CN113486381A - Method and device for transmitting information between WeChat bank and manufacturer server - Google Patents

Method and device for transmitting information between WeChat bank and manufacturer server Download PDF

Info

Publication number
CN113486381A
CN113486381A CN202110849733.2A CN202110849733A CN113486381A CN 113486381 A CN113486381 A CN 113486381A CN 202110849733 A CN202110849733 A CN 202110849733A CN 113486381 A CN113486381 A CN 113486381A
Authority
CN
China
Prior art keywords
information
user
manufacturer server
wechat bank
wechat
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110849733.2A
Other languages
Chinese (zh)
Inventor
代朝
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Bank of China Ltd
Original Assignee
Bank of China Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Bank of China Ltd filed Critical Bank of China Ltd
Priority to CN202110849733.2A priority Critical patent/CN113486381A/en
Publication of CN113486381A publication Critical patent/CN113486381A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Finance (AREA)
  • General Engineering & Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Health & Medical Sciences (AREA)
  • Accounting & Taxation (AREA)
  • Software Systems (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Strategic Management (AREA)
  • Technology Law (AREA)
  • General Business, Economics & Management (AREA)
  • Storage Device Security (AREA)

Abstract

The invention discloses a method and a device for transmitting information between a wechat bank and a manufacturer server, which are applied to the field of network security, wherein the method comprises the following steps: the WeChat bank acquires a public key of a manufacturer server and user request information sent by the manufacturer server; the WeChat bank acquires corresponding user sensitive information according to user request information sent by a manufacturer server; the WeChat bank encrypts user sensitive information through a manufacturer server public key to generate ciphertext information; the WeChat bank signs the ciphertext information through a WeChat bank private key to obtain signed ciphertext information; the WeChat bank sends the signature ciphertext information to the manufacturer server. The invention can ensure that the WeChat bank does not need to access the secret key of each manufacturer server respectively in the access process of the WeChat bank and the manufacturer servers, and can realize the quick access of the WeChat bank to a plurality of manufacturer servers under the safe scene.

Description

Method and device for transmitting information between WeChat bank and manufacturer server
Technical Field
The invention relates to the technical field of network security, in particular to a method and a device for transmitting information between a wechat bank and a manufacturer server.
Background
This section is intended to provide a background or context to the embodiments of the invention that are recited in the claims. The description herein is not admitted to be prior art by inclusion in this section.
When a WeChat bank is accessed to a manufacturer server, user sensitive information needs to be transmitted, encryption processing needs to be carried out on the user sensitive information due to the consideration of information security, in the prior art, the WeChat bank and the manufacturer server are accessed to adopt a technical scheme of symmetric encryption, each manufacturer server uses one set of encryption key, when the WeChat bank needs to be accessed to a plurality of manufacturer servers, the WeChat bank needs to be respectively accessed to the keys of each manufacturer server, and the WeChat bank cannot be rapidly accessed to the plurality of manufacturer servers. Therefore, how to realize the quick access of the wechat bank to the multiple manufacturer servers under the condition of ensuring the information security is a technical problem to be solved urgently at present.
Disclosure of Invention
The embodiment of the invention provides a method for transmitting information between a wechat bank and manufacturer servers, which is used for solving the technical problem that the existing wechat bank is difficult to quickly access a plurality of manufacturer servers under the condition of ensuring information security, and comprises the following steps:
the WeChat bank acquires a public key of a manufacturer server and user request information sent by the manufacturer server;
the WeChat bank acquires corresponding user sensitive information according to user request information sent by a manufacturer server;
the WeChat bank encrypts user sensitive information through a manufacturer server public key to generate ciphertext information;
the WeChat bank signs the ciphertext information through a WeChat bank private key to obtain signed ciphertext information;
the WeChat bank sends the signature ciphertext information to the manufacturer server.
The embodiment of the invention also provides another method for transmitting information between the wechat bank and the manufacturer servers, which is used for solving the technical problem that the existing wechat bank is difficult to quickly access a plurality of manufacturer servers under the condition of ensuring information security, and comprises the following steps:
the manufacturer server sends user request information to the WeChat bank;
the method comprises the steps that a manufacturer server obtains signature ciphertext information and a WeChat bank public key, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information obtained according to user request information by the WeChat bank through the manufacturer server public key and signing through a WeChat bank private key;
the manufacturer server checks the signature of the signature ciphertext information provided by the WeChat bank through the WeChat bank public key to obtain ciphertext information;
and the manufacturer server decrypts the ciphertext information through a manufacturer server private key to obtain user sensitive information.
The embodiment of the invention also provides a wechat bank, which is used for solving the technical problem that the existing wechat bank is difficult to quickly access a plurality of manufacturer servers under the condition of guaranteeing information security, and comprises:
the information acquisition module is used for acquiring a public key of a manufacturer server and user request information sent by the manufacturer server;
the information query module is used for acquiring corresponding user sensitive information according to user request information sent by the manufacturer server;
the encryption module is used for encrypting the user sensitive information through the public key of the manufacturer server to generate ciphertext information;
the signature module is used for signing the ciphertext information through a private key of the WeChat bank to obtain signed ciphertext information;
and the sending module is used for sending the signature ciphertext information to the manufacturer server.
The embodiment of the invention also provides a manufacturer server, which is used for solving the technical problem that the existing wechat bank is difficult to quickly access a plurality of manufacturer servers under the condition of guaranteeing information security, and comprises the following components:
the sending request module is used for sending user request information to the WeChat bank;
the information receiving module is used for acquiring signature ciphertext information and a WeChat bank public key which are provided by a WeChat bank, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information acquired by the WeChat bank according to user request information by using a manufacturer server public key and signing by using a WeChat bank private key;
the signature verification module is used for verifying the signature of the signature ciphertext information provided by the wechat bank through the wechat bank public key to obtain ciphertext information;
and the decryption module is used for decrypting the ciphertext information through the private key of the manufacturer server to obtain the user sensitive information.
The embodiment of the invention also provides computer equipment which comprises a memory, a processor and a computer program which is stored on the memory and can run on the processor, wherein the processor realizes the method for transmitting information between the wechat bank and the manufacturer server when executing the computer program.
An embodiment of the present invention further provides a computer-readable storage medium, where a computer program for executing the method for transmitting information between the wechat bank and the manufacturer server is stored in the computer-readable storage medium.
In the embodiment of the invention, a WeChat bank acquires a public key of a manufacturer server and user request information sent by the manufacturer server; the WeChat bank acquires corresponding user sensitive information according to user request information sent by a manufacturer server; the WeChat bank encrypts user sensitive information through a manufacturer server public key to generate ciphertext information; the WeChat bank signs the ciphertext information through a WeChat bank private key to obtain signed ciphertext information; the WeChat bank sends the signature ciphertext information to a manufacturer server; compared with the technical scheme that the access of the WeChat bank and the manufacturer server in the prior art adopts symmetric encryption, the WeChat bank does not need to access the secret key of each manufacturer server respectively in the access process of the WeChat bank and the manufacturer server, and can realize the quick access of the WeChat bank to a plurality of manufacturer servers under the safe scene.
In the embodiment of the invention, a manufacturer server sends user request information to a WeChat bank; the method comprises the steps that a manufacturer server obtains signature ciphertext information and a WeChat bank public key, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information obtained according to user request information by the WeChat bank through the manufacturer server public key and signing through a WeChat bank private key; the manufacturer server checks the signature of the signature ciphertext information provided by the WeChat bank through the WeChat bank public key to obtain ciphertext information; the manufacturer server decrypts the ciphertext information through a manufacturer server private key to obtain user sensitive information; compared with the technical scheme that the access of the WeChat bank and the manufacturer server in the prior art adopts symmetric encryption, the WeChat bank does not need to access the secret key of each manufacturer server respectively in the access process of the WeChat bank and the manufacturer server, and can realize the quick access of the WeChat bank to a plurality of manufacturer servers under the safe scene.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts. In the drawings:
FIG. 1 is a flow chart of a method for a WeChat bank to communicate information with a vendor server in an embodiment of the present invention;
FIG. 2 is a flowchart of an embodiment of a method for a WeChat bank to communicate information with a vendor server in accordance with the present invention;
FIG. 3 is a flow chart of another method for a WeChat bank to communicate information with a vendor server in accordance with an embodiment of the present invention;
FIG. 4 is a schematic diagram of a WeChat bank according to an embodiment of the present invention;
FIG. 5 is a diagram illustrating a structure of a vendor server according to an embodiment of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the embodiments of the present invention are further described in detail below with reference to the accompanying drawings. The exemplary embodiments and descriptions of the present invention are provided to explain the present invention, but not to limit the present invention.
In order to realize that a wechat bank can quickly access a plurality of manufacturer servers in a safe situation, the embodiment of the invention provides a method for transmitting information between the wechat bank and the manufacturer servers. FIG. 1 is a flowchart of a method for a WeChat bank to transmit information to a vendor server according to an embodiment of the present invention. As shown in fig. 1, the method for the wechat bank to transmit information with the vendor server in the embodiment of the present invention may include:
step 101, a WeChat bank acquires a public key of a manufacturer server and user request information sent by the manufacturer server;
102, acquiring corresponding user sensitive information by a WeChat bank according to user request information sent by a manufacturer server;
103, encrypting the user sensitive information by the WeChat bank through a public key of a manufacturer server to generate ciphertext information;
104, the WeChat bank signs the ciphertext information through a WeChat bank private key to obtain signed ciphertext information;
and step 105, the WeChat bank sends the signature ciphertext information to the manufacturer server.
As can be known from the flow shown in fig. 1, the method for transmitting information between the wechat bank and the manufacturer server according to the embodiment of the present invention is different from the technical scheme in the prior art in which symmetric encryption is adopted for accessing the wechat bank and the manufacturer server, so that the wechat bank does not need to access the secret key of each manufacturer server during the access process between the wechat bank and the manufacturer server, and the wechat bank can be quickly accessed to a plurality of manufacturer servers in a safe situation.
In one embodiment, the obtaining of the public key of the vendor server and the user request information sent by the vendor server by the wechat bank may include: after the WeChat bank and the manufacturer server establish a connection channel, the WeChat bank obtains a public key of the manufacturer server and user request information sent by the manufacturer server through the established connection channel. For example, after the wechat bank establishes a TCP (Transmission Control Protocol) connection with the vendor server, the wechat bank obtains a vendor server public key from the vendor server and user request information sent by the vendor server through the TCP connection.
In one embodiment, after the wechat bank obtains the public key of the manufacturer server and the user request information sent by the manufacturer server, the wechat bank obtains the corresponding user sensitive information according to the user request information sent by the manufacturer server. The sensitive information may include: information that may threaten the account security or property security of the user after being lost, such as one or more of user ID information, user avatar information, user name information, or user geographical location information. The WeChat bank reads the content of the user request information according to the user request information sent by the manufacturer server through the TCP connection, and acquires corresponding user sensitive information in a WeChat bank background.
FIG. 2 is a flowchart illustrating an embodiment of a method for a trusted bank to communicate information with a vendor server according to the present invention. As shown in fig. 2, in the method for the wechat bank to transmit information with the manufacturer server, the wechat bank obtains corresponding user sensitive information according to the user request information sent by the manufacturer server, and the method may include:
step 201, the wechat bank obtains corresponding user sensitive information according to user request information and a request query table sent by a manufacturer server, wherein the request query table stores the corresponding relation between the user request information and the user sensitive information.
As can be seen from the flow shown in fig. 2, in the method for transmitting information between the wechat bank and the manufacturer server according to the embodiment of the present invention, the corresponding user sensitive information is obtained through the user request information and the request lookup table, and then encryption and signing are performed, so that in the access process between the wechat bank and the manufacturer server, the wechat bank does not need to access the secret key of each manufacturer server, and the wechat bank can quickly access a plurality of manufacturer servers in a safe scenario.
In one embodiment, the wechat bank obtains the corresponding user sensitive information according to the user request information sent by the manufacturer server and a request lookup table, where the request lookup table stores a corresponding relationship between the user request information and the user sensitive information, and may be: the wechat bank is preset with a request lookup table, in which a one-to-one correspondence relationship between user request information and user sensitive information is stored, for example, each request information in the request lookup table has unique user sensitive information corresponding thereto, for example, when the user request information is user ID information, the corresponding user sensitive information is obtained from the request lookup table as the user ID information.
In order to improve the accuracy of information transmission between the wechat bank and the manufacturer server, in an embodiment, the wechat bank obtains corresponding user sensitive information according to user request information and a request lookup table sent by the manufacturer server, including: when a user request information instruction sent by a manufacturer server indicates to acquire user ID information, a WeChat bank acquires corresponding user ID information from a request query table; when the user request information sent by the manufacturer server indicates to acquire the user head portrait information, the WeChat bank acquires the corresponding user head portrait information from the request query table; when a user request information instruction sent by a manufacturer server indicates to acquire user name information, a WeChat bank acquires corresponding user name information from a request query table; and when the user request information sent by the manufacturer server indicates to acquire the user geographical position information, the WeChat bank acquires the corresponding user geographical position information from the request query table.
In one embodiment, after the wechat bank obtains the corresponding user sensitive information according to the user request information sent by the manufacturer server, the wechat bank encrypts the user sensitive information through the public key of the manufacturer server to generate ciphertext information. For example, a wechat bank encrypts user sensitive information through a manufacturer server public key by using a public key encryption algorithm, and the encrypted user sensitive information is ciphertext information, for example, the wechat bank encrypts the user sensitive information through the manufacturer server public key by using an RSA algorithm to generate the ciphertext information from the plaintext user sensitive information, wherein the RSA algorithm is a common asymmetric encryption algorithm proposed by Rivest, Shamir and Adleman, and can be used for data encryption and digital signature. .
In one embodiment, after the WeChat bank encrypts the user sensitive information through the public key of the manufacturer server to generate ciphertext information, the WeChat bank signs the ciphertext information through the private key of the WeChat bank to obtain signed ciphertext information. The signature is a section of digital string which is generated by a sender's WeChat bank of the information by using a private key of the WeChat bank and an encryption algorithm and cannot be forged, and the section of digital string is also a valid proof for the authenticity of the information sent by the sender's WeChat bank of the information. For example, the wechat bank signs the ciphertext information by using a DSA (Digital Signature Algorithm) through a private key of the wechat bank, and obtains the ciphertext information with the Signature, that is, the Signature ciphertext information.
In one embodiment, after the wechat bank signs the ciphertext information through the wechat bank private key to obtain the signature ciphertext information, the wechat bank sends the signature ciphertext information to the manufacturer server. For example, the wechat bank sends the signature ciphertext information to the vendor server via the connection channel, and for example, the wechat bank sends the signature ciphertext information to the vendor server via a TCP connection.
FIG. 3 is a flowchart illustrating another method for a WeChat bank to communicate information with a vendor server according to an embodiment of the present invention. As shown in fig. 3, the method for the wechat bank to transmit information with the manufacturer server may include:
step 301, a manufacturer server sends user request information to a WeChat bank;
step 302, a manufacturer server acquires signature ciphertext information and a WeChat bank public key which are provided by a WeChat bank, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information acquired by the WeChat bank according to user request information by using the manufacturer server public key and signing by using a WeChat bank private key;
step 303, the manufacturer server checks the signature of the signature ciphertext information provided by the wechat bank through the wechat bank public key to obtain ciphertext information;
and step 304, the manufacturer server decrypts the ciphertext information through a manufacturer server private key to obtain user sensitive information.
In one embodiment, the vendor server sends the user request information to the wechat bank, which may be: after the manufacturer server establishes a connection channel with the wechat bank, the manufacturer server generates user request information and sends the user request information to the wechat bank through the connection channel.
In one embodiment, after the manufacturer server sends the user request information to the wechat bank, the manufacturer server obtains signature ciphertext information and a wechat bank public key provided by the wechat bank, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information obtained according to the user request information by the wechat bank through the manufacturer server public key and signing through the wechat bank private key. For example, a manufacturer server acquires signature ciphertext information and a wechat bank public key provided by a wechat bank through TCP connection, wherein the signature ciphertext information is obtained by the wechat bank through the manufacturer server public key, user sensitive information is encrypted by utilizing an RSA algorithm, the user sensitive information in a plaintext is converted into ciphertext information, then the ciphertext information is signed through a wechat bank private key by adopting a DSA algorithm, and finally the ciphertext information with the signature is obtained as signature ciphertext information.
In one embodiment, after the manufacturer server obtains the signature ciphertext information and the wechat bank public key provided by the wechat bank, the manufacturer server checks the signature of the signature ciphertext information provided by the wechat bank through the wechat bank public key to obtain the ciphertext information. For example, the manufacturer server decrypts, i.e., checks, the signature ciphertext information provided by the wechat bank through the wechat bank public key by using an algorithm used when the wechat bank signs, and after the check, proves the signature ciphertext information sent by the wechat bank to obtain ciphertext information.
In one embodiment, after the manufacturer server checks the signature of the signature ciphertext information provided by the wechat bank through the wechat bank public key to obtain the ciphertext information, the manufacturer server decrypts the ciphertext information through the manufacturer server private key to obtain the user sensitive information. For example, the manufacturer server decrypts the ciphertext information by using the private key of the manufacturer server and an algorithm used when encrypting by the wechat bank to obtain the user sensitive information transmitted by the wechat bank, for example, the wechat bank encrypts the user sensitive information by using an RSA algorithm to obtain the ciphertext information, and the manufacturer server decrypts the ciphertext information by using the private key of the manufacturer server and the RSA algorithm, and successfully decrypts the ciphertext information to obtain the user sensitive information.
In order to improve the accuracy of information transmission between the WeChat bank and the manufacturer server, in one embodiment, when the user request information sent by the manufacturer server indicates to acquire user ID information, the user sensitive information is the user ID information; when user request information sent by a manufacturer server indicates that user head portrait information is obtained, user sensitive information is the user head portrait information; when user request information sent by a manufacturer server indicates that user name information is acquired, user sensitive information is the user name information; and when the user request information sent by the manufacturer server indicates that the user geographical position information is obtained, the user sensitive information is the user geographical position information.
The embodiment of the invention also provides a wechat bank, which is described in the following embodiment. Because the principle of solving the problems of the wechat bank is similar to the method for the wechat bank and the manufacturer server to transmit the information, the implementation of the wechat bank can refer to the implementation of the method for the wechat bank and the manufacturer server to transmit the information, and repeated parts are not described again.
Fig. 4 is a schematic structural diagram of a wechat bank in an embodiment of the present invention. As shown in fig. 4, the wechat bank in the embodiment of the present invention may include:
an information obtaining module 401, configured to obtain a public key of a vendor server and user request information sent by the vendor server;
an information query module 402, configured to obtain corresponding user sensitive information according to user request information sent by a vendor server;
the encryption module 403 is configured to encrypt the user sensitive information through the public key of the vendor server to generate ciphertext information;
the signature module 404 is configured to sign the ciphertext information through a private key of the wechat bank to obtain signed ciphertext information;
and a sending module 405, configured to send the signature ciphertext information to the vendor server.
In one embodiment, information querying module 402 is specifically configured to: and acquiring corresponding user sensitive information according to user request information and a request query table sent by the manufacturer server, wherein the request query table stores the corresponding relation between the user request information and the user sensitive information.
In one embodiment, information querying module 402 is specifically configured to: when the user request information sent by the manufacturer server indicates to acquire the user ID information, acquiring the corresponding user ID information from the request lookup table; when the user request information sent by the manufacturer server indicates to acquire user head portrait information, acquiring corresponding user head portrait information from the request query table; when the user request information sent by the manufacturer server indicates to acquire the user name information, acquiring the corresponding user name information from the request query table; and when the user request information sent by the manufacturer server indicates to acquire the user geographical position information, acquiring the corresponding user geographical position information from the request lookup table.
The embodiment of the invention also provides a manufacturer server, which is described in the following embodiment. Because the principle of the manufacturer server for solving the problems is similar to the method for the WeChat bank and the manufacturer server to transmit the information, the implementation of the manufacturer server can refer to the implementation of the method for the WeChat bank and the manufacturer server to transmit the information, and repeated parts are not described again.
FIG. 5 is a diagram illustrating a structure of a vendor server according to an embodiment of the present invention. As shown in fig. 5, the vendor server in the embodiment of the present invention may include:
a sending request module 501, configured to send user request information to a wechat bank;
the information receiving module 502 is used for acquiring signature ciphertext information and a wechat bank public key, wherein the signature ciphertext information is acquired by encrypting corresponding user sensitive information acquired by a wechat bank according to user request information by using a manufacturer server public key and signing by using a wechat bank private key;
the signature verification module 503 is configured to verify the signature of the signature ciphertext information provided by the wechat bank through the wechat bank public key to obtain ciphertext information;
and the decryption module 504 is configured to decrypt the ciphertext information through the vendor server private key to obtain the user sensitive information.
In one embodiment, when user request information sent by a manufacturer server indicates to acquire user ID information, user sensitive information is the user ID information; when user request information sent by a manufacturer server indicates that user head portrait information is obtained, user sensitive information is the user head portrait information; when user request information sent by a manufacturer server indicates that user name information is acquired, user sensitive information is the user name information; and when the user request information sent by the manufacturer server indicates that the user geographical position information is obtained, the user sensitive information is the user geographical position information.
The embodiment of the invention also provides computer equipment which comprises a memory, a processor and a computer program which is stored on the memory and can run on the processor, wherein the processor realizes the method for transmitting information between the wechat bank and the manufacturer server when executing the computer program.
An embodiment of the present invention further provides a computer-readable storage medium, where a computer program for executing the method for transmitting information between the wechat bank and the manufacturer server is stored in the computer-readable storage medium.
In the embodiment of the invention, a WeChat bank acquires a public key of a manufacturer server and user request information sent by the manufacturer server; the WeChat bank acquires corresponding user sensitive information according to user request information sent by a manufacturer server; the WeChat bank encrypts user sensitive information through a manufacturer server public key to generate ciphertext information; the WeChat bank signs the ciphertext information through a WeChat bank private key to obtain signed ciphertext information; the WeChat bank sends the signature ciphertext information to a manufacturer server; compared with the technical scheme that the access of the WeChat bank and the manufacturer server in the prior art adopts symmetric encryption, the WeChat bank does not need to access the secret key of each manufacturer server respectively in the access process of the WeChat bank and the manufacturer server, and can realize the quick access of the WeChat bank to a plurality of manufacturer servers under the safe situation.
In the embodiment of the invention, a manufacturer server sends user request information to a WeChat bank; the method comprises the steps that a manufacturer server obtains signature ciphertext information and a WeChat bank public key, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information obtained according to user request information by the WeChat bank through the manufacturer server public key and signing through a WeChat bank private key; the manufacturer server checks the signature of the signature ciphertext information provided by the WeChat bank through the WeChat bank public key to obtain ciphertext information; the manufacturer server decrypts the ciphertext information through a manufacturer server private key to obtain user sensitive information; compared with the technical scheme that the access of the WeChat bank and the manufacturer server in the prior art adopts symmetric encryption, the WeChat bank does not need to access the secret key of each manufacturer server respectively in the access process of the WeChat bank and the manufacturer server, and can realize the quick access of the WeChat bank to a plurality of manufacturer servers under the safe situation.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The above-mentioned embodiments are intended to illustrate the objects, technical solutions and advantages of the present invention in further detail, and it should be understood that the above-mentioned embodiments are only exemplary embodiments of the present invention, and are not intended to limit the scope of the present invention, and any modifications, equivalent substitutions, improvements and the like made within the spirit and principle of the present invention should be included in the scope of the present invention.

Claims (12)

1. A method for transmitting information between a WeChat bank and a manufacturer server is characterized by comprising the following steps:
the WeChat bank acquires a public key of a manufacturer server and user request information sent by the manufacturer server;
the WeChat bank acquires corresponding user sensitive information according to user request information sent by a manufacturer server;
the WeChat bank encrypts user sensitive information through a manufacturer server public key to generate ciphertext information;
the WeChat bank signs the ciphertext information through a WeChat bank private key to obtain signed ciphertext information;
the WeChat bank sends the signature ciphertext information to the manufacturer server.
2. The method of claim 1, wherein the wechat bank obtains corresponding user sensitive information according to user request information sent by a vendor server, comprising:
the WeChat bank obtains corresponding user sensitive information according to user request information and a request query table sent by a manufacturer server, wherein the request query table stores the corresponding relation between the user request information and the user sensitive information.
3. The method of claim 2, wherein the wechat bank obtains the corresponding user sensitive information according to the user request information and the request lookup table sent by the vendor server, comprising:
when a user request information instruction sent by a manufacturer server indicates to acquire user ID information, a WeChat bank acquires corresponding user ID information from a request query table;
when the user request information sent by the manufacturer server indicates to acquire the user head portrait information, the WeChat bank acquires the corresponding user head portrait information from the request query table;
when a user request information instruction sent by a manufacturer server indicates to acquire user name information, a WeChat bank acquires corresponding user name information from a request query table;
and when the user request information sent by the manufacturer server indicates to acquire the user geographical position information, the WeChat bank acquires the corresponding user geographical position information from the request query table.
4. A method for transmitting information between a WeChat bank and a manufacturer server is characterized by comprising the following steps:
the manufacturer server sends user request information to the WeChat bank;
the method comprises the steps that a manufacturer server obtains signature ciphertext information and a WeChat bank public key, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information obtained according to user request information by the WeChat bank through the manufacturer server public key and signing through a WeChat bank private key;
the manufacturer server checks the signature of the signature ciphertext information provided by the WeChat bank through the WeChat bank public key to obtain ciphertext information;
and the manufacturer server decrypts the ciphertext information through a manufacturer server private key to obtain user sensitive information.
5. The method of claim 4, wherein:
when user request information sent by a manufacturer server indicates that user ID information is acquired, user sensitive information is the user ID information;
when user request information sent by a manufacturer server indicates that user head portrait information is obtained, user sensitive information is the user head portrait information;
when user request information sent by a manufacturer server indicates that user name information is acquired, user sensitive information is the user name information;
and when the user request information sent by the manufacturer server indicates that the user geographical position information is obtained, the user sensitive information is the user geographical position information.
6. A wechat bank, comprising:
the information acquisition module is used for acquiring a public key of a manufacturer server and user request information sent by the manufacturer server;
the information query module is used for acquiring corresponding user sensitive information according to user request information sent by the manufacturer server;
the encryption module is used for encrypting the user sensitive information through the public key of the manufacturer server to generate ciphertext information;
the signature module is used for signing the ciphertext information through a private key of the WeChat bank to obtain signed ciphertext information;
and the sending module is used for sending the signature ciphertext information to the manufacturer server.
7. The wechat bank of claim 6, wherein the information query module is specifically configured to:
and acquiring corresponding user sensitive information according to user request information and a request query table sent by the manufacturer server, wherein the request query table stores the corresponding relation between the user request information and the user sensitive information.
8. The wechat bank of claim 7, wherein the information query module is specifically configured to:
when the user request information sent by the manufacturer server indicates to acquire the user ID information, acquiring the corresponding user ID information from the request lookup table;
when the user request information sent by the manufacturer server indicates to acquire user head portrait information, acquiring corresponding user head portrait information from the request query table;
when the user request information sent by the manufacturer server indicates to acquire the user name information, acquiring the corresponding user name information from the request query table;
and when the user request information sent by the manufacturer server indicates to acquire the user geographical position information, acquiring the corresponding user geographical position information from the request lookup table.
9. A vendor server, comprising:
the sending request module is used for sending user request information to the WeChat bank;
the information receiving module is used for acquiring signature ciphertext information and a WeChat bank public key which are provided by a WeChat bank, wherein the signature ciphertext information is obtained by encrypting corresponding user sensitive information acquired by the WeChat bank according to user request information by using a manufacturer server public key and signing by using a WeChat bank private key;
the signature verification module is used for verifying the signature of the signature ciphertext information provided by the wechat bank through the wechat bank public key to obtain ciphertext information;
and the decryption module is used for decrypting the ciphertext information through the private key of the manufacturer server to obtain the user sensitive information.
10. The vendor server of claim 9, wherein:
when user request information sent by a manufacturer server indicates that user ID information is acquired, user sensitive information is the user ID information;
when user request information sent by a manufacturer server indicates that user head portrait information is obtained, user sensitive information is the user head portrait information;
when user request information sent by a manufacturer server indicates that user name information is acquired, user sensitive information is the user name information;
and when the user request information sent by the manufacturer server indicates that the user geographical position information is obtained, the user sensitive information is the user geographical position information.
11. A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the method of any one of claims 1 to 5 when executing the computer program.
12. A computer-readable storage medium, characterized in that the computer-readable storage medium stores a computer program for executing the method of any one of claims 1 to 5.
CN202110849733.2A 2021-07-27 2021-07-27 Method and device for transmitting information between WeChat bank and manufacturer server Pending CN113486381A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110849733.2A CN113486381A (en) 2021-07-27 2021-07-27 Method and device for transmitting information between WeChat bank and manufacturer server

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110849733.2A CN113486381A (en) 2021-07-27 2021-07-27 Method and device for transmitting information between WeChat bank and manufacturer server

Publications (1)

Publication Number Publication Date
CN113486381A true CN113486381A (en) 2021-10-08

Family

ID=77943853

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110849733.2A Pending CN113486381A (en) 2021-07-27 2021-07-27 Method and device for transmitting information between WeChat bank and manufacturer server

Country Status (1)

Country Link
CN (1) CN113486381A (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103095456A (en) * 2013-01-10 2013-05-08 天地融科技股份有限公司 Method and system for processing transaction messages
CN111275440A (en) * 2020-01-19 2020-06-12 中钞科堡现金处理技术(北京)有限公司 Remote secret key downloading method and system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103095456A (en) * 2013-01-10 2013-05-08 天地融科技股份有限公司 Method and system for processing transaction messages
CN111275440A (en) * 2020-01-19 2020-06-12 中钞科堡现金处理技术(北京)有限公司 Remote secret key downloading method and system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
尼恩: "《Java高并发核心编程 NIO Netty Redis ZooKeeper 卷1》", 机械工业出版社, pages: 356 *

Similar Documents

Publication Publication Date Title
US11323276B2 (en) Mutual authentication of confidential communication
US11108565B2 (en) Secure communications providing forward secrecy
US10785019B2 (en) Data transmission method and apparatus
US10015159B2 (en) Terminal authentication system, server device, and terminal authentication method
CN107317677B (en) Secret key storage and equipment identity authentication method and device
US8422673B2 (en) Method and system for protecting against unity keys
JP6167990B2 (en) Signature verification system, verification device, and signature verification method
CN110740038B (en) Blockchain and communication method, gateway, communication system and storage medium thereof
JP2013207376A (en) Information processing device and program
CN112351037A (en) Information processing method and device for secure communication
JP2020532177A (en) Computer-implemented systems and methods for advanced data security, high-speed encryption, and transmission
CN115150821A (en) Offline package transmission and storage method and device
CN115549910B (en) Data transmission method, equipment and storage medium
KR102523416B1 (en) Security Device providing Security function for image, Camera Device having the same and System on Chip controlling Camera Device
US11570008B2 (en) Pseudonym credential configuration method and apparatus
CN114285557A (en) Communication encryption method, system and device
CN113486381A (en) Method and device for transmitting information between WeChat bank and manufacturer server
KR20170087120A (en) Certificateless public key encryption system and receiving terminal
CN111431846A (en) Data transmission method, device and system
CN117811730B (en) National secret key negotiation method, device, computing equipment and readable storage medium
CN117318954A (en) Device certificate generation method, digital content presentation method and related devices
CN114240428A (en) Data transmission method and device, data transaction terminal and data supplier
CN116248270A (en) Plaintext encryption method, plaintext encryption device, electronic equipment and storage medium
CN117811730A (en) National secret key negotiation method, device, computing equipment and readable storage medium
CN115913588A (en) Method and device for decrypting encrypted data, electronic equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination