CN1900961A - Online safety payment system and online safety payment method - Google Patents
Online safety payment system and online safety payment method Download PDFInfo
- Publication number
- CN1900961A CN1900961A CNA2005100278959A CN200510027895A CN1900961A CN 1900961 A CN1900961 A CN 1900961A CN A2005100278959 A CNA2005100278959 A CN A2005100278959A CN 200510027895 A CN200510027895 A CN 200510027895A CN 1900961 A CN1900961 A CN 1900961A
- Authority
- CN
- China
- Prior art keywords
- holder
- result
- unit
- transaction
- sent
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention provides a safe network payment system and method. The method includes the following steps: 1. for the cardholder terminal to submit the order form to the business website; 2 for the business website to send trade request to the bill collecting subsystem; 3. for the bill collecting subsystem to build interaction with the cardholder terminal and to obtain the card number information; 4. for the bill collecting subsystem to send the card number information and the trade information to the route unit; 5. for the route unit to send the information to the security certification authority unit in card issuing mechanism; 6. for the security certification authority unit to certificate; 7. for the card issuing subsystem to cut payment after passing through certification; 8. for the card issuing subsystem to send the result to the bill collecting subsystem via the exchanger center; and 9. for the bill collecting subsystem to inform the business unit. The present invention has high safety, short time consumption and high trade success rate.
Description
Technical field
The present invention relates to data processing field, relate in particular to a kind of online safety payment system and internet safe payment method of online transaction process.
Background technology
Along with development of internet technology, popularizing of the Internet particularly, network has become in a lot of people's live and works one can not obtain scarce part.People not only can utilize internet browsing news, give out information, answer music, and can carry out shopping at network.Constantly increase based on ecommerce, the problem that both parties need pay close attention to is not only in the security of online payment, still is the special problem of paying attention to of financial sector simultaneously.
See also Fig. 1, it is the structural representation of a kind of online safety payment system common in the prior art.It comprises holder's terminal 11, merchant website 12, receives list system 13.Wherein, holder's terminal 11 connects merchant website 12 by the Internet, merchant website 12 by the Internet or private line access to receiving list system 13.Receive list system 13 and comprise the communication server, application server and database server at least.The communication server is connected with the merchant website 12 of each tame trade company in order to set up, and the packet that receives is carried out safety detection.Application server is used for the various data of the various merchant website 12 that receive are handled, and according to the information in the results modification database server of handling, and result is back to merchant server 12, and in store corresponding information of receiving each number of the account in the list system 13 of database server.
This online safety payment system is applicable to that card sending mechanism and acquirer are the secure payment under the situation of same financial institution.Its payment flow is as follows: at first, the holder logins merchant website 12, chooses commodity, the submission that confirms an order, and then, merchant website 12 is sent to data such as sequence information, Transaction Information the hair fastener subsystem 13 of card sending mechanism.Hair fastener subsystem 13 receives data such as the card number of users' input and password, after passing through through the safety certifications such as authentication of holder's authentication, trade company, the processing of just withholing, withhold finish after, trade company just delivers.
When card sending mechanism and acquirer not when same, can pay by another kind of payment system.See also Fig. 2, it is the structural representation of another kind of payment system of the present invention.It comprises holder's terminal 11, merchant website 12, some hair fastener subsystems 14.Holder's terminal 11 and merchant website 12 are connected by the Internet, and merchant website 12 also connects a number of hair fastener subsystems 14 by the Internet.The routing iinformation of in store each hair fastener subsystem 14 that is connected with described merchant website 12 in the merchant website 12, and set up the corresponding relation of the routing iinformation of the BIN sign indicating number of card number and hair fastener subsystem 14.
Its payment flow is: at first the holder logins merchant website 12, choose commodity, submission confirms an order, then, merchant website 12 foundation are mutual with holder's terminal 11, require the holder to import card number, subsequently, merchant website 12 finds the routing iinformation of the card sending mechanism respective hosts of described card number according to the BIN sign indicating number of its card number, cardholder information and sequence information is sent to hair fastener subsystem 14, the processing of withholing.
There are a lot of problems in above-mentioned payment system and payment flow, at first: the security of online payment is low, because the quantity of the merchant website on the Internet is many, retrain trade company and lack favourable mechanism at present, merchant website can directly obtain holder's card number information, causes thus holder's property safety is brought very big hidden danger.Secondly, lack favourable mechanism just and retrain trade company, and make a lot of card sending mechanism be reluctant directly to set up and being connected of merchant website: the corresponding relation of informing card number BIN sign indicating number and card sending mechanism, inform the routing iinformation of the main frame of card sending mechanism host, cause can the pay the bill kind of bank card of consumption of holder to be subjected to very big restriction thus.
For this reason, VISA company has proposed another online payment system and online payment flow process.See also Fig. 3, it is the structural representation of the online payment system of VISA company proposition.It comprises holder's terminal 11, merchant website 12, receive list system 13, provided by VISA company routing server 15 and hair fastener subsystem 14.Wherein, routing server 15 can connect receipts list system 13, hair fastener subsystem 14 and merchant website 12 respectively by the Internet.On merchant website 12, be provided with one by receiving the MPI software that list system 13 provides.
At first, the holder logins merchant website 12, choose commodity, submission confirms an order, then, merchant website utilizes MPI software that cardholder information is sent to routing server 15, subsequently, routing server 15 finds corresponding card sending mechanism according to card number, and the routing iinformation that returns card sending mechanism subsystem 15 is to merchant website 12; Subsequently, hair fastener subsystem 14 authentication holders' identity is back to holder's terminal 11 and merchant website 12 by the Internet with authentication result.When authentication result for authentication by the time, through processings of withholing of traditional card sending system, ability is delivered to the holder.But there are following problem in this online payment system and online payment flow process:
(1) each online payment is divided into two processes: the verification process and the process of withholing, the payment processes time is very long.If from the angle of data processing, each online payment process need is visited the hair fastener subsystem twice, visit each time need take the various resources processing time of processor (as take) of the internet resource and the hair fastener subsystem of the Internet, causes the wasting of resources;
(2) each online payment process, merchant website only receives that the hair fastener subsystem returns after holder's authentication successful authentication message, just carry out next step the processing of withholing, merchant website is just carried out follow-up delivery step after only receiving the success message of withholing that the hair fastener subsystem returns.Because there are a lot of labile factors in the Internet in data exchange process, cause thus that packet is being lost at transmission line, packet makes mistakes or the packet consequence of delaying time or the like in transmission course, and then cause the payment transaction failure easily in transmission course.
Summary of the invention
Online safety payment system of the present invention and internet safe payment method, to solve prior art online payment is divided into the technical matters that two processes cause the wasting of resources, time of payment length thus, and by the Internet transmission packet have safety coefficient low, occur that data packets for transmission is lost or the consequence of packet time delay easily, and then cause the technical matters of whole payment transaction failure.
For addressing the above problem, the invention provides a kind of online safety payment system, comprise and receive list system, inter-bank switching centre, hair fastener subsystem, merchant website and holder's terminal, also comprise routing unit and safety certification authority unit, wherein:
Routing unit, preserve card number BIN sign indicating number and card sending mechanism corresponding relation, and the card sending mechanism of direct Certificate Authority pattern and the corresponding relation of safety certification authority unit routing iinformation are adopted in preservation, in order to determine card sending mechanism according to card number, if described card sending mechanism adopts direct Certificate Authority pattern, find the routing iinformation of corresponding safety certification authority unit;
The safety certification authority unit comprises the authentication subelement that is used for the holder is carried out authentication at least;
Hair fastener subsystem: the result of withholing of the identity authentication result of the safety certification authority unit of this subsystem and this subsystem is formed the online transaction result notification be sent to inter-bank switching centre;
Inter-bank switching centre: described online transaction result is sent to corresponding receipts list system;
Receive the list system: described online transaction result is sent to corresponding trade company.
Each is received in the list system safety insert also is set, be used to set up data interaction with merchant website, holder's terminal, routing unit, safety certification authority unit: receive the order transaction that merchant website sends, obtain holder's input card number, receive routing unit routing iinformation, necessary information in the payment authentication process is sent to the safety certification authority unit and the online transaction result is sent to merchant website.
A kind of internet safe payment method, this method may further comprise the steps:
(1) holder's terminal is submitted order to merchant website;
(2) merchant website is initiated transaction request to receiving the list system;
(3) receive list system and holder's terminal and set up alternately, obtain the card number information of holder's input;
(4) receive the list system card number information and Transaction Information are sent to routing unit;
(5) if the card sending mechanism of described card number correspondence adopts the direct Certificate Authority pattern of card sending mechanism, then routing unit is sent to described card number information and Transaction Information the safety certification authority unit of card sending mechanism correspondence;
(6) the safety certification authority unit authenticates described holder;
(7) after authentication is passed through, the processing of withholing of hair fastener subsystem;
(8) will withhold result and authentication result of hair fastener subsystem is sent to the list system of receiving by inter-bank switching centre;
(9) receive list notifications trade company.
