CN115049399A - Business processing method, device, storage medium and program product - Google Patents
Business processing method, device, storage medium and program product Download PDFInfo
- Publication number
- CN115049399A CN115049399A CN202210675955.1A CN202210675955A CN115049399A CN 115049399 A CN115049399 A CN 115049399A CN 202210675955 A CN202210675955 A CN 202210675955A CN 115049399 A CN115049399 A CN 115049399A
- Authority
- CN
- China
- Prior art keywords
- user
- target channel
- target
- channel
- equipment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3821—Electronic credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/04—Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange
Abstract
The application provides a business processing method, equipment, a storage medium and a program product, which relate to the technical field of data processing, and are characterized in that a target counter business processing request submitted by a user through equipment of a target channel is received; if the electronic certificate information of the user is needed to be used by the target counter service and is pre-recorded by the user, sending a user right confirmation request to equipment of a target channel; and receiving and verifying the user right confirmation authentication information collected by the equipment of the target channel, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to conduct target counter business handling. Through typeeing electronic certificate information in advance and transacting counter business based on electronic certificate information, the user need not to carry and use the entity certificate, promotes efficiency and convenience are transacted to the business, promotes user experience, makes the user can control own electronic certificate information through the process of confirming the right in addition, improves electronic certificate information security, avoids information leakage.
Description
Technical Field
The present application relates to the field of data processing technologies, and in particular, to a service processing method, device, storage medium, and program product.
Background
In the fields of banking, insurance and the like, counter business refers to various businesses, such as financial services and the like, provided for users by counter staff in business outlets.
When a user transacts counter business in a business outlet, the counter staff is usually required to be authenticated based on physical media, such as identity documents, bank cards and the like. If the user does not carry the identity document, the bank card and the like, the counter business can not be handled, which brings inconvenience to the user; in addition, with the popularization of intelligent devices and the rapid development of mobile internet, the behavior habits of users are greatly changed, and more users prefer digital service experience.
Disclosure of Invention
The application provides a service processing method, equipment, a storage medium and a program product, which are used for avoiding handling counter services by using a physical medium.
In a first aspect, the present application provides a service processing method, including:
receiving a target counter business transaction request submitted by a user through equipment of a target channel;
judging whether the target counter business needs to use the electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance or not;
if the target counter service is determined to need to use the electronic certificate information of the user and the user has previously input the electronic certificate information, sending a user right confirmation request to equipment of the target channel;
and receiving user right confirmation authentication information acquired by the equipment of the target channel, verifying the user right confirmation authentication information, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to perform target counter business handling.
Optionally, the sending the user right confirmation request to the device of the target channel includes:
sending a right confirming mode selection request to the equipment of the target channel;
acquiring a determination instruction of a target right determining mode input by a user through equipment of the target channel, and sending a user right determining authentication information acquisition instruction corresponding to the target right determining mode to the equipment of the target channel so as to enable the equipment of the target channel to acquire the user right determining authentication information.
Optionally, after obtaining the instruction for determining the target right determining mode input by the user through the device of the target channel, the method further includes:
and generating a confirmation code corresponding to the current user right confirmation, and sending the confirmation code to the equipment of the target channel, so that the equipment of the target channel uploads the collected user right confirmation authentication information carrying the confirmation code for verification.
Optionally, the method further includes:
generating an authorization batch number of the user authorization request, and sending the authorization batch number to the equipment of the target channel;
after the verification passing information is sent to the equipment of the target channel, the relevant information of the target counter service sent by the equipment of the target channel is received and stored, and the relevant information of the target counter service comprises one or more of the following items:
the authority confirming batch number, the confirmation code, the channel identification of the target channel, the service list and the related time information.
Optionally, the method further includes:
tracking and inquiring according to the stored related information of the target counter service so as to judge whether the electronic certificate information of the user is leaked;
and if the electronic certificate information of the user is determined to be leaked, adding the corresponding target channel into the authorization-forbidden channel list.
Optionally, the sending a user right confirmation request to the device of the target channel includes:
judging whether the target channel is included in an authorized channel list corresponding to a user and/or whether the target channel is included in a forbidden authorized channel list;
and if the target channel is determined to be included in the authorized channel list corresponding to the user and/or the target channel is not included in the forbidden authorization channel list, sending a user right confirmation request to equipment of the target channel.
Optionally, before determining whether the target channel is included in the authorized channel list corresponding to the user, the method further includes:
receiving a channel authorization request sent by a user through equipment of a target channel;
acquiring relevant information of the target channel, and performing channel verification according to the relevant information of the target channel, wherein the channel verification comprises at least one of the following items: verifying the affiliation mechanism of the target channel, judging whether the business of the target channel needs to use electronic certificate information or not, and verifying the service encapsulation capacity of the target channel;
and adding the target channel into an authorized channel list corresponding to the user after the verification is passed.
Optionally, the method further includes:
if the user is determined not to input the electronic certificate information in advance, or if a request of inputting the electronic certificate information by the user is received, receiving the electronic certificate information input by the user through equipment of the target channel and preset right-confirming authentication information, wherein the preset right-confirming authentication information comprises a user password and/or biological characteristic information;
and performing associated storage on the electronic certificate information of the user and the preset authority-confirming authentication information.
Optionally, the verifying the user right confirmation authentication information includes:
and comparing the user right confirmation authentication information with preset right confirmation authentication information, and if the user right confirmation authentication information is consistent with the preset right confirmation authentication information, determining that the verification is passed.
In a second aspect, the present application provides a service processing device, including:
the communication unit is used for receiving a target counter business transaction request submitted by a user through equipment of a target channel;
the judging unit is used for judging whether the target counter business needs to use the electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance or not;
the request unit is used for sending a user right confirmation request to the equipment of the target channel if the electronic certificate information of the user is required to be used by the target counter service and is pre-input by the user;
and the verification unit is used for receiving the user right confirmation authentication information acquired by the equipment of the target channel, verifying the user right confirmation authentication information, and sending verification passing information to the equipment of the target channel after the verification passes so as to enable the equipment of the target channel to perform target counter business handling.
Optionally, when the request unit sends a user right confirmation request to the device of the target channel, the request unit is configured to:
sending a right confirming mode selection request to the equipment of the target channel;
acquiring a determination instruction of a target right determining mode input by a user through equipment of the target channel, and sending a user right determining authentication information acquisition instruction corresponding to the target right determining mode to the equipment of the target channel so as to enable the equipment of the target channel to acquire the user right determining authentication information.
Optionally, after acquiring a determination instruction of a target right determination manner input by a user through the device of the target channel, the request unit is further configured to:
and generating a confirmation code corresponding to the current user right confirmation, and sending the confirmation code to the equipment of the target channel, so that the equipment of the target channel uploads the collected user right confirmation authentication information carrying the confirmation code for verification.
Optionally, the request unit is further configured to:
generating an authorization batch number of the user authorization request, and sending the authorization batch number to the equipment of the target channel;
the communication unit is further configured to receive and store relevant information of the target counter service sent by the device in the target channel after sending the verification passing information to the device in the target channel, where the relevant information of the target counter service includes one or more of the following:
the authority confirming batch number, the confirmation code, the channel identification of the target channel, the service list and the related time information.
Optionally, the apparatus further comprises a tracking unit, configured to:
tracking and inquiring according to the stored relevant information of the target counter service so as to judge whether the electronic certificate information of the user is leaked;
and if the electronic certificate information of the user is determined to be leaked, adding the corresponding target channel into the forbidden authorization channel list.
Optionally, the determining unit is further configured to determine whether the target channel is included in an authorized channel list corresponding to the user and/or whether the target channel is included in an authorized channel list prohibited from being authorized;
the request unit is further configured to send a user authorization request to a device of the target channel if it is determined that the target channel is included in an authorized channel list corresponding to the user and/or the target channel is not included in an authorized channel forbidden list.
Optionally, the communication unit is further configured to receive a channel authorization request sent by a user through a device of a target channel before determining whether the target channel is included in an authorized channel list corresponding to the user;
the verification unit is further configured to acquire relevant information of the target channel, and perform channel verification according to the relevant information of the target channel, where the channel verification includes at least one of: verifying the affiliation mechanism of the target channel, judging whether the business of the target channel needs to use electronic certificate information or not, and verifying the service encapsulation capacity of the target channel; and adding the target channel into an authorized channel list corresponding to the user after the verification is passed.
Optionally, the apparatus further includes an entry unit, configured to:
if the user is determined not to input the electronic certificate information in advance, or if a request of inputting the electronic certificate information by the user is received, receiving the electronic certificate information input by the user through equipment of the target channel and preset right-confirming authentication information, wherein the preset right-confirming authentication information comprises a user password and/or biological characteristic information;
and performing associated storage on the electronic certificate information of the user and the preset authority-confirming authentication information.
Optionally, when the verification unit verifies the user right confirmation authentication information, the verification unit is configured to:
and comparing the user right confirmation authentication information with preset right confirmation authentication information, and if the user right confirmation authentication information is consistent with the preset right confirmation authentication information, determining that the verification is passed.
In a third aspect, the present application provides an electronic device, comprising: a processor, and a memory communicatively coupled to the processor; the memory stores computer-executable instructions;
the processor executes computer-executable instructions stored by the memory to implement the method of the first aspect.
In a fourth aspect, the present application provides a computer-readable storage medium having stored thereon computer-executable instructions for implementing the method according to the first aspect when executed by a processor.
In a fifth aspect, the present application provides a computer program product comprising a computer program which, when executed by a processor, implements the method according to the first aspect.
The business processing method, the equipment, the storage medium and the program product provided by the application receive a target counter business processing request submitted by a user through equipment of a target channel; judging whether the target counter business needs to use the electronic certificate information of the user or not, and whether the user inputs the electronic certificate information in advance or not; if the target counter business needs to use the electronic certificate information of the user and the user inputs the electronic certificate information in advance, sending a user right confirmation request to equipment of a target channel; and receiving user right confirming authentication information collected by the equipment of the target channel, verifying the user right confirming authentication information, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to carry out target counter business handling. Through typeeing electronic certificate information in advance and handling counter business based on the electronic certificate information of typeeing in advance for the user need not to carry and use the entity certificate when handling counter business, promotes efficiency and convenience are handled to the business, promotes user experience, makes the user can control own electronic certificate information through the process of confirming the right in addition, improves the security of electronic certificate information, avoids information leakage.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the present application and together with the description, serve to explain the principles of the application.
Fig. 1 is a schematic view of an application scenario of a service processing method according to an embodiment of the present application;
fig. 2 is a flowchart of a service processing method according to an embodiment of the present application;
fig. 3 is a flowchart of a service processing method according to another embodiment of the present application;
fig. 4 is a flowchart of a service processing method according to another embodiment of the present application;
fig. 5 is a flowchart of a service processing method according to another embodiment of the present application;
fig. 6 is a flowchart of a service processing method according to another embodiment of the present application;
fig. 7 is a structural diagram of a service processing device according to an embodiment of the present application;
fig. 8 is a block diagram of an electronic device according to an embodiment of the present application.
With the above figures, there are shown specific embodiments of the present application, which will be described in more detail below. These drawings and written description are not intended to limit the scope of the inventive concepts in any manner, but rather to illustrate the inventive concepts to those skilled in the art by reference to specific embodiments.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present application. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the present application, as detailed in the appended claims.
In the fields of banking, insurance and the like, counter business refers to various businesses, such as financial services and the like, provided for users by counter staff in business outlets.
When a user transacts counter business in a business outlet, the counter staff is usually required to be authenticated based on physical media, such as identity documents, bank cards and the like. If the user does not carry the identity document, the bank card and the like, the counter business can not be handled, which brings inconvenience to the user; in addition, with the popularization of intelligent devices and the rapid development of mobile internet, the behavior habits of users are greatly changed, and more users prefer digital service experience.
In order to solve the technical problem, an embodiment of the present application provides a service processing method, which does not use an entity certificate, but uses an electronic certificate, and transacts a counter service by pre-inputting electronic certificate information and based on the pre-inputted electronic certificate information, so that a user does not need to carry and use the entity certificate when transacting the counter service, thereby improving service transaction efficiency and convenience, satisfying the user's requirement for digital services, and improving user experience.
Specifically, a target counter business handling request submitted by a user through equipment of a target channel can be received; judging whether the target counter business needs to use the electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance or not; if the target counter business needs to use the electronic certificate information of the user and the user inputs the electronic certificate information in advance, sending a user right confirmation request to equipment of a target channel; and receiving user right confirming authentication information collected by the equipment of the target channel, verifying the user right confirming authentication information, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to carry out target counter business handling.
The service processing method is suitable for the application scene shown in fig. 1, and comprises equipment 101 of a network counter target channel and a management system server 102, wherein a user can submit a target counter service transaction request to the management system server 102 through the equipment 101 of the target channel; the management system server 102 can judge whether the target counter service needs to use the electronic certificate information of the user and whether the user inputs the electronic certificate information in advance; if the management system server 102 determines that the target counter service needs to use the electronic certificate information of the user and the user has previously entered the electronic certificate information, a user right confirmation request is sent to the device 101 of the target channel; the user can input user right confirming authentication information through the equipment 101 of the target channel, the equipment 101 of the target channel sends the user right confirming authentication information to the management system server 102, the management system server 102 verifies the user right confirming authentication information, and after the verification is passed, the verification passing information is sent to the equipment 101 of the target channel, so that the equipment 101 of the target channel can conduct target counter business handling.
The following describes the technical solutions of the present application and how to solve the above technical problems with specific embodiments. The following several specific embodiments may be combined with each other, and details of the same or similar concepts or processes may not be repeated in some embodiments. Embodiments of the present application will be described below with reference to the accompanying drawings.
Fig. 2 is a flowchart of a service processing method provided in the embodiment of the present application. The embodiment provides a service processing method, an execution subject of which is an electronic device such as a management system server, and the service processing method specifically includes the following steps:
s201, receiving a target counter business transaction request submitted by a user through equipment of a target channel.
In this embodiment, the target channel of the counter of the website can include, but is not limited to, a counter, a teller machine, a mobile banking machine, an internet banking machine, or other channels for handling counter business. The user can submit a transaction request of the target counter service through related equipment of a target channel, for example, the related equipment corresponding to the counter can be a computer of a teller, the user can communicate with the teller of the counter to submit the target counter service transaction request through the computer operated by the teller, and the user can automatically operate a terminal device such as a teller machine or a mobile phone to submit the target counter service transaction request. The specific target counter service is not limited in this embodiment.
S202, judging whether the target counter service needs to use the electronic certificate information of the user or not, and whether the user inputs the electronic certificate information in advance or not.
In this embodiment, in order to implement a media-free counter business transaction, a user needs to enter electronic certificate information in advance, including but not limited to three-factor information, a unique number of the user, front and back photos of an entity certificate, and main information extracted from the entity certificate.
After receiving a target counter business transaction request submitted by a user through equipment of a target channel, judging whether the target counter business needs to use electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance, wherein the judgment of whether the target counter business needs to use the electronic certificate information of the user or not is carried out by considering that some counter businesses do not support the electronic certificate information, for example, some counter businesses do not need the certificate information of the user (no matter electronic or entity certificates) at all or some counter businesses only support entity certificate transaction, so that the subsequent process is not needed; for the target counter service which needs to use the electronic certificate information of the user, whether the user inputs the electronic certificate information in advance needs to be judged, if the user does not input the electronic certificate information in advance, the user can be prompted to input the electronic certificate information, or the entity certificate is adopted to handle the counter service.
Optionally, if it is determined that the user does not enter the electronic certificate information in advance, or if a request for entering the electronic certificate information by the user is received at any time, the user may enter the electronic certificate information through a device of the target channel, and preset right-confirming authentication information, where the preset right-confirming authentication information includes, but is not limited to, a user password and/or biometric information, the biometric information includes, but is not limited to, a fingerprint, a face image, and the like, and the preset right-confirming authentication information is used for checking the user right-confirming process. Further, the electronic certificate information of the user and the preset authority confirming authentication information are stored in the management system server in an associated mode. The input of the electronic certificate information and the preset authority authentication information is the premise of handling the counter service without the medium, and the counter service without the medium can be handled only by inputting the electronic certificate information and the preset authority authentication information by a user, namely the counter service is handled by using the electronic certificate.
S203, if the electronic certificate information of the user is required to be used by the target counter service and is determined to be pre-entered by the user, sending a user right confirmation request to the equipment of the target channel.
In this embodiment, after determining that the target counter service needs to use the electronic certificate information of the user and the user has previously entered the electronic certificate information, the management system server may send a user right confirmation request to the device in the target channel to confirm, by the user, whether the device in the target channel is allowed to handle the target counter service using the electronic certificate information, where the user may select right confirmation or not, and the user does not input the user right confirmation authentication information if not, or selects to cancel the right confirmation.
Optionally, as shown in fig. 3, when sending the user right confirmation request to the device of the target channel, the method may specifically include:
s2031, sending a right confirming mode selecting request to the equipment of the target channel;
s2032, obtaining a target right determining mode determining instruction input by a user through equipment of the target channel;
s2033, sending a user right confirming authentication information collecting instruction corresponding to the target right confirming mode to the equipment of the target channel, so that the equipment of the target channel collects the user right confirming authentication information.
In this embodiment, the manner of user right confirmation may exist in many kinds, including but not limited to verification code, password, fingerprint identification, face identification, etc., a target right confirmation manner may be selected by a user on a device of a target channel, or a default right confirmation manner may be designated as the target right confirmation manner, or a corresponding target right confirmation manner may be selected according to preset right confirmation authentication information entered by the user in advance, for example, if the user only enters a password in advance, password verification may be adopted as the target right confirmation manner.
After the target right confirming mode selected by the user is determined, the management system server can send a user right confirming authentication information acquisition instruction corresponding to the target right confirming mode to the equipment of the target channel, and control the equipment of the target channel to acquire the user right confirming authentication information corresponding to the target right confirming mode; if the target authority confirming mode is password authority confirming, controlling equipment of the target channel to provide a password input interface and inputting a user password; if the target right confirming mode is fingerprint right confirming, controlling equipment of a target channel to collect a user fingerprint through fingerprint scanning equipment; and if the target right determining mode is face right determining, controlling equipment of the target channel to acquire a face image through a camera.
And S204, receiving user right confirming authentication information collected by the equipment of the target channel, verifying the user right confirming authentication information, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to conduct target counter business handling.
In this embodiment, after the user authentication information is collected, the management system server may verify the user authentication information, and only when the verification passes, it can be verified that the user authorizes the user to use the electronic certificate information. Specifically, the collected user authentication information is compared with preset authentication information, and if the collected user authentication information is consistent with the preset authentication information, it is determined that the verification is passed, for example, the collected fingerprint is compared with a prestored fingerprint, and the collected face image is compared with a prestored face image. In addition, if the user right identification information is inconsistent with the user right identification information, the user can be prompted to input the user right identification information again, and collection and verification are carried out.
Optionally, after the obtaining of the instruction for determining the target right determining manner input by the user through the device of the target channel in S2032, the method may further include:
and after the equipment of the target channel collects the user right confirmation information, the collected user right confirmation information can be uploaded with the confirmation code to be checked so as to prove that the user right confirmation authentication information is confirmed by the user.
After the user right-confirming authentication information is verified, verification passing information can be sent to the equipment of the target channel so as to inform the equipment of the target channel that target counter business handling can be carried out. Optionally, the electronic certificate information pre-entered by the user may be extracted and sent to the device in the target channel, so that the device in the target channel may perform target counter business transaction according to the electronic certificate information.
In the technical solutions of the embodiments of the present application, the processes of collecting, storing, using, processing, transmitting, providing, disclosing and the like of the financial data or the user data (including electronic certificate information, user password and/or biometric information and the like) and the like all conform to the regulations of the relevant laws and regulations, and do not violate the customs of the public order.
In the service processing method provided by this embodiment, a target counter service transaction request submitted by a user through equipment of a target channel is received; judging whether the target counter business needs to use the electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance or not; if the target counter business needs to use the electronic certificate information of the user and the user inputs the electronic certificate information in advance, sending a user right confirmation request to equipment of a target channel; and receiving user right confirming authentication information collected by the equipment of the target channel, verifying the user right confirming authentication information, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to carry out target counter business handling. Through typeeing electronic certificate information in advance and handling counter business based on the electronic certificate information of typeeing in advance for the user need not to carry and use the entity certificate when handling counter business, promotes efficiency and convenience are handled to the business, satisfies the user to the demand of digital service, promotes user experience, makes the user can control own electronic certificate information through the process of authorizing certainly in addition, improves the security of electronic certificate information, avoids information leakage.
On the basis of any of the foregoing embodiments, as shown in fig. 4, the sending, to the device of the target channel, the user right confirmation request in S203 may specifically further include:
s301, judging whether the target channel is included in an authorized channel list corresponding to a user and/or whether the target channel is included in a forbidden authorization channel list;
s302, if the target channel is determined to be included in the authorized channel list corresponding to the user and/or the target channel is not included in the forbidden authorization channel list, sending a user right confirmation request to the equipment of the target channel.
In this embodiment, since the target channel may include, but is not limited to, a counter, a teller machine, a mobile banking, an internet banking, or other channels handling counter business, in order to further protect user information and prevent information leakage, an audit of channel admission may be performed, and the admitted channel needs to be matched with a uniform authentication real-time related requirement according to a specified specification. That is, the user may apply for or designate in advance which channels authorized to use the electronic certificate information, add the authorized channels to the authorized channel list corresponding to the user, or add a channel not allowed to use the electronic certificate information or a channel not meeting the specification to the authorization prohibited channel list, where the authorization prohibited channel list may correspond to a certain user or may be shared by all users. Further, before sending the user right confirmation request to the device of the target channel, it is first determined whether the target channel is included in the authorized channel list corresponding to the user and/or whether the target channel is included in the prohibited authorized list, and if it is determined that the target channel is included in the authorized channel list corresponding to the user and/or the target channel is not included in the prohibited authorized channel list, the user right confirmation request may be sent to the device of the target channel.
In the above embodiment, as shown in fig. 5, before determining whether the target channel is included in the authorized channel list corresponding to the user, a specific process of auditing channel admission includes:
s401, receiving a channel authorization request sent by a user through equipment of a target channel;
s402, acquiring the related information of the target channel, and performing channel verification according to the related information of the target channel, wherein the channel verification comprises at least one of the following items: verifying the affiliation mechanism of the target channel, judging whether the business of the target channel needs to use electronic certificate information or not, and verifying the service encapsulation capacity of the target channel;
and S403, adding the target channel into the authorized channel list corresponding to the user after the verification is passed.
In this embodiment, a user may first initiate a channel authorization request through a device of a target channel (or a device of another channel), where the channel authorization request includes a target channel to be authorized, may obtain relevant information of the target channel, and perform a check on the target channel in three dimensions of a channel attribution organization, a channel transaction service, and a channel technical capability:
1) the channel attribution organization is used for verifying whether the business of the channel business is legal and compliant.
2) The channel transaction service is used for verifying the service transaction of the user and whether identity verification is required, and if the channel service does not require medium verification, the authentication flow is not required to be carried out.
3) The technical capability of the channel requires that the channel has certain service encapsulation capability, so that in order to avoid the risk of leakage of customer information, when the channel accesses the unified authentication system to verify the information, the customer information transmitted by the network needs to be encrypted and safe.
And after the verification is finished, adding the target channel into an authorized channel list corresponding to the user after the verification is passed, and adding the target channel which is not passed in the verification into an authorized channel forbidden list. Optionally, a unique authorization code may be generated for the target channel passing the verification, and the authorization code is used as a unique certificate for interaction between the target channel and the management system server, that is, any interactive information or instruction may carry the authorization code, so that the security is improved, and tracking and querying are facilitated. If the target channel is not in compliance or needs to be off-line, a revocation authorization code can be applied.
On the basis of any of the above embodiments, the method may further include:
generating an authorization batch number of the user authorization request, and sending the authorization batch number to the equipment of the target channel; the authorization batch number is used for identifying the authorization request of the user and relevant information.
After the verification passing information is sent to the equipment of the target channel, the relevant information of the target counter service sent by the equipment of the target channel is received and stored, wherein the relevant information of the target counter service includes but is not limited to one or more of the following items: the authority confirming batch number, the confirmation code, the channel identification of the target channel, the service list and the related time information.
In this embodiment, in order to facilitate tracking, a user can conveniently check when and what channel transacts which service, electronic certificate information is used, and the device in the target channel can upload and store the relevant information of the target counter service.
Based on the above embodiments, as shown in fig. 6, the tracking process may specifically include:
s501, tracking and inquiring according to the stored related information of the target counter service so as to judge whether the electronic certificate information of the user is leaked;
and S502, if the electronic certificate information of the user is determined to be leaked, adding the corresponding target channel into the forbidden authorization channel list.
In this embodiment, after the client determines that the target channel uses the electronic certificate information and the related information to perform identity verification and transact the target counter service, the related information of the target counter service is stored, so that which channel the client uses each time and the related service transacted in the channel can be tracked in real time or at any time, the user can be ensured to grasp the use condition of the electronic certificate information at any time and any place, and the client can be satisfied with the control of the client on the information.
If the client finds that the electronic certificate information is leaked, the track tracking function can provide a good clue to assist the user to check one by one, wherein the related information of the target counter service corresponding to each channel can be checked in the checking process until the possible channel of information leakage is found. If a channel is verified to have leaked customer information, the channel is added to the list of prohibited authorized channels.
Fig. 7 is a structural diagram of a service processing device according to an embodiment of the present application. The service processing device provided in this embodiment may execute the processing flow provided in the service processing method embodiment, as shown in fig. 7, the service processing device 700 includes a communication unit 701, a determination unit 702, a request unit 703, and a verification unit 704.
A communication unit 701, configured to receive a target counter service transaction request submitted by a user through a device in a target channel;
a judging unit 702, configured to judge whether the target counter service needs to use the electronic certificate information of the user, and whether the user inputs the electronic certificate information in advance;
a request unit 703, configured to send a user right confirmation request to a device in the target channel if it is determined that the target counter service needs to use the electronic certificate information of the user and the user has previously entered the electronic certificate information;
and the checking unit 704 is used for receiving the user right confirmation authentication information acquired by the equipment of the target channel, checking the user right confirmation authentication information, and sending check passing information to the equipment of the target channel after the user right confirmation authentication information passes the check, so that the equipment of the target channel performs target counter business handling.
In one or more embodiments of the present application, the requesting unit 703, when sending the user right confirmation request to the device of the target channel, is configured to:
sending a right confirming mode selection request to the equipment of the target channel;
acquiring a determination instruction of a target right determining mode input by a user through equipment of the target channel, and sending a user right determining authentication information acquisition instruction corresponding to the target right determining mode to the equipment of the target channel so as to enable the equipment of the target channel to acquire the user right determining authentication information.
In one or more embodiments of the present application, after obtaining the instruction for determining the target authorization manner input by the user through the device of the target channel, the requesting unit 703 is further configured to:
and generating a confirmation code corresponding to the current user right confirmation, and sending the confirmation code to the equipment of the target channel, so that the equipment of the target channel uploads the collected user right confirmation authentication information carrying the confirmation code for verification.
In one or more embodiments of the present application, the requesting unit 703 is further configured to:
generating an authorization batch number of the user authorization request, and sending the authorization batch number to the equipment of the target channel;
the communication unit 701 is further configured to receive and store relevant information of the target counter service sent by the device of the target channel after sending verification passing information to the device of the target channel, where the relevant information of the target counter service includes one or more of the following items:
the authority confirming batch number, the confirmation code, the channel identification of the target channel, the service list and the related time information.
In one or more embodiments of the present application, the apparatus further comprises a tracking unit for:
tracking and inquiring according to the stored related information of the target counter service so as to judge whether the electronic certificate information of the user is leaked;
and if the electronic certificate information of the user is determined to be leaked, adding the corresponding target channel into the forbidden authorization channel list.
In one or more embodiments of the present application, the determining unit 702 is further configured to determine whether the target channel is included in an authorized channel list corresponding to a user and/or whether the target channel is included in a prohibited authorized channel list;
the requesting unit 703 is further configured to send a user right confirmation request to a device of the target channel if it is determined that the target channel is included in an authorized channel list corresponding to the user and/or the target channel is not included in an authorized channel forbidden list.
In one or more embodiments of the present application, the communication unit 701 is further configured to receive a channel authorization request sent by a user through a device of a target channel before determining whether the target channel is included in an authorized channel list corresponding to the user;
the verifying unit 704 is further configured to acquire relevant information of the target channel, and perform channel verification according to the relevant information of the target channel, where the channel verification includes at least one of the following: verifying the affiliation mechanism of the target channel, judging whether the business of the target channel needs to use electronic certificate information or not, and verifying the service encapsulation capacity of the target channel; and adding the target channel into an authorized channel list corresponding to the user after the verification is passed.
In one or more embodiments of the present application, the apparatus further comprises an entry unit configured to:
if the user is determined not to input the electronic certificate information in advance, or if a request of inputting the electronic certificate information by the user is received, receiving the electronic certificate information input by the user through equipment of the target channel and preset right-confirming authentication information, wherein the preset right-confirming authentication information comprises a user password and/or biological characteristic information;
and performing associated storage on the electronic certificate information of the user and the preset authority-confirming authentication information.
In one or more embodiments of the present application, the verifying unit 704, when verifying the user right confirmation authentication information, is configured to:
and comparing the user right confirmation authentication information with preset right confirmation authentication information, and if the user right confirmation authentication information is consistent with the preset right confirmation authentication information, determining that the verification is passed.
The service processing device provided in this embodiment may execute the processing flow provided in the foregoing method embodiment, and the principle and technical effect thereof are not described herein again.
Fig. 8 is a schematic structural diagram of an electronic device according to an embodiment of the present application. The electronic device provided in the embodiment of the present application may execute the processing flow provided in the embodiment of the service processing method, as shown in fig. 8, the electronic device 80 includes a memory 81, a processor 82, and a computer program; wherein a computer program is stored in the memory 81 and is configured to be executed by the processor 82 for performing the service processing method described in the above embodiments. Furthermore, the electronic device 80 may also have a communication interface 83 for transmitting control commands and/or data.
The electronic device in the embodiment shown in fig. 8 may be configured to execute the technical solution of the foregoing service processing method embodiment, and the implementation principle and the technical effect are similar, which are not described herein again.
The processor 82 may be implemented by one or more Application Specific Integrated Circuits (ASICs), Digital Signal Processors (DSPs), Digital Signal Processing Devices (DSPDs), Programmable Logic Devices (PLDs), Field Programmable Gate Arrays (FPGAs), controllers, micro-controllers, microprocessors or other electronic components for performing the above-described methods, among others. The memory 81 may be a non-transitory computer readable storage medium.
In addition, the present embodiment also provides a computer-readable storage medium on which a computer program is stored, the computer program being executed by a processor to implement the method of the above embodiment.
In addition, the present embodiment also provides a computer program product, which includes a computer program, and the computer program is executed by a processor to implement the method of the above embodiment.
In the several embodiments provided in the embodiments of the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one position, or may be distributed on multiple network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present application may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, or in a form of hardware plus a software functional unit.
The integrated unit implemented in the form of a software functional unit may be stored in a computer readable storage medium. The software functional unit is stored in a storage medium and includes several instructions to enable a computer device (which may be a personal computer, a server, or a network device) or a processor (processor) to execute some steps of the methods described in the embodiments of the present application. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.
It is obvious to those skilled in the art that, for convenience and simplicity of description, the foregoing division of the functional modules is merely used as an example, and in practical applications, the above function distribution may be performed by different functional modules according to needs, that is, the internal structure of the device is divided into different functional modules to perform all or part of the above described functions. For the specific working process of the device described above, reference may be made to the corresponding process in the foregoing method embodiment, which is not described herein again.
The above embodiments are only used for illustrating the technical solutions of the embodiments of the present application, and are not limited thereto; although the embodiments of the present application have been described in detail with reference to the foregoing embodiments, those skilled in the art will understand that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; and the modifications or the substitutions do not make the essence of the corresponding technical solutions depart from the scope of the technical solutions of the embodiments of the present application.
Other embodiments of the present application will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the application and including such departures from the present disclosure as come within known or customary practice within the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the application being indicated by the following claims.
It will be understood that the present application is not limited to the precise arrangements that have been described above and shown in the drawings, and that various modifications and changes may be made without departing from the scope thereof. The scope of the application is limited only by the appended claims.
Claims (13)
1. A method for processing a service, comprising:
receiving a target counter business transaction request submitted by a user through equipment of a target channel;
judging whether the target counter business needs to use the electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance or not;
if the target counter service is determined to need to use the electronic certificate information of the user and the user has previously input the electronic certificate information, sending a user right confirmation request to equipment of the target channel;
and receiving user right confirmation authentication information acquired by the equipment of the target channel, verifying the user right confirmation authentication information, and sending verification passing information to the equipment of the target channel after the verification is passed so as to enable the equipment of the target channel to perform target counter business handling.
2. The method of claim 1, wherein the sending a user right confirmation request to the device of the target channel comprises:
sending a right confirming mode selection request to the equipment of the target channel;
and acquiring a determination instruction of a target right determining mode input by a user through equipment of the target channel, and sending a user right determining authentication information acquisition instruction corresponding to the target right determining mode to the equipment of the target channel so as to enable the equipment of the target channel to acquire the user right determining authentication information.
3. The method of claim 2, wherein after obtaining the instruction for determining the target authorization method input by the user through the device of the target channel, the method further comprises:
and generating a confirmation code corresponding to the current user right confirmation, and sending the confirmation code to the equipment of the target channel, so that the equipment of the target channel uploads the collected user right confirmation authentication information carrying the confirmation code for verification.
4. The method of claim 3, further comprising:
generating an authorization batch number of the user authorization request, and sending the authorization batch number to the equipment of the target channel;
after the verification passing information is sent to the equipment of the target channel, the relevant information of the target counter service sent by the equipment of the target channel is received and stored, and the relevant information of the target counter service comprises one or more of the following items:
the authority confirming batch number, the confirmation code, the channel identification of the target channel, the service list and the related time information.
5. The method of claim 4, further comprising:
tracking and inquiring according to the stored related information of the target counter service so as to judge whether the electronic certificate information of the user is leaked;
and if the electronic certificate information of the user is determined to be leaked, adding the corresponding target channel into the forbidden authorization channel list.
6. The method of any of claims 1-5, wherein sending a user authorization request to a device of the target channel comprises:
judging whether the target channel is included in an authorized channel list corresponding to a user and/or whether the target channel is included in a forbidden authorized channel list;
and if the target channel is determined to be included in the authorized channel list corresponding to the user and/or the target channel is not included in the forbidden authorization channel list, sending a user right confirmation request to equipment of the target channel.
7. The method of claim 6, wherein said determining whether the target channel is included in the user's corresponding authorized channel list further comprises:
receiving a channel authorization request sent by a user through equipment of a target channel;
acquiring relevant information of the target channel, and performing channel verification according to the relevant information of the target channel, wherein the channel verification comprises at least one of the following items: verifying the affiliation mechanism of the target channel, judging whether the business of the target channel needs to use electronic certificate information or not, and verifying the service encapsulation capacity of the target channel;
and adding the target channel into an authorized channel list corresponding to the user after the verification is passed.
8. The method according to any one of claims 1-5, further comprising:
if the user is determined not to input the electronic certificate information in advance, or if a request of inputting the electronic certificate information by the user is received, receiving the electronic certificate information input by the user through equipment of the target channel and preset right-confirming authentication information, wherein the preset right-confirming authentication information comprises a user password and/or biological characteristic information;
and performing associated storage on the electronic certificate information of the user and the preset authority-confirming authentication information.
9. The method according to claim 7, wherein the verifying the user authentication information comprises:
and comparing the user right confirmation authentication information with preset right confirmation authentication information, and if the user right confirmation authentication information is consistent with the preset right confirmation authentication information, determining that the verification is passed.
10. A traffic processing device, comprising:
the communication unit is used for receiving a target counter business transaction request submitted by a user through equipment of a target channel;
the judging unit is used for judging whether the target counter business needs to use the electronic certificate information of the user or not and whether the user inputs the electronic certificate information in advance or not;
the request unit is used for sending a user right confirmation request to the equipment of the target channel if the electronic certificate information of the user is required to be used by the target counter service and is pre-input by the user;
and the verification unit is used for receiving the user right confirmation authentication information acquired by the equipment of the target channel, verifying the user right confirmation authentication information, and sending verification passing information to the equipment of the target channel after the verification passes so as to enable the equipment of the target channel to perform target counter business handling.
11. An electronic device, comprising: a processor, and a memory communicatively coupled to the processor; the memory stores computer-executable instructions;
the processor executes computer-executable instructions stored by the memory to implement the method of any of claims 1-9.
12. A computer-readable storage medium having computer-executable instructions stored thereon, which when executed by a processor, perform the method of any one of claims 1-9.
13. A computer program product, comprising a computer program which, when executed by a processor, carries out the method according to any one of claims 1 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210675955.1A CN115049399A (en) | 2022-06-15 | 2022-06-15 | Business processing method, device, storage medium and program product |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210675955.1A CN115049399A (en) | 2022-06-15 | 2022-06-15 | Business processing method, device, storage medium and program product |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115049399A true CN115049399A (en) | 2022-09-13 |
Family
ID=83161797
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210675955.1A Pending CN115049399A (en) | 2022-06-15 | 2022-06-15 | Business processing method, device, storage medium and program product |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115049399A (en) |
-
2022
- 2022-06-15 CN CN202210675955.1A patent/CN115049399A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| KR102054410B1 (en) | Method for providing reward for delegating computing power for blockchain service management | |
| CN110537195B (en) | Method for permitting card use and server using same | |
| CN107079034B (en) | Identity authentication method, terminal equipment, authentication server and electronic equipment | |
| US10762503B2 (en) | Method, device and system for online payment | |
| US20220201477A1 (en) | Anonymous authentication and remote wireless token access | |
| US10250602B2 (en) | Authenticator centralization and protection | |
| CN109274652B (en) | Identity information verification system, method and device and computer storage medium | |
| TW201741922A (en) | Biological feature based safety certification method and device | |
| KR101724401B1 (en) | Certification System for Using Biometrics and Certification Method for Using Key Sharing and Recording medium Storing a Program to Implement the Method | |
| JP2020181275A (en) | Personal information management server, personal information management method, and personal information management system | |
| CN113706137B (en) | Data processing method and system applied to payment information | |
| KR20140011795A (en) | Method of subscription, authentication and payment without resident registration number | |
| CN115049399A (en) | Business processing method, device, storage medium and program product | |
| KR101360843B1 (en) | Next Generation Financial System | |
| CN115600178A (en) | Transaction request processing method and device, electronic equipment and storage medium | |
| CN111553788B (en) | Capital business processing method and device based on big data, electronic equipment and medium | |
| CN110581820B (en) | Financial technology application system and method based on IPV6 and biological recognition technology | |
| CN111862486A (en) | Card making method, device and system based on alliance chain | |
| CN111681009A (en) | Multi-platform centralized authentication and authorization system and method, authentication and authorization and service device | |
| KR101309835B1 (en) | A system for total financial transaction | |
| KR20210017308A (en) | Method for providing secondary authentication service using device registration and distributed storage of data | |
| CN112836195B (en) | Password modification method and device for enterprise bank authentication medium | |
| KR101705293B1 (en) | Authentication System and method without secretary Password | |
| CN112712365B (en) | Processing method and device for digital certificate | |
| KR20190115556A (en) | Method for Providing Cryptocurrency Trade based on Certification of Balance by using Smart Contract based on Blockchain |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |