CN115756905A - Internet banking shield calling method and device based on expansion interface - Google Patents
Internet banking shield calling method and device based on expansion interface Download PDFInfo
- Publication number
- CN115756905A CN115756905A CN202211589293.2A CN202211589293A CN115756905A CN 115756905 A CN115756905 A CN 115756905A CN 202211589293 A CN202211589293 A CN 202211589293A CN 115756905 A CN115756905 A CN 115756905A
- Authority
- CN
- China
- Prior art keywords
- calling
- program
- interface
- shield
- local program
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The application discloses an online banking shield calling method and device based on an expansion interface, and relates to the technical field of financial information services. The method comprises the following steps: acquiring a calling request of online banking shield data initiated by a user on an online banking page, wherein the calling request comprises an extension interface function name; judging whether an extension interface corresponding to the extension interface function name has the authority of calling a local program or not; if so, establishing connection between the expansion interface and the local program, and sending an auxiliary function corresponding to the calling request to the dynamic link library of the internet bank shield through the expansion interface and the local program, so that the dynamic link library of the internet bank shield obtains and returns a calling result based on the auxiliary function. According to the method and the system, communication between the browser and the internet bank shield hardware is achieved through the form of the expansion interface, the technical architecture requirement of the current browser and UKEY communication is met, and for the browser, the safety management and control level is greatly improved compared with a plug-in mode.
Description
Technical Field
The application relates to the technical field of financial information services, in particular to an online banking shield calling method and device based on an expansion interface.
Background
The NPAPI (Netscape plug Application Programming Interface) is a set of plug-in Application Programming interfaces of a cross-platform browser, and realizes the function of running an Application program on a browser page. Therefore, the traditional browser plug-in based on the NPAPI library can realize communication between the browser and the hardware internet bank shield, and the functions provided by the dynamic link library of the internet bank shield are applied to the pages of the internet bank through the NPAPI plug-in, wherein the functions comprise functions of internet bank shield signature, internet bank shield management, certificate updating and the like.
With the development of browser technology, plug-in functions are gradually prohibited by mainstream browsers such as Edge and Chrome, a signature mode of the mainstream browser in a new technical form, which is called by a browser based on a plug-in technical architecture, is gradually eliminated, and a security tool of online banking services, namely an online banking shield, cannot be compatible with mainstream browsers such as Edge and Chrome based on a Chrome kernel. According to the method based on the plug-in form, corresponding functions are realized by running independent software codes except the browser, and a black box exists in the browser in the authority control aspect when the plug-in is locally run, so that some safety problems or safety holes exist during the running of the plug-in.
Disclosure of Invention
In order to solve the problems in the prior art, in a first aspect, the present application provides an online banking shield invoking method based on an extended interface, including:
acquiring a calling request of online banking shield data initiated by a user on an online banking page, wherein the calling request comprises an extension interface function name;
judging whether the extension interface corresponding to the extension interface function name has the authority of calling a local program of an operating system or not; the local program is used for calling a method of a second type program different from the first type program through the first type program;
if so, establishing connection between the expansion interface and the local program, and sending an auxiliary function corresponding to the calling request to an online banking shield dynamic link library through the expansion interface and the local program, so that the online banking shield dynamic link library acquires and returns a calling result based on the auxiliary function; the auxiliary function is a preset internet banking shield data calling function which is the same as the program type of the local program.
In an embodiment, the determining whether the extended interface corresponding to the extended interface function name has a right to call a local program includes:
acquiring an application program list corresponding to the expansion interface;
acquiring a permission field value corresponding to a local program according to the permission definition file in the application program list;
judging whether the authority field value is a preset value or not;
if yes, the expansion interface has the authority of calling the local program; if not, the expansion interface does not have the authority of calling the local program.
In one embodiment, the establishing the connection between the extension interface and the local program includes:
acquiring a system registry corresponding to the expansion interface;
searching a local program file path registered by the expansion interface in the system registry;
and finding a corresponding local program according to the path configuration of the local program file path and starting the local program so as to establish the connection between the expansion interface and the local program.
In one embodiment, the auxiliary function includes a get serial number function, a set random number function, a signature function, and a get certificate DN function.
In a second aspect, the present application provides an online banking shield calling apparatus based on an extended interface, including:
the system comprises a calling request receiving module, a calling request receiving module and a calling request sending module, wherein the calling request receiving module is used for acquiring a calling request of the online banking shield data initiated by a user on an online banking page, and the calling request comprises an extension interface function name;
the permission judging module is used for judging whether the extension interface corresponding to the extension interface function name has the permission of calling the local program of the operating system; the local program is used for calling a method of a second type program different from the first type program through the first type program;
the communication connection module is used for establishing the connection between the expansion interface and the local program when the expansion interface has the right of calling the local program, and sending an auxiliary function corresponding to the calling request to the dynamic link library of the online bank shield through the expansion interface and the local program so that the dynamic link library of the online bank shield acquires and returns a calling result based on the auxiliary function; the auxiliary function is a preset internet banking shield data calling function which is the same as the program type of the local program.
In one embodiment, the permission determination module includes:
an application program list acquiring unit, configured to acquire an application program list corresponding to the extended interface;
the permission field value acquisition multi-unit is used for acquiring a permission field value corresponding to a local program according to a permission definition file in the application program list;
the authority judging unit is used for judging whether the authority field value is a preset value or not; if the permission field value is a preset value, determining that the extension interface has the permission to call the local program; and if the permission field value is not a preset value, determining that the extension interface does not have the permission of calling the local program.
In one embodiment, the communication connection module includes:
a system registry obtaining unit, configured to obtain a system registry corresponding to the expansion interface;
a file path obtaining unit, configured to search, in the system registry, a local program file path registered by the extended interface;
and the communication connection establishing unit is used for finding a corresponding local program according to the path configuration of the local program file path and starting the local program so as to establish the connection between the expansion interface and the local program.
In one embodiment, the auxiliary function includes a get serial number function, a set random number function, a signature function, and a get certificate DN function.
In a third aspect, the present application provides a computer device, including a memory, a processor, and a computer program stored on the memory and executable on the processor, where the processor implements any of the online banking shield calling methods based on the extended interface provided in the present application when executing the computer program.
In a fourth aspect, the present application provides a computer-readable storage medium, where a computer program is stored, and when the computer program is executed by a processor, the computer program implements any of the online banking shield invoking methods based on an extended interface provided in the present application.
In a fifth aspect, the present application provides a computer program product, where the computer program product includes a computer program, and when the computer program is executed by a processor, the computer program implements any of the online banking shield calling methods based on the extended interface provided in the present application.
According to the online bank shield calling method and device based on the expansion interface, communication between the browser and the online bank shield hardware is achieved through the form of the expansion interface, and the service signing function of the online bank shield is completed. The internet bank shield signature realized based on the extension form meets the technical architecture requirement of the current browser and UKEY communication, the extension application is usually written in a JavaScript form, and a JavaScript engine based on the browser runs on the browser level, so that the security management and control level of the browser is greatly improved compared with a plug-in mode.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the drawings without creative efforts. In the drawings:
fig. 1 is a schematic diagram of an online banking shield calling method based on an extended interface according to the present application.
Fig. 2 is another schematic diagram of an online banking shield calling method based on an extended interface provided in the present application.
Fig. 3 is another schematic diagram of the online banking shield invoking method based on the extended interface provided in the present application.
Fig. 4 is a schematic diagram of an online banking shield invoking device based on an extended interface according to the present application.
Fig. 5 is another schematic diagram of an online banking shield invoking device based on an extended interface provided in the present application.
Fig. 6 is another schematic diagram of an online banking shield invoking device based on an extended interface provided in the present application.
Fig. 7 is a schematic diagram of a computer device provided in the present application.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the embodiments of the present invention are further described in detail below with reference to the accompanying drawings. The exemplary embodiments and descriptions of the present invention are provided to explain the present invention, but not to limit the present invention.
It should be noted that the method and the device for calling the internet banking shield based on the extended interface can be used in the technical field of financial information services, and can also be used in any field except the technical field of financial information services.
In the technical scheme of the application, the data acquisition, storage, use, processing and the like all accord with relevant regulations of national laws and regulations.
In order to solve the problems in the prior art, in a first aspect, the present application provides an online banking shield calling method based on an extended interface, as shown in fig. 1, the method includes the following steps:
step S101, obtaining a calling request of the online banking shield data initiated by a user on an online banking page, wherein the calling request comprises an extension interface function name.
Specifically, the method is mainly executed in an application scene where a user initiates a call request of the internet banking shield data through a browser page (internet banking page), and is different from the prior art in that a browser plug-in is not used for acquiring the internet banking shield data, connection between an expansion interface and a local program is realized by defining the expansion interface, and then acquisition of the internet banking shield data is realized through the local program. The extension interface is an open API developed based on a browser definition specification, and is used to add an extension function of the browser, similar to a common WEB application, and the extension control needs to obtain authorization of the browser to call the local program, which will be described in detail later. The name of the extended interface function in this step, that is, the name of the extended interface required for calling the internet banking shield data included in the call request initiated by the user, is issued by the browser and is used as the unique identifier of the extended interface.
Step S102, judging whether the extension interface corresponding to the extension interface function name has the authority of calling a local program; if yes, step S103 is executed, and if no, step S104 is executed.
Specifically, the native program refers to a method local to the operating system and used for calling a second type of program different from the first type of program through the first type of program, for example, a native method, which is a method for calling a non-Java program through a Java program, and in this scheme, the native program is used as an extension control to call a bridge function between the dynamic link libraries of the internet banking shield. After the connection between the expansion control and the local program is established, the interaction between the online banking page and the online banking shield dynamic link library can be realized, the online banking shield dynamic link library comprises DLL dynamic library files for realizing a series of driving methods such as online banking shield signature, serial number acquisition, certificate number acquisition and the like, and the files are all existing.
The step is used for judging whether the expansion interface required by the calling request has the authority of calling the local program, and the local program can be started only when the expansion interface has the authority of calling the local program, so that the connection with the dynamic link library of the internet bank shield is established, and the calling of the data of the internet bank shield is realized.
Step S103, establishing connection between the expansion interface and the local program, and sending an auxiliary function corresponding to the call request to an online banking shield dynamic link library through the expansion interface and the local program, so that the online banking shield dynamic link library obtains and returns a call result based on the auxiliary function; the auxiliary function is a preset internet banking shield data calling function which is the same as the program type of the local program.
The method comprises the steps of executing the steps when the expansion interface is determined to have the authority of calling a local program, wherein the expansion interface can be connected with the local program, namely a channel between an internet bank page and an internet bank shield dynamic link library is established, and then data acquisition in the internet bank shield dynamic link library is realized through an auxiliary function corresponding to a calling request.
The auxiliary function comprises a series of interface functions for being called when an extension caller (such as an enterprise internet bank page) transacts, and the form of the auxiliary function is a JavaScript form for example. In the application, the auxiliary function includes a get serial number function GetMediaID, a set random number function SetUKeyIDRandom, a signature function CryptSign, a get certificate DN function GetParam, and the like, and corresponds to the call request of the client, respectively. Because the online banking page is not provided with related plug-ins, the auxiliary function cannot be directly connected with the online banking shield dynamic link library to call the online banking shield data, and the switching needs to be realized through a local program. Therefore, the auxiliary function is an internet protocol shield data calling function which is the same as the program type of the local program, the connection can be directly established with the local program, and the local program translates the auxiliary function into a calling function which can be identified by an internet protocol shield dynamic link library.
For example, when the call request of the client is a request for an internet banking shield signature, the specific call request information needs to be transferred to the local program through the extension interface, and the transfer can be realized by adopting a transparent transfer function sendmsgtowost function defined in the extension interface. The local program establishes connection with the auxiliary function, and starts loading an internet bank shield dynamic link library and a message monitoring cycle to receive the auxiliary function corresponding to the call request of the internet bank page (in this example, a signature function CryptSign corresponding to the internet bank shield signature request); and the local native analyzes the signature function CryptSign through an analysis function, and calls a corresponding method in the dynamic link library of the internet bank shield to obtain the signature of the internet bank shield, namely a calling result.
Therefore, in the application, the dynamic link library of the online bank shield actually acquires the target data based on the calling of the auxiliary function, and only the calling process needs the expansion interface and the local program as a bridge for establishing the online bank page and the dynamic link library of the online bank shield. After the online banking shield dynamic link library obtains the calling result, returning the calling result to the local program; the local program returns a return value (calling result) of the analysis function to the expansion interface through the transparent transmission function sendMsgToHost; and the expansion interface returns the calling result returned by the local program to the online banking page through a communication API function connectHost of the browser. The communication API function connectHost for calling the browser and the message transparent function sendMsgToHost for calling the local program are defined in background.
And step S104, returning information to prompt the user that the calling fails or cannot be called.
When the expansion interface does not have the right of calling the local program, the online banking page cannot be connected with the online banking shield dynamic link library, the online banking shield data calling cannot be realized, and at the moment, relevant information is returned to the client for prompting.
In an embodiment, as shown in fig. 2, in step S102, the determining whether the extension interface corresponding to the extension interface function name has the authority to call the local program includes:
step S1021, obtaining an application program list corresponding to the expansion interface.
The main configuration of the extended interface is a background.js file of function implementation functions and a manifest.json file containing application program manifests. That is, the manifest of the application program can be directly obtained from the manifest of the extension interface.
Step S1022, obtaining a permission field value corresponding to the local program according to the permission definition file in the application program list.
Specifically, in the application, a manifest file containing an application program list describes and defines specific permissions needed to be acquired in a background js file of a function implementation function, wherein a permission field defines specific local permissions needed to be called; the fields of content _ scripts and external _ connectable define the specific domain names that need to use extensions, and only the domain names defined in the fields of content _ scripts and external _ connectable can obtain the authority to call the local native method through the extension interface. The extended interface may be defined by the connectHost function in background. Js, and applies for obtaining the right to call native methods for the domain name system defined by the matches of the content _ scripts field and the matches of the external _ connectable field (e.g.: x://. Ccb. Com. Cn /), which is granted by the browser.
The rights field value in this step is determined based on the contents defined in the permissions field. Specifically, the internet banking page may detect, through a function checkReady = function () defined in the auxiliary function, whether the extended interface installs an interface that opens the local program, i.e., whether the local program is defined in the permissions field. The function will return a result, namely a permission field value, based on the definition in the permissions field.
Step S1023, judging whether the authority field value is a preset value or not; if yes, executing step S1024; if not, executing step S1025;
step S1024, the expansion interface has the authority of calling the local program;
in step S1025, the extension interface does not have the right to call the local program.
Specifically, if the return value of the function checkReady = function () is "0", it indicates that the extension interface has installed and opened the local program, that is, the extension interface has the right to call the local program; if the return value of the function checkReady = function () is "1", it indicates that the extension interface does not install the open local program, that is, the extension interface does not have the right to call the local program.
In an embodiment, as shown in fig. 3, the establishing of the connection between the extended interface and the local program in step S103 includes:
and step S1031, acquiring a system registry corresponding to the expansion interface. Specifically, the expansion interface accesses the query system registry through a browser.
Step S1032 searches the local program file path registered by the extension interface in the system registry, specifically, searches the ccbnativehost.
Step S1033, finding a corresponding local program according to the path configuration of the local program file path and starting the local program file path, so as to establish a connection between the expansion interface and the local program file.
Specifically, the extension interface finds a corresponding local program according to path configuration in a ccbnativehost.
According to the method, the internet bank shield extension interface (Extensions or Add-one) is defined, extension application is packaged, functions provided by an internet bank shield library are applied to an internet bank page, the internet bank shield dynamic link library can be called on the internet bank page without a control, a calling process calls the extension interface for an auxiliary function corresponding to a calling request of internet bank shield data, the extension interface calls the internet bank shield dynamic link library provided by a third party through a local native program, and communication between a browser and the internet bank shield is achieved.
Here, the present application provides a complete example to further illustrate the flow of the method for invoking the online banking shield based on the extended interface, where the flow takes invoking an online banking shield signature as an example:
1) And the online bank user initiates a calling request of the online bank shield signature data.
2) And the internet bank page calls an auxiliary function to detect whether the extension is provided with an opening interface checkReady = function (), the obtained function returns a target value '0' of the extension which is provided with the opening, and the connection with the extension interface is established.
3) The expansion interface accesses a registry of a query system through a browser, searches a CCBNativehost.json file path of expansion registration in the registry, finds a corresponding local program path according to path configuration in the json file, starts a native program, and establishes connection with the native program.
4) And the network bank page calls an auxiliary function to set a random number function SetUKeyIDrandom = function (random), and a random number is obtained.
5) And the auxiliary function acquires a ciphertext serial number function GetUKeyID = function (rtn), and transmits the information of the request internet bank shield serial number to the local program through a transparent transmission function of the expansion interface.
6) And the local program calls the dynamic link library of the internet banking shield through the function analysis interface to obtain a ciphertext serial number function GetMediaID (char. MediaID), and returns the ciphertext serial number.
7) The local program returns the cipher text serial number data to the expansion interface, the expansion interface transmits the cipher text serial number data to the auxiliary function through the function of the transparent transmission function, and the auxiliary technology returns the function result to the internet bank page.
8) The internet bank page calls a signature function CryptSign (rtn, original signature text …) in the auxiliary function, and based on data such as a cipher text serial number, the original signature text, a certificate type and a Hash algorithm, a signature result is obtained from a signature function corresponding to the dynamic link library of the internet bank shield.
According to the online banking shield calling method based on the expansion interface, communication between the browser and online banking shield hardware is achieved through the form of the expansion interface, and the service signing function of the online banking shield is completed. The internet bank shield signature realized based on the extension form meets the technical architecture requirement of the current browser and UKEY communication, the extension application is usually written in a JavaScript form, and a JavaScript engine based on the browser runs on the browser level, so that the security management and control level of the browser is greatly improved compared with a plug-in mode.
Based on the same inventive concept, the embodiment of the present application further provides an online banking shield invoking device based on an extended interface, which can be used to implement the method described in the foregoing embodiment, as described in the following embodiment. Because the principle of solving the problem of the online banking shield calling device based on the expansion interface is similar to the online banking shield calling method based on the expansion interface, the implementation of the online banking shield calling device based on the expansion interface can refer to the implementation of the online banking shield calling method based on the expansion interface, and repeated parts are not described again. As used hereinafter, the term "unit" or "module" may be a combination of software and/or hardware that implements a predetermined function. While the system described in the embodiments below is preferably implemented in software, implementations in hardware, or a combination of software and hardware are also possible and contemplated.
In a second aspect, the present application provides an online banking shield invoking device based on an extended interface, and as shown in fig. 4, the device includes:
a calling request receiving module 201, configured to obtain a calling request for online banking shield data initiated by a user on an online banking page, where the calling request includes an extension interface function name;
the permission judging module 202 is configured to judge whether the extension interface corresponding to the extension interface function name has a permission to call a local program of the operating system; the local program is used for calling a method of a second type program different from the first type program through the first type program;
the communication connection module 203 is configured to, when the extension interface has the right to call the local program, establish connection between the extension interface and the local program, and send an auxiliary function corresponding to the call request to the online banking shield dynamic link library through the extension interface and the local program, so that the online banking shield dynamic link library obtains and returns a call result based on the auxiliary function; the auxiliary function is a preset internet banking shield data calling function which is the same as the program type of the local program.
In an embodiment, as shown in fig. 5, the permission determination module 202 includes:
an application program list obtaining unit 2021, configured to obtain an application program list corresponding to the extended interface;
a permission field value obtaining multi-unit 2022, configured to obtain a permission field value corresponding to a local program according to a permission definition file in the application program list;
the permission judging unit 2023 is configured to judge whether the permission field value is a preset value; if the permission field value is a preset value, determining that the extension interface has the permission to call the local program; and if the permission field value is not a preset value, determining that the extension interface does not have the permission of calling the local program.
In one embodiment, as shown in fig. 6, the communication connection module 203 includes:
a system registry obtaining unit 2031, configured to obtain a system registry corresponding to the expansion interface;
a file path obtaining unit 2032, configured to search, in the system registry, a local program file path registered in the extended interface;
a communication connection establishing unit 2033, configured to find a corresponding local program according to the path configuration of the local program file path and start the local program file path, so as to establish a connection between the expansion interface and the local program file.
In one embodiment, the auxiliary function includes a get serial number function, a set random number function, a signature function, and a get certificate DN function.
According to the online bank shield calling device based on the expansion interface, communication between the browser and online bank shield hardware is achieved through the form of the expansion interface, and the service signing function of the online bank shield is completed. The internet bank shield signature realized based on the extension form meets the technical architecture requirement of the current browser and UKEY communication, the extension application is usually written in a JavaScript form, and a JavaScript engine based on the browser runs on the browser level, so that the security management and control level of the browser is greatly improved compared with a plug-in mode.
In an embodiment, the present application further provides a computer device, and referring to fig. 7, the electronic device 100 specifically includes:
a central processing unit (processor) 110, a memory (memory) 120, a communication module (Communications) 130, an input unit 140, an output unit 150, and a power supply 160.
The memory (memory) 120, the communication module (Communications) 130, the input unit 140, the output unit 150 and the power supply 160 are respectively connected to the central processing unit (processor) 110. The memory 120 stores a computer program, the central processing unit 110 can call the computer program, and the central processing unit 110 executes the computer program to implement all the steps of the online banking shield calling method based on the extended interface in the above embodiments.
In an embodiment, embodiments of the present application also provide a computer-readable storage medium for storing a computer program, which is executable by a processor. When being executed by a processor, the computer program realizes any online banking shield calling method based on the extended interface.
In an embodiment, an embodiment of the present invention further provides a computer program product, where the computer program product includes a computer program, and when executed by a processor, the computer program implements any of the online banking shield calling methods based on the extended interface provided in the above embodiments.
As will be appreciated by one skilled in the art, embodiments of the present invention may be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present invention may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present invention is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
The above-mentioned embodiments are intended to illustrate the objects, technical solutions and advantages of the present invention in further detail, and it should be understood that the above-mentioned embodiments are only exemplary embodiments of the present invention, and are not intended to limit the scope of the present invention, and any modifications, equivalent substitutions, improvements and the like made within the spirit and principle of the present invention should be included in the scope of the present invention.
Claims (11)
1. An internet banking shield calling method based on an extended interface is characterized by comprising the following steps:
acquiring a calling request of online banking shield data initiated by a user on an online banking page, wherein the calling request comprises an expansion interface function name;
judging whether the extension interface corresponding to the extension interface function name has the authority of calling a local program of an operating system or not; the local program is used for calling a method of a second type program different from the first type program through the first type program;
if so, establishing connection between the expansion interface and the local program, and sending an auxiliary function corresponding to the calling request to an online banking shield dynamic link library through the expansion interface and the local program, so that the online banking shield dynamic link library acquires and returns a calling result based on the auxiliary function; the auxiliary function is a preset internet banking shield data calling function which is the same as the program type of the local program.
2. The online banking shield calling method based on the extended interface according to claim 1, wherein the determining whether the extended interface corresponding to the extended interface function name has a right to call a local program includes:
acquiring an application program list corresponding to the expansion interface;
acquiring a permission field value corresponding to a local program according to the permission definition file in the application program list;
judging whether the authority field value is a preset value or not;
if yes, the expansion interface has the authority of calling the local program; if not, the expansion interface does not have the authority of calling the local program.
3. The internet banking shield calling method based on the extended interface according to claim 1, wherein the establishing of the connection between the extended interface and the local program comprises:
acquiring a system registry corresponding to the expansion interface;
searching a local program file path registered by the expansion interface in the system registry;
and finding a corresponding local program according to the path configuration of the local program file path and starting the local program so as to establish the connection between the expansion interface and the local program.
4. The method for invoking the internet banking shield based on the extended interface of claim 1, wherein the auxiliary function comprises a function of acquiring a serial number, a function of setting a random number, a function of signing, and a function of acquiring a certificate DN.
5. The utility model provides an internet banking shield calling device based on extended interface which characterized in that includes:
the system comprises a calling request receiving module, a calling request receiving module and a calling request sending module, wherein the calling request receiving module is used for acquiring a calling request of the online banking shield data initiated by a user on an online banking page, and the calling request comprises an extension interface function name;
the permission judging module is used for judging whether the extension interface corresponding to the extension interface function name has the permission of calling the local program of the operating system; the local program is used for calling a method of a second type program different from the first type program through the first type program;
the communication connection module is used for establishing the connection between the expansion interface and the local program when the expansion interface has the right of calling the local program, and sending an auxiliary function corresponding to the calling request to the dynamic link library of the online bank shield through the expansion interface and the local program so that the dynamic link library of the online bank shield acquires and returns a calling result based on the auxiliary function; the auxiliary function is a preset internet banking shield data calling function which is the same as the program type of the local program.
6. The device for invoking the internet banking shield based on the extended interface of claim 5, wherein the permission judging module comprises:
an application program list acquiring unit, configured to acquire an application program list corresponding to the extended interface;
the permission field value acquisition multi-unit is used for acquiring a permission field value corresponding to a local program according to a permission definition file in the application program list;
the authority judging unit is used for judging whether the authority field value is a preset value or not; if the permission field value is a preset value, determining that the extension interface has the permission to call the local program; and if the permission field value is not a preset value, determining that the extension interface does not have the permission of calling the local program.
7. The internet banking shield calling device based on the extended interface of claim 5, wherein the communication connection module comprises:
a system registry obtaining unit, configured to obtain a system registry corresponding to the expansion interface;
a file path obtaining unit, configured to search, in the system registry, a local program file path registered by the extended interface;
and the communication connection establishing unit is used for finding a corresponding local program according to the path configuration of the local program file path and starting the local program so as to establish the connection between the expansion interface and the local program.
8. The internet banking shield calling device based on the extended interface of claim 5, wherein the auxiliary function comprises a serial number obtaining function, a random number setting function, a signature function and a certificate obtaining DN function.
9. A computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the method for invoking an ebanking based on an extended interface of any one of claims 1 to 4 when executing the computer program.
10. A computer-readable storage medium, wherein the computer-readable storage medium stores a computer program, and the computer program, when executed by a processor, implements the method for invoking the internet banking shield based on the extended interface of any one of claims 1 to 4.
11. A computer program product, characterized in that the computer program product comprises a computer program which, when being executed by a processor, implements the extended interface-based e-banking shield calling method of any one of claims 1 to 4.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211589293.2A CN115756905A (en) | 2022-12-12 | 2022-12-12 | Internet banking shield calling method and device based on expansion interface |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202211589293.2A CN115756905A (en) | 2022-12-12 | 2022-12-12 | Internet banking shield calling method and device based on expansion interface |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115756905A true CN115756905A (en) | 2023-03-07 |
Family
ID=85345423
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202211589293.2A Pending CN115756905A (en) | 2022-12-12 | 2022-12-12 | Internet banking shield calling method and device based on expansion interface |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115756905A (en) |
-
2022
- 2022-12-12 CN CN202211589293.2A patent/CN115756905A/en active Pending
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US5742759A (en) | Method and system for facilitating access control to system resources in a distributed computer system | |
| Bellissimo et al. | Secure Software Updates: Disappointments and New Challenges. | |
| US7912916B2 (en) | Resolving conflicts while synchronizing configuration information among multiple clients | |
| US8086698B2 (en) | Synchronizing configuration information among multiple clients | |
| EP2122526B1 (en) | Methods and systems for solving problems with hard-coded credentials | |
| WO2017129016A1 (en) | Resource access method, apparatus and system | |
| US8176333B2 (en) | Method and apparatus for protecting external call references | |
| US20080168553A1 (en) | System and Method for Authenticating Code Executing on Computer System | |
| CN102830992A (en) | Plug-in loading method and system | |
| EP2307977A1 (en) | System and method for dynamic partitioning of applications in client-server environments | |
| CN111770072B (en) | Method and device for accessing function page through single sign-on | |
| CN112204548A (en) | Automatic generation of application-specific client credentials | |
| US9942267B1 (en) | Endpoint segregation to prevent scripting attacks | |
| US20240095402A1 (en) | Methods and Systems for Recursive Descent Parsing | |
| CN113239308A (en) | Page access method, device, equipment and storage medium | |
| CN113656109A (en) | Security control calling method, device, equipment and storage medium | |
| KR20050039528A (en) | Securely identifying an executable to a trust-determining entity | |
| CN110321507B (en) | Browser cross-domain communication method and device | |
| CN115756905A (en) | Internet banking shield calling method and device based on expansion interface | |
| US20190098045A1 (en) | Browser injection prevention method, browser client and apparatus | |
| CN112416462B (en) | Offline H5 application loading method and system | |
| CN115695400A (en) | Method and terminal for interaction between Web page and local application | |
| CN115378605A (en) | Data processing method and device based on block chain | |
| US10044728B1 (en) | Endpoint segregation to prevent scripting attacks | |
| CN110569644B (en) | Method, device and equipment for processing call request and calling function |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |