CN1738234A - Cheque password gaining method based on network - Google Patents
Cheque password gaining method based on network Download PDFInfo
- Publication number
- CN1738234A CN1738234A CN 200410009440 CN200410009440A CN1738234A CN 1738234 A CN1738234 A CN 1738234A CN 200410009440 CN200410009440 CN 200410009440 CN 200410009440 A CN200410009440 A CN 200410009440A CN 1738234 A CN1738234 A CN 1738234A
- Authority
- CN
- China
- Prior art keywords
- check
- password
- bank
- cheque
- information terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Disclosed a method for attaining the password of cheque based on the network, which can be used to get the password of paper cheque, comprises following steps: a, the user of cheque uses the network information terminal and connects the website of bank via the internet; b, after being checked legal by the website of bank, transmitting the password require which contains the information of cheque to the computer system of bank; c, the computer system receives password require and responses according the condition of account of user after checking the identification; d, the cheque password is generated when the remaining sum on the account is more than the sum of cheque, and be encoded to transmitted back to said network information terminal while freezing the sum of cheque on the account at the same time; rejecting to generate the password when the remaining sum of account is less than the sum of cheque; e, said network information terminal receives and displays the password of cheque. The invention ensures the safety of finance transaction and reduces the cost for attaining password of cheque, which creates the condition for spreading the application of password cheque.
Description
Technical field
The present invention relates to a kind of acquisition methods of check password, particularly a kind of check cryptosecurity acquisition methods of realizing based on the internet platform belongs to the Electronic Finance technical field.
Background technology
Check is one of instrument main in the capital settlement, because China's present stage financial environment is also unsound, and social credibility mechanism disappearance, the use of check is subjected to a lot of restrictions.
At present, for solving fail safe and the versatility problem in the check use, bank begins to promote the use of the password check.So-called password check is meant to be handled key elements such as check user's number of the account, check print number, class of business, the date of issuance, the amount of money by the modern encryption technology, produce one group of password that is used to verify the check legitimacy, is payment cipher.The check of filling in payment cipher is called the password check.
Existing password check using method is: bank sets up password and generates and check system in its computer system, and key is divided into PKI and private key two parts.Bank holds PKI, and the check user holds private key, and bank can verify the password that the holder of the check produces with private key by PKI.The holder of the check is from e_payment cipher of banker's buying rate, and by bank it carried out initialization.The holder of the check is when drawing a cheque, with key elements such as the number of this check, the date of issuance, class of business, Payment Amount input e_payment cipher, e_payment cipher produces payment cipher, by the holder of the check payment cipher is copied in check surface assigned address.
Though the check occupation mode of above-mentioned employing e_payment cipher is protected in fail safe, but e_payment cipher itself has certain cost, at present common price is about about 1000 yuan, and function singleness, so the enthusiasm that user installation is used not is very high.Consider that personal check is undoubtedly the important development direction of banks of China financial business, and the personal user admits the enthusiasm of this e_payment cipher can not be very high at one's own expense, therefore, still there is further improved necessity in existing hardware based e_payment cipher.
Summary of the invention
The purpose of this invention is to provide a kind of based on network check password acquisition methods, this method utilization has the network system of safety guarantee to transmit check information, makes the check user can obtain the check password safely.
For realizing above-mentioned goal of the invention, the present invention adopts following technical scheme:
A kind of based on network check password acquisition methods, the password that is used for paper spare check obtains, and its check password is generated automatically by the computer system of bank, it is characterized in that:
A. the check user uses network information terminal, connects website of bank by the internet;
B. after the website of bank affirmation is legal, include the password request of check information to the computer system transmission of described bank;
C. after the computer system of described bank receives this password request, after authentication, give a response according to check user's account situation;
If d. described account balance surpasses the amount of money on the check then generates the check password, after encrypting, send back described network information terminal, on described account, freeze the used amount of money of this check simultaneously; If described account balance does not surpass the amount of money on this check then refuses to generate password;
E. described network information terminal receives and demonstration check password.
Described method utilization comprises that the computer system of main frame, certificate application server, bank paying gateway, fire compartment wall, portal site server, certification authority/registration approving authority realizes, wherein said main frame, certificate application server, common first interior firewall that connects of bank paying gateway, described certification authority/registration approving authority is connected with described first external firewall, and described first external firewall is connected with described first interior firewall; The network information terminal of external user is connected with described portal site server by second external firewall, and described portal site server is connected with described first external firewall by described second interior firewall.
On the described network information terminal digital certificate is installed.
Digital certificate on the described network information terminal is provided by described certification authority/registration approving authority.
