JP6556901B1 - How to trade digital assets - Google Patents

Abstract

A method for trading digital assets is provided. A digital asset transaction method according to the present invention is executed by a network-connected electronic device that can be directly connected to the Internet and a closed-type electronic device that can be connected to the network-connected electronic device but cannot be directly connected to the Internet. A first collation information display step for displaying transaction data input by a user on a connection-type electronic device; a transaction data transmission step for transmitting to the closed-type electronic device after confirming a match between the two information; and the closed-type electronic device A second verification information display step for displaying the received transaction data, an authentication data transmission step for returning the data to the network-connected electronic device after confirming a match between the two information, and after receiving the authentication data Including transaction steps, during transaction, transaction content is confirmed multiple times on different devices. It can determine whether or not to run. [Selection] Figure 1

Description

  The present invention relates to a digital asset transaction method, and more particularly to a digital asset transaction method in which actual transaction contents can be confirmed a plurality of times in different apparatuses in a transaction process.

  With the advancement of science and technology, transaction methods that have exchanged real money, asset lighting or other assets face-to-face directly in the past have also been digitized as science and technology have advanced and both sides have not met. Direct remote transactions in the form. However, at the same time, new criminal methods have also progressed and different systems and modes have been born.

  Among them, in order to acquire the victim's assets, in the process of trading digital assets, a malicious program can be used to steal through the Internet, or the user's transactions can be made using trading programs or other loopholes on electronic devices. Whether to impersonate the operation page or screen of the electronic device used by the user in the situation where the victim's trading authority is not acquired, in addition to impersonating the victim to conduct fraudulent transactions , Changing the quantity or symmetry of the assets actually traded at the time of the user's transaction, causing the self-approval to transfer his / her asset to an unrelated third party without the user's knowledge, and generating a loss is there.

  Therefore, a new transaction confirmation method is required in order to prevent the actual transaction content or interface at the time of transaction from being falsified and to ensure the safety of personal property.

  The object of the present invention is to use a second electronic device different from the first electronic device in addition to confirming transaction contents on the first electronic device when performing a digital asset transaction using a network-connected electronic device. Secondary confirmation can be performed on the transaction contents, and the electronic device used in the process of transaction by a single electronic device has been tampered with by a malicious person by the secondary confirmation method on different devices It is to provide a digital asset transaction method that prevents the possibility of changing the transaction contents.

  Another object of the present invention is to limit the external connection capability of different electronic devices used, except that in the confirmation process, multiple electronic devices are used to confirm transactions multiple times for the same matter. Digital, which allows a malicious person to easily connect to all electronic devices used in the transaction process by the network and reduce the possibility of any electronic devices used in the process being tampered with The purpose is to provide an asset transaction method.

  In order to achieve the above object, the digital asset transaction method of the present invention includes a network-connected electronic device that can be directly connected to the Internet, and a network-connected electronic device that cannot be directly connected to the Internet, but can be connected to the network-connected electronic device. The digital asset transaction method, which is a digital asset transaction method that operates with a closed electronic device that provides authentication data that authorizes a connected electronic device to transact digital assets, includes:

  First collation information display step: The network connection type electronic device displays the first collation information based on transaction data for transacting the digital asset input by the user.

  Transaction data transmission step: When the network-connected electronic device receives the first verification information input to the user and a first confirmation instruction indicating that the transaction data matches each other, the transaction data is closed To the electronic device.

  Second verification information display step: The closed electronic device displays second verification information based on the transaction data received from the network-connected electronic device.

  Authentication data transmission step: when the closed electronic device receives the second verification information input to the user and a second confirmation instruction indicating that the transaction data match each other, the authentication data is transmitted to the network connection type. Transmit to electronic device.

  Transaction step: When the networked electronic device receives the authentication data from the closed electronic device, it transacts the digital asset based on the transaction data.

  Regarding the hardware design of the closed electronic device, the closed electronic device includes a microcontroller unit (MCU) and a security chip (SE), and the security chip provides the authentication data. In particular, the microcontroller unit is used to determine whether the networked electronic device permits connection to the security chip and to generate the second verification information.

  Regarding the contents of each of the presented nouns, in the embodiment, the authentication data is at least one of a private key or a digital signature used in a transaction process for trading the digital asset. The digital asset is at least one of electronic money or electronic authentication, and the transaction data includes the type of the digital asset, a transaction amount, and a transaction object.

  In an embodiment, after the transaction data transmission step, the closed electronic device is further connected to the network connection in order to prevent the closed electronic device from being arbitrarily connected to the one network connected electronic device. When the device pairing data generated from the electronic device and indicating that the closed electronic device and the network-connected electronic device are already paired is received, the second verification information display step is performed. Includes steps.

  Regarding the digital asset transaction method, in an embodiment, after the second verification information display step, after a predetermined waiting time, when the closed electronic device is not transmitting the authentication data, Stop trading.

  Alternatively, in an embodiment, after the second matching information display step, the network-connected electronic device sends a stop message based on a stop instruction for stopping the transaction of the digital asset input to the user. Transmit to a closed electronic device and stop trading the digital asset.

  As can be seen from the above description, the advantage of the present invention is that in the transaction process of digital assets, two different electronic devices can be used to confirm twice, and the transaction process in a two-time contrasting manner. One of the electronic devices used in the transaction can be connected to the Internet in order to reduce the possibility that the data or transaction object in the transaction will be tampered with by a malicious party and to further protect the transaction content Other than the necessity of being an electronic device, the other is a closed electronic device that is limited in network connection capability and cannot be directly connected to the Internet, and of these, the closed electronic device is connected to the network. By verifying the digital signature of the electronic device, the electronic device that can connect to the Internet decides whether it can connect to it or not in the transaction process. Therefore, the user also needs to confirm the transaction contents multiple times and authenticate the transaction contents. Otherwise, the transaction is determined to be failed, and the digital asset safety of the user is protected. Can do.

It is a process flow figure of the transaction method of the digital asset of the present invention. It is a detailed flow explanatory view of a preferred embodiment of the digital asset transaction method of the present invention. It is a detailed flow explanatory view of a preferred embodiment of the digital asset transaction method of the present invention. It is a detailed flow explanatory view of a preferred embodiment of the digital asset transaction method of the present invention.

  For a clearer and more detailed understanding and understanding of the structure, use and features of the present invention, a preferred embodiment will be given and described in detail below in conjunction with the drawings.

  Referring to the flowchart of FIG. 1 and the detailed flowchart of the preferred embodiment of FIGS. 2 and 3, the digital asset transaction method of the present invention is a network-connected electronic device that can be directly connected to the Internet and A method for dealing with digital assets operated in a closed electronic device that can be connected to a network-connected electronic device but cannot be directly connected to the Internet includes the following.

  First collation information display step 10: The first collation information is displayed based on the transaction data for transacting the digital asset input by the user to the network-connected electronic device.

  Transaction data transmission step 20: When the network-connected electronic device receives a confirmation instruction indicating that the first verification information input to the user and the transaction data match each other, the transaction data is transferred to the closed type. Transmit to electronic device.

  Second verification information display step 30: The closed electronic device displays second verification information based on the transaction data received from the network-connected electronic device.

  Authentication data transmission step 40: When the closed electronic device receives the confirmation information indicating that the second verification information input to the user and the transaction data match each other, the authentication data is transmitted to the network-connected electronic device. Transmit to the device.

  Transaction Step 50: When the networked electronic device receives the authentication data from the closed electronic device, it transacts the digital asset based on the transaction data.

  For a detailed description of the digital asset transaction method, referring to the flowcharts of the preferred embodiments of FIGS. 2 and 3, first, in the hardware aspect, in this embodiment, the network-connected electronic device is a mobile phone. 200, the closed electronic device is an electronic card 300.

  Among them, the present invention does not limit the type of hardware of the network-connected electronic device and the closed electronic device, and does not limit the actual contents of the digital assets to be traded. Therefore, in other embodiments The network-connected electronic device can be a conventional personal computer or other smart wearable device, and the closed electronic device can be a personal computer or other wearable device with limited connection capability; The electronic card 300 only needs to have a limited network connection capability.

  In this embodiment, the electronic card 300 as the closed electronic device includes a microcontroller unit 301, a security chip 302, a display device (not shown) for displaying the second verification information, and a second confirmation command. An input device (not shown) for inputting is included. The security chip 302 can provide a plurality of authentication data required when trading digital assets.

  In different embodiments, the digital asset is, for example, an electronic certificate used for different types of electronic money or other asset transactions, and in different embodiments, the authentication data is the digital asset itself (similar to actual money). ) Or at least one of a private key or a digital signature used in the digital asset Tokotei, but for convenience of explanation, in this embodiment, the security chip 302 is A private key for trading electronic money can be stored, and a digital signature generated from the private key for trading electronic money can be used as the authentication data (details will be described later).

  The microcontroller unit 301 is connected to the security chip 302, determines whether an electronic device connected to the electronic card 300 has authority, accesses data in the security chip 302, and accesses the electronic card 300. An electronic device that does not match the above cannot access the data in the security chip 302, thereby improving safety. Among them, the method of determining whether or not the mobile phone 200 can access the data of the security chip 302 is described with reference to the following description.

  Returning to the digital asset transaction method, with reference to FIG. 2 and FIG. 3 for the detailed explanation of each step, in the first verification information display step 10, the user 100 operates the mobile phone 200 to The program 201 is started, and then the transaction data for trading the digital asset (the electronic money) is input. Subsequently, the application program 200 confirms the transaction contents in the electronic card 300 later. A first digital signature to be prepared is prepared, the first verification information is displayed on the mobile phone 200, and the first verification information display step 10 is completed.

  As described above, in the electronic card 300, data used by other different digital assets other than the electronic money can be stored, and therefore the type of digital data desired to be traded is determined. It includes the type of asset (in this embodiment, the type of electronic money), the amount at the time of transaction, and the transaction object at the time of transaction (in this embodiment, the account address (address) of the transaction object).

  In the transaction data transmission step 20, after confirming that the transaction data entered by the user 100 and the first verification information match, the user 100 inputs a first confirmation command on the mobile phone 200. The transaction data is transmitted to the electronic card 300.

  Among them, in this embodiment, before the second verification information display step 30, a verification step 21 for confirming whether or not the application program 201 can access the data of the security chip 302 in the electronic card 300 is further provided. Have.

  More specifically, in the verification step 21, the application program 201 transmits device pairing data to the electronic card 300, and the device pairing data includes the input ID of the mobile phone 200, the first digital Including a signature, a message verification code (Mac), and other similar data to indicate whether the electronic card 300 can connect to the mobile phone 200, the microcontroller unit 301 includes the device pairing data Is received, the data of each term in the contents is compared, it is determined whether or not the device pairing data can be transmitted to the security chip 302, and it is confirmed that there is no error in the data of each term. Then, the verification step 21 is completed.

  Among them, when trading electronic money, a plurality of different first digital signatures may need to be used at the same time. Therefore, when the application program 201 transmits the device pairing data, The device pairing data is transmitted a plurality of times by the loop 211.

  As an additional explanation, in order to make it possible to distinguish between the electronic card 300 and the application program 201 of the mobile phone 200, in this embodiment, before performing the digital asset transaction method, the electronic card 300 A pairing relationship has been established with the application program 201 of the mobile phone 200, and the message verification code used in the verification step 21 and other similar electronic cards 300 can be connected to the mobile phone 200. Generate related data to verify whether or not, perform a variety of different verification, among them, the method of establishing a pairing relationship between devices is not limited, but a method of pairing between conventional electronic devices Can be used.

  In addition, the present invention does not limit the verification step 21 to be included in the implementation, and in some embodiments, the verification method does not include the verification step 21 and the electronic card 300 is otherwise Can be connected to the application program 201 in the mobile phone 200 for which no pairing relationship is established. However, for security, in certain embodiments, an authentication scheme different from that which still uses the device pairing data between the mobile phone 200 and the electronic card 300, such as the transaction data or the first Pairing between electronic devices is performed by a method such as recognizing the electronic card 300 in a confirmation command or inputting a password generated by the mobile phone 200 corresponding to the input device on the electronic card 300.

  After passing through the authentication step 21, the process proceeds to the second verification information display step 30, where the microcontroller unit 301 receives the transaction data from the mobile phone 200, and then transmits the transaction data. The response data returned from the security chip 302 is read, the second verification information is displayed on the display device based on the response data, and the second verification information display step 30 is completed.

  Of these, in the present embodiment, the response data includes mode data for determining the detailed degree of information displayed by the display device, in addition to including the transaction amount at the time of transaction and the address of the transaction target. The mode data is displayed on the second verification information displayed on the display device in the first mode 31 by displaying the transaction digital quantity and the transaction target at the time of the transaction, or by selecting the second mode 32 and performing the transaction. A digital quantity can also be displayed as the second verification information.

  Of course, in other embodiments, the polarization of the mode data allows the display device to display a third mode including other relevant information at the time of the transaction, such as the type of the digital asset, etc. Design changes.

  Thereafter, in the authentication data transmission step 40, the user 100 confirms that the transaction data input by the user 100 matches the second verification information, and then uses the input device in the electronic card 300 to execute the second data. After inputting the confirmation command, the microcontroller unit 301 transmits the validation request to the security chip 302 after receiving the second confirmation command.

  Subsequently, the application program 201 transmits at least one signature information, and returns the second digital signature generated by the private key to the security chip 302 as the authentication data, which is the same as the previous verification step 21. Since the application program 201 transmits the signature information and receives the second digital signature, the second loop 401 can be used. Do it multiple times.

  After the application program 201 receives the second digital signature, a transaction end signal is transmitted to the microcontroller unit 301 to notify the electronic card 300 of the completion of the current transaction, and at the same time, further, the second digital signature. Is generated, and the transaction authentication is transmitted to the system for trading the electronic money via the Internet, the transaction process is completed, and detailed data of the transaction result is displayed on the application program 201.

  Therefore, as can be understood from the above description, the digital asset transaction method of the present invention can confirm the contents of the digital asset that is actually traded at the same time multiple times with different devices at the same time during the transaction. Prevents the problem of tampering when using only a single electronic device. In addition, in the transaction process, in addition to adopting a network-connected electronic device, confirmation is further performed using a closed electronic device, and the closed electronic device can be isolated from the Internet when not performing a transaction, The possibility that the closed electronic device will be improved can be further prevented.

  Also, in this embodiment, when accessing the closed electronic device, the closed electronic device further verifies what the access target is, so that any one random application program 201 can be closed. Even if a malicious person tries to impersonate the application program 201 used in the course of the transaction, instead of accessing the contents of the electronic expression device, the digital signature conformance verification still further protects the security of the digital asset be able to.

  Finally, as to how to stop the transaction of the digital asset, as shown in FIG. 4, in the present embodiment, after the second verification information display step 30, in the first transaction step 41, the user 100 can operate the application program 201 on the mobile phone 200, transmits a stop message to the electronic card 300, causes the microcontroller unit 301 to transmit an authentication failure message to the security chip 302, and Stop trading. Of these, what controls the microcontroller unit 301 to transmit the authentication failure message is not limited.

  In the present embodiment, after the second collation information display step 30 and in the second cancellation step 42, the user 100 has not input the second confirmation command, and the electronic card has passed after a predetermined waiting time. If 300 does not yet transmit the authentication data, the microcontroller unit 301 transmits an authentication failure message to the security chip 302 and stops the transaction of the digital asset.

  In the present invention, the preferred embodiments have been disclosed as described above, but these are not intended to limit the present invention in any way, and anyone who is familiar with the technology can make an equivalent scope without departing from the spirit and scope of the present invention. Of course, various fluctuations and hydration colors can be added.

10 First verification information display step 20 Transaction data transmission step 21 Verification step 211 First loop 30 Second verification information display step 31 First mode 32 Second mode 40 Authentication data transmission step 401 Second loop 41 First cancellation step 42 2. Cancellation step 50 Transaction step 100 User 200 Mobile phone 201 Application program 300 Electronic card 301 Microcontroller unit 302 Security chip

Claims (8)

Provides network-connected electronic devices that can be directly connected to the Internet, and authentication data that cannot be directly connected to the Internet but can be connected to the network-connected electronic devices and allow the network-connected electronic devices to transact digital assets A digital asset transaction method operated by operating a closed electronic device,
A first collation information display step for displaying first collation information based on transaction data for transacting the digital asset input to the user by the network-connected electronic device;
When the network-connected electronic device receives the first verification information indicating that the first verification information input to the user and the transaction data match each other, the transaction data is transmitted to the closed electronic device. Transmitting a transaction data transmission step;
A second collation information display step for displaying second collation information based on the transaction data received by the closed electronic device from the network-connected electronic device;
When the closed electronic device receives the second verification information input to the user and a second confirmation indication indicating that the transaction data matches each other, the authentication data is transmitted to the networked electronic device Authentication data transmission step;
The networked electronic device, when receiving the authentication data from the closed electronic device, transacts the digital asset based on the transaction data;
Digital asset trading methods, including   The closed electronic device includes a micro controller unit (MCU) and a security chip (security element, SE), and the security chip is used to provide the authentication data. The digital asset transaction method according to claim 1, wherein the network-connected electronic device is used to determine whether to permit connection to the security chip and to generate the second verification information.   3. The digital asset transaction method according to claim 1, wherein the authentication data is at least one of a private key or a digital signature used in a transaction process for trading the digital asset.   The digital asset transaction method according to claim 1, wherein the digital asset is at least one of electronic money and electronic authentication.   The digital transaction method according to claim 1, wherein the transaction data includes a type, a transaction amount, and a transaction target of the digital asset.   After the transaction data transmission step, the closed electronic device is further generated from the networked electronic device to indicate that the closed electronic device and the networked electronic device have already been paired The digital asset transaction method according to claim 1, further comprising a verification step of performing the second verification information display step when receiving the pairing data.   2. The digital asset according to claim 1, wherein after the second matching information display step, after a predetermined waiting time, when the closed electronic device is not transmitting the authentication data, the digital asset transaction is stopped. Transaction method.   After the second verification information display step, the network-connected electronic device transmits a stop message to the closed electronic device based on a stop instruction for stopping the transaction of the digital asset input to the user. The digital asset transaction method according to claim 1, wherein the digital asset transaction is stopped.