CN104881782A - Method, system, and client based on secure transaction - Google Patents
Method, system, and client based on secure transaction Download PDFInfo
- Publication number
- CN104881782A CN104881782A CN201510236533.4A CN201510236533A CN104881782A CN 104881782 A CN104881782 A CN 104881782A CN 201510236533 A CN201510236533 A CN 201510236533A CN 104881782 A CN104881782 A CN 104881782A
- Authority
- CN
- China
- Prior art keywords
- transaction
- accepting terminal
- client
- steering order
- subscriber card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4012—Verifying personal identification numbers [PIN]
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Finance (AREA)
- Computer Security & Cryptography (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Computer Networks & Wireless Communication (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention provides a method, system, and client based on secure transaction. The method comprises a client transmits a transaction processing control instruction to an accepting terminal; the accepting terminal acquires user card information according to the transaction processing control instruction and encrypts the user card information; the accepting terminal transmits a success response or a failure response not including the encrypted user card information to the client; after receiving the success response, the client transmits a message assembly control instruction to the accepting terminal; the accepting terminal assembles financial transaction essentials and encrypts user card information so as to obtain a transaction message; the accepting terminal transmits the transaction message to the client; and the client transmits the transaction message to the transaction processing system. According to the invention, the control power of transaction logic is transferred to the client and the assembly and the encryption of the transaction message are performed by the accepting terminal. As a result, on the premise of secure transaction, the work burden and cost of the accepting terminal are reduced and the expansion performance of a transaction system is improved.
Description
Technical field
The present invention relates to smart machine transaction field, specifically be a kind of method based on Secure Transaction, system and client.
Background technology
Along with scientific and technological development, popularized based on transaction payment mode, specifically by the wireless communication capability by SmartClient (as smart mobile phone, panel computer, PAD etc.), external accepting terminal (as mPOS Mobile payment terminal) on a client device, for the collection of bank card information and personal account password; The payment application software be arranged in client and accepting terminal is coordinated to provide payment and settlement and business information management service to businessman again.
Provide two kinds of technical schemes in existing client-based transaction payment method: the first is for security consideration, transaction data all assembling generations in accepting terminal, concrete transaction flow as shown in Figure 1; The second is the extensibility for trading payment system, and transaction data assembles generation all in the client, and concrete transaction flow as shown in Figure 2.
Visible, the logical transaction of the first prior art above-mentioned is controlled by accepting terminal, so just there is upgrading service difficulty large, and workload is large, and the problem of high in cost of production poor expandability; Although and the second prior art defines logical transaction by host computer client, but client is positioned at open environment, just the transaction data and the transaction message that there is financial transaction are easily stolen and distort, for potential safety hazards such as Replay Attacks, and the problem of poor stability.Therefore, be necessary to provide a kind of method based on Secure Transaction, system and client, to solve the problem.
Summary of the invention
Technical matters to be solved by this invention is: provide a kind of method based on Secure Transaction, system and client, realizes, under the prerequisite ensureing transaction security, reducing accepting terminal work load and cost, improving the scalability of transaction system simultaneously.
In order to solve the problems of the technologies described above, the technical solution used in the present invention is:
Based on a method for Secure Transaction, comprising:
Client sends transaction processing steering order to accepting terminal, and described transaction processing steering order comprises financial transaction key element;
Accepting terminal receives transaction processing steering order, and obtains subscriber card information according to described transaction processing steering order, encrypts described subscriber card information;
Accepting terminal sends the successful respond of the subscriber card information after not containing described encryption or unsuccessfully replys to client;
After client receives successful respond, send depacketize steering order to described accepting terminal;
Accepting terminal receives described depacketize steering order, and according to the subscriber card information after described depacketize steering order assembling financial transaction key element and encryption, obtains transaction message;
Accepting terminal sends described transaction message to client;
Client sends described transaction message to transaction processing system.
