CN104408622A - System and method for confirming electronic trade based on independent password equipment - Google Patents
System and method for confirming electronic trade based on independent password equipment Download PDFInfo
- Publication number
- CN104408622A CN104408622A CN201410756742.7A CN201410756742A CN104408622A CN 104408622 A CN104408622 A CN 104408622A CN 201410756742 A CN201410756742 A CN 201410756742A CN 104408622 A CN104408622 A CN 104408622A
- Authority
- CN
- China
- Prior art keywords
- user
- encryption device
- terminal
- authentication service
- service platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3825—Use of electronic signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/42—Confirmation, e.g. check or permission by the legal debtor of payment
- G06Q20/425—Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
- G06Q30/0601—Electronic shopping [e-shopping]
- G06Q30/0609—Buyer or seller confidence or verification
Abstract
The invention relates to a system and a method for confirming an electronic trade based on independent password equipment. The system comprises the independent password equipment, an intelligent user terminal, a trade confirmation terminal, an authentication service platform and a virtual account management platform, wherein the intelligent user terminal is used for receiving a pushed payment message, and confirming the trade; the trade confirmation terminal is used for providing an operation interface for selecting goods or displaying trade information for a user, and generating a trade order; the virtual account management platform is used for managing a virtual account of the user, receiving order information which passes the verification of the authentication service platform, pushing a payment request to the intelligent user terminal, and finishing a payment flow according to the confirmation information of the intelligent user terminal. According to the system and the method for confirming the electronic trade based on the independent password equipment, hardware encryption equipment is used for the digital signing of trade data, so that the authenticity and validity of a trading process and trade confirmation are protected, a payment solution with higher security is provided, and meanwhile, the system and the method are efficient and wider in application range.
Description
Technical field
The present invention relates to digital signature technology field, particularly relate to O2O electronic transaction digital signature technology field, specifically refer to a kind of system and method realizing electronic transaction confirmation based on independent encryption device.
Background technology
" O2O " (line reach the standard grade lower fusion) is as the emerging business model more and more welcomed by the people of domestic one, electronic transaction confirms that (payment of such as ecommerce or signing for of logistics) is a very important link in O2O business model, is also more and more subject to the attention of businessman.Utilize Quick Response Code to carry out electronic transaction and be confirmed to be current a kind of popular means.Under this scenario, businessman can be assembled into a Quick Response Code Transaction Informations such as type of merchandize, price and trade company's accounts, and be printed on the carriers such as various newspaper, magazine, advertisement, books and issue, even also can see on the advertising wall of subway station and print the commodity of Quick Response Code.User sweeps the Quick Response Code clapping interested commodity by cell-phone customer terminal, just can carry out payment and settlement etc. with Merchant Account.Finally, businessman receives according to the user in payment transaction information, contact details, just can carry out commodity distribution, complete transaction.
But use Quick Response Code to carry out payment and settlement and there is following problem:
First user cannot determine that the Quick Response Code by seeing connects to legal trade company.This is because planar bar code technology principle is simple, realize threshold very low, internet is flooded with a large amount of two-dimension code generator software, anyone will be able to link according to the intention of oneself, the information such as program code generate Quick Response Code, and people cannot understand the implicit content of Quick Response Code by the method depending on reading, this just provides opportunity to lawless person, they can forge Quick Response Code or embed in Quick Response Code by the web site url with trojan horse, once there be people's barcode scanning will unconsciously download in trojan horse program to oneself mobile terminal, thus reveal the privacy information of user, even cause economic loss to user.
Secondly, trade company cannot guarantee that licit traffic is not denied.Usually user is not asked to use digital signature technology to submit sequence information to, so trade company cannot guarantee that licit traffic is not denied because Quick Response Code pays.
Although Quick Response Code pays convenient and swift as can be seen here, all slightly inadequate to the protection of both parties.
Summary of the invention
The object of the invention is the shortcoming overcoming above-mentioned prior art, provide a kind of employing hardware encipher equipment that can realize and digital signature is carried out to transaction data thus the system and method realizing electronic transaction confirmation based on independent encryption device protected process of exchange with the payment solution confirming that transaction is authentic and valid, provide security higher, do not lose agility simultaneously, there is broader applications scope.
To achieve these goals, of the present invention based on independent encryption device realize electronic transaction confirm system and method there is following formation:
Should realize the system of electronic transaction confirmation based on independent encryption device, its principal feature is, described system comprises:
Independent encryption device, in order to store private key for user and to carry out digital signature calculating;
User's intelligent terminal, in order to receive the payment message of virtual account management platform propelling movement and to confirm transaction;
Trade confirmation terminal, in order to provide the operation interface generating trading order form of selecting commodity or display Transaction Information to user;
Authentication service platform, in order to the independent encryption device described in registration and management and trade confirmation terminal, and preserve the binding relationship being used for the public key certificate chain of certifying digital signature, independent encryption device and the binding information of user's intelligent terminal and the virtual account of user and independent encryption device;
Virtual account management platform, the sequence information passed through in order to the authentication service platform validation described in leading subscriber virtual account and process payment request and reception pushes to pay to described user's intelligent terminal and asks and complete payment flow according to the confirmation of described user's intelligent terminal.
Preferably, described independent encryption device comprises central processing unit, safe storage, password coprocessor and the communication interface with described trade confirmation terminal.
Preferably, described trade confirmation terminal is a PC or built-in self-help terminal.
Preferably, described electronic transaction is O2O electronic transaction.
Preferably, described user's intelligent terminal is customer mobile terminal, and described authentication service platform also stores described independent encryption device and the binding information of user's virtual account and user mobile phone number.
The system that the invention still further relates to described in a kind of basis realizes the method for electronic transaction confirmation based on independent encryption device, its principal feature is, described method comprises the following steps:
(1) the trade confirmation terminal described according to user to the selection generating trading order form of commodity or display user bill information;
(2) trading order form information is sent to described independent encryption device by the trade confirmation terminal described in;
(3) the independent encryption device described in generates digital signature according to described trading order form and returns to described trade confirmation terminal together with its identification information;
(4) trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by the trade confirmation terminal described in;
(5) identity of the trade confirmation terminal described in authentication service platform validation described in and described digital signature;
(6) the trading order form information by checking is sent to described virtual account management platform by the authentication service platform described in;
(7) the virtual account management platform described in generates payment request Concurrency according to the trading order form information by checking and delivers to described user's intelligent terminal;
(8) user's payment affirmation information of described user's intelligent terminal is sent to described authentication service platform by the virtual account management platform described in;
(9) user's payment affirmation information is transmitted to described trade confirmation terminal by the authentication service platform described in;
(10) the trade confirmation terminal demonstration transaction results described in.
Preferably, between described step (1) and (2), further comprising the steps of:
(1-1) the trade confirmation terminal notifying user described in connects the off line password of independent encryption device and the independent encryption device of input.
Preferably, described authentication service platform also stores the binding relationship of the virtual account of independent encryption device and user and has escape way with described trade confirmation terminal, the trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by described trade confirmation terminal, is specially:
The trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by described escape way by described trade confirmation terminal;
User's payment affirmation information is transmitted to described trade confirmation terminal by described authentication service platform, is specially:
User's payment affirmation information is transmitted to described trade confirmation terminal by described escape way by described authentication service platform.
Preferably, the identity of the described trade confirmation terminal described in authentication service platform validation and described digital signature, comprise the following steps:
(5-1) identity of the trade confirmation terminal described in authentication service platform validation described in, if described trade confirmation terminal is registered device, then continues step (5-2), otherwise continues step (5-3);
(5-2) digital signature in the trading order form that the trade confirmation terminal described in authentication service platform validation described in sends, if digital signature authentication is passed through, then continues step (6), otherwise continues step (5-3);
(5-3) the authentication service platform described in sends Fail Transaction information to described trade confirmation terminal, then continues step (10).
Have employed the system and method realizing electronic transaction confirmation based on independent encryption device in this invention, there is following beneficial effect:
The present invention by using the lower confirmation realized transaction data online of independent encryption device, and will confirm that data-pushing is to account system on line, complete payment, thus reach protection transaction and confirm that data are authentic and valid by account system on line.Independent encryption device in this invention can be but is not limited to intellective IC card and needs the virtual account of first user bound.Use the payment solution that this system and method can provide higher than Quick Response Code payment safety, do not lose agility simultaneously; The present invention adopts the O2O trade confirmation terminal through registration to provide commodity or display sequence information to user, can effectively avoid Quick Response Code to be forged in the present context and embed the transaction risk that trojan horse brings; Confirm under using independent encryption device to carry out line to trading order form by digital signature technology, can prevent order be forged, distort and place an order people deny, independent encryption device and user's virtual account and cell-phone number are bound, can be safe and efficient complete payment flow, Consumer's Experience is good, has range of application widely.
Accompanying drawing explanation
Fig. 1 is the structural representation realizing the system that electronic transaction confirms based on independent encryption device of the present invention.
Fig. 2 is the process flow diagram realizing the method that electronic transaction confirms based on independent encryption device of the present invention.
Embodiment
In order to more clearly describe technology contents of the present invention, conduct further description below in conjunction with specific embodiment.
Digital signature is the application of non-symetric key cryptography and digital digest technology.Briefly, so-called digital signature is exactly some data be attached in data cell, or to the cryptographic transformation that data cell is done.This data or conversion allow the recipient of data cell in order to the integrality in the source and data cell that confirm data cell and protected data, prevent from being forged by people (such as recipient).It is a kind of method of signing to the message of electronic form, and a signature information can be transmitted in a communication network.The integrality of this technology energy guarantee information transmission, the authentication carrying out sender, the denial generation prevented in concluding the business, be therefore widely used in comprising in the eCommerce transaction process of O2O payment.Its security of payment scheme of digital signature technology is adopted to pay higher than Quick Response Code.Digital signature needs carrying out storing a pair public private key pair in the equipment of signing; then use private key wherein to carry out calculating to data and produce digital signature value; therefore the safety of private key is especially important to digital signature; can not be kept in open system environment; as mobile terminals such as mobile phones; and should be stored in special hardware encryption equipment, digital signature calculates and also completes in encryption device, could protect the security of digital signature procedure so to greatest extent.
In order to realize object of the present invention, of the present invention based on independent encryption device realize electronic transaction confirm system comprise:
Independent encryption device, in order to store private key for user and to carry out digital signature calculating; Because independent encryption device and user's intelligent terminal are separate separating, even if user's intelligent terminal is lost also can not cause security threat;
User's intelligent terminal, in order to receive the payment message of virtual account management platform propelling movement and to confirm transaction;
Trade confirmation terminal, in order to provide the operation interface generating trading order form of selecting commodity or display Transaction Information to user;
Authentication service platform, in order to the independent encryption device described in registration and management and trade confirmation terminal, and preserve the binding relationship being used for the public key certificate chain of certifying digital signature, independent encryption device and the binding information of user's intelligent terminal and the virtual account of user and independent encryption device; Like this, after namely authentication service platform can work as trade confirmation terminal generating trading order form, confirmation checking is carried out to the every terms of information comprised in trading order form;
Virtual account management platform, the sequence information passed through in order to the authentication service platform validation described in leading subscriber virtual account and process payment request and reception pushes to pay to described user's intelligent terminal and asks and complete payment flow according to the confirmation of described user's intelligent terminal.
In one preferably embodiment, described independent encryption device comprises central processing unit, safe storage, password coprocessor and the communication interface with described trade confirmation terminal.
In another kind preferably embodiment, described trade confirmation terminal is a PC or built-in self-help terminal.
In another kind preferably embodiment, described electronic transaction is O2O electronic transaction.But obviously, in actual applications, the present invention can be applied in various electronic trade platform.
In one preferably embodiment, described user's intelligent terminal is customer mobile terminal, and described authentication service platform also stores described independent encryption device and the binding information of user's virtual account and user mobile phone number.In actual applications, user's intelligent terminal also can be the personal device such as PC, panel computer.
The system that the invention still further relates to described in a kind of basis realizes the method for electronic transaction confirmation based on independent encryption device, comprise the following steps:
(1) the trade confirmation terminal described according to user to the selection generating trading order form of commodity or display user bill information;
(2) trading order form information is sent to described independent encryption device by the trade confirmation terminal described in;
(3) the independent encryption device described in generates digital signature according to described trading order form and returns to described trade confirmation terminal together with its identification information;
(4) trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by the trade confirmation terminal described in;
(5) identity of the trade confirmation terminal described in authentication service platform validation described in and described digital signature;
(6) the trading order form information by checking is sent to described virtual account management platform by the authentication service platform described in;
(7) the virtual account management platform described in generates payment request Concurrency according to the trading order form information by checking and delivers to described user's intelligent terminal;
(8) user's payment affirmation information of described user's intelligent terminal is sent to described authentication service platform by the virtual account management platform described in;
(9) user's payment affirmation information is transmitted to described trade confirmation terminal by the authentication service platform described in;
(10) the trade confirmation terminal demonstration transaction results described in.
In one preferably embodiment, between described step (1) and (2), further comprising the steps of:
(1-1) the trade confirmation terminal notifying user described in connects the off line password of independent encryption device and the independent encryption device of input.By off line password and digital signature, double shield is carried out to the transaction security of user, even if independent encryption device is lost, after being obtained by others, do not know that its off line password also cannot complete payment.
In one preferably embodiment, described authentication service platform also stores the binding relationship of the virtual account of independent encryption device and user and has escape way with described trade confirmation terminal, the trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by described trade confirmation terminal, is specially:
The trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by described escape way by described trade confirmation terminal;
User's payment affirmation information is transmitted to described trade confirmation terminal by described authentication service platform, is specially:
User's payment affirmation information is transmitted to described trade confirmation terminal by described escape way by described authentication service platform.
By the escape way through encryption, comprehensive information safety protection can be carried out to electronic transaction, prevent hacker from from transmission channel, intercepting and capturing Transaction Information.
In one preferably embodiment, the identity of the described trade confirmation terminal described in authentication service platform validation and described digital signature, comprise the following steps:
(5-1) identity of the trade confirmation terminal described in authentication service platform validation described in, if described trade confirmation terminal is registered device, then continues step (5-2), otherwise continues step (5-3);
(5-2) digital signature in the trading order form that the trade confirmation terminal described in authentication service platform validation described in sends, if digital signature authentication is passed through, then continues step (6), otherwise continues step (5-3);
(5-3) the authentication service platform described in sends Fail Transaction information to described trade confirmation terminal, then continues step (10).
By the checking to trade confirmation terminal identity, user can only conclude the business in trustworthy electronic trade platform, ensure that user can not cheat by the electronic trade platform of falseness.
The specific embodiment be applied in O2O electronic transaction with the system and method realizing electronic transaction based on independent encryption device of the present invention is below further elaborated technical scheme of the present invention:
Of the present inventionly realize based on independent encryption device the system that electronic transaction confirms and comprise: for storing private key for user and carrying out the independent encryption device of digital signature calculating, the mobile terminal (as smart mobile phone) of user, O2O trade confirmation terminal, authentication service platform and virtual account management platform.
Independent encryption device possesses central processing unit, safe storage, password coprocessor and the communication interface with O2O trade confirmation terminal.The virtual account of it and oneself is bound by user, and binding information is kept in authentication service platform, carries out digital signature for the order data generated trade confirmation terminal.
Customer mobile terminal pushes for receiving virtual account management platform the payment message of coming, and user can confirm transaction in this terminal.
O2O trade confirmation terminal can be platform PC, also can be a special built-in self-help terminal, and for providing the operation interface selecting commodity or display Transaction Information to user, generating trading order form, sends to authentication service platform by secure network passage.Be connected with independent encryption device by communication interface in addition, submit to order data digital signature request also to receive the digital signature value returned to encryption device.
Authentication service platform is a server system, has three major functions.First function is for registration, manages independent encryption device and O2O trade confirmation terminal.The O2O trade confirmation terminal that user is only registered on authentication service platform uses independent encryption device, and transaction flow just can be triggered.Another function of authentication service platform be preserve for the public key certificate chain of certifying digital signature, independent encryption device and user's virtual account and user mobile phone number binding information and set up the private data of escape way with O2O trade confirmation terminal.Last critical function of this equipment deposits the virtual account of user and the binding relationship of independent encryption device.
Virtual account management platform is the system that leading subscriber virtual account and process pay request.For receiving the sequence information that authentication service platform validation is passed through, pushing to user the request of payment and completing payment flow according to the confirmation of user.
The system architecture realizing O2O electronic transaction confirmation of this specific embodiment as shown in Figure 1.
The flow process realizing the method that O2O electronic transaction confirms of this specific embodiment as shown in Figure 2, comprises the following steps:
(1) user (i.e. transaction payment side) selects required commodity in O2O trade confirmation terminal, generates order by O2O trade confirmation terminal;
(2) O2O trade confirmation terminal notifying user connects independent encryption device and inputs the off line password of independent encryption device;
(3) O2O payment transaction confirms that sequence information is sent to independent encryption device by terminal, generates digital signature return to O2O trade confirmation terminal together with its identification information by independent encryption device to sequence information;
(4) sequence information comprising independent encryption device identification information and digital signature data is sent to authentication service platform by escape way by O2O trade confirmation terminal;
(5) authentication service platform validation O2O trade confirmation terminal identity, checks whether it is device registration;
(6) check by the digital signature in rear authentication service platform validation order;
(7) if digital signature authentication is passed through, sequence information is sent to the management platform of the virtual account of independent encryption device association by authentication service platform;
(8) virtual account management platform generates to pay according to sequence information and asks and be pushed on the mobile phone of user;
(9) user confirms to pay request on mobile phone;
(10) the user's payment affirmation information received is sent to authentication service platform by virtual account management platform;
(11) payment affirmation information is transmitted to O2O trade confirmation terminal by escape way by authentication service platform, shows transaction results to user by payment accepting terminal.
Have employed the system and method realizing electronic transaction confirmation based on independent encryption device in this invention, there is following beneficial effect:
The present invention by using the lower confirmation realized transaction data online of independent encryption device, and will confirm that data-pushing is to account system on line, complete payment, thus reach protection transaction and confirm that data are authentic and valid by account system on line.Independent encryption device in this invention can be but is not limited to intellective IC card and needs the virtual account of first user bound.Use the payment solution that this system and method can provide higher than Quick Response Code payment safety, do not lose agility simultaneously; The present invention adopts the O2O trade confirmation terminal through registration to provide commodity or display sequence information to user, can effectively avoid Quick Response Code to be forged in the present context and embed the transaction risk that trojan horse brings; Confirm under using independent encryption device to carry out line to trading order form by digital signature technology, can prevent order be forged, distort and place an order people deny, independent encryption device and user's virtual account and cell-phone number are bound, can be safe and efficient complete payment flow, Consumer's Experience is good, has range of application widely.
In this description, the present invention is described with reference to its specific embodiment.But, still can make various amendment and conversion obviously and not deviate from the spirit and scope of the present invention.Therefore, instructions and accompanying drawing are regarded in an illustrative, rather than a restrictive.
Claims (9)
1. realize a system for electronic transaction confirmation based on independent encryption device, it is characterized in that, described system comprises:
Independent encryption device, in order to store private key for user and to carry out digital signature calculating;
User's intelligent terminal, in order to receive the payment message of virtual account management platform propelling movement and to confirm transaction;
Trade confirmation terminal, in order to provide the operation interface generating trading order form of selecting commodity or display Transaction Information to user;
Authentication service platform, in order to the independent encryption device described in registration and management and trade confirmation terminal, and preserve the binding relationship being used for the public key certificate chain of certifying digital signature, independent encryption device and the binding information of user's intelligent terminal and the virtual account of user and independent encryption device;
Virtual account management platform, the sequence information passed through in order to the authentication service platform validation described in leading subscriber virtual account and process payment request and reception pushes to pay to described user's intelligent terminal and asks and complete payment flow according to the confirmation of described user's intelligent terminal.
2. the system realizing electronic transaction confirmation based on independent encryption device according to claim 1, it is characterized in that, described independent encryption device comprises central processing unit, safe storage, password coprocessor and the communication interface with described trade confirmation terminal.
3. the system realizing electronic transaction confirmation based on independent encryption device according to claim 1, it is characterized in that, described trade confirmation terminal is a PC or built-in self-help terminal.
4. the system realizing electronic transaction confirmation based on independent encryption device according to claim 1, it is characterized in that, described electronic transaction is O2O electronic transaction.
5. the system realizing electronic transaction confirmation based on independent encryption device according to claim 1, it is characterized in that, described user's intelligent terminal is customer mobile terminal, and described authentication service platform also stores described independent encryption device and the binding information of user's virtual account and user mobile phone number.
6. system according to any one of claim 1 to 5 realizes a method for electronic transaction confirmation based on independent encryption device, and it is characterized in that, described method comprises the following steps:
(1) the trade confirmation terminal described according to user to the selection generating trading order form of commodity or display user bill information;
(2) trading order form information is sent to virtual account management by the trade confirmation terminal described in;
(3) the independent encryption device described in generates digital signature according to described trading order form and returns to described trade confirmation terminal together with its identification information;
(4) trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by the trade confirmation terminal described in;
(5) identity of the trade confirmation terminal described in authentication service platform validation described in and described digital signature;
(6) the trading order form information by checking is sent to described virtual account management platform by the authentication service platform described in;
(7) the virtual account management platform described in generates payment request Concurrency according to the trading order form information by checking and delivers to described user's intelligent terminal;
(8) user's payment affirmation information of described user's intelligent terminal is sent to described authentication service platform by the virtual account management platform described in;
(9) user's payment affirmation information is transmitted to described trade confirmation terminal by the authentication service platform described in;
(10) the trade confirmation terminal demonstration transaction results described in.
7. the method realizing electronic transaction confirmation based on independent encryption device according to claim 6, is characterized in that, between described step (1) and (2), further comprising the steps of:
(1-1) the trade confirmation terminal notifying user described in connects the off line password of independent encryption device and the independent encryption device of input.
8. the method realizing electronic transaction confirmation based on independent encryption device according to claim 6, it is characterized in that, described authentication service platform also stores the binding relationship of the virtual account of independent encryption device and user and has escape way with described trade confirmation terminal, the trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by described trade confirmation terminal, is specially:
The trading order form comprising independent encryption device identification information and digital signature data is sent to described authentication service platform by described escape way by described trade confirmation terminal;
The Information Authentication of user's payment affirmation is transmitted to described trade confirmation terminal by described authentication service platform, is specially:
User's payment affirmation information is transmitted to described trade confirmation terminal by described escape way by described authentication service platform.
9. the method realizing electronic transaction confirmation based on independent encryption device according to claim 6, it is characterized in that, the identity of the described trade confirmation terminal described in authentication service platform validation and described digital signature, comprise the following steps:
(5-1) identity of the trade confirmation terminal described in authentication service platform validation described in, if described trade confirmation terminal is registered device, then continues step (5-2), otherwise continues step (5-3);
(5-2) digital signature in the trading order form that the trade confirmation terminal described in authentication service platform validation described in sends, if digital signature authentication is passed through, then continues step (6), otherwise continues step (5-3);
(5-3) the authentication service platform described in sends Fail Transaction information to described trade confirmation terminal, then continues step (10).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410756742.7A CN104408622B (en) | 2014-12-10 | 2014-12-10 | System and method for realizing electronic transaction confirmation based on independent password equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410756742.7A CN104408622B (en) | 2014-12-10 | 2014-12-10 | System and method for realizing electronic transaction confirmation based on independent password equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104408622A true CN104408622A (en) | 2015-03-11 |
| CN104408622B CN104408622B (en) | 2020-09-11 |
Family
ID=52646251
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410756742.7A Active CN104408622B (en) | 2014-12-10 | 2014-12-10 | System and method for realizing electronic transaction confirmation based on independent password equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104408622B (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104636911A (en) * | 2015-02-13 | 2015-05-20 | 深圳支付界科技有限公司 | Clear-text-free password input method and system |
| CN105160531A (en) * | 2015-08-31 | 2015-12-16 | 北京智付融汇科技有限公司 | Transaction data information processing method and apparatus |
| CN105574716A (en) * | 2016-02-02 | 2016-05-11 | 惠州学院 | Intelligent electronic network payment interface and method |
| CN108615154A (en) * | 2018-05-01 | 2018-10-02 | 王锐 | A kind of block chain digital signature system and process for using based on hardware encipherment protection |
| CN108711055A (en) * | 2018-05-03 | 2018-10-26 | 中国工商银行股份有限公司 | A kind of safety certifying method, safety certificate equipment and system |
| CN108897631A (en) * | 2018-06-27 | 2018-11-27 | 杭州贝店科技有限公司 | Information push method, device, equipment and storage medium |
| CN109255615A (en) * | 2018-09-25 | 2019-01-22 | 韩建龙 | A kind of method of mobile payment |
| CN109478214A (en) * | 2016-07-14 | 2019-03-15 | 华为技术有限公司 | Device and method for certificate registration |
| CN110383313A (en) * | 2017-03-07 | 2019-10-25 | 万事达卡国际公司 | For recording the method and system of point-to-point trading processing |
| CN110610367A (en) * | 2019-08-29 | 2019-12-24 | 深圳市元征科技股份有限公司 | Transaction data payment method and device, electronic equipment and server |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1859100A (en) * | 2005-05-03 | 2006-11-08 | 国际商业机器公司 | Method and system for securing card payment transactions using a mobile communication device |
| US20080046362A1 (en) * | 2006-08-15 | 2008-02-21 | Frank Easterly | Method of making secure on-line financial transactions |
| CN101211436A (en) * | 2006-12-29 | 2008-07-02 | 盛趣信息技术(上海)有限公司 | Electronic commerce safe trading platform and its method |
| CN101477662A (en) * | 2009-02-16 | 2009-07-08 | 张辉 | Network payment system, apparatus and method based on USBKEY |
| CN101685512A (en) * | 2008-09-28 | 2010-03-31 | 中国银联股份有限公司 | Computer, payment system and method thereof for realizing on-line payment |
| CN101739624A (en) * | 2008-11-06 | 2010-06-16 | 同方股份有限公司 | Trusted payment network system |
| US20110099113A1 (en) * | 2007-03-28 | 2011-04-28 | Ahmed Ibrahim Al-Herz | Virtual Account Based New Digital Cash Protocols With Combined Blind Digital Signature and Pseudonym Authentication |
| CN102790767A (en) * | 2012-07-03 | 2012-11-21 | 北京神州绿盟信息安全科技股份有限公司 | Information safety control method, information safety display equipment and electronic trading system |
| CN103164911A (en) * | 2011-12-09 | 2013-06-19 | 国民技术股份有限公司 | Swiping-card payment system and method |
-
2014
- 2014-12-10 CN CN201410756742.7A patent/CN104408622B/en active Active
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1859100A (en) * | 2005-05-03 | 2006-11-08 | 国际商业机器公司 | Method and system for securing card payment transactions using a mobile communication device |
| US20080046362A1 (en) * | 2006-08-15 | 2008-02-21 | Frank Easterly | Method of making secure on-line financial transactions |
| CN101211436A (en) * | 2006-12-29 | 2008-07-02 | 盛趣信息技术(上海)有限公司 | Electronic commerce safe trading platform and its method |
| US20110099113A1 (en) * | 2007-03-28 | 2011-04-28 | Ahmed Ibrahim Al-Herz | Virtual Account Based New Digital Cash Protocols With Combined Blind Digital Signature and Pseudonym Authentication |
| CN101685512A (en) * | 2008-09-28 | 2010-03-31 | 中国银联股份有限公司 | Computer, payment system and method thereof for realizing on-line payment |
| CN101739624A (en) * | 2008-11-06 | 2010-06-16 | 同方股份有限公司 | Trusted payment network system |
| CN101477662A (en) * | 2009-02-16 | 2009-07-08 | 张辉 | Network payment system, apparatus and method based on USBKEY |
| CN103164911A (en) * | 2011-12-09 | 2013-06-19 | 国民技术股份有限公司 | Swiping-card payment system and method |
| CN102790767A (en) * | 2012-07-03 | 2012-11-21 | 北京神州绿盟信息安全科技股份有限公司 | Information safety control method, information safety display equipment and electronic trading system |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104636911A (en) * | 2015-02-13 | 2015-05-20 | 深圳支付界科技有限公司 | Clear-text-free password input method and system |
| CN105160531A (en) * | 2015-08-31 | 2015-12-16 | 北京智付融汇科技有限公司 | Transaction data information processing method and apparatus |
| CN105160531B (en) * | 2015-08-31 | 2019-04-26 | 北京智付融汇科技有限公司 | Transaction data processing method and processing device |
| CN105574716A (en) * | 2016-02-02 | 2016-05-11 | 惠州学院 | Intelligent electronic network payment interface and method |
| US10880100B2 (en) | 2016-07-14 | 2020-12-29 | Huawei Technologies Co., Ltd. | Apparatus and method for certificate enrollment |
| CN109478214A (en) * | 2016-07-14 | 2019-03-15 | 华为技术有限公司 | Device and method for certificate registration |
| CN110383313B (en) * | 2017-03-07 | 2023-08-29 | 万事达卡国际公司 | Method and system for recording point-to-point transaction processing |
| CN110383313A (en) * | 2017-03-07 | 2019-10-25 | 万事达卡国际公司 | For recording the method and system of point-to-point trading processing |
| CN108615154A (en) * | 2018-05-01 | 2018-10-02 | 王锐 | A kind of block chain digital signature system and process for using based on hardware encipherment protection |
| CN108615154B (en) * | 2018-05-01 | 2023-04-18 | 浙江浩安信息技术有限公司 | Block chain digital signature system based on hardware encryption protection and using process |
| CN108711055A (en) * | 2018-05-03 | 2018-10-26 | 中国工商银行股份有限公司 | A kind of safety certifying method, safety certificate equipment and system |
| CN108711055B (en) * | 2018-05-03 | 2022-02-25 | 中国工商银行股份有限公司 | Security authentication method, security authentication equipment and system |
| CN108897631A (en) * | 2018-06-27 | 2018-11-27 | 杭州贝店科技有限公司 | Information push method, device, equipment and storage medium |
| CN109255615A (en) * | 2018-09-25 | 2019-01-22 | 韩建龙 | A kind of method of mobile payment |
| CN110610367A (en) * | 2019-08-29 | 2019-12-24 | 深圳市元征科技股份有限公司 | Transaction data payment method and device, electronic equipment and server |
| CN110610367B (en) * | 2019-08-29 | 2023-09-05 | 深圳市元征科技股份有限公司 | Transaction data payment method and device, electronic equipment and server |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104408622B (en) | 2020-09-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104408622A (en) | System and method for confirming electronic trade based on independent password equipment | |
| CN102202300B (en) | A kind of based on twin-channel dynamic cipher authentication system and method | |
| CN102461231B (en) | Program at radio mobile communication network registry radio mobile communication equipment | |
| US20110103586A1 (en) | System, Method and Device To Authenticate Relationships By Electronic Means | |
| CN107798531B (en) | Electronic payment method and system | |
| CN102722816B (en) | A kind of method, system and device of mobile payment | |
| CN102968717A (en) | Electronic payment method, relevant device and system | |
| CN102789607A (en) | Network transaction method and system | |
| US20120166309A1 (en) | Authentication system and authentication method using barcodes | |
| Chen et al. | NFC mobile payment with Citizen Digital Certificate | |
| CN103077462A (en) | Electronic receipt system based on terminal | |
| CN101383709A (en) | System and method enhancing safety of network account and cipher | |
| RU2005118828A (en) | MODE FOR CARRYING multifactorial strong authentication cardholders USING MOBILE PHONE IN A MOBILE COMMUNICATION ENVIRONMENT interbank financial transactions in international payment systems PROTOCOL SPECIFICATIONS FOR 3-D SECURE (VARIANTS) AND SYSTEM implements it | |
| CN102801710A (en) | Networked transaction method and system | |
| CN103839157A (en) | Electronic payment method, device and system | |
| CN103903141A (en) | O2O safety payment method, system and POS terminal | |
| CN103971242A (en) | Method and system for confirming data in safety device | |
| CN102332127A (en) | Network TV (television) online payment service based account binding method and payment method | |
| CN103186857A (en) | Bank card payment method and system | |
| CN101916476A (en) | Mobile data transmission method based on combination of SD (Secure Digital) encrypted card and short-distance wireless communication technology | |
| CN101790166A (en) | Digital signing method based on mobile phone intelligent card | |
| CN104599123A (en) | Management method for account information, account management server and a POS terminal and system | |
| CN103886463A (en) | Electronic commerce system and method of verifying consignee identity in corresponding distribution service | |
| CN108335108A (en) | A kind of two-dimension code safe method of mobile payment and system | |
| CN111861457A (en) | Payment token application method, device, system and server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |