CN1811830A - System and method for making ATM identity test using mobile phone - Google Patents
System and method for making ATM identity test using mobile phone Download PDFInfo
- Publication number
- CN1811830A CN1811830A CNA2005101374050A CN200510137405A CN1811830A CN 1811830 A CN1811830 A CN 1811830A CN A2005101374050 A CNA2005101374050 A CN A2005101374050A CN 200510137405 A CN200510137405 A CN 200510137405A CN 1811830 A CN1811830 A CN 1811830A
- Authority
- CN
- China
- Prior art keywords
- atm
- transaction
- account
- phone
- cell
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
An ATM identity authentication system utilizing handset includes ATM unit for transmitting verification request message includes inputted deal serial number, handset paying password and handset number to account system through bank comprehensive front end processor, proceeding subsequent ATM business transaction utilizing account system after verifying user's handset paying password, comprehensive front end processor connected with ATM unit and account system to proceed protocol conversion and transmitting to received verifying request message and received messages from account system, account system transmitting messages to handset including deal serial number and user deal identify code according to received deal applying request, so that user can verifying said messages from account system through user deal identify code and verifying handset paying password received from ATM unit, thereby executing ATM business transaction processing with handset number bound paying account. Said invention also provides an ATM identity authentication method utilizing handset.
Description
Technical field
The present invention relates to a kind of system of ATM authentication, particularly, relate to a kind of system and method thereof of utilizing mobile phone to carry out the ATM authentication.
Background technology
On the existing ATM machine, all be to carry out the business transaction operation in the mode of plug-in card, for example withdraw cash, revise password, query the balance etc.Be that the payer must hold bank card, behind plug-in card on the ATM, ATM is communicated with in real time with bank accounting system, and payer's input card password is errorless through the account system verification password of bank, then can utilize the account system of bank to finish the business transaction operation.So the prerequisite of carrying out business transaction in ATM is must be to hold bank card.If the remittee is not with bank card, then can not use ATM to extract cash.
On the other hand, along with being extensive use of of mobile phone, mobile phone also more and more becomes a kind of multi-functional, individual terminal devices of being commonly used.On mobile phone, communication company provides the modes of payments of small amount for mobile phone.Why being the small amount clearing, is because in the mobile phone settlement process that communication company provides, and considers and manages conveniently, not with the real-time interlock of the account system of bank.Communication company can only provide each common mobile-phone payment in 20-30 unit for avoiding excessive risk.
Therefore, exist the ATM business transaction for the payer provides more flexibly, the demand of payment process easily.Thereby as long as the user carries mobile phone, and user's the balance of deposits is enough, just can realize using ATM to withdraw deposit.
Summary of the invention
In order to address the above problem, the present invention proposes a kind of system and method thereof of utilizing mobile phone to carry out the ATM authentication.Described system and method after the realization ATM authentication, can carry out the operations of ATM by the account system interlock of ATM, mobile phone and bank.
According to first aspect present invention, a kind of system that utilizes mobile phone to carry out the ATM authentication has been proposed, comprise: ATM, be used for sending the checking request message of the transaction sequence number, mobile-phone payment password and the cell-phone number that comprise input to account system, and behind the checking user's of account system mobile-phone payment password, utilize account system to carry out follow-up ATM business transaction by the bank comprehensive front end processor; The bank comprehensive front end processor is connected with billing and accounting system with ATM, is used for carrying out protocol conversion and forwarding from the checking request message of ATM reception and from the message that account system receives; Account system, be used for according to transaction application request from the mobile phone reception, send the message that comprises transaction sequence number and customer transaction identification code to mobile phone, so that the user passes through the described message of customer transaction identification code verification from account system, and be used to verify the mobile-phone payment password that receives from ATM, thereby handle carrying out the ATM business transaction with the disbursement account of cell-phone number binding.
According to a second aspect of the invention, proposed a kind of method of utilizing mobile phone to carry out the ATM authentication, comprised step: a) mobile phone sends transaction application request to account system; B) account system sends the message that comprises transaction sequence number and customer transaction identification code according to the transaction application request that receives to mobile phone; C) the customer transaction identification code that receives according to mobile phone determines that whether the transaction sequence number is from account system; D) in the transaction sequence number during from account system, ATM sends the checking request message of the transaction sequence number that comprises input, mobile-phone payment password, cell-phone number to account system by the bank comprehensive front end processor; E) account system is verified the mobile-phone payment password that receives, and when being proved to be successful, carrying out business transaction according to the disbursement account of user's transaction request pair and cell-phone number binding and handles, and result is sent to ATM with demonstration.
According to system and the method thereof of utilizing mobile phone to carry out the ATM authentication of the present invention, mobile phone is endowed payment function, the user utilizes mobile phone just can carry out ATM withdrawal, handles media thereby this individual terminal devices of mobile phone becomes a kind of user account fund as credit card, has made things convenient for the user.
Description of drawings
Fig. 1 shows and utilizes mobile phone to carry out the block scheme of the system of ATM authentication;
Fig. 2 shows the process flow diagram that the user obtains the transaction sequence number;
Fig. 3 shows the process flow diagram that utilizes mobile phone to carry out the processing of ATM authentication;
Fig. 4 shows the synoptic diagram of the display interface of ATM;
Fig. 5 a, 5b, 5c show mobile phone accounting processing information table respectively, cell-phone number and payment account contingency table and error code table.
Embodiment
Show the description of the accompanying drawing of example of the present invention by following reference, above-mentioned and other purposes, feature and advantage of the present invention will become apparent.
Fig. 1 shows the structure of utilizing mobile phone to enter the system of ATM authentication.As shown in Figure 1, described system comprises SMS platform 10, ATM 20, bank comprehensive front end processor 30, bank accounting system 40.
Described bank accounting system 40 moves on bank main.Before operation was concluded the business in user's request, bank accounting system 40 had been stored the customer transaction identification code in advance in cell-phone number shown in Fig. 5 b and payment accounts contingency table, the user mobile phone number of mobile-phone payment password and binding and payment account.Mobile-phone payment password and customer transaction identification code are inequality, and the both need be to preserve after the DES algorithm for encryption.Customer transaction identification code wherein is that the client retains to bank accounting system 40, is used for the coding that bank accounting system 40 sends to the user.The reason that the user retains the customer transaction identification code to bank accounting system 40 is: the information that the user confirms to receive by described customer transaction identification code is really from bank accounting system 40.That is to say, utilize in the transaction application process of mobile phone 50ATM authentication the user, when the user receives note, if note has comprised described customer transaction identification code, then the user confirms that this transaction identification sign indicating number is that the user retains to bank accounting system 40, thereby the user can carry out subsequent operation according to the requirement of the note of bank accounting system 40, otherwise the user is considered as invalid Transaction Information with this note.
SMS platform 10 comprises short message receiving-transmitting unit (not shown), be responsible for receiving the service handling information that bank comprehensive front end processor 30 is transmitted the bank accounting system generation that comes, and these information are sent to mobile phone 50 with short message mode, also be responsible for simultaneously the SMS that receives, and being transmitted to bank main by bank comprehensive front end processor 30, the account system 40 of transferring to bank main carries out business logic processing.
When the user need carry out ATM business transaction operation, then at first need to send the transaction application to bank accounting system 40, carry out the checking of ATM handset identities so that obtain again after the transaction sequence number.The user utilizes mobile phone 50 to send transaction application note through bank comprehensive front end processor 30 to bank accounting system 40 by SMS platform 10.Bank accounting system 40 will conclude the business sequence number (four bit lengths and the same day that described transaction sequence number has did not at random generate under this cell-phone number item) according to the transaction application note that receives and the customer transaction identification code of deciphering is dealt on user's the mobile phone 50.Whether the information that the user confirms to receive by described customer transaction identification code is from bank accounting system 40.If then the user carries out follow-up ATM handset identities checking by the transaction of typing on ATM sequence number.
ATM 20 comprises: ATM input and output control unit 201, ATM display unit 202, ATM identity authenticating unit 203, ATM communication unit 204 and ATM business transaction unit 205.
ATM input and output control unit 201 is used to monitor the running of keyboard operation, plug-in card operation, the inner various plant equipment of control ATM, and keyboard input information, plug-in card information are passed to ATM identity authenticating unit 203 and ATM business transaction unit 205.Perhaps give ATM display unit 202, by its demonstration with the business information or the suitable form of transaction image information composition of ATM identity authenticating unit 203 and the 205 required demonstrations of ATM business transaction unit.ATM display unit 202 is used for showing transaction interface and the transaction processing object information is shown to the user on the ATM screen.
ATM identity authenticating unit 203 is used to carry out the processing of authentication.ATM identity authenticating unit 203 receives cell-phone number and mobile-phone payment password by ATM input and output control unit 201, to carry out the checking to handset identities.ATM business transaction unit 205 is meant that ATM realizes the manipulable function in handset identities authentication back, for example: functions such as cash withdrawal, account balance inquiry, modification password.ATM communication unit 204 is used to receive the Transaction Information from ATM identity authenticating unit 203 and ATM business transaction unit 205, and send these Transaction Informations to bank accounting system 40 by bank comprehensive front end processor 30, and the result of bank accounting system 40 is fed back to ATM identity authenticating unit 203 and ATM business transaction unit 205.
Bank comprehensive front end processor 30 comprises conversion unit of protocol 301 and Dispatch Unit 302, they can receive from the ATM 20 of lower end and the information of SMS platform 10, are transmitted to bank accounting system 40 after the information of being responsible for being received is changed by appropriate protocol.After bank accounting system 40 carries out respective handling, after bank comprehensive front end processor 30 is responsible for service processing result information carried out necessary protocol conversion, be transmitted to the ATM and the SMS platform 10 of lower end.
Bank accounting system 40 comprises that Account Disposal unit 401 and mobile phone business accept unit 402, described Account Disposal unit 401 processing of being responsible for transferring accounts, mobile phone business is accepted unit 402 and is responsible for confirming whether cell-phone number is bound with payment account, and the entire process process of control mobile phone transaction.
Use cell-phone number to carry out the transaction operation of banking, safety problem is the factor that at first will consider.Because in the present invention, when the user need carry out the ATM business transaction, when withdrawing deposit as ATM, it need send notes to bank accounting system 40, with the transaction sequence number determining to be obtained according to the customer transaction identification code that receives from bank accounting system 40.Thus, the user is during from bank accounting system 40 in the note of confirming to be received only, that is, only, just carry out follow-up ATM business transaction and operate when true in the source of note.Fig. 2 shows the flow process that the user obtains the transaction sequence number.
With reference to figure 2, at S210, the user sends transaction application note by editing short message to particular number.Particularly, the user need send alphabetical i to the certain electric signal sign indicating number that bank announces, applies for a transaction sequence number, is used for ATM business transaction operation.
Receive user's transaction application note in SMS platform 20 after, if the SMS content is alphabetical i, then should send to bank comprehensive front end processor 30 together with the synthetic transaction request message of cell-phone number by letter, again the transaction request message is transmitted to account system 40 by bank comprehensive front end processor 30, handles by 40 pairs of these transaction request messages of account system.
The transaction request message format that SMS platform 20 sends to the account system 40 of bank main is:
The 0-7 position: the expression transaction code, fill in 0000000i, represent that current is mobile phone application transaction sequence number.
8-12 position: error code.By the code of filling in after the host process herein, on extend this as 99999 when sending.
13-23 position: expression cell-phone number.11 of cell-phone number less thaies, 0 polishing is filled in the front.For example: phone number is: 12312312, after then filling in be: 00012312312.By SMS platform 0 of front is removed, extracted the phone number of mobile phone.
24-30 position: be used for filling in the transaction sequence number of returning after the host process.On fill in 0000000 when sending.
31-40 position: be used for filling in the customer transaction identification code of returning after the host process.SMS platform is changed to 0 character string with it when uploading.Promptly 0000000000.
At S212, account system 40 is after receiving the transaction request message that is come by 30 forwardings of bank comprehensive front end processor, search cell-phone number and payment accounts contingency table (specifically referring to 5b) according to cell-phone number, accept unit 402 by mobile phone business and confirm whether this mobile phone 50 is registered in account system 40.
If in cell-phone number and payment accounts contingency table, do not find the cell-phone number that sends transaction application note, then send note by SMS platform 20 to mobile phone 50 at S214 account system 40, notify the not registration in account system 40 of its mobile phone of user.Promptly, the error code field that returns in the message of SMS platform 20 is put error code, after analysing according to error code tabulation shown in Fig. 5 c by SMS platform 20, generate note and issue the user, not registration in the account system 40 of bank of its mobile phone of announcement can not be carried out mobile phone A TM authentication transaction operation.Note is transmitted to SMS platform 40 by bank comprehensive front end processor 30, is issued user's mobile phone 50 by SMS platform 40.
If can from cell-phone number and payment accounts contingency table, find cell-phone number, then enter S216 and handle.
At S216, after the mobile phone business of bank main account system 40 is accepted the cell-phone number that finds correspondence in unit 402 in " mobile-phone payment account relating table ", check the freeze flag of this record, if be designated 0, then sign does not allow this cell-phone number to carry out the processing of mobile phone relationship trading.Then at S222, bank main account system 40 is in the message that returns to SMS platform 20, fill in error code, behind the returned packet by SMS platform 20 parsing bank main systems 40, generate corresponding short message content, send note to user mobile phone 50, inform cellphone subscriber " current freezed to use this cell-phone number to carry out bank's mobile phone transaction ".
If be designated 1, then allow this cell-phone number to carry out mobile phone A TM.Account system S218 with " cell-phone number and payment accounts contingency table " in the cell-phone number corresponding record in customer transaction identification code deciphering be reduced into plain code.
Account system 40 is after confirming that user mobile phone has registered on the books, (the transaction sequence number is unsuitable long to generate a transaction sequence number that at random 4 are long and do not generate under this cell-phone number item the same day at S220, so that user's memory), fill in the returned packet that returns to SMS platform together with the customer transaction identification code after the deciphering.By SMS platform with this packet parsing after, generate note and issue user's mobile phone.Simultaneously, bank main account system 40 is at the record that makes an entry of a transaction of the mobile phone Account Disposal information table shown in Fig. 5 a, stateful transaction wherein is " waiting to be transacted " state, cell-phone number is the cell-phone number that send on the SMS platform, the transaction sequence number is the transaction sequence number of this generation, and the creation-time of transaction record is the rise time of transaction sequence number.
The mobile phone business of account system 40 is accepted the message format that unit 402 returns to SMS platform 20:
The 0-7 position: the expression transaction code, fill in 0000000F, represent that current is the message that bank main returns.
8-12 position: error code.By the code of filling in after the host process herein.00000 expression normal process, the expression main frame has successfully generated the transaction sequence number.Non-00000 expression is returned by error message, after error message can be analysed according to figure error code tabulation by SMS platform, sends error message to user mobile phone.
13-23 position: expression cell-phone number.11 of cell-phone number less thaies, 0 polishing is filled in the front.For example: phone number is: 12312312, after then filling in be: 00012312312.By SMS platform 0 of front is removed, extracted phone number, send a reply note and give this phone number.
24-30 position: be used for the transaction sequence number returned after the host process.7 of transaction sequence number less thaies, then the front is with 0 polishing.For example the transaction sequence number of bank main account system generation is 1234, extends this as in returned packet: 0001234.After by SMS platform 0 of front being removed, the sequence number of will concluding the business is organized into short message content, sends to user mobile phone.
31-35 position: customer transaction identification code.The customer transaction identification code that to be preserved with the ciphertext form in " cell-phone number and account relating table " by the bank main account system is reduced into expressly, fills in this.If 6 of less thaies are then with 0 polishing.For example: if the user identification code 1234 after the reduction is then filled at this: 001234.SMS platform after 0 of the front of customer transaction identification code removed, extracts actual customer transaction identification code after receiving this returned packet.
It is as follows that SMS platform sends to the short message content form of user mobile phone:
Your transaction sequence number is: nnnn, you retain and are for the customer transaction identification code of bank: NNNN.PLSCONFM.XX bank.
Wherein nnnn and NNNN are presented as concrete numeral in the note of reality.XX is for sending the title of bank.
The user if confirming that identification code is own really retains to bank, then carries out the subsequent operation of ATM business transaction according to the transaction sequence number of bank after receiving this note.
Fig. 3 shows the flow process of the processing of carrying out the ATM authentication.At first at S310, the user utilizes mobile phone to carry out the required information of ATM checking by ATM input and output control unit 201 inputs of ATM 20.When the user wishes to carry out ATM when withdrawing the money, the user obtains the transaction sequence number that bank provides according to process as shown in Figure 2.After the transaction sequence number that acquisition bank provides, the user just can enter the operation interface of ATM as shown in Figure 4.As shown in Figure 4, require the required information of ATM checking such as user's input handset number, transaction sequence number and mobile-phone payment password on the operation interface that is shown by ATM display unit 202, wherein the mobile-phone payment password is represented the code characters of each input with * in input process.The user is by ATM keyboard input handset number, transaction sequence number and mobile-phone payment password, and the ATM identity authenticating unit 203 of ATM 20 is carried out the data integrity checkings and handled afterwards.Comprise and check the whether typing of cell-phone number, transaction sequence number, mobile-phone payment password respectively, if wherein one do not have typing, then point out a certain data of ATM operation user not record, need the corresponding data of typing.Though at S310, the user need carry out the ATM authentication by ATM keyboard input handset number, transaction sequence number and mobile-phone payment password, but in order to prevent false ATM keyboard, the user also can first input handset number, determine by account system whether the cell-phone number of described input is bound with payment account, the user just further imports data such as payment cipher after ATM is received confirmation, thereby can prevent that the false keyboard of ATM from illegally obtaining user's payment cipher.
After by the data integrity inspection, the ATM identity authenticating unit 203 of ATM 20 at S312 with the data of typing together with the ATM terminal number, synthetic transaction request message sends to bank comprehensive front end processor 30 by ATM communication module 204, is transmitted to bank accounting system 40 by it again.Transaction application message is a character stream, and the application message format is:
The 0-7 position: the expression transaction code, fill in 0000000A, represent that current is the ATM ID authentication request.
8-12 position: error code.By the code of filling in after the host process herein, on extend this as 99999 when sending.
13-23 position: expression cell-phone number.11 of cell-phone number less thaies, 0 polishing is filled in the front.For example: phone number is: 12312312, after then filling in be: 00012312312.The bank main account system removes 0 of front, extracts actual cell-phone number.
24-30 position: the transaction sequence number of filling in user's typing on the interface.7 of transaction sequence number less thaies, then the front is with 0 polishing.For example the transaction sequence number received of user mobile phone is 1234, and the user is after AMT interface input transaction sequence number 1234, and ATM in last transaction sequence number of filling in herein when sending bank main is: 0001234.The bank main account system removes 0 of front, extracts actual transaction sequence number.
The 31-40 position: fill in the password ciphertext of user's input, be that the ATM terminal is used the password converted ciphertext of DES algorithm with user's input herein.
41-50 position: fill in the ATM terminal number.
At S314, the mobile phone business processing unit 402 of bank accounting system 40 is after the transaction request of the cell-phone number authentication of receiving ATM, from the transaction request message, isolate cell-phone number, transaction sequence number, mobile-phone payment password, by searching cell-phone number and payment account contingency table, determine whether this cell-phone number is registered in this table then.
If this cell-phone number is still unregistered in cell-phone number and payment account contingency table and cause searching failure, then carry out S316, return the returned packet of having filled in error code to ATM, wherein comprising error code, to indicate wrong reason be that cell-phone number has not yet registered and opens the mobile phone trading function.The returned packet lattice that bank main returns ATM are:
The 0-7 position: the expression transaction code, fill in 000000FA, represent that current is the returned packet of bank main.
8-12 position: error code.Fill in code herein after the host process,, represent that then the data of the ATM handset identities authentication that account system send on confirming are accurate, can open every function of ATM and use to the user if error code extends this as 00000.If non-00000, then be expressed as error code, each error code definition has clear and definite implication to be defined in the error code table.
13-23 position: fill in the cell-phone number of filling in the ATM transaction application message.
The 24-30 position: fill in fill in the ATM transaction application message the transaction sequence number.
The 31-40 position: user cipher, bank main are filled in complete 0 character string with this field in returned packet.Promptly 0000000000.
41-50 position: fill in the ATM terminal number that the literary composition of delivering newspaper on the ATM is filled in.
If this cell-phone number is registered in cell-phone number and the payment account contingency table, then bank accounting system 40 is carried out S318, judges whether transaction record exists.Because in the present invention, when by the SMS application transaction during sequence number, set this transaction sequence number only in N hour effective (N is a positive integer), wherein the N value is called the effective time limit of the sequence number of concluding the business, bank accounting system 40 is according to the transaction sequence number in the message, with cell-phone number, transaction sequence number, stateful transaction be " waiting to be transacted " and transaction sequence number not out of date be the retrieval-by-unification condition, whether the transaction record of searching correspondence in the mobile phone Account Disposal information table exists.The not out of date finger of the sequence number of wherein concluding the business: the difference between current time and this transaction record are created constantly is smaller or equal to the effective time limit value of transaction sequence number.
If the result of S318 is a "No", then carry out S316, return the returned packet of having filled in error code to ATM, it is that the transaction sequence number that provides of user is incorrect that error code has indicated wrong reason.
If the result of S318 is a "Yes", then carry out S320, judge whether the mobile phone account number is frozen.Particularly, bank accounting system 40 is according to the cell-phone number that send on the ATM, and whether retrieval " cell-phone number and payment accounts contingency table " allows this to use this cell-phone number to carry out bank's mobile phone transaction processing by " freeze flag " affirmation of corresponding data record is current.
If " freeze flag " is 1, illustrate that then current permission uses this cell-phone number to carry out bank's mobile phone transaction processing, then carry out the processing of S322.
If " freeze flag " is 0, illustrate that then current this cell-phone number that do not allow carries out bank's mobile phone transaction processing, the then operation of execution in step S316, send the returned packet that has comprised error code to ATM, wherein to indicate wrong reason be that current cell-phone number is frozen to error code, do not allow to carry out the mobile phone transaction processing.
After bank accounting system 40 confirms that the cell-phone number that send on the ATM can carry out the operation of mobile phone transaction, whether bank accounting system 40 is checked the mobile-phone payment password that send on the ATM and is conformed to the payment cipher that is deposited in the bank main account system by the cell-phone number and the corresponding record of payment accounts contingency table, if password conforms to, then carry out S324.If on the mobile-phone payment password that send do not conform to the payment cipher of retention, then carry out S316, the message of having filled in error code is returned to ATM, it is the input error of mobile-phone payment password that error code wherein indicates wrong reason.After ATM has resolved the error code of returned packet, prompting user typing again.
After checking through above verification, bank accounting system 40 is confirmed the authentication success at S324, in returning to the message of ATM, error code is changed to 00000, user's the identity of promptly having represented good authentication.Simultaneously, the bank main account system is revised " mobile phone Account Disposal information table ".Transaction journal number uses sequence number generator to generate by the account system of bank.Mode of doing business extends this as " ATM authentication ".Dealing money extends this as 0, and the Account Disposal time is to finish the time that authentication is checked.Stateful transaction is rewritten as " normal termination ".Terminal number extends this as the ATM numbering that ATM send.
At S326, ATM has promptly been finished all processes that uses cell-phone number to carry out mobile phone checking work on ATM behind the returned packet of the authentication success of receiving main frame.The payment accounts that the ATM business transaction unit 205 of ATM allows users couple and this cell-phone number to bind is carried out follow-up operations, as inquiring about, withdraw deposit, revise password or the operation of transferring accounts.
Invention effect and advantage
Use cell-phone number to carry out the banking transaction operation, safety is the important elements of at first considering.The present invention is actually and has adopted bidirectional identity authentication, and the user is sent by bank by trade confirmation code authentication transaction sequence number, and bank operates the legitimacy of account by the mobile-phone payment password confirming user who obtains user's input.The customer transaction identification code design that the present invention introduced, owing to just carry out crucial business transaction after the note that the user confirms oneself can believe by the customer transaction identification code, thus prevented the generation of note swindle effectively.
Secondly, in whole process of exchange of the present invention, user's mobile-phone payment password all is to import on the input keyboard of ATM on the equipment that bank provides, and does not allow payment cipher propagate on the common signal channel of mobile phone, thereby has fully ensured the safety of user's payment cipher.
Bank has strengthened the security of transaction to the design of user mobile phone transmission transaction sequence number.Can not disclosed resource and unexpectedly guessed right the mobile-phone payment password by others and suffer loss on the fund because of cell-phone number.
In addition, in the whole process, the effect of mobile phone is mainly used in unidirectional from bank's reception short message.Even mobile phone is lost,, can there be the risk on the fund because the user has opened mobile-phone payment because user oneself has grasped the payment cipher of mobile phone yet.
Mobile phone has become the indispensable means of communication of individual at present, be endowed payment function according to the present invention owing to mobile phone, the user utilizes mobile phone just can carry out ATM business transaction operations such as ATM withdrawal, thereby this individual terminal devices of mobile phone becomes a kind of user account fund as credit card handles media, has made things convenient for the user.
Although use specific term, the preferred embodiments of the present invention are described, the purpose of this being for the purpose of illustration only property of description should be understood that, under the prerequisite that does not depart from the spirit or scope of the present invention, can change and change.
Claims (14)
1. system that utilizes mobile phone to carry out the ATM authentication comprises:
ATM, be used for sending the checking request message of the transaction sequence number, mobile-phone payment password and the cell-phone number that comprise input to account system, and behind the checking user's of account system mobile-phone payment password, utilize account system to carry out follow-up ATM business transaction by the bank comprehensive front end processor;
The bank comprehensive front end processor is connected with billing and accounting system with ATM, is used for carrying out protocol conversion and forwarding from the checking request message of ATM reception and from the message that account system receives;
Account system, be used for according to transaction application request from the mobile phone reception, send the message that comprises transaction sequence number and customer transaction identification code to mobile phone, so that the user passes through the described message of customer transaction identification code verification from account system, and be used to verify the mobile-phone payment password that receives from ATM, thereby handle carrying out the ATM business transaction with the disbursement account of cell-phone number binding.
2. the system as claimed in claim 1 when wherein said account system has been registered at the cell-phone number of the mobile phone of determining transmission transaction application request, sends the message that comprises conclude the business sequence number and customer transaction identification code to mobile phone.
3. the system as claimed in claim 1, described ATM after account system sends cell-phone number and receiving the affirmation information that account system confirms that cell-phone number and payment account bind, send described checking request message earlier again; And described account system is used to also judge whether the cell-phone number that receives is bound with payment account.
4. the system as claimed in claim 1, wherein said account system in advance with user mobile phone number, with the customer transaction identification code of the payment account of cell-phone number binding, encryption and mobile-phone payment password storage in cell-phone number and payment account contingency table.
5. system as claimed in claim 4, wherein said customer transaction identification code and mobile-phone payment password are with the DES algorithm for encryption.
6. the system as claimed in claim 1, wherein said transaction sequence number generate and at random in N hour effectively (N is a positive integer).
7. the system as claimed in claim 1, wherein said ATM comprises:
The ATM input and output control unit is connected with the ATM identity authenticating unit with display unit, is used for the data of input and output are controlled,
The ATM display unit is used to the processing interface that shows that ATM authentication and business transaction are operated;
The ATM identity authenticating unit, be used for will input the mobile-phone payment password that comprises transaction sequence number, user and the synthetic checking of the data set request message of cell-phone number sending the ATM communication unit to, and receive the checking result of account system;
The ATM communication unit, the checking request message that is used for receiving sends account system to, and sends the checking result of account system and ATM business transaction operating result to ATM identity authenticating unit and ATM business transaction unit respectively with output;
ATM business transaction unit is used for after completing successfully the ATM authentication, carries out the ATM business transaction by account system pair with the disbursement account of cell-phone number binding and handles.
8. as claim 1 or 7 described systems, wherein said account system comprises:
Mobile phone business is accepted the unit, whether the mobile-phone payment password that is used for judging the user who receives from ATM is consistent with the mobile-phone payment password that account system store in advance, and the disbursement account that utilizes Account Disposal unit pair and cell-phone number to bind when unanimity carries out the business transaction processing;
The Account Disposal unit, be used for to the processing of transferring accounts of the disbursement account of mobile phone association.
9. method of utilizing mobile phone to carry out the ATM authentication comprises step:
A) mobile phone sends transaction application request to account system;
B) account system sends the message that comprises transaction sequence number and customer transaction identification code according to the transaction application request that receives to mobile phone;
C) the customer transaction identification code that receives according to mobile phone determines that whether the transaction sequence number is from account system;
D) in the transaction sequence number during from account system, ATM sends the checking request message of the transaction sequence number that comprises input, mobile-phone payment password, cell-phone number to account system by the bank comprehensive front end processor;
E) account system is verified the mobile-phone payment password that receives, and when being proved to be successful, carrying out business transaction according to the disbursement account of user's transaction request pair and cell-phone number binding and handles, and result is sent to ATM with demonstration.
10. method as claimed in claim 9, wherein step b) is included in cell-phone number that described account system determine to send the mobile phone of transaction application request when having registered, and sends the message that comprises transaction sequence number and customer transaction identification code to mobile phone.
11. method as claimed in claim 9, wherein step d) comprises: in the transaction sequence number during from account system, ATM earlier after account system sends cell-phone number and receiving the affirmation information that account system confirms that cell-phone number and payment account bind, sends described checking request message again.
12. method as claimed in claim 9, wherein, described account system in advance with user mobile phone number, with the customer transaction identification code of the payment account of cell-phone number binding, encryption and mobile-phone payment password storage in cell-phone number and payment account contingency table.
13. method as claimed in claim 12, wherein said customer transaction identification code and mobile-phone payment password are with the DES algorithm for encryption.
14. the method for claim 1, wherein said transaction sequence number generate at random and in N hour effectively (N is a positive integer).
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005101374050A CN100478997C (en) | 2005-12-30 | 2005-12-30 | System and method for making ATM identity test using mobile phone |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNB2005101374050A CN100478997C (en) | 2005-12-30 | 2005-12-30 | System and method for making ATM identity test using mobile phone |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN1811830A true CN1811830A (en) | 2006-08-02 |
| CN100478997C CN100478997C (en) | 2009-04-15 |
Family
ID=36844737
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNB2005101374050A Active CN100478997C (en) | 2005-12-30 | 2005-12-30 | System and method for making ATM identity test using mobile phone |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN100478997C (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011004401A2 (en) * | 2009-07-09 | 2011-01-13 | Kapil Jagdish Karwa | Cardless banking |
| CN102201143A (en) * | 2011-04-08 | 2011-09-28 | 张应刚 | Bank card transaction system and method based on real-time interaction of short-message platform |
| CN102487320A (en) * | 2010-12-06 | 2012-06-06 | 国民技术股份有限公司 | Method and system used for automatic teller machine identity authentication |
| WO2012139350A1 (en) * | 2011-04-09 | 2012-10-18 | 新宝电子科技有限公司 | Method and system for verifying transactor identity on atm |
| CN103268676A (en) * | 2013-04-02 | 2013-08-28 | 广州御银科技股份有限公司 | System and method for verifying authenticity of financial self-service terminal |
| CN104240370A (en) * | 2014-09-24 | 2014-12-24 | 冯林 | Money depositing and withdrawing system on basis of dynamic two-dimensional codes |
| CN105426735A (en) * | 2015-11-05 | 2016-03-23 | 上海斐讯数据通信技术有限公司 | Mobile terminal based identity verification system and method |
| CN105513192A (en) * | 2016-02-22 | 2016-04-20 | 上海古鳌电子科技股份有限公司 | Paper currency sorting deposit method |
| WO2017096574A1 (en) * | 2015-12-10 | 2017-06-15 | 深圳怡化电脑股份有限公司 | Method and system for information exchange between financial machinery and user terminals, and financial machinery |
| CN107633162A (en) * | 2017-10-19 | 2018-01-26 | 深圳怡化电脑股份有限公司 | A kind of identity identifying method, device, system, equipment and storage medium |
| US20200327515A1 (en) * | 2019-04-11 | 2020-10-15 | Cardtronics USA Inc. | Methods and systems for routing transactions between automated teller machines, points of sale, financial institutions, and software wallets |
| CN113992543A (en) * | 2021-10-29 | 2022-01-28 | 建信金融科技有限责任公司 | Response message sending method, device, equipment and readable storage medium |
-
2005
- 2005-12-30 CN CNB2005101374050A patent/CN100478997C/en active Active
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011004401A3 (en) * | 2009-07-09 | 2011-04-28 | Kapil Jagdish Karwa | Cardless banking |
| WO2011004401A2 (en) * | 2009-07-09 | 2011-01-13 | Kapil Jagdish Karwa | Cardless banking |
| CN102487320A (en) * | 2010-12-06 | 2012-06-06 | 国民技术股份有限公司 | Method and system used for automatic teller machine identity authentication |
| CN102487320B (en) * | 2010-12-06 | 2014-12-03 | 国民技术股份有限公司 | Method and system used for automatic teller machine identity authentication |
| CN102201143B (en) * | 2011-04-08 | 2016-06-15 | 张应刚 | A kind of bank card transaction system based on SMS platform real-time interaction and method |
| CN102201143A (en) * | 2011-04-08 | 2011-09-28 | 张应刚 | Bank card transaction system and method based on real-time interaction of short-message platform |
| WO2012139350A1 (en) * | 2011-04-09 | 2012-10-18 | 新宝电子科技有限公司 | Method and system for verifying transactor identity on atm |
| CN103503038A (en) * | 2011-04-09 | 2014-01-08 | 新宝电子科技有限公司 | Method and system for verifying transactor identity on ATM |
| CN103268676A (en) * | 2013-04-02 | 2013-08-28 | 广州御银科技股份有限公司 | System and method for verifying authenticity of financial self-service terminal |
| CN104240370A (en) * | 2014-09-24 | 2014-12-24 | 冯林 | Money depositing and withdrawing system on basis of dynamic two-dimensional codes |
| CN105426735A (en) * | 2015-11-05 | 2016-03-23 | 上海斐讯数据通信技术有限公司 | Mobile terminal based identity verification system and method |
| WO2017096574A1 (en) * | 2015-12-10 | 2017-06-15 | 深圳怡化电脑股份有限公司 | Method and system for information exchange between financial machinery and user terminals, and financial machinery |
| CN105513192A (en) * | 2016-02-22 | 2016-04-20 | 上海古鳌电子科技股份有限公司 | Paper currency sorting deposit method |
| CN107633162A (en) * | 2017-10-19 | 2018-01-26 | 深圳怡化电脑股份有限公司 | A kind of identity identifying method, device, system, equipment and storage medium |
| CN107633162B (en) * | 2017-10-19 | 2020-09-15 | 深圳怡化电脑股份有限公司 | Identity authentication method, device, system, equipment and storage medium |
| US20200327515A1 (en) * | 2019-04-11 | 2020-10-15 | Cardtronics USA Inc. | Methods and systems for routing transactions between automated teller machines, points of sale, financial institutions, and software wallets |
| US11636454B2 (en) * | 2019-04-11 | 2023-04-25 | Ncr Corporation | Methods and systems for routing transactions between automated teller machines, points of sale, financial institutions, and software wallets |
| CN113992543A (en) * | 2021-10-29 | 2022-01-28 | 建信金融科技有限责任公司 | Response message sending method, device, equipment and readable storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN100478997C (en) | 2009-04-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1811830A (en) | System and method for making ATM identity test using mobile phone | |
| CN1149516C (en) | Electronic payment system | |
| CN1218261C (en) | Electronic transaction | |
| CN1804889A (en) | POS payment system and method for payment with mobile phone | |
| CN101609566B (en) | Method for realizing electronic ticket based on mobile phone | |
| CN101124593A (en) | Electronic system for supplying banking services | |
| CN101814169A (en) | Method and device for realizing secure payment based on payment confirmation terminal and digital certification | |
| CN1744135A (en) | Electronic evidence realizing method and device | |
| CN1608267A (en) | Systems and methods for fund transfers | |
| CN1650347A (en) | Method and apparatus for cashless transactions via a telecommunications network | |
| CN1339146A (en) | Method for carrying out cash-free payment and system for carrying out said method | |
| CN101288092A (en) | Mobile account management | |
| CN101377838A (en) | Data safety processing method | |
| CN103077462A (en) | Electronic receipt system based on terminal | |
| CN102194178A (en) | Payment processing system, method and device | |
| CN101079131A (en) | On-line payment method and system | |
| CN101790166A (en) | Digital signing method based on mobile phone intelligent card | |
| CN101071492A (en) | Mobile phone fee payment method and system based on mobile phone bank | |
| CN104580270A (en) | Point redemption method for mobile terminal | |
| JP2004206402A (en) | Remittance intermediating method and system | |
| CN101090414A (en) | Mobile payment service implementing method based on quick response matrix code | |
| US20090313688A1 (en) | Method for Electronic Transaction by Mobile Messaging | |
| CN101408970A (en) | Method, system and apparatus for implementing batch electronic transaction, and electronic signing tool | |
| CN101976403A (en) | Phone number payment platform, payment trading system and method thereof | |
| CN1838660A (en) | Electronic paying and accepting signal transmission processing method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |