WO2014121721A1 - Carte à puce dotée d'une fonction de signature électronique et système et procédé de transaction par carte à puce - Google Patents
Carte à puce dotée d'une fonction de signature électronique et système et procédé de transaction par carte à puce Download PDFInfo
- Publication number
- WO2014121721A1 WO2014121721A1 PCT/CN2014/071657 CN2014071657W WO2014121721A1 WO 2014121721 A1 WO2014121721 A1 WO 2014121721A1 CN 2014071657 W CN2014071657 W CN 2014071657W WO 2014121721 A1 WO2014121721 A1 WO 2014121721A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- smart card
- password
- terminal
- message
- transaction
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims abstract description 79
- 238000012795 verification Methods 0.000 claims description 168
- 238000012790 confirmation Methods 0.000 claims description 86
- 238000004891 communication Methods 0.000 claims description 43
- 230000006870 function Effects 0.000 description 102
- 230000005540 biological transmission Effects 0.000 description 13
- 230000003993 interaction Effects 0.000 description 13
- 230000008569 process Effects 0.000 description 8
- 238000010586 diagram Methods 0.000 description 7
- 230000003287 optical effect Effects 0.000 description 5
- 238000004364 calculation method Methods 0.000 description 4
- 230000001960 triggered effect Effects 0.000 description 4
- 238000003491 array Methods 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/409—Device specific authentication in transaction processing
- G06Q20/4097—Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3825—Use of electronic signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0877—Generation of secret information including derivation or calculation of cryptographic keys or passwords using additional device, e.g. trusted platform module [TPM], smartcard, USB or hardware security module [HSM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/56—Financial cryptography, e.g. electronic payment or e-cash
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/80—Wireless
- H04L2209/805—Lightweight hardware, e.g. radio-frequency identification [RFID] or sensor
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Business, Economics & Management (AREA)
- Computer Networks & Wireless Communication (AREA)
- Accounting & Taxation (AREA)
- Signal Processing (AREA)
- General Business, Economics & Management (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Finance (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Telephone Function (AREA)
Abstract
L'invention concerne une carte à puce dotée d'une fonction de signature électronique et un système et un procédé de transaction par carte à puce. Le procédé comprend les étapes suivantes : A. une carte à puce accède à un terminal et reçoit un paquet de transaction; B. la carte à puce génère un mot de passe joint; C. la carte à puce génère un paquet de signature en fonction du paquet de transaction et du mot de passe joint; D. la carte à puce envoie au moins le paquet de signature au terminal; E. le terminal obtient un mot de passe d'authentification, et envoie au moins le paquet de transaction, le paquet de signature et le mot de passe d'authentification à un système de serveur d'arrière-plan; F. le serveur de système d'arrière-plan authentifie le paquet de signature et le mot de passe d'authentification et exécute une opération de transaction en fonction du paquet de transaction une fois l'authentification effectuée avec succès.
Applications Claiming Priority (16)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201320069875.8 | 2013-02-06 | ||
CN201310047316.1 | 2013-02-06 | ||
CN201320069875 | 2013-02-06 | ||
CN201310047316 | 2013-02-06 | ||
CN201310070783.6 | 2013-03-06 | ||
CN201310071602.1A CN103136667B (zh) | 2013-03-06 | 2013-03-06 | 具有电子签名功能的智能卡、智能卡交易系统及方法 |
CN201320102164 | 2013-03-06 | ||
CN201320102164.6 | 2013-03-06 | ||
CN201310070753.5A CN103116847B (zh) | 2013-02-06 | 2013-03-06 | 具有电子签名功能的智能卡、智能卡交易系统及方法 |
CN201310070783.6A CN103136664B (zh) | 2013-03-06 | 2013-03-06 | 具有电子签名功能的智能卡交易系统及方法 |
CN201320102160 | 2013-03-06 | ||
CN201320102167.X | 2013-03-06 | ||
CN201310070753.5 | 2013-03-06 | ||
CN201320102160.8 | 2013-03-06 | ||
CN201310071602.1 | 2013-03-06 | ||
CN 201320102167 CN203242029U (zh) | 2013-02-06 | 2013-03-06 | 具有电子签名功能的智能卡及智能卡交易系统 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2014121721A1 true WO2014121721A1 (fr) | 2014-08-14 |
Family
ID=51299243
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2014/071657 WO2014121721A1 (fr) | 2013-02-06 | 2014-01-28 | Carte à puce dotée d'une fonction de signature électronique et système et procédé de transaction par carte à puce |
Country Status (1)
Country | Link |
---|---|
WO (1) | WO2014121721A1 (fr) |
Citations (8)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101000537A (zh) * | 2007-01-05 | 2007-07-18 | 南京瑞康资讯有限公司 | 金融pos语音提示器及其语音提示方法 |
US20070241180A1 (en) * | 2006-04-14 | 2007-10-18 | Harexinfotech Inc. | Method of settling signatureless payment of bank card sales slip in mobile terminal, and system therefor |
CN101131737A (zh) * | 2006-08-23 | 2008-02-27 | 江国庆 | 非接触式信用卡及金融卡及其非接触式交易方法 |
CN101894426A (zh) * | 2009-05-18 | 2010-11-24 | 北京银融科技有限责任公司 | 一种交易的方法及交易系统 |
CN102891842A (zh) * | 2012-09-07 | 2013-01-23 | 北京天龙融和软件有限公司 | 一种安全认证方法及系统 |
CN103116847A (zh) * | 2013-02-06 | 2013-05-22 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡、智能卡交易系统及方法 |
CN103136667A (zh) * | 2013-03-06 | 2013-06-05 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡、智能卡交易系统及方法 |
CN103136664A (zh) * | 2013-03-06 | 2013-06-05 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡交易系统及方法 |
-
2014
- 2014-01-28 WO PCT/CN2014/071657 patent/WO2014121721A1/fr active Application Filing
Patent Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070241180A1 (en) * | 2006-04-14 | 2007-10-18 | Harexinfotech Inc. | Method of settling signatureless payment of bank card sales slip in mobile terminal, and system therefor |
CN101131737A (zh) * | 2006-08-23 | 2008-02-27 | 江国庆 | 非接触式信用卡及金融卡及其非接触式交易方法 |
CN101000537A (zh) * | 2007-01-05 | 2007-07-18 | 南京瑞康资讯有限公司 | 金融pos语音提示器及其语音提示方法 |
CN101894426A (zh) * | 2009-05-18 | 2010-11-24 | 北京银融科技有限责任公司 | 一种交易的方法及交易系统 |
CN102891842A (zh) * | 2012-09-07 | 2013-01-23 | 北京天龙融和软件有限公司 | 一种安全认证方法及系统 |
CN103116847A (zh) * | 2013-02-06 | 2013-05-22 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡、智能卡交易系统及方法 |
CN203242029U (zh) * | 2013-02-06 | 2013-10-16 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡及智能卡交易系统 |
CN103136667A (zh) * | 2013-03-06 | 2013-06-05 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡、智能卡交易系统及方法 |
CN103136664A (zh) * | 2013-03-06 | 2013-06-05 | 天地融科技股份有限公司 | 具有电子签名功能的智能卡交易系统及方法 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103136664B (zh) | 具有电子签名功能的智能卡交易系统及方法 | |
CN106656510B (zh) | 一种加密密钥获取方法及系统 | |
WO2014161438A1 (fr) | Jeton de mot de passe dynamique, et procédé et système de transmission de données pour le jeton de mot de passe dynamique | |
WO2014161469A1 (fr) | Procédé et système de traitement de demandes d'opération | |
CN104243451A (zh) | 一种信息交互方法、系统和智能密钥设备 | |
CN107896147B (zh) | 一种基于国密算法协商临时会话密钥的方法及其系统 | |
CN103532719B (zh) | 动态口令生成方法和系统、交易请求的处理方法和系统 | |
CN203242029U (zh) | 具有电子签名功能的智能卡及智能卡交易系统 | |
CN103516525B (zh) | 一种动态口令生成方法和系统 | |
WO2014161436A1 (fr) | Jeton de signature électronique, et procédé et système permettant au jeton de signature électronique de répondre à une demande d'utilisation | |
WO2016112675A1 (fr) | Procédé de traitement de système de libre service financier | |
WO2014201907A1 (fr) | Procédé et système de signature électronique | |
WO2014173288A1 (fr) | Dispositif de cryptage/décryptage et procédé et système de traitement d'informations | |
WO2014194730A1 (fr) | Procédé et système de traitement d'une demande d'exploitation | |
CN104243162A (zh) | 一种信息交互方法、系统和智能密钥设备 | |
CN103198401B (zh) | 具有电子签名功能的智能卡交易方法及系统 | |
WO2019165571A1 (fr) | Procédé et système de transmission de données | |
US20240106633A1 (en) | Account opening methods, systems, and apparatuses | |
CN103136667B (zh) | 具有电子签名功能的智能卡、智能卡交易系统及方法 | |
WO2014173233A1 (fr) | Procédé de traitement d'informations et appareil de déchiffrage | |
WO2014187209A1 (fr) | Procede et systeme de sauvegarde d'informations dans un jeton de signature electronique | |
WO2015000332A1 (fr) | Procédé de transmission de données de signature et jeton de signature électronique | |
CN203338403U (zh) | 具有电子签名功能的智能卡交易系统 | |
WO2014121721A1 (fr) | Carte à puce dotée d'une fonction de signature électronique et système et procédé de transaction par carte à puce | |
WO2014135014A1 (fr) | Procédé et système de transaction pour une carte à puce ayant une fonction de signature électronique |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 14749615 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 14749615 Country of ref document: EP Kind code of ref document: A1 |