Second technical scheme provided by the invention is:
Based on a system for transaction processing, comprise accepting terminal, client and transaction processing system;
Accepting terminal comprises the first receiver module, encrypting module, the first sending module and Knockdown block;
Client comprises the second sending module and the second receiver module;
Described first receiver module, receives transaction processing steering order for accepting terminal, and receives depacketize steering order;
Described encrypting module, obtains subscriber card information for accepting terminal according to described transaction processing steering order, encrypts described subscriber card information;
Described first sending module, sends the successful respond of the subscriber card information after not containing described encryption for accepting terminal or unsuccessfully replys to client, and sends transaction message to transaction processing system;
Described Knockdown block, for accepting terminal according to the subscriber card information after described depacketize steering order assembling financial transaction key element and encryption, obtains transaction message;
Described second sending module, transaction processing steering order is sent to accepting terminal for client, described transaction processing steering order comprises financial transaction key element, sends depacketize steering order to described accepting terminal, and sends transaction message to transaction processing system;
Described second receiver module, receives successful respond for client and receives transaction message.
The above-mentioned method and system based on transaction processing, its beneficial effect is: by client sending controling instruction, accepting terminal receives and carries out the process of transaction data according to the mode that described steering order carries out respective handling, by the control right transfer of logical transaction to client; Realize the work load of accepting terminal and the reduction of cost; Meanwhile, when having upgrading service demand, directly can be realized the upgrading of transaction system by the upgrading of client, promote the scalability of transaction system; Further, assembled by accepting terminal and encrypt the transaction message relating to data of financial transaction, ensure that the security of transaction message in transmitting procedure; Finally, in process of exchange, owing to cannot complete the packing of transaction message when client sends corresponding steering order, therefore avoid transaction data be stolen after for the possibility of Replay Attack.Final realization, under the prerequisite ensureing Secure Transaction, reduces accepting terminal work load and cost, improves the scalability of transaction system simultaneously.
3rd technical scheme provided by the invention is:
A kind of client, comprises control module, sending module and receiver module;
Described control module, for generating transaction processing steering order and generating depacketize steering order;
Described sending module, for sending transaction processing steering order, sends depacketize steering order, and sends transaction message; Described transaction processing steering order comprises financial transaction key element;
Described receiver module, for receiving successful respond or unsuccessfully replying, and receives transaction message.
Above-mentioned client, its beneficial effect is: the logic controlling transaction flow by generating and sending corresponding steering order, realizes the logical transaction power controlled in process of exchange, promotes the scalability of transaction system.
Accompanying drawing explanation
Fig. 1 is the transaction flow sequential chart of a kind of transaction payment of prior art;
Fig. 2 is the transaction flow sequential chart of a kind of transaction payment of prior art;
Fig. 3 is the basic FB(flow block) of a kind of method based on Secure Transaction of the present invention one specific embodiment;
Fig. 4 is the transaction flow sequential chart of a kind of method based on Secure Transaction of the present invention one specific embodiment;
Fig. 5 is the block diagram of a kind of system based on Secure Transaction of the present invention one specific embodiment;
Fig. 6 is the block diagram of a kind of client of the present invention one specific embodiment.
Label declaration:
1, accepting terminal; 2, client; 3, transaction processing system;
11, the first receiver module; 12, encrypting module; 13, the first sending module; 14, Knockdown block;
22, the second sending module; 23, the second receiver module;
24, sending module; 25, receiver module; 26, control module.
Embodiment
By describing technology contents of the present invention in detail, realized object and effect, accompanying drawing is coordinated to be explained below in conjunction with embodiment.
The design of most critical of the present invention is: possess processing power difference according to different end, and data of financial transaction and the difference of non financial transaction data to security requirement are set out, by the control right transfer of logical transaction to client, completed assembling and the encryption of transaction message by accepting terminal.
The explanation of technical terms that the present invention relates to:
Please refer to Fig. 3 to Fig. 6,
As shown in Figure 3, the invention provides a kind of method based on Secure Transaction, comprising:
Client 2 sends transaction processing steering order to accepting terminal 1, and described transaction processing steering order comprises financial transaction key element;
Accepting terminal 1 receives transaction processing steering order, and obtains subscriber card information according to described transaction processing steering order, encrypts described subscriber card information;
Accepting terminal 1 sends the successful respond of the subscriber card information after not containing described encryption or unsuccessfully replys to client 2;
After client 2 receives successful respond, send depacketize steering order to described accepting terminal 1;
Accepting terminal 1 receives described depacketize steering order, and according to the subscriber card information after described depacketize steering order assembling financial transaction key element and encryption, obtains transaction message;
Accepting terminal 1 sends described transaction message to client 2;
Client 2 sends described transaction message to transaction processing system 3.
From foregoing description, method based on Secure Transaction of the present invention, compared to the first prior art, has the following advantages: 1, data of financial transaction equally all assembles encryption in accepting terminal 1, open environment cannot be stolen or distort, and has equal security; 2, accepting terminal 1 application program and concrete business have nothing to do, and do not need to upgrade along with the change of business function, only need updating client 2 application program when upgrading service; Compared to the second prior art, in process of exchange, the packaging ciphering relating to the data of financial transaction with security requirement is completed by accepting terminal 1, cannot obtain or distort transaction data, ensure that the security of transaction data; Compare and all prior aries, by the control right transfer of logical transaction to client 2, reduce the work load of accepting terminal 1, reduce the cost of accepting terminal 1; The processing power of client the last 2 can be made full use of again simultaneously.
Visible, method based on Secure Transaction of the present invention, prior art solving while cannot take into account extendability and safety issue, the otherness of accepting terminal 1 and client 2 processing power from transaction system, combine again the advantage of prior art, final realization, under the prerequisite ensureing transaction data security in process of exchange, achieves the optimization of transaction system in transaction processing distribution, and the raising of the scalability of transaction system.
Further, comprise further after described " client 2 receive successful respond after ":
Client 2 sends and obtains subscriber card PIN code steering order to described accepting terminal 1;
Accepting terminal 1 successfully obtains subscriber card PIN code according to described acquisition subscriber card PIN code steering order; Encrypt described subscriber card PIN code;
Accepting terminal 1 sends the successful respond of the subscriber card PIN code after not containing described encryption or unsuccessfully replys to client 2;
Client 2 receives successful respond;
Subscriber card PIN code is assembled in transaction message according to described depacketize steering order by accepting terminal 1.
Seen from the above description, in order to the difference of the transaction payment project that different application APP in fit end 2 accepts, realize configuring more flexibly.Such as: the application A PP of client 2 is accepting the transaction not needing PIN code, when participating in the business such as Membership Queries as credit card activity, the PIN code of subscriber card is provided without the need to user.
When above-mentioned user is without the need to providing subscriber card PIN code, does not just comprise the PIN code information of subscriber card in the data of financial transaction that accepting terminal 1 obtains, need not be encrypted the PIN code of subscriber card yet.And when the transaction payment project that transaction system is stressed needs user to provide the PIN code of subscriber card, just need to obtain subscriber card PIN code, assemble the process of subscriber card PIN code to transaction message, to guarantee the security of data of financial transaction, stop the possibility that transaction data is stolen and distorts in data transmission procedure.
Further, described " according to the subscriber card information after described depacketize steering order assembling financial transaction key element, encryption and subscriber card PIN code, obtaining transaction message " is specially:
Accepting terminal 1, according to the subscriber card information after described depacketize steering order assembling financial transaction key element, encryption and subscriber card PIN code, generates transaction data;
Accepting terminal 1 encrypts described transaction data, calculates the MAC value of the transaction data after encryption, obtains transaction message.
Seen from the above description, by being encrypted transaction message and transmitting with ciphertext form after calculating MAC value, ensure validity and the integrality of transaction data, realize the raising of transaction data security.
Further, comprise further after described " encrypting described subscriber card information ": the subscriber card information after storage encryption is to place of safety;
Comprise further after described " encrypting described subscriber card PIN code ": the described subscriber card PIN code after storage encryption is to place of safety.
Seen from the above description, the subscriber card information after the encryption relating to financial transaction and subscriber card PIN code are stored to place of safety, the possibility that stopping is stolen distorts.
Further, comprise further after described " client 2 receive successful respond after ":
Client 2 sends non financial transaction key element to described accepting terminal 1;
Accepting terminal 1 receives and verifies the legitimacy of described non financial transaction key element, stores the non financial transaction key element by legitimate verification;
Accepting terminal 1 sends successful respond or unsuccessfully replys to client 2;
Client 2 receives successful respond;
Non financial transaction key element is assembled in transaction message according to described depacketize steering order by accepting terminal 1.
Further, described financial transaction key element comprises dealing money, transaction Currency Type and type of transaction; Described non financial transaction key element comprises trade date and authorizes note to receive cell-phone number.
Seen from the above description, the non financial transaction key element (such as positioning function, value-added service etc.) related to for function of activating business is generated by client 2, realizes facilitating user to expand the relevant function of non financial transaction.
Further, comprise further after described " described in client 2 transparent transmission, transaction message is to transaction processing system 3 ":
Transaction processing system 3 receives and processes described transaction message, generates the transaction comprising result and returns response message;
Transaction processing system 3 is encrypted described transaction and is returned response message; The described transaction sent after encryption returns response message to client 2;
Described transaction after client 2 receives also transparent transmission encryption returns response message to accepting terminal 1.
Accepting terminal 1 good authentication returns response message through the described transaction of encryption, obtains transaction results;
Accepting terminal 1 shows transaction results.
From the above, in transaction message transaction transmitting procedure, can only be decrypted checking manipulation by transaction processing system 3, other transmission nodes all cannot obtain transaction data expressly; The transaction obtaining generating after being processed by transaction processing system 3 returns the transmission carried out again after response message is through encryption equally, and in transmitting procedure, is be sent to accepting terminal 1 in transparent transmission mode through client 2; Promote the security performance of payment transaction process, stop the possibility that financial critical data is stolen and distorts in open network environment completely.
Further, comprise further after described " accepting terminal 1 good authentication returns response message through the described transaction of encryption ":
Described transaction after accepting terminal 1 store decrypted returns response message to place of safety; Return successful respond to client 2;
After client 2 receives successful respond, transmission processing response steering order is to accepting terminal 1;
Accepting terminal 1 obtains described transaction according to described process response steering order and returns transaction results in response message.
Further, comprise further after described " accepting terminal 1 shows transaction results ":
Accepting terminal 1 empties place of safety data;
Accepting terminal 1 returns described transaction results to client 2;
Client 2 shows transaction results.
From the above, after accepting terminal 1 receives and decrypted transaction returns response message, it is the extraction transaction results of just execution after receiving the process response steering order that client 2 sends over, and the transaction data being stored in place of safety is emptied after display transaction results, achieve the guarantee of transaction data security.
Refer to Fig. 5, another technical scheme provided by the invention is:
Based on a system for transaction processing, comprise accepting terminal 1, client 2 and transaction processing system 3; Described accepting terminal 1, between client 2 and transaction processing system 3, carry out exchanges data alternately by internet and/or wireless network;
Accepting terminal 1 comprises the first receiver module 11, encrypting module 12, first sending module 13 and Knockdown block 14;
Client 2 comprises the second sending module 22 and the second receiver module 23;
Described first receiver module 11, receives transaction processing steering order for accepting terminal 1, and receives depacketize steering order;
Described encrypting module 12, obtains subscriber card information for accepting terminal 1 according to described transaction processing steering order, encrypts described subscriber card information;
Described first sending module 13, sends the successful respond of the subscriber card information after not containing described encryption for accepting terminal 1 or unsuccessfully replys to client 2, and sends transaction message to transaction processing system 3;
Described Knockdown block 14, for accepting terminal 1 according to the subscriber card information after described depacketize steering order assembling financial transaction key element and encryption, obtains transaction message;
Described second sending module 22, transaction processing steering order is sent to accepting terminal 1 for client 2, described transaction processing steering order comprises financial transaction key element, sends depacketize steering order to described accepting terminal 1, and sends transaction message to transaction processing system 3;
Described second receiver module 23, receives successful respond for client 2 and receives transaction message.
Refer to Fig. 6, the 3rd technical scheme provided by the invention is:
A kind of client 2, comprises control module 26, sending module 24 and receiver module 25;
Described control module 26, for generating transaction processing steering order and generating depacketize steering order;
Described sending module 24, for sending transaction processing steering order, sends depacketize steering order, and sends transaction message; Described transaction processing steering order comprises financial transaction key element;
Described receiver module 25, for receiving successful respond or unsuccessfully replying, and receives transaction message.
From the above, the relevant control instruction for controlling transaction system flow process is generated by the control module 26 of client 2, realize the control of the logical transaction power of transaction system, make full use of the enough large extending space of client 2 and stronger processing power to promote the extended capability of transaction system business, also achieve the optimization of transaction system in transaction processing distribution simultaneously.
Further, also display module is comprised;
Described display module, for showing transaction results;
Described control module 26, also obtaining subscriber card PIN code steering order for generating, generating non financial transaction key element, and generating process response steering order;
Described sending module 24, also obtaining subscriber card PIN code steering order for sending, sending non financial transaction key element, and transmission processing response steering order;
Described receiver module 25, also returns response message for receiving the transaction after encryption.
Seen from the above description, subscriber card PIN code steering order, non financial transaction key element is obtained by generating and sending, and process response steering order, realize the execution that client 2 controls concrete steps in transaction flow.
Please refer to Fig. 4, embodiments of the invention one are:
There is provided a kind of method based on transaction processing, concrete on-line transaction flow process is as follows:
1, type of transaction, dealing money, the selection of element of transaction of transaction Currency Type and input is carried out by client 2;
2, client 2 sends transaction processing steering order to accepting terminal 1, and described transaction processing steering order comprises the financial transaction key element such as dealing money, type of transaction, transaction Currency Type of this transaction;
3, accepting terminal 1 receives transaction processing steering order; And showing the information such as dealing money, type of transaction by screen to holder, after holder confirms, accepting terminal 1 is pointed out plug-in card or is swiped the card or wave card;
With TDK, magnetic track information is encrypted after accepting terminal 1 reads subscriber card information; By the subscriber card information cache after encryption to place of safety;
4, accepting terminal 1 returns the successful respond of " Card Reader success " to client 2;
5, client 2 receives the response of " Card Reader success ", and sends acquisition subscriber card PIN code steering order to described accepting terminal 1;
6, accepting terminal 1 receives above-mentioned steering order, and reads subscriber card PIN code according to steering order; Encrypt and preserve subscriber card PIN code; By the subscriber card PIN code buffer memory after encryption to place of safety;
7, accepting terminal 1 sends the successful respond of " reading PIN code success " to client 2;
8, client 2 receives the response of " reading PIN code success ", and sends non financial transaction key element to described accepting terminal 1 to described accepting terminal 1; Described non financial transaction key element comprises trade date, and user's note receives cell-phone number etc.;
9, accepting terminal 1 receives non financial transaction key element, and verification msg legitimacy; Non financial transaction key element by checking is stored;
10, accepting terminal 1 sends the successful respond of " preserving successfully " to client 2;
11, client 2 receives the response of " preserving successfully ", and concurrent depacketize steering order of sending is to described accepting terminal 1;
12, accepting terminal 1 receives above-mentioned steering order, and according to steering order assembling financial transaction key element, non financial transaction key element, and subscriber card information after encryption and subscriber card PIN code, obtains transaction data;
Encrypt described transaction data, calculate the MAC value of the transaction data after encryption, obtain transaction message.
13, described transaction message is sent to client 2 by accepting terminal 1;
14, client 2 transparent transmission transaction message is to transaction processing system 3;
Transaction processing system 3 receives and processes described transaction message, generates the transaction comprising result and returns response message;
Transaction processing system 3 is encrypted described transaction and is returned response message; The described transaction sent after encryption returns response message to client 2;
15, client 2 receives and concludes the business described in transparent transmission and returns response message to accepting terminal 1;
16, accepting terminal 1 receives and deciphers described transaction and returns response message, and the transaction after checking deciphering returns the MAC value of response message, the transaction successfully passing decryption verification is returned response message and is stored to place of safety;
17, accepting terminal 1 returns the successful respond of " being verified " to client 2;
18, client 2 receives the response of " being verified ", and transmission processing response steering order is to accepting terminal 1;
19, accepting terminal 1 receives and returns the transaction results in response message according to the transaction of extracting in place of safety of described process response steering order;
Show transaction results in accepting terminal 1, empty place of safety data simultaneously;
20, accepting terminal 1 sends described transaction results to client 2;
Client 2 shows transaction results.
From the above, in the present invention, described accepting terminal 1 is as passive " card reader " equipment of client 2, and transaction flow all defines in client 2, which ensure that the expansibility of system; And unpacked by " card reader " responsible beating of transaction message, ensure with this security that system is concluded the business., there is following advantage in the technical scheme of Fig. 1 and 2 that the method for above-mentioned transaction processing generally adopts compared to prior art:
Please refer to Fig. 5, embodiments of the invention two are:
A kind of client 2, comprises control module 26, sending module 24, receiver module 25 and display module;
Described control module 26, for generating transaction processing steering order, generating depacketize steering order, generates and obtains subscriber card PIN code steering order, generate non financial transaction key element, and generating process response steering order;
Described sending module 24, for sending transaction processing steering order, sends depacketize steering order, sends and obtains subscriber card PIN code steering order, send non financial transaction key element, transmission processing response steering order, and sends transaction message; Described transaction processing steering order comprises financial transaction key element;
Described receiver module 25, for receiving successful respond or unsuccessfully replying, receive transaction message, and the transaction received after encryption returns response message;
Described display module, for showing transaction results.
In sum, a kind of method based on Secure Transaction provided by the invention, system and client 2, not only ensure that the security of data of financial transaction in process of exchange, stop the possibility that data of financial transaction is stolen, distorts in open network environment; And make full use of the enough large extending space of client 2 and stronger processing power to promote the extended capability of transaction system business; Achieve under the prerequisite ensureing Secure Transaction, significantly improve the operation expanding performance of transaction system; Also optimize the distribution of transaction system in transaction processing simultaneously.
The foregoing is only embodiments of the invention; not thereby the scope of the claims of the present invention is limited; every equivalents utilizing instructions of the present invention and accompanying drawing content to do, or be directly or indirectly used in relevant technical field, be all in like manner included in scope of patent protection of the present invention.
Claims (12)
1. based on a method for Secure Transaction, it is characterized in that, comprising:
Client sends transaction processing steering order to accepting terminal, and described transaction processing steering order comprises financial transaction key element;
Accepting terminal receives transaction processing steering order, and obtains subscriber card information according to described transaction processing steering order, encrypts described subscriber card information;
Accepting terminal sends the successful respond of the subscriber card information after not containing described encryption or unsuccessfully replys to client;
After client receives successful respond, send depacketize steering order to described accepting terminal;
Accepting terminal receives described depacketize steering order, and according to the subscriber card information after described depacketize steering order assembling financial transaction key element and encryption, obtains transaction message;
Accepting terminal sends described transaction message to client;
Client sends described transaction message to transaction processing system.
2. according to a kind of method based on transaction processing according to claim 1, it is characterized in that, comprise further after described " after client reception successful respond ":
Client sends and obtains subscriber card PIN code steering order to described accepting terminal;
Accepting terminal successfully obtains subscriber card PIN code according to described acquisition subscriber card PIN code steering order; Encrypt described subscriber card PIN code;
Accepting terminal sends the successful respond of the subscriber card PIN code after not containing described encryption or unsuccessfully replys to client;
Client receives successful respond;
Subscriber card PIN code is assembled in transaction message according to described depacketize steering order by accepting terminal.
3. according to a kind of method based on transaction processing according to claim 2, it is characterized in that, described " according to the subscriber card information after described depacketize steering order assembling financial transaction key element, encryption and subscriber card PIN code, obtaining transaction message " is specially:
Accepting terminal, according to the subscriber card information after described depacketize steering order assembling financial transaction key element, encryption and subscriber card PIN code, generates transaction data;
Accepting terminal encrypts described transaction data, calculates the MAC value of the transaction data after encryption, obtains transaction message.
4. according to a kind of method based on transaction processing according to claim 2, it is characterized in that, comprise further after described " encrypting described subscriber card information ": the subscriber card information after storage encryption is to place of safety;
Comprise further after described " encrypting described subscriber card PIN code ": the described subscriber card PIN code after storage encryption is to place of safety.
5. according to a kind of method based on transaction processing according to claim 1, it is characterized in that, comprise further after described " after client reception successful respond ":
Client sends non financial transaction key element to described accepting terminal;
Accepting terminal receives and verifies the legitimacy of described non financial transaction key element, stores the non financial transaction key element by legitimate verification;
Accepting terminal sends successful respond or unsuccessfully replys to client;
Client receives successful respond;
Non financial transaction key element is assembled in transaction message according to described depacketize steering order by accepting terminal.
6. according to a kind of method based on transaction processing according to claim 5, it is characterized in that, described financial transaction key element comprises dealing money, transaction Currency Type and type of transaction; Described non financial transaction key element comprises trade date and authorizes note to receive cell-phone number.
7. according to a kind of method based on transaction processing according to claim 1, it is characterized in that, comprise further after described " transaction message is to transaction processing system described in client transparent transmission ":
Transaction processing system receives and processes described transaction message, generates the transaction comprising result and returns response message;
Transaction processing system is encrypted described transaction and is returned response message; The described transaction sent after encryption returns response message to client;
Described transaction after client receives also transparent transmission encryption returns response message to accepting terminal.
Accepting terminal good authentication returns response message through the described transaction of encryption, obtains transaction results;
Accepting terminal display transaction results.
8. according to a kind of method based on transaction processing according to claim 7, it is characterized in that, comprise further after described " accepting terminal good authentication returns response message through the described transaction of encryption ":
Described transaction after accepting terminal store decrypted returns response message to place of safety; Return successful respond to client;
After client receives successful respond, transmission processing response steering order is to accepting terminal;
Accepting terminal obtains described transaction according to described process response steering order and returns transaction results in response message.
9. according to a kind of method based on transaction processing according to claim 7, it is characterized in that, comprise further after described " accepting terminal display transaction results ":
Accepting terminal empties place of safety data;
Accepting terminal returns described transaction results to client;
Client display transaction results.
10. based on a system for transaction processing, it is characterized in that, comprise accepting terminal, client and transaction processing system;
Accepting terminal comprises the first receiver module, encrypting module, the first sending module and Knockdown block;
Client comprises the second sending module and the second receiver module;
Described first receiver module, receives transaction processing steering order for accepting terminal, and receives depacketize steering order;
Described encrypting module, obtains subscriber card information for accepting terminal according to described transaction processing steering order, encrypts described subscriber card information;
Described first sending module, sends the successful respond of the subscriber card information after not containing described encryption for accepting terminal or unsuccessfully replys to client, and sends transaction message to transaction processing system;
Described Knockdown block, for accepting terminal according to the subscriber card information after described depacketize steering order assembling financial transaction key element and encryption, obtains transaction message;
Described second sending module, transaction processing steering order is sent to accepting terminal for client, described transaction processing steering order comprises financial transaction key element, sends depacketize steering order to described accepting terminal, and sends transaction message to transaction processing system;
Described second receiver module, receives successful respond for client and receives transaction message.
11. 1 kinds of clients, is characterized in that, comprise control module, sending module and receiver module;
Described control module, for generating transaction processing steering order and generating depacketize steering order;
Described sending module, for sending transaction processing steering order, sends depacketize steering order, and sends transaction message; Described transaction processing steering order comprises financial transaction key element;
Described receiver module, for receiving successful respond or unsuccessfully replying, and receives transaction message.
12., according to a kind of client according to claim 11, is characterized in that, also comprise display module;
Described display module, for showing transaction results;
Described control module, also obtaining subscriber card PIN code steering order for generating, generating non financial transaction key element, and generating process response steering order;
Described sending module, also obtaining subscriber card PIN code steering order for sending, sending non financial transaction key element, and transmission processing response steering order;
Described receiver module, also returns response message for receiving the transaction after encryption.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510236533.4A CN104881782B (en) | 2015-05-11 | 2015-05-11 | A kind of method based on Secure Transaction, system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510236533.4A CN104881782B (en) | 2015-05-11 | 2015-05-11 | A kind of method based on Secure Transaction, system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104881782A true CN104881782A (en) | 2015-09-02 |
| CN104881782B CN104881782B (en) | 2019-02-05 |
Family
ID=53949269
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510236533.4A Active CN104881782B (en) | 2015-05-11 | 2015-05-11 | A kind of method based on Secure Transaction, system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104881782B (en) |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN201515408U (en) * | 2009-08-28 | 2010-06-23 | 深圳市健马科技开发有限公司 | Smart mobile phone capable of swiping card |
| CN103699989A (en) * | 2013-12-27 | 2014-04-02 | 福建联迪商用设备有限公司 | Payment platform and payment method on basis of intelligent equipment |
| WO2014048990A1 (en) * | 2012-09-28 | 2014-04-03 | Bell Identification Bv | Method and apparatus for providing secure services using a mobile device |
| CN103714453A (en) * | 2013-12-27 | 2014-04-09 | 福建联迪商用设备有限公司 | Payment platform system and payment method based on intelligent device |
| CN104077688A (en) * | 2014-06-09 | 2014-10-01 | 中国建设银行股份有限公司 | Internet payment method based on IC card and relevant device |
-
2015
- 2015-05-11 CN CN201510236533.4A patent/CN104881782B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN201515408U (en) * | 2009-08-28 | 2010-06-23 | 深圳市健马科技开发有限公司 | Smart mobile phone capable of swiping card |
| WO2014048990A1 (en) * | 2012-09-28 | 2014-04-03 | Bell Identification Bv | Method and apparatus for providing secure services using a mobile device |
| CN103699989A (en) * | 2013-12-27 | 2014-04-02 | 福建联迪商用设备有限公司 | Payment platform and payment method on basis of intelligent equipment |
| CN103714453A (en) * | 2013-12-27 | 2014-04-09 | 福建联迪商用设备有限公司 | Payment platform system and payment method based on intelligent device |
| CN104077688A (en) * | 2014-06-09 | 2014-10-01 | 中国建设银行股份有限公司 | Internet payment method based on IC card and relevant device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104881782B (en) | 2019-02-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112602300B (en) | System and method for password authentication of contactless cards | |
| US10607214B1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| US10965465B2 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| JP2022508010A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| WO2020072670A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| CN112889046A (en) | System and method for password authentication of contactless cards | |
| CN113168631A (en) | System and method for password authentication of contactless cards | |
| CN104881781A (en) | Method, system, and client based on secure transaction | |
| AU2019354421A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| WO2020072474A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| AU2019352891A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| CN102063767A (en) | Method, system and PSAM (Purchase Secure Access Module) card for updating encryption key of smart card | |
| AU2019351906A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| JP2022502891A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| CN105635164A (en) | Method and device for security authentication | |
| CN104881782A (en) | Method, system, and client based on secure transaction |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |