CN104408622B - System and method for realizing electronic transaction confirmation based on independent password equipment - Google Patents
System and method for realizing electronic transaction confirmation based on independent password equipment Download PDFInfo
- Publication number
- CN104408622B CN104408622B CN201410756742.7A CN201410756742A CN104408622B CN 104408622 B CN104408622 B CN 104408622B CN 201410756742 A CN201410756742 A CN 201410756742A CN 104408622 B CN104408622 B CN 104408622B
- Authority
- CN
- China
- Prior art keywords
- transaction
- user
- transaction confirmation
- terminal
- authentication service
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3825—Use of electronic signatures
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/42—Confirmation, e.g. check or permission by the legal debtor of payment
- G06Q20/425—Confirmation, e.g. check or permission by the legal debtor of payment using two different networks, one for transaction and one for security confirmation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
- G06Q30/06—Buying, selling or leasing transactions
- G06Q30/0601—Electronic shopping [e-shopping]
- G06Q30/0609—Buyer or seller confidence or verification
Abstract
The invention relates to a system and a method for realizing electronic transaction confirmation based on independent password equipment, wherein the system comprises the independent password equipment; the user intelligent terminal is used for receiving the pushed payment message and confirming the transaction; the transaction confirmation terminal is used for providing an operation interface for selecting commodities or displaying transaction information for a user and generating a transaction order; an authentication service platform; and the virtual account management platform is used for managing a user virtual account, receiving order information verified by the authentication service platform, pushing a payment request to the user intelligent terminal and completing a payment process according to the confirmation information of the user intelligent terminal. The system and the method for realizing electronic transaction confirmation based on the independent password equipment with the structure adopt the hardware encryption equipment to carry out digital signature on transaction data so as to protect the transaction process and confirm the transaction to be real and effective, provide a payment solution with higher safety, simultaneously have no loss of rapidness and rapidness, and have wider application range.
Description
Technical Field
The invention relates to the technical field of digital signatures, in particular to the technical field of O2O electronic transaction digital signatures, and specifically relates to a system and a method for realizing electronic transaction confirmation based on independent password equipment.
Background
"O2O" (online-to-offline convergence) is becoming more popular as an emerging business model in China, and electronic transaction confirmation (e.g., payment for e-commerce or receipt for logistics) is a very important link in the O2O business model and is also becoming more and more appreciated by merchants. The use of two-dimensional codes for electronic transaction confirmation is a very popular means at present. Under the scheme, a merchant can compile transaction information such as commodity types, prices, merchant account numbers and the like into a two-dimensional code, and print the two-dimensional code on carriers such as various newspapers, magazines, advertisements and books to release the two-dimensional code, and even can see the commodities printed with the two-dimensional code on an advertisement wall of a subway station. The user can scan the two-dimensional code of the interested commodity through the mobile phone client, and can pay and settle accounts with the account of the merchant. And finally, the merchant can carry out commodity distribution according to the user receiving and contact information in the payment transaction information to complete the transaction.
However, the payment settlement using the two-dimensional code has several problems:
first, the user cannot determine that the two-dimensional code viewed by the user is connected to a legal merchant. The reason is that the technical principle of the two-dimensional code is simple, the implementation threshold is low, a large amount of two-dimensional code generator software is filled in the internet, anyone can generate the two-dimensional code by the link, the program code and other information according to the intention of the person, and people cannot know the content hidden by the two-dimensional code by a visual reading method, so that a machine for lawless persons to take advantage of the two-dimensional code is provided, the person can forge the two-dimensional code or embed the website link with the Trojan horse virus into the two-dimensional code, once the person scans the code, the Trojan horse program can be unconsciously downloaded into the mobile terminal of the person, the privacy information of the user is revealed, and even the economic loss is.
Second, merchants have no way of ensuring that legitimate transactions are not repudiated. Since two-dimensional code payment typically does not require the user to submit order information using digital signature techniques, the merchant cannot ensure that legitimate transactions are not repudiated.
Therefore, the two-dimension code payment is convenient and quick, but the protection of both transaction parties is slightly insufficient.
Disclosure of Invention
The invention aims to overcome the defects of the prior art and provides a system and a method for realizing electronic transaction confirmation based on an independent password device, which can realize the digital signature of transaction data by adopting a hardware encryption device so as to protect the transaction process and confirm the authenticity and effectiveness of the transaction, provide a payment solution with higher safety, have no loss of quickness and rapidness and have wider application range.
In order to achieve the above object, the system and method for realizing electronic transaction confirmation based on independent password equipment of the present invention comprises the following components:
the system for realizing electronic transaction confirmation based on the independent password equipment is mainly characterized by comprising the following components:
the independent password equipment is used for storing a user private key and performing digital signature calculation;
the user intelligent terminal is used for receiving the payment message pushed by the virtual account management platform and confirming the transaction;
the transaction confirmation terminal is used for providing an operation interface for selecting commodities or displaying transaction information for a user and generating a transaction order;
the authentication service platform is used for registering and managing the independent password equipment and the transaction confirmation terminal, and storing a public key certificate chain for verifying the digital signature, binding information of the independent password equipment and the user intelligent terminal and a binding relation between a virtual account of the user and the independent password equipment;
and the virtual account management platform is used for managing a user virtual account, processing a payment request, receiving order information verified by the authentication service platform, pushing the payment request to the user intelligent terminal and completing a payment process according to the confirmation information of the user intelligent terminal.
Preferably, the independent password device comprises a central processing unit, a secure memory, a password coprocessor and a communication interface with the transaction confirmation terminal.
Preferably, the transaction confirmation terminal is a PC or an embedded self-service terminal.
Preferably, the electronic transaction is an O2O electronic transaction.
Preferably, the user intelligent terminal is a user mobile terminal, and the authentication service platform further stores binding information of the independent password device, the user virtual account and the user mobile phone number.
The invention also relates to a method for realizing electronic transaction confirmation based on the independent password equipment according to the system, which is mainly characterized by comprising the following steps:
(1) the transaction confirmation terminal generates a transaction order or displays bill information of the user according to the selection of the user on the commodity;
(2) the transaction confirmation terminal sends the transaction order information to the independent password equipment;
(3) the independent password equipment generates a digital signature according to the transaction order and returns the digital signature and the identification information of the digital signature to the transaction confirmation terminal;
(4) the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform;
(5) the authentication service platform verifies the identity of the transaction confirmation terminal and the digital signature;
(6) the authentication service platform sends the verified transaction order information to the virtual account management platform;
(7) the virtual account management platform generates a payment request according to the verified transaction order information and sends the payment request to the user intelligent terminal;
(8) the virtual account management platform sends the user payment confirmation information of the user intelligent terminal to the authentication service platform;
(9) the authentication service platform forwards the user payment confirmation information to the transaction confirmation terminal;
(10) and the transaction confirmation terminal displays a transaction result.
Preferably, between the steps (1) and (2), the following steps are further included:
(1-1) the transaction confirmation terminal prompts the user to connect the independent password device and to input the offline password of the independent password device.
Preferably, the authentication service platform further stores a binding relationship between the independent password device and the virtual account of the user and a secure channel with the transaction confirmation terminal, and the transaction confirmation terminal sends the transaction order including the identification information of the independent password device and the digital signature data to the authentication service platform, specifically:
the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform through the secure channel;
the authentication service platform forwards the user payment confirmation information to the transaction confirmation terminal, and specifically comprises the following steps:
the authentication service platform forwards the payment confirmation information of the user to the transaction confirmation terminal through the secure channel.
Preferably, the authentication service platform verifies the identity of the transaction confirmation terminal and the digital signature, comprising the steps of:
(5-1) the authentication service platform verifies the identity of the transaction confirmation terminal, if the transaction confirmation terminal is a registered device, the step (5-2) is continued, otherwise, the step (5-3) is continued;
(5-2) the authentication service platform verifies the digital signature in the transaction order sent by the transaction confirmation terminal, if the digital signature is verified, the step (6) is continued, otherwise, the step (5-3) is continued;
(5-3) the authentication service platform sends transaction failure information to the transaction confirmation terminal, and then continues to the step (10).
The system and the method for realizing the electronic transaction confirmation based on the independent password equipment have the following beneficial effects that:
according to the invention, the transaction data is confirmed online by using the independent password device, the confirmation data is pushed to the online account system, and payment is completed by the online account system, so that the transaction and the confirmation data are protected to be real and effective. The independent password device in the invention can be but is not limited to a smart IC card and needs to bind a virtual account number of a user first. The system and the method can provide a payment solution with higher safety than two-dimension code payment, and meanwhile, the rapidity is not lost; the invention adopts the registered O2O transaction confirmation terminal to provide commodities or display order information for the user, and can effectively avoid the transaction risk caused by counterfeiting the two-dimensional code and embedding Trojan horse virus under the environment; the independent password equipment is used for confirming the transaction order in an offline mode through a digital signature technology, the order can be prevented from being forged and falsified, the order placing person can be repudiated, the independent password equipment is bound with the user virtual account and the mobile phone number, the payment process can be completed safely and quickly, the user experience is good, and the application range is wider.
Drawings
Fig. 1 is a schematic structural diagram of a system for implementing electronic transaction confirmation based on a separate password device according to the present invention.
Fig. 2 is a flow chart of a method for implementing electronic transaction confirmation based on a stand-alone cryptographic device according to the present invention.
Detailed Description
In order to more clearly describe the technical contents of the present invention, the following further description is given in conjunction with specific embodiments.
The digital signature is an application of asymmetric key encryption technology and digital digest technology. In short, a digital signature is some data appended to a data unit or a cryptographic transformation performed on a data unit. Such data or transformations allow the recipient of the data unit to verify the source of the data unit and the integrity of the data unit and to protect the data against counterfeiting by a person (e.g., the recipient). Which is a method of signing a message in electronic form, a signed message being capable of being transmitted in a communication network. The technology can ensure the integrity of information transmission, carry out the identity authentication of a sender and prevent the repudiation in the transaction, so the technology is widely applied to the electronic commerce transaction process including O2O payment. The payment scheme adopting the digital signature technology has higher safety than two-dimensional code payment. The digital signature needs to store a pair of public and private keys in a device for signature, and then the private key is used for calculating data to generate a digital signature value, so that the security of the private key is particularly important for the digital signature, the digital signature cannot be stored in an open system environment, such as a mobile terminal like a mobile phone, but the private key is stored in a special hardware password device, and the digital signature calculation is also completed in the password device, so that the security of the digital signature process can be protected to the maximum extent.
In order to achieve the object of the present invention, the system for realizing electronic transaction confirmation based on the independent password device of the present invention comprises:
the independent password equipment is used for storing a user private key and performing digital signature calculation; because the independent password equipment and the user intelligent terminal are mutually independent and separated, the safety threat can not be caused even if the user intelligent terminal is lost;
the user intelligent terminal is used for receiving the payment message pushed by the virtual account management platform and confirming the transaction;
the transaction confirmation terminal is used for providing an operation interface for selecting commodities or displaying transaction information for a user and generating a transaction order;
the authentication service platform is used for registering and managing the independent password equipment and the transaction confirmation terminal, and storing a public key certificate chain for verifying the digital signature, binding information of the independent password equipment and the user intelligent terminal and a binding relation between a virtual account of the user and the independent password equipment; therefore, the authentication service platform can confirm and verify various information contained in the transaction order after the transaction confirmation terminal generates the transaction order;
and the virtual account management platform is used for managing a user virtual account, processing a payment request, receiving order information verified by the authentication service platform, pushing the payment request to the user intelligent terminal and completing a payment process according to the confirmation information of the user intelligent terminal.
In a preferred embodiment, the stand-alone cryptographic device comprises a central processing unit, a secure memory, a cryptographic coprocessor and a communication interface with the transaction confirmation terminal.
In another preferred embodiment, the transaction confirmation terminal is a PC or an embedded self-service terminal.
In another preferred embodiment, the electronic transaction is an O2O electronic transaction. It should be apparent, however, that the present invention may be implemented in a variety of electronic trading platforms.
In a preferred embodiment, the user intelligent terminal is a user mobile terminal, and the authentication service platform further stores binding information between the independent password device and the user virtual account and between the independent password device and the user mobile phone number. In practical application, the user intelligent terminal may also be a personal computer, a tablet computer, or other personal devices.
The invention also relates to a method for realizing electronic transaction confirmation based on the independent password equipment according to the system, which comprises the following steps:
(1) the transaction confirmation terminal generates a transaction order or displays bill information of the user according to the selection of the user on the commodity;
(2) the transaction confirmation terminal sends the transaction order information to the independent password equipment;
(3) the independent password equipment generates a digital signature according to the transaction order and returns the digital signature and the identification information of the digital signature to the transaction confirmation terminal;
(4) the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform;
(5) the authentication service platform verifies the identity of the transaction confirmation terminal and the digital signature;
(6) the authentication service platform sends the verified transaction order information to the virtual account management platform;
(7) the virtual account management platform generates a payment request according to the verified transaction order information and sends the payment request to the user intelligent terminal;
(8) the virtual account management platform sends the user payment confirmation information of the user intelligent terminal to the authentication service platform;
(9) the authentication service platform forwards the user payment confirmation information to the transaction confirmation terminal;
(10) and the transaction confirmation terminal displays a transaction result.
In a preferred embodiment, between the steps (1) and (2), the following steps are further included:
(1-1) the transaction confirmation terminal prompts the user to connect the independent password device and to input the offline password of the independent password device. The off-line password and the digital signature are used for carrying out double guarantee on the transaction safety of the user, and even if the independent password equipment is lost, the payment cannot be finished without knowing the off-line password after the independent password equipment is obtained by others.
In a preferred embodiment, the authentication service platform further stores a binding relationship between an independent password device and a virtual account of a user, and has a secure channel with the transaction confirmation terminal, and the transaction confirmation terminal sends a transaction order containing identification information of the independent password device and digital signature data to the authentication service platform, specifically:
the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform through the secure channel;
the authentication service platform forwards the user payment confirmation information to the transaction confirmation terminal, and specifically comprises the following steps:
the authentication service platform forwards the payment confirmation information of the user to the transaction confirmation terminal through the secure channel.
Through the encrypted secure channel, the electronic transaction can be comprehensively protected in information security, and a hacker is prevented from intercepting transaction information from the transmission channel.
In a preferred embodiment, said authentication service platform verifies the identity of said transaction confirmation terminal and said digital signature, comprising the steps of:
(5-1) the authentication service platform verifies the identity of the transaction confirmation terminal, if the transaction confirmation terminal is a registered device, the step (5-2) is continued, otherwise, the step (5-3) is continued;
(5-2) the authentication service platform verifies the digital signature in the transaction order sent by the transaction confirmation terminal, if the digital signature is verified, the step (6) is continued, otherwise, the step (5-3) is continued;
(5-3) the authentication service platform sends transaction failure information to the transaction confirmation terminal, and then continues to the step (10).
Through the verification of the identity of the transaction confirmation terminal, the user can only carry out transaction in a trustworthy electronic transaction platform, and the user is ensured not to be deceived by a false electronic transaction platform.
The following further explains the technical solution of the present invention by using a specific embodiment of the system and method for realizing electronic transaction based on independent password device of the present invention applied to O2O electronic transaction:
the invention discloses a system for realizing electronic transaction confirmation based on independent password equipment, which comprises: the system comprises a separate password device for storing a user private key and performing digital signature calculation, a mobile terminal (such as a smart phone) of a user, an O2O transaction confirmation terminal, an authentication service platform and a virtual account management platform.
The independent password device is provided with a central processing unit, a secure memory, a password coprocessor and a communication interface with an O2O transaction confirmation terminal. The user binds the virtual account with the user, and the binding information is stored in the authentication service platform and is used for digitally signing order data generated by the transaction confirmation terminal.
The user mobile terminal is used for receiving the payment message pushed by the virtual account management platform, and the user can confirm the transaction on the terminal.
The O2O transaction confirmation terminal may be a PC, or a dedicated embedded self-service terminal, and is used to provide an operation interface for selecting commodities or displaying transaction information to a user, generate a transaction order, and send the transaction order to the authentication service platform through a secure network channel. In addition, the digital signature device can be connected with the independent password device through the communication interface, and can submit an order data digital signature request to the password device and receive a returned digital signature value.
The authentication service platform is a server system and has three main functions. The first function is for registering, managing the stand-alone cryptographic device and the O2O transaction confirmation terminal. The transaction flow can only be triggered if the user uses a separate password device on the O2O transaction confirmation terminal registered on the authentication service platform. The authentication service platform has another function of storing a public key certificate chain for verifying the digital signature, binding information of the independent password equipment and the user virtual account and the user mobile phone number, and private data for establishing a secure channel with the O2O transaction confirmation terminal. The last important function of the device is to store the binding relationship between the virtual account of the user and the independent password device.
The virtual account management platform is a system that manages user virtual accounts and processes payment requests. And the payment server is used for receiving the order information which passes the verification of the authentication service platform, pushing a payment request to the user and completing a payment process according to the confirmation information of the user.
The system architecture for implementing O2O electronic transaction confirmation of this embodiment is shown in fig. 1.
The flow of the method for implementing O2O electronic transaction confirmation according to this embodiment is shown in fig. 2, and includes the following steps:
(1) the user (i.e. transaction payer) selects the required commodity at the O2O transaction confirmation terminal, and generates an order by the O2O transaction confirmation terminal;
(2) the O2O transaction confirmation terminal prompts the user to connect to the independent password device and to input the offline password of the independent password device;
(3) the O2O payment transaction confirmation terminal sends the order information to the independent password device, and the independent password device generates a digital signature for the order information and returns the digital signature and the identification information to the O2O transaction confirmation terminal;
(4) the O2O transaction confirmation terminal sends order information containing the identification information of the independent password equipment and the digital signature data to the authentication service platform through a secure channel;
(5) the authentication service platform verifies the identity of the O2O transaction confirmation terminal, and checks whether the terminal is a registered device;
(6) the authentication service platform verifies the digital signature in the order after the order passes the check;
(7) if the digital signature passes the verification, the authentication service platform sends the order information to a management platform of a virtual account associated with the independent password equipment;
(8) the virtual account management platform generates a payment request according to the order information and pushes the payment request to a mobile phone of the user;
(9) the user confirms the payment request on the mobile phone;
(10) the virtual account management platform sends the received user payment confirmation information to the authentication service platform;
(11) the authentication service platform forwards the payment confirmation information to the O2O transaction confirmation terminal through the secure channel, and the payment acceptance terminal displays the transaction result to the user.
The system and the method for realizing the electronic transaction confirmation based on the independent password equipment have the following beneficial effects that:
according to the invention, the transaction data is confirmed online by using the independent password device, the confirmation data is pushed to the online account system, and payment is completed by the online account system, so that the transaction and the confirmation data are protected to be real and effective. The independent password device in the invention can be but is not limited to a smart IC card and needs to bind a virtual account number of a user first. The system and the method can provide a payment solution with higher safety than two-dimension code payment, and meanwhile, the rapidity is not lost; the invention adopts the registered O2O transaction confirmation terminal to provide commodities or display order information for the user, and can effectively avoid the transaction risk caused by counterfeiting the two-dimensional code and embedding Trojan horse virus under the environment; the independent password equipment is used for confirming the transaction order in an offline mode through a digital signature technology, the order can be prevented from being forged and falsified, the order placing person can be repudiated, the independent password equipment is bound with the user virtual account and the mobile phone number, the payment process can be completed safely and quickly, the user experience is good, and the application range is wider.
In this specification, the invention has been described with reference to specific embodiments thereof. It will, however, be evident that various modifications and changes may be made thereto without departing from the broader spirit and scope of the invention. The specification and drawings are, accordingly, to be regarded in an illustrative rather than a restrictive sense.
Claims (8)
1. A system for effecting electronic transaction confirmation based on a stand-alone cryptographic device, said system comprising:
the independent password equipment is used for storing a user private key and performing digital signature calculation;
the user intelligent terminal is used for receiving the payment message pushed by the virtual account management platform and confirming the transaction;
the transaction confirmation terminal is used for providing an operation interface for selecting commodities or displaying transaction information for a user and generating a transaction order;
the authentication service platform is used for registering and managing the independent password equipment and the transaction confirmation terminal, storing a public key certificate chain for verifying a digital signature, binding information of the independent password equipment and the user intelligent terminal and a binding relation between the virtual account of the user and the independent password equipment, and storing the binding information of the independent password equipment, the virtual account of the user and the mobile phone number of the user;
the virtual account management platform is used for managing a user virtual account, processing a payment request, receiving order information verified by the authentication service platform, pushing the payment request to the user intelligent terminal and completing a payment process according to the confirmation information of the user intelligent terminal,
the electronic transaction is O2O electronic transaction;
the system realizes the electronic transaction confirmation operation based on the independent password equipment, wherein the electronic transaction confirmation operation carries out the following processing:
(1) the transaction confirmation terminal generates a transaction order or displays bill information of the user according to the selection of the user on the commodity;
(2) the transaction confirmation terminal sends the transaction order information to the virtual account management;
(3) the independent password equipment generates a digital signature according to the transaction order and returns the digital signature and the identification information of the digital signature to the transaction confirmation terminal;
(4) the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform;
(5) the authentication service platform verifies the identity of the transaction confirmation terminal and the digital signature;
(6) the authentication service platform sends the verified transaction order information to the virtual account management platform;
(7) the virtual account management platform generates a payment request according to the verified transaction order information and sends the payment request to the user intelligent terminal;
(8) the virtual account management platform sends the user payment confirmation information of the user intelligent terminal to the authentication service platform;
(9) the authentication service platform forwards the user payment confirmation information to the transaction confirmation terminal;
(10) and the transaction confirmation terminal displays a transaction result.
2. The system for enabling electronic transaction confirmation based on a stand-alone cryptographic device of claim 1, wherein the stand-alone cryptographic device comprises a central processing unit, a secure memory, a cryptographic coprocessor and a communication interface with the transaction confirmation terminal.
3. The system for realizing electronic transaction confirmation based on the independent password device as claimed in claim 1, wherein the transaction confirmation terminal is a PC or an embedded self-service terminal.
4. The system for enabling electronic transaction confirmation based on the independent password device of claim 1, wherein the user intelligent terminal is a user mobile terminal.
5. A method for realizing electronic transaction confirmation based on independent password equipment in the system according to any one of claims 1 to 4, characterized in that the method comprises the following steps:
(1) the transaction confirmation terminal generates a transaction order or displays bill information of the user according to the selection of the user on the commodity;
(2) the transaction confirmation terminal sends the transaction order information to the virtual account management;
(3) the independent password equipment generates a digital signature according to the transaction order and returns the digital signature and the identification information of the digital signature to the transaction confirmation terminal;
(4) the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform;
(5) the authentication service platform verifies the identity of the transaction confirmation terminal and the digital signature;
(6) the authentication service platform sends the verified transaction order information to the virtual account management platform;
(7) the virtual account management platform generates a payment request according to the verified transaction order information and sends the payment request to the user intelligent terminal;
(8) the virtual account management platform sends the user payment confirmation information of the user intelligent terminal to the authentication service platform;
(9) the authentication service platform forwards the user payment confirmation information to the transaction confirmation terminal;
(10) and the transaction confirmation terminal displays a transaction result.
6. The method for realizing electronic transaction confirmation based on the independent password device as claimed in claim 5, wherein between the steps (1) and (2), further comprising the following steps:
(1-1) the transaction confirmation terminal prompts the user to connect the independent password device and to input the offline password of the independent password device.
7. The method for realizing electronic transaction confirmation based on the independent password device according to claim 5, wherein the authentication service platform further stores a binding relationship between the independent password device and a virtual account of a user and a secure channel with the transaction confirmation terminal, and the transaction confirmation terminal sends a transaction order containing identification information of the independent password device and digital signature data to the authentication service platform, specifically:
the transaction confirmation terminal sends a transaction order containing the identification information of the independent password equipment and the digital signature data to the authentication service platform through the secure channel;
the authentication service platform verifies and forwards the user payment confirmation information to the transaction confirmation terminal, and specifically comprises the following steps:
the authentication service platform forwards the payment confirmation information of the user to the transaction confirmation terminal through the secure channel.
8. The method for implementing electronic transaction confirmation based on independent password device as claimed in claim 5, wherein the authentication service platform verifies the identity of the transaction confirmation terminal and the digital signature, comprising the steps of:
(5-1) the authentication service platform verifies the identity of the transaction confirmation terminal, if the transaction confirmation terminal is a registered device, the step (5-2) is continued, otherwise, the step (5-3) is continued;
(5-2) the authentication service platform verifies the digital signature in the transaction order sent by the transaction confirmation terminal, if the digital signature is verified, the step (6) is continued, otherwise, the step (5-3) is continued;
(5-3) the authentication service platform sends transaction failure information to the transaction confirmation terminal, and then continues to the step (10).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410756742.7A CN104408622B (en) | 2014-12-10 | 2014-12-10 | System and method for realizing electronic transaction confirmation based on independent password equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410756742.7A CN104408622B (en) | 2014-12-10 | 2014-12-10 | System and method for realizing electronic transaction confirmation based on independent password equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104408622A CN104408622A (en) | 2015-03-11 |
| CN104408622B true CN104408622B (en) | 2020-09-11 |
Family
ID=52646251
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410756742.7A Active CN104408622B (en) | 2014-12-10 | 2014-12-10 | System and method for realizing electronic transaction confirmation based on independent password equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104408622B (en) |
Families Citing this family (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104636911A (en) * | 2015-02-13 | 2015-05-20 | 深圳支付界科技有限公司 | Clear-text-free password input method and system |
| CN105160531B (en) * | 2015-08-31 | 2019-04-26 | 北京智付融汇科技有限公司 | Transaction data processing method and processing device |
| CN105574716A (en) * | 2016-02-02 | 2016-05-11 | 惠州学院 | Intelligent electronic network payment interface and method |
| EP3387576B1 (en) * | 2016-07-14 | 2020-12-16 | Huawei Technologies Co., Ltd. | Apparatus and method for certificate enrollment |
| SG10202109184TA (en) * | 2017-03-07 | 2021-09-29 | Mastercard International Inc | Method and system for recording point to point transaction processing |
| CN108615154B (en) * | 2018-05-01 | 2023-04-18 | 浙江浩安信息技术有限公司 | Block chain digital signature system based on hardware encryption protection and using process |
| CN108711055B (en) * | 2018-05-03 | 2022-02-25 | 中国工商银行股份有限公司 | Security authentication method, security authentication equipment and system |
| CN108897631A (en) * | 2018-06-27 | 2018-11-27 | 杭州贝店科技有限公司 | Information push method, device, equipment and storage medium |
| CN109255615A (en) * | 2018-09-25 | 2019-01-22 | 韩建龙 | A kind of method of mobile payment |
| CN110610367B (en) * | 2019-08-29 | 2023-09-05 | 深圳市元征科技股份有限公司 | Transaction data payment method and device, electronic equipment and server |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7533047B2 (en) * | 2005-05-03 | 2009-05-12 | International Business Machines Corporation | Method and system for securing card payment transactions using a mobile communication device |
| US20080046362A1 (en) * | 2006-08-15 | 2008-02-21 | Frank Easterly | Method of making secure on-line financial transactions |
| CN101211436B (en) * | 2006-12-29 | 2012-03-21 | 盛大计算机(上海)有限公司 | Electronic commerce safe trading platform and its method |
| US7958057B2 (en) * | 2007-03-28 | 2011-06-07 | King Fahd University Of Petroleum And Minerals | Virtual account based new digital cash protocols with combined blind digital signature and pseudonym authentication |
| CN101685512A (en) * | 2008-09-28 | 2010-03-31 | 中国银联股份有限公司 | Computer, payment system and method thereof for realizing on-line payment |
| CN101739624A (en) * | 2008-11-06 | 2010-06-16 | 同方股份有限公司 | Trusted payment network system |
| CN101477662A (en) * | 2009-02-16 | 2009-07-08 | 张辉 | Network payment system, apparatus and method based on USBKEY |
| CN103164911B (en) * | 2011-12-09 | 2016-02-03 | 国民技术股份有限公司 | A kind of Swiping-card payment system and method |
| CN102790767B (en) * | 2012-07-03 | 2015-07-08 | 北京神州绿盟信息安全科技股份有限公司 | Information safety control method, information safety display equipment and electronic trading system |
-
2014
- 2014-12-10 CN CN201410756742.7A patent/CN104408622B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN104408622A (en) | 2015-03-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104408622B (en) | System and method for realizing electronic transaction confirmation based on independent password equipment | |
| CN106688004B (en) | Transaction authentication method and device, mobile terminal, POS terminal and server | |
| CN102789607B (en) | A kind of network trading method and system | |
| CN107798531B (en) | Electronic payment method and system | |
| CN107609866B (en) | Electronic payment and electronic cash collection method and device based on virtual currency | |
| CN102202300B (en) | A kind of based on twin-channel dynamic cipher authentication system and method | |
| CN102801710B (en) | A kind of network trading method and system | |
| CN103123706A (en) | Management method, device and system of bill payment for another | |
| CN103839157A (en) | Electronic payment method, device and system | |
| CN102968717A (en) | Electronic payment method, relevant device and system | |
| CN105590199A (en) | Payment method and payment system based on dynamic two-dimensional code | |
| CN102722816B (en) | A kind of method, system and device of mobile payment | |
| CN103985036A (en) | Two-dimension code payment method with biological characteristics | |
| RU2005118828A (en) | MODE FOR CARRYING multifactorial strong authentication cardholders USING MOBILE PHONE IN A MOBILE COMMUNICATION ENVIRONMENT interbank financial transactions in international payment systems PROTOCOL SPECIFICATIONS FOR 3-D SECURE (VARIANTS) AND SYSTEM implements it | |
| CN101383709A (en) | System and method enhancing safety of network account and cipher | |
| CN106462853A (en) | Card settlement terminal and card settlement system | |
| CN103971242A (en) | Method and system for confirming data in safety device | |
| CN103198405A (en) | Intelligent payment method and system based on camera scanning verification | |
| CN104050567A (en) | Data interaction method under off-line mode, terminal and server | |
| CN103345703A (en) | Banking transaction authentication method and system based on image authentication | |
| CN109120395A (en) | Label data generation method, label and the data processing based on NFC label | |
| CN103268436A (en) | Method and system for touch-screen based graphical password authentication in mobile payment | |
| CN107507004B (en) | Data processing method and system | |
| CN111062717A (en) | Data transfer processing method and device and computer readable storage medium | |
| CN105591746B (en) | A kind of processing method and processing system of online binding accepting terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |