WO2005008549A1 - A safe transaction system for finance authentication - Google Patents

A safe transaction system for finance authentication Download PDF

Info

Publication number
WO2005008549A1
WO2005008549A1 PCT/CN2004/000114 CN2004000114W WO2005008549A1 WO 2005008549 A1 WO2005008549 A1 WO 2005008549A1 CN 2004000114 W CN2004000114 W CN 2004000114W WO 2005008549 A1 WO2005008549 A1 WO 2005008549A1
Authority
WO
WIPO (PCT)
Prior art keywords
financial
payer
transaction
authentication
center
Prior art date
Application number
PCT/CN2004/000114
Other languages
French (fr)
Chinese (zh)
Inventor
Chongyu Yao
Jize Li
Original Assignee
Chongyu Yao
Jize Li
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chongyu Yao, Jize Li filed Critical Chongyu Yao
Publication of WO2005008549A1 publication Critical patent/WO2005008549A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists

Definitions

  • the invention relates to a financial electronic transaction system, and in particular to a financial authentication secure transaction system that can effectively improve the security and service performance of financial transactions.
  • the existing financial electronic transaction system mainly includes a three-way one-way transaction process for consumers, stores, and credit card issuers.
  • the protective measures that can be done are to first confirm the identity of the cardholder and obtain the authorization code of the credit card issuing bank by phone to complete the transaction.
  • This transaction process is commonly known as the one-stage shopping method.
  • the store may sometimes neglect the verification of the consumer ’s identity, or it may be difficult to verify it, especially during long-distance transactions through the e-commerce network. Therefore, it often happens that the card-issuing bank refuses to pay after the transaction is completed. happens.
  • the main purpose of the present invention is to overcome the above-mentioned shortcomings of the existing financial electronic transaction system, and provide a financial authentication secure transaction system, which adopts a two-stage shopping method and uses a random combination of financial card authorization passwords generated in real time, directly from consumption.
  • the person (payer) confirms, and then returns to the store (payee), and finally confirms the transaction twice to complete the financial transaction mechanism for the safest consumption.
  • It uses a composite financial card to authorize the password combination function to realize the financial market.
  • the financial authentication security transaction system of the present invention includes: at least one independent financial authentication center.
  • the financial authentication center establishes an electronic database with a protective device.
  • the electronic database is provided to consumers (payers) and stores (receivers). ) Apply for the establishment of authentication to provide management services.
  • the electronic database is also provided with a system program for independent calculations processed by the computer. A random set of unique financial authorization passwords is generated instantly by the random random arrangement of the program, and the password is transmitted to consumers.
  • Paymenter to enable consumers (payers) to conduct transactions based on this; the financial certification center and the authorized banks of the consumers (payers) and credit card joint centers each form an information connection certification system to provide financial transaction process information.
  • the consumer (payer) and the store (receiver) are equipped with at least one messaging device that can send and receive messages. Online transmission and transmission of transaction data; a two-stage shopping method constructed by the above Internet
  • the transaction process is initiated by the consumer (payer) to the store (receiver).
  • the store (receiver) first passes the amount of data authorized by the consumer (payer) through the Internet (or wired and wireless) ) To confirm to the financial certification center, and the financial authorization password generated by the financial certification center through computer processing is immediately transmitted to the consumer (payer) messaging device, and then the consumer (payer) transmits the financial authorization password to The store (beneficiary) confirms that the authorized bank can verify the funding according to the contract and complete the secure financial transaction. '-.
  • the financial authorization password is preferably 8 to 16 digits.
  • the communication device between the consumer and the store is a PDA (wireless area network, GSM, PHS), a mobile phone (GSM, GPRS), or a computer (Internet, GSM, PHS).
  • the aforementioned financially-certified secure transaction system in which the consumer (payer) authenticates the credentials during the transaction It is sufficient to provide the number of credit card number, debit card number, ID card number, and passport card number that can be traded by the financial certification center to verify the identity of the trader.
  • the financial authentication security transaction system of the present invention comprises: at least one independent financial authentication center, the financial authentication center establishes an electronic database with a protective device, and the electronic database is provided to consumers (payers) and stores (payees) Apply for the establishment of certification to provide management services and issue a functional cipher box with multiple sets of functional parameters to the consumer (payer) at the same time; the database is also provided with an independent computing system program processed by the computer, and the program is randomly and randomly compiled A set of "multiple space staggered" authorization password is generated immediately, and the authorization password is transmitted to the consumer (payer) for the consumer (payer) to fill in the blank with the preset functional password box to form a transaction by themselves The required compound financial authorization password is used to conduct transactions according to the compound financial authorization password.
  • the financial authentication center and the authorized bank of the consumer (payer) and the credit card joint center mutually form an information connection authentication system to provide the financial transaction process. Need to contact information; consumers (payers) and stores (payees) Do n’t have at least one messaging device for sending and receiving messages. The messaging device sends transaction data online to the financial certification center through the Internet (or wired and wireless). The above-mentioned internet is used to construct a two-stage shopping transaction process. The process is initiated by the consumer (payer) to the store (receiver).
  • the store first transmits the amount of data authorized by the consumer (payer) to the financial certification through the Internet (or wired and wireless) Confirmed by the center;
  • the financial authorization password generated by the financial certification center through computer processing is immediately transmitted to the messaging device of the consumer (payer), and then a functional password box selected by the consumer (payer) by itself,
  • a group of compound financial authorization passwords are compounded and transmitted to the store (receiver) for confirmation.
  • the payer authorizes the bank to verify the funds according to the contract and complete the secure financial transaction.
  • the aforementioned financial authentication secure transaction system wherein the financial authorization password is preferably 8 to 16 digits, and multiple staggered spaces of the authorization password are used for sequentially filling the password of the functional password box.
  • the authentication credentials of the consumer (payer) during the transaction are the numbers of the credit card number, debit card number, ID card number, and passport card number that are sufficient for the financial authentication center to be able to conduct transactions.
  • the functional password box is preset by the financial authentication center as a parameter with a specific authorized service instruction, and this parameter is combined with the gold card authorization password to form a specified transaction required by the consumer (payer). content. .
  • the foregoing financial authentication secure transaction system is characterized in that the functional password box includes a
  • the group is preset by the financial certification center as a parameter with an alarm emergency rescue instruction. This parameter is used to complete the transaction process when the consumer (payer) is held hostage.
  • the customer service staff of the financial certification center notifies the military police unit to go to the trading place to rescue it quickly. .
  • Figure 1 is a schematic diagram of the transaction flow of the existing financial electronic trading system.
  • FIG. 2 is a block diagram of a financial authentication secure transaction system according to the present invention.
  • FIG. 3 is a block diagram of the system authentication operation of the present invention.
  • FIG. 4 is a schematic flowchart of a two-stage shopping operation according to the present invention.
  • FIG. 5 is a schematic diagram of the operation flow of the two-stage password combination of the present invention.
  • FIG. 6 is a schematic flowchart of a rescue mechanism related to non-spontaneous transactions according to the present invention.
  • FIG. 7 is a schematic flowchart of a temporary authorization mechanism according to the present invention.
  • the financial authentication secure transaction system of the present invention mainly passes transactions between consumers (payers) 1 and stores (receivers) 2 through the Internet (or wired and wireless) 3 and an independent financial authentication Center 4 and each authorized bank 5 and credit card joint center 6 constitute a two-stage shopping method of financial transaction mechanism to improve the security of financial transactions and increase the versatility of its use; of which, the financial certification center 4 is established
  • An electronic database with protective devices is provided to provide management services for consumers (payers) 1 and stores (receivers) 2 to apply for the establishment of authentication.
  • the database is provided with a computer program that processes 4A independent operations.
  • the program's random digital arrangement generates a unique set of financial authorization passwords A that are immediately communicated to the consumer (payer) 1 to conduct transactions; and the financial card authorization password A is preferably 8 to 16 digits. '
  • the financial authentication center 4 and the authorized bank 5 of the consumer (payer) 1 and the credit card joint center 6 form an information connection authentication system with each other to provide contact information required for the financial transaction process.
  • the consumer (payer) 1 and the store (payee) 2 each have at least one set of Messaging devices 1A and 2A
  • the messaging devices 1A and 2A can transmit transaction data online with the financial certification center 4 through the Internet (or wired and wireless) 3; among them, the messaging devices 1A and 2A can be PDA (wireless area network, GSM , PHS), mobile phone (GSM, GPRS) or computer (Internet, GSM, PHS).
  • a two-stage shopping transaction process is constructed by the above Internet.
  • the process starts from the consumer (payer) 1 to the store (receiver) 2 and the store (receiver) 2 first sends the consumer (payment Party 1)
  • the amount of authorized data is transmitted to the financial certification center 4 through the Internet 3.
  • the financial certification center 4 processes the unique financial card authorization password A generated by the computer 4A and then transmits the message appearing to the consumer (payer) 1.
  • the device 1A, and then the consumer (payer) 1 transmits the authorized financial card authorization password A to the store (receiver) 2 to prevent theft of the password during the transaction. Once the transaction is confirmed, the transaction is completed.
  • the authorized bank 5 can verify the appropriation according to the contract; it is learned that this system uses a two-stage double confirmation transaction mode, which can effectively prevent the fraud of stolen amounts, because the password for each transaction is not fixed ( The computer randomly encodes random numbers), and must complete the final transaction process after the user ’s real identity is confirmed, so it can ensure the entire transaction. Mechanisms of absolute security. ⁇
  • the users include consumers (payers) 1, stores (receivers) 2 and other objects who want to trade through the financial system.
  • relevant certification filing information can be adjusted according to the operation requirements of the financial certification center 4 when the user (user) completes the registration and financial registration
  • the center 4 approves and issues to the consumer (payer) 1 a set of functional cipher boxes 7 including multiple function parameters for backup, and sends to the store (receiver) 2 — the unique coding code of the transaction unit, the relevant consumer ( The operation and use of multiple sets of functional code boxes 7 will be described later.
  • the financial certification center 4 issues a functional password box 7 for the consumer (payer) 1 with multiple sets of functional parameters to be used for certification, the following security can be selected for the operation of the system's transaction process.
  • a higher mode of operation is carried out, as shown in Figure 4, which is detailed as follows:
  • the operation of this system is also a two-stage shopping method transaction process constructed by the above-mentioned Internet. This process is also performed by the consumer (payer).
  • Store (receiver) 2 Start transaction after consumption, store (receiver) 2 First transfer consumer (payer) 1 authorization information and the amount to be transacted through the Internet (or wired and wireless)
  • the financial certification center 4 After confirmation to the financial certification center 4, the financial certification center 4 generates a 16-digit digital financial authorization password A with several spaces staggered as shown in the square of FIG. 5 by computer processing, and immediately transmits it to the consumer (
  • the communication device 1A of the payer) 1 is composed of a set of functional cipher boxes 7 determined by the consumer (payer) 1 to form a complete set of financial authorization passwords.
  • the authorized compound financial authorization password A is transmitted to the store (payee) 2 to prevent the password from being stolen during the transaction.
  • the transaction Once the transaction is confirmed, the transaction is completed and the authorized bank 5 can check the funds according to the contract.
  • the system can effectively prevent the fraud of stolen amounts, because the password for each transaction is not fixed (they are randomly randomized by computer programs) (Instantly edited), and at the same time the complete compilation of the final composite financial authorization password A still requires a set of parameter combinations of the functional password box 7 owned by the consumer (payer) 1 itself, so the master of the authorized password Control is completely under the control of the consumer (payer) 1. Only after the identity of the real user is verified can the final transaction process be completed, absolutely avoiding the occurrence of misappropriation, and effectively ensuring the absolute security of the entire transaction mechanism.
  • the aforementioned composite financial card authorization password A is composed of a consumer (payer) 1 and a preset functional password box 7, which is composed in two phases.
  • the functional password box 7 is developed in advance in the financial certification center 4 It is set to different parameters and each has a specific function instruction according to the contract.
  • the operation method is listed as follows:
  • a consumer (payer) 1 receives a financial authorization password A transmitted from a financial authentication center 4 by a messenger 1A that can be used to send and receive messages.
  • the group of financial authorization passwords A is The box shown in the figure is a 16-bit space, which shows the 12 random random number codes generated by the instant operation of the financial authorization password A system program; for example, "1-3 678901_3-56" shown in the legend, The code is staggered with a blank space, that is, a functional password box with a four-digit parameter that provides the consumer (payer) 1 with the necessary input function parameters; for example, "0517” shown in the legend,
  • the consumer (payer) 1 composes a complete 567890113Z56 "complete compound financial authorization password A by himself, and the compound financial authorization password A is then transmitted to the store (payee) through the messenger 1A carried by him 2, or Enter the confirmation directly through the messaging device 2A of the store (payee) 2 so that the transaction is completed, and the authorized bank 5 can check
  • the parameters of the functional password box 7 can also be set to a “special emergency rescue code” function, for example, “0000” is displayed in the legend; that is, when the consumer (payer) 1 Personal thieves are restricted to the store (receiver) 2 Extortion and forced involuntary withdrawals At the time of birth, although the consumer (payer) 1 also received the same set of financial authorization password A with twelve digits "1 3-5678901_3-56" and staggered four blank spaces as before, but due to the final composite code The controlling power of the user (payer) 1 is controlled by the consumer (payer) 1.
  • a “special emergency rescue code” function for example, “0000” is displayed in the legend; that is, when the consumer (payer) 1 Personal thieves are restricted to the store (receiver) 2 Extortion and forced involuntary withdrawals
  • the consumer (payer) 1 also received the same set of financial authorization password A with twelve digits "1 3-5678901_3-56" and staggered four blank spaces as before
  • the consumer (payer) 1 enters a blank cell with the emergency rescue parameter "0000" in the case where the robber is hosted, etc.
  • Rescue instruction "1Q31 ⁇ 2678901Q3 £ 56" composite financial authorization password A, although the financial certification center 4 will confirm the completion of the transaction and appropriate to the other party; however, during the transaction, the financial certification center 4 learns that the consumer (payment At the same time, it will immediately contact the nearest military police unit 8 where the transaction store is located and go to the rescue process as soon as possible, so it can greatly improve the personal safety of the consumer (payer) 1 transaction.
  • the parameters of the functional password box 7 can also be set as the function of “urgently increasing the authorized amount,” for example, “0911” is displayed in the legend; that is, when the consumer ( The payer) 1 is in the airport terminal and wants to take a transportation or other special occasions, and he finds that the authorized amount may be insufficient, the consumer (payer) 1 although he also received the "1-3—5678901—3—56" Financial card authorization password A, but because the consumer (payer) 1 himself enters the parameter "0911” for urgently increasing the authorization amount, it can constitute an emergency authorization instruction "1 ⁇ 567890U3156" financial card authorization password A, The financial certification center 4 will still agree to complete the transaction and allocate funds to the other party. However, afterwards, the financial certification center 4 will increase the authorized service fee.
  • the beneficial effects of the present invention are: it includes at least one independent financial certification center, which establishes an electronic database with protective devices for consumers (payers) and stores (payees) to apply for establishment of certification Management service.
  • the database is equipped with a computer program for processing independent calculations.
  • the program randomly generates a unique set of financial card authorization passwords and passes them to consumers (payers) through random random number encoding and distribution of the program to conduct transactions;
  • the financial authentication center also needs to establish an information connection authentication system with the authorized bank of the consumer (payer) and the credit card joint center to provide the information required for the financial transaction process;
  • the consumer (payer) and the store (receive the payment) Party) are provided with at least one messaging device that can send and receive messages, and the messaging device can transmit transaction data online with the financial certification center through the Internet (or wired and wireless); the above-mentioned Internet constitutes a two-stage shopping transaction The process is initiated by the consumer (payer) to the store (receiver).
  • the store (receiver) first transmits the amount of data authorized by the consumer (payer) through the Internet (or wired and wireless). Confirm to the financial certification center, the financial certification center's computer-generated financial card authorization password is transmitted immediately and appears in the The consumer (payer) 's messaging device, and then the consumer (payer) transmits the authorization code of the financial card to the store (receiver) for confirmation, and the authorized bank completes the financial security according to the agreement transaction.
  • the financial authentication and secure transaction system of the present invention constitutes a new transaction mechanism and process, which can overcome the shortcomings of the existing one-stage shopping method. Among them, the authentication credentials of a consumer (payer) during a transaction are exemplified by credit card numbers and financial card numbers.
  • ID card number, passport card number, and other financial certification center certification numbers are available for transactions, there is no doubt that the financial certification security transaction system of the present invention has a very wide use space, not limited to credit card consumption behavior; furthermore, this The invention adopts a two-stage shopping method, which uses a random combination of irreplaceable financial card passwords to double-check to complete the transaction, and has become the most secure financial transaction mechanism for consumption today.
  • the present invention can adopt a composite finance with a combination of functional parameters
  • the password of the card can achieve the maximum protection function of the win-win between the store, the authorized bank and the consumer in the financial market; it has high industrial application value.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention provides a safe transaction system for finance authentication wherein two stage trade mode is made up of the payer and payee's transaction flow to improve the safety of financial transaction and add manifold server functions. The system includes independent finance authentication center to establish authentication and management server for payer and payee's application, the finance authentication center and the payer's authorized bank and the credit card combination center make up a information communication authentication system to contact the information of finance authentication's process, payer and payee have communicators which transmit transaction information be combined with the finance authentication center, begin with consumption, the payee transmits the authorized amount to the finance authentication center via wireline or wireless line or network to affirm the authorized amount, then financial authorized cipher generated by computer processing in the finance authentication center is transmited to and displayed in the payer's communicator, then payer sends the cipher to the payee to affirm it, finally the authorized bank can appropriate fouds according to the protocol to complete the financial transaction safely.

Description

金融认证安全交易系统 技术领域  Financial certification secure transaction system
本发明涉及金融电子交易系统, 尤其涉及一种可以有效提高金融交易的 安全性及服务性能的金融认证安全交易系统。 背景技术  The invention relates to a financial electronic transaction system, and in particular to a financial authentication secure transaction system that can effectively improve the security and service performance of financial transactions. Background technique
现有的金融电子交易系统, 如图 1所示, 主要包括消费者、 商店及信用卡 发卡银行等三方的单一直向交易流程, 当消费者持卡前往商店或通过网络线 上交易时, 商店唯一能做的防护措施是先确认持卡人的身份, 并通过电话取 得信用卡发卡银行的授权码后, 即完成交易, 这种交易流程, 即俗称的一阶 段购物法。 由于在交易过程中, 商店对于消费者身份的验证, 有时会疏忽, 或者确有困难进行验证, 尤其在通过电子商务网线上的远距交易时, 于是经 常会发生交易完成后发卡银行拒绝付款的情况。 近年来, 交易市场中信用卡 的伪卡情况泛滥, 其中不乏犯罪集团、 不法商店或不肖金融业者所为, 或者 是互相勾结, 也有为各人私自窃取卡号, 制作伪卡贩售, 谋取不当得利或者 盗刷金额等, 因此经常造成商店的重大财物损失; 而发卡银行在此种交易机 制当中, 所能作的防范措施, 也仅能在发现交易异常时通过客服人员电话语 音通知询问消费者是否消费该笔金额, 但是, 这些都是事后通知, 其对于交 易时的安全实无任何帮助; 所以不论信用卡真卡遗失或因卡号被窃取遭人盗 刷金额, 其损失金额的承受与否常导致消费者、 商店与银行间的争议, 甚至 会对簿公堂, 诸如此类情况的发生乃层出不穷。 究其原因应归咎于当前一阶 段购物法的金融电子交易系统, 本身方法是一种错误的方法, 因为任何凭证 都可以伪造, 那怕是现有设计最精制的具有防伪性能的 IC信用卡, 当信用卡 落入他人手中时仍可被盗刷, 因此单凭交易凭证的交易机制是不可靠的, 其 很容易造成财物损失的情形发生; 此外, 过去一直依靠信用卡或金融卡等交 易方式, 也让金融交易机制始终局限在狭窄的信用卡消费市场空间中。  The existing financial electronic transaction system, as shown in FIG. 1, mainly includes a three-way one-way transaction process for consumers, stores, and credit card issuers. When consumers go to the store with a card or conduct transactions online, the store is the only one. The protective measures that can be done are to first confirm the identity of the cardholder and obtain the authorization code of the credit card issuing bank by phone to complete the transaction. This transaction process is commonly known as the one-stage shopping method. During the transaction process, the store may sometimes neglect the verification of the consumer ’s identity, or it may be difficult to verify it, especially during long-distance transactions through the e-commerce network. Therefore, it often happens that the card-issuing bank refuses to pay after the transaction is completed. Happening. In recent years, the number of counterfeit credit cards on the trading market has been widespread. Many of them have been committed by criminal syndicates, illegal shops, or unscrupulous financial companies, or they have colluded with each other. Or stealing money, etc., which often causes major property losses in the store; and the precautionary measures that the card-issuing bank can take in such a transaction mechanism can only ask consumers if the transaction abnormality is found through a voice call from the customer service staff. Consumption of this amount, however, these are post-notifications, and they are not of any help to the security of the transaction; so whether the credit card is lost or the card number is stolen and the amount is stolen, whether the loss amount is tolerated or not often results Disputes between consumers, shops, and banks can even be heard in public places, and so on. The reason should be attributed to the current financial electronic transaction system of the shopping method. The method itself is a wrong method, because any voucher can be forged, even if it is the most refined IC credit card with anti-counterfeiting performance. Credit cards can still be stolen when they fall into the hands of others. Therefore, the transaction mechanism solely based on transaction vouchers is unreliable, which can easily cause property loss. In addition, in the past, credit cards or debit cards and other transaction methods have also been used to allow The financial transaction mechanism has always been confined to the narrow credit card consumer market space.
有鉴于此, 本发明人针对当前一阶段购物法的金融电子交易系统存在的 多种缺点不断研究, 以提高金融交易机制的安全性、 广义性以及具有宽广的 服务性, 终于设计出具有高实用价值的本发明。 发明的内容 In view of this, the present inventors continue to study the various shortcomings of the financial electronic transaction system of the current stage of the shopping method in order to improve the security, broadness, and broad service of the financial transaction mechanism, and finally design a highly practical Value of the invention. Content of the invention
本发明的主要目的在于克服现有金融电子交易系统存在的上述缺点, 而 提供一种金融认证安全交易系统, 其采用二阶段购物方式, 运用随机组合即 时产生的金融证卡授权密码, 直接由消费者 (付款方)确认, 再反馈商店 (收款 方), 最后双次确认完成交易, 从而达到最安全消费的金融交易机制; 其以复 合式的金融证卡授权密码组合功能, 实现金融市场中授权银行与消费者和商 店三赢的最大保障功能; 其交易的产生不局限于信用卡交易机制, 仅需在系 统中消费身份授权确认无误, 都可独力完成交易, 使金融交易系统的应用更 为宽广。  The main purpose of the present invention is to overcome the above-mentioned shortcomings of the existing financial electronic transaction system, and provide a financial authentication secure transaction system, which adopts a two-stage shopping method and uses a random combination of financial card authorization passwords generated in real time, directly from consumption. The person (payer) confirms, and then returns to the store (payee), and finally confirms the transaction twice to complete the financial transaction mechanism for the safest consumption. It uses a composite financial card to authorize the password combination function to realize the financial market. Authorize banks and consumers and stores for a win-win maximum protection function; the generation of transactions is not limited to the credit card transaction mechanism. You only need to verify the identity of the consumer in the system, and you can complete the transaction alone, making the application of the financial transaction system more broad.
本发明的目的是由以下技术方案实现的。  The object of the present invention is achieved by the following technical solutions.
本发明金融认证安全交易系统, 其包括:至少一个独立的金融认证中心, 该金融认证中心建置一个具有防护装置的电子数据库, 该电子数据库为给消 费者 (付款方)与商店 (收款方)申请设立认证提供管理服务, 该电子数据库还 设有通过计算机处理的独立运算的系统程序, 通过该程序的随机乱数码编配 即时产生一组唯一的金融授权密码, 将该密码传达给消费者 (付款方), 使消 费者 (付款方)据以进行交易; 该金融认证中心分别与消费者 (付款方)的授权 银行及信用卡联合中心互成一资讯连通认证体系, 据以提供金融交易过程所 需资料的联系; 该消费者 (付款方)和商店 (收款方)分别备有至少一组可供收 发讯息的传讯装置, 该传讯装置通过网际网络 (或有线及无线路)与金融认证 中心联机传,送交易资料; 由上述互连网构筑成一种二阶段购物方式的交易流 程, 该流程系由消费者 (付款方)向商店 (收款方)消费起始, 商店 (收款方)先 将消费者 (付款方)授权资料金额通过网际网络 (或有线及无线路)传送至金融 认证中心确认, 该金融认证中心经计算机处理即时产生的金融授权密码随即 传送显现在消费者 (付款方)的传讯装置, 继而由消费者 (付款方)将该金融授 权密码传送给商店(收款方)确认, 授权银行即可依约核拨款项, 完成金融的 安全交易。 ' - .  The financial authentication security transaction system of the present invention includes: at least one independent financial authentication center. The financial authentication center establishes an electronic database with a protective device. The electronic database is provided to consumers (payers) and stores (receivers). ) Apply for the establishment of authentication to provide management services. The electronic database is also provided with a system program for independent calculations processed by the computer. A random set of unique financial authorization passwords is generated instantly by the random random arrangement of the program, and the password is transmitted to consumers. (Payer) to enable consumers (payers) to conduct transactions based on this; the financial certification center and the authorized banks of the consumers (payers) and credit card joint centers each form an information connection certification system to provide financial transaction process information. Need to contact information; The consumer (payer) and the store (receiver) are equipped with at least one messaging device that can send and receive messages. Online transmission and transmission of transaction data; a two-stage shopping method constructed by the above Internet The transaction process is initiated by the consumer (payer) to the store (receiver). The store (receiver) first passes the amount of data authorized by the consumer (payer) through the Internet (or wired and wireless) ) To confirm to the financial certification center, and the financial authorization password generated by the financial certification center through computer processing is immediately transmitted to the consumer (payer) messaging device, and then the consumer (payer) transmits the financial authorization password to The store (beneficiary) confirms that the authorized bank can verify the funding according to the contract and complete the secure financial transaction. '-.
前述的金融认证安全交易系统, 其中金融授权密码以 8至 16位数码为佳。 前述的金融认证安全交易系统, 其中消费者与商店的传讯装置为 PDA (无 线区网, GSM, PHS)、 移动电话(GSM, GPRS)或计算机(Internet, GSM, PHS)。  In the aforementioned financial authentication secure transaction system, the financial authorization password is preferably 8 to 16 digits. In the aforementioned financial authentication secure transaction system, the communication device between the consumer and the store is a PDA (wireless area network, GSM, PHS), a mobile phone (GSM, GPRS), or a computer (Internet, GSM, PHS).
前述的金融认证安全交易系统, 其中消费者 (付款方)交易时的认证凭据 为足以提供金融认证中心认证交易者身份即能 行交易的信用卡号、 金融卡 号、 身份证号、 护照证号的编号。 The aforementioned financially-certified secure transaction system, in which the consumer (payer) authenticates the credentials during the transaction It is sufficient to provide the number of credit card number, debit card number, ID card number, and passport card number that can be traded by the financial certification center to verify the identity of the trader.
本发明金融认证安全交易系统, 其包括: 至少一个独立的金融认证中心, 该金融认证中心建置一个具有防护装置的电子数据库, 该电子数据库给消费 者 (付款方)和商店 (收款方)申请设立认证提供管理服务及在立案同时发给消 费者 (付款方)具有多组功能参数的功能型密码盒; 该数据库还设有通过计算 机处理的独立运算系统程序, 该程序的随机乱数码编配即时产生一组 "多位 空格错开" 的授权密码, 将该授权密码传达给消费者 (付款方), 供消费者 (付 款方)手中自行与预设的功能型密码盒填空复合组成一交易所需的复合式金 融授权密码, 根据复合式金融授权密码进行交易; 该金融认证中心分别与消 费者 (付款方)的授权银行及信用卡联合中心互成一资讯连通认证体系, 以提 供金融交易过程所需资料的联系; 消费者 (付款方)与商店 (收款方)分别备有 至少一组供收发讯息的传讯装置, 该传讯装置通过网际网络 (或有线及无线路) 与金融认证中心联机传送交易资料; 由上述互连网构筑成一种二阶段购物方 式的交易流程, 该流程由消费者 (付款方)向商店 (收款方)消费起始, 商店 (收 款方)先将消费者 (付款方)授权资料金额通过网际网络 (或有线及无线路)传 送至金融认证中心确认; 该金融认证中心经计算机处理产生的金融授权密码 立即传送显现在消费者 (付款方)的传讯装置, 继苘由消费者 (付款方)自行选 定一组参数的功能型密码盒, 复合组成一组复合式的金融授权密码, 传送给 商店 (收款方)确认后, 付款方授权银行即依约核拨款项, 完成金融的安全交 易  The financial authentication security transaction system of the present invention comprises: at least one independent financial authentication center, the financial authentication center establishes an electronic database with a protective device, and the electronic database is provided to consumers (payers) and stores (payees) Apply for the establishment of certification to provide management services and issue a functional cipher box with multiple sets of functional parameters to the consumer (payer) at the same time; the database is also provided with an independent computing system program processed by the computer, and the program is randomly and randomly compiled A set of "multiple space staggered" authorization password is generated immediately, and the authorization password is transmitted to the consumer (payer) for the consumer (payer) to fill in the blank with the preset functional password box to form a transaction by themselves The required compound financial authorization password is used to conduct transactions according to the compound financial authorization password. The financial authentication center and the authorized bank of the consumer (payer) and the credit card joint center mutually form an information connection authentication system to provide the financial transaction process. Need to contact information; consumers (payers) and stores (payees) Do n’t have at least one messaging device for sending and receiving messages. The messaging device sends transaction data online to the financial certification center through the Internet (or wired and wireless). The above-mentioned internet is used to construct a two-stage shopping transaction process. The process is initiated by the consumer (payer) to the store (receiver). The store (receiver) first transmits the amount of data authorized by the consumer (payer) to the financial certification through the Internet (or wired and wireless) Confirmed by the center; The financial authorization password generated by the financial certification center through computer processing is immediately transmitted to the messaging device of the consumer (payer), and then a functional password box selected by the consumer (payer) by itself, A group of compound financial authorization passwords are compounded and transmitted to the store (receiver) for confirmation. The payer authorizes the bank to verify the funds according to the contract and complete the secure financial transaction.
前述的金融认证安全交易系统, 其中金融授权密码以 8至 16位数码为佳, 该授权密码的多位错开空格恰供功能型密码盒的密码依序填入组合。  The aforementioned financial authentication secure transaction system, wherein the financial authorization password is preferably 8 to 16 digits, and multiple staggered spaces of the authorization password are used for sequentially filling the password of the functional password box.
前述的金融认证安全交易系统, 其中消费者 (付款方)交易时的认证凭据 为足供金融认证中心认证即能进行交易的信用卡号、 金融卡号、 身份证号、 护照证号的编号。  In the aforementioned financial authentication secure transaction system, the authentication credentials of the consumer (payer) during the transaction are the numbers of the credit card number, debit card number, ID card number, and passport card number that are sufficient for the financial authentication center to be able to conduct transactions.
前述的金融认证安全交易系统, 其中功能型密码盒由金融认证中心预先 设定为具有特定授权服务指令的参数, 该参数与金 证卡授权密码组合, 构 成消费者 (付款方)所需指定交易内容。 .  In the aforementioned financial authentication secure transaction system, the functional password box is preset by the financial authentication center as a parameter with a specific authorized service instruction, and this parameter is combined with the gold card authorization password to form a specified transaction required by the consumer (payer). content. .
前述的金融认证安全交易系统, 其特征在于, 所述功能型密码盒包括一 组由金融认证中心预先设定为具有报警紧急营救指令的参数, 该参数供消费 者 (付款方)人身被挟持时完成交易过程, 由金融认证中心的客服人员通报军 警单位迅速前往交易地点营救。 附图的简要说明. The foregoing financial authentication secure transaction system is characterized in that the functional password box includes a The group is preset by the financial certification center as a parameter with an alarm emergency rescue instruction. This parameter is used to complete the transaction process when the consumer (payer) is held hostage. The customer service staff of the financial certification center notifies the military police unit to go to the trading place to rescue it quickly. . Brief description of the drawings.
图 1为现有金融电子交易系统的交易流程示意图。  Figure 1 is a schematic diagram of the transaction flow of the existing financial electronic trading system.
图 2为本发明金融认证安全交易系统的方块示意图。  FIG. 2 is a block diagram of a financial authentication secure transaction system according to the present invention.
图 3为本发明系统认证作业的方块示意图。  Figure 3 is a block diagram of the system authentication operation of the present invention.
图 4为本发明二阶段购物操作的流程示意图。  FIG. 4 is a schematic flowchart of a two-stage shopping operation according to the present invention.
图 5为本发明二阶段密码组合的操作流程示意图。  FIG. 5 is a schematic diagram of the operation flow of the two-stage password combination of the present invention.
图 6为本发明有关非自发性交易的救援机制流程示意图。  FIG. 6 is a schematic flowchart of a rescue mechanism related to non-spontaneous transactions according to the present invention.
图 7为本发明有关临时性授权机制的流程示意图。  FIG. 7 is a schematic flowchart of a temporary authorization mechanism according to the present invention.
1 -消费者 (或付款方)、 2-商店 (或收款方)、 1A-传讯装置、 2A-传讯装置、 3 -网际网络、 4-金融认证中心、 4A-计算机处理、 A-金融证卡授权密码、 5- 授权银行、 6-信用卡联合中心、 7-功能型密码盒、 8-军警单位。 实现本发明的最佳实施方式 1-Consumer (or payer), 2- Store (or payee), 1A-messaging device, 2A-messaging device, 3-Internet, 4-financial certification center, 4A- computer processing, A-finance certificate Card authorization password, 5-authorized bank, 6-credit card joint center, 7-functional password box, 8-military police unit. Best Mode for Implementing the Invention
参阅图 2所示,本发明金融认证安全交易系统主要是将消费者 (付款方) 1 与商店(收款方) 2的交易通过网际网络 (或有线及无线路) 3与一独立的金融认 证中心 4及各家授权银行 5、信用卡联合中心 6建构成一种二阶段购物方式的金 融交易机制, 提高金融交易的安全性, 并增加其使用的多功能性; 其中该金 融认证中心 4建置设有一个具有防护装置的电子数据库, 据以提供消费者 (付 款方) 1与商店(收款方) 2申请设立认证的管理服务, 该数据库设有计算机处理 4A独立运算的系统程序, 通过该程序的随机数码编配产生一组唯一的金融授 权密码 A即时传达给消费者 (付款方) 1, 据以进行交易; 又, 该金融证卡授权 密码 A以 8至 16位数码为佳。 '  As shown in FIG. 2, the financial authentication secure transaction system of the present invention mainly passes transactions between consumers (payers) 1 and stores (receivers) 2 through the Internet (or wired and wireless) 3 and an independent financial authentication Center 4 and each authorized bank 5 and credit card joint center 6 constitute a two-stage shopping method of financial transaction mechanism to improve the security of financial transactions and increase the versatility of its use; of which, the financial certification center 4 is established An electronic database with protective devices is provided to provide management services for consumers (payers) 1 and stores (receivers) 2 to apply for the establishment of authentication. The database is provided with a computer program that processes 4A independent operations. The program's random digital arrangement generates a unique set of financial authorization passwords A that are immediately communicated to the consumer (payer) 1 to conduct transactions; and the financial card authorization password A is preferably 8 to 16 digits. '
该金融认证中心 4分别与消费者 (付款方) 1的授权银行 5及信用卡联合 中心 6互成一资讯连通认证体系, 据以提供金融交易过程所需联系资料。  The financial authentication center 4 and the authorized bank 5 of the consumer (payer) 1 and the credit card joint center 6 form an information connection authentication system with each other to provide contact information required for the financial transaction process.
该消费者 (付款方) 1与商店(收款方) 2分别备有至少一组可供收发讯息的 传讯装置 1A、 2A, 该传讯装置 1A、 2A可通过网际网络 (或有线及无线路) 3 与金融认证中心 4联机传送交易资料; 其中, 传讯装置 1A、 2A可以为 PDA (无线 区网, GSM, PHS)、 移动电话(GSM, GPRS)或计算机(Internet, GSM, PHS)。 The consumer (payer) 1 and the store (payee) 2 each have at least one set of Messaging devices 1A and 2A, the messaging devices 1A and 2A can transmit transaction data online with the financial certification center 4 through the Internet (or wired and wireless) 3; among them, the messaging devices 1A and 2A can be PDA (wireless area network, GSM , PHS), mobile phone (GSM, GPRS) or computer (Internet, GSM, PHS).
由上述互连网构筑成一种二阶段购物方式的交易流程, 该流程由消费者 (付款方) 1向商店(收款方) 2消费起始, 该商店(收款方) 2先将消费者 (付款 方) 1授权资料金额通过网际网络 3传送至金融认证中心 4确认后, 该金融认证 中心 4经计算机处理 4A产生的唯一金融证卡授权密码 A随即传送显现在消费者 (付款方) 1的传讯装置 1A, 继而再由消费者 (付款方) 1将该授权的金融证卡授 权密码 A传送给商店 (收款方) 2, 以防止交易过程密码被窃取, 一旦确认后交 易即算完成, 该授权银行 5即可依约核拨款项; 由此得知, 本系统采用二阶段 的双次确认交易模式,能够有效防止盗刷金额的弊端发生,因为每一次进行交 易的密码都不是固定的 (计算机随机乱数编码),而且必须在使用者的真实身 份确认之后, 方可迸行完成最后交易流程, 所以能确保整个交易机制的绝对 安全。 ·  A two-stage shopping transaction process is constructed by the above Internet. The process starts from the consumer (payer) 1 to the store (receiver) 2 and the store (receiver) 2 first sends the consumer (payment Party 1) The amount of authorized data is transmitted to the financial certification center 4 through the Internet 3. After confirmation, the financial certification center 4 processes the unique financial card authorization password A generated by the computer 4A and then transmits the message appearing to the consumer (payer) 1. The device 1A, and then the consumer (payer) 1 transmits the authorized financial card authorization password A to the store (receiver) 2 to prevent theft of the password during the transaction. Once the transaction is confirmed, the transaction is completed. The authorized bank 5 can verify the appropriation according to the contract; it is learned that this system uses a two-stage double confirmation transaction mode, which can effectively prevent the fraud of stolen amounts, because the password for each transaction is not fixed ( The computer randomly encodes random numbers), and must complete the final transaction process after the user ’s real identity is confirmed, so it can ensure the entire transaction. Mechanisms of absolute security. ·
关于前述金融认证中心 4的认证立案申请是多方向用户的, 请配合图 3所 示, 使用者包含消费者 (付款方) 1、 商店 (收款方) 2等欲通过该金融系统交易 的对象, 使用前均需先向金融认证中心 4立案登记, 包括: 身份认证 (个人、 组织、 公司、 行号等等证明)、 授权额度认证 (银行存款、 财力证明)、 密码接 收认证 (传讯装置登记)、营业状态认证 (经营项目)、交易机制认证 (传讯装置 登记)等等, 有关认证立案资料可依据金融认证中心 4的操作需要加以增减调 整 当用户(使用者)完成立案登 i 金融认证中心 4核发给该消费者 (付款方) 1 一组包括多种功能参数的功能型密码盒 7备用, 以及发给该商店 (收款方) 2— 交易单位唯一的编码代号,有关消费者 (付款方)多组功能型密码盒 7的操作使 用, 容后介绍。  Regarding the above-mentioned application for the certification of the financial certification center 4 is for multi-directional users, please cooperate with Figure 3, and the users include consumers (payers) 1, stores (receivers) 2 and other objects who want to trade through the financial system. Before use, you must first register with the financial certification center 4, including: identity authentication (person, organization, company, line number, etc.), authorization limit authentication (bank deposit, financial proof), password reception authentication (message device registration ), Business status certification (operating project), transaction mechanism certification (messaging device registration), etc., relevant certification filing information can be adjusted according to the operation requirements of the financial certification center 4 when the user (user) completes the registration and financial registration The center 4 approves and issues to the consumer (payer) 1 a set of functional cipher boxes 7 including multiple function parameters for backup, and sends to the store (receiver) 2 — the unique coding code of the transaction unit, the relevant consumer ( The operation and use of multiple sets of functional code boxes 7 will be described later.
承前所述, 由于金融认证中心 4在认证立案时, 给消费者 (付款方) 1核发 多组功能参数的功能型密码盒 7备用, 因此在本系统交易流程操作上, 更可选 择以下安全性更高的作业模式进行,兹配合图 4所示,详述如下:此系统操作, 同样是由上述互连网构筑成一种二阶段购物方式的交易流程, 该流程同样由 消费者 (付款方) 1向商店 (收款方) 2消费起始开始交易,商店 (收款方) 2先将消 费者 (付款方) 1授权资料及欲交易金额,通过网际网络 (或有线及无线路)传送 至金融认证中心 4确认后, 该金融认证中心 4经计算机处理即时产生如图 5方格 所示的一种具有数个空格错开的 16位数码金融授权密码 A, 并立即传送显现在 消费者 (付款方) 1的传讯装置 1A, 由该消费者 (付款方) 1自行决定的一组功能 型密码盒 7进行复合组成一组完整的金融授权密码; 继而再由该消费者 (付款 方) 1将该授权复合式的金融授权密码 A传送给该商店 (收款方) 2, 以防止交易 过程中密码被窃取,一旦确认后交易即算完成而授'权银行 5可依约核拨款项。 As mentioned earlier, since the financial certification center 4 issues a functional password box 7 for the consumer (payer) 1 with multiple sets of functional parameters to be used for certification, the following security can be selected for the operation of the system's transaction process. A higher mode of operation is carried out, as shown in Figure 4, which is detailed as follows: The operation of this system is also a two-stage shopping method transaction process constructed by the above-mentioned Internet. This process is also performed by the consumer (payer). Store (receiver) 2 Start transaction after consumption, store (receiver) 2 First transfer consumer (payer) 1 authorization information and the amount to be transacted through the Internet (or wired and wireless) After confirmation to the financial certification center 4, the financial certification center 4 generates a 16-digit digital financial authorization password A with several spaces staggered as shown in the square of FIG. 5 by computer processing, and immediately transmits it to the consumer ( The communication device 1A of the payer) 1 is composed of a set of functional cipher boxes 7 determined by the consumer (payer) 1 to form a complete set of financial authorization passwords. Then the consumer (payer) 1 The authorized compound financial authorization password A is transmitted to the store (payee) 2 to prevent the password from being stolen during the transaction. Once the transaction is confirmed, the transaction is completed and the authorized bank 5 can check the funds according to the contract.
-由此得知, 本系统除了采用前述相同二阶段的双次确认交易模式, 而且 能够有效防止盗刷金额的弊端发生, 因为每一次进行交易的密码都非固定的 (均由计算机程序随机乱数即时编成), 同时最后复合式的金融授权密码 A的完 整编成, 尚需消费者 (付款方) 1自身拥有的功能型密码盒 7的一组参数组合才 能构成, 因此有关授权密码的主控权完全掌握在消费者 (付款方) 1, 也唯有真 正使用者的身份被证实后, 才能进行最后完成交易流程, 绝对避免盗用情况 的发生, 有效确保整个交易机制的绝对安全。  -It is learned that in addition to using the same two-stage double-confirmation transaction mode described above, the system can effectively prevent the fraud of stolen amounts, because the password for each transaction is not fixed (they are randomly randomized by computer programs) (Instantly edited), and at the same time the complete compilation of the final composite financial authorization password A still requires a set of parameter combinations of the functional password box 7 owned by the consumer (payer) 1 itself, so the master of the authorized password Control is completely under the control of the consumer (payer) 1. Only after the identity of the real user is verified can the final transaction process be completed, absolutely avoiding the occurrence of misappropriation, and effectively ensuring the absolute security of the entire transaction mechanism.
前述有关复合式的金融证卡授权密码 A由消费者 (付款方) 1配合其预设 的功能型密码盒 7, 分二阶段复合构成, 该功能型密码盒 7在金融认证中心 4 开发预先设定成不同参数, 而分别具有依约执行特定功能指令, 其操作方法 列举说明如下: 一  The aforementioned composite financial card authorization password A is composed of a consumer (payer) 1 and a preset functional password box 7, which is composed in two phases. The functional password box 7 is developed in advance in the financial certification center 4 It is set to different parameters and each has a specific function instruction according to the contract. The operation method is listed as follows:
首先, 参阅图 5所示, 其中, 消费者 (付款方) 1由随身所携带可供收发讯 息的传讯装置 1A接收来自金融认证中心 4传送来的金融授权密码 A, 该组金融 授权密码 A如图中方格所示, 为十六位空格, 其中显示出来的是十二位由金融 授权密码 A系统程序即时运算产生的随机乱数编码; 例如图例所示的 " 1—3 5678901_3-56",该编码当中错开预留空白格所在,即是提供消费者 (付款方) 1 自行填充输入所需功能参数的具有四位参数的一功能型密码盒 7; 例如图例所 示 "0517", 这样由消费者(付款方) 1自行复合组成 旦 567890113Z56"完 整的复合式金融授权密码 A, 该复合式的金融授权密码 A继而通过随身携带的 传讯装置 1A发射传送给店家 (收款方) 2, 或直接经由该店家 (收款方) 2的传讯 装置 2A输入确认, 这样交易即算完成, 而授权银行 5可依约核拨款项。  First, referring to FIG. 5, a consumer (payer) 1 receives a financial authorization password A transmitted from a financial authentication center 4 by a messenger 1A that can be used to send and receive messages. The group of financial authorization passwords A is The box shown in the figure is a 16-bit space, which shows the 12 random random number codes generated by the instant operation of the financial authorization password A system program; for example, "1-3 678901_3-56" shown in the legend, The code is staggered with a blank space, that is, a functional password box with a four-digit parameter that provides the consumer (payer) 1 with the necessary input function parameters; for example, "0517" shown in the legend, The consumer (payer) 1 composes a complete 567890113Z56 "complete compound financial authorization password A by himself, and the compound financial authorization password A is then transmitted to the store (payee) through the messenger 1A carried by him 2, or Enter the confirmation directly through the messaging device 2A of the store (payee) 2 so that the transaction is completed, and the authorized bank 5 can check the appropriation according to the contract.
其次, 参阅图 6所示, 前述功能型密码盒 7的参数也可依约被设定成 "特 殊紧急救援码"功能, 例如图例中显示 "0000 " ; 即当该消费者 (付款方) 1 人身被盗匪限制在店家 (收款方) 2勒索强迫进行非自主性消费取款的情况发 生时,虽然消费者 (付款方) 1同样接收到与前述相同的一组具有十二位数码" 1 3— 5678901_3一56"及错开四位空白格的金融授权密码 A, 但由于最后复合编码 的主控权掌握在消费者 (付款方) 1本身, 因此该消费者 (付款方) 1在挟持盗匪 人等无法得知的情况搭配 "0000"紧急救援参数输入空白格, 而自行组成一 暗藏救援指令 " 1Q3½678901Q3£56"的复合式金融授权密码 A, 虽然该金融认 证中心 4会在确认完成交易而拨款给对方; 但是, 在交易过程中, 该金融认证 中心 4在得知消费者 (付款方) 1指令讯号同时, 会立即紧急联络该交易商店所 在最近的军警单位 8, 在第一时间内前往救援处理, 所以能够大幅度提高消费 者 (付款方) 1交易的人身安全性。 Secondly, referring to FIG. 6, the parameters of the functional password box 7 can also be set to a “special emergency rescue code” function, for example, “0000” is displayed in the legend; that is, when the consumer (payer) 1 Personal thieves are restricted to the store (receiver) 2 Extortion and forced involuntary withdrawals At the time of birth, although the consumer (payer) 1 also received the same set of financial authorization password A with twelve digits "1 3-5678901_3-56" and staggered four blank spaces as before, but due to the final composite code The controlling power of the user (payer) 1 is controlled by the consumer (payer) 1. Therefore, the consumer (payer) 1 enters a blank cell with the emergency rescue parameter "0000" in the case where the robber is hosted, etc. Rescue instruction "1Q3½678901Q3 £ 56" composite financial authorization password A, although the financial certification center 4 will confirm the completion of the transaction and appropriate to the other party; however, during the transaction, the financial certification center 4 learns that the consumer (payment At the same time, it will immediately contact the nearest military police unit 8 where the transaction store is located and go to the rescue process as soon as possible, so it can greatly improve the personal safety of the consumer (payer) 1 transaction.
再者, 如图 7所示, 其中, 关于前述功能型密码盒 7的参数也可依照约定 被设定成 "紧急调高授权额度的功能, 例如图例中显示 "0911 " ; 即当消费 者 (付款方) 1身处于机场码头欲搭乘交通工具等特定场合,其发现授权额度可 能不足的情况下, 消费者 (付款方) 1虽然也同样接收到 " 1—3—5678901—3—56" 的金融证卡授权密码 A, 但是由于消费者 (付款方) 1本身自行输入紧急调高授 权额度的参数 "0911 " , 即可组成一紧急授权指令 " 1 ^567890U3156" 的 金融证卡授权密码 A, 该金融认证中心 4仍会同意并完成交易而拨款给对方, 但是, 事后该金融认证中心 4加计调高授权的服务费。  Further, as shown in FIG. 7, the parameters of the functional password box 7 can also be set as the function of “urgently increasing the authorized amount,” for example, “0911” is displayed in the legend; that is, when the consumer ( The payer) 1 is in the airport terminal and wants to take a transportation or other special occasions, and he finds that the authorized amount may be insufficient, the consumer (payer) 1 although he also received the "1-3—5678901—3—56" Financial card authorization password A, but because the consumer (payer) 1 himself enters the parameter "0911" for urgently increasing the authorization amount, it can constitute an emergency authorization instruction "1 ^ 567890U3156" financial card authorization password A, The financial certification center 4 will still agree to complete the transaction and allocate funds to the other party. However, afterwards, the financial certification center 4 will increase the authorized service fee.
上述列举的功能型密码盒的参数设计实施例及 "二阶段购物方式" 的交 易流程, 该行业的技术人员, 可依据本发明的精神与功能上允许的设计,. 就 其服务参数、 指令、 系统进行合并或再予以细分以及各种操作方式和流程的 简化或复杂化等, 进行应用上的改变, 但是, 这些可能的等效变更属于本发 明的设计构思; 依据本发明中金融认证中心系统的执行方法的精神所成立的 服务中心, 均包括在本发明申请专利的保护范围中。  The parameter design examples of the functional cipher box and the transaction process of the "two-stage shopping method" listed above can be performed by technical personnel in the industry according to the spirit and function of the present invention, in terms of service parameters, instructions, The system is merged or subdivided, and various operation methods and processes are simplified or complicated to make application changes. However, these possible equivalent changes belong to the design concept of the present invention; according to the financial certification center of the present invention The service centers established by the spirit of the systematic execution method are all included in the protection scope of the patent application of the present invention.
以上所述, 仅是本发明的较佳实施例而已, 并非对本发明作任何形式上 的限制, 凡是依据本发明的技术实质对以上实施例所作的任何简单修改、 等 同变化与修饰, .均仍属于本发明技术方案的范围内。 工业应用性  The above are only the preferred embodiments of the present invention, and are not intended to limit the present invention in any form. Any simple modifications, equivalent changes, and modifications made to the above embodiments in accordance with the technical essence of the present invention are still It belongs to the scope of the technical solution of the present invention. Industrial applicability
本发明的有益效果是: 包括至少一独立的金融认证中心, 其建置具有防 护装置的电子数据库, 以供消费者 (付款方)与商店 (收款方)申请设立认证的 管理服务, 该数据库设有计算机处理独立运算的系统程序', 通过该程序的随 机乱数编码编配即时产生一组唯一的金融证卡授权密码传递给消费者 (付款 方),据以进行交易; 该金融认证中心还需与消费者 (付款方)的授权银行及信 用卡联合中心互成一资讯连通认证体系, 据以提供金融交易过程所需资料的 联系; 消费者 (付款方)与商店 (收款方)分别备有至少一可供收发讯息的传讯 装置, 该传讯装置可通过网际网络 (或有线及无线路)与金融认证中心联机传 送交易资料; 由上述互连网构筑成一种二阶段购物方式的交易流程, 该流程 由消费者 (付款方)向商店 (收款方)消费起始,商店 (收款方)先将消费者 (付款 方)授权资料金额通过网际网络 (或有线及无线路)传送至金融认证中心确认, 该金融认证中心经计算机处理即时产生的金融证卡授权密码随即传送显现在 消费者 (付款方)的传讯装置, 继而由该消费者 (付款方)将该金融证卡的授权 密码传送给商店 (收款方)确认, 授权银行即依约核拨款项而完成金融的安全 交易。 本发明金融认证安全交易系统, 其构成新的交易机制与流程, 能够克 服现有的一阶段购物法存在的缺点, 其中, 消费者 (付款方)交易时的认证凭 据, 举凡信用卡号、 金融卡号、 身份证号、 护照证号等各种可供金融认证中 心认证编号即能进行交易, 无可置疑, 本发明金融认证安全交易系统使用空 间极宽广, 不局限于信用卡消费行为; 再者, 本发明采用二阶段购物方式, ' 其运用随机组合无可替代的金融证卡密码双次确认完成交易, 成为当今最安 全消费的金融交易机制; 又, 本发明可以通过具有组合功能参数的复合式金 融证卡密码, 达到金融市场中商店、 授权银行与消费者之间三赢的最大保障 功能; 具有较高的产业应用价值。 The beneficial effects of the present invention are: it includes at least one independent financial certification center, which establishes an electronic database with protective devices for consumers (payers) and stores (payees) to apply for establishment of certification Management service. The database is equipped with a computer program for processing independent calculations. The program randomly generates a unique set of financial card authorization passwords and passes them to consumers (payers) through random random number encoding and distribution of the program to conduct transactions; The financial authentication center also needs to establish an information connection authentication system with the authorized bank of the consumer (payer) and the credit card joint center to provide the information required for the financial transaction process; the consumer (payer) and the store (receive the payment) Party) are provided with at least one messaging device that can send and receive messages, and the messaging device can transmit transaction data online with the financial certification center through the Internet (or wired and wireless); the above-mentioned Internet constitutes a two-stage shopping transaction The process is initiated by the consumer (payer) to the store (receiver). The store (receiver) first transmits the amount of data authorized by the consumer (payer) through the Internet (or wired and wireless). Confirm to the financial certification center, the financial certification center's computer-generated financial card authorization password is transmitted immediately and appears in the The consumer (payer) 's messaging device, and then the consumer (payer) transmits the authorization code of the financial card to the store (receiver) for confirmation, and the authorized bank completes the financial security according to the agreement transaction. The financial authentication and secure transaction system of the present invention constitutes a new transaction mechanism and process, which can overcome the shortcomings of the existing one-stage shopping method. Among them, the authentication credentials of a consumer (payer) during a transaction are exemplified by credit card numbers and financial card numbers. , ID card number, passport card number, and other financial certification center certification numbers are available for transactions, there is no doubt that the financial certification security transaction system of the present invention has a very wide use space, not limited to credit card consumption behavior; furthermore, this The invention adopts a two-stage shopping method, which uses a random combination of irreplaceable financial card passwords to double-check to complete the transaction, and has become the most secure financial transaction mechanism for consumption today. In addition, the present invention can adopt a composite finance with a combination of functional parameters The password of the card can achieve the maximum protection function of the win-win between the store, the authorized bank and the consumer in the financial market; it has high industrial application value.

Claims

权利要求 Rights request
1、 一种金融认证安全交易系统, 其特征在于, 包括:至少一个独立的金 融认证中心, 该金融认证中心建置一个具有防护装置的电子数据库, 该电子 数据库为给付款方与收款方申请设立认证提供管理服务, 该电子数据库还设 有通过计算机处理的独立运算的系统程序, 通过该程序的随机乱数码编配即 时产生一组唯一的金融授权密码, 将该密码传达给付款方, 使付款方据以进 行交易; 该金融认证中心分别与付款方的授权银行及信用卡联合中心互成一 资讯连通认证体系, 据以提供金融交易过程所需资料的联系; 该付款方和收 款方分别备有至少一组可供收发讯息的传讯装置, 该传讯装置通过网际网络 与金融认证中心联机传送交易资料; 由上述互连网构筑成一种二阶段购物方 式的交易流程, 该流程系由付款方向收款方消费起始, 收款方先将付款方授 权资料金额通过网际网络传送至金融认证中心确认, 该金融认证中心经计算 机处理即时产生的金融授权密码随即传送显现在付款方的传讯装置, 继而由 付款方将该金融授权密码传送给收款方确认, 授权银行即可依约核拨款项, 完成金融的安全交易。 1. A financial authentication security transaction system, comprising: at least one independent financial authentication center, the financial authentication center establishes an electronic database with a protective device, and the electronic database is applied to payers and payees Establish authentication and provide management services. The electronic database is also provided with a system program for independent calculations processed by a computer. A random set of random digital assignments of the program is used to generate a set of unique financial authorization passwords in real time. The payer conducts transactions based on this; The financial certification center and the authorised bank of the payer and the credit card joint center form an information connection authentication system to provide the information required for the financial transaction process; the payer and the payee separately prepare There is at least one messaging device that can send and receive messages. The messaging device communicates transaction data online with the financial certification center through the Internet. The above-mentioned Internet constitutes a two-stage shopping method transaction process. When consumption starts, the payee will pay first The amount of the authorized data of the party is transmitted to the financial certification center for confirmation through the Internet. The financial certification center immediately processed the financial authorization password generated by the computer and then transmitted to the messaging device of the payer. Party confirmed that the authorized bank can verify the appropriation according to the contract and complete the secure financial transaction.
2、 根据权利要求 1所述的金融认证安全交易系统, 其特征在于, 所述金 融授权密码以 8至 16位数码为佳。  2. The financial authentication secure transaction system according to claim 1, wherein the financial authorization password is preferably 8 to 16 digits.
3、 根据权利要求 1所述的金融认证安全交易系统, 其特征在于, 所述消 费者与商店的传讯装置为 PM无线区网、 移动电话或计算机。  3. The financial authentication secure transaction system according to claim 1, wherein the communication device between the consumer and the store is a PM wireless area network, a mobile phone, or a computer.
4、 根据权利要求 1所述的金融认证安全交易系统, 其特征在于, 所述付 款方交易时的认证凭据为足以提供金融认证中心认证交易者身份即能进行交 易的信用卡号、 金融卡号、 身份证号、 护照证号的编号。  4. The financial authentication security transaction system according to claim 1, wherein the authentication credentials of the payer during the transaction are a credit card number, a financial card number, and an identity sufficient to provide a financial authentication center to authenticate the identity of the trader, that is, to be able to conduct transactions. ID number, passport ID number.
5、 一种金融认证安全交易系统, 其特征在于, 包括: 至少一个独立的金 融认证中心, 该金融认证中心建置一个具有防护装置的电子数据库, 该电子 数据库给付款方和收款方申请设立认证提供管理服务及在立案同时发给付款 方具有多组功能参数的功能型密码盒; 该数据库还设有通过计算机处理的独 立运算系统程序, 该程序的随机乱数码编配即时产生一组 "多位空格错开" 的授权密码, 将该授权密码传达给付款方, 供付款方手中自行与预设的功能 型密码盒填空复合组成一交易所需的复合式金融授权密码, 根据复合式金融 授权密码进行交易; 该金融认证中心分别与付款方的授权银行及信用卡联合 中心互成一资讯连通认证体系, 以提供金融交易过程所需资料的联系; 付款 方与收款方分别备有至少一组供收发讯息的传讯装置, 该传讯装置通过网际 网络与金融认证中心联机传送交易资料; 由上述互连网构筑成一种二阶段购 物方式的交易流程, 该流程由付款方向收款方消费起始, 收款方先将付款方 授权资料金额通过网际网络传送至金融认证中心确认; 该金融认证中心经计 算机处理产生的金融授权密码立即传送显现在付款方的传讯装置, 继而由付 款方自行选定一组参数的功能型密码盒, 复合组成一组复合式的金融授权密 码, 传送给收款方确认后, 付款方授权银行即依约核拨款项, 完成金融的安 全交易。 5. A financial certification secure transaction system, comprising: at least one independent financial certification center, the financial certification center establishes an electronic database with a protective device, and the electronic database applies to the payer and payee for establishment Authentication provides management services and a functional password box with multiple sets of functional parameters to the payer at the same time when the case is registered; the database also has an independent computing system program processed by the computer, and a random random digital arrangement of the program generates a group immediately " A multi-space staggered "authorization password" is transmitted to the payer for the payer to fill in the blank with the preset functional password box to form a composite financial authorization password required for a transaction. According to the composite finance Authorized password for transaction; The financial certification center and the authorizing bank of the payer and the credit card joint center each form an information connection authentication system to provide the information required for the financial transaction process; the payer and the payee each have at least one group A messaging device for sending and receiving messages. The messaging device communicates transaction data online with a financial certification center via the Internet; a two-stage shopping process is constructed from the above-mentioned Internet. First, the amount of authorized data of the payer is transmitted to the financial certification center via the Internet for confirmation; the financial authorization password generated by the financial certification center through computer processing is immediately transmitted to the messaging device of the payer, and then the payer selects a set of parameters The functional password box is composed of a set of composite financial authorization passwords, which are transmitted to the payee for confirmation. The payer authorizes the bank to verify the appropriation according to the contract and complete the secure financial transaction.
6、 根据权利要求 5所述的金融认证安全交易系统, 其特征在于, 所述金 融授权密码以 8至 16位数码为佳, 该授权密码的多位错开空格恰供功能型密码 盒密码的依序填入组合。  6. The financial authentication and secure transaction system according to claim 5, wherein the financial authorization password is preferably 8 to 16 digits, and a plurality of staggered spaces of the authorization password are provided for the function password box password. Orderly fill in the combination.
7、 根据权利要求 5所述的金融认证安全交易系统, 其特征在于, 所述付 款方交易时的认证凭据为足供金融认证中心认证即能进行交易的信用卡号、 金融卡号、 身份证号、 护照证号的编号。  7. The financial authentication secure transaction system according to claim 5, wherein the authentication credentials of the payer during the transaction are credit card numbers, financial card numbers, ID numbers, Passport number.
8、 根据权利要求 5所述的金融认证安全交易系统, 其特征在于, 所述功 能型密码盒由金融认证中心预先设定为具有特定授权服务指令的参数, 该参 数与金融证卡授权密码组合, 构成付款方所需指定交易内容。  8. The financial authentication secure transaction system according to claim 5, wherein the functional password box is preset by a financial authentication center as a parameter with a specific authorized service instruction, and the parameter is combined with a financial card authorization password , Constituting the specified transaction content required by the payer.
9、 根据权利要求 5所述的金融认证安全交易系统, 其特征在于, 所述功 能型密码盒包括一组由金融认证中心预先设定为具有报警紧急营救指令的参 数, 该参数供付款方人身被挟持时完成交易过程, 由金融认证中心的客服人 员通报军警单位迅速前往交易地点营救。  9. The financial authentication secure transaction system according to claim 5, wherein the functional password box includes a set of parameters preset by a financial authentication center to have an alarm emergency rescue instruction, and the parameters are provided to the person of the payer. When being held, the transaction process was completed, and the customer service staff of the Financial Certification Center informed the military and police units to quickly go to the transaction site for rescue.
PCT/CN2004/000114 2003-07-16 2004-02-11 A safe transaction system for finance authentication WO2005008549A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN 03130408 CN1570928A (en) 2003-07-16 2003-07-16 Financial certification security transaction system
CN03130408.7 2003-07-16

Publications (1)

Publication Number Publication Date
WO2005008549A1 true WO2005008549A1 (en) 2005-01-27

Family

ID=34069978

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2004/000114 WO2005008549A1 (en) 2003-07-16 2004-02-11 A safe transaction system for finance authentication

Country Status (2)

Country Link
CN (1) CN1570928A (en)
WO (1) WO2005008549A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104599125A (en) * 2013-10-30 2015-05-06 中华电信股份有限公司 Payment service system of mobile phone application software and method thereof

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2002046985A2 (en) * 2000-12-07 2002-06-13 Cellport Limited System and method of using wireless communication devices to conduct financial transactions
CN1388481A (en) * 2001-05-25 2003-01-01 林义富 Financial transaction safety system and method
CN1395716A (en) * 2000-01-24 2003-02-05 智能信用系统公司 Payment device and method for secure payment

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1395716A (en) * 2000-01-24 2003-02-05 智能信用系统公司 Payment device and method for secure payment
WO2002046985A2 (en) * 2000-12-07 2002-06-13 Cellport Limited System and method of using wireless communication devices to conduct financial transactions
CN1388481A (en) * 2001-05-25 2003-01-01 林义富 Financial transaction safety system and method

Also Published As

Publication number Publication date
CN1570928A (en) 2005-01-26

Similar Documents

Publication Publication Date Title
US8725638B2 (en) Method and system for payment authorization and card presentation using pre-issued identities
US6138107A (en) Method and apparatus for providing electronic accounts over a public network
US6078902A (en) System for transaction over communication network
CN102792325B (en) System and method for safely confirming transaction
Harb et al. SecureSMSPay: secure SMS mobile payment model
CN103562973B (en) Electronic system for quickly and securely processing transactions using mobile devices
CN106462843A (en) Master applet for secure remote payment processing
CN103198405A (en) Intelligent payment method and system based on camera scanning verification
CN101388095A (en) Method and apparatus for performing delegated transactions
WO2002017181A1 (en) Electronic payment methods
CN104537529B (en) A kind of live offline electronic payment transaction system and method based on portable terminal device general-purpose interface
CN103077454A (en) Synchronous payment system
CN104657847A (en) Method for payment with limit code
CN116802661A (en) Token-based out-of-chain interaction authorization
CN101197028A (en) Electric paying method based on trade code
TWI278213B (en) One kind of fund flow authentication security trade system
WO2009137971A1 (en) Method and system of secure payment based on electronic contracts
CN111612486A (en) Online electronic coupon deduction method based on tamper-proof encryption algorithm
WO2005008549A1 (en) A safe transaction system for finance authentication
RU2555233C2 (en) Method for bank card holder to control authorised transactions in payment system using bank card restricting fraudulent transactions in case of compromise of card
CA2993110C (en) Online transaction method, device and system
KR20220093131A (en) Systems and methods for improved electronic delivery of resources via blockchain
TWM602232U (en) Two-dimensional barcode verification system for payment
CN101309141A (en) Safe network transaction system
KR20030082018A (en) Method of a credit card approval using interactive short message service

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A1

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A1

Designated state(s): BW GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

DPEN Request for preliminary examination filed prior to expiration of 19th month from priority date (pct application filed from 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
122 Ep: pct application non-entry in european phase