器,后台系统服务器验证该交易数据包准确无误后进行转账处理,即可完成支付过程。 [0341] After customers to buy good merchandise at checkout, the terminal no longer need to manually credit card customers through phone or brush way to get user information, because the user information when he first entered the shop is already stored in the user terminal in the current list , checkout customers can simply give your name, the terminal can be sent directly to the amount of the settlement transaction information to a customer's smart cryptographic devices and displays, this time, the customer can simply use the smart device password to confirm the transaction and output confirmation information, the terminal generates a transaction packet to the backend system server, backend system server for authentication packet transfer process after the transaction is correct, to complete the payment process.

[0342] 当顾客走出这家店铺的信号覆盖范围时,智能密码设备与终端之间的网络连接就会自动中断,用户信息从该店铺的当前用户列表中消失。 [0342] When the customer out of the signal coverage of this shop, the network connection between the device and the terminal smart password will automatically interrupt the user information disappears from the list of current users in this shop. 若顾客又进入另一家店铺时,将会自动进入该另一家店铺的当前用户列表中,开始另一次购物。 If the customer has entered another shop, the other will automatically enter the shop of the current user list, start another shopping. 这样不需要顾客执行任何操作,只需要顾客在购物时将一个小巧的智能密码设备随身放入口袋,采用本发明就可以为顾客带来无缝使用体验。 So customers do not need to do anything, only customers in the shopping smart password will be a small portable device in a pocket, with the present invention that can bring customers a seamless experience.

[0343] 流程图中或在此以其他方式描述的任何过程或方法描述可以被理解为,表示包括一个或更多个用于实现特定逻辑功能或过程的步骤的可执行指令的代码的模块、片段或部分,并且本发明的优选实施方式的范围包括另外的实现,其中可以不按所示出或讨论的顺序,包括根据所涉及的功能按基本同时的方式或按相反的顺序,来执行功能,这应被本发明的实施例所属技术领域的技术人员所理解。 [0343] In the flowchart in any process or method or otherwise described in this description may be understood as representing modules comprises one or more steps for implementing specific logical functions or processes executable instructions, fragment or portion, and the scope of the preferred embodiment of the present invention includes other implementations, which may be shown or discussed in order not press, comprising a substantially simultaneous manner or in reverse order, depending upon the functionality to perform the functions involved it should be understood that embodiments skilled in the art of the present invention. [0344] 应当理解,本发明的各部分可以用硬件、软件、固件或它们的组合来实现。 [0344] It should be understood that various portions of the present invention may be implemented in hardware, software, firmware or a combination thereof to achieve. 在上述实施方式中,多个步骤或方法可以用存储在存储器中且由合适的指令执行系统执行的软件或固件来实现。 In the above-described embodiment, a plurality of steps or methods may be implemented in software or firmware and executed by a suitable system executing instructions stored in a memory with. 例如,如果用硬件来实现,和在另一实施方式中一样,可用本领域公知的下列技术中的任一项或他们的组合来实现:具有用于对数据信号实现逻辑功能的逻辑门电路的离散逻辑电路,具有合适的组合逻辑门电路的专用集成电路,可编程门阵列(PGA),现场可编程门阵列(FPGA)等。 For example, if implemented in hardware, as in another embodiment, the present technique may be any one of the following well-known in the art, or their combination thereof: a logic gate circuit for implementing logic functions upon data signals discrete logic circuits having appropriate combinational logic gate circuit ASIC, a programmable gate array (PGA), a field programmable gate array (FPGA) and the like.

[0345] 本技术领域的普通技术人员可以理解实现上述实施例方法携带的全部或部分步骤是可以通过程序来指令相关的硬件完成,所述的程序可以存储于一种计算机可读存储介质中,该程序在执行时,包括方法实施例的步骤之一或其组合。 [0345] skilled in the art can understand that ordinary method embodiments that all or part of the steps may be by a program instructing relevant hardware, the program may be stored in a computer-readable storage medium, one of the steps in the implementation of the embodiment of the method includes the program, or combinations thereof.

[0346] 此外,在本发明各个实施例中的各功能单元可以集成在一个处理模块中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个模块中。 [0346] In addition, the functional units may be integrated in one processing module, or may be physically separate units exist, may be two or more units are integrated in a module in various embodiments of the present invention. 上述集成的模块既可以采用硬件的形式实现,也可以采用软件功能模块的形式实现。 The integrated module may be implemented in the form of hardware, software functional modules may also be implemented. 所述集成的模块如果以软件功能模块的形式实现并作为独立的产品销售或使用时,也可以存储在一个计算机可读取存储介质中。 If the integrated module is implemented as an independent product sold or used in the form of a software functional module, it may be stored in a computer-readable storage medium.

[0347] 上述提到的存储介质可以是只读存储器,磁盘或光盘等。 [0347] The storage medium may be a read-only memory, magnetic or optical disk.

[0348] 在本说明书的描述中,参考术语“一个实施例”、“一些实施例”、“示例”、“具体示例”、或“一些示例”等的描述意指结合该实施例或示例描述的具体特征、结构、材料或者特点包含于本发明的至少一个实施例或示例中。 [0348] In the description of the present specification, reference to the term "one embodiment," "some embodiments", "an example", "a specific example", or "some examples" means that a description of the exemplary embodiment or embodiments described a particular feature, structure, material, or characteristic is included in at least one embodiment of the present invention, embodiments or examples. 在本说明书中,对上述术语的示意性表述不一定指的是相同的实施例或示例。 In the present specification, a schematic representation of the above terms necessarily referring to the same embodiment or example. 而且,描述的具体特征、结构、材料或者特点可以在任何的一个或多个实施例或示例中以合适的方式结合。 Furthermore, the particular features, structures, materials, or characteristics described embodiments or examples may be at any one or more in a proper manner.

[0349] 尽管上面已经示出和描述了本发明的实施例,可以理解的是,上述实施例是示例性的,不能理解为对本发明的限制,本领域的普通技术人员在不脱离本发明的原理和宗旨的情况下在本发明的范围内可以对上述实施例进行变化、修改、替换和变型。 [0349] Although the above has been illustrated and described embodiments of the present invention, it is understood that the above embodiments are exemplary and are not to be construed as limiting the present invention, those of ordinary skill in the art without departing from the present invention. It may be performed from the principles and spirit of the present invention within the scope of the above-described embodiment, variations, modifications, alternatives, and modifications. 本发明的范围由所附权利要求及其等同限定。 By the scope of the invention defined in the appended claims and their equivalents.

Claims (30)

1.一种数据安全交互系统,其特征在于,包括: 终端,用于在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息;根据所述智能密码设备的标识信息获取所述智能密码设备对应的用户信息;将所述用户信息存储到预先建立的当前用户列表中;根据待交易的智能密码设备对应的用户信息生成交易信息,并利用第二会话密钥对所述交易信息进行加密计算和/或校验计算获得交易请求信息;向所述智能密码设备发送所述交易请求信息;接收所述交易确认信息;利用第一会话密钥对所述交易确认信息进行加密计算和/或校验计算获得交易数据包,并向所述后台系统服务器发送所述交易数据包; 所述智能密码设备,用于接收所述终端发送的所述交易请求信息,利用所述第二会话密钥对所述交易请求信息进行解密计算和/或校验验证 A data security interactive system, comprising: a terminal in a coverage area for a scanning device smart password, and obtains the identification information to the intelligent scanning cryptographic device; smart password device in accordance with the acquiring identification information of the user information corresponding to the smart cryptographic device; current user list stored in the user information pre-established; generating transaction information from the user information to be smart password corresponding to the transaction apparatus, and using a second session key ciphering and / or verify the transaction information is calculated to obtain transaction request information; smart password request information to the device which sends the transaction; receiving the transaction acknowledgment information; using a first session key confirmation of the transaction encryption calculation information and / or transaction data packet checksum obtained by calculation, and the backend system server sends the transaction data packet; said intelligent cryptographic device, for receiving the transaction request information sent by the terminal, using the second session key to the transaction request information to decrypt calculations and / or verification check 算获得所述交易信息;提示所述交易信息;接收确认指令,并生成交易确认信息; 所述后台系统服务器,用于接收所述终端发送的所述交易数据包,利用所述第一会话密钥对所述交易数据包进行解密计算和/或校验验证计算获得所述交易确认信息;对所述交易确认信息进行验证,并在验证通过后执行交易。 Operators obtain the transaction information; prompt the transaction information; receiving an acknowledgment command and generates a transaction profile; the backend system server, for receiving the transaction data packet sent by the terminal, encrypted using the first session key to decrypt the transaction data packet calculate and / or verify the transaction authentication acknowledgment information obtained by calculation; acknowledgment information in verification of the transaction, and the transaction executed after the verification.
2.根据权利要求1所述的系统,其特征在于, 所述终端,还用于向所述后台系统服务器发送所述智能密码设备的标识信息以及用户信息读取请求;接收所述后台系统服务器发送的用户信息读取请求的响应信息,利用所述第一会话密钥对所述用户信息读取请求的响应信息进行解密计算和/或校验验证计算获得所述用户信息; 所述后台系统服务器,还用于接收所述终端发送的所述智能密码设备的标识信息以及所述用户信息读取请求,根据所述智能密码设备的标识信息获取与所述智能密码设备对应的用户信息;利用所述第一会话密钥对所述用户信息进行加密计算和/或校验计算获得所述用户信息读取请求的响应信息,并向所述终端发送所述用户信息读取请求的响应信息。 2. The system according to claim 1, characterized in that the terminal, the background system is further configured to transmit the server identification information of the smart device password and the user information read request; background system receives the server user information in response to the read request transmitted using the first session key information in response to a read request to decrypt the user information is calculated and / or checksum to verify the user information obtained by calculation; the background system cryptographic identification information of the smart device and the user information read request server is further configured to receive the transmission terminal acquires user information corresponding to the smart cryptographic device according to identification information of the cryptographic smart device; using the first session key encryption calculation and / or verification information obtained by calculation in response to the subscriber information read request to the user information, and send the user information in response to a read request of the terminal.
3.根据权利要求1所述的系统,其特征在于, 所述终端,还用于根据所述智能密码设备的标识信息向所述智能密码设备发送用户信息读取请求;接收所述智能密码设备发送的所述用户信息读取请求的响应信息,利用所述第二会话密钥对所述用户信息读取请求的响应信息进行解密计算和/或校验验证计算获得所述用户信息; 所述智能密码设备,还用于获得预先存储的用户信息,利用所述第二会话密钥对所述用户信息进行加密计算和/或校验计算获得所述用户信息读取请求的响应信息,并向所述终端发送所述用户信息读取请求的响应信息。 3. The system of claim 1, wherein the terminal is further configured to read request to the smart cryptographic device transmits the user information based on identification information of the cryptographic smart device; receiving the intelligent cryptographic device in response to the information sent by the user information read request, the second session key using the read information in response to a request for decrypting the user information is calculated and / or verify the user authentication information obtained by calculation; the smart cryptographic device is further configured to obtain user information stored in advance, using the second session key to the user information is encrypted calculate and / or check information obtained by calculation in response to the read request user information, and said user terminal transmits said response information information read request.
4.根据权利要求1至3任一项所述的系统,其特征在于, 所述终端,还用于在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息之后,获得在所述终端的信号覆盖范围内的全部智能密码设备的标识信息,生成实时标识列表;根据预设的时间间隔将所述实时标识列表中的智能密码设备的标识信息与所述当前用户列表中的智能密码设备的标识信息进行比对;如果所述实时标识列表中的智能密码设备的标识信息不在所述当前用户列表中,则根据所述智能密码设备的标识信息获取所述智能密码设备对应的用户信息;且如果所述当前用户列表中的智能密码设备的标识信息不在所述实时标识列表中,则删除所述当前用户列表中不在所述实时标识列表中的智能密码设备的用户信息。 4. The system according to any one of claims 3, characterized in that the terminal further identification information within the cryptographic device intelligent scanning signal coverage, and access to the smart scanning cryptographic apparatus Thereafter, the identification information is obtained in all intelligent cryptographic device within range of the terminal, generating a real-time identification list; according to a preset time interval the device identification information of the intelligent real-time password identifier list with the current password identification information of the smart devices in the user list for comparison; if the intelligent real-time identification list cryptographic device identification information of the current user is not in the list, obtaining the identification information of the intelligent smart the cryptographic apparatus cryptographic device corresponding to user information; and if the current password identification information of the smart user of the device is not in the list of real-time identification list, deleting the cryptographic smart devices currently not in the list of users in real-time identification list User Info.
5.根据权利要求1至3任一项所述的系统,其特征在于, 所述终端,还用于在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息之后,获得在所述终端的信号覆盖范围内的全部智能密码设备的标识信息,生成实时标识列表;根据预设的时间间隔将所述实时标识列表中的智能密码设备的标识信息与所述当前用户列表中的智能密码设备的标识信息进行比对;如果所述实时标识列表中的智能密码设备的标识信息不在所述当前用户列表中,则根据所述智能密码设备的标识信息获取所述智能密码设备对应的用户信息,并在所述终端获得所述用户信息后,将所述用户信息存储至所述实时标识列表中;且如果所述实时标识列表中的智能密码设备的标识信息在所述当前用户列表中,则将所述在所述当前用户列表中的智能密码设备的用户 5. The system according to any one of claims 3, characterized in that the terminal further identification information within the cryptographic device intelligent scanning signal coverage, and access to the smart scanning cryptographic apparatus Thereafter, the identification information is obtained in all intelligent cryptographic device within range of the terminal, generating a real-time identification list; according to a preset time interval the device identification information of the intelligent real-time password identifier list with the current password identification information of the smart devices in the user list for comparison; if the intelligent real-time identification list cryptographic device identification information of the current user is not in the list, obtaining the identification information of the intelligent smart the cryptographic apparatus the user equipment information corresponding to the password, and obtains the user information of the terminal, the user identification information stored in the list in real time; and if the cryptographic device intelligent real-time identification list of the identification information said current user in the user list, then the list of the current user password smart devices 息存储至所述实时标识列表中;将所述实时标识列表作为更新后的所述当前用户列表。 Storing the real-time information to the identifier list; a list of the real-time identification of the updated list of current users.
6.根据权利要求2所述的系统,其特征在于, 所述后台系统服务器,还用于在所述终端向所述后台系统服务器发送所述智能密码设备的标识信息以及用户信息读取请求之后,判断所述智能密码设备的标识信息是否包含在所述后台系统服务器中预存的智能密码设备异常名单中;在判断出所述智能密码设备的标识信息在所述智能密码设备异常名单中后,获取锁定智能密码设备指令,以及利用所述后台系统服务器的私钥对锁定智能密码设备指令进行签名获得第五签名信息,并通过所述终端向所述智能密码设备发送所述锁定智能密码设备指令以及所述第五签名信息; 所述智能密码设备,还用于接收所述后台系统服务器通过所述终端发送的所述锁定智能密码设备指令以及所述第五签名信息,利用预存的所述后台系统服务器证书中的公钥对所述第五签名信息进 6. After the system according to claim 2, characterized in that the background system server is further configured to send the identification to the server in the background system cryptographic smart terminal device information and the user information read request determining the smart cryptographic device identification information is contained in the list of pre-stored smart password system server apparatus abnormality in the background; is judged that the identification information of the smart cryptographic device after the exception list cryptographic smart device, Get smart password lock command device, and utilizing the private key of the backend system server smart password locking device to obtain a fifth instruction signed signature information, and the cryptographic smart locking device transmits instructions to the cryptographic device via the intelligent terminal and the fifth signature information; the smart cryptographic device, the cryptographic device is also used for smart signature information and the fifth instruction of the receiving system of the back-end server via the terminal locking, using the pre-stored background system server's public key certificate information into the signature of the fifth 验证;在验证所述第五签名信息通过后,根据所述锁定智能密码设备指令执行锁定操作。 Verify; fifth after verifying the signature information, the device according to the instruction smart password lock locking operation is performed.
7.根据权利要求1至6任一项所述的系统,其特征在于, 所述后台系统服务器,还用于接收终端注册申请,并对所述终端注册申请进行审核;在审核所述终端注册申请通过后,向所述终端发送终端密钥对生成指令;接收所述终端发送的所述终端密钥对中的公钥后,生成所述终端证书,并向所述终端发送所述终端证书; 所述终端,还用于接收所述后台系统服务器发送的所述终端密钥对生成指令,生成终端密钥对;向所述后台系统服务器发送所述终端密钥对中的公钥;存储所述终端证书; 以及所述后台系统服务器,还用于接收智能密码设备注册申请,并对所述智能密码设备注册申请进行审核;在审核所述智能密码设备注册申请通过后,向所述智能密码设备发送智能密码设备密钥对生成指令;接收所述智能密码设备发送的所述智能密码设备密钥对中的公钥 7. A system according to any one of claims 1 to 6, characterized in that the background system server is further for receiving a registration terminal, and the terminal registration review; terminal registered in the audit after the application, the sending terminal key pair generation command to the terminal; transmitting, after receiving the terminal end of the key pair of public key certificate of said terminal, and the terminal transmits the terminal certificate ; the terminal, the terminal is further configured to receive the key sent by the server to the background system generation instruction, the terminal generates a key pair; transmitting the terminal key to the public key to the back-end server system; storage the terminal certificate; and the background system server is further configured to receive the smart apparatus registration password, and the smart password registration device for review; after the application is approved the smart password registration device, to the smart smart device sends the password to the cryptographic key generation instruction device; receiving the intelligent device transmitting the cryptographic smart cryptographic device public key pair ,生成所述智能密码设备证书,并向所述智能密码设备发送所述智能密码设备证书; 所述智能密码设备,还用于接收所述后台系统服务器发送的所述智能密码设备密钥对生成指令,生成智能密码设备密钥对;向所述后台系统服务器发送所述智能密码设备密钥对中的公钥;存储所述智能密码设备证书。 Generating the cryptographic smart device certificate, and the cryptographic smart device sends the smart cryptographic device certificate; the smart cryptographic device, the cryptographic device further for the smart key receiving the background system transmits the generated server command, generating intelligent key cryptographic apparatus; cryptographic device transmits the smart key to the public key of the backend system server; storing the cryptographic smart device certificate.
8.根据权利要求7所述的系统,其特征在于, 所述终端,还用于获取终端销户申请,利用所述终端的私钥对所述销户申请进行签名获得第六签名信息,并向所述后台系统服务器发送所述终端销户申请以及所述第六签名信息;所述后台系统服务器接收到所述终端销户申请以及所述第六签名信息后,利用预存的所述终端证书中的公钥对所述第六签名信息进行验证;接收所述后台系统服务器发送的所述终端销户完成信息,删除所述终端的私钥; 所述后台系统服务器,还用于在验证所述第六签名信息通过后,删除预存的所述终端证书,并生成终端销户完成信息,向所述终端发送所述终端销户完成信息; 和/或所述智能密码设备,还用于获取智能密码设备销户申请,利用所述智能密码设备的私钥对所述销户申请进行签名获得第七签名信息,并向所述后台系统服 8. The system according to claim 7, characterized in that the terminal is further configured to obtain the terminal pin household application, the private key of the terminal pin sign the request to obtain a sixth user signature information, and transmitting the application and the user terminal pin sixth signature information to the backend system server; server after the background system receives the request and the user terminal pin sixth signature information, using the pre-stored terminal certificate in the sixth public key signature verification information; receiving the user of the terminal pin background system completion information sent by the server, the terminal deletes the private key; the backend system server further configured to verify the after said sixth signature information, deleting the pre-stored terminal certificate, and generates a cancellation completion information terminal, the terminal transmits to the user terminal pin completion information; and / or the smart cryptographic device further configured to obtain smart password equipment cancel the account application, using the private key cryptographic smart device application for the cancellation to be signed in seventh signature information, and the background system service 务器发送所述智能密码设备销户申请以及所述第七签名信息;所述后台系统服务器接收到所述智能密码设备销户申请以及所述第七签名信息后,利用预存的所述智能密码设备证书中的公钥对所述第七签名信息进行验证;接收所述后台系统服务器发送的所述智能密码设备销户完成信息,删除所述智能密码设备的私钥; 所述后台系统服务器,还用于在验证所述第七签名信息通过后,删除预存的所述智能密码设备证书,并生成智能密码设备销户完成信息,向所述智能密码设备发送所述智能密码设备销户完成信息。 Intelligent service sends the cryptographic device and the seventh request cancellation signature information; background system after the server receives the smart cryptographic device and the seventh request cancellation signature information, using the pre-stored smart password device public key certificate to verify the signature information seventh; the smart cryptographic device the background system receives the cancellation completion information sent by the server, the smart deleting the private key of the cryptographic device; the backend system server, after further configured to verify the signature information by the seventh, deleting the device certificate pre-stored smart password, and password generation intelligent devices cancellation completion information, completion information to the intelligent device transmitting the cryptographic smart password cancellation apparatus .
9.根据权利要求2所述的系统,其特征在于, 所述后台系统服务器,还用于通过所述终端向所述智能密码设备发送用户授权请求信息;接收所述授权信息,向所述终端发送所述用户信息读取请求的响应信息; 所述智能密码设备,还用于接收所述用户授权请求信息,生成授权信息,并通过所述终端向所述后台系统服务器发送所述授权信息。 9. The system according to claim 2, characterized in that the back-end server, an authorization request for further information to the smart cryptographic device via the transmitting user terminal; receiving the authorization information to the terminal transmitting the user information in response to the read request; the smart cryptographic device, for receiving a further request for said user authorization information, generates an authorization message and transmit the authorization information back to the server system via the terminal.
10.根据权利要求9所述的系统,其特征在于, 所述智能密码设备,还用于在接收到所述用户授权请求信息后,由休眠状态转换为唤醒状态;在唤醒状态下生成授权信息。 10. The system according to claim 9, wherein the smart cryptographic device further configured to, after receiving the user authorization request information converted from the sleep state to the awake state; generating the authorization information in the awake state .
11.根据权利要求1至10任一项所述的系统,其特征在于, 所述智能密码设备,还用于接收到所述交易请求信息后,由休眠状态转换为唤醒状态;在唤醒状态下利用所述第二会话密钥对所述交易请求信息进行解密计算和/或校验验证计算获得所述交易信息。 In the awake state; 11. The system of any one of claims 1 to 10, characterized in that the cryptographic smart device is further configured to receive the request message to the transaction converted by the sleep state to the awake state request using said second session key to decrypt the transaction information is calculated and / or checksum to verify the transaction information obtained by calculation.
12.根据权利要求1至11任一项所述的系统,其特征在于, 所述智能密码设备,还利用所述智能密码设备的私钥对所述交易信息进行签名,生成交易签名信息作为交易确认信息或者生成动态口令作为交易确认信息。 The system according to claim 1 to any one of claims 11, wherein the smart cryptographic device, further using the private key of the cryptographic device intelligent transaction signature information, generates the transaction signature information as the transaction or dynamic password generated confirmation message as confirmation transaction.
13.根据权利要求1至11任一项所述的系统,其特征在于, 所述智能密码设备,还用于生成单次交易标识,并利用所述智能密码设备的私钥对所述交易信息以及所述单次交易标识进行签名,生成交易签名信息作为交易确认信息;或者所述智能密码设备,还用于生成单次交易标识,利用所述智能密码设备的私钥对所述单次交易标识进行签名获得单次交易标识的签名信息,并生成动态口令,将单次交易标识的签名信息以及所述动态口令作为交易确认信息。 The system according to claim 1 to any one of claims 11, wherein said cryptographic smart device is further configured to generate a single transaction identification, and using the private key cryptographic smart device the transaction information and said single signed transaction identifier, the transaction information as the transaction signature generates acknowledgment information; smart password or the device is further configured to generate a single transaction identifier, using the private key of the cryptographic device intelligent single transaction signed identifier to obtain a single signature information identifying the transaction, and generating a dynamic password, the signature information per transaction identity and the dynamic password as a transaction confirmation.
14.根据权利要求12或13所述的系统,其特征在于, 所述终端,还用于接收所述智能密码设备发送的声波信号并对所述声波信号进行解码获得交易确认信息;或者采集所述智能密码设备显示的图像信息并对所述图像信息进行解码获得所述交易确认信息;或者通过所述终端与所述智能密码设备匹配的通信接口接收所述交易确认信息;或者通过所述终端输入的信息获得所述交易确认信息。 14. The system of claim 12 or claim 13, characterized in that the terminal further acoustic signals and for transmitting said acoustic signal receiving apparatus decodes the cryptographic smart confirmed the transaction information; for acquisition or the image information and the image information of said smart device displays password obtained by decoding the transaction acknowledgment information; acknowledgment information or the communication device receiving the transaction smart password matches said terminal interfaces; or by the terminal information entered obtain the transaction confirmation.
15.根据权利要求1至14任一项所述的系统,其特征在于, 所述后台系统服务器,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述终端发送交易成功回执信息和/或通过所述终端向所述智能密码设备发送交易成功回执信息; 所述智能密码设备,还用于接收所述后台系统服务器通过所述终端发送的所述交易成功回执信息,提示所述交易成功回执信息。 The system according to claim 1 to any one of claims 14, characterized in that the background system server is further configured to verify the acknowledgment information to the background system in a transaction server, and executed after the verification after the transaction, sending the transaction success receipt information and / or information to the smart device sends the transaction success cryptographic receipt by the terminal to the terminal; intelligent said cryptographic device further configured to receive the background system by the terminal server the success of the transaction receipt information is sent, indicating the success of the transaction receipt information.
16.根据权利要求1至15任一项所述的系统,其特征在于, 所述终端,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述智能密码设备发送退款信息;接收所述退款确认信息,对所述退款确认信息进行验证,并在验证通过后,利用所述终端的私钥对所述退款确认信息进行签名生成退款确认包;向所述后台系统服务器发送所述退款确认包和所述退款确认信息; 所述智能密码设备,还用于接收所述终端发送的所述退款信息,提示所述退款信息;接收退款确认指令,并利用所述智能密码设备的私钥对所述退款信息进行签名,生成退款确认信息; 所述后台系统服务器,还用于接收所述终端发送的所述退款确认包和所述退款确认信息,分别对所述退款确认包和所述退款确认信息进行验证,并在全部验证通过后, 1 to 16. After the system 15 according to any one of the preceding claims, characterized in that the terminal is further configured to verify the acknowledgment information to the transaction server system in the background, and executes the transaction after the verification sending cryptographic device to the smart refund information; receiving the refund confirmation private information, the acknowledgment information to verify the refund, and after the verification using the confirmation information to said terminal refund generating a signature for a refund confirmation packet; transmitting said refund confirmation packet and the refund confirmation information to the backend system server; the smart cryptographic device further configured to receive the refund information sent by the terminal, prompting the refund information; receiving the refund confirmation instruction, and using the private key of the cryptographic device intelligent refund information for a signature, generating refund confirmation information; and the background system server is further configured to receive the refund confirmation sent by the terminal refund confirmation packet and the information on each of the refund confirmation packet and the refund confirmation information will be verified, and all authentication is passed, 行退款操作。 Refund line.
17.根据权利要求1至15任一项所述的系统,其特征在于, 所述智能密码设备,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述终端发送退款请求;接收所述终端发送的所述退款信息,提示所述退款信息;接收退款确认指令,并利用所述智能密码设备的私钥对所述退款信息进行签名,生成退款确认信息; 所述终端,还用于生成退款信息,并向所述智能密码设备发送所述退款信息;接收所述退款确认信息,对所述退款确认信息进行验证,并在验证通过后,利用所述终端的私钥对所述退款确认信息进行签名生成退款确认包;向所述后台系统服务器发送所述退款确认包和所述退款确认信息; 所述后台系统服务器,还用于接收所述终端发送的所述退款确认包和所述退款确认信息,分别对所述退款确认包和所 The system according to claim 1 to any one of claims 15, wherein the smart cryptographic device, acknowledgment information for further verification of the transaction server system in the background, and executed after the verification after the transaction, sending a refund request to the terminal; receiving the refund information sent by the terminal, prompting the refund information; receiving the refund confirmation instruction, and by using the private key of the smart said cryptographic apparatus refund information for a signature, generating refund confirmation information; and the terminal is further configured to generate the refund information to the intelligent device transmitting the cryptographic refund information; receiving the refund confirmation information, the withdrawal paragraph acknowledgment information to verify, and after the verification using the private key of the terminal information of the refund confirmation signature generating refund confirmation packet; transmitting said refund confirmation packet and the background system to the server refund confirmation information; and the background system server for further confirmation of the refund confirmation packet and the information sent by the terminal receiving a refund, the refund confirmation packet, respectively, and the 退款确认信息进行验证,并在全部验证通过后,执行退款操作。 Refund confirmation information will be verified, validated and, after all, perform the refund operation.
18.根据权利要求1至15任一项所述的系统,其特征在于, 所述智能密码设备,还用于在所述后台系统服务器对所述交易确认信息进行验证,并在验证通过后执行交易之后,向所述终端发送退款请求;接收所述终端发送的所述退款请求标识,生成退款信息,并利用所述智能密码设备的私钥对所述退款信息进行签名,得到退款确认信息,并向所述终端发送所述退款确认信息; 所述终端,还用于生成退款请求标识,并向所述智能密码设备发送所述退款请求标识;接收所述退款确认信息,对所述退款确认信息进行验证,并在验证通过后,利用所述终端的私钥对所述退款确认信息进行签名生成退款确认包;向所述后台系统服务器发送所述退款确认包和所述退款确认信息; 所述后台系统服务器,还用于接收所述终端发送的所述退款确认包和所述退款确认信息, The system according to claim 1 to any one of claims 15, wherein the smart cryptographic device, acknowledgment information for further verification of the transaction server system in the background, and executed after the verification after the transaction, sending a refund request to the terminal; receiving the refund request identifier sent by the terminal, generating refund information, and using the private key of the cryptographic device intelligent refund information is signed to obtain refund confirmation information, and the terminal transmits the refund confirmation information; and the terminal is further configured to generate a refund request identifier, and requests the smart identification device transmitting the cryptographic refund; receiving the refund paragraph acknowledgment information, the acknowledgment information to verify the refund, and after the verification, the terminal using a private key of the signature generating refund confirmation information refund confirmation packet; transmitting the background system to the server said refund confirmation packet and the refund confirmation information; and the background system server is further configured to receive the packet sent by the terminal and the refund confirmation refund confirmation information, 别对所述退款确认包和所述退款确认信息进行验证,并在全部验证通过后,执行退款操作。 Do refund confirmation of the refund confirmation packet and the information will be verified, validated and, after all, perform the refund operation.
19.根据权利要求16或17所述的系统,其特征在于,所述退款信息中还包含电子对账单。 19. The system of claim 16 or claim 17, wherein said information further includes a refund electronic statement.
20.根据权利要求15所述的系统,其特征在于,所述交易成功回执信息还包含电子对账单。 20. The system according to claim 15, wherein the transaction information further comprises an electron successful receipt statement.
21.根据权利要求1至18任一项所述的系统,其特征在于,所述交易信息中还包含电子对账单。 21. A system according to any one of claims 1 to 18, wherein the transaction information further comprises an electronic statement.
22.根据权利要求1至21任一项所述的系统,其特征在于,所述终端在信号覆盖范围内扫描智能密码设备,并获得扫描到的所述智能密码设备的标识信息之前,所述系统还包括: 所述智能密码设备进入可被扫描状态。 22. A system according to any one of claims 21, wherein the terminal scans the smart cryptographic device within range, and before scanning the identification information obtained by the smart cryptographic device, said the system further comprises: said cryptographic smart device may be scanned into the state.
23.根据权利要求1至22任一项所述的系统,其特征在于, 所述第一会话密钥预存在所述后台系统服务器和所述终端中或者所述第一会话密钥通过所述后台系统服务器和所述终端协商生成; 所述第二会话密钥预存在所述终端和所述智能密码设备中或者所述第二会话密钥通过所述终端和所述智能密码设备协商生成。 1 to 23. The system according to any one of claims 22, wherein said first session key prestored in the background system and the server or the first terminal through the session key background system server and the terminal generate a negotiation; the second session key prestored in said terminal and said smart device or the cryptographic key of the second session and the terminal devices negotiate generated by smart password.
24.根据权利要求23所述的系统,其特征在于, 所述后台系统服务器与所述终端之间传输的信息均通过第一会话密钥加密计算和/或校验计算后传输; 所述终端与所述智能密码设备之间传输的信息均通过第二会话密钥加密计算和/或校验计算后传输。 24. The system according to claim 23, characterized in that the information transmitted between the terminal server and the back-end system are calculated after the first session key encrypted and / or verification by calculation of the transmission; the terminal information transmitted between the cryptographic device and the smart key encryption are transmitted after calculation and / or checksum is calculated by the second session.
25.根据权利要求1至24任一项所述的系统,其特征在于, 所述终端还与所述后台系统服务器进行相互认证,并分别生成所述第一会话密钥。 25. A system according to any one of claims 1 to 24, characterized in that the terminal further performs mutual authentication with the backend system server, and generating the first session key, respectively.
26.根据权利要求25所述的系统,其特征在于, 所述终端,还用于生成第一待签名信息;向后台系统服务器发送所述第一待签名信息以及第一认证请求信息;接收所述后台系统服务器发送的所述第二待签名信息以及所述后台系统服务器证书,利用预存的后台系统服务器证书对应的根证书验证所述后台系统服务器证书是否合法;在验证所述后台系统服务器证书合法后,生成共享主密钥;利用所述后台系统服务器证书中的公钥对所述共享主密钥进行加密生成第一加密信息,利用所述终端的私钥对所述第一待签名信息和所述第二待签名信息进行签名生成第一签名信息;向所述后台系统服务器发送所述第一加密信息、所述第一签名信息以及终端证书;接收所述后台系统服务器发送的所述后台认证完成消息,验证所述后台认证完成消息;在验证所述后台认证完 26. The system according to claim 25, characterized in that the terminal further be configured to generate a first signature information; back to the first server transmits the system information to be signed and the first authentication request message; receiving the background system server sends said second information to be signed server certificate and the background system, using pre-stored root certificate server certificate corresponding to the background system to verify the server certificate valid background system; in the background system to verify the server certificate after valid, generate a shared master key; background system using the server's public key certificate to the shared master key to generate first encrypted information encrypted using the private key of the first terminal to be signed information the server receives the transmitted background system; and the second signature information to be signed to generate a first signature information; transmitting the encrypted first information to the backend system server, the first signature information and the terminal certificate background authentication complete message, verifying the authentication complete message back; After verifying the authentication background 消息通过后,生成终端认证第一完成消息,向所述后台系统服务器发送所述终端认证第一完成消息,并根据所述共享主密钥计算第一会话密钥;所述后台系统服务器,还用于接收所述终端发送的所述第一待签名信息以及所述第一认证请求信息,生成第二待签名信息;向所述终端发送所述第二待签名信息以及后台系统服务器证书;利用预存的终端证书对应的根证书验证所述终端证书是否合法;在验证所述终端证书合法后,利用所述终端证书中的公钥验证所述第一签名信息;在验证所述第一签名信息通过后,利用所述后台系统服务器的私钥解密所述第一加密信息,获得所述共享主密钥;生成后台认证完成消息,并向所述终端发送所述后台认证完成消息;接收所述终端发送的所述终端认证第一完成消息,验证所述终端认证第一完成消息;在验证所述终 After the message by generating a first terminal authentication complete message is transmitted to the background system to the terminal server to complete the authentication of the first message, and calculates the first master session key according to the shared key; the backend system server further means for receiving the first terminal transmitting information to be signed and the first authentication request message, generating a second message to be signed; to the second terminal transmitting the information to be signed server certificate and a background system; using verifying the certificate of the root certificate stored in the terminal corresponding to the terminal certificate is legitimate; after the terminal certificate authentication method, authentication using a public key certificate of the terminal in the first signature information; verifying the first signature information after by using the background system private key to decrypt the encrypted information to the first server, obtain the shared master key; generating a back-end authentication complete message, the terminal sends back to the authentication complete message; receiving the the terminal authentication complete message sent by the first terminal, a first verification of the terminal authentication complete message; the final verification 认证第一完成消息通过后,根据所述共享主密钥计算所述第一会话密钥。 After completion message through the first authentication, the calculation according to the first session key shared master key.
27.根据权利要求26所述的系统,其特征在于, 所述后台系统服务器,还用于接收所述终端发送的所述第一待签名信息以及所述第一认证请求信息,其中,所述第一认证请求信息包括所述终端的标识信息;判断所述终端的标识信息是否包含在所述后台系统服务器中预存的终端异常名单中;在判断出所述终端的标识信息在所述终端异常名单中后,获取锁定终端指令,以及利用所述后台系统服务器的私钥对锁定终端指令进行签名获得第四签名信息,并向所述终端发送所述锁定终端指令以及所述第四签名信息; 所述终端,还用于接收所述后台系统服务器发送的所述锁定终端指令以及所述第四签名信息,利用预存的所述后台系统服务器证书中的公钥对所述第四签名信息进行验证;在验证所述第四签名信息通过后,根据所述锁定终端指令执行锁定操作。 27. The system according to claim 26, characterized in that the background system server is further configured to receive the first terminal transmitting information to be signed and the first authentication request message, wherein said the first authentication request information includes identification information of the terminal; determining whether the terminal identification information of the terminal is included in the exception list of pre-stored in the background system server; is judged that the identification information of the terminal in the terminal abnormality after the list, the terminal to acquire the lock command, and using the private key of the backend system server terminal locking obtain a fourth instruction signed signature information, the terminal transmits an instruction to the terminal, and the fourth locking said signature information; the terminal, a terminal for further instructions and the fourth signature background system receives the information sent by the server to the lock, the background system by using pre-stored in the server's public key certificate of the signature fourth verification information ; after verifying the signature information through the fourth, according to the instruction terminal lock locking operation is performed.
28.根据权利要求1至27任一项所述的系统,其特征在于, 所述终端还与所述智能密码设备进行相互认证,并分别生成所述第二会话密钥。 28. A system according to any one of claims 1 to 27, characterized in that the terminal further performs mutual authentication with the smart device password, and generating the second session key, respectively.
29.根据权利要求28所述的系统,其特征在于, 所述终端,还用于生成第三待签名信息;向所述智能密码设备发送所述第三待签名信息以及第二认证请求信息;接收所述智能密码设备发送的所述第四待签名信息、所述第二签名信息以及所述智能密码设备证书,利用预存的智能密码设备证书对应的根证书验证所述智能密码设备证书是否合法;在验证所述智能密码设备证书合法后,利用所述智能密码设备证书中的公钥对所述第二签名信息进行验证;在验证所述第二签名信息通过后,利用所述终端的私钥对所述第三待签名信息和所述第四待签名信息进行签名获得第三签名信息,生成第一会话密钥生成因子,利用所述智能密码设备证书中的公钥对所述第一会话密钥生成因子进行加密获得第二加密信息;向所述智能密码设备发送所述第三签名信息、所述第二加 29. The system according to claim 28, wherein said terminal is further for generating a third message to be signed; smart password to the device to be sending the third signature and the second authentication information request message; receiving the cryptographic smart device sends a fourth message to be signed, the signature information and the second cryptographic smart device certificate, a root certificate stored on the smart password verification using a device certificate corresponding to the device certificate is legitimate smart password ; smart password after said authentication device certificate valid, the smart device using the public key cryptographic certificate of the second signature to verify the information; after verifying the second signature information, using said private terminal the third key information to be signed and the fourth signature information to be signed to obtain a third signature information generation factor to generate a first session key by the cryptographic smart device certificate a public key of the first encrypting the session key generation factor to obtain a second encrypted information; third signature information to the smart transmitting the cryptographic device, said second heating 信息以及所述终端证书;接收所述智能密码设备发送的所述第三加密信息以及所述智能密码设备认证完成消息,验证所述智能密码设备认证完成消息;在验证所述智能密码设备认证完成消息通过后,生成终端认证第二完成消息,向所述智能密码设备发送所述终端认证第二完成消息,并根据第一会话密钥生成因子以及解密所述第三加密信息获得的所述第二会话密钥生成因子生成所述第二会话密钥; 所述智能密码设备,还用于接收所述终端发送的所述第三待签名信息以及所述第二认证请求信息,生成第四待签名信息;利用所述智能密码设备的私钥对所述第三待签名信息进行签名获得第二签名信息,并向所述终端发送所述第四待签名信息、所述第二签名信息以及智能密码设备证书;接收所述终端发送的所述第三签名信息、所述第二加密信息以及所述终 And the terminal certificate information; receiving the intelligent cryptographic device transmitting the third encrypted information and said cryptographic smart device authentication complete message, the smart password verification device authentication complete message; smart password in the authentication device authentication completion after the first message by generating a second terminal authentication complete message to the intelligent terminal cryptographic device transmits the second authentication complete message, and generates a first session key factor, and decrypting the third encrypted information obtained two session key generation factor for generating the second session key; the smart cryptographic device, the receiving terminal is further configured to transmit the third information to be signed and the second authentication request message, generates a fourth be signature information; smart password using the private key of the third device signature information to be signed to obtain the second signature information, and the fourth terminal transmits the information to be signed, the second signature information and intelligence cryptographic device certificate; sent by the terminal receiving the third signature information, the second encryption information, and the final 证书,利用预存的所述终端证书对应的根证书验证所述终端证书是否合法;在验证所述终端证书合法后,利用所述终端证书中的公钥对所述第三签名信息进行验证;在验证所述第三签名信息通过后,生成第二会话密钥生成因子,利用所述终端证书中的公钥对所述第二会话密钥生成因子进行加密获得第三加密信息,并生成智能密码设备认证完成消息;向所述终端发送所述第三加密信息以及所述智能密码设备认证完成消息;接收所述终端发送的所述终端认证第二完成消息,验证所述终端认证第二完成消息;验证所述终端认证第二完成消息后,根据第二会话密钥生成因子以及解密所述第二加密信息获得的所述第一会话密钥生成因子生成所述第二会话密钥。 Certificate, using the pre-stored terminal certificate corresponding to the certificate root certificate to verify the legality of the terminal; after the terminal certificate authentication method, the terminal certificate using the public key of the third signature to verify the information; in the signature third verification information by generating the second session key generation factor, using the terminal's public key certificate of the second session key generation factor to obtain a third encrypted information is encrypted, and generate smart password the device authentication complete message; complete message to the sending terminal the encrypted information and the third smart password authentication apparatus; said authentication terminal receives the complete message sent by the second terminal, a second verification of the terminal authentication complete message ; after verifying the second terminal authentication complete message, the session key generation according to the second factor, and decrypting the second encrypted information to obtain a first session key generation factor for generating the second session key.
30.根据权利要求29所述的系统,其特征在于, 所述智能密码设备,还用于在接收到所述第二认证请求信息后,由休眠状态转换为唤醒状态;在唤醒状态下生成第四待签名信息。 30. The system according to claim 29, wherein said cryptographic smart device is further configured to, after receiving the second authentication request message, converted from the sleep state to the awake state; generating a first in the awake state four to be signed information.
CN 201410171463 2014-04-25 2014-04-25 Data security interactive system CN103942688A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 201410171463 CN103942688A (en) 2014-04-25 2014-04-25 Data security interactive system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 201410171463 CN103942688A (en) 2014-04-25 2014-04-25 Data security interactive system

Publications (1)

Publication Number Publication Date
CN103942688A true CN103942688A (en) 2014-07-23

Family

ID=51190348

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 201410171463 CN103942688A (en) 2014-04-25 2014-04-25 Data security interactive system

Country Status (1)

Country Link
CN (1) CN103942688A (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104219058A (en) * 2014-09-28 2014-12-17 小米科技有限责任公司 Identity authentication and authorization method and device
CN104661215A (en) * 2015-01-15 2015-05-27 天地融科技股份有限公司 Communication method of wireless equipment and wireless equipment
CN105550859A (en) * 2015-07-30 2016-05-04 宇龙计算机通信科技(深圳)有限公司 Method and apparatus for service data transfer between accounts
CN105577612A (en) * 2014-10-11 2016-05-11 中兴通讯股份有限公司 Identity authentication method, third party server, merchant server, and user terminal
CN107360126A (en) * 2016-08-22 2017-11-17 天地融科技股份有限公司 A kind of method, system and terminal that client is logged in using pattern identification code

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1518235A (en) * 2003-01-16 2004-08-04 日本电气株式会社 Identification system of electronic busness and its implementing method
CN101087189A (en) * 1998-05-05 2007-12-12 杰伊·C·陈 A cryptographic system and method for electronic trade
CN101465019A (en) * 2009-01-14 2009-06-24 北京华大智宝电子系统有限公司 Method and system for implementing network authentication
WO2009125919A1 (en) * 2008-04-10 2009-10-15 Lg Electronics Inc. Terminal and method for managing secure devices
CN101789934A (en) * 2009-11-17 2010-07-28 北京飞天诚信科技有限公司 Method and system for online security trading
CN103259765A (en) * 2012-02-19 2013-08-21 上海博路信息技术有限公司 Zone social intercourse system based on Bluetooth
CN103346883A (en) * 2013-06-19 2013-10-09 天地融科技股份有限公司 Method and device for initializing electronic signature tool

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101087189A (en) * 1998-05-05 2007-12-12 杰伊·C·陈 A cryptographic system and method for electronic trade
CN1518235A (en) * 2003-01-16 2004-08-04 日本电气株式会社 Identification system of electronic busness and its implementing method
WO2009125919A1 (en) * 2008-04-10 2009-10-15 Lg Electronics Inc. Terminal and method for managing secure devices
CN101465019A (en) * 2009-01-14 2009-06-24 北京华大智宝电子系统有限公司 Method and system for implementing network authentication
CN101789934A (en) * 2009-11-17 2010-07-28 北京飞天诚信科技有限公司 Method and system for online security trading
CN103259765A (en) * 2012-02-19 2013-08-21 上海博路信息技术有限公司 Zone social intercourse system based on Bluetooth
CN103346883A (en) * 2013-06-19 2013-10-09 天地融科技股份有限公司 Method and device for initializing electronic signature tool

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104219058A (en) * 2014-09-28 2014-12-17 小米科技有限责任公司 Identity authentication and authorization method and device
CN105577612A (en) * 2014-10-11 2016-05-11 中兴通讯股份有限公司 Identity authentication method, third party server, merchant server, and user terminal
CN104661215A (en) * 2015-01-15 2015-05-27 天地融科技股份有限公司 Communication method of wireless equipment and wireless equipment
CN105550859A (en) * 2015-07-30 2016-05-04 宇龙计算机通信科技(深圳)有限公司 Method and apparatus for service data transfer between accounts
CN107360126A (en) * 2016-08-22 2017-11-17 天地融科技股份有限公司 A kind of method, system and terminal that client is logged in using pattern identification code

Similar Documents

Publication Publication Date Title
US9978094B2 (en) Tokenization revocation list
US7349871B2 (en) Methods for purchasing of goods and services
CA2747831C (en) Unified identity verification
US7801826B2 (en) Framework and system for purchasing of goods and services
US7606560B2 (en) Authentication services using mobile device
US9646303B2 (en) Secure remote payment transaction processing using a secure element
US7784684B2 (en) Wireless computer wallet for physical point of sale (POS) transactions
US20090254485A1 (en) Method and system for anonymous electronic transactions using a mobile device
US20040107170A1 (en) Apparatuses for purchasing of goods and services
US20120136796A1 (en) Device Enrollment System and Method
EP1277301B1 (en) Method for transmitting payment information between a terminal and a third equipement
CN103714639B (en) A kind of method and system that realize the operation of POS terminal security
US20150019443A1 (en) Secure remote payment transaction processing
US20140279556A1 (en) Distributed authenticity verification for consumer payment transactions
CA2927113C (en) Methods, devices, and systems for secure provisioning, transmission, and authentication of payment data
RU2663476C2 (en) Remote payment transactions protected processing, including authentication of consumers
US8417643B2 (en) Trusted service manager (TSM) architectures and methods
US20130254117A1 (en) Secured transaction system and method
KR20150036512A (en) Method to send payment data through various air interfaces without compromising user data
US20130226813A1 (en) Cyberspace Identification Trust Authority (CITA) System and Method
US20090172402A1 (en) Multi-factor authentication and certification system for electronic transactions
US20150324789A1 (en) Cryptocurrency Virtual Wallet System and Method
US9521548B2 (en) Secure registration of a mobile device for use with a session
US20100153273A1 (en) Systems for performing transactions at a point-of-sale terminal using mutating identifiers
US20190043022A1 (en) Secure registration and authentication of a user using a mobile device

Legal Events

Date Code Title Description
C06 Publication
C10 Entry into substantive examination