CN108804942A - Sensitive data identifying system in a kind of mobile payment - Google Patents

Sensitive data identifying system in a kind of mobile payment Download PDF

Info

Publication number
CN108804942A
CN108804942A CN201810533253.3A CN201810533253A CN108804942A CN 108804942 A CN108804942 A CN 108804942A CN 201810533253 A CN201810533253 A CN 201810533253A CN 108804942 A CN108804942 A CN 108804942A
Authority
CN
China
Prior art keywords
sensitive data
processor
mobile payment
data
identifying system
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810533253.3A
Other languages
Chinese (zh)
Inventor
黄小芬
彭俊
刘科
吴文贵
莫达钊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guangdong Tong Guan Polytron Technologies Inc
Original Assignee
Guangdong Tong Guan Polytron Technologies Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guangdong Tong Guan Polytron Technologies Inc filed Critical Guangdong Tong Guan Polytron Technologies Inc
Priority to CN201810533253.3A priority Critical patent/CN108804942A/en
Publication of CN108804942A publication Critical patent/CN108804942A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6245Protecting personal data, e.g. for financial or medical purposes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Medical Informatics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention relates to mobile payment platform technical fields, refer in particular to sensitive data identifying system in a kind of mobile payment, compared with traditional mobile payment platform, the present invention adds sensitive data processor in mobile platform, sensitive data transmission data can be identified according to its internal rule being arranged by the first processor of sensitive data processor, the sensitive data that the second processor of sensitive data processor can identify first processor is encrypted, the leakage problem that sensitive data can effectively be prevented, provides the reliability of mobile payment platform.

Description

Sensitive data identifying system in a kind of mobile payment
Technical field
The present invention relates to mobile payment technical field, sensitive data identifying system in a kind of mobile payment is referred in particular to.
Background technology
Mobile payment (Mobile Payment) refers to both parties for certain cargo or service, using mobile whole End equipment is carrier, the business transaction realized by mobile communications network.Mobile terminal used in mobile payment can be hand Machine, personal digital assistant (PDA), mobile personal computer (PC) etc..Mobile payment is widely used in all trades and professions at present.? When being paid after checking, the modes such as user can be paid by cash, cCredit card payment or third-party platform carry out checkout operation.
Remote payment needs to complete payment transaction by network layer access Internet, in addition to NFC is past near field is paid Other relevant bargain links are completed toward network layer is also required to.The sensitive data of user can not be known during payment It is not stolen with protection, the sensitive data for be easy to causeing user.
Invention content
The present invention is for sensitive data identifying system in a kind of mobile payment of problem of the prior art offer.
In order to solve the above-mentioned technical problem, the present invention adopts the following technical scheme that:
Sensitive data identifying system in a kind of mobile payment, including Mobile payment terminal, communication server, application service Device, database server and sensitive data processor, the Mobile payment terminal pass through the communication server and the application Server connects, and the application server is connect with the sensitive data processor, the sensitive data processor and the number It is connected according to library server, the sensitive data processor includes identifying the transmission data from application server according to pre-defined rule First processor and the second processor that is encrypted of sensitive data for will identify that.
Preferably, the second processor is provided with secret grade module, what the secret grade module will identify that Sensitive data carries out different grades of encryption according to default rule.
Preferably, the data Layer is provided with the first data acquisition system layer and the second data set layer, first data Set layer is used to store the sensitive data after encryption, and the second data set layer is used to store its in addition to sensitive data His data.
Preferably, the sensitive data processor is additionally provided with the third processor for preventing sensitive data from leaking, it is described Third processor is connect with the first data acquisition system layer.
Preferably, the database server is provided with the destruction module of destroyed sensitive data, the destruction module with The third processor connection.
Preferably, the first processor and the second processor are both provided with hardware network interface, the hardware Network interface with calculator system for connecting.
Preferably, the Encryption Algorithm of the second processor is rivest, shamir, adelman or hash algorithm.
Preferably, sensitive data identifying system further includes private data monitor, the privacy in the mobile payment Data collector is by detecting whether the private data of the Mobile payment terminal leaves the Mobile payment terminal to sentence The application for stating disconnected Mobile payment terminal whether there is privacy compromise.
Beneficial effects of the present invention:
Sensitive data identifying system in a kind of mobile payment provided by the invention, compared with traditional mobile payment platform, The present invention adds sensitive data processor in mobile platform, and the first processor of sensitive data processor can be to transmission data Sensitive data is identified according to its internal rule being arranged, the second processor of sensitive data processor can be handled first The sensitive data of device identification is encrypted, and can effectively prevent the leakage problem of sensitive data, provide mobile payment platform Reliability.
Description of the drawings
Fig. 1 is the structure diagram of the present invention.
Reference numeral is respectively:
Mobile payment terminal -- 1, communication server -- 2, application server -- 3, sensitive data processor -- 4, at first Manage device -- 5, second processor -- 6, third processor -- 7, database server -- 8, data Layer -- 9, the first data acquisition system Layer -- 10, the second data set layer -- 11, destroy module -- 12, private data monitor -- 13.
Specific implementation mode
For the ease of the understanding of those skilled in the art, the present invention is made further with reference to embodiment and attached drawing Bright, the content that embodiment refers to not is limitation of the invention.The present invention is described in detail below in conjunction with attached drawing.
As shown in Figure 1, sensitive data identifying system in a kind of mobile payment provided by the invention, including Mobile payment terminal 1, communication server 2, application server 3, database server 8 and sensitive data processor 4, the Mobile payment terminal 1 are logical It crosses the communication server 2 to connect with the application server 3, the application server 3 connects with the sensitive data processor 4 It connects, the sensitive data processor 4 is connect with the database server 8, and the sensitive data processor 4 includes according to predetermined Rule first processor 5 of the identification from transmission data and the encrypted second processor 6 of the sensitive data for will identify that, institute It states database server 8 and data Layer 9 is set, sensitive data identifying system in a kind of mobile payment is flat with traditional mobile payment Platform is compared, and the present invention adds sensitive data processor 4 in mobile platform, and the first processor 5 of sensitive data processor 4 can Sensitive data is identified according to its internal rule being arranged for transmission data, the second processor 6 of sensitive data processor 4 The sensitive data that can be identified to first processor 5 is encrypted, and can effectively prevent the leakage problem of sensitive data, provide shifting The reliability of dynamic payment platform.
In the present embodiment, the second processor 6 is provided with secret grade module, and secret grade module will identify that quick Feel data and different grades of encryption is carried out according to default rule, sensitive data is divided into according to rule by different grades, according to Different grades carries out sensitive data different encryptions, and high-grade sensitive information is run using complicated encryption, will be low The sensitive information of grade is run using simple encryption.
In the present embodiment, for convenience of being managed to sensitive data, the data Layer 9 is provided with the first data acquisition system layer 10 With the second data set layer 11, the first data acquisition system layer 10 is used to store the sensitive data after encryption, second number It is used to store other data in addition to sensitive data according to set layer 11.
In the present embodiment, the sensitive data processor 4 is additionally provided with the third processor 7 for preventing sensitive data from leaking, The third processor 7 is connect with the first data acquisition system layer 10, and the database server 8 is provided with destroyed sensitive data Destruction module 12, the destruction module 12 connect with the third processor 7, the sensitivity inside the first data acquisition system layer 10 By after illegal invasion, sensitive data processor 4 can back up the sensitivity inside the first data acquisition system layer 10 data, pin It ruins module 12 first data acquisition system layer 10 is subjected to internal sensitivity and destroy.
In the present embodiment, the first processor 5 and the second processor 6 are both provided with hardware network interface, described For hardware network interface for being connect with calculator system, network interface is preset quick for presetting or changing first processor 5 Feel data recognition rule, the network interface makes different add for presetting or changing in second processor 6 to sensitive data Close rule.
In the present embodiment, the Encryption Algorithm of the second processor 6 is rivest, shamir, adelman or hash algorithm.
In the present embodiment, sensitive data identifying system further includes private data monitor 13 in the mobile payment, described Private data monitor 13 is by detecting whether the private data of the Mobile payment terminal 1 leaves the Mobile payment terminal 1 Application to sentence the disconnected Mobile payment terminal 1 whether there is privacy compromise.
The above is only present pre-ferred embodiments, is not intended to limit the present invention in any form, although The present invention is disclosed as above with preferred embodiment, and however, it is not intended to limit the invention, any person skilled in the art, It does not depart within the scope of technical solution of the present invention, when the technology contents using the disclosure above make a little change or are modified to equivalent change The equivalent embodiment of change, as long as being without departing from technical solution of the present invention content, technology refers to above example according to the present invention Made by any simple modification, equivalent change and modification, belong in the range of technical solution of the present invention.

Claims (8)

1. sensitive data identifying system in a kind of mobile payment, it is characterised in that:Including Mobile payment terminal, communication server, Application server, database server and sensitive data processor, the Mobile payment terminal by the communication server with The application server connection, the application server are connect with the sensitive data processor, the sensitive data processor It is connect with the database server, the sensitive data processor includes being identified from application server according to pre-defined rule The second processor that the first processor of transmission data and sensitive data for will identify that are encrypted.
2. sensitive data identifying system in a kind of mobile payment according to claim 1, it is characterised in that:At described second Reason device is provided with secret grade module, and the sensitive data that the secret grade module will identify that carries out not according to default rule The encryption of ad eundem.
3. sensitive data identifying system in a kind of mobile payment according to claim 1, it is characterised in that:The data Layer It is provided with the first data acquisition system layer and the second data set layer, the first data acquisition system layer is used to store the sensitivity after encryption Data, the second data set layer are used to store other data in addition to sensitive data.
4. sensitive data identifying system in a kind of mobile payment according to claim 3, it is characterised in that:The sensitivity number The third processor for preventing sensitive data from leaking, the third processor and first data acquisition system are additionally provided with according to processor Layer connection.
5. sensitive data identifying system in a kind of mobile payment according to claim 4, it is characterised in that:The database Server is provided with the destruction module of destroyed sensitive data, and the destruction module is connect with the third processor.
6. sensitive data identifying system in a kind of mobile payment according to claim 1, it is characterised in that:At described first Reason device and the second processor are both provided with hardware network interface, and the hardware network interface is used to connect with calculator system It connects.
7. sensitive data identifying system in a kind of mobile payment according to claim 1, it is characterised in that:At described second The Encryption Algorithm for managing device is rivest, shamir, adelman or hash algorithm.
8. sensitive data identifying system in a kind of mobile payment according to claim 1, it is characterised in that:The mobile branch Sensitive data identifying system further includes private data monitor in paying, and the private data monitor is by detecting the mobile branch Whether the private data for paying terminal leaves the Mobile payment terminal to sentence whether the application of the disconnected Mobile payment terminal deposits In privacy compromise.
CN201810533253.3A 2018-05-29 2018-05-29 Sensitive data identifying system in a kind of mobile payment Pending CN108804942A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810533253.3A CN108804942A (en) 2018-05-29 2018-05-29 Sensitive data identifying system in a kind of mobile payment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810533253.3A CN108804942A (en) 2018-05-29 2018-05-29 Sensitive data identifying system in a kind of mobile payment

Publications (1)

Publication Number Publication Date
CN108804942A true CN108804942A (en) 2018-11-13

Family

ID=64090961

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810533253.3A Pending CN108804942A (en) 2018-05-29 2018-05-29 Sensitive data identifying system in a kind of mobile payment

Country Status (1)

Country Link
CN (1) CN108804942A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112152918A (en) * 2019-06-28 2020-12-29 卡巴斯基实验室股份制公司 System and method for anonymous and consistent data routing in a client-server architecture
CN113411328A (en) * 2021-06-17 2021-09-17 国网福建省电力有限公司信息通信分公司 Efficient transmission system based on data pre-identification sensitive data

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060287965A1 (en) * 2005-06-15 2006-12-21 E.E. System Corporation Method and system for real time online debit transactions
CN101159054A (en) * 2007-11-14 2008-04-09 范传东 Method for realizing currency money payment through mobile communication appliance channel
CN201707736U (en) * 2010-05-31 2011-01-12 北京汇冠金财科技有限公司 Safety payment network system based on mobile phone
CN102779303A (en) * 2012-08-07 2012-11-14 上海方付通商务服务有限公司 Wireless payment system and method on basis of mobile phone
CN104254858A (en) * 2011-10-31 2014-12-31 国际商业机器公司 Protecting sensitive data in a transmission
CN105046489A (en) * 2015-06-26 2015-11-11 深圳国微技术有限公司 Mobile payment method, mobile payment device and mobile payment
CN107169751A (en) * 2017-07-06 2017-09-15 济南大学 A kind of paying based on Internet of Things uses the Self-service payment system and method for equipment

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060287965A1 (en) * 2005-06-15 2006-12-21 E.E. System Corporation Method and system for real time online debit transactions
CN101159054A (en) * 2007-11-14 2008-04-09 范传东 Method for realizing currency money payment through mobile communication appliance channel
CN201707736U (en) * 2010-05-31 2011-01-12 北京汇冠金财科技有限公司 Safety payment network system based on mobile phone
CN104254858A (en) * 2011-10-31 2014-12-31 国际商业机器公司 Protecting sensitive data in a transmission
CN102779303A (en) * 2012-08-07 2012-11-14 上海方付通商务服务有限公司 Wireless payment system and method on basis of mobile phone
CN105046489A (en) * 2015-06-26 2015-11-11 深圳国微技术有限公司 Mobile payment method, mobile payment device and mobile payment
CN107169751A (en) * 2017-07-06 2017-09-15 济南大学 A kind of paying based on Internet of Things uses the Self-service payment system and method for equipment

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112152918A (en) * 2019-06-28 2020-12-29 卡巴斯基实验室股份制公司 System and method for anonymous and consistent data routing in a client-server architecture
CN113411328A (en) * 2021-06-17 2021-09-17 国网福建省电力有限公司信息通信分公司 Efficient transmission system based on data pre-identification sensitive data
CN113411328B (en) * 2021-06-17 2023-03-24 国网福建省电力有限公司信息通信分公司 Efficient transmission system based on data pre-identification sensitive data

Similar Documents

Publication Publication Date Title
US12008537B2 (en) Systems and methods for distributed peer to peer analytics
US9426141B2 (en) Verifiable tokenization
RU2705019C2 (en) Method of detecting unauthorized access to software and notification thereof
US9229987B2 (en) Mapping between tokenization domains
CN108804942A (en) Sensitive data identifying system in a kind of mobile payment
CN107343279A (en) Method for connecting network, device, terminal device and storage medium
CN106997560A (en) The method and apparatus that processing credit card is insured
FR2922669A1 (en) PORTABLE ELECTRONIC DEVICE FOR THE EXCHANGE OF VALUES AND METHOD FOR IMPLEMENTING SUCH A DEVICE
US20100064132A1 (en) Method and system for close range communication using concentric arcs model
CN105931031A (en) Mobile payment platform based on social relations and LBS
Verma et al. Understanding the corpus of mobile payment services research: an analysis of the literature using co-citation analysis and social network analysis
Abdullaev et al. Classify and Analyze the Security Issues and Challenges in Mobile banking in Uzbekistan
CN107330058A (en) Application searches method, mobile terminal and computer-readable recording medium
CN107301236A (en) Application searches method, mobile terminal, server and computer-readable recording medium
CN110113341A (en) A kind of detection method for injection attack, device, computer equipment and storage medium
Abdullaev et al. Security challenge and issue of mobile banking in Republic of Uzbekistan: A state of art survey
CN115442117A (en) Information processing method, device, equipment and medium
CN107103468A (en) Network risks detection method, mobile terminal and computer-readable recording medium
KR20010008023A (en) A graded security policy setting method for authentication and non-repudiation in mobile data communication
CN107124719A (en) Method for switching network, mobile terminal and computer-readable recording medium
Lumsden Securing mobile technology & financial transactions in the United States
Edburg et al. Role of UPI Application Usage and Mitigation of Payment Transaction Frauds: An Empirical Study
CN107679858A (en) Mobile terminal and method of mobile payment
CN113507364B (en) Transaction book processing method and device, electronic equipment and storage medium
CN109615477A (en) A kind of innovation undertaking shares economic platform

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20181113

RJ01 Rejection of invention patent application after publication