CN103544598A - Financial transaction safety certification system - Google Patents
Financial transaction safety certification system Download PDFInfo
- Publication number
- CN103544598A CN103544598A CN201310460624.7A CN201310460624A CN103544598A CN 103544598 A CN103544598 A CN 103544598A CN 201310460624 A CN201310460624 A CN 201310460624A CN 103544598 A CN103544598 A CN 103544598A
- Authority
- CN
- China
- Prior art keywords
- financial transaction
- module
- transaction security
- security certification
- certification system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
- G06Q20/40145—Biometric identity checks
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a financial transaction safety certification system which comprises a client and a server. The client is connected with the server by a network and comprises a controller, a fingerprint acquisition module and a communication module, the fingerprint acquisition module is used for acquiring fingerprints of users, and the client can be communicated with the server via the communication module; both the fingerprint acquisition module and the communication module are connected with the controller; the server comprises a certification device and an authorization device connected with the certification device. The financial transaction safety certification system has the advantages that double certification effects are realized by the aid of the fingerprints and passwords inputted via a keyboard, and the fingerprints are unique biological characteristics of human bodies, so that the reliability and the safety of an integral financial transaction system can be improved owing to fingerprint identification and certification, and safe and reliable financial transaction can be carried out.
Description
Technical field
The present invention relates to electronic business affaris safety trade technical field, particularly a kind of financial transaction security certification system.
Background technology
Along with the development of computer technology and mechanics of communication, bank electric payment is widely adopted, as debit card and Credit Card Payments, utilize terminal or palm PC online payment, landline telephone and mobile phone paying.Mobile payment, because it has convenient, flexiblely, is subject to businessman or consumer's favor especially, and its business develops rapidly, and secure payment is the matter of utmost importance that transaction each side pays close attention to for this reason.
The authentication of the existing modes of payments common are following several:
1) by the mode authenticating identity of user name, password, as Alipay;
2) the purely consumption based on card, as mass transit card with can be used for the Citizen Card Item etc. of consumption;
3) by brush bank card, and input the mode of password, as ATM, POS machine etc.;
4) product of Payment Card and physical certifying apparatus bound, as Payment Card adds dynamic password card, Payment Card adds USB Key etc.;
5) wireless payment mode, as mobile-phone payment etc.
Several modes are all the authentications based on thing above, but not authentication based on people all exists certain security risk.
First, merely the authentication based on card and user name, pin mode is the most unsafe, once card loss or user name, password are stolen, the property in card will soon lose.
And the authentication of alternate manner, owing to being identification based on to physical equipment, once device losses, the risk that exists equally property to be stolen.
In the face of network trading mode more and more in fashion, need badly and develop a set of can simple and easy identification identity can reaching again and confirm simple and practical financial transaction security certification system.
Summary of the invention
For this reason, the present invention proposes a kind of financial transaction security certification system, can eliminate fully one or more problems that restriction and defect due to prior art cause.
Additional advantages of the present invention, object and characteristic, a part will be elucidated in the following description, and another part will be significantly or be acquired from enforcement of the present invention by the investigation of the explanation to below for those of ordinary skill in the art.By the structure of pointing out especially in the instructions at word and claims and accompanying drawing, can realize and obtain the object of the invention and advantage.
The invention provides a kind of financial transaction security certification system, described system comprises client and server, and described client is connected with server by network, it is characterized in that,
Described client comprises controller, finger print acquisition module and communication module, and described finger print acquisition module is for gathering user's fingerprint, and described communication module is for communicating by letter between client and server; Described finger print acquisition module is all connected with described controller with communication module;
Described server comprises authenticate device and the authorization device being connected with described authenticate device.
Preferably, described financial transaction security certification system further comprises for generating the Keysheet module of disposal password.
Preferably, described Keysheet module is electrically connected to the keyboard signal input end of described controller.
Preferably, described financial transaction security certification system further comprises display module, and described display module is used for indication and the process of display operation or supplies the recorded information of staff's inquiry.
Preferably, described display module is electrically connected to the display output terminal of described controller.
Preferably, described display module is LCD display.
Preferably, described financial transaction security certification system further comprises power module, and described power module is connected with the power input of described controller.
Preferably, described authenticate device comprises for storing the memory module of user's fingerprint.
Preferably, between described client and server, adopt wired or wireless network to connect.
Preferably, described cable network is any one in the Internet, Ethernet or VPN special line.
Preferably, described wireless network is any one in GSM, CDMA1X, GPRS, infrared or bluetooth.
Preferably, described client is any one in mobile phone, PDA or notebook computer.
The present invention has realized the double authentication of fingerprint and keyboard input password, due to the fingerprint uniqueness biological characteristic that is human body, therefore the present invention adopts fingerprint recognition authentication, reliability and the security that can improve whole financial transaction system, thus can carry out safe and reliable financial transaction.
Accompanying drawing explanation
Fig. 1 is according to the structural representation embodiment of the present invention, financial transaction security certification system.
Embodiment
Below in conjunction with accompanying drawing, embodiment of the present invention is described further.
The core concept of the secure payment that the present invention adopts is: the initial scale-of-two hashed value of the pre-stored assembly through authentication in authentication, payment module when paying generation in client is submitted the scale-of-two hashed value of start assembly to authentication, authentication is verified initial scale-of-two hashed value and the scale-of-two hashed value of the assembly of receiving mutually, is completed secure payment process.The safety chip in payment module of take during payment is clean boot code, calculates the scale-of-two hashed value of all assemblies that started of payment module, and scale-of-two hashed value is stored in the storer of safety chip.
As shown in Figure 1, financial transaction security certification system provided by the present invention comprises client 1 and server 2, described client 1 is connected with server 2 by network 3, described client 1 comprises controller 11, finger print acquisition module 12 and communication module 14, and described finger print acquisition module 12 is all connected with described controller 11 with communication module 14; Described server 2 comprises authenticate device 21 and the authorization device 22 being connected with described authenticate device 21.
The client 1 of the present embodiment can be arranged on the places such as bank counter, market sales counter, ATM (ATM (automatic teller machine)).Finger print acquisition module 12 in client 1 is electrically connected to the fingerprint signal end of controller 11, makes controller 11 by finger print acquisition module 12, to gather user's fingerprint, identifies or stores.
The client 1 of the present embodiment further comprises that Keysheet module 13 is electrically connected to the keyboard signal input end of controller 11 for generating the Keysheet module 13 of disposal password; In like manner, in order to guarantee financial transaction system safety and reliable more, the present invention can limit user when by fingerprint recognition in client 1, needs the disposal password that input keyboard module 13 generates simultaneously, just can conclude the business.
The client 1 of the present embodiment further comprises display module 15 and power module 16, display module 15 is electrically connected to the display output terminal of controller 11, display module 15 is for the indication that operates and process or for the information such as record of staff's inquiry, power module 16 is connected with the power input of controller 11, for each circuit module of client 1 provides power supply.
The display module 15 of the present embodiment is LCD display.
In the present embodiment, the memory storage by network, the finger print data of acquisition being sent in the authenticate device 21 of server 2 is stored and confirms.Authenticate device 21 arranges a memory storage, for storing user's fingerprint, so that follow-up finger print data contrast authentication, user need pass through this authentication procedure when transaction, side is accepted the payment program of transaction, treats that it is input to the Hou, of financial circulation company financial circulation company by credit card funded payment data and to authorization device 22, carries out authorized application, after the mandate of the transaction with credit of the device 22 of obtaining the authorization is responded, can complete payment.
Financial transaction safety certifying method of the present invention comprises the following steps:
1, set up connecting between mobile client terminal and server, connect and adopt wired (the Internet, Ethernet, VPN special line) or wireless (GSM, CDMA1X, GPRS, infrared, bluetooth) net connection.In mobile client terminal, be provided with payment module and safety chip.Authentication is pre-stored in mobile client each assembly complete scale-of-two hashed value of illegally not distorted and PKI of the embedded safety chip of payment module under factory state, and the digital certificate that can also adopt the CA of third party authoritative institution to sign and issue replaces the PKI of safety chip.
2, the precedence that payment module starts according to assembly, and be stored in the storer of safety chip by the scale-of-two hashed value of the computation modules such as one-way hash function MD5, SHA-1 or SHA-2 the scale-of-two hashed value that computation module is obtained.
3, when mobile client pays, payment module is carried out one-way hash function computing again by the scale-of-two hashed value that is stored in the start assembly of safety chip, obtain a scale-of-two hashed value that new mobile client is total, the private key of then usining in safety chip utilizes asymmetric arithmetic as key to total scale-of-two hashed value, as RSA, DSA etc. are encrypted, the total scale-of-two hashed value of mobile client after encrypting and the scale-of-two hashed value that started each assembly are passed through to wired or wireless Internet Transmission to bank finance center, bank finance center is verified data transmission again to authentication.
4, authentication (server) receives after the data of sending at bank finance center, first the scale-of-two hashed value of each assembly of the mobile client receiving is obtained to a total scale-of-two hashed value by one-way hash algorithm, then total scale-of-two hashed value of the mobile client receiving being sent is usingd the PKI of mobile client and is decrypted as key, total scale-of-two hashed value before being encrypted, then the total scale-of-two hashed value after the total scale-of-two hashed value calculating and deciphering is verified, if authentication failed, to bank finance center, return to authentication failed information, if the verification passes, enter next step.
5, the title that authentication is searched each assembly of the mobile client of having stored to the scale-of-two hashed value of each assembly of payment module receiving in the database of authentication is verified, if found the assembly name of coupling, carried out the checking of the information of scale-of-two hashed value, judge that whether two scale-of-two hashed values are identical, carry out the checking of next group scale-of-two hashed value and assembly name, after checking completes, if the verification passes, to bank finance center, return to the information being proved to be successful, if authentication failed, to bank finance center, return to the information of authentication failed.
Whether the result judgement payment that 6, bank finance center is returned according to authentication continues, if the feedback receiving is successful information, continues to pay, if failure information is ended payment.
7, bank finance center is finally the result that judges whether to pay, success or failed information feeds back to mobile client, and payment process finishes.
The startup flow process of client terminal of the present invention is as follows:
1, from clean boot code, start, clean boot code calculates the scale-of-two hashed value of the control module loading code of the mobile client of reading from the storer of mobile client, and the scale-of-two hashed value of control module loading code is stored in the storer of safety chip;
2, clean boot code starts control module loading code, and control is transferred to control module loading code;
3, control module loading code is read the code of control module from mobile terminal memory, calculates its scale-of-two hashed value, and scale-of-two hashed value is stored in the storer of safety chip;
4, control module read the code start control module code from the storer of mobile terminal, and control is transferred to control module code;
5, control module if start certain program, also will, before starting this program, be calculated its scale-of-two hashed value, and scale-of-two hashed value is stored in to the storer of safety chip.
Client of the present invention can be any one in mobile phone, PDA, notebook computer.
Above content is only preferred embodiment of the present invention, for those of ordinary skill in the art, according to thought of the present invention, all will change in specific embodiments and applications, and this description should not be construed as limitation of the present invention.
Claims (12)
1. a financial transaction security certification system, described system comprises client and server, described client is connected with server by network, it is characterized in that,
Described client comprises controller, finger print acquisition module and communication module, and described finger print acquisition module is for gathering user's fingerprint, and described communication module is for communicating by letter between client and server; Described finger print acquisition module is all connected with described controller with communication module;
Described server comprises authenticate device and the authorization device being connected with described authenticate device.
2. financial transaction security certification system according to claim 1, is characterized in that, described financial transaction security certification system further comprises for generating the Keysheet module of disposal password.
3. financial transaction security certification system according to claim 2, is characterized in that, described Keysheet module is electrically connected to the keyboard signal input end of described controller.
4. financial transaction security certification system according to claim 1, it is characterized in that, described financial transaction security certification system further comprises display module, and described display module is used for indication and the process of display operation or supplies the recorded information of staff's inquiry.
5. financial transaction security certification system according to claim 4, is characterized in that, described display module is electrically connected to the display output terminal of described controller.
6. according to the financial transaction security certification system described in claim 4 or 5, it is characterized in that, described display module is LCD display.
7. financial transaction security certification system according to claim 4, is characterized in that, described financial transaction security certification system further comprises power module, and described power module is connected with the power input of described controller.
8. financial transaction security certification system according to claim 1, is characterized in that, described authenticate device comprises for storing the memory module of user's fingerprint.
9. financial transaction security certification system according to claim 1, is characterized in that, adopts wired or wireless network to connect between described client and server.
10. financial transaction security certification system according to claim 9, is characterized in that, described cable network is any one in the Internet, Ethernet or VPN special line.
11. financial transaction security certification systems according to claim 9, is characterized in that, described wireless network is any one in GSM, CDMA1X, GPRS, infrared or bluetooth.
12. financial transaction security certification systems according to claim 1, is characterized in that, described client is any one in mobile phone, PDA or notebook computer.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310460624.7A CN103544598A (en) | 2013-09-30 | 2013-09-30 | Financial transaction safety certification system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310460624.7A CN103544598A (en) | 2013-09-30 | 2013-09-30 | Financial transaction safety certification system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103544598A true CN103544598A (en) | 2014-01-29 |
Family
ID=49968029
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310460624.7A Pending CN103544598A (en) | 2013-09-30 | 2013-09-30 | Financial transaction safety certification system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103544598A (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105701663A (en) * | 2016-01-18 | 2016-06-22 | 连连银通电子支付有限公司 | Electronic account secret payment system |
| CN106228368A (en) * | 2016-08-03 | 2016-12-14 | 四川易想电子商务有限公司 | A kind of method for secure transactions of multiple authentication |
| CN106779724A (en) * | 2017-01-18 | 2017-05-31 | 西多多信息科技(北京)有限公司 | A kind of limited discretion system and method based on Third-party payment |
| CN108364394A (en) * | 2017-12-28 | 2018-08-03 | 合肥长天信息技术有限公司 | A kind of public transport delay toll collection system |
| CN115473673A (en) * | 2022-08-03 | 2022-12-13 | 浙江省电子信息产品检验研究院 | Industrial equipment authorization service information verification and identification system based on block chain gateway |
-
2013
- 2013-09-30 CN CN201310460624.7A patent/CN103544598A/en active Pending
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105701663A (en) * | 2016-01-18 | 2016-06-22 | 连连银通电子支付有限公司 | Electronic account secret payment system |
| CN106228368A (en) * | 2016-08-03 | 2016-12-14 | 四川易想电子商务有限公司 | A kind of method for secure transactions of multiple authentication |
| CN106779724A (en) * | 2017-01-18 | 2017-05-31 | 西多多信息科技(北京)有限公司 | A kind of limited discretion system and method based on Third-party payment |
| CN108364394A (en) * | 2017-12-28 | 2018-08-03 | 合肥长天信息技术有限公司 | A kind of public transport delay toll collection system |
| CN115473673A (en) * | 2022-08-03 | 2022-12-13 | 浙江省电子信息产品检验研究院 | Industrial equipment authorization service information verification and identification system based on block chain gateway |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20210081928A1 (en) | Systems and methods for linking devices to user accounts | |
| US20210226797A1 (en) | Authentication in ubiquitous environment | |
| CN102696212B (en) | There is the compact safety device of transaction risk grade approval ability | |
| JP6214724B2 (en) | Method, apparatus and system for secure provisioning, transmission and authentication of payment data | |
| US8112627B2 (en) | System for self-service recharging and method for the same | |
| CN112805737A (en) | Techniques for token proximity transactions | |
| US20150127553A1 (en) | Intelligent payment card and a method for performing secure transactions using the payment card | |
| US20090172402A1 (en) | Multi-factor authentication and certification system for electronic transactions | |
| AU2014313996A1 (en) | Apparatus and methods for identity verification | |
| US20190065919A1 (en) | Payment Card With Integrated Biometric Sensor And Power Source | |
| CN101216915B (en) | A secured mobile payment method | |
| JP2015138545A (en) | Electronic payment system and electronic payment method | |
| CN103544598A (en) | Financial transaction safety certification system | |
| US11868988B2 (en) | Devices and methods for selective contactless communication | |
| CN110807624A (en) | Digital currency hardware cold wallet system and transaction method thereof | |
| AU2019204157A1 (en) | Method, system and device for e-commerce payment intelligent access control | |
| WO2016086708A1 (en) | Payment verification method, apparatus and system | |
| US20240119455A1 (en) | Piezoelectric biometric card security | |
| CN103854177A (en) | Safe E-bank implementation method | |
| KR20070117371A (en) | Apparatus for generating random numbers for object oriented otp | |
| CN208673379U (en) | Safety certification device and system | |
| KR20110005612A (en) | System and method for managing otp using biometric, otp device and recording medium | |
| EP2495705A1 (en) | Secure personal identification | |
| KR20170111942A (en) | Electronic commercial transaction authentication method and system by specific infomation related otp |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20140129 |
|
| WD01 | Invention patent application deemed withdrawn after publication |