TW476202B - A cryptographic system and method for electronic transactions - Google Patents

Abstract

An electronic transaction system, which facilitates secure electronic transactions among multiple parties including cardholders, merchants, and service providers (SP). The system involves electronic cards, commonly known as smart cards, and their equivalent computer software package. The card mimics a real wallet and contains commonly seen financial or non- financial instruments such as a credit card, checkbook, or driver license. A transaction is protected by a hybrid key cryptographic system and is normally carried out on a public network such as the Internet. Digital signatures and random number are used to ensure integrity and authenticity. The card utilizes secret keys such as session keys assigned by service providers (SPs) to ensure privacy for each transaction. The SP is solely responsible for validating each participant's sensitive information and assigning session keys. The system does not seek to establish a trust relationship between two participants of a transaction. The only trust relationship needed in a transaction is the one that exists between individual participants and the SP. The trust relationship with a participant is established when the SP has received and validated certain established account information from that particular participant. To start a transaction with a selected SP, a participant must have the public key of the intended SP. Since the public key is openly available, its availability can be easily established by the cardholder. The SP also acts as a gateway for the participants when a transaction involves interaction with external systems.

Description

Printed by the Employees' Cooperative of the Intellectual Property Bureau of the Ministry of Finance and Economics 476202 A7 B7 V. Description of the Invention (1) Field of the Invention The present invention is a cryptographic system and method for performing secure electronic transactions. More specifically, electronic transactions are performed using electronic cards; electronic cards are in the form of smart cards, or in the form of computer software with the same functions and effectiveness as smart cards. Prior art Integrated circuit cards have a general term for smart cards, that is, a 1C chip is embedded in a credit card-sized plastic sheet. The 1C chip embedded in the smart card usually has but does not necessarily include the following parts: a central micro processing unit (CPU), a read-only memory, a random access memory, and a random access memory. The input and output control ports of the read-write device, and some persistent memory such as the data recording area can use the current to freely rewrite the data memory (EEPROM). The 1C chip can perform operations such as operations, logic processing, data management, and communications. Smart cards are mainly divided into contact and non-contact (remote sensing). The International Standards Organization (ISO) has established a set of relevant standards of the ISO series for smart cards, in particular the ISO 7816 standard is applied to each 1C card. Because the smart card has the ability to perform calculations, the smart card can support multiple types of security features such as authentication, secure read and write, symmetric key and asymmetric key encryption and decryption, and so on. Therefore, the smart card is very suitable for the two most important tasks in electronic commerce, namely, data security and authentication. Smart cards have been used in many specific areas, such as: Mass Rapid Transit, health insurance, parking, campus management, gas stations, and more. The smart card is applicable to this paper size and applicable to China National Standard (CNS) A4 specification (210 X 297 mm) --------— I-install — II order ----- I! · Line (please first (Read the notes on the arm surface and fill out this page)

^ / DZUZ A7 V. Description of the invention (2) The potential of e-commerce and other financial fields is increasing in popularity at a rapid pace. -U.S. patent number US5521362 issued to Robert S. Power on May 20, 1996, entitled "E-Wallet Card with Multiple Memory to Prevent Improper Use cum The corresponding method "is about the use of electronic wallets in smart cards. Baoer's patent does not show the ability of smart cards to serve as secure financial instruments, not just a device for storing data. When technology makes smart cards 1 (: As chip computing speed and memory functions continue to improve, the concept of a multi-purpose smart card will be specifically realized after the cost is reduced. Named `` multi-purpose data card, '' US patent number US5530232 ' -June 1996: issued to Douglas C. Tayior on the 15th. The patent is about a multi-purpose data card to replace the existing single-card single-use. The invention also contains Financial cards and non-financial cards.? Data card is a traditional modem connection method to connect smart cards with financial (or non-financial) service providers. Taylor's patent, "multiple The data card is completely unrelated to any kind of open network or any encryption and decryption method. US patent number US5544246, named "Smart Cards and Remote Devices for Multiple Service Providers," Issued to three persons including Mandelbaum on August 5, 1996. The patent allows multiple financial (or non-financial) service providers to exist in a smart card at the same time, and each service provider is a smart card. In the use of Λ, each service provider is set in the smart card by the smart card issuer / owner. Each smart card user can create a job title and use a different long text-- --Φ (Please read the notes before filling in this page) Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs

--- il-r-rI # ·! > -------- ------------------ 6 Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs 476202 A7 B7 V. Description of the invention (3) Group (password password group) (password file) for protection. The three patents of Mandlab and others describe multiple ways to newly set or delete smart cards, and use appropriate but different identification text passwords to enter different application ways in smart cards. U.S. Patent No. US5671279 entitled "A Secure Navigation System in Electronic Commerce" was issued to Taher Elgamal on September 23, 1997. It is an e-commerce system that uses asymmetric public keys in an open network. Elgamal's invention did not use smart cards as a tool for e-commerce, and all participants in electronic transactions used digital certificates (with additional translation of public certificates) as a means of mutual authentication. This system, for example, on the Internet, requires a security system called a secure sockets layer (SSL) between the buyer and the seller. The US patent number US5790677, designated as "a secure transaction system and method in e-commerce," was issued to five people including Barbara Fox on August 4, 1998. The patent uses a login procedure and then a transaction procedure. During the login process, each transaction participant sends a login packet to the trusted credential binding server that he has trusted for the offer for login. The electronic certificate server will make a unique electronic certificate based on the information received, and send this electronic certificate back to the person who requested the electronic certificate. In the transaction process, the originator of the transaction source sends the request information to different recipients. The requirements include business documents and payment methods. The originator of the transaction receives a reply. CNS) A4 specification (210 X 297 mm) — — — — — — — — — — — — — · 1111111 ^ · 11111111 (Please read the precautions before filling out this page) 476202 A7 B7 V. Description of the invention (4) Information and check the credential content of all different recipients. The originator of the transaction uses the public key of the different recipients to encrypt the business documents and payment methods and send them to the different recipients. Different recipients can thus decrypt. The invention of Flowserve is the mainstream of the secure electronic transaction (SET). SET is currently an electronic Voucher-based e-commerce system. U.S. Patent No. US5796840, entitled "Apparatus and Method for Providing Secure Electronic Communications", was issued to Derek L. Davis on August 18, 1998. The patent is a kind of semiconductor electronic device that can generate a pair of encrypted keys for exclusive use by the device for subsequent information authentication work. Davis' semiconductor electronic devices use asymmetric public keys to ensure the authenticity of the identity of the communicating parties. US Patent No. US5534857, named "Centralized and Control-free Security and Personalized Smart Card System and Method", was issued to Simon G. Laing and Matthew on July 9, 1996. Matthew P. Bowcock. The patent describes a method and device for how to securely write privacy data from an issuer to a smart card at a remote receiver. A pair is stored on a secure computer and a retailer smart card ( The common key on the retailer smart card is used to generate a session key that is used by both ends (the sending end and the receiving end). The data between the secure terminal and the secure computer is encrypted and decrypted. This paper size applies to China National Standard (CNS) A4 specification (210 X 297) (please read the precautions before filling in this page) · 丨 丨 丨 丨 丨 丨 Order · 丨 I * — — —! · 11 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs AM SHM MB I MV MB MM MM MM MV es MM I MM · · A7 B7 i. Description of the invention (5) The structure is related to the public key infrastructure and its associated digital certificate authority (CA). In the open network, the symmetric secret key cryptosystem (secret key) -based system), whose keys are relatively poor in terms of public circulation and key management flexibility, and are also vulnerable to deliberate attacks by computer hackers. In contrast, on the other hand, asymmetric public key cryptosystems (public / private key-based system) have advantages over symmetric secret key cryptosystems, but asymmetric public key systems There is a daunting obligation, that is, the participating traders need to authenticate each other. The system and method proposed by the present invention does not require the use of a voucher center and an electronic voucher. The present invention is an electronic transaction based on a hybrid system and method. The hybrid system and method use an asymmetric public key / private key during the key exchange phase, and use a period key as the symmetric private key / private key during the transaction phase. Conclusion of the Invention The present invention is an encryption and decryption system and method for performing electronic transactions using an electronic card (EC). The electronic card is in the form of a smart card or software with the same functions as a smart card to communicate with the network Communicate. The preferred embodiment of the present invention uses a network, such as the Internet. Another embodiment of the present invention uses other types of networks. A specific example solution of the present invention is to use a physical smart card (physical paper size applicable to China National Standard (CNS) A4 specifications (210 X 297 meals)) -------------- pack- -(Please read the precautions on the arm surface before filling out this page) Order:; Line · Printed by the Consumers ’Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs 9 476202 A7 5. Inventory (smart card); Card equivalent software and practical computer package software installed in a computing device such as a personal computer to operate. Similarly, when a merchant involves a point-of-sale transaction at a sales site, a merchant is used. The computer package software in the host computer (host computer) communicates with an electronic card (EC) card holder and a service provider (SP). If you use a smart card, you must use smart Only when the card reader is used together can the smart card be connected to the host device of the merchant. The host device can be, for example, a merchant terminal computer system on the Internet (standby at any time), or The compatibility of a personal computer or other electronic device is sufficient to support smart card electronic transaction processing. In the system based on the public key and electronic certificate, the participants of the transaction use the certificate center CA or The electronic certificate issued by the offer binding electronic certificate server (credentials binding server) or other types of electronic certificates can be used to exchange each other's public keys, the electronic certificate certification authority or the electronic certificate server bound by the offer, and all All communications between the participating traders must be safe and secure. The present invention also uses multiple ran (jorn numbers) and multiple digital signatures to ensure that all participating traders The authenticity and validity of the transmitted data. The present invention also uses an asymmetric public key / private key encryption method, but the method used is slightly different. The encryption and decryption system and method of the present invention are not claimed. And then establish a set of mutual trust relationships, such as the well-known electronic voucher holders and vouchers Between the hearts (please read the precautions of the arm surface before filling out this page) ϋ n ϋ «ϋ 1 I 1 III n ϋ 1» ϋ ϋ -fc-i ϋ n ii ii · ϋ ϋ ϋ ϋ ϋ ϋ ^ OJ · .1 ίβ 1 ϋ ^ 1 ^ 1 IV I 1- The size of the paper is folded—Miscellaneous Standard (CNS) A4 size x 297 mm) 10-A7 V. Description of the invention (-· Member of Intellectual Property Bureau, Ministry of Economic Affairs X Consumption Cooperatives print mutual relationships. Financial institutions with large members as the mechanism are the objects of the present invention. For example, large credit card companies and their members, or major large banks and their ATM members (ATIy [members), etc. are the potential of this invention. user. Non-financial institutions can also use the encryption and decryption system and method to perform e-commerce or non-financial electronic transactions via the Internet. A service provider will provide certain types of services for its members. Just as some financial institutions provide financial services of a certain type for their members; a service provider itself can also be non-financial, but regardless of a service Whether the provider is a financial institution or a non-financial institution. In the present invention, they basically execute the same transaction process; electronic transactions involve financial institutions, and electronic transactions involve non-financial institutions. The only difference between the two is that Yes ... The transaction information contains different data fields. After the EC cardholder agrees and signs a service contract with a service provider, the service provider will establish a dedicated data slot in the EC cardholder's 1 (: chip memory). Dedicated data slot storage includes the service provider's account information, the service provider's public key, cardholder's information to control customs clearance, and other related data. Plan 1C for each EC in advance The number of exclusive data slots (for example, a total of 10 slots) that can be contained in the chip memory. A specific data slot is a representative of a service provider. By using the asymmetric public key, the key is distributed The procedure is greatly simplified, in the EC cardholder's own computer equipment and premises, or in a third party trusted by the cardholder and the SP, such as at a bank counter, or by post I -------- -· II (Please read the precautions on page f before filling out this page) Order. · Line. 4/0202

Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs

Office counters can perform the task of loading the public key of the service provider. The service provider's public balance is limited to the communication between the EC cardholders and the service provider during the key exchange phase at the beginning of the electronic transaction. After the key exchange phase is completed, the service provider will then issue and issue The period key is given to EC cardholders, etc. The period key is used to ensure the secure exchange of information between service providers and ec cardholders, etc., or used to secure the information between themselves, such as cardholders. exchange. The present invention uses asymmetric public key cryptography and symmetric private key cryptography (ie, period keys) in a mixed manner. The difference between the mixed use and the symmetric private key cryptography using only is: ⑧ When used in combination, its symmetric private key cryptography (meaning period key) is only valid in a single period, and the period key cannot be used in other periods. A session has a preset The validity period, when the validity period is exceeded, or when the preset conditions are fulfilled without error, the validity period of the key will be lost. The process of secure information exchange between the merchant and the service provider is basically the same as that of the service provider and the cardholder. The merchant also first exchanges a period key with the service provider. With this period, Secret continues to complete all transactions with SP. The cardholder and the merchant use their private money to send each information to the service provider, which is expected to be done and sub-signed. Similarly, the service provider uses its private key to reply to the merchant and the card holder. Each person's information is electronically sealed. When the transaction mechanism of the present invention needs to be conducted with a system using an electronic voucher as the transaction mechanism, the service provider of this system will complete the transaction with the merchant and (please read the precautions of your face before filling out this page) ----- --- Order —------- line— ^^ l ·} —- Λ—

CNS A4 Specification_ (21〇 x 297)

V. Description of the invention (9) After the identity verification between the printed cardholders of the consumer cooperative of the Ministry of Economic Affairs and the Intellectual Property Bureau of the Ministry of Economic Affairs has been completed and the period key has been changed, it is necessary to further exchange information with other external systems. During the transaction, the service provider of this system uses the identity of the EC voucher and the merchant's e-voucher agent and e-voucher as the transaction mechanism to conduct transactions. In other words, the service provider uses its own electronic voucher to represent the merchants and EC cardholders, etc., and other systems that use electronic voucher as the transaction mechanism to perform 70% of transactions. The farthest case is that the service provider of this system plays the role of an electronic voucher agent, and fulfills its role as a gateway between members and the electronic voucher system. character of. This type of rank system of the present invention is quite desirable, because when involving transactions between various systems, the number of institutions that need to perform mutual trust relationship verification will be large due to this rank system of the present invention. Home reduction. At the same time, the invention also eliminates the problem that users need to hold valid electronic credentials to participate in some online transactions. Brief description of the diagrams. Figure 1 is a block diagram of a specific example of the relationship between system components according to the present invention; Figure 2 is a diagram showing the two-stage network electronic transaction flow of the present invention; Figure 3 is a diagram of an electronic card; Figure 4 shows the data area of service providers: each service provider's data is allocated in a data slot, and the data slot is protected by some access control methods; Figure 5 shows the display Flowchart of electronic signature used in the invention; Figures 6A to 6Q show, for example, in an open network of the Internet, ----— 1 !!! Install ------Order ----- -Line (please read the precautions of the noodles before filling out this page)

/ υζυζ Description of the five inventions (10) Flow chart of a specific example of an encryption and decryption system and method in the electronic transaction of the present invention; Figures 7 to 11 show the key exchange phase and the transaction phase, the joint exchange of materials for information, joint exchange The final content and format representation of the remaining reply information, joint transaction request information, and joint transaction response information; Figure 12 shows a service provider and the transaction participants in a row to conduct a transaction; Figure 13 shows a service The provider and the transaction participants conduct a transaction in a hierarchical organization structure on the Internet. Detailed Description Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs

A preferred embodiment of the present invention is an electronic card (EC) or an equivalent function software of an electronic card, which is used to perform electronic transactions by using a system and method of key encryption encryption and communication after connecting to a communication network. In a preferred embodiment of the present invention, the network is an open network such as the Internet. In other specific examples of the present invention, other types of open networks and / or closed networks can be used to establish communication between service providers and their members. For example, a service provider can provide its own financial exclusive The Internet communicates with its members. The present invention can be connected by any kind of Internet communication protocol, and the communication protocols that can be used for connection include, for example, the TCP / IP protocol group of Transmission Control Protocol / Internet Protocol, User Mail Packet Protocol (UDP), Hypertext Transfer Protocol. Tintin P and so on. The communication method can also use network transmission services, such as the public switched telephone network (PSTN) using analog telephone services; or use data communication. This paper standard applies to China National Standard (CNS) A4 (210 X 297).

-------- ^ ------- (Please read the notes on-^ before filling out this page) Line — · B7 B7 Five Invention Instructions (11) Services, such as the use of broadband Tl, El , DS-3 data circuit, overall service digital network (ISDN), subscriber data line (DSL), and even wireless services and so on. When using one of the above services, the present invention is embodied as a communication protocol (meaning an electronic interface layer) that is independent and external when it is implemented. The communication can also be via a local area network (LAN) or wide area network (WAN ) For example, Ethernet LAN, Token Ring, Fiber Distributed Interface (FDDI), Asynchronous Transmission Mode (ATM), etc. The communication protocols used are Transmission Control Protocol / Cross-network Tcp / ip protocol group of the agreement, Internet Packet Exchange (IPX), Open System Networking Protocol (0SI), etc. Other communication links may include fiber-optic links, radio frequency modem links, wireless mobile phone modem links, and satellite network links. When a service provider can establish a communication path with its members, the invention can be used. The above list is intended to illustrate that the present invention can be implemented in several different communication environment examples. It is clear that, in terms of general techniques in communication technology, the present invention is not limited to the above several examples of different communication environments. The EC can be implemented in the form of a smart card or in the form of a software package in a computer, such as a personal computer (pc). When Ec is in the form of a smart card, the card can be used for a computer such as a personal computer that can access the Internet at any time to conduct transactions with another member or with a service provider of their choice. A reading / writing interface will be required to carry 15 paper rulers for the transaction. _Home Standard (CNS) A4 size (210x 297 public love) ^ / 0ZU2 Five A5 B7 printed by the Consumers ’Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs. (12) Used as a communication device between the card and the computer, and using some application software such as an Internet browser as the interface software between the cardholder and the network. When the EC is installed as a software package on a computer system, a read / write interface device is not required. A specific example of the present invention is £ (: as an electronic wallet (or virtual wallet), an electronic wallet with functions similar to a real wallet. A real wallet can carry various credit cards, debit cards (also known as debit cards) ), ATM cards, CCB cards, membership cards and cash, etc., an EC has the same data functions of various financial instruments and non-financial instruments and can perform secure transactions via the Internet. So-called a service provider A member refers to a merchant or an EC cardholder. A merchant refers to a member who is paid by the service provider for an easy price. A member can be both a merchant and a cardholder A merchant can make a parent exchange with multiple Ec cardholders. The transaction is ultimately paid by the service provider to the merchant. A merchant can also be £ (: the identity of the cardholder, such as whereabouts) A goods supplier purchases goods. The encryption and decryption system of the present invention may include communication between a service provider and a plurality of service provider members. The combination situation can be: one EC and one SP;-one merchant and one; ^; the first Ec and the second EC and one SP; and the first merchant and the second merchant and one 叩 and so on transaction combination For example, an EC can communicate directly with a service provider to make an account balance data inquiry and account settlement inquiry. A merchant can only represent itself and not other ECs can communicate with a service provider to make its own account balance information inquiry. And account settlement inquiry.

(Please read the precautions before filling in this page)

476202, printed by A7 B7, Consumer Cooperative of Intellectual Property Bureau of Dieji Ministry. 5. Description of Invention (l3) The communication between the supplier and its members can be arranged in various situations. Or in a hierarchical system, the communication between the service provider and its members can forward the round-trip information between the service provider and its members via a router. The encryption and decryption method of the present invention is a two-stage gold record exchange _ father-easy mode, the first is the gold record exchange phase, and the second is the transaction phase. During the key exchange phase, members participating in the transaction exchange key with the service provider, and members participating in the transaction pass their public keys to the service chief: after the donor, then the service provider secrets the secret during the production system. The service provider uses each member's public key to encrypt the period key and transmits it to the members. The period key is used to protect the information between the EC cardholders (members) and the sp and then down; the period secret is used to protect the Ec cardholders (members) and other themselves. Information transfer performed. In the transaction phase, the transaction can be carried out by the SP as the full-time leader or by the EC cardholder and others to execute the transactions between themselves. Fig. 1 is a block diagram showing a specific example of the relationship between the system components according to the present invention. The figure contains an EC cardholder, a merchant, and a service provider SP. An EC cardholder 20 can execute a transaction with a merchant via the network 50, using an Ec card reader / writer 82 on the computer of the transaction source, or using software 92 with equivalent functions on the computer of the transaction source. To execute transactions. A merchant can perform a transaction with a service provider selected and used by an Ec cardholder via the Internet. The merchant can use the Internet at any time. --Equipped—II Order! 1 · Thread (Please read the precautions of the arm surface before filling in this page) 17 476202

Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs

Only after the use identification conditions and customs clearance conditions are met, cardholders can perform financial or non-financial transactions with other transaction participants via the network 50. Figure 1 shows that there are three different schemes for executing a transaction via the Internet. (1) A merchant sells on-site transaction POS (see the upper left of the picture!), The cardholder 20 swipes / inserts the EC in the merchant's store] £ (: card reader / writer 30, Ec reader / The card writer is connected to a business terminal computer system 40 on the Internet (standby at any time). The business terminal computer system P0S 40 on the network is a device that can resist tampering and can be modified by programs. Input devices such as Includes a keyboard, a display, a central bit processor, and an electronic card reader / writer device 30. Usually it is a small computer device, such as a personal computer equipped with a device connected to an open network. Business terminals The computer system POS communicates with the SP via the Internet. (2) (See the right end of Figure 1.) A cardholder inserts it into a reading / writing device 82 connected to his personal computer. The system's transaction participants execute a transaction, and the cardholder's computer is called the transaction source computer. The parent computer is connected to the merchant computer 70 through a network 50, and the merchant computer One installed in 70 The EC equivalent function software 72 enables the merchant to receive the information produced by the EC, and the merchant computer 70 can produce a joint message containing the EC data and the merchant data. Then the merchant combines the joint (please read the precautions on the arm surface first) (Fill in this page again) --------- ^ ---------- $ — 1

This paper size applies to China National Standard (CNS) A4 (210 X 297

t / OZUZ A7 B7 V. Description of the invention (15) Information is transmitted to SP 60 via a network. (3) (See the lower end of Figure 1.) A cardholder executes equivalent functions on the client's personal computer. Software 92 can execute a transaction with the transaction participants of this system. The cardholder's computer is called the transaction source. Start the computer side. After the card holder communicates with the merchant computer 70 via the network 50, the merchant communicates with the merchant via the network 50 and 60. In a preferred embodiment of the present invention, £ (: equivalent function software is installed in a personal computer for use. Another specific example of the present invention is that other electronic devices can be implanted with EC equivalent function software. A preferred embodiment of the present invention In the example, the network used to communicate with the merchant is exactly the same network used to communicate with the merchant. Another specific example of the present invention is used to communicate with the merchant. The communication network may not be the same network used to communicate the merchant with the SP. Yet another specific example of the present invention is that the network used to communicate with the merchant may not be used for another Ec and Another merchant does the same network for communication. A specific example of the present invention is that a plurality of networks can be formed to allow different participants to communicate. In a preferred embodiment of the present invention, there are two transactions per transaction. Phase: a key exchange phase and a transaction phase. Figure 2 is a special example, which shows one or two phases of key exchange and parent-exchange mode dominated by SP, which is dominated by SP. entire During the trading process, all participating traders did not exchange any sensitive information with each other. ^ Whether the SP completely dominates the first and second stages from beginning to end, or the SP only dominates the first stage and does not dominate the second stage. In both cases, the paper ruler is used in "? Ii ^ (CNS) A4" specification --- ----------- install --- (Please read the precautions on the arm surface before filling in this Page) Order: Line. Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs 476202 Printed by the Employee Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs

A7 V. Description of the invention (16) The execution method of the key exchange phase is the same. In the first stage of Rentian, during the transaction stage, only the cardholders participated in transactions with each other and did not involve SP. Ec cardholders used the period key produced in the first stage to perform mutual communication and transactions. Figure 2 shows a financial transaction led by SP throughout the transaction phase. The transaction contains three units: _shen (is _ starting trader Hui, a merchant, and a service provider (sp) 106. The origin trading terminal is a consumer cardholder and starts with A computer 10 is used as a representation, a business is represented by a computer 104, and a service provider sp is represented by a computer 106. The service provider is selected by the EC and agreed by the merchant. Figure 2 shows The process of a financial transaction from a £ (: to a merchant to an SP. The process of the encryption and decryption method of the present invention is not limited to the order between the EC and the merchant, nor is it limited to any case sequence. The first one is only a Individual cases of the transaction process from EC to merchant to SP. The transaction process can also be from merchant to £ (: to service provider 服务). Figure 2 shows the members of the service provider (here an EC cardholder And a merchant) (if paid). The process of formatting, attaching, and sending messages to a service provider. Figure 10 shows a total of ten marks marked with numbers 丨 to 10 The arrow indicates the two-stage transaction , # 息 （messages） is how to flow between three transaction parties (steps) to step 4 belong to the key exchange phase and steps $ to step 10 belong to the transaction phase. The example of the flow in Figure 2 shows The merchant is in the middle of EC and SP. In the step !, the EC format produces its own f φ -------- η .---.------ ^ ΜΙΦ — JI ---- ---------------- (Please read the precautions of the arm surface before filling in this page)

This paper is based on the CNS A4 specification (210 X 297 male f), printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 ---- -g7 V. Description of the invention (I7) My key exchange requirements The message (key exchange request message) is transmitted to the merchant. In step 2, the merchant creates (ie formats) its own key exchange request information, merges the key exchange request information produced by the EC, and exchanges the EC-merchant joint gold record. The requested information (combined key exchange message) is transmitted to an SP. In step 3, the SP creates a key exchange response message to the EC and a key exchange response message to the merchant. The SP sends two The key exchange response information is combined to form an SP key exchange joint reply EC-merchant information (combined key exchange response) and transmitted to the merchant. In step 4, the merchant answers the SP's key exchange response information and the SP answer to the merchant. The EC's key exchange reply information is separated from the key exchange key exchange key exchange reply EC-merchant information, and the SP exchanges the EC's key exchange reply information and forwards it. EC, the main activities of the end of step 4 billion key exchange phase

From step 5 is the second stage, a transaction stage. In step 5, the EC creates its own transaction request message and transmits it to the merchant. In step 6, the merchant creates its own transaction request information, merges the transaction request information produced by the EC, and transmits the combined transaction request message (EC-merchant combined transaction request message) to the SP. In step 7, the SP creates a EC transaction response message for EC and one transaction response message to the merchant. The SP merges the two transaction response information to form an SP joint transaction response EC_ merchant information (combined key exchange This paper standard applies China National Standard (CNS) A4 Specification (210 X 297 mm) 21 ----------— I— ^ i — —— — — — ^ -------- • line (please Read the precautions before filling in this page) 476202 The A7 B7 printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs 5. The invention description (1〇response) is transmitted to the merchant. In step 8, the merchant answers the merchant's SP with the SP. The key exchange response information and the SP exchange EC key exchange response information are separated from the SP joint transaction response EC-merchant information, and the SP response EC transaction response information is transmitted to the EC. In step 9, the EC creates its own confirmation transaction message and transmits it to the merchant. In step 10, the 'merchant creates its own acknowledgement transaction information and merges the transaction approval information produced by the EC and then combines the EC_merchant joint transaction acknowledgement. The message (combined confirmation message) is transmitted to the SP. Step 10 ends the second phase of a transaction. Although Figure 2 shows a simple transaction, there are some transactions that can involve multiple information, which means that a transaction in one phase needs to have More than one message can be completed. Even in this case, the joint request and joint reply of multiple messages still follow the same process rules to execute. For example, in the parent stage, the SP may require ec and the merchant. First transfer the SP member account data to the SP. If the account information is confirmed to be true and valid by SP, the data of "Account Information Confirmed" will be planted in the response information of the Ec & After receiving the information from the SP, the merchant and the EC will place the transaction price and other information required by the two companies in the next letter. Then pass it to SP together. Sp then decides whether to agree to authorize or disagree to authorize the transaction. Each ㈣ in Figure 2 applies to account information and transaction information. If the parent system needs to communicate with, for example, electronic The voucher is the external system of the transaction mechanism 108. The service provider SP uses the identity of the EC cardholder's electronic voucher agent and the commercial paper standard to apply when it exchanges information with each other._Home standard (C_WSM4 specification Coffee χNuo Gong ^ (Please read the precautions for the noodles before filling out this page) -------- ^ ---, ------ ^ — ----- ----- -------------- 22 476202 j Printed by the Consumers' Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 V. Invention Description (l9) The identity of the electronic voucher agent and the electronic voucher as the transaction mechanism External systems. One of the desired results of the present invention is to enable all the participants of the parent-easy party to defend against the invasion of the external system, thereby reducing the level of mutual trust relationships required in transactions. If a transaction participant has both the membership of the system and the membership of the external system, in the latter case, the SP will use the mechanism of the external system to connect with the transaction participant. Figure 3 is a diagram of a preferred embodiment of an electronic card (EC). In the preferred embodiment of the present invention, the interior of an EC is constructed of software and hardware components as shown in Figure 3. EC is the international standard organization number IS0 7816, and it uses the same communication specifications and execution instructions as iso 7816. EC has a control card operating system 5 5 〇 used to control the resources inside the ec card 'on-card password service provider 650 can be in the form of crypto software, or X code coprocessor (crypt〇graphic c〇_ pr〇cess〇r) (not shown in Figure 3), or by other cryptographic hardware facilities, or by a combination of cryptographic software and cryptographic body. A unique feature of the EC is the serVlce provider data area (spDA) in the EC memory. The spDA stores the account data and key data of each service provider. The service provider data area SPDA 700 has a number of sp data slots that can be stored. In the preferred embodiment of the present invention, the service provider data area includes a plurality of data slots (e.g., 10 data counts) that are defined in advance. Slots), each data slot is dedicated to a service provider that may be used in the future. In another specific example of the present invention, the number of data slots may be dynamically changed, and the archive in each slot includes the account number of the service provider for a specific purpose, the public key, and this paper standard applies (CNS ) A4 size coffee χ Norwegian public hair) ------------- installed -------- order --------- line (please read the attention of the arm surface first (Fill in this page again) 23

Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs and other relevant information. According to different EC design methods, SPDA can selectively allow each SP to be implanted with some software (for example, using an applet in Java JAVA terminology that can be independent of the operating platform), then control the SP's own card data, and The applet is used to provide the interface between the data in the SP card and the SP host application. In other words, SPDA not only can carry simple data, SPDA in EC allows each SP to store a completely independent application software (such as an applet) and provide its cardholders' unique services. The advantage of this method is that the EC itself has separated the services it can provide at this moment. Each 8? Can use its ability to provide the service itself. 'So when another new SP puts the card on When a CD is replaced, the EC operating platform does not need to make any changes. It only needs to inject new sp applet application software into the card and execute the content designed by the software. In SPDA, each service provider's public key will be allocated its storable space. In many transactions, only one pair of asymmetric public keys is used, but there are also some online transactions that require more than two pairs of non-public keys. Symmetry = public gold loss; therefore, after the information is received and before the information is sent, if the SP uses the same pair of asymmetric public gold records, then a pair of asymmetric public keys is sufficient, but If you use different asymmetric public keys to perform electronic signatures, then you need two pairs of public keys in spDA, one for receiving information and the other for sending information.口 ~ _ In the preferred specific example of the present invention, two pairs of asymmetric public gold balances are used to perform communication with other applications via the Internet, because the use of two pairs of asymmetric public papers is crucial ---丨 丨, (Please read the precautions for the threat surface before filling out this page) Φ ------- —Order ---------- Line I IJ —'l ·, ----- ------------- 24 // N 2 6 7 Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 _B7_ V. Description of the invention (21) Opening a key is asymmetric than using only one pair The sexual public key can provide a little more security for communication. The first of the two pairs is used to decrypt the received information, that is, the sending end uses the public key of the receiving end to encrypt the information, and the receiving end uses the paired private key to encrypt the received information. To the message for decryption; the second pair is the sender using its private key to electronically sign the message, and the receiver using the sender to use the paired public key to decrypt the received information and perform confirmation Electronic signature. Each public key used by each service provider will be allocated its storage space in the SPDA. If the SP uses the same pair of asymmetric public keys for electronic signature before sending and decryption after receiving If it is, then a pair of asymmetric public keys is enough, but if the SP uses different asymmetric public keys to perform post-decryption and electronic signature before transmission, then SPD A needs to store two Right to public key. In another embodiment of the present invention, the service provider needs two or more pairs of asymmetric public keys to achieve higher transaction security. When the EC cardholder has accepted a service issued by a new financial or non-financial service provider, a third party that is approved by the issuing authority or trusted by the cardholder and the SP will install the required data into An empty data slot; when an account of a service provider is to be cancelled, the data of the service provider in the SPDA data slot can be deleted. Some data in the data slot, such as the account number, can be read but cannot be changed. Some data, such as the private key, cannot be read and cannot be changed. The access conditions 600 of the data in the data slot include, for example, a personal identification pass code (PIN) or biometric identification method. An EC user wants to know that the paper size of the card is applicable to the Chinese National Standard (CNS) A4 specification (210 X 297 mm) 25 — — — — — — — — — — — — · 1111111 ^ · 1111111 (Please read the precautions before filling out this page) 4/0202 A7 V. Description of the invention (22 sold in China) It is necessary to present the card and complete the correct customs identification. Traditional personal identification customs clearance passwords and other security mechanisms such as biometric identification methods can be used to protect the electronic card EC. Biometric identification methods involve multiple cardholders Biometrics such as physical and behavioral characteristics. A biometric method can measure a person ’s fingerprints, hand shape, handwriting, writing, facial expressions, voices, body movements, and computer keyboard input. Sense of rhythm, eye features, frequency of breathing, body odor, DNA DMA or other physical attributes of the cardholder, etc. The EC function will be activated after all the clearance conditions are met. Each service provider can implant other desired access conditions into the electronic card by itself. Fig. 4 shows the shape of the service provider's data area spda in a better specific example. Each service provider's data is assigned to an entry in the card's directory area (table). It can be protected by additional customs clearance conditions. The personal identification pass code piN 712 and other miscellaneous data filed 714 enable service providers to provide cardholders with additional protection or provide data areas to the devices they need to support. Name Field 702 contains the names of the service providers. When an online transaction is about to begin, the cardholder first selects the service provider to be used from the name field. The key type field 704 contains the service provider. Is to specify which kind of key to use, such as using symmetric I * to generate money or 疋 asymmetric secret money (secret key) ), Etc., the paper size of this record applies to the Chinese National Standard (CNS) A4 specifications (210 X 297 mm D (please read the precautions of the noodles before filling out this page)-> 1 1 «ϋ §1 ϋ a —Institute of Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs ---- * ------ line I l ·.! ---- l · * — 26 rn 20 6 7 System A7 _B7_ V. Description of the Invention (23) Area 706 (key value) and account data area 708 contains and unique information belonging to each service provider. The card type field 710 is used to indicate the type of vehicle supported by a service provider (for example, a commission card or a debit card). In a preferred embodiment of the present invention, an on-card operating system (COS) provides cardholders with some basic services. The following table lists some common functions that COS can perform: (1) Traditional OS function one For example, memory management and work management. (2) Read / write communication operations of cardholder data with the outside world and disposition of communication protocols. (3) Install and update cardholder card data. (4) The cardholder changes the personal identification pass code PIN on the card. (5) Service provider data area management-such as installing and updating individual service provider data on the card and SPDA access control. COS also provides support in different stages of a transaction. For example, COS can process the SP of a transaction to start, and record the transaction to a log file after the transaction is completed. In another specific example of the present invention, one of the following two COS design doorways can be implemented, or a combination of the following two design doorways can be implemented: (1) Most of the intelligence can be implanted in COS and used to Supports most of the EC functions. As a result, the service provider area on each card relies on COS to complete the transaction between the EC and the merchant and the SP. In this design approach, COS can provide all SPs on the card. A uniform interface with the outside world allows an SP to be selected by the EC and approved by the merchant to effectively complete the transaction. This paper size applies to China National Standard (CNS) A4 specification (210 X 297 mm) 27 ------ I ---- --installation-II order · 11 !! _ line (please read the first (Please fill out this page again)

V. Description of the invention (24) (Please read the precautions on the arm surface before filling out this page) (2) The other is that COS is a common service for shared use, which is used by the SP on each card. An SPDA can contain applets application software. The applets have the intelligence needed to complete the exchange between the EC and the merchant and the SP. In this design approach, the SP has more opportunities to implement its own independence when executing a transaction. special. Figure 5 shows how to use the electronic signature process in a preferred embodiment of the present invention: a sender first enters the data portion of a message M * 900 (data portion of a message μ) into a one-way hash In the one way hash algorithm, H (*) 902, the output generated by the one-way hash algorithm is also referred to as the data part of the information M * (message digest, MD) (with Translated as signature body, file remittance) 903 'Then use the private gold record of the sending end EC to encrypt the message digest MD, e (*) 904, encryption is the meaning of electronic signature, the result is called Electronic signature (DS) of the data part of message M *. Then the DS information and the data part of the M * 900 are combined (attached) to form a complete source end information of the sender. After 906, it can be transmitted to a receiver through the network at any time. The public key cipher can be one of several public key ciphers; the name of the RSA asymmetric public cipher is derived from the three exhibitors of the Ronald Rivest, the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs. , Adi Shamir, and Len Adelman), the first English letter of the name is synthesized, the RSA cipher is just an example of an asymmetric public key private key, and the RSA cipher can be used in a specific example of the present invention. When the intended receiver receives the source information from the network 50 in advance, the receiver knows that the data part of the repeated information M * 900 and the electronic signature paper size are applicable to Chinese national standards ( CNS) A4 specification (210 X 297 mm) 28 476202 Printed by the Consumer Property Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7 V. Description of the invention (25) Chapter DS 912 is separated, and the receiving end divides the data part of the information M * 900 Input a one-way hash algorithm with the same function as the sender 910 'The one-way hash algorithm converts the data part of information M * into a quasi-information digest MDA 911 of information M. The receiver then uses the public key of the sender to decrypt the electronic signature DS contained in the origin information D (*) 908, and the origin information summary can be restored. Here, MD 909 is used for marking. MD 909 and After the newly generated (calculated) MDA 911 is compared, if the values of the two are not equal, it means that the originating information has an If error and must be discarded. The list of symbols and abbreviations used in Figures 5 to 11 is as follows: Acknowledgement DataEC = EC acknowledges transaction data; it is a part of the information transmitted from the EC to the SP, and this data informs the SP that the previous message has been successfully received And deal with it as agreed.

Acknowledgement DataM = The merchant acknowledges the transaction data; it is a part of the information that is transmitted from the merchant to the SP and informs the SP that the previous information has been successfully received and processed as agreed. AIec = EC cardholder account information AIm = merchant account information CRYPTO = cryptogram D = Decryption

DsP-Private-Key ~ Use SP private key for decryption DS = Electronic Signature (Functional) (Digital Signature) DSEC-Private_Key = EC uses its private key to sign a message. The paper standard applies Chinese national standard ( CNS) A4 specification (210 X 297 public hair) 29 !!-pack—1—order ·! -Line (Please read the precautions on the arm surface before filling out this page) 476202 Α7 ----- Β7 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs V. Electronic signature of the invention description (26) ^ ^ M- Pri vate-Key = An electronic signature formed by a merchant using its private key to sign a message DSsp-Private-Key == SP An electronic signature formed by a merchant using its private key to sign E- Encryption (Encryption) E (Data) = Use a cryptographic record to perform (do) the encryption ESP-PK, ESP_Public.Key = Use the SP public key to execute (do) the encryption Eskey-EC, DSkey- EC = Use the key produced by SP and assigned (transmitted) to EC to perform encryption or decryption ESkey-M, Dskey-M = Use the secret produced during SP and designated (transmitted) to merchant during secret execution Encryption or decryption EC = Electronic Card or software H (M) with the same function as the electronic card-apply a one way hashing algorithm (A one way hashing algorithm) to generate the information M after M Message Summary (MD) KE = Key Exchange, Keyed M = Merchant (Me rchant) MD-Message Digest (also known as sign body) (Message Digest) MDA == input the information received by the receiving end into a quasi-information digest output from a one-way hash algorithm (also known as a quasi-sign body) ) MDec = EC information summary; EC information summary transmitted from EC to SP information MDm = Μ (merchant) information summary; business information summary transmitted from merchant to SP information (please read the precautions before filling in this page) # Order --- ^ ------ line I 丨 · _I _ _ nnn I nni 1 ai nnn · -1 · n ^^ ii · 1 ϋ I n ϋ n This paper size applies to Chinese National Standard (CNS) A4 specification (210 X 297 mm) 30 476202 Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7_ V. Description of the invention (27) MDsp_m = SP-M information summary; SP information summary from SP to merchant information MDSP_EC = Summary of SP-EC information; a summary of the SP information transmitted from the SP to the EC between the home and the house PLAIN TEXT = clear text; transaction data that can be transmitted without encryption; plain text due to different information and different participants in the trade association Different PLAIN TEXTEC = EC plaintext; one of the messages the EC is about to send Needless to encrypt transaction data copies. The data area of the plaintext is not security sensitive, so no encryption is performed between transmissions. When the plain text symbol is used in different messages, the content will be different. PLAIN TEXTM = the merchant's plain text; part of the information that the merchant is about to send does not need to encrypt the transaction data. The data area of the plaintext is not security-sensitive, so no encryption is performed between transmissions; the content of plaintext symbols will be different when different information is used. PLAIN TEXTSP-EC = SP-EC plaintext; in the message when the SP is about to be transmitted to the EC Part of it is not necessary to encrypt transaction data. The data area of the plaintext is not security sensitive, so no encryption is performed between transmissions; when using plaintext symbols in different messages, the content will be different. PLAIN TEXTSP-M = SP-M plaintext; SP is about to be transmitted to the merchant Part of it is not necessary to encrypt transaction data. The data area of the plaintext is not securely sensitive, so no encryption is performed between transmissions; when the plaintext symbol is used in different information, its content will be different. STD = sensitive transaction data. Encrypted copies need to be performed between transmissions. Paper size applies to China National Standard (CNS) A4 (210 X 297 mm) 31 ------------- Installation -------- Order -------- -Line (please read the precautions on the arm surface before filling out this page) A7 ^ ~ ----_ BZ__ V. Description of the invention (28) STDec = (EC) Sensitive transaction data of the electronic card; this forthcoming letter ( Please read the precautions before filling in this page) and the sensitive transaction data in the information; when using sensitive transaction data in different information, its content will be different STDM = merchant sensitive transaction data; information about to be sent by the merchant Sensitive transaction data; the content of the sensitive transaction data symbols will be different when different information is used PK = Public Key EC-PK, PKEC = (EC) Electronic Card Public Key M-PK, PKM = Merchant Public Key SP-PK, PKsp = Selected Service Provider Public Key Response DataSP_EC = SP-EC transaction response data; the transaction P of a transaction and the SP responds to some of the transaction information in the EC information; it can include data that agrees to the transaction or data that does not agree to the transaction, and other Relevant data Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economy

Response DataSP_M = SP-M transaction response data; during the transaction phase of a transaction, the SP responds to part of the transaction data in the merchant information; it can include data that agrees (produces and issues a transaction authorization code) to the transaction or data that does not agree with the transaction ' And other related data RN = random number RNEC = EC random number; the random number EC produced by EC is used to pass to SP rnsp-ec = SP-EC random number; the random number produced by SP is used by SP Pass to EC RNM = random number of merchants; random number produced by merchants is used to pass 8ρ RNSP-M = SP-M random number; random number produced by SP is used to pass to merchants SP = financial or Non-financial service provider (Service Provider) 32 This paper size is applicable to Chinese National Standard (CNS) A4 (210 X 297 mm) Printed by the Consumers ’Cooperative of Intellectual Property Bureau of the Ministry of Economic Affairs 476202 A7 B7 V. Description of Invention (29) TA = Transaction Amount

Transaction Identification NumberSP.EC, TIDSP.EC (Transaction IDSP_EC) = SP-EC transaction identification code; during the key exchange phase of a transaction, the data area produced by the SP and designated (transmitted) to the EC; the EC will use this The value of the data area communicates with the SP in the same transaction.

Transaction Identification NumberSP.M, TIDSP.M (Transaction IDSP_M) = SP-M transaction identification code; during the key exchange phase of a transaction, the data area produced by the SP and designated (transmitted) to the merchant; the merchant will use this The value of the data area and SP are used to identify the communication in the same transaction. * = In a cryptographic function or a decryption function, the data is merged, attached, combined, or concatenate. Section 6A FIG. 6Q shows a flowchart of a specific example of an encryption and decryption system and method in an electronic transaction of the present invention in an open network of the Internet. In order to simplify the descriptions and symbols contained in Figures 6A to 6Q, the flowchart in Figure 6 assumes that each participating trader uses a pair of public keys. In another embodiment of the present invention, two For the public key, both of the two pairs of public keys in this example need to be exchanged. In a preferred embodiment of the present invention, a transaction includes two phases: a gold record exchange phase followed by a transaction phase. Phase 1: PHASEI: KEY EXCHANGE PHASE. Also known as the Handshake Negotiation Phase (HANDSHAKE PHASE) The EC cardholder inserts the EC into a slot of a card reader / writer or launches the EC-specific software. 'Then the EC cardholder enters the correct customs access conditions', for example Biometrics data (biometrics data) can only be applied to the paper size of China National Standard (CNS) A4 (21〇X 297 meals) 33 -------- I ---- 装 --I ----- Order ---- I--I · Line (please read the precautions of the noodles before filling out this page) 476202 A7 B7 V. Description of the invention (3〇) Obtain the right to use the card. The security data conditions entered by the EC are compared with the original customs clearance access condition data 114 on the card 112 to verify whether the card user is authorized to use the EC card. If the entered security information does not match the original security information stored on the card, the use of the card is rejected 116, otherwise the EC card will be opened for use 118. When the EC card is turned on, the user can request a list of all available SPs on the card and issue an instruction to select an SP 120 after the EC executes an SP selection instruction. When an SP is selected, the EC starts key exchange (KE) with the SP. The selected SP public key is represented by the symbols SP-PK and PKSP. The PKSP is obtained from the SPDA of the EC and is used to encrypt the information and send it to the SP.

The main purpose of KE is to securely pass the card holder's EC public key PKEC 126 and EC random number RNEC 124 to the SP. After that, the SP will produce and specify a period key and an SP-EC transaction identification code TIDSP_EC and reply (transmit) to the EC. After receiving it, the EC will use it to confirm the communication and transaction with the SP for this purpose. First, when formatting the KE information of the EC, the EC first produces an EC random number RNEC 124 which is intended to be transmitted to the SP. The EC converts the EC random number RNEC with the EC public key PKEC 126 and is related to the transaction or specified by the SP. After the three items of sensitivity data STDEc 128 are linked together, the SP public key PKSP retrieved from SPDA 120 is used for encryption 122, and the EC cipher text ESP-PK (RNec * PKec * STDec) is calculated, and then Merge with the plaintext part of the message, the plaintext PLAIN TEXTec 132, 130—meaning that if the EC has the plaintext to be transmitted to the SP, a data part of the EC (combined) key exchange request information is now formed: PLAIN TEXTec * Esp_pk (RNec * PKec * STDec). The EC public key PKEC 126 can also be used for this EC standard whenever the information required by an EC is formed. This paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm) (Please read the precautions before filling in this page. ); · ---- Printed by the Consumers 'Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs ---.------ Line 丨-* --- J-- 476202 Printed by the Consumers' Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7 V. Description of the invention (31) To be planted in EC plaintext PLAINTEXTec, it need not be encrypted. Only sensitive data should be encrypted. Non-sensitive data is included in the plain text. Only SP can read the sensitive data transmitted by each participant in the entire transaction. In a transaction with multiple participants, only Full access to sensitive data of all participants with SP °

The calculated EC cipher text is input to a one-way hash algorithm 134 to obtain a hash message (also known as the signature or file transfer). The hash value is the EC message digest MDEC. The EC uses private gold. The key 138 uses the EC information summary MDEC as the signature 136 to form an EC electronic signature DS EC-Private-Key. The EC merges the electronic signature DSECNPHvate.Key and the data part of the EC key exchange request information 140. The plain text part of the message is EC plain text PLAIN TEXTec, EC cipher text CRYPTOEC.Private.Key and EC electronic signature DSEC.Private_Key are combined. At this point, the information for an EC transfer request is composed of: [PLAIN TEXTec * Esp.pk (RNec * PKec * STDec)] * DSec · Private-Key ° EC key exchange request information is transmitted to the merchant 158 via a network. The plain text contains all non-sensitive transaction data areas. Because it is not sensitive, it can be transmitted in a transparent and identifiable form without encryption. These transaction data areas will have different contents when they are in different information, and these transaction data areas are defined by each transaction participant. When the merchant intends to communicate with the SP, that is, when the merchant wants to form the KE information between the merchant and the SP, the merchant also goes through the essentially the same step of forming the KE information between the EC and the merchant. Cardholders and merchants will never communicate with the SP individually, but use an EC message and a merchant letter paper size to apply the Chinese National Standard (CNS) A4 specification (210 X 297 mm) I ------- — — — — — ^ · 1111111 ^ > — — — — — 1 — (Please read the notes before you fill out this page) 35 476202 Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7____ V. Description of the invention (32) The combined information merged with the SP is linked with the SP. As a result, the cardholder and the merchant do not have to exchange any confidential financial information with each other, and the merchant prepares its own equipment for trading 142 and retrieved from the SPDA residing in the merchant's equipment and the same SP 144 that the EC cardholder has selected for the exchange. The selected SP public key is represented by the symbols SP-PK and PKSP. It is obtained from the SPDA of the merchant and is used to encrypt the information and pass it to the SP. When a merchant wants to format his KE information, the merchant first produces a merchant random number RNM 148 which is intended to be transmitted to the SP. The merchant uses the merchant random number RNM and the merchant public key PKM 150 and is related to the transaction or the sensitivity required by the SP. After linking the three items of sexual data STDEC 152 together, the SP public key PKSP retrieved from the merchant device SPDA 144 is used to encrypt 146, and the calculated merchant cipher text Esp.pk (RNm * PKm * STDm) is then used. Merging with the plaintext part of the information plain text PLAIN TEXTM 156—meaning that if the merchant has clear text to be transmitted to the SP, at this point a merchant (combined) requires the information to be composed of: PLAIN TEXTm * Esp_pk (RNm * PKm * STDm). Whenever it is necessary to form a merchant request information, the merchant public key PKEC 150 can also be planted in the merchant plaintext PLAIN TEXTM, and it does not need to be encrypted. Merchant key exchange request information [PLAIN TEXTm * Esp.pk (RNm * PKm * STDm)] is further combined with EC key exchange request information {[PLAIN TEXTec * Esp_ PK (RNEC * PKEC * STDEC)] * DSEC_Private.Key} to merge 158 Form a data portion of the KE request message of the EC-Merchant joint exchange request information, [PLAIN TEXTec * Esp_pk (RNec * PKec * STDec)] * DSec -Private-Key} * [PLAIN TEXTm * ESp .pk (RNm * PKm This paper size is applicable to China National Standard (CNS) A4 specification (210 X 297 mm) (Please read the precautions on your mouth before filling in this page)

36 20 6 7 Printed clothing for consumer cooperatives of employees of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 __ V. Description of invention (33)

* STDM)]. The merchant then enters the data part of the EC-merchant joint key exchange request information into a one-way hash algorithm 160 to generate a hash value (also known as the signature), which is the merchant information summary MDm. 164 Make a seal of the business information summary MDm 162 Form a business electronic signature DS M-Private-Key? The business puts the business electronic signature dsm -Private-Key

And EC-Merchant joint key exchange request data part of the merged information 166, that is, the plain text PLAIN TEXTm ’Yu CRYPT〇M-PriVate-Key and the merchant electronic signature DS

M-Private-Key merges together to form the EC-Merchant's final joint key exchange request information and sends it to SP168 via a network «{[PLAIN TEXTec * ESP.PK (RNEC * PKEC * STDEC)] * DSEC.Private.Key} * [PLAIN TEXTM * ESP.pK (RNM * PKM * STDM)] »* DS M-Private-Key. Figure 7 shows the final content and format representation of the EC-Merchant Joint Key Exchange request message sent from the merchant to the SP during the key exchange phase. In the preferred embodiment of the present invention, since the EC has encrypted its public key, the merchant does not need to use the EC key exchange request information to perform a message digest MDEC check. In another specific example of the present invention, when the EC does not encrypt its public key, the merchant can optionally send the EC to the merchant's EC before the EC-merchant's final joint key exchange request information is transmitted to the SP. Key exchange requires the message to perform a message digest check first. In any of the above specific examples, whether the EC has encrypted its public key or not, in order to improve the security and avoid any possible errors caused by the merchant's own processing, the SP can still check the EC key exchange request information Message summary. When the merchant receives part of the SP from the SP, he will send it to himself and the rest of the SP will be transmitted to the EC by the merchant. The paper size applies to the Chinese National Standard (CNS) A4 (210 X 297 mm) 37 --- --------- Equipment ------- Order --------- line (please read the precautions on the arm surface before filling out this page) Employee Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs Print 4/6202 A7 ----—_____ B7 V. Description of the invention (34) When the final joint exchange of the reply information, the merchant does not need to check the information summary for the EC because the merchant needs to transfer this part of the EC to the EC. The key reply information is a part of the SP's final joint key exchange reply information and these data are produced and transmitted by the originator (originat〇r) of the same source, so the merchant only needs to send the information from the SP. The entire final joint key exchange response message can be checked for message digest. When the SP receives the EC-Merchant's final joint key exchange request information from the merchant, the SP first separates the data part of the EC-Merchant's final joint key exchange request information from the merchant's electronic signature DSM-Private_Key 168 and changes the EC- The merchant finally jointly exchanges the data part of the requested information and enters a one-way hash algorithm to generate a quasi-hash value (also known as a quasi-signature body). The quasi-hash value is the merchant's quasi-information summary MD%. The EC key exchange request letter in the data part of the final joint key exchange request information of TEXTM, merchant cipher text CRYPTOM, merchant electronic signature DSM pnvate Key and EC-merchant

Information PLAIN TEXTEC * CRYPTOEC * DSEC_Private.Key does separation. SP uses its own private key to decrypt the merchant's ciphertext, and recovers it, especially the merchant's random number rnm 148 and the merchant's public key PKM 150. SP then uses the recovered merchant's public key PKM to decrypt the merchant's electronics Sign early DS μ · Pr iv ate-Key to resolve the fork and restore the EC-Merchant final joint transcript * Merchant information summary MDm of the required information. SP compares the newly calculated business information summary MDam 168 with the new business information summary MDm 170 of the EC-Merchant ’s final joint transcript request information decryption and recovery MDm 170, if it is found to be inconsistent with each other , The EC-Merchant's final joint exchange requirement information has been mistaken and must be discarded 174; This paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm) -------- ^- -------- ^ I ^ IJIL J -------- 38 476202 Printed clothing A7 B7 for consumer cooperatives of employees of the Intellectual Property Bureau of the Ministry of Aid V. Description of invention (35)

If the two values MD ~ and MDm are equal, the SP continues to separate DSEC_Pnvate.Key from the data part of the EC key request information 176 (1), and enters the data part of the EC key request information into a one-way hash After the algorithm, an EC quasi-information summary MDEC is generated, and the SP then translates the EC plaintext PLAIN TEXTec and EC ciphertext in the data part of the EC key exchange request information-meaning that if there is an EC ciphertext, and the EC electronic signature DSEC -Private Key does separation 176 (2). Then the SP uses its own private key to decrypt the EC ciphertext 176 (3) and restore it, especially the EC random number RNEC 124 and the EC public key PKEC 126. The SP then uses the EC public key PKEC to sign the EC electronic signature Chapter DSEC_Pnvate_Key decrypts and restores the EC message summary MDEC of the EC key exchange request information. In step 178, the SP compares the newly calculated EC quasi-information digest MDAEC176 with the original EC EC-Private-Key in the original joint key exchange request message and decrypts and restores the restored EC information digest MDEC. If MDAEC and MDEC find If they are contradictory, it means that the final joint key exchange request information has been corrupted and must be discarded 180; if the two values of MDAEC and MDEC are equal, the SP will start preparing to return an EC-Merchant final joint key exchange reply message, which is SP passed first

After the merchant separates the merchant, the merchant then transmits the part of the EC to the EC. When the SP wants to format a key exchange response message to the EC, the SP first produces an SP-EC random number RNSP that is intended to be passed to the EC. -EC 184 and an SP-EC session key 186 (SkeySP-EC) intended to be passed to the EC, and these two items and the EC random number produced by the EC RNEC 188 (see step 124), And SP-EC sensitive transaction data 190 STDSP-EC from the SP to the EC. The public key of the EC obtained by the decryption of the SP in step 176 (3). The paper size applies the Chinese National Standard (CNS) A4 specification. (210 X 297 mm) 39 — — — — — — — — — — — — IIIIIII Order —— — — — — I- " 5 ^ (Please read the precautions on the arm surface before filling out this page ) 476202 A7 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs B7 V. Invention Description (36) Merger 182. The SP-EC ciphertext Eec. PK (RNSp_EC * RNEC * Skeysp_Ec * STDEC) calculated by the merger is then transmitted with the SP-EC transaction identification code 194 designated by the SP to the EC and the SP-EC plaintext PLAIN TEXTSP- EC 196—This means that if the SP has clear text to send to the EC, it will be merged 192 together to form a SP's key exchange data section to reply to the EC information. The SP inputs the data part of the key exchange response EC message into a one-way hash algorithm to generate a SP-EC message digest MDSP.EC 198. The SP uses its own private key to sign the SP-EC information digest MD SP-EC to form a SP electronic signature DSSP.Private.Key 200, and then the SP electronic signature DSSP. Private.Key and SP are returned. The data part of the key exchange response to the EC's SP and the EC information is merged together 204. At this point, an SP key exchange response to the EC which the SP will return to the EC has been completed: [TIDSP-EC * PLAIN TEXTsp_ec * Eec. PK (RNSP -EC * RNEC * SkeySP-EC * STDec)] * DSSp.private-Key. When the SP wants to format an SP key exchange response message to the merchant, the SP first produces an SP-M random number RNSP_M 208 which is intended to be transmitted to the merchant and an SP-M session key (the session key) which the SP intends to transmit to the merchant. ) 210 SkeySP-M, and use these two items together with the merchant's random number 212 (see step 148) RNM, and SP-M sensitive transaction data 214 STDsp.m from SP to the merchant together with SP The merchant public key decrypted in step 170 is merged 206 together to form the SP-EC ciphertext Eμ · PK (RNSP_M * RNM * SkeySP_M * STDSP.M) that the SP will reply to the merchant, and the SP- The EC cipher text is then sent together with the SP-M transaction identification code 218 designated by the SP to the merchant and the SP-M plain text PLA-TEXT SP-M 220 sent by the SP to the merchant, meaning that if the SP has the plain text to be transmitted to the merchant, etc. Merge 220. (Please read the precautions for the arm surface before filling out this page) ··

II ϋ- ϋ I ϋ ϋ ϋ II ^ 1 ϋ- ϋ n ϋ · ϋ ϋ ϋ ϋ ϋ ϋ ϋ I ϋ I- 1 · ϋ ϋ ϋ n II 297 mm) 40 476202 A7 B7 V. Description of the invention (37) ------------- Equipment—— (Please read the precautions on the arm surface before filling this page) At this point, the SP will return A SP key exchange response for the merchant has been completed: TIDsp.m * PLAIN textsp.m * em_pk (rnsp.m * rnm * SkeySP-M * STDs BM) 〇

The SP then returns the merchant key TIDSP to be returned to the merchant with TIDSP. M * PLAIN TEXTSp.M * EM.pK (RNsp.M * RNM * Skeysp.M * STDSp.M) and the SP to be returned to the EC Change the key to reply to the EC information: [TIDsp.ec * PLAIN TEXT sp-ec * Eec.pk (RNsp.ec * RNec * SkeySP.EC * STDEC)] * DSSP. Pwate.Key Do the merger together to form SP to answer the EC and the merchant One SP's final key exchange responded to the data part of the EC-Merchant Information: [TIDsp_ec * PLAIN TEXTsp-ec * Eec_pk (RNSp.ec * RNec * SkeySP.Ec * STDec)] * DSSp. Private-Key * [TIDSp. M * PLAIN TEXTSp.M * EM.pK (RNSp.M * RNM * SkeySP.M * STD SP-M)] 〇- • Line · Printed by the SP of the Intellectual Property Bureau Staff Consumer Cooperatives of the Ministry of Economic Affairs Finally, the data exchange part of the EC-Merchant Information is jointly inputted into a one-way hash algorithm to generate a SP-M message digest MDsp.m 224 after inputting a one-way hash algorithm. The SP uses its own private key 228 to sign and seal the SP-M message digest MDsp_m to form an SP electronic signature DSSP. PnV.Key, and then the SP sends the SP electronic signature DSSP.Private_Key 226 and the SP to the back The final key exchange response to the merchant and the EC jointly reply to the data part of the EC-Merchant Information 230. At this point, an SP answers the final joint key exchange response between the merchant and the EC to the EC-Merchant information, which is formed and transmitted to the network via Merchant: < < {[TIDSP · EC * PLAINTEXTSP.EC * (EEC_PK * RNSP · EC * RNEC * Skeysp.EC * STDec)] * DSsp.private.Key} * [TIDSP.M * PL AIN TEXTsp.m * Em-pk (RNsp-m * RNm * SkeySP-M * STDsp.m)] > > * DSSp Private-Key = [(TIDsp.ec * PLAIN TEXTSp.private.Key * CRYPTOSp.EC) 41 copies Paper size applies Chinese National Standard (CNS) A4 (210 X 297 mm) 476202 Printed by A7 B7, Consumer Cooperative of Intellectual Property Bureau of the Ministry of Economic Affairs 5. Description of Invention (38) * DSSp.private.Key * (TIDSp.M * PLAIN TEXTsp.m * CRYPTOsp.m)] * DSsp-private_Key 'Figure 8 shows the final joint key exchange response from the SP to the merchant and then from the merchant to the EC's SP during the key exchange phase. EC-Merchant Information content and format representation. When the merchant receives the final joint key exchange from the SP in reply to the EC-Merchant Information 232, the merchant first separates the SP electronic signature DSSP.PHvate_Key signed by the SP 232 (1), and the merchant then exchanges the final joint key exchange Reply to the data part of the EC-Merchant Information and enter a one-way hash algorithm 232 (2) to generate a SP-M quasi-information summary MDASP-M. Next, the merchant responds to the EC with the SP answering the final joint key exchange between the merchant and the EC. -The data part of the merchant information is separated 232 (3): TIDsp.m, PLAINTEXTSP-M, CRYPTOsp.m, [(TIDsp-ec * PLAIN TEXTSP_EC * CRYPTOSP.EC)] * DSSP.PHvate_Key, and then the merchant uses SP to open the gold The key (checked in step 144) decrypts the SP electronic signature DSsp pnvate Key separated from the final joint exchange key reply EC-Merchant information to decrypt 232 (4) to restore the SP-M message digest MDsp_m. In step 234, the SP compares the newly calculated SP_M quasi-information 232⑺ with the MDSPm 232 (4) which is decrypted and restored from the DSSP-Pnvate-Key of the EC-Merchant information returned from the final joint key exchange. If MDasp-i ^ MDsp_m finds that there is a contradiction with each other, then the final joint key exchange response EC-Merchant information has been mistaken and must be discarded 236; if MD% PM and the value are equal, the merchant will identify those in the final joint key exchange response information SP intends to reply to his part. After decrypting the Sp cipher text CRYPT〇sp-m with the merchant's own private record, 238, the merchant should be able to recover the merchant's random number RNm (see step 148) 'The merchant's random number RNm is Merchants have implanted their key changes in the paper to comply with the Chinese National Standard (CNS) A4 specification (21〇X 297 public love) (Please read the precautions on the arm surface before filling out this page)

42 20 6 47 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 _ B7_ V. Description of the invention (39) It was later passed to SP. In step 240, the merchant compares the recovered merchant random number RNM with the (originally) merchant random number RNM 148. If the two values are not equal, the final joint key exchange reply to the EC-merchant information has been corrupted and must be corrected. Abandoned 242; just because the SP can use the SP's private key to recover the random RNM, it has been guaranteed that the information transmission end of the reply content is the SP. After that, the merchant will return the SP key exchanged by the SP to the EC to reply the EC information [(TIDsp.ec * PLAIN TEXTsp_ec * CRYPTOsp.ec)] * DSsp -Private-Key to the EC. The merchants began to prepare for the second stage and the first transaction stage. When the EC receives the SP key exchanged by the merchant and responds to the EC information 260, the EC first detaches the SP electronic signature DSSP.PHvate_Key signed by the SP 260 (1), and the EC then responds to the EC information The data part is input to a one-way hash algorithm to generate a SP-EC quasi-information summary MDasp.m. Next, the EC separates the data part of the SP response EC's SP key exchange response to the EC information. 260 (2): TIDSP -EC, PLAIN TEXTsp.ec, CRYPTOsp_ec, DSsp_private-Key 'Then the EC uses the SP public key (checked in step 120) to reply the SP electronic signature DSsp-priv separated from the SP key exchanged in the EC information. At e-Key decrypts 260 (3) and restores the SP-EC message digest MDSP_EC. In step 262, the SP compares the newly calculated SP-EC quasi-information digest MDasp_ec 260 (1) with the MSP.EC 260 (3) decrypted and recovered from the SPSP key response reply EC information, and compares 262. If MDASP .EC and MDSP_ECa are now contradictory to each other, the SP's key exchange response EC information has been corrupted and must be discarded 264; if the two values of MDASP.EC and MDSP_EC are equal, the EC identifies those in the response information that SP intends to reply to him For the part, the paper size for EC applies to the Chinese National Standard (CNS) A4 specification (210 X 297 mm) 43 I ----— — — — — — — — — — — — — — — — — — — — — — — — — 1 — 1 ^^ (Please read the precautions for your face before filling out this page) 02 2 6 7 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 __I__B7____ V. Description of Invention (4〇)

After decrypting the SP-EC ciphertext CRYPTO sp-ec with its own private key 266, the EC should be able to recover the EC random number RNec (see step 124). The EC random number RNecSEC was implanted in the key exchange request message and then transmitted. For SP. In step 268, the EC compares the restored EC random number RNEC with the (origin) EC random number RNEC 124. If the two values are not equal, the SP key exchange reply EC information has been corrupted and must be discarded 270; positive Because only the SP can recover the random RNEC with the correct SP private key, it is guaranteed that the information transmission end of the reply content is the SP. The EC began to prepare for the second phase, the trading phase. Before the electronic transaction, there will be a timeout period set in advance at the EC and the merchant. In a transaction, if a certain reply message is not received by the sender within a suspension period, the EC and the merchant will determine that the transaction is aborted, and the EC and the merchant will perform a retry. Otherwise, the recovery process (rec〇very process) should be started. 〇 After successful completion of each KE information exchange, so far to calculate, sp holds the EC public key and the merchant public key; ec holds an SP for SP-EC random number, the EC holds an SP-EC transaction identification code given by the SP, and the EC holds a period secret record given by the SP; the merchant holds a given sp_M random number, and the merchant holds an SP- The M transaction identification code and the merchant holds a period key given by Sp. Only when the EC returns the sp_Ec random number received and restored back to the SP and verified by the SP, and when the merchant sends the received and restored SP-M random number back to the SP and verified by the SP, The key exchange phase is considered complete. There are two ways to accomplish this: The above random paper sizes are applicable to China National Standard (CNS) A4 specifications (210 X 297 public love) (please read the precautions on the arm surface before filling this page), ----- -丨 Order --- ------- Line 丨 .lJ- 丨 · -n βϋ n --i -ϋ n ϋ · ϋ ϋ 1-1 H ϋ n ϋ · 44 476202 Aiqi Department Intellectual Property Bureau Printed by employees' consumer cooperatives A7 B7 V. Invention description (41) can be planted in a confirmation message of EC and merchant reply SP respectively, or in the second stage, ie, in the transaction stage The random number is planted in a transaction message and is regarded as a part of the data of an EC-merchant joint response message from the SP to the SP that the EC responds to the SP. The latter method is relatively simple and will be explained in detail below. The rat number is only used once to ensure the correctness of the key exchange between the SP and the merchant and between the SP and the Ec. Once the period key and transaction identification code are established, the random number will be stopped. . Phase II "Transaction Phase (PHASE II: TRANSACTION PHASE) In the transaction phase, merchants and ECs each transmit their own information such as account numbers, and other transaction-related data such as transaction prices, applications for authorized transactions (codes), Or other processing data to the SP. Once again, the EC and the merchant each conduct an e-commerce conversation with the SP, and negotiate with the SP through the EC-merchant joint information, that is, after the EC receives the EC information, the merchant is responsible for the EC information Merged with the merchant's own information into a joint message and then passed to the SP. First, the EC formatted the transaction information, and the EC sent the SP to the EC's random number SP-EC random number RN sp-ec 274, which was selected by the EC for The account information of the EC cardholder of the transaction in the SP AIEC 276, the transaction price (amount) TA 280 that the EC and the merchant have agreed to in this transaction, and the EC sensitive data related to the transaction or required by the SP 278 After the STDECra items are linked together, the EC period key SkeyEC produced by the SP and designated to be transmitted to the EC is encrypted 272. SkeyEC is a secret key cryptography (symmetric private key / private key) such as DES key (Data Encryption Standard), the paper size used is applicable to the Chinese National Standard (CNS) A4 (210 X 297 mm) 45 ------- !! · 装 ------ —Order --------- line (please read the precautions before filling in this page) 476202 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7 V. Description of the invention (42) Cryptographic algorithms and counterfeiting The cryptographic algorithm used for the nominal public key / private key is different. The calculated EC cipher text CRYPTOEc, which is SkeyEC (RNSP_ EC * STDEC * AIEC * TA), and SP-EC with SP given to EC Transaction identification code 284, the plaintext part of the message PLAIN TEXTec 286 "means that if the EC has clear text to be transmitted to the SP, it will be merged together to form the data part of the EC transaction request information. TIDsp.ec * PLAIN TEXTec * CRYPTOec. The EC enters the data portion 282 of the EC transaction request information into a one-way hash algorithm to generate an EC message digest MDEC 288. The EC uses its own private key 292 to sign the EC message digest MDEC 290 to form an EC electronic signature DSEC-Private-Key 'Then the EC passes the formed electronic signature DSec-Private-Key 290 and the EC to the EC The data part 282 of the SP's EC transaction request information is merged together 294. At this point, one EC transaction request information is composed of 焉: [TIDsp.ec * PLAIN TEXTEC * SkeyEC (RNsp.ec * STDec * AIEC * TA)] * DSEC-Private -Key, EC transaction requires information to be transmitted to the merchant via a network. In essence, the merchant uses the same steps to format the transaction request information of the EC to format the transaction request information of the EC. First, the merchant formatted the transaction information. The merchant gave the merchant a random number of SP and an SP random number of RNsp.m 246 (see step 208 and step 238). The merchant selected by the EC and approved by the merchant for the transaction was in SP. The account account information AIM 248, the transaction price (amount) TA 252 that the EC and the merchant have agreed to in this transaction, and the merchant sensitivity data 250 STDM related to the transaction or specified by the SP are linked together with SP The key SkeyM produced and designated to be transmitted to the merchant (see the paper size of this step applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm) -------- l · ----- · ---- nn ϋ a— ^ OJ · n ϋ ϋ 1 nnn I line 丨 #r (Please read the precautions before filling in this page before filling out this page) 46 2 6 7 A7 ____I_ B7_____ 5. Description of the invention (43) Step 210 and step 238) Encryption 244. SkeyM is a kind of secret key cryptography (symmetric private key / private key) such as DES cipher (Data Encryption Standard), which uses a cryptographic algorithm and a non-symmetric public key / private key The cryptographic algorithms used are different. Here SkeyM is used to encrypt the data to form the ciphertext CRYPT0M.

The calculated merchant cipher text CRYPTOM, that is, SkeyM (RNSP. M * STDm * AIM * TA), and the SP-M transaction identification code 256 to the merchant from SP, and the plain text part of the message PLAIN TEXTM 258--meaning if When the merchant has clear text to be transmitted to the SP, wait for a merger 254 to form a data part of the merchant transaction request information. TIDSP-M * PLAIN TEXTM * CRYPTOM 〇 The merchant exchanges the data part 254 of the merchant transaction request information with the EC transaction. The request information 294 is merged 296 to form the data part of an EC · Merchant's final joint transaction request: [TIDsp_ec * PLAIN TEXT% * SkeyEC (RNSP.EC * STDEC * AIEC * TA)] * DSEC-Private.Key [TIDsp_m * PLAIN TEXTm * SkeyM (RNsp_m * STDm * AIM * TA)]. In the same way as before, the data part of the final joint transaction request of the EC · Merchant enters a one-way hash algorithm to generate a merchant information summary MDm 298. The merchant uses his own private key 302 to sign the merchant information digest MDm 300 to form a merchant electronic signature DS M-Private-Key 9 Then the merchant applies the formed merchant electronic signature ^^ M-Priv at e-Key 300 The data part 296 of the final joint transaction request information of the EC-merchant to be transmitted to the SP by the EC · merchant is merged together 304, and thus the final joint transaction request information of the EC-merchant is composed of: {[TIDSP.EC:* PLAIN TEXTec * SkeyEC (RNSP.EC * STDEC * AIEC * TA)] * DSEC.Private.Key [TIDSp.M * PLAIN TEXTm * SkeyM (RNsp.m * STDm * AIM *) This paper size applies to China National Standard (CNS) A4 specifications ( 210 X 297 mm) 47 — — — — — — — — — — — — 1111111 ^ -1111111 (Please read the precautions for the noodles before filling this page) 476202 A7 B7

V. Description of the invention (44) A)]} * DSM.P—, EC_Merchant final joint transaction request information is transmitted to the merchant via a network. Figure 9 shows the content and format of the transaction information of the EC-Merchant's final joint request for transaction information transmitted from the merchant to the SP during the transaction phase. ) To discard 314; if the values of ^ 0% and ^ 0 ^ 1 are equal, the SP then uses the secret SkeyM (see step 210) of the merchant during the key exchange phase to specify and send to the merchant Request the merchant ciphertext CRYPTOM in the transaction information to decrypt the 312 data and restore the data in the ciphertext. The SP will generate the SP random number generated by the SP during the key exchange phase and send it to the merchant (see step 208). 11]% 1 ^ and Yu The SP random number RNSP.M restored in step 316 is compared 316. If the values of the two SP random numbers RNSP_M are not equal, then the merchant does not pass the mutual verification test between the merchant and the SP, and the transaction information is discarded 320. If the values of the two SP random numbers RNSP_M are equal, at this time, the SP will verify the EC account data AIEC and transaction data such as transaction price TA. If the account data AiECa and transaction data are checked by the SP, they are no longer valid or incomplete. When the transaction conditions of the SP are met, the SP discards the transaction information 320. If the transaction price TA transmitted by the merchant to the SP and the transaction price TA transmitted by the EC to the SP are detected by the SP and the two values are not equal, the SP will discard the transaction information. If the EC's account information AIEC and transaction information are correct, the SP continues to check the EC part of the information.

As for the merchant transaction request information, first the SP separates DSEC_PHvate.Key from the EC transaction request information 322 (1), and enters the data part of the EC transaction request information (TIDsp_ec * PLAIN TEXTec * CRYPTOec) into 322 (2) —a After the one-way hash algorithm, an EC quasi-information digest MDaEc of the EC transaction request information data part is generated. The SP uses the EC public key to decrypt the DSec. Private-Key to recover the EC information digest MDec 324. In step 326, the SP sends The newly calculated EC quasi-information summary MDAEC 322 (2) is compared with the EC information summary MDEC obtained from the restoration 324. If MDAEC and MDEC are used in this paper, the Chinese National Standard (CNS) A4 specification (210 X 297 mm) is used — — — — — — — — — — — — — · 1111111 · 11111111 (Please read the notes before filling in this page) 49 476202 A7 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs-i ··· 1 'B7 V. Description of the invention (46) If it is found to be contradictory to each other, it means that the EC_Merchant's final joint transaction request information has been mistaken and must be discarded 328; such as S MDV and the call. If the two values are equal, the SP then uses the EC period key SkeyEc (see step 186) produced by sp in the key exchange phase and designated to be transmitted to the merchant to decrypt the merchant's cipher text CRYPT〇ec in the transaction information requested by the merchant 33. After recovering the data in the ciphertext, the SP takes the sp_Ec ^ L number (see step 184) produced by the SP and the key during the key exchange phase and sends it to the merchant. The SP_EC random number RNSP_ EC restored in step 330 is made. Compare 332. If the values of the two SP_EC random numbers are not equal, then the merchant has not passed the mutual verification test between the merchant and the SP, and the transaction information is discarded 334. If the value of 4 (: random number RNsp Ec) is equal at this time, sp will verify the merchant's account information AIm and transaction information such as transaction price TA. If the account information AIM and transaction information are verified by SP, it will no longer be When it is valid or does not fully meet the conditions of sp, sp will discard Father Yi # interest 334. If the transaction price passed by merchant to Jin Ding Ba and ec passed to SP's parent bargain price TA 'SP, the two values are not equal. At that time, sp will discard the transaction information 334. Only after the entire EC-Merchant finally completes the integrity and verification of the joint transaction request information is established by the SP, the SP can process the data in the Ec-Merchant final joint transaction request information And go back to a sp final joint transaction to reply to the EC-merchant information. The two SPs of the SP and the ec sent back to the SP are random numbers: RNSP.M and RNSP-EC. When the SP comparison is correct, it means that the SP and the merchant And the SP and EC have completed mutual verification. From here on, it is no longer necessary to perform any random number exchange. Sp can also choose to use these random numbers as the transaction ID TID, from here onwards Steps This paper is sized @National Standards (CN S) A4 size (210 X 297 meals) f Please read the precautions for Ken Noodle before filling out this page)-· ---- tr ——------- line i # l · • II · 50 476202 A7 B7 V. Description of the invention (47) --------------Install i I (Please read the precautions before filling in this page before filling in this page) Merchants use RNSPw as the transaction identification code TIDSP -M is planted in the message from the merchant to the SP; and from here onwards, the EC embeds the transaction identification code TIDSP_EC into the message from the EC to the SP. -Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Health and Welfare. The method is the same as that described above. The final joint transaction response information includes the information that the SP will reply to the EC and the merchant. To format an SP transaction response message to the EC, the SP first produces the SP-EC transaction response data Response DataSP.EC 338 which is to respond to the EC and uses the SP to produce and specify the EC period key SkeyEC (see step). 186) Do encryption 336 to form the SP-EC ciphertext CRYPTOsp_ec, which means that when the SP has sensitive data to be given to the EC, it is to be encrypted, and non-sensitive data is planted in plain text. The SP then sends the SP-EC ciphertext CRYPTOsp_Ec, that is, Eskey-EC (Response DataSP-EC), the SP-EC transaction identification code produced by the SP and designated to be transmitted to the EC 342 TIDsp.ec (see step 194), and the SP wants to give EC's plain text PLIAN TEXTsp.ec 344- · means that if the SP has clear text to be transmitted to the EC, the three items are merged together to form the data part of the SP's transaction response EC information: TIDsp.ec * PLIAN TEXTSP_EC * ESkey. EC (Response DataSP-EC), the transaction part of the SP responds to the data part of the EC-message and enters a one-way hash algorithm 346 to generate a SPEC message digest MDSP.EC, and then uses the SP private key 350 to digest the SP-EC message digest MDSP_EC signs 348 to form an SP electronic signature DSSP_Private.Key. The SP merges the data part of the SP electronic signature DSSP_Private.Key and SP's transaction response EC information 352. An SP transaction responds to the EC information: TIDsp.ec * PLIAN TEXTSp.Ec * ESkey.EC (Response DataSP-ec)] * DSsp -Private-Key °

If you want to format a SP transaction and reply the information to the merchant, first the SP paper size is applicable to the Chinese National Standard (CNS) A4 specification (210 X 297 mm) 51 2 6 7 Printed by the Consumer Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 _____B7____ V. Description of the invention (48) Produce SP-M transaction response data Response DataSP_M 356 which is to be responded to the merchant and use SP to produce and specify the merchant's key SkeyM (see step 210) to encrypt and form 354 to form the SP Cryptosp_m-means that the SP has sensitive data to be encrypted before it is transmitted to the merchant, and non-sensitive data is embedded in the plaintext. The SP then sends the SP cipher text CRYPTOsp.m, that is, ESkey_M (Response DataSP.M), the SP-M transaction identification code 360 TIDSP.M (see step 218) produced by the SP and designated to be transmitted to the merchant, and the plain text the SP wants to send to the merchant PLIAN TEXTSp_M 362- means that if the SP has clear text, wait for the three items to be merged 358 to form a SP transaction reply to the data part of the merchant information: TIDsp.m * PLIAN TEXTSP.M * Eskey_M (Response DataSP.M). The data part 358 of the SP transaction reply merchant information is merged with an SP transaction reply EC information 352 to form the final joint transaction reply EC of the SP. EC (Response DataSP.EC)] * DSSp.private-Key * [TIDsp.m * PLI AN TEXTSP.M * Eskey-M (Response DataSP.M)]. The SP enters the final joint reply transaction EC-Merchant Information data part into 366 — a one-way hash algorithm to generate an SP-M message digest MDsp.m. The SP uses the SP private key 370 to digest the SP-M message digest. MDsp_m makes a signature 368 to form an SP electronic signature DS SP-Private-Key 'Then the SP merges the SP electronic signature DSSP -Private-Key 368 with the final joint transaction response EC-Merchant Information data part 364 to merge 372, a The final joint transaction response to EC and merchant information was formed: {[TIDsp.ec * PLIAN TEXTSp.Ec * Eskey.Ec (Response DataSP. EC)] * DS sp-Pri vate- Key} * [TIDSP-M * PLIAN TEXTSP .M * ESkey. ^ (Response DataSP.M)] > > * DSSP.Private-Key. Figure 10 shows the transaction (please read the notes on the back before filling out this page) · ^ t .1 I · 1 ϋ ϋ .1 II ^ —4ϋ .1 > 1 — ϋ ϋ ϋ H ϋ ϋ 1 .1 II ϋ ϋ ϋ .1 ϋ · This paper size applies to China National Standard (CNS) A4 (210 X 297 mm) 52 476202 Printed by A7 B7 of the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs 5. In the stage of invention description (49), The final joint transaction of the SP from the SP to the merchant responds to the content and format representation of the EC-merchant information. When the merchant receives the SP's joint reply transaction EC-merchant information from the SP, the merchant first checks whether the SP-M transaction identification code TIDsp-m (see step 218 and step 232) in the information is valid. SP-M transaction identification code 1 TIDSP-M is invalid, the merchant will return the SP joint transaction to the EC-Merchant information and discard 376. If the SP-M transaction identification code TIDSPeM is valid, the merchant signs the SP with its private key The SP electronic signature DSSP-Private-Key and SP formed by the chapter will jointly respond to the data portion of the transaction EC-Merchant Information 374 (2). .ec * PLIAN TEXTSP.EC * ESkey. EC (Response DataSP.EC)] * DSSP-Private times * [TIDSPV PLIAN TEXTSP-M * Eskey_M (Response DataSP_M)] Input 374 (3) — a one-way hash algorithm After generating a SP-M quasi-information summary MDasp.m, the merchant separates the data part of the SP transaction response merchant information 374 (4): tidsp-m, PLIAN TEXTSP_M, Eskey.M (Response DataSP-M) 〇 Merchant Start to prepare [TIDsp.ec * PLIAN TEXTSP.EC:*ESkey.EC: (Response DataSP_EC)] * DSSP_Pr ivate.Key is transmitted to EC. The key SkeyM (see step 210 and step 238) produced by the merchant using the SP during the key exchange phase and designated to be transmitted to the merchant decrypts the SP-M ciphertext CRYPTOsp_m 378 to restore the data contained therein, and the merchant uses the SP The public key (see step 144) decrypts the SP electronic signature DSSP-Private-Key. 378 (3) Restores the SP-M information digest MDSP-M, and the merchant restores the newly calculated SP-M quasi-information digest ^^ ^ _Comparison of two values 380 This paper size is applicable to Chinese National Standard (CNS) A4 specification (210 X 297 meals) — —— — 1— 1 ^ (Please read the precautions before filling in this page before filling in this page) 476202 A7 B7 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs V. Invention Description (50), if MDasp_m and MDsp-m are not Equal, it means that the SP's final joint transaction response to the EC-Merchant information has been mistaken and must be discarded; The merchant forwarded the transaction information of the SP to the EC. EC 380. When the EC receives an SP transaction reply message from the merchant, the EC first checks whether the SP-EC transaction identification code TIDSP-EC (see step 194 and step 260) in the message is valid. If the SP-EC transaction identification is valid, The code TIDSP. EC is invalid, the EC will discard the SP transaction reply EC information 396. If the SP-EC transaction identification code TIDSP_EC is valid, the EC will use the SP private key as the signature of the SP electronic signature. 08 ^-^ 他 _ Separate the data part of the reply of the EC information from the transaction with SP 394 (2), and the EC reply the data part of the EC transaction from the SP information [TIDSP-EC * PLIAN TEXTSP-EC * ESkey-EC ( Response DataSP_EC)] Input 394 (3) —a one-way hash algorithm to generate a SP-EC quasi-information summary MDASP-EC, and then the EC separates the data portion of the SP transaction response EC information 394 (4): TIDSP -EC 、 PLIAN TEXTsp-ec 'ESkey.EC (Response DataSP.EC) ° The EC uses the period key SkeyEC (see steps 186 and 266) produced by the SP during the key exchange phase and designated to be transmitted to the EC. CRYPTOSP-EC decrypts 378 (1) to recover the data contained in it, and EC uses the SP public key (see step 1 20) to solve D Ssp-private-Key 3 7 8 Restored MDsp-M 'Shang Ye compares the newly calculated SP-EC quasi-information summary MDasp_ec with the restored MDsp_ec as a two-value comparison 400. If MDasp_ec and MDsp_ec are not exclusive', it means that the SP's transaction response EC information has been Due to mistakes, it must be discarded 402; such as (Please read the precautions of the threaten face before filling out this page) -------- Order · — ά — φ ------------- ---------- This paper size applies the Chinese National Standard (CNS) A4 specification (210 x 297 mm) 54 476202 A7 B7 V. Description of the invention (51) If the two values of MDASP_EC and MDSP_EC are equal, then Begin processing the information data received. At the very last moment of the entire transaction process, the EC and the merchant can do this-if this is also one of the requirements of the SP, that is, the EC and the merchant each send a merchant acknowledgement transaction message and an The EC acknowledges the transaction information to the SP, and the EC-Merchant acknowledges that the SP finally jointly responds to the EC-Merchant's transaction information content is correct and processed.

Acknowledgement Data Acknowledgement Data can be planted in a final joint EC-Merchant Acknowledgement Transaction message from the EC and the merchant in response to the SP, or, for example, in the second stage, that is, before the end of the transaction stage, the acknowledgement transaction The data is embedded in a transaction message and is regarded as a part of the response information of an EC-merchant joint response from the SP to the SP that the EC responds to the SP. Or the EC and the merchant send a single, independent message to the SP to acknowledge the transaction data. When the EC wants to format the EC to acknowledge the transaction information, the EC acknowledges the sensitive part of the data 406—meaning that if the EC has sensitive acknowledgement data to be transmitted to the sp, the EC uses the SP produced by the SP and designates the EC period secret to be transmitted to the EC. Key (see step 186 and step 266) SkeyEC performs encryption 404 to form EC ciphertext CRYPTOec. The EC passes the SP-EC transaction identification code TIDSP-EC 410 (see step 194 and step 260) of the previous SP to the EC, and the plain text of the EC means that if the EC has the plain text PLAIN TEXTec to be transmitted to the SP, 412 and other three items are combined and formed 408. An EC recognizes the data part of the transaction information: TIDsp_ec * PLAIN TEXTec * SkeyEC (Acknowledgement DataEC) 〇 This paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 issued) ---------- -1-Install i — (Please read the precautions for the noodles before filling out this page) Order: • Line-'Printed by the Consumers ’Cooperative of the Intellectual Property Bureau of the Ministry of Economic Affairs 55 476202 A7 B7 V. Description of the invention (52)

The EC then enters 414 the data part of the EC's acknowledged transaction information into a 414 one-way hash algorithm to generate an EC message digest MDEC. The EC uses its own private key 418 as the signature 416 to form an EC electronic signature DS EC-Private- Key, the EC merges the EC electronic signature DSEC-Private_Key with the data part 408 of the EC-recognized transaction information 420 to form an EC-recognized transaction information: [TIDsp-ec * PLAIN TEXTEC * SkeyEC (Acknowledgement DataEC)] * DSEC.Private. Key, EC sends EC-recognized transaction information to merchants via the Internet. The merchant uses the same steps as the EC to form the merchant's acknowledgement transaction information. When formatting the merchant's acknowledgement transaction information, the merchant sends the sensitive part of the acknowledgement data Acknowledgement DataM 3 86—meaning that if the merchant has sensitive acknowledgement data, it must be transmitted to the SP. If so, use the merchant's period key produced by the SP and specified to be transmitted to the merchant (see step 210 and step 238). SkeyM does encryption 384 to form the merchant cipher text CRYPTOM. The merchant sends the previous SP to the merchant's SP-M transaction identification code TIDSP.M 410 (see step 218 and step 232), and the merchant's plain text-means that if the merchant has plain text PLAIN TEXTM, the three items are merged 388 to form a merchant acknowledgement The data part of the transaction information: TIDsp.m * PLAIN TEXTM * SkeyM (Acknowledgement DataM) ° Then the merchant merges the data part of the merchant's acknowledgement transaction information with the EC's EC acknowledgement of the transaction information and merges it to form an EC-Merchant Jointly acknowledge the data part of the transaction information: {[TIDsp.ec * PLAIN TEXTEC * SkeyEC (Acknowledgement DataEC)] * DSEC.Private.Key} * [TIDsp.m * PLAIN TEXTM * SkeyM (Acknowledgement DataM)] o The merchant puts EC -Merchants jointly acknowledge that the data part of the transaction information is entered into this paper. The size of the paper is applicable to the Chinese National Standard (CNS) A4 specification (210 X 297 mm) (please read the precautions before filling out this page). Staff of the Intellectual Property Bureau of the Ministry of Economic Affairs Printed by Consumer Cooperatives-· ϋ I ϋ «ϋ II ϋ ϋ · 1 I Μϋ ϋ nn ϋ I ^ 1 n βι ϋ ϋ Λί ϋ ϋ III n · ϋ ϋ · ϋ n ϋ H 1 ϋ I ^ 1 2 2 Ministry of Economic Affairs Printed by Intellectual Property Bureau Staff Consumer Cooperatives A7 B7 5. Invention description (53) 424 — A one-way hash algorithm generates a business information summary MDm. The business uses its own private key 428 as the signature 426 to form a business electronic signature DSM_Private_Key 'The business electronically signs the business Chapter DSM.Private-Key and EC-Merchants Jointly Recognize Transaction Information Data Section 422 merge 430 to form an EC · Merchants finally jointly recognize transaction information: < < {[TIDsp_ec * PLAIN TEXTEC * SkeyEC (Acknowledgement DataEC)] * DSEC.Private. Icey} * [TIDSP.M * PLAIN TEXTM * SkeyM (Acknowledgement DataM)] >> * DSM.Private.Key. The merchant finally jointly recognized the transaction information of the EC-merchant to the SP via the Internet. Figure 11 is a diagram showing the content and format of the transaction information that the EC-Merchants jointly acknowledged from the merchants to the SP during the transaction phase. TIDSP.M is the SP-M transaction identification code produced by the SP and designated to be transmitted to the merchant (see step 218), and TIDSP_EC is the SP-EC transaction identification code produced by the SP and assigned to the EC (see step 194). When the SP receives the EC-Merchant's final joint transaction confirmation from the merchant, the merchant first checks whether the two transaction identification codes of 432 (1) tidsp.m and TIDSP_EC are valid.'If TIDSP.M & TIDSP. When one of the EC ^ is invalid, the SP discards the EC_Merchant's final joint transaction confirmation information; 434; if both TIDspw and TIDSP.EC are valid, the SP then changes the DSM-Private-Key and the EC-Merchant's final The data part of the joint recognition transaction information is separated 432 (2). The SP inputs the data part of the EC-merchant's final joint recognition transaction information into a one-way hash algorithm to generate a merchant quasi-information summary MDM. The data portion of the joint recognition transaction information is separated 432 (4): TIDSP-M, PLAIN TEXTM, SkeyM (Acknowledgement DataM) This paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm) 57 — — — — — — — — — — — I · — II Order · 11 !! · Line (Please read the precautions for the noodles before filling out this page) 476202 A7 B7 V. Description of the invention (54)

, TIDSp.EC * PLAIN TEXTEC * SkeyEC (Acknowledgement DataEC)] * DS EC-Private-Key SP uses the merchant's public key PKM (see steps 150 and 170) to decrypt the merchant's electronic signature DSM_PHvate.Key to restore the merchant 436 Information summary MDm, SP compares the newly calculated business prospective information summary MDam 432 (3) with the restored business information summary MDm 436 as a two-value comparison 438. If] ^ 0% is not equal to MDm, it means that the EC-merchant acknowledges the transaction The information has been corrupted and must be discarded 440; if the values of MDam and MDm are equal, the merchant uses the period key SkeyM (see steps 210 and 238) produced by the SP during the key exchange phase and designated to be transmitted to the merchant The ciphertext CRYPTOM decrypts 442 to obtain the merchant acknowledgement transaction data Acknowledgement DataM contained in it; then the SP separates the data part of the EC acknowledgement transaction information from the EC electronic signature DSEC_Private.Key 444 (1), and the SP recognizes the EC acknowledgement transaction information The data part is input to a one-way hash algorithm to generate an EC quasi-information summary MDAEC. The SP separates the data part of the EC-recognized transaction information 444 (2): TIDsp.ec ^ PLAIN TEXTec 'SkeyEC (Acknowledgement DataEC), SP uses the EC's public key PKEC (see steps 126 and 176) to decrypt the EC electronic signature DSEC_Pnvate.Key 446 to restore the EC information digest MDEC, and the SP calculates the newly calculated EC quasi-information digest MDAEC 444 (2 ) Make a two-value comparison 448 with the restored MDEC 446. If MDAEC and MDEC are not equal, it means that the EC acknowledges that the transaction information has been corrupted and must be discarded 450; if the two values are equal, the merchant uses SP to produce the key during the key exchange phase. Create and specify the period key SkeyEC to be transmitted to the EC (see step 186 This paper size applies the Chinese National Standard (CNS) A4 specification (210 X 297 mm) (Please read the precautions on the arm surface before filling out this page)) Printed by the Intellectual Property Bureau Staff Consumer Cooperative

I · ϋ ί ϋ ϋ ϋ »Βϋ 一 · H ^ 1 emmmm ϋ I 1_§ amt 蠢 _1 · _ϋ ι__ · ^ ϋ —ϋ ϋ * H Βϋ _1 ϋ I ϋ 1. n I n I Βϋ ϋ i_l- ϋ 1. I 58 476202 Printed by the Consumer Cooperatives of the Intellectual Property Bureau of the Ministry of Economic Affairs A7 B7_ 5. Description of the Invention (55) and Step 266) Decrypt the ciphertext CRYPTOec 452 to obtain the Acknowledgement Data E (:) contained in the EC cipher text At this point, all the processes of the transaction stage in electronic transactions have been completed. 454 During the entire transaction period, in a preferred embodiment of the present invention, the EC is executed together with the interface software supported by the Internet server software. The interface software refers to, for example, Microsoft Explorer or Microsoft's Netscape Navigator. In the period of a typical example, The cardholder clicks the URL used by the card to the merchant's uniform resource locator (uniform Resource Locator) and enters the merchant's website to order goods or services from the merchant. The EC decides to perform online instant payment to At home, the flow controller will invoke the EC interface software; the EC interface software may be part of the flow controller structure, or it may be a plug-in software component of the flow controller or Add-on software components. EC cardholders can use their browsers to click on the URL that connects any SP member. The two-phase transaction described in the previous Figures 6A to 6Q is just an application of the present invention This is a special case of the two-phase key exchange and transaction mode. In the two-phase transaction described in Figures 6A to 6Q, there are three participants in the transaction: EC, merchant, and SP. Similarly, the present invention The two-stage key exchange-transaction mode can be applied to include and participate in the number of traders is two or more; in the case of one and three or more participants, only one is in the role of SP, and All participating traders are in accordance with the Chinese national standard (CNS) A4 specification (210 X 297 mm) on this paper. 59 --------- (Please read the precautionary notes before filling in this page) A7 B7 The smart employee's consumption invention description (56) = 1 item; one of the public funds of the selected sp is used to execute the eighth when the envoy is opened. All participating traders then use the system produced by sp and specify the period of the knife. Key and transaction ID to execute the transaction. : Invention of the two-phase gold record exchange _ transaction mode can be applied to the organization ~, scheme '⑴ participating traders can form a series with possible devices' · or, ⑺ participating traders can: and possible plural There are _ routers and _ rank-level organizational arrangements with sp. These additional rank-level groups may contain multiple routers, and pass information to adjacent levels (next k,. A level in a hierarchical organization can be composed of any number of transaction participants and / or any number of routers. The adjacency level refers to a tandem arrangement or a hierarchical organization arrangement, with the next transaction participant or the next A router is adjacent to the hierarchy. In a hierarchical organization arrangement scheme, the 'adjacent hierarchy contains all possible numbers of adjacent transaction participants and all possible numbers of adjacent routers. In the hierarchical organization arrangement scheme, the SP establishes a A set of criteria is used to determine who is the next transaction participant to receive information or the next router to receive information. A router is Each gateway / channel is to collect various information from the previous level and do some data processing according to the requirements of the received information, for example, after combining the information collected from different levels of sources Retransmit to Sp. Each trade participant only needs to make his own information (meaning formatting data and attach an electronic signature) and then transfer it to the next level. A trade participant first needs to exchange all the received information with himself The produced information is combined to form joint information, and then the joint letter 3-line coupon paper size is applied to the Zhongguanjia Standard (CNS) A4 specification⑵〇x 297

I V. Description of the invention (57) The electronic signature of cutting is transmitted to the adjacent level later. The simplest arrangement method in the rank-type organization arrangement is that only one router collects all other transaction participants ’cores together to form joint information and then passes it to the SP. In the tandem arrangement, a transaction source starts with all routers and / or all transaction participants in a tandem transaction path arrangement. After the serial connection, there is a router and / or all transaction participants, and then it contacts with sp Make a series of trading path arrangements. In a preferred embodiment of the present invention, each constituent molecule represents a transaction participant. In another embodiment of the present invention, the intermediate constituent molecule located between the originator of the transaction and the SP may be a router. One transaction source initiator and multiple transaction participants 100, 112, 114, and 1160 and one SP execute an electronic transaction, as shown in Figure 12, Figures 12 and 68 to 6Q. The three participating parties described above are similar in action plan, except that Figure 12 contains more and more transaction participants; transaction participants 3, 4, 5, 6, and η_2 are arranged in series, each A transaction participant merges the information prepared by himself with the information transmitted by the previous transaction participant, which means that if there is information transmitted by the previous transaction participant, then the combined information is added with an electronic signature to form The joint information is transmitted to the adjacent transaction participants on the path; a final joint request information will be transmitted to the SP, and the SP will then create a joint reply message. The SP will follow the path that the joint request message originally traveled to the SP and then pass the joint joint sp message. To trade participants. FIG. 13 shows that the constituent molecules are made into a hierarchical organization arrangement scheme. Each constituent molecule in FIG. 13 is X 八 / to Xj ^ Xy • Xi 12〇 () (n: = 1, 2 476202).

V. Description of the invention (58, 3 ···) 疋 A parent is not a participant, not a router, and each m. After the iT molecule X from 1210 (j = 2, 3, 4 · · ·, · ^^, 2 , 3 · ·; m is a n-type puppet, which can be a transaction participant or a route β in different ranks: owing to different values) By. A symbol with an upward arrow means that a transaction request message 1220 is transmitted, and a symbol with an arrow down means that a transaction response message 1230 is transmitted. " Each transaction participant combines the information of a number of transaction participants that he is responsible for combining with the information produced by himself to form a new information and then transfer the new information to the adjacent level. The rank organization scheme can Includes up to the number of transaction participants required for the transaction (the most simplified case in a step-level organization plan is the transaction performed by a transaction participant and one place), and at the end, the level before the SP The last structural molecule XαΑ, α is a type n. The information transmitted from each path is combined to form a message 1240 and then transmitted to SP 60. Similarly, after the SP creates a reply message, the SP sends the reply message as it was originally sent. The path is returned. When the SP does not dominate the first and second phases, members use the period keys produced and issued by the SP to conduct mutual transactions in the second stage. The SP does not dominate the first and second phases. In the case of two or more members can participate in the transaction. When two or more members use each other to conduct transactions on the exchange, the information can be transmitted in any order from one member to another; after a member A uses the period key to encrypt one of the requested transaction information, When it is transmitted to a member B, the member B will also use the same period key to encrypt the transaction response information. 5. The invention description (59) is then transmitted to a member A. After an A member sends information to a b member, the reply information that a b member needs to reply to an A member does not necessarily have to be directly sent back to an A by a B member I. For example, in an electronic transaction of three members organized in a ring (encryption of information during use), transactions can be made in the direction of I 70%, 70%; for example, a member A, In the electronic transaction between B and C (period key): Send a request message to B, B send a request message and a reply message to C, C send a request message and a reply message to A, 曱Send a reply message to B. After receiving the transaction request information from B, B will create a transaction response message to A, and the transaction response information will eventually be transmitted to A regardless of the order of action. When the SP does not dominate the first and second phases, the SP has received each of the public keys of all participating trading members during the key exchange phase; the members exchanged time with each other Before the transaction, the SP will pass all the public keys of other participating members to each participating member. The transaction request information and parent-reply information produced before sending messages between members contains the clear text of the sending end--meaning if there is clear text, a cipher text of the sending end, and an electronic signature of the sending end when the SP requires When conducting transactions or exchanging information with, for example, £ (: cardholder's electronic voucher agent and business card's electronic voucher agent), with external systems that use electronic vouchers as a trading mechanism ^^, SP is an EC card holder. The armor between the person and the business unit and the external operating interface, the SP will only exchange the information of EC cardholders and business partners to be used to make transactions with external systems via Sp. 476202 Α7 Β7 V. Description of the invention (60) It will be transferred to EC cardholders and merchants after the exchange. The best specific examples of the present invention have been described here with a complete detailed description and attached drawings. As for the general skills in the technology, some other changes of the present invention are also It is clear, therefore, that all that is needed is to ensure that in the appended claims for the scope of the present invention 'appended claims' all changes such as the invention and extensions of the invention are implemented in the invention Within the true spirit and scope of the invention. The construction of the invention and all specific examples are implemented in the additional items of the scope of patent application of the invention, and the invention should only be limited to the scope of the patent application listed below Additional items. In addition, for those who have general skills in the technology, they will always be able to identify those applications that can be used instead of other applications published here without departing from the spirit and scope of the invention. Table 20 EC card holder 94 Interface device connected to the network 132 Plain text 22 Input / output interface device 102 Computer I34 Generate EC information outline 24 Processing system 104 Computer 136 Electronic signature 30 EC reader / writer interface device 106 Computer 138 Read EC private gold records 40 Merchant terminal computer system 108 Transaction mechanism 140 Merger 50 Network 110 Access conditions 142 Equipment 60 Service provider host computer system 112 Comparison 144 Select service provider 70 Merchant computer side 114 Customs access conditions data 146 encryption 72 EC equivalent function software 116 card request rejected 148 random number generator 74 interface device connected to the network 118 was Open the interface device that uses 150 to read the merchant ’s public gold wheel 82 EC reader / writer 120 Read the SP public key 152 Sensitive transaction data 84 EC card holder's personal computer 122 Encryption 154 Merge 86 Input / output interface device Ii4 Random number generator 156 Merchant plain text 88 Internet-connected interface device 126 Read EC public key 158 Merge 90 Customer personal computer 128 Sensitive transaction data 160 Enter one-way hash algorithm 92 EC Equal function software 130 Merge 162 Electronics The paper size of the signature is applicable to the Chinese National Standard (CNS) A4 (210X297 mm) gutter. (Please read the precautions on the back before filling this page) 64 476202 A7 B7 V. Description of the invention (61 164 Read the merchant's privacy Key 232 (4) decryption 302 read merchant private key 166 merge 234 comparison 304 merge 1-68 separation-a 236 abandoned 306 merchant information 170 decryption 238 decryption 306 (1) verification 172 comparison 240 comparison 306 (2) separation 174 Discard 242 Discard 306 (3) Merchant quasi-information summary 176 Separation and decryption. 244 Encryptor 306 (4) Separation 178 Comparison 246 Random number 308 Discard 180 Discard 248 Account data 310 Decryption 1 82 encryption, 250 merchant sensitivity data 312 comparison 184 random number generator 252 transaction price 314 discard 186 period key 254 merge 316 step 188EC random number 256 transaction identification code 318 verification 190 sensitive transaction data 258 merchant plain text 320 obsolete 192 merger 260 Merchant Information 322 Separation 194 Transaction ID 260 (1) Separation 324 Decryption 196 Plaintext 260 (2) Separation 326 Step 198 Information Summary 260 (3) Decryption 328 Abandoned 200 Electronic Signature 262 Comparison 330 Decryption 202 Read SP Private Key 264 abandoned 332 compared 204 merged 266 decrypted 334 abandoned 206 encrypted 268 step 336 encrypted 208 random number generator 270 abandoned 338 transaction response data 210 period key ^ 272 encryption 340 merged 212 merchant random number 274 random number 342 transaction identification code 214 sensitivity Transaction data 276 Account data 344 Plain text 216 Merger 278 Sensitive data 346 Generate electronic signature 218 Transaction ID 280. Transaction price 348 Electronic signature 220 Plain text 282 Merge 350 Read SP private key 222 Merge 284 Transaction ID 352 Merge 224 Generate message digest 286 Plain text 354 Encryption 226 Electronic signature 288 Generate message digest 356 Transaction response number 228 Read SP private key 290 Electronic signature 358 Merge 230 Merge 292 Read EC private key 360 Transaction ID 232 Merchant information 294 Merge 362 Plain text 232 (1) Separation 296 Merge 364 Merchant data part 232 (2 ) One-way hash algorithm 298 generates business information summary 366 electronic signature 232 (3) separation 300 electronic signature 368 electronic signature ---------------------- -Install ------------------ 、 may ------------------ line. (Please read the precautions on the back first (Fill in this page again) 65 476202

90 ^ 12 / ¾ V mnj A7 B7 418 read EC private key 420 merge 422 merge — 424 generate message digest 426 electronic signature 428 read merchant 豕 private gold read · 430 merge 432 merchant information 432 (1) verification 432 ( 2) Separation 432 (3) generates quasi-information digest 432 ⑷ separation 434 discard 436 decryption 438 comparison 440 discard 442 decryption 444 EC information 444 (1) separation 444 (2) generation quasi-information digest 444 (3) separation 446 decryption 448 comparison 450 discard 452 Solution $ 454 transaction completion 500 memory 550. Electronic card operating system 600 access conditions 650 password service provider 700 service provider data area 702 service provider name V. description of the invention (62) 370 read SP private key 372 merge 374 Merchant Information 374 (1) Check 374 (2) Separate 374 (3) Enter 374 (4) Separate 376 Discard 378 Decrypt 380 Compare 382 Discard 386 Encrypt 386 Transaction Data 388 Merge 390 Transaction ID 392 Clear Text 394 EC Information 394 (1) Check 394 (2) separation 394 (3) generate quasi-information digest 394 (4) separation 396 discard 398 EC information 400 comparison 402 discard 404 encryption 406 transaction data 408 merge 410 transaction ID 412 plain text 414 generate information digest 416 electronic signature 704 gold Type 706 Golden Rotation 708 Account Information 710 Card Type 71 0 712 Personal Identity Clearance Password 714 Other Information 750 EC Card Cardholder Personal Data and Multiple Paired Public Records / Private Golden Wheel 800 Other Uses 900 Sending Message μ Data part * 902 One-way hash algorithm 903 H (*) = MD 904 Electronic signature 906 Data part of sending end message M *

908 Recover MD after decryption 909 Message digest 910 One-way hash algorithm

911 H (*) = MDA 912 Electronic signature 1000, 1020, 1040, 1060, 1080 External system 1100, 1120, 1140, 1160, 1180 Multiple parent-exclusive participants 1200 constitutive molecule 1210 constitutive molecule 1220 transaction request information 1230 transaction reply Information 1240 information --------------------- install ------------------, possible ----- ------------- Line · _ (Please read the notes on the back before filling out this page) 66 This paper size applies to China National Standard (CNS) A4 (210X297 mm)

Claims (1)

476202 12m repair compensation A8 B8 C8 D8 Application No. δ8119209 Application Patent Amendment Scope 901211 1 · An electronic transaction system, including an electronic card (EC), with: a cipher type server | area can choose a cipher to perform encryption and decryption; & a data area to store data; and a data area to store data between cardholders and service provider member terminals; a service provider member terminal's requirements for electronic cards Responding; and a service provider terminal (service prOvider terminai) connected to the service provider member terminal. 2. The system according to item 1 of the scope of patent application, wherein the electronic card is a card having a substantial appearance. 3. The system under item 丨 of the scope of patent application, further including the use of computer software with the same function and effectiveness as the card. 4. If the system of item No. 丨 of the patent application, the electronic card further includes a card control operating system to perform installation and update the cardholder's card funding, the cardholder to change the clearance password PIN, and manage the service provider data tools Packing area 5. If the system of item 丨 of the scope of patent application is applied, the electronic card performs read / write communication operations between the card and the outside world, and disposes of the communication protocol. 6. The system as claimed in claim 1, wherein the electronic card further includes a computer software for managing the electronic card. This paper size is applicable to Chinese National Standards (CNs) A4 (210X297). ------------------------------- (Please read the note on the back first (Please fill in this page again on this page) • Line-67 6. Please request the scope of patent 7. If you are applying for the scope of the patent, "Beijing's system, where the service provider information is stored-the data area of the data includes a service provider-record" , The record includes: a service provider name area to display the service provider name; a key value area; and an account data area, the information contained in this area is unique to each service provider 8 · If the system under the scope of the patent application, the electronic card further includes the application computer software. 9 · If the system is under the scope of the patent application, the electronic card further includes the Java independent applet computer software. 10 · If The system under the scope of the patent application, further includes an external system, in which the service provider terminal system communicates with the external system. 11. If the system under the scope of the patent application, the record of each service provider ( record) further includes a card type area to indicate the type of vehicle (type 0f instmment) supported by the service provider. 12. A method for performing electronic transactions using the t daughter card, the steps include: serving the service provider End-of-line production of a period of secret loss; Key exchange is to send a key from a member to the service provider, and a period of secret recording from the service provider to the member; and use the remaining period to perform A transaction: The method of applying for patent application No. 12 in Taxi India, in which the steps in the gold exchange phase include: The so-called 7 patents range. From one member to one key exchange request information to the service provider; and eight service providers m money to submit detailed information, the information ^ specifies the period used to transmit to the member and transmits The golden loser changed the reply message to the member. 14 = The method of item 12 of the patent scope, wherein the step of using a period key to perform a plurality of steps of a transaction includes: / Official: Periodic recording to format a member transaction request information and the 5 Hai member transaction Request the information to be transmitted to the service provider; and the joint service provider to format a transaction reply to the member, and send the transaction reply member information to the member. 15. According to the method of claim 12 in the scope of patent application, \ ° /, T1 uses multiple steps of the period key to execute multiple steps of a transaction, including: The first member uses the period key to format a transaction request Information 'The transaction request information includes a first member and the transaction request information is transmitted to a second member; and the key formatted by the second member during use-a transaction reply letter ^ The transaction response information includes a The electronic signature of the second member, and the reply information of the transaction to the first member. 16. If the step of using the period key in Article 8 of the scope of application for the patent is used to perform a plurality of steps of a transaction, including: The first member uses the secret key to format a transaction during the period and requires confidence 'The transaction request information contains And an electronic signature of the first member, and passed the transaction request information to an intermediate member (intermediate This paper size is applicable to the Chinese National Standard (CNS) A4 specification (210X297)) (Please read the note on the back first Please fill in this page for more details), I can ---- ml 69 A8 B8 C8 —_______ patent application scope '^ —-— member); and the intermediate member will format a transaction response message in the margin during use, and the transaction response message Contains _ electronic signatures of this intermediate member, and transmits the child's easy reply information to a final (fina) member; the last member knows that the member will format a transaction reply in secret during the use of the message ^ 'the transaction reply information Including the electronic signature of _ the last member, and transmitting the reply information of the transaction to the first member. ^ If the method of applying for the scope of the patent No. 12, the exchange of money The steps of the paragraph include a plurality of steps: The electronic card transmits an electronic card key exchange request message to a merchant terminal; a merchant terminal merges the merchant gold loss exchange request message with the electronic card key exchange request message to form an electronic card. _ Merchant final joint key exchange request information, and pass the electronic card-merchant final joint key exchange request information to a service provider; the service provider formats a service provider key exchange response to the merchant information and a service provider to Merchant's service provider period key, the service provider formatted a service provider key exchange response to the electronic card 1 and a service provider to the electronic card service provider period key, the service provider sent the service provider Key exchange reply to merchant information and service provider key exchange reply to electronic card information are combined to form a service provider joint key exchange reply to electronic card-merchant information, and service provider joint key exchange reply to electronic card-merchant information is passed to the merchant terminal Machines; and commercial terminals that exchange service providers to respond to business information and services The scale is applicable to the Chinese National Standard (CNS) Α4 specification (210X297 mm) (please read the precautions on the back before filling this page) • Install 丨, one swallow: line 丨 70 _ Li Wei service provider to exchange electronic cards for reply Separation of information and business service provider_ "electronic interest transfer to Dian He. ㈣ The method of 18. == profit range item 12 'where the use of the remaining steps in the process ^ 复 multiple steps of a transaction, Include; Key formatted during the use of the electronic card, an electronic card transaction request information and pass the transaction request information to the merchant's terminal; merchant = key format during the use of the terminal-a merchant terminal transaction requires m terminals Combine the merchant terminal transaction request information with the received electronic card transaction request information to form an electronic card, _ the merchant terminal's final joint transaction request information, and the merchant terminal to transmit the «terminal final joint transaction request information ' To the service provider, the service provider secretly uses a transaction to reply to the merchant's terminal information to answer the merchant's terminal. The transaction reply electronic card information is used to answer the electronic card. The service provider merges the transaction response merchant terminal information with a transaction response electronic card information to form a final joint transaction response electronic card. The provider then transmits the final joint transaction reply electronic card-the merchant terminal information to the merchant terminal; and the merchant terminal separates the received final joint transaction response electronic card · the merchant terminal «information transmission is separated, the merchant terminal Obtain the transaction reply merchant terminal information and transaction reply electronic card information, and the merchant terminal forwards the parent easy reply electronic card information to the electronic card. 19 · If the method of applying for item 12 of the patent scope, where the service provider is the whole process A8 B8 C8 --—— —__ train__, the scope of patent application " ^^ — master 'key parent stage and transaction stage At the time, when the information sent by each member contained sensitive transaction data, only the service provider could read the sensitive transaction data. 20. · If the method of the scope of patent application is No. 12, where the service provider only controls the key exchange phase but not the transaction phase, when the information transmitted by each member in the key exchange phase contains sensitive transaction data Only service providers can read this sensitive transaction data. 21. The method according to item 13 of the scope of patent application, wherein the key exchange reply transaction information further includes public gold loss involving each transaction participant in an electronic transaction. 22. The method according to item 13 of the scope of patent application, wherein the key exchange transaction requires that the cipher text part of the interest includes the random number generated by a member. 23. The method of item 13 in the scope of patent application, wherein the key exchange transaction requires #interest to include an electronic signature generated by a member. 24. If the method according to item 13 of the patent application is applied, the key exchange information transmitted by a member includes a ciphertext, the ciphertext includes: a member's random number; and the member's sensitive data. 25. If the method in the scope of patent application is No. 14, the cipher text part of the transaction information contains a random number. 26. For the method of applying for the scope of patent No. 14, the transaction information includes an electronic signature of the sender. 27. For the method of applying for the scope of patent No. 14, in which the transaction information contains and sensitive transaction data, only service providers can read the sensitivity. This paper size applies Chinese national standards (CNS> A4 specification (210X297) Cm) 72 476 muscles please ! First: Read: Read: Back: Back: Note: Note: 1 thing: item: again; I installed this: page! Order 73 A8 B8 C8 '-------______ D8 ___ The scope of Shenyan patents. The electronic card holder meets the various access conditions of the electronic card. The electronic card holder selects a service provider. The electronic card produces an electronic card. The electronic card uses the service provider's open gold loser to encrypt an electronic card with several electronic card public keys and the electronic card's sensitive transaction data to form an electronic card cipher text; if the electronic card has plain text, the electronic card encrypts the electronic The ciphertext of the card and the plaintext of the electronic card are combined to form a data part of the electronic card key exchange request information; the electronic card enters the data part of the electronic card key exchange request information into a one-way hash function algorithm to generate an electronic card information digest; The electronic card uses the electronic card private gold lose to sign the electronic card information summary to form an electronic card electronic signature; the electronic card combines the data part of the electronic card key request information with the electronic card electronic signature to form an electronic card exchange. Enter the required information; and via a network, the electronic card transmits the key exchange request message of the electronic card to a merchant. 35. The method of applying for item 34 of the patent scope further includes the following steps: The merchant device produces a random number of the merchant; the merchant device uses the service provider's public gold to lose a merchant's random number, a merchant's public key, and the merchant. The sensitive transaction data is encrypted to form a merchant's secret X; if the merchant has clear text, the merchant merges the merchant's cipher text with the merchant's plain text to form a data part of the merchant's key exchange request information; This paper standard applies Chinese national standards (CNS> A4 specification (210 X 297 mm) -------------------- Raid ------------------ Order- ----------------- line. (Please read the notes on the back before filling out this page) 74 司 修 司 s---------- Please patent scope 1 ~~~ 丄 The merchant device merges the data of the e-replacement request information with the data part of the merchant's record request information to form an electronic card_The merchant finally combines the data part of the information; the merchant device combines the electronic card with the merchant's final The data part of the joint key exchange information is rotated-a one-way hash function algorithm generates a business information summary; Closely seal the merchant information summary to form a merchant electronic signature; Merchants merged the data part of the electronic card-merchant final joint key exchange information with the merchant electronic signature to form an electronic card-merchant final joint exchange requirement information ; And an electronic card-merchant final joint key exchange request information is transmitted to a service provider via an online merchant. 36 · — a kind of gold loss exchange request information, including: plain text of the electronic card; use a service provider's public key The encrypted electronic card cipher text includes an electronic card random number, an electronic card public key, and electronic card sensitivity data; an electronic card electronic signature formed by the electronic card plain text and the electronic card cipher text; .Merchant plaintext; The encrypted cipher text using a service provider's public gold balance, including a merchant's random number, a merchant's public key, and merchant's sensitivity data: and this paper standard applies Chinese National Standard (CNS) person 4 Specifications (21〇χ297mm) ί · ----- Κ ------------- 袭 ..............:! #,- --------------- Line · (Please read the notes on the back first Please fill in this page again.) 75 47.6202 8 8 8 8 AB c D VI. Patent application: A merchant electronic * seal formed by the plain text of the merchant and the cipher text of the merchant. 37.-A key exchange reply letter A, including : The SP-EC clear text to be transmitted to the EC by the service provider (SP); the SP-EC transaction identification code produced by the SP and designated to be transmitted to the electronic card; the SP-EC cipher text encrypted with an EC public key contains An EC random number, an SP-EC random number, an SP period key to be transmitted to the EC, and an SP-EC sensitivity data to be transmitted from the SP to the EC; an SP-EC electronic signature contains the SP to be transmitted The SP-EC clear text to the EC, the SP must be transmitted to the EC's SP-EC easy identification code, the SP must be transmitted to the EC's SP-EC cipher text; the SP must be transmitted to the merchant's SP-EC plain text; the SP production system and designated transmission SP-Merchant transaction identification code for the merchant; SP-Merchant cipher text encrypted with a merchant's public key contains a merchant's random number, an SP-merchant's random number, and a SP key to be transmitted to the merchant. And SP-Merchant Sensitive Data to be transmitted to the merchant; and an SP-Merchant electronic signature containing SP-Merchant's clear text , And SP to the merchant SP-Merchant Transaction ID, and SP to the merchant SP-Merchant ciphertext. 3 8. — A method for performing electronic transactions between participants in a plurality of units arranged in a series, the steps include: transmitting an electronic card key exchange request message from the electronic card to the first unit (first party), the first unit is an information router or the paper size applies the Chinese National Standard (CNS) A4 specification (210X297 mm) -------------------- ----------------------, can ------------------ line. (Please read the note on the back first Please fill in this page again for details) 76 / transaction participants; if the first unit is only an information router, a gold record exchange request is transmitted from the first unit to an adjacent unit (position party) π If the first unit is When there is a transaction participant, the first unit combines the request information of the first-unit Jin Yufu with the electronic card money exchange request information to form an electronic card. The information is transmitted to a neighboring unit after the unit key money request. If the current party is only an information router, the current party forwards the received gold exchange request information to An adjoining unit; if the unit is a transaction participant at that time, the unit at that time combines the key exchange request information of the unit at that time with the key exchange request of the previous unit (0ast party) to combine the information to form a joint key exchange (replacement Key) After requesting k interest, it will be transmitted to an adjacent unit. · For each transaction participant, the service provider will format a swap response message for it. The service provider will act in confidence to the service provider in accordance with the joint exchange request. The participant's path then passes the service provider's final joint key exchange response information to the transaction participants; and each transaction participant separates his own key exchange response information from the key exchange response information of other transaction participants. , And according to ..., 驷 ΠΓ exchange request, the path of the original service to the service provider, and then send the key exchange response information belonging to other transaction participants to the transaction participants, until the electronic card received belongs to its own The transaction reply information is six. _ Please patent Fan Yuanzhi 0 Get one If the first unit is an information router, request information from the first transaction to an adjacent unit; one unit transmits. . If the first-early position is a transaction participant, the first unit combines the first-unit transaction request information with the electronic card transaction request information to form an electronic card-first unit joint transaction request information and transmits it to an adjacent Unit; if the unit only has S _ information routers at that time, the unit at that time forwards the received transaction request information to the next adjacent unit; if the unit is a participant in the transaction at that time, the unit then requests the earlier transaction Information and previous-the unit's transaction request information is combined to form a joint transaction request and transmitted to an adjacent unit; for each transaction participant, the service provider will format a transaction response message for it, and the service provider will exchange the key according to the joint Request the path that the information originally traveled to the service provider, and then pass the service provider's final joint transaction response information to the transaction participants; and each transaction participant should pass the transaction response information that belongs to it to other transaction participants. Separate the transaction response information, and follow the joint transaction request information The path to the service provider then transmits the transaction response information belonging to other transaction participants to the transaction participants until the electronic card receives the transaction response information belonging to itself. The participants of the unit execute the electronic parent-child method. The steps include:-sending an electronic card key exchange request message from the electronic card to the first party, which is an information router or A transaction participant; if the first unit is an information router, a gold loss exchange request message is transmitted from the first unit to _ adjacent units Xt XM (j = 2,3,4 ··· Shibu 2,3 · .M; m is a variable of type η (for different values, m can also be a different value); if the first unit is a transaction participant, the first unit takes the first -The unit key exchange request information is combined with the electronic card key exchange request information to form an electronic card. 1 The unit united unit surplus exchange request information is transmitted to an adjacent unit χ person 々; f If the unit at that time seems only ^ —In the case of an information router, the unit X * 7 · at that time will forward the received transaction request information to the next neighboring unit XM; if the unit Xy · at the time is a participant in the transaction, the unit X /, 々 The key exchange request information is combined with the key exchange request information of the previous unit to form a joint key exchange (key exchange). After the information is transmitted to an adjacent unit Xyj; For each transaction participant, the service Providers will provide a key exchange response information for their formula 6. Application scope, the service provider will follow the joint key exchange request information and the original service path of the service provider, and then send the service provider's final joint transaction response information To the transaction participants; and each transaction participant separates the transaction response information that belongs to them from the transaction response information that belongs to other transaction participants, and according to the joint transaction request information, the path that the information provider originally performed to the service provider The transaction reply information belonging to other transaction participants is then transmitted to the transaction participants until the electronic card receives the information belonging to Our own reply transaction information only. '41 · A method for performing electronic transactions among participants in a plurality of units using a hierarchical organization arrangement, the steps include: transmitting an electronic card transaction request information from an electronic card to a first unit'; the first unit is an information router Or a transaction participant; if the first unit is an information router, a transaction request message is transmitted from the first unit to an adjacent unit xyj (j = 2, 3 4… ·, hi '2' 3 · · · m; m type (a variable of ty㈣, m can also be a different value for different values of j) If the first unit is a transaction participant, the first unit exchanges the transaction request information of the first unit with the electronic card transaction The requested information is combined to form an electronic card. After the first unit transaction request, the information is transmitted to an adjacent unit Xj, k. If the unit Xyj is only an information router at that time, the unit at that time forwards the received transaction request information to the next unit. An adjoining unit, f please patent scope Xj \ k; if the unit XM was a transaction participant at that time, the unit took the current unit XM transaction The request information is combined with the transaction request information of the previous unit to form a joint transaction request message and then transmitted to an adjacent unit. For each transaction participant, the service provider will format a transaction response message for it. The service provider will The joint key exchange requires that L interest originally travels to the path provided by the service, and then transmits the service provider's final joint transaction response information to the transaction participants; and each transaction participant sends his own transaction response information and other transaction participation. The transaction response information of the participants is separated, and the transaction response information belonging to other transaction participants is transmitted to the transaction participants according to the path that the joint transaction requires the information to travel to the service provider 'until the electronic card belongs to the Up to the date of your transaction reply 0 This paper size applies to China Standard (⑽) Α4 ^ 210 × 297mm) —Order: Line 丨 (Please read the notes on the back before filling this page) 81