A kind of internet safe payment method comprises, after the hair fastener subsystem carries out holder's authentication, according to the authentication result processing of withholing, and the holder's identity authentication result and the result of withholing is back to merchant website by receiving the list system.
Compared with prior art, the present invention has the following advantages: the invention provides a kind of online safety payment system that can realize and method, with verification process and the synthetic payment flow of the process of withholing, not only improved the processing speed of payment, and improved the utilization factor of internet resource.
The most important thing is, initiatively transaction results is transmitted to acquirer by switching centre by card sending mechanism, adopt existing proprietary network, consuming time few, abnormal conditions are few, and the situation that reduces monolateral account effectively takes place, and then has improved the Transaction Success rate.
And whether successful the present invention provide transaction information for holder and trade company, rather than authenticate the information of whether passing through.Trade company can be used as the delivery foundation from the Transaction Success information that acquirer obtains.In addition, by method of the present invention, card sending mechanism can whether successful information be sent to trade company with concluding the business, and has improved the realizability of online transaction.
Description of drawings
Fig. 1 is the structural representation of a kind of online safety payment system common in the prior art;
Fig. 2 is the structural representation of another kind of online safety payment system in the prior art;
Fig. 3 is the structural representation of another online safety payment system of providing of VISA company;
Fig. 4 is the structural representation of a kind of online safety payment system provided by the invention;
Fig. 5 is the topology example synoptic diagram of a kind of online safety payment system provided by the invention;
Fig. 6 is the schematic flow sheet of a kind of internet safe payment method provided by the invention;
Fig. 7 is the flow example synoptic diagram of a kind of internet safe payment method provided by the invention.
Embodiment
Below in conjunction with accompanying drawing, specify the present invention.
See also Fig. 4, it is the structural representation of a kind of online safety payment system provided by the invention.Comprise and receive list system 23, inter-bank switching centre 24, hair fastener subsystem 26, merchant website 22 and holder's terminal 21, routing unit 25 and safety certification authority unit 27, wherein:
Hair fastener subsystem 26: the result of withholing of the identity authentication result of the safety certification authority unit 27 of this subsystem and this subsystem is formed the online transaction result notification be sent to inter-bank switching centre 24;
Inter-bank switching centre 24: described online transaction result is sent to corresponding receipts list system 23;
Receive list system 22: described online transaction result is sent to corresponding trade company.
Generally, a safety insert 28 (seeing also Fig. 5) can in receiving list system 23, each also be set.This safety insert 28 is used to set up the data interaction with merchant website 22, holder's terminal 21, routing unit 25, safety certification authority unit 27: receive the order transaction that merchant website 22 sends, obtain holder's input card number, receive routing unit 25 routing iinformation, necessary information in the payment authentication process is sent to safety certification authority unit 27 and the online transaction result is sent to trade company.Below specifically introduce the concrete implementation system of online safety payment system.
Holder's terminal 21 connects each merchant website 22 by the Internet, and a lot of merchant website 22 are received list system 23 by the Internet or private line access to.In order to receive the safety of list system 23, the present invention is provided with the safety insert 28 of a correspondence for each acquirer.Safety insert 28 can be directly connects with corresponding receipts list system 23, also can be set directly at and receive in the list system 23.And, can set up directly mutual with holder's terminal 21 by safety insert 28.Receive list system 23 and connect, and safety insert 28 can also can connect by the Internet and routing unit 25 by special line by special line and inter-bank switching centre 24.Each hair fastener subsystem 26 to inter-bank switching centre 24, when card sending mechanism adopts the direct Certificate Authority pattern of card sending mechanism, is provided with a safety certification authority unit 27 in each card sending mechanism correspondence by private line access.Safety certification authority unit 27 can directly be developed by card sending mechanism, also can entrust other company's exploitations by card sending mechanism, is arranged on outside the hair fastener subsystem 26, directly is connected with hair fastener subsystem 26.The safety certification authority unit 27 of each card sending mechanism correspondence can be connected to routing unit 25 by special line or by the Internet.Each safety insert 28, routing unit 25, each safety certification authority unit 27 can be the nodes on the Internet, directly are connected with each holder's terminal 22 by the Internet.
Safety insert 28 can be a server through programming, also can carry out programmed process on the intrasystem application server of original receipts list.Safety insert can comprise with lower unit:
Checking trade company unit: be used for the trade company that initiates the order transaction request is carried out authentication.After the registration of acquirer subordinate's trade company, the merchant information of this trade company is kept at data storage cell.There is unique trade company sign (such as trade company's name or merchant website correspondence IP number) in each trade company, and when trade company initiated the order transaction request, checking trade company unit carried out the merchant identification authentication according to the merchant information of data storage cell.
Mutual control module: be used to control data interaction with merchant website, holder's terminal, routing unit, safety certification authority unit.Mutual control module is preserved the routing iinformation of those interactive objects (merchant website, holder's terminal, routing unit, safety certification authority unit), and the interaction triggers flow process.Such as, after the merchant identification authentication is passed through, from the transaction request that trade company sends, obtaining the routing iinformation of holder's terminal, foundation is mutual with the holder's, obtains holder's card number information; Card number information and corresponding this Transaction Information of holder are sent to routing unit, the routing iinformation of the auth type of acquisition transaction and corresponding safety certification authority unit, and transaction identification sign indicating number; Be back to merchant website or the like when receiving the transaction processing result.
Data storage cell: be used to store data, be used for storing merchant information and safety insert 28 in the process of exchange data necessary: as the transaction identification sign indicating number of transaction each time.
Authentication and transmission unit: be used for the packet that receives and the packet of transmission are carried out safety certification.Carry out data interaction with other equipment each time, all need to carry out strict security control.Such as, the sending direction take over party proposes before the transaction processing, earlier carry out both sides' authentication with digital certificate, behind the authentication success, consult to encrypt the symmetric key of transaction data, transmit leg uses symmetric key that the data encrypted transaction data is sent to the take over party, after the take over party uses the symmetric key deciphering, response data is returned after by symmetric key encryption again ...Safety insert 28 promptly can be as transmit leg, also can be as the take over party, and the security control in the mainly responsible data exchange process of authentication and transmission unit.
Receive the online transaction that sends by inter-bank switching centre 24 as a result the time when receiving list system 23, the online transaction result can be sent to safety insert 28, the online transaction result is sent to corresponding trade company by safety insert 28.
Inter-bank switching centre 24, by private line access to each hair fastener subsystem 26 with receive list system 23, in order to set up being connected of card sending mechanism and acquirer.According to card number data are sent to corresponding hair fastener subsystem, and the online transaction result are back to corresponding receipts list system, and can clear each transaction and each acquirer and card sending mechanism according to the Institution Number of acquirer.Inter-bank switching centre 24 can adopt the inter-bank exchange system of China Unionpay.
Safety certification authority unit 27 can be a server or the service system be made up of some servers, and safety certification authority unit 27 comprises authentication subelement, notice subelement, registration subelement and mutual subelement.Wherein:
Registration subelement: be used for the holder is registered in advance.The holder can register in the registration subelement by modes such as the Internet, note, mails.Authentication subelement: be used to set up mutual with the holder, such as needs holder input information, compare according to the information of preserving in advance in the information of holder input and the registration subelement, have only all information matches successes, determine that just holder's identity is through authenticating.
Requirement to the safe transmission of holder's authentication and holder's secret and sensitive information can realize by authentication SSL escape way mode.All built-in SSL security module on various browsers and the server.When the safety certification authority unit receives the authentication holder when asking, towards holder's terminal.The SSL escape way of authentication is set up in holder's browser and safety certification authority unit, and the validity of check holder certificate also provides the safety-oriented data transfer passage; After certificate validity was approved, payment was finished by the relevant information that holder's browser display needs the holder to import in the safety certification authority unit.
Mutual subelement is used for setting up mutual to this unit and hair fastener subsystem 26, routing unit 25, safety insert 28 and holder's terminal 21;
Notice subelement: the safety certification authority unit is sent to corresponding holder to holder's the identity authentication result and the result of withholing of this hair fastener subsystem by the Internet.
Based on above-mentioned disclosed online safety payment system, the invention provides a kind of internet safe payment method.See also Fig. 6, it is the process flow diagram of internet safe payment method of the present invention.This method may further comprise the steps:
S110: holder's terminal is submitted order to merchant website;
S120: merchant website is initiated transaction request to receiving the list system;
S130: receive list system and holder's terminal and set up alternately, obtain the card number information of holder's input;
S140: receive the list system card number information and Transaction Information are sent to routing unit;
S150: if the card sending mechanism of described card number correspondence adopts the direct Certificate Authority pattern of card sending mechanism, then routing unit is sent to described card number information and Transaction Information the safety certification authority unit of card sending mechanism correspondence;
S160: the safety certification authority unit authenticates described holder;
S170: after authentication is passed through, the processing of withholing of hair fastener subsystem;
S180: will withhold result and authentication result of hair fastener subsystem is sent to traditional receipts single system by inter-bank switching centre;
S190: traditional receipts single system is notified trade company by safety insert.
By above-mentioned steps, provide a kind of online payment pattern that can realize.And for the holder, what obtain is not only whether successful authentication information of authenticating identity, but the whether successful transaction processing result of transaction.The most important thing is that the present invention makes online payment pattern provided by the invention have safety and shortcut function equally by the safety and the shortcut function of existing financial sector.
See also Fig. 7, it is for a particular flow sheet of internet safe payment method of the present invention.It may further comprise the steps:
To merchant website, the holder chooses commodity to 1-holder's terminal by Internet connection, and the submission that confirms an order;
The 2-merchant website redirect to safety insert with holder's webpage, simultaneously to safety insert transmission sequence information and Transaction Information;
The 3-safety insert is given holder's display page, allows the holder import card number, and the holder clicks submission;
The 4-safety insert sends to routing unit with information such as card number, types of transaction, the inquiry routing iinformation;
The 5-routing unit is judged the direct Certificate Authority pattern of this transaction employing card sending mechanism according to the defeated card number of holder, then produce the unique identification id (transaction identification sign indicating number) of transaction, information such as card number, type of transaction, transaction unique identification id are mail to corresponding safety certification authority unit, whether safety certification authority unit inquiry holder registers, and return results;
The 6-routing unit passes to corresponding safety insert with safety certification and granted unit the holder's registering result that returns and the unique identification id that concludes the business; If it is unregistered that the result who returns is the holder, flow process finishes so;
The 7-safety insert is by holder's browser, and information such as holder's card number, order, merchant information, transaction unique identification id are sent to the safety certification authority unit, allows safety certification authority unit authentication holder;
Relevant information is received in 8-safety certification authority unit;
9-safety certification authority unit and holder's terminal connect, and towards the holder, allow the holder import relevant information, the authentication holder;
10-safety certification authority unit passes to the hair fastener subsystem of this unit correspondence with Transaction Information (comprise transaction unique identification id), allows the processing of withholing of hair fastener subsystem;
11-safety certification authority unit is notified the holder with authentication result, transaction results by the Internet;
Whether 12-hair fastener subsystem will buckle transaction results such as account is confirmed that by consumption the form of notice sends to inter-bank switching centre;
The hair fastener subsystem can obtain enough information from SAA and form the notice message.Simultaneously, adopt storage to transmit and retransmission mechanism for notice, in the number of times that limits, if there be not notified replying, the hair fastener subsystem must be retransmitted notice.The serial number of retransmitting notice is identical with transaction unique identification id, and this introduces in detail in follow-up back.
13-inter-bank switching centre provides to be replied;
The list system of receiving is passed on notice by 14-inter-bank switching centre;
15-receipts list system provides to be replied;
16-receives and notifies trade company after transaction results is received by the list system.
The explanation of transaction switching part divisional processing
The hair fastener subsystem sends the online transaction result notification to inter-bank switching centre, comprises unique transaction identification code among the described online transaction result; When the hair fastener subsystem is not received replying of online transaction result in Preset Time, in limiting number of times, send the online transaction result notification again;
After inter-bank switching centre receives the online transaction result, echo reply message, and send the online transaction result to the receipts list system of correspondence; When replying of online transaction result do not received by inter-bank switching centre in Preset Time, in limiting number of times, send the online transaction result notification again to receiving the list system.
Such as:
When the hair fastener subsystem sends the online transaction result notification to inter-bank switching centre, carry the transaction unique identification id that produces by routing unit in the message, so that acquirer can be determined this transaction by card number+trade company's code+transaction unique identification id, and then notice merchant transaction result.
When the hair fastener subsystem does not have replying of notified transaction in the time that limits, in the number of times that limits, can repeat to initiate the transaction of online transaction result notification, but serial number+transaction unique identification id is constant.
After the transaction of online transaction result notification is received by inter-bank switching centre,, the identification transaction shows that notice repeats if for repeating the notice transaction, then sending in the replying of card sending mechanism.Exchange system is transmitted online transaction result notification transaction to acquirer, if receive and do not reply, then in the number of times that limits, do not stop to retransmit, until receive reply till.
The transaction of online transaction result notification is adopted store-and-forward mechanism the initiator, guarantees that the take over party can correctly receive.Initiate the notice transaction by the proprietary network of inter-bank switching centre, guarantee that acquirer can receive transaction results accurately and timely, effectively reduces the situation of monolateral account.
Though online transaction result notification transaction is to initiate from card sending mechanism, is received by acquirer, transaction is similar to consumer sale, exists subsequent transaction such as to cancel.The initiator take over party of subsequent transaction is identical with conventional transaction.
Subsequent transaction such as cancel and to mate the transaction of online transaction result notification.
The clearance explanation
Inter-bank switching centre clears: inter-bank switching centre gathers online transaction result notifications all in the preset time period with the corresponding receipts list system that is sent to; It is flourishing in corresponding merchant website with unreceived online transaction result notification to receive the list system.
Such as:
Inter-bank switching centre is as the criterion with the transaction of online transaction result notification and clears.
If inter-bank switching centre successfully receives the online transaction result notification, and can't transmit to acquirer, the online transaction result notification still participates in clearance.
Because store-and-forward mechanism is adopted in the transaction of online transaction result notification, can repeat to initiate, but only clearance once.
If acquirer is not received the transaction of online transaction result notification, inter-bank switching centre concluded the business according to notice and cleared eventually day.Will the same day all notice transaction of inter-bank switching centre are aggregated into file and send to acquirer, allow acquirer according to the not notified transaction of ff, reissue and are notified to trade company.The mistake processing spec
The transaction of online transaction result notification is initiated by card sending mechanism, through exchange system, is received by acquirer.Online transaction result notification transaction mistake is handled with existing consumption result notification.Because the singularity of online transaction, transferring when single, document can be trade company's consignment note, or the holder receive receive single.Acquirer is had a responsibility for obtaining relevant document and is offered card sending mechanism, determines to assist card sending mechanism whether trade company delivers.When card sending mechanism was cancelled the order at online transaction result notification transaction initiation, the reason of cancelling the order can be that trade company is non-shipment, but can not be problems such as the holder authenticates.
The invention provides a kind of internet safe payment method, comprise, after the hair fastener subsystem carries out holder's authentication,, and the holder's identity authentication result and the result of withholing be back to merchant website by receiving the list system according to the authentication result processing of withholing.
Such as: when the online safety payment system that adopts VISA company to provide carries out the internet safe payment, its payment flow is as follows: at first, the holder logins merchant website, choose commodity, the submission that confirms an order, then, merchant website is sent to routing server with cardholder information, subsequently, routing server finds corresponding card sending mechanism according to card number, and the routing iinformation that returns the card sending mechanism subsystem is to merchant website; Subsequently, merchant website is sent to the hair fastener subsystem with cardholder information and Transaction Information, then, the hair fastener subsystem is authentication holder's identity earlier, then according to the authentication result processing of withholing, and will withhold result and authentication result be back to holder's terminal and merchant website by the Internet, and the routing iinformation that obtains to receive the list system by routing server, the result of will withholing and authentication result are back to the list system of receiving, by receiving list notifications trade company.The hair fastener subsystem can give each time that transaction be provided with an authentication code, receives list system and merchant website and can judge whether withhold result and the authentication result this time returned receive according to transaction code.
When adopting the existing payment system of forming by inter-bank switching centre, at first, the holder logins merchant website, choose commodity, submission confirms an order, then, merchant website is connected to the list system of receiving, routing iinformation by routing unit acquisition hair fastener subsystem is sent to the hair fastener subsystem with described cardholder information and Transaction Information, and the foundation earlier of hair fastener subsystem is mutual with the holder's, carry out holder's authentication, and, holder's identity authentication result and the result of withholing are sent to by inter-bank switching centre receive the list system subsequently, so that notify to trade company according to the authentication result processing of withholing.Routing unit can give each time that transaction be provided with a transaction code, receives list system and merchant website and can judge whether withhold result and the authentication result this time returned receive according to transaction code.
Disclose in several secure payment schemes above-mentioned, carry out data interaction each time, all need to carry out strict security control.The sending direction take over party proposes before the transaction processing, earlier carry out both sides' authentication with digital certificate, behind the authentication success, consult to encrypt the symmetric key of transaction data, transmit leg uses symmetric key that the data encrypted transaction data is sent to the take over party, after the take over party uses symmetric key deciphering, response data is returned after by symmetric key encryption again ...
More than disclosed only be several specific embodiment of the present invention, but those skilled in the art can think variation all should drop in protection scope of the present invention.
Claims (13)
1, a kind of online safety payment system comprises and receives list system, inter-bank switching centre, hair fastener subsystem, merchant website and holder's terminal, it is characterized in that, also comprises routing unit and safety certification authority unit, wherein:
Routing unit, preserve card number BIN sign indicating number and card sending mechanism corresponding relation, and the card sending mechanism of direct Certificate Authority pattern and the corresponding relation of safety certification authority unit routing iinformation are adopted in preservation, in order to determine card sending mechanism according to card number, if described card sending mechanism adopts direct Certificate Authority pattern, find the routing iinformation of corresponding safety certification authority unit;
The safety certification authority unit comprises the authentication subelement that is used for the holder is carried out authentication at least;
Hair fastener subsystem: the result of withholing of the identity authentication result of the safety certification authority unit of this subsystem and this subsystem is formed the online transaction result notification be sent to inter-bank switching centre;
Inter-bank switching centre: described online transaction result is sent to corresponding receipts list system;
Receive the list system: described online transaction result is sent to corresponding trade company.
2, a kind of online safety payment system as claimed in claim 1, it is characterized in that described safety certification authority unit also comprises the notice subelement: the safety certification authority unit is sent to holder's terminal to holder's the identity authentication result and the result composition online transaction result that withholds of hair fastener subsystem by the Internet.
3, a kind of online safety payment system as claimed in claim 1 or 2, it is characterized in that, each is received in the list system safety insert also is set, be used to set up data interaction with merchant website, holder's terminal, routing unit, safety certification authority unit: receive the order transaction that merchant website sends, obtain holder's input card number, receive routing unit routing iinformation, necessary information in the payment authentication process is sent to the safety certification authority unit and the online transaction result is sent to merchant website.
4, a kind of online safety payment system as claimed in claim 3 is characterized in that, described safety insert comprises with lower unit:
Checking trade company unit: be used for the trade company that initiates the order transaction request is carried out authentication;
Mutual control module: be used to control data interaction with merchant website, holder's terminal, routing unit, safety certification authority unit;
Data storage cell: be used to store the data that comprise merchant information;
Authentication and transmission unit: be used for the packet that receives and the packet of transmission are carried out safety certification.
5, a kind of internet safe payment method is characterized in that, this method may further comprise the steps:
(1) holder's terminal is submitted order to merchant website;
(2) merchant website is initiated transaction request to receiving the list system;
(3) receive list system and holder's terminal and set up alternately, obtain the card number information of holder's input;
(4) receive the list system card number information and Transaction Information are sent to routing unit;
(5) if the card sending mechanism of described card number correspondence adopts the direct Certificate Authority pattern of card sending mechanism, then routing unit is sent to described card number information and Transaction Information the safety certification authority unit of card sending mechanism correspondence;
(6) the safety certification authority unit authenticates described holder;
(7) after authentication is passed through, the processing of withholing of hair fastener subsystem;
(8) will withhold result and authentication result of hair fastener subsystem is sent to the list system of receiving by inter-bank switching centre;
(9) receive list notifications trade company.
6, internet safe payment method as claimed in claim 5 is characterized in that, also comprises between step (5) and the step (6):
Whether the described holder of safety certification authority unit judges is registered, and registering result is back to routing unit;
Routing unit distributes a transaction identification code to this payment, and registering result and identification code are dispensed to the list system of receiving;
If registering result is that the holder is registered, then receives the list system card number information, sequence information and service identification are sent to safety certification authority unit, request authentication holder.
7, internet safe payment method as claimed in claim 6 is characterized in that, step (5) is specially:
The hair fastener subsystem sends the online transaction result notification to inter-bank switching centre, comprises unique transaction identification code among the described online transaction result;
When the hair fastener subsystem is not received replying of online transaction result in Preset Time, in limiting number of times, send the online transaction result notification again;
After inter-bank switching centre receives the online transaction result, echo reply message, and send the online transaction result to the receipts list system of correspondence;
When replying of online transaction result do not received by inter-bank switching centre in Preset Time, in limiting number of times, send the online transaction result notification again to receiving the list system.
8, as claim 5 or 7 described internet safe payment methods, it is characterized in that, also comprise:
Inter-bank switching centre clears step according to transaction identification code in predetermined period: be sent to corresponding receipts list system after inter-bank switching centre gathers online transaction result notifications all in the preset time period;
Receive the list system unreceived online transaction result notification is sent to corresponding merchant website.
9, internet safe payment method as claimed in claim 7 is characterized in that, also comprises:
The hair fastener subsystem is sent to holder's terminal with the authentication result and the result composition online transaction result that withholds by the Internet, and the online transaction result also comprises transaction identification code;
Holder's terminal is sent to the list system of receiving by the Internet with described online transaction result, so that receive the list system described online transaction result is back to merchant website.
10, a kind of internet safe payment method, it is characterized in that, comprise, after the hair fastener subsystem carries out holder's authentication, according to the authentication result processing of withholing, and the holder's identity authentication result and the result of withholing be back to merchant website by receiving the list system.
11, internet safe payment method as claimed in claim 10 is characterized in that, comprising: the hair fastener subsystem directly is sent to merchant website and holder's terminal with the holder's identity authentication result and the result of withholing by the Internet.
12, internet safe payment method as claimed in claim 10 is characterized in that, the hair fastener subsystem is to set up and receive the mutual of list system by routing server.
13, internet safe payment method as claimed in claim 10 is characterized in that, the hair fastener subsystem is set up and the data interaction of receiving the list system by inter-bank switching centre.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2005100278959A CN1900961A (en) | 2005-07-18 | 2005-07-18 | Online safety payment system and online safety payment method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2005100278959A CN1900961A (en) | 2005-07-18 | 2005-07-18 | Online safety payment system and online safety payment method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1900961A true CN1900961A (en) | 2007-01-24 |
Family
ID=37656841
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2005100278959A Pending CN1900961A (en) | 2005-07-18 | 2005-07-18 | Online safety payment system and online safety payment method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1900961A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011079502A1 (en) * | 2009-12-30 | 2011-07-07 | 中国银联股份有限公司 | Method and system for accepting various kinds of payment card and processing transaction transfer |
| CN103825867A (en) * | 2012-11-19 | 2014-05-28 | 中国银联股份有限公司 | System, device and method for processing combined-type security information interaction |
| CN106779631A (en) * | 2016-12-20 | 2017-05-31 | 世纪禾光科技发展(北京)有限公司 | Service charge Cost Optimization Approach and device |
| CN108140190A (en) * | 2015-08-13 | 2018-06-08 | 万事达卡国际股份有限公司 | For monitoring the system and method to the transaction authentication of payment network |
-
2005
- 2005-07-18 CN CNA2005100278959A patent/CN1900961A/en active Pending
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2011079502A1 (en) * | 2009-12-30 | 2011-07-07 | 中国银联股份有限公司 | Method and system for accepting various kinds of payment card and processing transaction transfer |
| CN103825867A (en) * | 2012-11-19 | 2014-05-28 | 中国银联股份有限公司 | System, device and method for processing combined-type security information interaction |
| CN108140190A (en) * | 2015-08-13 | 2018-06-08 | 万事达卡国际股份有限公司 | For monitoring the system and method to the transaction authentication of payment network |
| CN108140190B (en) * | 2015-08-13 | 2021-11-09 | 万事达卡国际股份有限公司 | System and method for monitoring transaction authentication to a payment network |
| CN106779631A (en) * | 2016-12-20 | 2017-05-31 | 世纪禾光科技发展(北京)有限公司 | Service charge Cost Optimization Approach and device |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9992189B2 (en) | Generation and validation of derived credentials | |
| US9832225B2 (en) | Identity theft countermeasures | |
| JP7118708B2 (en) | System and method for communication verification | |
| US9059985B1 (en) | Methods for fraud detection | |
| CN1271485C (en) | Device and method for proceeding encryption and identification of network bank data | |
| CN105847245B (en) | Electronic mailbox login authentication method and device | |
| US7562222B2 (en) | System and method for authenticating entities to users | |
| US8381293B2 (en) | Identity theft countermeasures | |
| US8364773B2 (en) | E-mail authentication | |
| CN1900960A (en) | Online safety payment system and online safety payment method | |
| US20080022013A1 (en) | Publishing domain name related reputation in whois records | |
| US20060149823A1 (en) | Electronic mail system and method | |
| US20080028100A1 (en) | Tracking domain name related reputation | |
| US7966492B1 (en) | System and method for allowing an e-mail message recipient to authenticate the message | |
| US20120172067A1 (en) | System and method for verifying a sender of an sms text message | |
| JP2006005921A (en) | Verifying human interaction to computer entity by way of trusted component on computing device | |
| CN1820481A (en) | System and method for authenticating clients in a client-server environment | |
| CN1713571A (en) | Double-path pre-approval authentication method | |
| CN101051907A (en) | Safety certifying method and its system for facing signature data | |
| US20140215571A1 (en) | E-mail authentication | |
| WO2019174354A1 (en) | Authentication method and apparatus | |
| CN1900963A (en) | Online safety payment system | |
| CN1794294A (en) | Network protocol payment method | |
| CN107835160A (en) | Third party's user authen method based on Quick Response Code | |
| CN1697376A (en) | Method and system for authenticating or enciphering data by using IC card |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Open date: 20070124 |