Among the described step b, described password request is carried out encryption by described network information terminal.
Based on network check password acquisition methods of the present invention needn't be bought e_payment cipher by the check user and just can obtain the check password safely, thereby not only guaranteed E-Security but also greatly reduce the cost that the check password obtains, for the large tracts of land of password check is promoted the use of the condition created.
Description of drawings
The present invention is further illustrated below in conjunction with the drawings and specific embodiments.
Fig. 1 is the flow chart of check password acquisition methods of the present invention.
Fig. 2 is the topological structure schematic diagram of the employed trusted computer system of the method for the invention.
Fig. 3 obtains the process schematic diagram of check password for the check user uses PC or notebook computer.
Fig. 4 obtains the workflow diagram of check password as terminal equipment with mobile phone for the check user.
Embodiment
The present invention has used comparatively general " eCheck " fully different with present.ECheck to be being greatest feature with no paper at all, it sign and issue, deposit in (collection), financing, transfer etc., all, transmit, and by clearinghouse (automated clearinghouse, ACH) unified login keeping, clearance by the internet with the digital signature endorsement.And the present invention considers the custom that present financial sector and general check user use, at object remain traditional paper spare check.
Basic ideas of the present invention are that the bank that draws a cheque is transferred in the work that produces the check password fully to carry out, and promptly payment cipher is produced by the computer system of bank.The algorithm that the computer system of bank generates password can adopt existing e_payment cipher system to generate the algorithm of check password, also can adopt other banking system to confirm the algorithm of its fail safe.As shown in Figure 1, the check user utilizes and comprises PC, and notebook computer, palmtop PC, mobile phone etc. are connected to website of bank at interior network information terminal by the internet, digital certificate are housed to prove its identity on this network information terminal.After the website of bank affirmation was legal, network information terminal transmitted the password request that includes check information to the computer system of bank, and password request is through encryption.After the computer system of bank receives this password request, after authentication, give a response according to this check user's account situation.If account balance surpasses cheque sum then generates the check password, after encrypting, send back described network information terminal, simultaneously the used amount of money of blocked check on account; If account balance does not surpass cheque sum then refuses to generate password.Network information terminal receives and shows the check password, and the user is filled up to it on check by check.So far, signed by is finished whole work that check is signed and issued, and check can be used.
The key that realizes above-mentioned password acquisition methods is that the password acquisition process has safety guarantee.And this safety guarantee can not resemble and adopts expensive complicated hardware cryptographic means to obtain the prior art.Therefore, the inventor proposes to adopt the computer system with safety guarantee as shown in Figure 2.In this computer system, main frame is connected with certificate application server, bank paying gateway, their common first interior firewalls that connects, (Certification Authority: certification authority) (Reigstration Authority: registration approving authority) be connected with first external firewall, this first external firewall is connected with above-mentioned first interior firewall CA with supporting RA.External user is connected with the portal site server of bank by second external firewall, and portal site server connects by second interior firewall and above-mentioned first external firewall.So, any request of external user all will through a plurality of fire compartment walls and independently CA/RA mechanism carry out multiple-authentication, thereby guarantee that check signs and issues being perfectly safe of process.
In the above-mentioned process of obtaining the check password by the internet, independently third party certification authority will play an important role.It by certificate mechanism for information security provides effectively, reliable protection, thereby guarantee confidentiality, identity verifiability and the non-repudiation of concluding the business.Wherein CA solves the legitimacy problem of PKI in the PKI system specially as the third party who is trusted in the e-commerce transaction.It provides a digital certificate for each user, and its digital signature makes assailant's certificate of can not forging and juggle the figures.The RA system is the certificate issued of CA, the extension of management.It is responsible for certificate request person's work such as information typing, audit and certificate issued.Simultaneously, the certificate of providing is finished corresponding management functions.
In addition, in the department of computer science of above-mentioned bank unifies check user's network information terminal, also want " the client check hypervisor " of build-in services in above-mentioned business procedure.This program should have the function of two aspects, is the management of digital certificate on the one hand, promptly matches with CA/RA mechanism, and the network information terminal that request is connected with banking system authenticates, and provides digital certificate to it.After this, have only on the network information terminal digital certificate through checking, confirm errorless after, banking system just can receive the password request from this terminal; Be the management of check on the other hand, this program should be monitored check user's bank account information, in case the cheque sum that the check user signs and issues has surpassed the remaining sum of account, promptly sign and issue be " bad check " time, in a single day the program refusal provides the check password for it, and provides after the check password, the amount of money of this check representative is promptly frozen in bank account, can realize " allocating a fund for its specified purpose " like this, effectively stop the generation of " bad check ".
Introduce two embodiment of this check password acquisition methods below.Among these two embodiment, the network information terminal that the check user is held is respectively PC (or notebook computer) and mobile phone.Because the operational capability and the storage capacity of PC and mobile phone all have evident difference, so its process of obtaining the check password is also different.
As shown in Figure 3, when the check user used PC or notebook computer to obtain the check password, he at first will arrive bank's account of drawing a cheque, then from the client part of website of bank download client check hypervisor.After this, the check user will hold the effective certificate and the account data is applied for digital certificate to bank, activates client-side program and gets personal identification number.This password is used for opening client's check hypervisor, and the check user can revise at any time.
When the check user buys check, check be risen, end in " not using check " column of number input client check hypervisor.Certainly, also can download the new cheque number of buying by website of bank.When the check user bought check, this batch cheque number had been bundled under this check user account.Whether check of the every use of check user, the computer system of bank are that the holder in due course verifies to it automatically all.
When the check user draws a cheque, on its all PC or notebook, start client's check hypervisor, the input personal identification number.Open " not using check " column, the number that finds preparation to draw a cheque adds class of business and Payment Amount, and computer connects the internet, and information is sent to bank.Send content and comprise signed by number of the account, cheque number, the date of issuance, class of business, payment.Above-mentioned transmission content is encrypted the back automatically by client's check hypervisor and is sent.
After bank's end is received the packet that sends by the internet, at first be decrypted, the work of identity verification, whether examination password applicant is the holder in due course of this check, and whether the examination account can satisfy the terms of payment, if can satisfy the terms of payment, be freeze corresponding amount, generate payment cipher, will return client by the internet after the password encryption.
Check user's terminal equipment is decrypted processing after receiving the paying by check password that bank sends automatically.The password that obtains is inserted in the column of corresponding check back automatically, and simultaneously, this cheque number is " using " state from " not using " state-transition.The while screen display: " password obtains success! Number is * * * * * * * * ".The check user copies appointed positions on check with above-mentioned number, and check is signed and issued process and finished.
Figure 4 shows that the check user is the workflow diagram that network-termination device obtains the check password with the mobile phone.For mobile phone, because its internal memory is less, and display screen is limited, and ideal method is directly to login website of bank, launches above steps step by step by portal site server.
When the check user uses mobile phone to obtain the check password,, still be necessary on terminal equipment, to install digital certificate in order to ensure the fail safe of process of exchange.But the SIM card in the mobile phone does not support to install the operation of digital certificate, for this reason, SIM card need be changed into the STK card.
At present, each big bank has all founded the business of " Mobile banking ", services such as can providing account inquiries for the check user, pay various expenses, the silver card is transferred accounts.Therefore, can the sub-clauses and subclauses of the work of check password as Mobile banking's function will be provided.When the check user need draw a cheque, select Mobile banking's function, the input password; Select " check management " clauses and subclauses, can obtain the check password according to the step that Mobile banking's program provides.This process is with the process difference of using PC to obtain the check password: when using PC, comprise signed by number of the account, cheque number, the date of issuance, the check content of class of business, payment etc. is to fill in this locality to finish, by once sending bank after the PC packaging ciphering to; And when using mobile phone, because the mobile phone internal memory is limited, the check content is to fill in one, encrypt one, transmit one, and promptly the client-side program on the mobile phone only provides operation interface, and the operation on backstage is finished by the portal site server of bank's end.
Though above described the present invention by embodiment, those of ordinary skills know, the present invention has many distortion and variation and does not break away from spirit of the present invention, wishes that appended claim comprises these distortion and variation and do not break away from spirit of the present invention.
Claims (5)
1. based on network check password acquisition methods, the password that is used for paper spare check obtains, and its check password is generated automatically by the computer system of bank, it is characterized in that:
A. the check user uses network information terminal, connects website of bank by the internet;
B. after the website of bank affirmation is legal, include the password request of check information to the computer system transmission of described bank;
C. after the computer system of described bank receives this password request, after authentication, give a response according to check user's account situation;
If d. described account balance surpasses the amount of money on the check then generates the check password, after encrypting, send back described network information terminal, on described account, freeze the used amount of money of this check simultaneously; If described account balance does not surpass the amount of money on this check then refuses to generate password;
E. described network information terminal receives and demonstration check password.
2. check password acquisition methods as claimed in claim 1 is characterized in that:
Described method utilization comprises that the computer system of main frame, certificate application server, bank paying gateway, fire compartment wall, portal site server, certification authority/registration approving authority realizes, wherein said main frame, certificate application server, common first interior firewall that connects of bank paying gateway, described certification authority/registration approving authority is connected with described first external firewall, and described first external firewall is connected with described first interior firewall; The network information terminal of external user is connected with described portal site server by second external firewall, and described portal site server is connected with described first external firewall by described second interior firewall.
3. check password acquisition methods as claimed in claim 1 is characterized in that:
On the described network information terminal digital certificate is installed.
4. as claim 2 or 3 described check password acquisition methods, it is characterized in that:
Digital certificate on the described network information terminal is provided by described certification authority/registration approving authority.
5. check password acquisition methods as claimed in claim 1 is characterized in that:
Among the described step b, described password request is carried out encryption by described network information terminal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200410009440 CN1738234A (en) | 2004-08-18 | 2004-08-18 | Cheque password gaining method based on network |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200410009440 CN1738234A (en) | 2004-08-18 | 2004-08-18 | Cheque password gaining method based on network |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1738234A true CN1738234A (en) | 2006-02-22 |
Family
ID=36080905
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200410009440 Pending CN1738234A (en) | 2004-08-18 | 2004-08-18 | Cheque password gaining method based on network |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1738234A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101652987B (en) * | 2007-05-31 | 2011-09-14 | 株式会社Pfu | Paper media information encryption system, decryption system and method for the same |
| CN102497635A (en) * | 2011-11-28 | 2012-06-13 | 宇龙计算机通信科技(深圳)有限公司 | Server, terminal and account password acquisition method |
| CN107749085A (en) * | 2017-10-25 | 2018-03-02 | 北京匡恩网络科技有限责任公司 | Ticket card, method and machinable medium using ticket card |
-
2004
- 2004-08-18 CN CN 200410009440 patent/CN1738234A/en active Pending
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101652987B (en) * | 2007-05-31 | 2011-09-14 | 株式会社Pfu | Paper media information encryption system, decryption system and method for the same |
| CN102497635A (en) * | 2011-11-28 | 2012-06-13 | 宇龙计算机通信科技(深圳)有限公司 | Server, terminal and account password acquisition method |
| CN102497635B (en) * | 2011-11-28 | 2015-07-08 | 宇龙计算机通信科技(深圳)有限公司 | Server, terminal and account password acquisition method |
| CN107749085A (en) * | 2017-10-25 | 2018-03-02 | 北京匡恩网络科技有限责任公司 | Ticket card, method and machinable medium using ticket card |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA3101638C (en) | Telecommunication system and method for settling session transactions | |
| CN2667807Y (en) | Network bank with device for encrypting and idetificating utilizing USB key | |
| Tiwari et al. | A multi-factor security protocol for wireless payment-secure web authentication using mobile devices | |
| EP1209874B1 (en) | A home server including proxy, for authentication and encryption instead of a user terminal, in an electronic commercial transaction | |
| US20170344983A1 (en) | BIXCoin: A Secure Peer-to-Peer Payment System Based on the Public Payments Ledger | |
| US20030105965A1 (en) | Business method for secure installation of a credit authorization key on a remote tcpa compliant system | |
| JP2000510621A (en) | Secure network electronic payment and credit collection system and method | |
| GB2386802A (en) | Auditing of secure communication sessions over a communication network | |
| CN101043337A (en) | Interactive process for content class service | |
| CN1326629A (en) | Method and system for authenticating and utilizing secure resources in computer system | |
| CN101938471A (en) | Deliver-upon-request secure electronic message system | |
| WO2014150277A2 (en) | Methods and systems for providing secure transactions | |
| CN101093562A (en) | Electronic authentication method and electronic authentication system | |
| CN106936588A (en) | A kind of trustship method, the apparatus and system of hardware controls lock | |
| CN101335754A (en) | Method for information verification using remote server | |
| CN1838141A (en) | Technology for improving security of accessing computer application system by mobile phone | |
| CN111433798A (en) | Credible insurance letter based on block chain | |
| CN101059853A (en) | Safe mobile macro-payment data processing system | |
| CN115423457A (en) | Cross-border financial payment settlement method and system based on block chain | |
| US20070288323A1 (en) | Method and System for Verifying the Integrity of an On-Line Vendor | |
| CN1588840A (en) | Communication method and system basenon vertual link customer terminal and bank network | |
| CN1858795A (en) | Identifying system and method for electronic bill credit based on CPK | |
| CN1738234A (en) | Cheque password gaining method based on network | |
| TWI618008B (en) | Transaction fee negotiation for currency remittance | |
| CN113783690B (en) | Authentication-based bidding method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |