CN1288205A - Full compatible inter net electronic trade and payment system - Google Patents
Full compatible inter net electronic trade and payment system Download PDFInfo
- Publication number
- CN1288205A CN1288205A CN 99119068 CN99119068A CN1288205A CN 1288205 A CN1288205 A CN 1288205A CN 99119068 CN99119068 CN 99119068 CN 99119068 A CN99119068 A CN 99119068A CN 1288205 A CN1288205 A CN 1288205A
- Authority
- CN
- China
- Prior art keywords
- software
- payment
- trade company
- holder
- card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
This invention relates to a safety electronic trade system for card holder, magnetic card and IC card (including: loan recording card and credit card), in internet, ie, relating to electronic trade based on internet flatbed, realizing safe electronic trade between traders or combined with banks, and corresponding maney transferring technique. The system includes subsystems: CA, card holding terminal, trade firm terminal and money payment terminal soft wares, using internet as main information medium, using SSL, DER cording and PKCS etc. network safety technique to linking payments between card holder, trade firms and banks. So automatic processing is realized: card holder ordering goods to band payment to trade firm clearing accounts.
Description
The present invention relates to a kind ofly, realize the technology that safe electronic trade and corresponding fund security transfer between both parties and the bank based in the e-commerce on the internet platform.
The modes of payments of e-commerce has several modes at present:
1. by third party broker's payment mode
The user opens an account number on the third-party charging system server, the user uses account number to pay.But the user selects the leeway of commodity little, and middle man's degree of belief is limited, is difficult to large-scale promotion.
2. electronic cash payment mode
The cash that the user pre-deposits in the server account number is in cash bought the electronic money certificate, and these electronic money have just had value.This system and existing bank card system have no relation, and bank must rebulid a new system, and be consuming time, expensive all huge, can't large-scale promotion.
3. payment system is used the simple encryption pattern
When using this pattern to pay, user credit card number sign indicating number is encrypted, the encryption technology that adopts has SHTTP, SSL etc., SSL (Secure Socket Layer)--Secure Socket Layer (SSL) is proposed by Nescape company, and it realizes that by increase a Secure Socket Layer (SSL) between HTTP(Hypertext Transport Protocol) and TCP (TCP/IP) safety between two machines connects.SSL is an industrywide standard communication protocol of safe transmission data on the internet; it provides functions such as identification between the client and server and data encryption; guarantee the data security that both sides communicate by letter on the internet; for being subjected to the Internet user of SSL protection; identification is all enjoyed in its every performed HTTP transaction; data encipherment protection and accuracy of data are checked three kinds of services; have the advantages of simplicity and high efficiency characteristics; two main browser IE and Netscape all support SSL; a plurality of Internet banks also all use this agreement, and the example of successful ecommerce also all adopts SSL basically in the world today.
In the SSL operation flow (Fig. 1), the payment transaction that the client submits to all passes through trade company and is forwarded to merchant bank, and the information of obtaining mandate also goes to the client by trade company.Personal informations such as client's card number, trade company on top of.Trade company directly is connected with merchant bank by special line communication.The client need not digital signature, need not the applying for electronic certificate, do not import PIN (Personal Identification Number) (PIN) yet.Trade company only relies on card number and confirms client identity.This mode does not need other install software on client computer, very easy to be easy-to-use.But anti-repudiation, anti-rogue are all not enough.And holder's personal information must be delivered to trade company earlier, and this just makes some illegal businessman that opportunity is arranged.
4.SET pattern
This is the secure electronic transaction standard that is proposed by VISA, MasterCard two big credit card tissues, has obtained the support of how tame major company and bank.At present in ground such as America and Europe trial runs, owing to this standard has been discarded simplicity in order to improve security, feasible how tame pilot bank all fails the effect that obtains.
In the SET operation flow (Fig. 2), basic identical with SSL, but it has increased client's digital signature, digital certificates, adopted very complicated technology such as dual digital signature, guaranteed that trade company can not obtain client's card number, payment gateway is not known the commodity that trade company sells.It has good anti-repudiation, anti-rogue.But increased the complexity of system.
The present invention is online a safe electronic trade and a payment system, is made up of four big subsystems, and they are:
Certifying organization's software (CA), its major function are the certificate requests of accepting holder, trade company, payment gateway and the CA of subordinate, for it issues certificate, and finish functions such as certificate query, certificate revocation, CA certificate download.According to the classification of issuing certificate, certifying organization can be divided into root CA, brand CA, zone C A, the CA of trade company, payment gateway CA, holder CA etc., the function of all kinds of CA is basic identical.A lot of companies have developed own mature C A product, and the present invention has done a definition to the function of CA, and the product that meets this definition all can be used in the present invention.
The holder holds software, and this software is installed in holder's the PC or other network terminals, finishes holder's order and payment function, and provides highly dense safe connected mode for the holder.This software serves as basis and trade company end software and payment gateway software communication with webpage (Web) browser, finishes respectively and orders and the function of payment, and communication security is based on ssl protocol, the supporting solution of smart card (IC-card) of authentication and digital signature.
Trade company's end software, this running software is on merchant server, and finish two big functions: the HTTP by safety is connected with the holder, finishes commodity selection and ordering function; Be connected with payment gateway by TCP/IP, finish payment and settlement function.
Payment gateway end software, this running software are realized following major function on payment gateway: the HTTP by safety is connected with the holder, accepts and handle holder's Payment Request; Hold software to be connected by TCP/IP and trade company, accept and handle the payment and the settlement requests of trade company; According to bank or connected mode that payment network provided, coupled, finish real payment and clearance function.
As can be seen from Figure 3, between four subsystems with the internet as the main information medium of exchange, pass through SSL, the DER coding of TCP/IP, public key encryption standard internet safe technology such as (PKCS), holder, trade company and bank paying gateway security link together, realized from the automatic processing of holder's order → bank paying → trade company clearance overall process.For speed and the stability problem that solves the internet, may set up special connection (as special line etc.) between large-scale trade company and the payment gateway.Payment gateway is the bridge of bank or financial institution and Internet connection, and an end links to each other with the internet, and the other end is connected with bank or conventional payment network by existing network.
Fig. 4 illustrates the communication modes between each participant of system among the present invention, the main three class communication modes that adopt between each participant of system:
The communication of A----participant and certifying organization, this class communication is based on the internet, adopt http protocol, or simple electric transmission agreement (SMTP) communication, that is to say that entity (holder, trade company, payment gateway or certifying organization) can adopt SSL and the safety E-mail authentications that agreement provided such as (S/MIME) and data encryption to guarantee the safety of message to the sensitive data territory by Web browser or Email (E-MAIL) application and acceptance certificate.
Communication between B----holder and trade company and payment gateway, this class communication is equally based on the internet, adopt the http protocol communication, that is to say that the holder is connected with trade company or payment gateway Web server by Web browser, adopt ssl protocol to ensure information security sensitive data.
The communication of C----trade company and payment gateway, such communication is based on ICP/IP protocol, connect by internet or alternate manner, because TCP does not provide the safety assurance of transmitting data in the above, so trade company's end and payment gateway end software need provide safety guarantee for its information, the present invention adopts the DER coding to realize.
In payment flow of the present invention (Fig. 5), made full use of the simplicity of SSL mode in client, by directly sending payment instruction to payment gateway, avoided the contact client of trade company card number, privacy information such as PIN, can support the payment demand of present debit card under no digital certificates and digital signature environment, also support payment demand under the ecotopia of IC-card band digital signature and digital certificates, possess anti-repudiation the same and anti-rogue with SET.Owing to simplified the software of client, more can support the holder to finish e-commerce by low side devices such as other network business stations, TV set-top box, cell-phone computers.
Security is the key of online application system existence, some international bodies and company have developed a series of standard and softwares that relate to internet safe, agreements such as the present invention has selected SSL, meets ISO8824, the DER of ISO8825 coding and PKCS, adopt technology such as IC-card simultaneously, from the security of the following aspects strengthening system.
1. the security of online exchange message
It is the system of main media with the internet that the present invention is one, mainly carries out information interchange by the internet between each participant, and the security of network information mainly is meant following four aspects.
The reliability of data
The transmit leg of data and take over party must authenticate the other side's identity mutually, in the present invention, and main method validation the other side identity of the certificate that CA issued by verifying their common trust.In each participant, trade company, payment gateway, CA must hold digital certificate, the holder can be divided into digital certificate and nonnumeric certificate class holder, to nonnumeric certificate class holder, mainly come identity verification by PIN (Personal Identification Number) (PIN), the information interaction of some function only need be verified digital certificate in a certain respect, as certificate request, only need the checking CA certificate, CA needn't verify the certificate of application entity: the and for example transaction of the order between holder and trade company, the holder must verify the certificate of trade company, and trade company not necessarily will verify holder's certificate.
The present invention supports multistage certificate system, verifies that promptly both sides needn't hold the certificate that same CA sends, if both sides the CA of common trust is arranged in the CA chain of accredited book, can verify.In Fig. 6, the holder holds the certificate that CCA sends, and CCA holds the certificate that ROOTCA sends, and trade company holds the certificate that ROOTCA sends, because the CA----ROOTCA of common trust is arranged between holder and the trade company, and identity verification mutually between them.
On the authentication mode, the sensitive information relevant with Web browser, as the entity certificate request, payment between order between holder and trade company and holder and the payment gateway etc., adopt the safety of SSL guarantee information, SSL is at handshake phase authentication server certificate or authentication server and customer's certificate; And the message exchange between trade company and the payment gateway is based on TCP/IP's, so every sensitive information must be encrypted and digital signature with private key, and encloses certificate and checks for the other side.
The confidentiality of data
The confidentiality of data is meant encrypts transmitting data, prevents that sensitive information is stolen.Because asymmetric-key encryption algorithm more complicated, speed is slower, and the general method that adopts is to produce a symmetrical key (being called session key) at random, and uses private key encryption, and the form digital envelope transmits data with session key again.
Ssl protocol provides the data confidentiality of said method.As for the communication information based on TCP/IP, must use said method that information is encrypted, the present invention adopts RSA as the asymmetric-key encryption method, adopts the encryption method of DES as symmetric key.
The integrality of data
The integrality of data is usually in order to method realization down:
Message is formed summary (Digest) by certain back of handling, and summary is attached to the message back, different message can not have identical summary statistically, and common digest algorithm comprises SHA-1 etc.
Ssl protocol is supported the method for eap-message digest, based on the communication of TCP/IP, then needs to realize voluntarily, and the present invention adopts SHA-1 as the method that generates eap-message digest.
The non repudiation of data
After generating summary, use encrypted private key, form digital signature, be attached to the message back, together send with message, this message just has non repudiation, because it is to sign and issue by the private key of transmit leg.
Ssl protocol is not supported the non repudiation of data, the present invention forms message with I/O territory packing responsive in the webpage, and add that by algorithm the method guarantee information of digital signature has non repudiation, to nonnumeric certificate class holder, the information that it sends does not have non repudiation.
2. safety of data
The security of system data mainly is meant following two aspects:
The security of private cipher key
The security of system program, file and database etc.
The present invention adopts several different methods to guarantee the security of private key, to the holder, can encrypted private key be deposited on hard disk, floppy disk and the IC-card, and for trade company, payment gateway and CA, must adopt IC-card to deposit private key according to different demands for security.
And IC-card is deposited the mode of private key and is divided into two kinds:
A. storage type IC-card, the only safety storage of responsible private key prevents the fraudulent copying of private key and reads, but does not possess computing function.Demand is read in the calculating internal memory with private key when using private key, wipes after the use, though this method is more safe than depositing in disk and floppy disk, but still has certain risk.
B. the calculation type IC-card has computing function, can finish the enciphering/deciphering operation in IC-card, because all calculating are all finished in IC-card, therefore has very high security, prevents that effectively private key from leaking.
As for the security of system data, mainly be meant trade company, payment gateway and CA safety of data.Because the holder does not preserve key data; the level of security of its data is not high, and enterprise-level data such as trade company, payment gateway and CA, can be placed on the internet of protected by firewall; this respect need consider that when setting up enterprise network the present invention does not stipulate in this respect.
In traditional modes of payments, Payment Request is initiated by trade company or bank, and the Payment Request of internet trade is directly initiated by the holder.
Common internet trade system, the holder sends to trade company with payment instruction, transfers to payment gateway by trade company again, and this just makes some illegal trade companies can usurp holder's sensitive information (as card number, PIN etc.).SET adopts the method for dual signature to address this problem, but deals with more complicated.The present invention adopts the holder directly to address this problem to the method that payment gateway is sent out payment instruction, simultaneously in order to verify the rationality of holder's payment information, has non repudiation with making to conclude the business, trade company also must send Payment Request to payment gateway, payment gateway gives payment response after checking both sides' payment information.
To there not being the holder of digital certificate, trade company can not verify that to its identity payment gateway is by the legitimacy of PIN checking holder identity; To holding the holder of digital certificate, trade company can decide whether verify holder's identity in its sole discretion, because to an illegal holder, payment gateway can be refused to pay request, payment gateway must be verified its identity, sometimes payment gateway meeting simultaneous verification digital certificate and PIN have legal online transaction right to guarantee the holder.The holder of different level of securitys has different trading privileges.
The fail-safe software bag is the basis of four sub-system security function of the present invention.It provides one group of safe function API, and the Secure Application of four subsystems can be called the function of basic security function by this group API, comprising: encryption, deciphering, signature, authentication, key generation and management, certificate management etc.
As shown in Figure 7, the fail-safe software bag is between user application and the hardware, for the user provides safety related functions API.
The function declaration of each big module is as follows in the fail-safe software bag:
Administration module
For application program provides unified api interface, and be responsible for calling lower floor's function sub-modules.This module can realize that some complicated functions are as signature, authentication etc.
The security algorithm module
Following several algorithm is provided:
A. asymmetric encryption/decryption algorithm RSA (384,512,1024,2048)
B. symmetrical encryption/decryption algorithm DES (56,128)
C. digest algorithm SHA-1
The security algorithm module is according to hardware state and call requirement, the acquisition mode (IC-card/hard disk/floppy disk) of decision key and the method for operation (IC-card/program) of algorithm.
Key management
Generation with asymmetric arithmetic and symmetry algorithm key is stored and is obtained function; The generating mode of support program and IC-card, the access mode of support hard disk, floppy disk and IC-card; And the private key management function is provided, can match key ring according to certificate.
Certificate management
The generation of certificate, access and management.Comprising the certificate that uses IC-card as storage medium.Certificate management comprises user certificate management and CA certificate management.
Hardware drive module
The driving of hardware devices such as IC-card read write line and floppy drive.Driving comprising storage type and calculation type IC-card.These functions comprise:
A. read/write user name
B. read/write password
C. read/write private key
D. read/write user certificate
E. read/write CA certificate
F. private key produces (calculation type IC-card)
G. encryption/decryption algorithm computing (calculation type IC-card)
The fail-safe software bag is a general software package, can install at PC and server.The present invention's four big subsystems all call the fail-safe software bag and finish safety related functions.
The holder holds in the software, and Security Agent software transfer fail-safe software bag is realized the security function of SSL, and Active X control invokes fail-safe software packet function is finished digital signature.
In the CA software, the fail-safe software bag realizes that key produces and access, bottom functions such as certificate generation and checking.
In trade company's end software and payment gateway end software, fail-safe software is surrounded by two aspect purposes, and one is to be used in the security gateway software, finishes the security function of SSL, another is in the Message Processing that is used between trade company and payment gateway, finishes functions such as enciphering/deciphering signature, certification authentication.
Below in conjunction with accompanying drawing most preferred embodiment is elaborated.
Fig. 8 is the CA system construction drawing
Fig. 9 is the modular structure figure of CA on Windows NT platform
Figure 10 is that the holder holds software system structure
Figure 11 is the system architecture of trade company's end software
Figure 12 is trade company's end block diagram for software modules
Figure 13 is payment gateway end software system structure figure
Figure 14 is payment gateway end modular structure figure
Figure 15 is a typical online transaction process flow diagram
CA software is an application based on Web, and the operation interface based on browser is provided; Based on the high speed RSA Algorithm, realization is to structure, analysis and the checking of digital certificate, this is the Core Feature of CA software, it has realized the interface with Web server and other servers simultaneously, and mutual by http protocol with browser, the functions such as distribution, certificate download, certificate revocation and certificate update that it uses webpage and CGI/ISAPI to combine and realize certificate.The certificate that it is issued meets the X.509 structure and the coding of the digital certificate of prescribed by standard, is a digital certificate issued and a management system based on the internet.
As shown in Figure 8, whole C A software systems are made up of a CA Web server, database server and mail (Mail) server and workstation.The user applies for and manages oneself digital certificate by the internet with browser, the system manager also manages system by browser, and therefore, CA software comes down to the expansion of Web server, is installed on the same station server with Web server.CA software connects database by " Open Database Connectivity (ODBC) ", and database is used to preserve user certificate, network address out of Memory such as (URL); CA software uses smtp server to send necessary mail to the user simultaneously.Wherein Web server and Mail server are positioned at demilitarized zone (Demilitarized Zone), internet and in-house network (Intranet) addressable this website per family, database is positioned at Intranet, has only inner management user and holder to hold software to visit.Because the CA private key belongs to highly secret, the holder holds software to use the calculation type IC-card to deposit private key, and all use the encryption/decryption algorithm of private key all to finish in IC-card.
The function of CA comprises user function and manager function two partly
User function: user function is meant and is the service that domestic consumer provided by internet access CA, is divided into three parts: CA certificate is downloaded: comprise that the root certificate is downloaded, CA certificate at different levels is downloaded; Subscriber information management; Comprise that the user registers, log-on message is revised, user PIN revises; User certificate management: comprise certificate request, certificate query, certificate download and installation, certificate revocation and certificate update.
Manager function: the service that provides for CA software system management person is provided manager function, is divided into four parts: certificate management: comprise that the user's registration information management--the log-on message form is checked, printed to log-on message; Certificate management--certificate is checked, certificate issue, certificate revocation, notice certificate user; CA certificate management--application CA certificate, installation CA certificate, CA certificate tabulation; Admin Account's management: comprise increasing account, modification account, deletion account, account query; System management: comprise system configuration, root certificate install; Report Server Management: comprising that report generation, form are checked with form deletes.
The design of CA software can realize on kinds of platform, below is that example illustrates its modular structure Fig. 9 with the IIS on the NT.
CA software is by html page, ISAPI/CG program, fail-safe software bag and Database etc. partly form, the CGI/ISAP program is the main body of CA software, it has realized the generation and the functions such as storage, certificate request, generation, abolishment and renewal of key, and realize and database manipulation with the interface of SMTP, the CGI/ISAPI program has realized user and keeper's function, and the fail-safe software bag has been realized whole RSA Algorithm, comprises functions such as key generation, certificate generation and checking.CGI/ISAPI is connected to database by ODBC, makes the program of CA software have better generality.
The holder holds software to be mounted in software on holder PC or other transaction terminals, realizes highly dense SSL communication, functions such as digital signature IC-card driving.Its main target has two, and the one, make browser and Web server can set up escape way (by highly dense SSL), make holder's sensitive information (PIN, card number etc.) obtain safety guarantee when transmitting by HTTP.The 2nd, for webpage provides the Active X with security function control, these security functions comprise digital signature, IC-card driving etc.
The present invention has done division to holder's kind, different holders use different holders to hold software software, therefore the holder holds software to be designed to a software of cutting out easily, to adapt to the difference human needs that holds, for making things convenient for the holder to use this software, the holder holds the installation of software and is provided with comparatively simple in addition.
The holder holds system architecture such as Figure 10 of software.
The holder holds software mainly partly to form by following four:
Shell script: operate on the client rs PC, but source program is embedded in the webpage, mainly finishes work such as input domain inspection.
Control: be the interactive interface of webpage for a fineness, its main function is to call the function of fail-safe software bag, realizes the digital signature in some responsive territory and IC-card driving etc.
Security Agent: design for realizing that highly dense SSL connects, the browser of current trend such as IE, Netscape etc. support SSL, but be subjected to U.S.'s encryption software outlet restriction, the browser Cipher Strength that exports to China is very low, the key length of symmetric cryptography method has only 40, and for realizing highly dense SSL function, the holder holds software to adopt the mode of setting up Security Agent, Security Agent is called the function of fail-safe software bag, finishes functions such as the desired encryption/decryption algorithm of SSL, certification authentication, data summarization.
Fail-safe software bag: for control and Security Agent provide safe function API.
It is a software that is easy to cut out that the holder holds software, and it is made up of relatively independent several parts, comprising:
Security Agent: the main highly dense SSL of realization that is responsible for
Control: be responsible for finishing digital signature
Fail-safe software bag:, can be divided into the fail-safe software bag-IC of band IC-card driving and the fail-safe software bag-S of pure software for Security Agent provides underlying algorithm and hardware driving.
Simultaneously, we press its level of security rough classification with the holder, and its module that adopts is as follows:
A: low close SSL, no certificate user
B: highly dense SSL, no certificate user adopts Security Agent and fail-safe software bag-S
C: highly dense SSL, floppy disk/hard disk certificate, the user of band digital signature function adopts Security Agent, control and fail-safe software bag-S.
D: highly dense SSL, the IC-card certificate, the user of band digital signature function adopts Security Agent, control and fail-safe software bag-IC.
Trade company's end software is the software that operates in trade company's end server, and it mainly finishes two big functions, the one, and reception and processing holder's transaction request comprises order, inquiry etc., the 2nd, the transaction between processing and the payment gateway is as payment, inquiry, clearing etc.Trade company end software may be related with the client management system of trade company, commodity stocks system etc., but these systems are at the row of trade company's end discussion of software.
Whole trade company's end software systems (Figure 11) are by a Web server, one Tianwan businessman family end software server, database server and workstation are formed, wherein trade company's end software server and Web server must be with the IC-card read write line, are used for depositing private key and certificate.
The expansion of Web server by webpage and server end realizes mutual with the holder, CGI/ISAPI program run in trade company's end software is on this server, and the security gateway software in this server operation trade company end software, realize highly dense SSL function, the HTTPS that sets up safety between holder's browser and the Web server is connected.Web server is positioned at demilitarized zone (DemilitarizedZone), internet and Intarnet addressable this server per family.
Trade company's end software server is finished the main processing capacity of trade company's end software, comprising: the processing of transaction such as order, payment, inquiry, clearing; Communication and information processing with payment gateway; System management and database manipulation etc., trade company's end software server is positioned at Intranet, has only internal user, and the network Web server just can be visited with the paying server relevant with trade company.
Database server is trade company end software data center, and trade company's end software connects database by ODBC, and database is deposited customer data, important informations such as payment gateway information, commodity stocks, transaction journal.Database server is positioned at Intranet, has only internal user and trade company end software server to visit.Trade company's end software server and database server can synthesize one usually.
Because trade company's private key is one of guarantee of trade company's security, trade company's end software uses the calculation type IC-card, deposits private key, and all use the encryption/decryption algorithm of private key all to finish in IC-card.
Trade company's end software is made of their relation such as Figure 12 a plurality of modules:
These modules are divided three classes:
1. towards the module of payment gateway, comprising: TCP/IP communication management, payment gateway, Message Processing, payment processes etc.
2. towards holder's module, comprising: security gateway, CGI/ISAPI program, order processing etc.
3. the internal system administration module comprises: database interface, system management etc.
Mainly contain three kinds of communication modes between trade company's end software and external user and the program, be respectively described below:
Communication with the holder: trade company's end software and holder's communication mainly is to use http protocol as communication by the internet, and promptly the holder is by Web browser visit trade company end software.Sensitive information is adopted the HTTPS agreement, and this part function is finished by security gateway.Security gateway is supported highly dense SSL communication, and never secure web-page (HTTP) forwards secure web-page (HTTPS) to, and the redirect response code that can use HTTP to provide is realized.
Communication with payment gateway: adopt DER coding in the present invention being connected between trade company and the payment gateway based on ICP/IP protocol.Compare with HTTP, TCP/IP sets up and safeguards that the cost of dialogue is lower, after both sides can reach an agreement on and set up dialogue, keeps dialogue to open, and needn't all rebulid dialogue at every turn, and it can also provide dialogue management function freely in addition.
Communication with internal user: internal user mainly is meant the keeper of trade company's end software, and the system manager carries out finishing system management function alternately with browser and supervisory routine.
The functions of modules of trade company's end software is as follows:
Security gateway: operate in high-intensity method for encryption/decryption is provided on the Web server, RSA cryptographic algorithms can reach 1024 keys, and symmetric encipherment algorithm can reach 128 keys.This be export to SSL function that the Web server of China carries can not compare, it can combine with the IC-card read write line simultaneously, utilize IC-card storage private key and certificate, even carry out encryption/decryption algorithm at IC-card, improve security of system greatly, it provides anonymous secure access and two kinds of access modes of User Recognition secure access, supports respectively not with the holder of certificate with the band certificate.
The CGI/ISAPI program: operate on the Web server, be responsible for receiving the information that holder's webpage is submitted to, tissue is exported webpage, and inputoutput data is simply handled.Another critical function of this module is the digital signature of carrying out digital signature and checking holder, and this function is finished by calling fail-safe software bag software package.
The TCP/IP communication management: the communication between this module management trade company and the payment gateway receives and transmission information.It is responsible for setting up, closing and monitor their connection status.
The payment gateway Message Processing: this module is responsible for handling the payment gateway data that mail to or receive and is surrounded by four major functions:
A. validation of payment gateway identity and decipher the packets of information that payment gateway is sent here, this funcall fail-safe software bag is finished.
B. handle the payment gateway packets of information after deciphering, it is decoded, make it to meet the information interface requirement of payment processes module.
C. the information that the payment processes module is sent here is carried out the DER coding.
D. to the information behind the coding encrypt, processing such as digital signature, make it to adapt to the requirement of payment gateway, this funcall fail-safe software bag is finished.
Database interface: the access function to system's major database is provided,, its objective is a database manipulation standardization, improve the versatility and the portability of system for module invokes such as payment processes, order processing, system managements.
System management: major function comprises account executive maintenance, system configuration, Report Server Management, system monitoring, data base initialize, clearing etc.
Order processing: requests such as authority are inquired about, asked for to subscription request, the order of handling the holder.This system may with the existing client management system of trade company, commodity inventory control system etc. is related.When subscription process, with decision holder's the modes of payments, the payment gateway under the holder etc.
Payment processes: according to the prompting of payment gateway, send mandate, catch, reimbursement, adjustment, dash and just waiting request to payment gateway, and the return results of record payment gateway, use for order processing system.In addition, payment system can be sent the request of catching to payment gateway in due course according to the record of monthly payment plan and multinomial payment.
Settlement process: be responsible for checking account and settlement process with each payment gateway.
Payment gateway end software is the software that operates in payment gateway end server, and it mainly finishes the function of three parts:
(1) processing is from holder's Payment Request.Comprise mandate, payment, reimbursement etc.
(2) handle Payment Request, and check with holder's Payment Request from trade company.
(3) Payment Request of trade company is changed into the existing acceptable form of payment network, finish real payment function.
Whole payment gateway end software systems (Figure 13) are made up of the workstation of a Web server, payment gateway end software server, database server and some, wherein Web server and payment gateway end software server must be with the IC-card read write line, are used for depositing private key and certificate.
Web server is realized and the interactive function of holder's browser by webpage and CGI/ISAPI program, goes back the security of operation gateway software on Web server, with being connected of the SSL protection that realizes accepting high strength encrypting between holder's browser.Web server is positioned at demilitarized zone (Demilitarized Zone), all addressable Web server of Intranet and Internet user.
Payment gateway end software server is finished the main processing capacity of system, comprises the Payment Request of handling holder and trade company; Be connected with existing payment network, and for it provides interface; System management and database maintenance etc.Payment gateway end software server is positioned at Intranet, has only internal user, and Web server can be visited with relevant merchant server.
Database server is the data center of payment gateway end software, and payment gateway end software connects database by ODBC.Stored database comprises: payment flowing water, clearing flowing water, trade company's data etc.Database server is positioned at Intranet, has only internal user and payment gateway end software server to visit, and payment gateway end software server and database server can synthesize one.
Because the private key of payment gateway is the very high information of level of security, payment gateway end software uses the calculation type IC-card to deposit private key, the algorithm of useful private key enciphering/deciphering all in IC-card, finish.
Relation such as Figure 14 of payment gateway end software main modular:
We are divided into four classes to these modules:
(1) towards holder's module, comprising: security gateway, CGI/ISAPI program and holder's payment processes etc.
(2) towards the module of trade company, comprising: TCP/IP communication management, trade company's Message Processing, trade company's payment and settlement process etc.
(3) internal system administration module comprises: database interface, system management etc.
(4) existing payment interface
Four kinds of communication modes are arranged between payment gateway end software and external user and the program, hold software class seemingly with trade company.Different is and the communication of existing payment network that the communication modes of this communication will be by existing payment network decision.
Payment gateway end software module function is as follows:
Security gateway: run on the Web server, the high strength method for encryption/decryption is provided, RSA cryptographic algorithms can reach 1024 keys, symmetric encipherment algorithm can reach 128 keys, it can combine with the IC-card read write line simultaneously, utilize IC storage private key and certificate, even on IC, carry out encryption/decryption algorithm, improve security of system greatly.This be export to SSL function that the Web server of China carries can not compare, it provides anonymous secure access and two kinds of access modes of User Recognition secure access, respectively tenaculum certificate and not with the holder of certificate.
CGI/ISAPI program: operate on the Web server, be responsible for receiving the information that holder's webpage is submitted to, tissue output webpage, and the input and output data are carried out simple process, the another one major function of this module is the digital signature of carrying out digital signature and checking holder, and this function is finished by calling fail-safe software bag software package.
The TCP/IP communication management: the communication between this module management payment gateway and the trade company, receive and transmission information, set up, close and monitor their connection status.
Trade company's Message Processing: this module is responsible for handling the trade company's packet that mails to and receive, four functions are arranged:
A. verify merchant identification and decipher the packet that trade company sends here
B. handle the trade company's packet after deciphering, it is decoded, and be sent to trade company's payment processes module.
C. the information that trade company's payment processes module is sent here is carried out the DER coding
D. the information behind the DER coding is encrypted, processing such as digital signature make it to meet the requirement of trade company.
Database interface: visit and operating function to payment gateway end software major database are provided, for holder's payment processes, trade company's payment and settlement process, module invokes such as system management, its objective is a database manipulation standardization, improve the versatility and the portability of system.
System management: major function comprises account executive maintenance, system configuration, Report Server Management, system monitoring, data base initialize etc.
Holder's payment processes: handle holder's payment and payment query requests, and result is returned, this module is not handled real payment, and a recorded information is checked usefulness for trade company's payment processes.
Trade company's payment and settlement process: payment and the settlement requests of handling trade company, and after will asking to hand over existing payment interface to be finished dealing with, result is returned, to common trade company's Payment Request, this module can be checked holder's payment processes information, the information Shi Caihui that conforms to handles, and does not then check paying by instalments request.
Existing payment system interface: the information that this interface is brought trade company's payment processes module is converted into the form of existing payment network, is submitted to existing payment network, and handles return message, and payment gateway end software provides the information translation with ISO8583-93.
A typical online transaction process description as shown in figure 15:
Step 101: the holder is connected with network by the network terminal, open any browser.
Step 102: the holder searches commodity in trade company's site home page.
Step 103: the holder confirms own required commodity.
Step 104: the holder submits order to according to the order page of trade company's website, waits for then.
Step 105: trade company's program is accepted an order.
Step 106: trade company's end confirms an order, and generates unique this order of order number sign.
Step 107: trade company's end sends a payment guide picture to the holder.
Step 108: the holder is according to prompting, to the BIN of the own a certain bank card of payment guide picture input.
Step 109: trade company's program is searched corresponding bank paying gateway according to BIN.
Step 111: the holder imports card number, PIN or inserts IC-card, submits payment instruction and wait to.
Step 112: payment gateway is accepted holder's payment and is referred to
Step 113: payment gateway is organized message (using the DER coding) according to holder's payment instruction, to corresponding trade company photos and sending messages prompt report, points out the payment instruction of relevant this trade company in this trade company's payment gateway.This message uses digital envelope to encrypt.
Step 115: trade company sends the Payment Request message to payment gateway, also uses the DER coding, and digital envelope is encrypted.
Step 116: payment gateway is accepted the Payment Request of trade company, compares with corresponding holder's payment instruction.
Step 117: as both sides' payment content unanimity, then execution in step 118, as inconsistent, then do not handle, and send miscue to trade company.
Step 118: payment gateway sends Payment Request to payment network, and obtains the payment network response.
Step 119: payment gateway sends payment response to holder and trade company respectively.
Step 120: holder and trade company confirm to pay and finish according to the payment response of payment gateway.The holder enters trade company's website again, requires transaction authority to trade company.
Step 121: corresponding order is searched by trade company, sends transaction authority.
Step 122: holder's store transaction authority.The wait commodity arrive.
Claims (3)
1. safe electronic commerce and trade system, it comprises certifying organization (CA) software, the holder holds software, trade company's end software, payment gateway end software four is partly formed, between four subsystems with Internet as the main information medium of exchange, the holder, trade company and bank paying gateway link together, and for they provide a kind of order and means of payment, realized that it is characterized in that: the holder holds software from the automatic processing of holder's order → bank paying → trade company's clearance overall process, trade company's end software, be illustrated in figure 4 as triangular structure between the payment gateway end software, the holder directly sends out payment instruction to payment gateway after trade company sends the order instruction.
2. safe electronic commerce and trade as claimed in claim 1 system, it is characterized in that, the holder holds the communication between software and trade company end software, the payment gateway end software to adopt Secure Sockets Layer(SSL), and the communication between trade company's end software and the payment gateway end software is adopted based on ICP/IP protocol and met the DER message of ISO8824, ISO8825.
3. safe electronic commerce and trade as claimed in claim 1 or 2 system is characterized in that the holder holds in the software, supports the read/write of IC-card, digital signature/checking.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 99119068 CN1288205A (en) | 1999-09-14 | 1999-09-14 | Full compatible inter net electronic trade and payment system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 99119068 CN1288205A (en) | 1999-09-14 | 1999-09-14 | Full compatible inter net electronic trade and payment system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1288205A true CN1288205A (en) | 2001-03-21 |
Family
ID=5280688
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 99119068 Pending CN1288205A (en) | 1999-09-14 | 1999-09-14 | Full compatible inter net electronic trade and payment system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1288205A (en) |
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2006024223A1 (en) * | 2004-08-31 | 2006-03-09 | China Unionpay | A new type bankcard transaction exchange system |
| CN100364303C (en) * | 2004-03-04 | 2008-01-23 | 上海交通大学 | System structure of integrated practicing plat form of information safety engineering |
| CN101577656A (en) * | 2009-05-19 | 2009-11-11 | 刘文祥 | Control display and network system substituting integrated circuit card |
| CN101388771B (en) * | 2007-09-10 | 2010-12-15 | 捷德(中国)信息科技有限公司 | Method and system for downloading digital certificate |
| CN101388772B (en) * | 2007-09-10 | 2011-11-30 | 捷德(中国)信息科技有限公司 | Digital signature method and system |
| WO2012142839A1 (en) * | 2011-04-22 | 2012-10-26 | 中兴通讯股份有限公司 | Method, system, and device for handling media message digital signature |
| CN102890810A (en) * | 2004-08-31 | 2013-01-23 | 中国银联股份有限公司 | Novel bank card transaction exchange system |
| CN105474224A (en) * | 2013-08-26 | 2016-04-06 | 苹果公司 | Secure provisioning of credentials on an electronic device |
| CN105488712A (en) * | 2015-11-27 | 2016-04-13 | 四川诚品电子商务有限公司 | Integrated internet commerce payment system |
| CN105512926A (en) * | 2015-11-27 | 2016-04-20 | 四川诚品电子商务有限公司 | Internet commerce and trade payment system |
| CN105512927A (en) * | 2015-11-27 | 2016-04-20 | 四川诚品电子商务有限公司 | High-efficiency Internet commerce and trade payment system |
| CN105512929A (en) * | 2015-11-27 | 2016-04-20 | 四川诚品电子商务有限公司 | Highly-efficient improved internet commerce and trade payment system |
| CN105550880A (en) * | 2015-11-27 | 2016-05-04 | 四川诚品电子商务有限公司 | Improved internet commerce and trade payment system |
| CN105653360A (en) * | 2014-12-01 | 2016-06-08 | 谷歌公司 | Method and system for cross-app function acquisition |
| CN105678179A (en) * | 2014-11-20 | 2016-06-15 | 广东华大互联网股份有限公司 | Issuing method of IC card internet terminal and management system |
| CN106779695A (en) * | 2017-01-18 | 2017-05-31 | 世纪禾光科技发展(北京)有限公司 | For the method for payment and equipment of e-commerce platform |
-
1999
- 1999-09-14 CN CN 99119068 patent/CN1288205A/en active Pending
Cited By (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN100364303C (en) * | 2004-03-04 | 2008-01-23 | 上海交通大学 | System structure of integrated practicing plat form of information safety engineering |
| WO2006024223A1 (en) * | 2004-08-31 | 2006-03-09 | China Unionpay | A new type bankcard transaction exchange system |
| US7617152B2 (en) | 2004-08-31 | 2009-11-10 | China Unionpay Co., Ltd. | Bankcard transaction exchange system |
| CN102890810A (en) * | 2004-08-31 | 2013-01-23 | 中国银联股份有限公司 | Novel bank card transaction exchange system |
| CN102890810B (en) * | 2004-08-31 | 2017-03-01 | 中国银联股份有限公司 | A kind of Novel bank card transaction exchange system |
| CN101388771B (en) * | 2007-09-10 | 2010-12-15 | 捷德(中国)信息科技有限公司 | Method and system for downloading digital certificate |
| CN101388772B (en) * | 2007-09-10 | 2011-11-30 | 捷德(中国)信息科技有限公司 | Digital signature method and system |
| CN101577656A (en) * | 2009-05-19 | 2009-11-11 | 刘文祥 | Control display and network system substituting integrated circuit card |
| WO2012142839A1 (en) * | 2011-04-22 | 2012-10-26 | 中兴通讯股份有限公司 | Method, system, and device for handling media message digital signature |
| CN105474224A (en) * | 2013-08-26 | 2016-04-06 | 苹果公司 | Secure provisioning of credentials on an electronic device |
| CN105474224B (en) * | 2013-08-26 | 2018-10-19 | 苹果公司 | Security platform system and correlation technique, device and electronic equipment |
| CN105678179A (en) * | 2014-11-20 | 2016-06-15 | 广东华大互联网股份有限公司 | Issuing method of IC card internet terminal and management system |
| CN105678179B (en) * | 2014-11-20 | 2018-11-13 | 广东华大互联网股份有限公司 | A kind of IC card internet terminal distributing method and management system |
| CN105653360A (en) * | 2014-12-01 | 2016-06-08 | 谷歌公司 | Method and system for cross-app function acquisition |
| CN105512929A (en) * | 2015-11-27 | 2016-04-20 | 四川诚品电子商务有限公司 | Highly-efficient improved internet commerce and trade payment system |
| CN105550880A (en) * | 2015-11-27 | 2016-05-04 | 四川诚品电子商务有限公司 | Improved internet commerce and trade payment system |
| CN105512927A (en) * | 2015-11-27 | 2016-04-20 | 四川诚品电子商务有限公司 | High-efficiency Internet commerce and trade payment system |
| CN105512926A (en) * | 2015-11-27 | 2016-04-20 | 四川诚品电子商务有限公司 | Internet commerce and trade payment system |
| CN105488712A (en) * | 2015-11-27 | 2016-04-13 | 四川诚品电子商务有限公司 | Integrated internet commerce payment system |
| CN106779695A (en) * | 2017-01-18 | 2017-05-31 | 世纪禾光科技发展(北京)有限公司 | For the method for payment and equipment of e-commerce platform |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1271485C (en) | Device and method for proceeding encryption and identification of network bank data | |
| CN1635525A (en) | Security Internet payment system and security Internet payment authentication method | |
| CN1288205A (en) | Full compatible inter net electronic trade and payment system | |
| CN1211719C (en) | Mutual authentication in a data network using automatic incremental credential disclosure | |
| CN1266560C (en) | Enhanced quality of identification in a data communications network | |
| CN1147120C (en) | Accounting apparatus, information receiving apparatus, and communication system | |
| CN101051372A (en) | Method for safety verifying financial business information in electronic business | |
| CN1340784A (en) | Network business operated by intelligent card allowed to te used through consumers' equipment | |
| CN1502186A (en) | Controlled distribution of application code and content data within a computer network | |
| CN1561498A (en) | Apparatus, method and system for payment using mobile device | |
| CN1399216A (en) | Electronic payment method, system and device | |
| CN1575580A (en) | Portability and privacy with data communications network browsing | |
| CN1579079A (en) | Enhanced privacy protection in identification in a data communications network | |
| CN1930591A (en) | Multiple party benefit from an online authentication service | |
| CN1579080A (en) | User access control to distributed resources on a data communications network | |
| CN1449540A (en) | Method and system of securely collecting, storing, and transmitting information | |
| CN1908981A (en) | Wireless computer wallet for physical point of sale (pos) transactions | |
| CN1756150A (en) | Information management apparatus, information management method, and program | |
| CN1445707A (en) | Service submitting system for supplying service to user equipment from service submitting equipment | |
| CN1758590A (en) | Information processing apparatus, information processing method, and program | |
| CN1581771A (en) | Authentication system, server, and authentication method and program | |
| CN101034449A (en) | Method, system and mobile terminal for implementing electronic payment | |
| CN1700641A (en) | Digital signature assurance system, method, program and apparatus | |
| CN1773546A (en) | Anonymous ordering system, anonymous ordering apparatus and program | |
| CN1304602A (en) | Cryptographic system and method for electronic transactions |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C06 | Publication | ||
| PB01 | Publication | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |