CN203338403U - Intelligent card transaction system with an electronic signature function - Google Patents
Intelligent card transaction system with an electronic signature function Download PDFInfo
- Publication number
- CN203338403U CN203338403U CN2013201024038U CN201320102403U CN203338403U CN 203338403 U CN203338403 U CN 203338403U CN 2013201024038 U CN2013201024038 U CN 2013201024038U CN 201320102403 U CN201320102403 U CN 201320102403U CN 203338403 U CN203338403 U CN 203338403U
- Authority
- CN
- China
- Prior art keywords
- terminal
- password
- smart card
- transaction
- message
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Images
Abstract
The utility model discloses an intelligent card transaction system with an electronic signature function. The intelligent card accesses to a terminal, receives transaction messages, generates a jointed password, generates a signature message according to the transaction message and transmits the jointed password and the signature message to the terminal. The terminal obtains a verifying cipher and performs verifying, and transmits the transaction message and the signature message to a backstage system server after verification is passed. The verifying cipher is the jointed password inputted through buttons at the terminal, or the jointed password obtained through information displayed by the terminal by sweeping the intelligent card, or the jointed password obtained from the intelligent card by the terminal in a non-contact communication; the backstage system server verifies the signature message and performs transaction according to the transaction message after verification is passed. The intelligent card transaction system can finish the required data exchange required by the transaction through the one-time access between the intelligent card and the terminal, reduces the risk that important information could be intercepted caused by multiple accesses and improves safety.
Description
Technical field
The utility model relates to a kind of electronic technology field, relates in particular to a kind of smart card transaction system with electronic signature functionality.
Background technology
Now, bankcard consumption has become main flow.Adopt following flow process to realize the electronic signature transaction:
Step S101, the user holds with cordless access POS machine; Wherein, cordless can be any cordless such as radio frequency, bluetooth, NFC.
Step S102, the POS machine is sent to Transaction Information the smart card of user's access; Wherein, Transaction Information can at least comprise account number and the amount of money, certainly can also comprise transaction details information.
Step S103, smart card receives Transaction Information, shows Transaction Information, after the user confirms that Transaction Information is errorless, receives the confirmation password of user's input, and Transaction Information is signed;
Step S104, smart card with cordless access POS machine, is sent to the POS machine by signing messages again;
Step S105, the POS machine is uploaded to bank server by Transaction Information and signing messages, so that bank server is carried out transaction according to Transaction Information.
As can be seen here, existing smart card need to carry out at least twice access with cordless and POS machine in completing the process that Transaction Information is signed, thereby the problem that can exist Transaction Information in access procedure and/or signing messages to be held as a hostage, cause the user to lose, and security is not high.
The utility model content
The utility model is intended to solve that existing smart card Transaction Information and/or signing messages in access procedure repeatedly are held as a hostage and the not high problem of security that causes.
The purpose of this utility model is to provide a kind of smart card transaction system.
For achieving the above object, the technical solution of the utility model specifically is achieved in that
The utility model provides a kind of smart card transaction system with electronic signature functionality on the one hand, and described system comprises: terminal, background system server and the smart card with electronic signature functionality; The described smart card with electronic signature functionality accesses terminal, and receives transaction message, generates combined password, according to described transaction message, generates the signature message, and described combined password and described signature message are sent to described terminal; Described terminal is obtained authentication password, verifies described authentication password, and, after being verified, described transaction message and described signature message is sent to the background system server; Wherein, described authentication password is the combined password of the key-press input by described terminal, or the combined password of the acquisition of information shown by the described smart card of described terminal scanning, or the combined password obtained from described smart card in the non-contact communication mode by described terminal; The described signature message of described background system server authentication, and, after being verified, according to described transaction message, carry out the transaction operation.
The utility model also provides a kind of smart card transaction system with electric signing tools function on the other hand, and described system comprises: terminal, background system server and the smart card with electronic signature functionality; The described smart card with electronic signature functionality accesses terminal, receive transaction message, generate combined password, and described combined password is encrypted and obtains the encryption combined password, generate the signature message according to described transaction message, described encryption combined password and described signature message are sent to described terminal; Described terminal is obtained authentication password, verifies described authentication password, and, after being verified, described transaction message and described signature message is sent to the background system server; Wherein, described authentication password is the combined password of the key-press input by described terminal, or the combined password of the acquisition of information shown by the described smart card of described terminal scanning, or the combined password obtained from described smart card in the non-contact communication mode by described terminal; The described signature message of described background system server authentication, and, after being verified, according to described transaction message, carry out the transaction operation.
In addition, described smart card comprises: transceiver module, password generation module, signature blocks and display module; Described transceiver module, for accessing terminal, receives transaction message and is sent to described signature blocks; Described password generation module is used for generating combined password, and is sent to described display module, by described transceiver module, described combined password is sent to described terminal; Described signature blocks generates the signature message according to described transaction message, and by described transceiver module, described signature message is sent to described terminal.
In addition, described smart card comprises: transceiver module, password generation module, encrypting module, signature blocks and display module; Described transceiver module, for accessing terminal, receives transaction message and is sent to described signature blocks; Described password generation module is used for generating combined password, and is sent to described display module and described encrypting module; Described encrypting module is encrypted combined password for described combined password being encrypted obtain, and by described transceiver module, described encryption combined password is sent to described terminal; Described signature blocks generates the signature message according to described transaction message, and by described transceiver module, described signature message is sent to described terminal.
In addition, described transceiver module is sending described signature message to after described terminal, also disconnects and being connected of described terminal; Described display module disconnects with after being connected of described terminal at described transceiver module, also shows described transaction message.
In addition, described smart card also comprises: key-press module; Described key-press module is according to the confirmation password received and/or confirm instruction, triggers described display module and shows described combined password or bar code or picture.
In addition, described transceiver module is also for sending the described combined password that obtains from described password generation module to described terminal in the non-contact communication mode.
In addition, described smart card also comprises: the figure generation module; The described combined password that described figure generation module will obtain from described password generation module is changed and is generated bar code or picture, and exports described display module demonstration to.
In addition, described terminal is obtained described authentication password in the non-contact communication mode from described smart card.
In addition, described terminal shows by the described display module that scans described smart card bar code or picture obtain described authentication password.
The technical scheme provided by above-mentioned the utility model can be found out, the utility model provides a kind of smart card transaction system with electronic signature functionality, terminal of the present utility model is after obtaining authentication password, authentication password is verified, only, after the authentication password passes through, just transaction message and signature message can be sent to the background system server, to trigger the background system server, complete transaction, thereby guarantee the correctness that transaction message and signature message send, and non repudiation; In addition, combined password of the present utility model can be one or more combination of random numeral, letter and the character generated when each transaction, being different from existing trading password and OTP must adopt ciphertext to be transmitted, the utility model terminal can be obtained combined password by different way, in the process of obtaining, this combined password (authentication password) can be transmitted with form expressly, and can not reduce the security of account in process of exchange.
As can be seen here, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
The accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme of the utility model embodiment, in below describing embodiment, the accompanying drawing of required use is briefly described, apparently, accompanying drawing in the following describes is only embodiment more of the present utility model, for those of ordinary skill in the art, under the prerequisite of not paying creative work, can also obtain other accompanying drawings according to these accompanying drawings.
The method flow diagram that Fig. 1 is existing electronic signature transaction;
Fig. 2 is a kind of structural representation that the utlity model has the smart card transaction system of electronic signature functionality;
Fig. 3 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 1 of electronic signature functionality;
Fig. 4 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 2 of electronic signature functionality;
Fig. 5 is another structural representation that the utlity model has the smart card transaction system of electronic signature functionality;
Fig. 6 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 3 of electronic signature functionality;
Fig. 7 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 4 of electronic signature functionality.
Embodiment
Below in conjunction with the accompanying drawing in the utility model embodiment, the technical scheme in the utility model embodiment is clearly and completely described, obviously, described embodiment is only the utility model part embodiment, rather than whole embodiment.Based on embodiment of the present utility model, those of ordinary skills, not making under the creative work prerequisite the every other embodiment obtained, belong to protection domain of the present utility model.
In description of the present utility model, it will be appreciated that, term " " center ", " vertically ", " laterally ", " on ", D score, " front ", " afterwards ", " left side ", " right side ", " vertically ", " level ", " top ", " end ", " interior ", orientation or the position relationship of indications such as " outward " are based on orientation shown in the drawings or position relationship, only the utility model and simplified characterization for convenience of description, rather than device or the element of indication or hint indication must have specific orientation, with specific orientation structure and operation, therefore can not be interpreted as restriction of the present utility model.In addition, term " first ", " second " be only for describing purpose, and can not be interpreted as indication or hint relative importance or quantity or position.
In description of the present utility model, it should be noted that, unless otherwise clearly defined and limited, term " installation ", " being connected ", " connection " should be done broad understanding, for example, can be to be fixedly connected with, and can be also to removably connect, or connect integratedly; Can be mechanical connection, can be also to be electrically connected to; Can be directly to be connected, also can indirectly be connected by intermediary, can be the connection of two element internals.For the ordinary skill in the art, can concrete condition understand the concrete meaning of above-mentioned term in the utility model.
Below in conjunction with accompanying drawing, the utility model embodiment is described in further detail.
Fig. 2 is a kind of structural representation that the utlity model has the smart card transaction system of electronic signature functionality.Now in conjunction with Fig. 2, the structure of the smart card transaction system that the utlity model has electronic signature functionality is described, specific as follows:
Smart card transaction system with electronic signature functionality of the present utility model comprises: terminal 10, background system server 20 and the smart card 30 with electronic signature functionality.The equipment of smart card 30 for having electronic signature functionality, can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, or comprising the integrated chip with above-mentioned two chip functions.Wherein,
Smart card 30 with electronic signature functionality accesses terminal 10, receives transaction message, generates combined password, according to transaction message, generates the signature message, and combined password and signature message are sent to terminal 10;
Simultaneously, based on said system, smart card 30 comprises: transceiver module 301, password generation module 302, signature blocks 303 and display module 304; In other words, have the above-mentioned module that the smart card 30 of electronic signature functionality comprises and can be integrated on a chip, quantity and the function of the chip that also can adopt according to smart card 30, be integrated on a plurality of chips, at this, just do not illustrating one by one.
Password generation module 302 is for generating combined password, and is sent to display module 304, by transceiver module 301, combined password is sent to terminal 10;
Certainly, on the basis of said structure, the transceiver module 301 of smart card 30 of the present utility model is sending the signature message to terminal 10, also disconnects and being connected of terminal 10, so that display module 304 demonstration transaction message.Thereby guarantee that smart card 30 of the present utility model only contacts with terminal 10 that once just to have completed transaction desired data (signed data) mutual, reduce because the secondary contact produces the risk that data are intercepted and captured, improved the security of transaction.
Certainly, terminal 10 can for example, after checking combined password failure preset times (3 times), and account corresponding to notice background system server 20 these smart cards of locking is with the safety of protection user account.
In addition, smart card 30 can also comprise: key-press module 305.Key-press module 305 is according to the confirmation password received and/or confirm instruction, triggers display module 304 and shows combined password or bar code or picture.
Concrete, for example the user can trigger display module 304 demonstration combined password or bar code or pictures in the following way:
(1) input validation password, after smart card 30 demonstration validation passwords are correct, display module 304 shows combined password or bar code or picture; Perhaps
(2) press the confirmation button, trigger display module 304 and show combined password or bar code or picture; Perhaps
(3) input validation password, and press the confirmation button, after smart card 30 demonstration validation passwords are correct, display module 304 shows combined password or bar code or picture.
Certainly, the condition that display module 304 shows combined password or bar code or picture that triggers can be set for the different consumption amount of money, for example, small amount consumption only needs the user to press the confirmation button, wholesale consumer need user input validation password etc.
In addition, because terminal 10 is obtained the mode difference of authentication password, the transceiver module 301 of smart card 30 can also be for sending the combined password that obtains from password generation module 302 to terminal 10 in the non-contact communication mode; Perhaps smart card 30 also comprises: figure generation module 306, the combined password that figure generation module 306 will obtain from password generation module 302 is changed and is generated bar code or picture, and exports display module 304 demonstrations to.Adopt above-mentioned two kinds of modes, can facilitate terminal 30 to obtain authentication password, prevent the problem of the locking smart card that causes due to the authentication password input error.
In addition, terminal 10 for smart card 30 coupling Receipt Validation passwords, can obtain from smart card 30 bar code or the picture that authentication password or the display module 304 by scanning smart card 30 show in the non-contact communication mode and obtain authentication password.
As can be seen here, the smart card transaction system with electronic signature functionality of the present utility model, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
Embodiment 1
The structure of the smart card transaction system with electronic signature functionality based on shown in Fig. 2, Fig. 3 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 1 of electronic signature functionality.Certainly, in the present embodiment, have electronic signature functionality the smart card method of commerce except adopting the structure shown in Fig. 2, can also divide arbitrarily its structure, as long as adopt the method for the present embodiment all to belong to the utility model scope required for protection.
Now, in conjunction with Fig. 3, the smart card method of commerce that the utlity model has electronic signature functionality is described, specific as follows:
The smart card method of commerce that the utlity model has electronic signature functionality comprises:
Step S301: the smart card with electronic signature functionality accesses terminal, and receives transaction message;
Concrete, before the smart card with electronic signature functionality accesses terminal, terminal can be obtained transaction message by modes such as manual input, network, items scanning information.
Smart card can access terminal by cordless, the transaction message that receiving terminal sends.Wherein, transaction message at least comprises account and the amount of money, also can comprise transaction details information.
Certainly, smart card also can access terminal by the way of contact.
Smart card of the present utility model adopts cordless to access terminal and accesses terminal and have higher security than the way of contact, and the information of preventing is acquired.
In addition, smart card is the equipment with electronic signature functionality, can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, or comprising the integrated chip with above-mentioned two chip functions.
Step S302: smart card generates combined password;
Concrete, smart card is generating digital, letter and/or symbol randomly, selects one or more combination producing combined passwords from numeral, letter and symbol, can guarantee the nonuniqueness of combined password, randomness, the security that improves combined password.
Certainly, smart card can also be converted to combined password bar code or Quick Response Code or picture, to facilitate follow-up obtaining.
Step S303: smart card generates the signature message according to transaction message;
Concrete, smart card can directly be signed to transaction message, generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, and the summary info of transaction message is signed, and generates the signature message.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext obtained by symmetric cryptography itself.
Verified by transaction message generation signature message is sent to the background system server, can be guaranteed that transaction is for concluding the business really, and the non repudiation of transaction.
Step S304: smart card is sent to terminal by combined password and signature message;
Concrete, smart card is sent to terminal by combined password and signature message, so that the follow-up checking to authentication password of terminal.
Step S305: terminal is obtained authentication password, the authentication password, and, after being verified, transaction message and signature message are sent to the background system server; Wherein, authentication password is the combined password of the key-press input by terminal, or the combined password of the acquisition of information shown by the terminal scanning smart card, or the combined password obtained from smart card in the non-contact communication mode by terminal;
Concrete, the correctness of the combined password authentication password that terminal can receive.
In addition, terminal can be obtained authentication password in the following way: terminal receives by the acquisition of information combined password of key-press input, thereby for example by the keyboard input validation password from terminal, obtains this combined password; Or the acquisition of information combined password that shows by the scanning smart card of terminal, the Quick Response Code shown such as the terminal scanning smart card or bar code etc. obtain this combined password; Or terminal obtains combined password by the non-contact communication mode from smart card, for example can be by smart card being placed in the sweep limit of terminal, obtain combined password with NFC, optical communication, bluetooth, the mode such as infrared.
Certainly, when the user carries out this operation and acted on behalf of, combined password can be informed to the 3rd people, so that the 3rd people inputs to terminal by combined password.
Terminal of the present utility model is only after getting authentication password and being verified, just transaction message, signature message and combined password can be sent to the background system server, complete transaction to trigger the background system server, thereby improve the security of end data transmission, improve the security of transaction.
Step S306: background system server authentication signature message, and, after being verified, according to transaction message, carry out the transaction operation.
Concrete, the background system server can be bank server or third-party server, and third-party server is the server that the non-banking system adopts, such as public transit system adopts mass transit card is supplemented with money and the server controlled of withholing etc.
The background system server, after receiving the terminal transaction message sent and the message of signing, carries out sign test to the signature message, and, after sign test is passed through, concludes the business according to information and executing such as the relevant account in transaction message and the amount of money.
Terminal of the present utility model is after obtaining authentication password, authentication password is verified, only after the authentication password passes through, just transaction message and signature message can be sent to the background system server, complete transaction to trigger the background system server, thereby guarantee the correctness that transaction message and signature message send, and non repudiation; In addition, combined password of the present utility model can be one or more combination of random numeral, letter and the character generated when each transaction, being different from existing trading password and OTP must adopt ciphertext to be transmitted, the utility model terminal can be obtained combined password by different way, in the process of obtaining, this combined password (authentication password) can be transmitted with form expressly, and can not reduce the security of account in process of exchange.
Smart card method of commerce of the present utility model as can be seen here, the once access by smart card and terminal has completed the mutual of transaction desired data (for example signed data), has reduced the risk that the important information that repeatedly access causes is intercepted and captured, and has improved security.
As can be seen here, the smart card method of commerce with electronic signature functionality of the present utility model, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
Embodiment 2
The structure of the smart card transaction system with electronic signature functionality based on shown in Fig. 2, Fig. 4 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 2 of electronic signature functionality.Certainly, in the present embodiment, have electronic signature functionality the smart card method of commerce except adopting the structure shown in Fig. 2, can also divide arbitrarily its structure, as long as adopt the method for the present embodiment all to belong to the utility model scope required for protection.
Now, in conjunction with Fig. 4, the smart card method of commerce that the utlity model has electronic signature functionality is described, specific as follows:
The smart card method of commerce that the utlity model has electronic signature functionality comprises:
Step S401: the smart card with electronic signature functionality accesses terminal, and receives transaction message;
Concrete, before the smart card with electronic signature functionality accesses terminal, terminal can be obtained transaction message by modes such as manual input, network, items scanning information.
Smart card can access terminal by cordless, the transaction message that receiving terminal sends.Wherein, transaction message at least comprises account and the amount of money, also can comprise transaction details information.
Certainly, smart card also can access terminal by the way of contact.
Smart card of the present utility model adopts cordless to access terminal and accesses terminal and have higher security than the way of contact, and the information of preventing is acquired.
In addition, smart card is the equipment with electronic signature functionality, can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, or comprising the integrated chip with above-mentioned two chip functions.
Step S402: smart card generates combined password;
Concrete, smart card is generating digital, letter and/or symbol randomly, selects one or more combination producing combined passwords from numeral, letter and symbol, can guarantee the nonuniqueness of combined password, randomness, the security that improves combined password.
Certainly, smart card can also be converted to combined password bar code or Quick Response Code or picture, to facilitate follow-up obtaining.
Step S403: smart card generates the signature message according to transaction message;
Concrete, smart card can directly be signed to transaction message, generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, and the summary info of transaction message is signed, and generates the signature message.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext obtained by symmetric cryptography itself.
Verified by transaction message generation signature message is sent to the background system server, can be guaranteed that transaction is for concluding the business really, and the non repudiation of transaction.
Step S404: smart card is sent to terminal by combined password and signature message;
Concrete, smart card is sent to terminal by combined password and signature message, so that the follow-up checking to authentication password of terminal.
Step S405: the smart card disconnection is connected with terminal;
Concrete, in the situation that contactless mode accesses, the user holds the induction range that smart card leaves terminal and gets final product; In the situation that the contact mode accesses, the user extracts smart card and gets final product from terminal.Disconnect and guaranteed once contacting of smart card and terminal being connected of terminal, having reduced the risk that multiple-contact information is intercepted and captured, the security that has improved data transmission.
Step S406: smart card shows transaction message;
Concrete, smart card, in the transaction message that shows that screen display receives, so that the user confirms the authenticity of this transaction, guarantees the safety of transaction.Simultaneously, the user can also select the transaction message of this transaction in a plurality of transaction that show screen display according to smart card, take and guarantee the combined password that the combined password of follow-up demonstration is this transaction.
Step S407: smart card receives by the confirmation password of key-press input and/or confirms instruction;
Concrete, the user, in the authenticity of having confirmed Transaction Information or after having selected the Transaction Information of this transaction, can, by the operation of input validation password and/or confirmation instruction, trigger smart card and show the combined password generated.Trigger smart card by the input validation password and show that combined password or bar code or picture can prevent that combined password from being known by other people, improve the confidentiality of combined password.
For example, the user is after having confirmed that transaction is true or having selected the Transaction Information of this transaction, and input validation password on smart card, press the confirmation button, demonstrates the combined password of the Transaction Information that respective user confirms on the display screen of smart card.
Step S408: smart card shows combined password or bar code or picture.
Concrete, smart card shows combined password or bar code or picture, so that the user can be known this combined password, thereby facilitate the user, by this combined password, the key-press input by terminal is to terminal, or terminal scanning bar code or picture obtain authentication password, to complete transaction, now, the password of user input and terminal scanning to password can be called as authentication password, the user inputs this authentication password to terminal, guarantees that follow-up terminal is verified the correctness of authentication password.
Certainly, smart card can also be converted to combined password bar code or Quick Response Code or picture, so that follow-up terminal is obtained.
In order further to improve the security of combined password, prevent that other people from obtaining the cleartext information of combined password, when step S402, combined password expressly can also be encrypted with the symmetric encipherment algorithm of presetting and the combined password after encrypting is stored in smart card, receive the user by the confirmation password of key-press input and/or after confirming instruction at smart card, more default symmetric encipherment algorithm decrypts combined password and is expressly shown with this.
Step S409: terminal is obtained authentication password, the authentication password, and, after being verified, transaction message and signature message are sent to the background system server; Wherein, authentication password is the combined password of the key-press input by terminal, or the combined password of the acquisition of information shown by the terminal scanning smart card, or the combined password obtained from smart card in the non-contact communication mode by terminal;
Concrete, the correctness of the combined password authentication password that terminal can receive.
In addition, terminal can be obtained authentication password in the following way: terminal receives by the acquisition of information combined password of key-press input, thereby for example by the keyboard input validation password from terminal, obtains this combined password; Or the acquisition of information combined password that shows by the scanning smart card of terminal, the Quick Response Code shown such as the terminal scanning smart card or bar code etc. obtain this combined password; Or terminal obtains combined password by the non-contact communication mode from smart card, for example can be by smart card being placed in the sweep limit of terminal, obtain combined password with NFC, optical communication, bluetooth, the mode such as infrared.
Certainly, when the user carries out this operation and acted on behalf of, combined password can be informed to the 3rd people, so that the 3rd people inputs to terminal by combined password.
Terminal of the present utility model is only after getting authentication password and being verified, just transaction message, signature message and combined password can be sent to the background system server, complete transaction to trigger the background system server, thereby improve the security of end data transmission, improve the security of transaction.
Step S410: background system server authentication signature message, and, after being verified, according to transaction message, carry out the transaction operation.
Concrete, the background system server can be bank server or third-party server, and third-party server is the server that the non-banking system adopts, such as public transit system adopts mass transit card is supplemented with money and the server controlled of withholing etc.
The background system server, after receiving the terminal transaction message sent and the message of signing, carries out sign test to the signature message, and, after sign test is passed through, concludes the business according to information and executing such as the relevant account in transaction message and the amount of money.
Terminal of the present utility model is after obtaining authentication password, authentication password is verified, only after the authentication password passes through, just transaction message and signature message can be sent to the background system server, complete transaction to trigger the background system server, thereby guarantee the correctness that transaction message and signature message send, and non repudiation; In addition, combined password of the present utility model can be one or more combination of random numeral, letter and the character generated when each transaction, being different from existing trading password and OTP must adopt ciphertext to be transmitted, the utility model terminal can be obtained combined password by different way, in the process of obtaining, this combined password (authentication password) can be transmitted with form expressly, and can not reduce the security of account in process of exchange.
Smart card method of commerce of the present utility model as can be seen here, the once access by smart card and terminal has completed the mutual of transaction desired data (for example signed data), has reduced the risk that the important information that repeatedly access causes is intercepted and captured, and has improved security.
As can be seen here, the smart card method of commerce with electronic signature functionality of the present utility model, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
Fig. 5 is another structural representation that the utlity model has the smart card transaction system of electronic signature functionality.Now in conjunction with Fig. 5, the structure of the smart card transaction system that the utlity model has electronic signature functionality is described, specific as follows:
Smart card transaction system with electronic signature functionality of the present utility model comprises: terminal 40, background system server 50 and the smart card 60 with electronic signature functionality.The equipment of smart card 60 for having electronic signature functionality, can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, or comprising the integrated chip with above-mentioned two chip functions.Wherein,
Smart card 60 with electronic signature functionality accesses terminal 40, receive transaction message, generate combined password, and combined password is encrypted and obtains the encryption combined password, generate the signature message according to transaction message, will encrypt combined password and be sent to terminal 40 with the signature message;
Terminal 40 is obtained authentication password, the authentication password, and, after being verified, transaction message and signature message are sent to background system server 50; Wherein, authentication password is the combined password of the key-press input by terminal 40, or the combined password of the acquisition of information shown by terminal 40 scanning smart cards 60, or the combined password obtained from smart card 60 in the non-contact communication mode by terminal 40;
Background system server 50 certifying signature messages, and, after being verified, according to transaction message, carry out the transaction operation.
Based on said system, smart card 60 comprises: transceiver module 601, password generation module 602, encrypting module 603, signature blocks 604 and display module 605;
Password generation module 602 is for generating combined password, and is sent to display module 605 and encrypting module 603;
Encrypting module 603 to be encrypted combined password for combined password is encrypted, and will encrypt combined password by transceiver module 601 and be sent to terminal 40;
Signature blocks 604 generates the signature message according to transaction message, and is sent to terminal by transceiver module 601 message of signing.
Certainly, on the basis of said structure, the transceiver module 601 of smart card 60 of the present utility model is sending the signature message to terminal 40, also disconnects and being connected of terminal 40, so that display module 605 demonstration transaction message.Thereby guarantee that smart card 60 of the present utility model only contacts with terminal 40 that once just to have completed transaction desired data (signed data) mutual, reduce because the secondary contact produces the risk that data are intercepted and captured, improved the security of transaction.
Certainly, terminal 40 can for example, after checking combined password failure preset times (3 times), and account corresponding to notice background system server 50 these smart cards of locking is with the safety of protection user account.
In addition, smart card 60 can also comprise: key-press module 606.Key-press module 606 is according to the confirmation password received and/or confirm instruction, triggers display module 605 and shows combined password or bar code or picture.
Concrete, for example the user can trigger display module 605 demonstration combined password or bar code or pictures in the following way:
(1) input validation password, after smart card 60 demonstration validation passwords are correct, display module 605 shows combined password or bar code or picture; Perhaps
(2) press the confirmation button, trigger display module 605 and show combined password or bar code or picture; Perhaps
(3) input validation password, and press the confirmation button, after smart card 60 demonstration validation passwords are correct, display module 605 shows combined password or bar code or picture.
Certainly, the condition that display module 605 shows combined password or bar code or picture that triggers can be set for the different consumption amount of money, for example, small amount consumption only needs the user to press the confirmation button, wholesale consumer need user input validation password etc.
In addition, because terminal 40 is obtained the mode difference of authentication password, the transceiver module 601 of smart card 60 can also be for sending the combined password that obtains from password generation module 602 to terminal 40 in the non-contact communication mode; Perhaps smart card 60 also comprises: figure generation module 607, the combined password that figure generation module 607 will obtain from password generation module 602 is changed and is generated bar code or picture, and exports display module 605 demonstrations to.Adopt above-mentioned two kinds of modes, can facilitate terminal 60 to obtain authentication password, prevent the problem of the locking smart card that causes due to the authentication password input error.
In addition, terminal 40 for smart card 60 coupling Receipt Validation passwords, can obtain from smart card 60 bar code or the picture that authentication password or the display module 605 by scanning smart card 60 show in the non-contact communication mode and obtain authentication password.
As can be seen here, the smart card transaction system with electronic signature functionality of the present utility model, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
Embodiment 3
The structure of the smart card transaction system with electronic signature functionality based on shown in Fig. 5, Fig. 6 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 3 of electronic signature functionality.Certainly, in the present embodiment, have electronic signature functionality the smart card method of commerce except adopting the structure shown in Fig. 5, can also divide arbitrarily its structure, as long as adopt the method for the present embodiment all to belong to the utility model scope required for protection.
Now, in conjunction with Fig. 6, the smart card method of commerce that the utlity model has electronic signature functionality is described, specific as follows:
The smart card method of commerce that the utlity model has electronic signature functionality comprises:
Step S601: the smart card with electronic signature functionality accesses terminal, and receives transaction message;
Concrete, before the smart card with electronic signature functionality accesses terminal, terminal can be obtained transaction message by modes such as manual input, network, items scanning information.
Smart card can access terminal by cordless, the transaction message that receiving terminal sends.Wherein, transaction message at least comprises account and the amount of money, also can comprise transaction details information.
Certainly, smart card also can access terminal by the way of contact.
Smart card of the present utility model adopts cordless to access terminal and accesses terminal and have higher security than the way of contact, and the information of preventing is acquired.
In addition, smart card is the equipment with electronic signature functionality, can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, or comprising the integrated chip with above-mentioned two chip functions.
Step S602: smart card generates combined password, and combined password is encrypted and obtains the encryption combined password;
Concrete, smart card is generating digital, letter and/or symbol randomly, selects one or more combination producing combined passwords from numeral, letter and symbol, can guarantee the nonuniqueness of combined password, randomness, the security that improves combined password.
Certainly, smart card can also be converted to combined password bar code or Quick Response Code or picture, to facilitate follow-up obtaining.
Certainly, cryptographic calculation can be symmetric cryptography or asymmetric encryption.Wherein:
Smart card can directly be encrypted combined password, generates and encrypts combined password; Perhaps
Smart card calculates the summary info of combined password, using summary info as encrypting combined password; Perhaps
Smart card calculates the summary info of combined password, and the summary info of combined password is encrypted, and generates and encrypts combined password; Perhaps
Smart card can also generate a random number, combined password and this random number is combined according to default form, and the data after combination are encrypted and obtain the encryption combined password.Now combined password and random number are combined, thereby prevented Replay Attack, further improved the security of combined password transmission.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext obtained by symmetric cryptography itself.
While adopting symmetric cryptography, smart card adopts identical encryption key with terminal, thereby facilitates terminal checking combined password.While adopting asymmetric encryption, smart card can adopt the PKI of terminal to be encrypted, and also can adopt the private key of smart card to be encrypted.
Step S603: smart card generates the signature message according to transaction message;
Concrete, smart card can directly be signed to transaction message, generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, and the summary info of transaction message is signed, and generates the signature message.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext obtained by symmetric cryptography itself.
Verified by transaction message generation signature message is sent to terminal, can be guaranteed that transaction is for concluding the business really, and the non repudiation of transaction.
Step S604: smart card will encrypt combined password and the signature message is sent to terminal;
Concrete, smart card will encrypt combined password and the signature message is sent to terminal, so that the follow-up checking to authentication password of terminal.
Step S605: terminal is obtained authentication password, the authentication password, and, after being verified, transaction message and signature message are sent to the background system server; Wherein, authentication password is the combined password of the key-press input by terminal, or the combined password of the acquisition of information shown by the terminal scanning smart card, or the combined password obtained from smart card in the non-contact communication mode by terminal;
Concrete, when adopting symmetric cryptography, terminal can be calculated the ciphertext of the authentication password of obtaining, then compares with the encryption combined password that smart card sends; The encryption combined password that perhaps the terminal deciphering smart card sends, obtain combined password and expressly compare with the authentication password of obtaining.
When adopting asymmetric encryption, the encryption combined password that terminal is encrypted according to the employing terminal public key of the private key deciphering smart card transmission of terminal, obtain combined password and expressly compare with the authentication password got; Perhaps terminal adopts the PKI of smart card to calculate the authentication password of obtaining, and the encryption combined password that passes through the smart card encrypted private key sent by smart card is verified.
Terminal of the present utility model is only after getting authentication password and being verified, just transaction message, signature message can be delivered to the background system server, to trigger the correctness of background system server authentication signature message, and complete transaction, thereby the security that the sensitive data that improving end exchange needs transmits, improve the security of concluding the business.
In addition, terminal can be obtained authentication password in the following way: terminal receives by the acquisition of information combined password of key-press input, thereby for example by the keyboard input validation password from terminal, obtains combined password; Or the acquisition of information combined password that shows by the scanning smart card of terminal, the Quick Response Code shown such as the terminal scanning smart card or bar code etc. obtain this combined password; Or terminal obtains combined password by the non-contact communication mode from smart card, for example can be by smart card being placed in the sweep limit of terminal, obtain combined password with NFC, optical communication, bluetooth, the mode such as infrared.
Certainly, when the user carries out this operation and acted on behalf of, combined password can be informed to the 3rd people, so that the 3rd people inputs to terminal by combined password.
Step S606: background system server authentication signature message, and, after being verified, according to transaction message, carry out the transaction operation.
Concrete, the background system server can be bank server or third-party server, and third-party server is the server that the non-banking system adopts, such as public transit system adopts mass transit card is supplemented with money and the server controlled of withholing etc.
The background system server, after receiving the terminal transaction message sent and the message of signing, carries out sign test to the signature message, and, after sign test is passed through, concludes the business according to information and executing such as the relevant account in transaction message and the amount of money.
Terminal of the present utility model is after obtaining authentication password, authentication password is verified, only after the authentication password passes through, just transaction message and signature message can be sent to the background system server, complete transaction to trigger the background system server, thereby guarantee the correctness that transaction message and signature message send, and non repudiation; In addition, combined password of the present utility model can be one or more combination of random numeral, letter and the character generated when each transaction, being different from existing trading password and OTP must adopt ciphertext to be transmitted, the utility model terminal can be obtained combined password by different way, in the process of obtaining, this combined password (authentication password) can be transmitted with form expressly, and can not reduce the security of account in process of exchange.
Smart card method of commerce of the present utility model as can be seen here, the once access by smart card and terminal has completed the mutual of transaction desired data (for example signed data), has reduced the risk that the important information that repeatedly access causes is intercepted and captured, and has improved security.
As can be seen here, the smart card method of commerce with electronic signature functionality of the present utility model, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
Embodiment 4
The structure of the smart card transaction system with electronic signature functionality based on shown in Fig. 5, Fig. 7 is the process flow diagram that the utlity model has the smart card method of commerce embodiment 4 of electronic signature functionality.Certainly, in the present embodiment, have electronic signature functionality the smart card method of commerce except adopting the structure shown in Fig. 5, can also divide arbitrarily its structure, as long as adopt the method for the present embodiment all to belong to the utility model scope required for protection.
Now, in conjunction with Fig. 7, the smart card method of commerce that the utlity model has electronic signature functionality is described, specific as follows:
The smart card method of commerce that the utlity model has electronic signature functionality comprises:
Step S701: the smart card with electronic signature functionality accesses terminal, and receives transaction message;
Concrete, before the smart card with electronic signature functionality accesses terminal, terminal can be obtained transaction message by modes such as manual input, network, items scanning information.
Smart card can access terminal by cordless, the transaction message that receiving terminal sends.Wherein, transaction message at least comprises account and the amount of money, also can comprise transaction details information.
Certainly, smart card also can access terminal by the way of contact.
Smart card of the present utility model adopts cordless to access terminal and accesses terminal and have higher security than the way of contact, and the information of preventing is acquired.
In addition, smart card is the equipment with electronic signature functionality, can comprise the core of the card sheet that contains user account information and utilize key to carry out the safety chip of digital signature, or comprising the integrated chip with above-mentioned two chip functions.
Step S702: smart card generates combined password, and combined password is encrypted and obtains the encryption combined password;
Concrete, smart card is generating digital, letter and/or symbol randomly, selects one or more combination producing combined passwords from numeral, letter and symbol, can guarantee the nonuniqueness of combined password, randomness, the security that improves combined password.
Certainly, smart card can also be converted to combined password bar code or Quick Response Code or picture, to facilitate follow-up obtaining.
Certainly, cryptographic calculation can be symmetric cryptography or asymmetric encryption.Wherein:
Smart card can directly be encrypted combined password, generates and encrypts combined password; Perhaps
Smart card calculates the summary info of combined password, using summary info as encrypting combined password; Perhaps
Smart card calculates the summary info of combined password, and the summary info of combined password is encrypted, and generates and encrypts combined password; Perhaps
Smart card can also generate a random number, combined password and this random number is combined according to default form, and the data after combination are encrypted and obtain the encryption combined password.Now combined password and random number are combined, thereby prevented Replay Attack, further improved the security of combined password transmission.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext obtained by symmetric cryptography itself.
While adopting symmetric cryptography, smart card adopts identical encryption key with terminal, thereby facilitates terminal checking combined password.While adopting asymmetric encryption, smart card can adopt the PKI of terminal to be encrypted, and also can adopt the private key of smart card to be encrypted.
Step S703: smart card generates the signature message according to transaction message;
Concrete, smart card can directly be signed to transaction message, generates the signature message; Perhaps
Smart card calculates the summary info of transaction message, and the summary info of transaction message is signed, and generates the signature message.
Wherein, summary info can comprise following a kind of or its combination: the cryptographic hash of calculating by hash algorithm, the MAC value of calculating by the MAC algorithm, the ciphertext obtained by symmetric cryptography itself.
Verified by transaction message generation signature message is sent to terminal, can be guaranteed that transaction is for concluding the business really, and the non repudiation of transaction.
Step S704: smart card will encrypt combined password and the signature message is sent to terminal;
Concrete, smart card will encrypt combined password and the signature message is sent to terminal, so that the follow-up checking to authentication password of terminal.
Step S705: the smart card disconnection is connected with terminal;
Concrete, in the situation that contactless mode accesses, the user holds the induction range that smart card leaves terminal and gets final product; In the situation that the contact mode accesses, the user extracts smart card and gets final product from terminal.Disconnect and guaranteed once contacting of smart card and terminal being connected of terminal, having reduced the risk that multiple-contact information is intercepted and captured, the security that has improved data transmission.
Step S706: smart card shows transaction message;
Concrete, smart card, in the transaction message that shows that screen display receives, so that the user confirms the authenticity of this transaction, guarantees the safety of transaction.Simultaneously, the user can also select the transaction message of this transaction in a plurality of transaction that show screen display according to smart card, take and guarantee the combined password that the combined password of follow-up demonstration is this transaction.
Step S707: smart card receives by the confirmation password of key-press input and/or confirms instruction;
Concrete, the user, in the authenticity of having confirmed Transaction Information or after having selected the Transaction Information of this transaction, can, by the operation of input validation password and/or confirmation instruction, trigger smart card and show the combined password generated.Trigger smart card by the input validation password and show that combined password or bar code or picture can prevent that combined password from being known by other people, improve the confidentiality of combined password.
For example, the user is after having confirmed that transaction is true or having selected the Transaction Information of this transaction, and input validation password on smart card, press the confirmation button, demonstrates the combined password of the Transaction Information that respective user confirms on the display screen of smart card.
Step S708: smart card shows combined password or bar code or picture.
Concrete, smart card shows combined password or bar code or picture, so that the user can be known this combined password, thereby facilitate the user, by this combined password, the key-press input by terminal is to terminal, or terminal scanning bar code or picture obtain authentication password, to complete transaction, now, the password of user input and terminal scanning to password can be called as authentication password, the user inputs this authentication password to terminal, guarantees that follow-up terminal is verified the correctness of authentication password.
Certainly, smart card can also be converted to combined password bar code or Quick Response Code or picture, so that follow-up terminal is obtained.
In order further to improve the security of combined password, prevent that other people from obtaining the cleartext information of combined password, when step S402, combined password expressly can also be encrypted with the symmetric encipherment algorithm of presetting and the combined password after encrypting is stored in smart card, receive the user by the confirmation password of key-press input and/or after confirming instruction at smart card, more default symmetric encipherment algorithm decrypts combined password and is expressly shown with this.
Step S709: terminal is obtained authentication password, the authentication password, and, after being verified, transaction message and signature message are sent to the background system server; Wherein, authentication password is the combined password of the key-press input by terminal, or the combined password of the acquisition of information shown by the terminal scanning smart card, or the combined password obtained from smart card in the non-contact communication mode by terminal;
Concrete, when adopting symmetric cryptography, terminal can be calculated the ciphertext of the authentication password of obtaining, then compares with the encryption combined password that smart card sends; The encryption combined password that perhaps the terminal deciphering smart card sends, obtain combined password and expressly compare with the authentication password of obtaining.
When adopting asymmetric encryption, terminal, according to the encryption combined password of the private key deciphering smart card transmission of terminal, obtains combined password and expressly compares with the authentication password got; Perhaps terminal adopts the PKI of smart card to calculate the authentication password of obtaining, and the encryption combined password sent by smart card is verified.
Terminal of the present utility model is only after getting authentication password and being verified, just transaction message, signature message can be delivered to the background system server, to trigger the correctness of background system server authentication signature message, and complete transaction, thereby the security that the sensitive data that improving end exchange needs transmits, improve the security of concluding the business.
In addition, terminal can be obtained authentication password in the following way: terminal receives by the acquisition of information combined password of key-press input, thereby for example by the keyboard input validation password from terminal, obtains combined password; Or the acquisition of information combined password that shows by the scanning smart card of terminal, the Quick Response Code shown such as the terminal scanning smart card or bar code etc. obtain this combined password; Or terminal obtains combined password by the non-contact communication mode from smart card, for example can be by smart card being placed in the sweep limit of terminal, obtain combined password with NFC, optical communication, bluetooth, the mode such as infrared.
Certainly, when the user carries out this operation and acted on behalf of, combined password can be informed to the 3rd people, so that the 3rd people inputs to terminal by combined password.
Step S710: background system server authentication signature message, and, after being verified, according to transaction message, carry out the transaction operation.
Concrete, the background system server can be bank server or third-party server, and third-party server is the server that the non-banking system adopts, such as public transit system adopts mass transit card is supplemented with money and the server controlled of withholing etc.
The background system server, after receiving the terminal transaction message sent and the message of signing, carries out sign test to the signature message, and, after sign test is passed through, concludes the business according to information and executing such as the relevant account in transaction message and the amount of money.
Terminal of the present utility model is after obtaining authentication password, authentication password is verified, only after the authentication password passes through, just transaction message and signature message can be sent to the background system server, complete transaction to trigger the background system server, thereby guarantee the correctness that transaction message and signature message send, and non repudiation; In addition, combined password of the present utility model can be one or more combination of random numeral, letter and the character generated when each transaction, being different from existing trading password and OTP must adopt ciphertext to be transmitted, the utility model terminal can be obtained combined password by different way, in the process of obtaining, this combined password (authentication password) can be transmitted with form expressly, and can not reduce the security of account in process of exchange.
Smart card method of commerce of the present utility model as can be seen here, the once access by smart card and terminal has completed the mutual of transaction desired data (for example signed data), has reduced the risk that the important information that repeatedly access causes is intercepted and captured, and has improved security.
As can be seen here, the smart card method of commerce with electronic signature functionality of the present utility model, by smart card and terminal once accessed the mutual of transaction desired data, reduced the risk that the important information that repeatedly access causes is intercepted and captured, improved security.
In process flow diagram or any process of otherwise describing at this or method describe and can be understood to, mean to comprise one or more module for the code of the executable instruction of the step that realizes specific logical function or process, fragment or part, and the scope of preferred implementation of the present utility model comprises other realization, wherein can be not according to order shown or that discuss, comprise according to related function by the mode of basic while or by contrary order, carry out function, this should be understood by embodiment person of ordinary skill in the field of the present utility model.
Should be appreciated that each several part of the present utility model can realize with hardware, software, firmware or their combination.In the above-described embodiment, a plurality of steps or method can realize with being stored in storer and by software or the firmware of suitable instruction execution system execution.For example, if realize with hardware, the same in another embodiment, can realize by any one in following technology well known in the art or their combination: have for data-signal being realized to the discrete logic of the logic gates of logic function, special IC with suitable combinational logic gate circuit, programmable gate array (PGA), field programmable gate array (FPGA) etc.
Those skilled in the art are appreciated that and realize that all or part of step that above-described embodiment method is carried is to come the hardware that instruction is relevant to complete by program, described program can be stored in a kind of computer-readable recording medium, this program, when carrying out, comprises step of embodiment of the method one or a combination set of.
In addition, each functional unit in each embodiment of the utility model can be integrated in a processing module, can be also that the independent physics of unit exists, and also can be integrated in a module two or more unit.Above-mentioned integrated module both can adopt the form of hardware to realize, also can adopt the form of software function module to realize.If described integrated module usings that the form of software function module realizes and during as production marketing independently or use, also can be stored in a computer read/write memory medium.
The above-mentioned storage medium of mentioning can be ROM (read-only memory), disk or CD etc.
In the description of this instructions, the description of reference term " embodiment ", " some embodiment ", " example ", " concrete example " or " some examples " etc. means to be contained at least one embodiment of the present utility model or example in conjunction with specific features, structure, material or the characteristics of this embodiment or example description.In this manual, the schematic statement of above-mentioned term not necessarily referred to identical embodiment or example.And the specific features of description, structure, material or characteristics can be with suitable mode combinations in any one or more embodiment or example.
Although the above has illustrated and has described embodiment of the present utility model, be understandable that, above-described embodiment is exemplary, can not be interpreted as restriction of the present utility model, those of ordinary skill in the art is not in the situation that break away from principle of the present utility model and aim can be changed above-described embodiment in scope of the present utility model, modification, replacement and modification.Scope of the present utility model is by claims and be equal to and limit.
Claims (10)
1. the smart card transaction system with electronic signature functionality, is characterized in that, described system comprises: terminal, background system server and the smart card with electronic signature functionality;
The described smart card with electronic signature functionality accesses terminal, and receives transaction message, by the combined password of generation with according to the signature message of described transaction message generation, is sent to described terminal;
Described terminal is obtained authentication password, after the described authentication password of checking is passed through, described transaction message and described signature message is sent to the background system server; Wherein, described authentication password is the combined password of the key-press input by described terminal, or the combined password of the acquisition of information shown by the described smart card of described terminal scanning, or the combined password obtained from described smart card in the non-contact communication mode by described terminal;
Described background system server, after the described signature message of checking passes through, is carried out the transaction operation according to described transaction message.
2. the smart card transaction system with electric signing tools function, is characterized in that, described system comprises: terminal, background system server and the smart card with electronic signature functionality;
The described smart card with electronic signature functionality accesses terminal, and receives transaction message, will be encrypted to the combined password generated the encryption combined password of acquisition and be sent to described terminal according to the signature message of described transaction message generation;
Described terminal is obtained authentication password, after the described authentication password of checking is passed through, described transaction message and described signature message is sent to the background system server; Wherein, described authentication password is the combined password of the key-press input by described terminal, or the combined password of the acquisition of information shown by the described smart card of described terminal scanning, or the combined password obtained from described smart card in the non-contact communication mode by described terminal;
Described background system server, after the described signature message of checking passes through, is carried out the transaction operation according to described transaction message.
3. system according to claim 1, is characterized in that, described smart card comprises: transceiver module, password generation module, signature blocks and display module;
Described transceiver module, for accessing terminal, receives transaction message and is sent to described signature blocks;
Described password generation module, for the combined password of generation is sent to described display module, is sent to described terminal by described transceiver module by described combined password;
The signature message that described signature blocks will generate according to described transaction message by described transceiver module is sent to described terminal.
4. system according to claim 2, is characterized in that, described smart card comprises: transceiver module, password generation module, encrypting module, signature blocks and display module;
Described transceiver module, for accessing terminal, receives transaction message and is sent to described signature blocks;
Described password generation module is for being sent to described display module and described encrypting module by the combined password of generation;
Described encrypting module is sent to described terminal for the encryption combined password that by described transceiver module, will be encrypted acquisition to described combined password;
The signature message that described signature blocks will generate according to described transaction message by described transceiver module is sent to described terminal.
5. according to the described system of claim 3 or 4, it is characterized in that, described transceiver module is sending described signature message to after described terminal, also disconnects and being connected of described terminal;
Described display module disconnects with after being connected of described terminal at described transceiver module, also shows described transaction message.
6. according to the described system of claim 3 to 5 any one, it is characterized in that, described smart card also comprises: key-press module;
Described key-press module is according to the confirmation password received and/or confirm instruction, triggers described display module and shows described combined password or bar code or picture.
7. according to the described system of claim 3 to 6 any one, it is characterized in that, described transceiver module is also for sending the described combined password that obtains from described password generation module to described terminal in the non-contact communication mode.
8. according to the described system of claim 3 to 6 any one, it is characterized in that, described smart card also comprises: the figure generation module;
The described combined password that described figure generation module will obtain from described password generation module is changed the bar code or the picture that generate and is exported described display module demonstration to.
9. system according to claim 7, is characterized in that, described terminal is obtained described authentication password in the non-contact communication mode from described smart card.
10. system according to claim 8, is characterized in that, bar code or picture that described terminal shows by the described display module that scans described smart card obtain described authentication password.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013201024038U CN203338403U (en) | 2013-03-06 | 2013-03-06 | Intelligent card transaction system with an electronic signature function |
| HK14101685A HK1189761A2 (en) | 2013-03-06 | 2014-02-21 | Smart card transaction system having electronic signature function |
| PCT/CN2014/072514 WO2014135014A1 (en) | 2013-03-06 | 2014-02-25 | Transaction method and system for smart card having electronic signature function |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013201024038U CN203338403U (en) | 2013-03-06 | 2013-03-06 | Intelligent card transaction system with an electronic signature function |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN203338403U true CN203338403U (en) | 2013-12-11 |
Family
ID=49707067
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013201024038U Expired - Lifetime CN203338403U (en) | 2013-03-06 | 2013-03-06 | Intelligent card transaction system with an electronic signature function |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN203338403U (en) |
| HK (1) | HK1189761A2 (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014135014A1 (en) * | 2013-03-06 | 2014-09-12 | 天地融科技股份有限公司 | Transaction method and system for smart card having electronic signature function |
| CN107563743A (en) * | 2017-08-14 | 2018-01-09 | 福建新大陆支付技术有限公司 | Lift the method and system of POS transaction securities |
-
2013
- 2013-03-06 CN CN2013201024038U patent/CN203338403U/en not_active Expired - Lifetime
-
2014
- 2014-02-21 HK HK14101685A patent/HK1189761A2/en not_active IP Right Cessation
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014135014A1 (en) * | 2013-03-06 | 2014-09-12 | 天地融科技股份有限公司 | Transaction method and system for smart card having electronic signature function |
| CN107563743A (en) * | 2017-08-14 | 2018-01-09 | 福建新大陆支付技术有限公司 | Lift the method and system of POS transaction securities |
| CN107563743B (en) * | 2017-08-14 | 2023-05-30 | 福建新大陆支付技术有限公司 | Method and system for improving POS transaction safety |
Also Published As
| Publication number | Publication date |
|---|---|
| HK1189761A2 (en) | 2014-06-13 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103136664B (en) | There is smart card transaction system and the method for electronic signature functionality | |
| CN203242029U (en) | An intelligent card containing an electronic signature function and an intelligent card transaction system | |
| CN103208151B (en) | Process the method and system of operation requests | |
| CN107358441B (en) | Payment verification method and system, mobile device and security authentication device | |
| CN104243451A (en) | Information interaction method and system and smart key equipment | |
| CN103532719B (en) | Dynamic password generation method, dynamic password generation system, as well as processing method and processing system of transaction request | |
| CN103198401B (en) | There is smart card method of commerce and the system of electronic signature functionality | |
| CN103220148B (en) | The method of electronic signature token operation response request, system and electronic signature token | |
| CN103516525B (en) | Dynamic password generation method and system | |
| CN103401844A (en) | Operation request processing method and system | |
| CN103136665A (en) | Method and system of network transaction | |
| CN104636777A (en) | Identity card information obtaining system | |
| CN106027250A (en) | Identity card information safety transmission method and system | |
| CN104243162A (en) | Information interaction method and system and smart key equipment | |
| CN104182875A (en) | Payment method and payment system | |
| CN103366278A (en) | Method and system for processing operation request | |
| CN101944216A (en) | Two-factor online transaction safety authentication method and system | |
| CN103136667B (en) | There is the smart card of electronic signature functionality, smart card transaction system and method | |
| CN203338403U (en) | Intelligent card transaction system with an electronic signature function | |
| CN103973455A (en) | Information interaction method | |
| CN204559616U (en) | ID card information obtains system | |
| CN104796266A (en) | Authentication method, device and system | |
| CN104917616A (en) | Smart-card-based network equipment authentication method in software defined networking | |
| CN103136666B (en) | There is smart card method of commerce and the system of electronic signature functionality | |
| CN103984906A (en) | Electronic key device without button |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CX01 | Expiry of patent term | ||
| CX01 | Expiry of patent term |
Granted publication date: 20131211 |