CN108965278B - Transaction request processing method and device - Google Patents
Transaction request processing method and device Download PDFInfo
- Publication number
- CN108965278B CN108965278B CN201810723556.1A CN201810723556A CN108965278B CN 108965278 B CN108965278 B CN 108965278B CN 201810723556 A CN201810723556 A CN 201810723556A CN 108965278 B CN108965278 B CN 108965278B
- Authority
- CN
- China
- Prior art keywords
- random number
- transaction request
- ciphertext
- interface
- interface requester
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
- H04L63/0442—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0869—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Business, Economics & Management (AREA)
- Signal Processing (AREA)
- Accounting & Taxation (AREA)
- Computer Networks & Wireless Communication (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a transaction request processing method and a device, comprising the following steps: receiving a transaction request sent by an interface requester; extracting a first random number ciphertext from the transaction request, and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number; generating a second random number, and combining the first random number and the second random number to generate a combined random number; generating a new message format, and organizing the transaction data corresponding to the transaction request into a message according to the new message format; encrypting the message by using the combined random number to generate a ciphertext of the message; and feeding back the ciphertext of the message to the interface requester. Based on the method and the device, the interaction safety among all the bank systems can be guaranteed to the maximum extent.
Description
Technical Field
The invention relates to the technical field of data interaction, in particular to a transaction request processing method and device.
Background
At present, all systems of a bank adopt messages with a fixed format for interface interaction. In the process of communication between the interface requester and the interface provider, the interface requester and the interface provider package and analyze message data based on a fixed message format to realize various banking services. However, in the process of communication between the interface requester and the interface provider, there is a risk of message data leakage, so in the prior art, interface interaction between various systems of the bank is generally performed under the guarantee of a general Security protocol (e.g., TLS: Transport Layer Security, secure Transport Layer protocol, etc.), in order to reduce the risk of message data leakage.
Although interface interaction among all systems of a bank is carried out under the guarantee of a general safety protocol, once a bottom layer encryption component has a leak and is cracked by a cracker, the cracker can illegally obtain message data, and once the cracker obtains the message data, the cracker can obtain the message format by analyzing the message data because the message format is fixed, the cracker can forge transactions after obtaining the message format, so that safety impact is caused to normal operation of all bank systems, and even inestimable loss is caused.
Therefore, a scheme capable of guaranteeing the interaction security between the bank systems to the maximum extent is needed.
Disclosure of Invention
In view of this, the present invention provides a transaction request processing method and apparatus, so as to ensure the interaction security between the bank systems to the maximum extent.
In order to achieve the purpose, the invention provides the following technical scheme:
a transaction request processing method, the method comprising:
receiving a transaction request sent by an interface requester;
extracting a first random number ciphertext from the transaction request, and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number;
generating a second random number, and combining the first random number and the second random number to generate a combined random number;
generating a new message format, and organizing the transaction data corresponding to the transaction request into a message according to the new message format;
encrypting the message by using the combined random number to generate a ciphertext of the message;
and feeding back the ciphertext of the message to the interface requester.
Optionally, the method further includes:
encrypting the second random number by using a public key of an asymmetric encryption algorithm to generate a second random number ciphertext;
and sending the second random number ciphertext to the interface requester.
Optionally, the method further includes:
receiving a message format acquisition request sent by the interface requester;
encrypting the new message format by using the combined random number to generate a ciphertext of the new message format;
and feeding back the cipher text in the new message format to the interface requester.
Optionally, after receiving the transaction request sent by the interface requester, the method further includes:
acquiring characteristic information of the interface requester from the transaction request;
acquiring the transaction request failure times of the interface requester according to the characteristic information of the interface requester;
and when the failure times of the transaction request reach a preset threshold value, feeding back information for refusing to process the transaction request to the interface requester.
Optionally, the generating a new message format includes:
and randomizing the offset of each column of the preset message format to generate a new message format.
A transaction request processing method, the method comprising:
sending a transaction request to an interface provider, wherein the transaction request carries a first random number ciphertext;
receiving a second random number ciphertext sent by the interface provider;
decrypting the second random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a second random number;
combining the second random number with a first random number generated by the second random number to generate a combined random number;
receiving a ciphertext of a message fed back by the interface provider;
and decrypting the ciphertext of the message by using the combined random number to obtain the plaintext of the message.
Optionally, the method further includes:
sending a message format acquisition request to an interface provider;
receiving a cipher text of a new message format fed back by the interface provider;
decrypting the ciphertext of the new message format by using the combined random number to obtain a new message format;
and analyzing the plaintext of the message according to the new message format to obtain message data so as to realize transaction.
A transaction request processing apparatus, the apparatus comprising:
the receiving unit is used for receiving a transaction request sent by an interface requester;
the decryption unit is used for extracting a first random number ciphertext from the transaction request and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number;
a random number generation unit, configured to generate a second random number, and combine the first random number and the second random number to generate a combined random number;
the message generating unit is used for generating a new message format and organizing the transaction data corresponding to the transaction request into a message according to the new message format;
the encryption unit is used for encrypting the message by using the combined random number to generate a ciphertext of the message;
and the sending unit is used for feeding back the ciphertext of the message to the interface requester.
Optionally, the encrypting unit is further configured to encrypt the second random number by using a public key of an asymmetric encryption algorithm, so as to generate a second random number ciphertext;
the sending unit is further configured to send the second random number cipher text to the interface requester.
Optionally, the receiving unit is further configured to receive a message format obtaining request sent by the interface requester;
the encryption unit is further configured to encrypt the new packet format using the combined random number to generate a ciphertext of the new packet format;
the sending unit is further configured to feed back the ciphertext in the new packet format to the interface requester.
Optionally, the apparatus further comprises:
the early warning unit is used for acquiring the characteristic information of an interface requester from a transaction request after receiving the transaction request sent by the interface requester; acquiring the transaction request failure times of the interface requester according to the characteristic information of the interface requester; and when the failure times of the transaction request reach a preset threshold value, feeding back information for refusing to process the transaction request to the interface requester.
Optionally, the message format generating unit is specifically configured to:
and randomizing the offset of each column of the preset message format to generate a new message format.
A transaction request processing apparatus, the apparatus comprising:
the sending unit is used for sending a transaction request to an interface provider, wherein the transaction request carries a first random number ciphertext;
the receiving unit is used for receiving a second random number ciphertext sent by the interface provider;
the decryption unit is used for decrypting the second random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a second random number;
a random number generation unit, configured to combine the second random number with a first random number generated by the random number generation unit, and generate a combined random number;
the receiving unit is further configured to receive a ciphertext of the packet fed back by the interface provider;
the decryption unit is further configured to decrypt the ciphertext of the packet using the combined random number to obtain a plaintext of the packet.
Optionally, the sending unit is further configured to send a message format obtaining request to an interface provider;
the receiving unit is further configured to receive a ciphertext of a new packet format fed back by the interface provider;
the decryption unit is further configured to decrypt the ciphertext of the new packet format using the combined random number to obtain a new packet format;
the device further comprises:
and the analysis unit is used for analyzing the plaintext of the message according to the new message format to obtain message data so as to realize transaction.
Compared with the prior art, the invention discloses a transaction request processing method and a device thereof, which comprises the following steps: receiving a transaction request sent by an interface requester; extracting a first random number ciphertext from the transaction request, and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number; generating a second random number, and combining the first random number and the second random number to generate a combined random number; generating a new message format, and organizing the transaction data corresponding to the transaction request into a message according to the new message format; encrypting the message by using the combined random number to generate a ciphertext of the message; and feeding back the ciphertext of the message to the interface requester. Based on the method and the device, the interaction safety among all the bank systems can be guaranteed to the maximum extent.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to the provided drawings without creative efforts.
FIG. 1 is a schematic flow chart illustrating a transaction request processing method according to an embodiment of the present invention
FIG. 2 is a schematic flow chart illustrating another transaction request processing method according to an embodiment of the present invention;
FIG. 3 is a schematic structural diagram of a transaction request processing apparatus according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of another transaction request processing apparatus according to an embodiment of the disclosure.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Referring to fig. 1, fig. 1 is a schematic flowchart illustrating a specific flow of a transaction request processing method according to an embodiment of the present invention, where an execution subject of the method is an interface provider, and the method includes:
step S100: receiving a transaction request sent by an interface requester;
step S110: extracting a first random number ciphertext from the transaction request, and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number;
step S120: generating a second random number, and combining the first random number and the second random number to generate a combined random number;
step S130: generating a new message format, and organizing the transaction data corresponding to the transaction request into a message according to the new message format;
wherein, the generating of the new message format includes: and randomizing the offset of each column of the preset message format to generate a new message format.
Step S140: encrypting the message by using the combined random number to generate a ciphertext of the message;
step S150: and feeding back the ciphertext of the message to the interface requester.
The embodiment discloses a transaction request processing method, which comprises the following steps: receiving a transaction request sent by an interface requester; extracting a first random number ciphertext from the transaction request, and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number; generating a second random number, and combining the first random number and the second random number to generate a combined random number; generating a new message format, and organizing the transaction data corresponding to the transaction request into a message according to the new message format; encrypting the message by using the combined random number to generate a ciphertext of the message; and feeding back the ciphertext of the message to the interface requester. Based on the method, the interaction safety among all the bank systems can be guaranteed to the maximum extent.
Optionally, the method further includes: encrypting the second random number by using a public key of an asymmetric encryption algorithm to generate a second random number ciphertext; and sending the second random number ciphertext to the interface requester.
Optionally, the method further includes: receiving a message format acquisition request sent by the interface requester; encrypting the new message format by using the combined random number to generate a ciphertext of the new message format; and feeding back the cipher text in the new message format to the interface requester.
Optionally, after receiving the transaction request sent by the interface requester, the method further includes: acquiring characteristic information of the interface requester from the transaction request, wherein the characteristic information comprises an IP address, an interface requester browser version, an MAC address and the like; acquiring the transaction request failure times of the interface requester according to the characteristic information of the interface requester; and when the failure times of the transaction request reach a preset threshold value, feeding back information for refusing to process the transaction request to the interface requester. Therefore, the safety of the bank system is further improved.
On the basis of the embodiment disclosed by the invention, the embodiment of the invention also discloses a transaction request processing method executed by the interface requester.
Referring to fig. 2, fig. 2 is a schematic flowchart illustrating another transaction request processing method according to an embodiment of the present invention, where an execution subject of the method is an interface requester, and the method includes:
step S200: sending a transaction request to an interface provider, wherein the transaction request carries a first random number ciphertext;
step S210: receiving a second random number ciphertext sent by the interface provider;
step S220: decrypting the second random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a second random number;
step S230: combining the second random number with a first random number generated by the second random number to generate a combined random number;
step S240: receiving a ciphertext of a message fed back by the interface provider;
step S250: and decrypting the ciphertext of the message by using the combined random number to obtain the plaintext of the message.
Optionally, the method further includes:
sending a message format acquisition request to an interface provider;
receiving a cipher text of a new message format fed back by the interface provider;
decrypting the ciphertext of the new message format by using the combined random number to obtain a new message format;
and analyzing the plaintext of the message according to the new message format to obtain message data so as to realize transaction.
The method is described in detail in the embodiments disclosed above, and the method of the present invention can be implemented by various types of apparatuses, so that the present invention also discloses an apparatus, and the following detailed description will be given of specific embodiments.
Referring to fig. 3, fig. 3 is a schematic structural diagram of a transaction request processing apparatus according to an embodiment of the present invention, where the apparatus may be an interface provider, and the apparatus includes:
a receiving unit 10, configured to receive a transaction request sent by an interface requester;
a decryption unit 11, configured to extract a first random number ciphertext from the transaction request, and decrypt the first random number ciphertext using a private key of an asymmetric encryption algorithm to obtain a first random number;
a random number generating unit 12, configured to generate a second random number, and combine the first random number and the second random number to generate a combined random number;
the message generating unit 13 is configured to generate a new message format, and organize the transaction data corresponding to the transaction request into a message according to the new message format;
an encrypting unit 14, configured to encrypt the packet using the combined random number to generate a ciphertext of the packet;
and the sending unit 15 is configured to feed back the ciphertext of the packet to the interface requester.
Optionally, the encrypting unit is further configured to encrypt the second random number by using a public key of an asymmetric encryption algorithm, so as to generate a second random number ciphertext;
the sending unit is further configured to send the second random number cipher text to the interface requester.
Optionally, the receiving unit is further configured to receive a message format obtaining request sent by the interface requester;
the encryption unit is further configured to encrypt the new packet format using the combined random number to generate a ciphertext of the new packet format;
the sending unit is further configured to feed back the ciphertext in the new packet format to the interface requester.
Optionally, the apparatus further comprises:
the early warning unit is used for acquiring the characteristic information of an interface requester from a transaction request after receiving the transaction request sent by the interface requester, wherein the characteristic information comprises an IP address, a browser version of the interface requester, an MAC address and the like; acquiring the transaction request failure times of the interface requester according to the characteristic information of the interface requester; and when the failure times of the transaction request reach a preset threshold value, feeding back information for refusing to process the transaction request to the interface requester.
Optionally, the message format generating unit is specifically configured to:
and randomizing the offset of each column of the preset message format to generate a new message format.
It should be noted that specific function implementation of each unit is already described in detail in the method embodiment, and this embodiment is not described again.
Referring to fig. 4, fig. 4 is a schematic structural diagram of another transaction request processing apparatus disclosed in the embodiment of the present invention, which may be an interface requester, and the apparatus includes:
a sending unit 20, configured to send a transaction request to an interface provider, where the transaction request carries a first random number ciphertext;
a receiving unit 21, configured to receive a second random number ciphertext sent by the interface provider;
the decryption unit 22 is configured to decrypt the second random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a second random number;
a random number generation unit 23 configured to combine the second random number with the first random number generated by itself to generate a combined random number;
the receiving unit is further configured to receive a ciphertext of the packet fed back by the interface provider;
the decryption unit is further configured to decrypt the ciphertext of the packet using the combined random number to obtain a plaintext of the packet.
Optionally, the sending unit is further configured to send a message format obtaining request to an interface provider;
the receiving unit is further configured to receive a ciphertext of a new packet format fed back by the interface provider;
the decryption unit is further configured to decrypt the ciphertext of the new packet format using the combined random number to obtain a new packet format;
the device further comprises:
and the analysis unit is used for analyzing the plaintext of the message according to the new message format to obtain message data so as to realize transaction.
It should be noted that specific function implementation of each unit is already described in detail in the method embodiment, and this embodiment is not described again.
In summary, the following steps:
the transaction request processing method and the transaction request processing system provided by the invention construct a private encryption system to complete interface interaction, simultaneously randomly and dynamically assemble messages to complete transaction interaction, even if a certain transaction is attacked by a hacker, the attacker analyzes and extracts the interface messages, only the transaction is effective, and the normal operation of other transactions is not influenced.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
In a typical configuration, a computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
The memory may include forms of volatile memory in a computer readable medium, Random Access Memory (RAM) and/or non-volatile memory, such as Read Only Memory (ROM) or flash memory (flash RAM). The memory is an example of a computer-readable medium.
Computer-readable media, including both non-transitory and non-transitory, removable and non-removable media, may implement information storage by any method or technology. The information may be computer readable instructions, data structures, modules of a program, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), Static Random Access Memory (SRAM), Dynamic Random Access Memory (DRAM), other types of Random Access Memory (RAM), Read Only Memory (ROM), Electrically Erasable Programmable Read Only Memory (EEPROM), flash memory or other memory technology, compact disc read only memory (CD-ROM), Digital Versatile Discs (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices, or any other non-transmission medium that can be used to store information that can be accessed by a computing device. As defined herein, a computer readable medium does not include a transitory computer readable medium such as a modulated data signal and a carrier wave.
It should also be noted that the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in the process, method, article, or apparatus that comprises the element.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The above are merely examples of the present application and are not intended to limit the present application. Various modifications and changes may occur to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application should be included in the scope of the claims of the present application.
Claims (6)
1. A transaction request processing method, the method comprising:
receiving a transaction request sent by an interface requester;
extracting a first random number ciphertext from the transaction request, and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number;
generating a second random number, and combining the first random number and the second random number to generate a combined random number;
generating a new message format, and organizing the transaction data corresponding to the transaction request into a message according to the new message format;
encrypting the message by using the combined random number to generate a ciphertext of the message;
feeding back the ciphertext of the message to the interface requester; after receiving the transaction request sent by the interface requester, the method further comprises: acquiring characteristic information of the interface requester from the transaction request, wherein the characteristic information comprises an IP address, an interface requester browser version and an MAC address; acquiring the transaction request failure times of the interface requester according to the characteristic information of the interface requester; when the transaction request failure times reach a preset threshold value, feeding back information for refusing to process the transaction request to the interface requester so as to improve the security of a bank system;
the generating of the new message format includes:
and randomizing the offset of each column of the preset message format to generate a new message format.
2. The method of claim 1, further comprising:
encrypting the second random number by using a public key of an asymmetric encryption algorithm to generate a second random number ciphertext;
and sending the second random number ciphertext to the interface requester.
3. The method of claim 1, further comprising:
receiving a message format acquisition request sent by the interface requester;
encrypting the new message format by using the combined random number to generate a ciphertext of the new message format;
and feeding back the cipher text in the new message format to the interface requester.
4. A transaction request processing apparatus, characterized in that the apparatus comprises:
the receiving unit is used for receiving a transaction request sent by an interface requester;
the decryption unit is used for extracting a first random number ciphertext from the transaction request and decrypting the first random number ciphertext by using a private key of an asymmetric encryption algorithm to obtain a first random number;
a random number generation unit, configured to generate a second random number, and combine the first random number and the second random number to generate a combined random number;
the message generating unit is used for generating a new message format and organizing the transaction data corresponding to the transaction request into a message according to the new message format;
the encryption unit is used for encrypting the message by using the combined random number to generate a ciphertext of the message;
a sending unit, configured to feed back the ciphertext of the packet to the interface requester;
the device further comprises:
the early warning unit is used for receiving the transaction request sent by the interface requester, and further comprises: acquiring characteristic information of the interface requester from the transaction request, wherein the characteristic information comprises an IP address, an interface requester browser version and an MAC address; acquiring the transaction request failure times of the interface requester according to the characteristic information of the interface requester; when the transaction request failure times reach a preset threshold value, feeding back information for refusing to process the transaction request to the interface requester so as to improve the security of a bank system;
the message generating unit is specifically configured to:
and randomizing the offset of each column of the preset message format to generate a new message format.
5. The apparatus of claim 4, wherein:
the encryption unit is further configured to encrypt the second random number using a public key of an asymmetric encryption algorithm to generate a second random number ciphertext;
the sending unit is further configured to send the second random number cipher text to the interface requester.
6. The apparatus of claim 4, wherein:
the receiving unit is further configured to receive a message format acquisition request sent by the interface requester;
the encryption unit is further configured to encrypt the new packet format using the combined random number to generate a ciphertext of the new packet format;
the sending unit is further configured to feed back the ciphertext in the new packet format to the interface requester.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810723556.1A CN108965278B (en) | 2018-07-04 | 2018-07-04 | Transaction request processing method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810723556.1A CN108965278B (en) | 2018-07-04 | 2018-07-04 | Transaction request processing method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108965278A CN108965278A (en) | 2018-12-07 |
| CN108965278B true CN108965278B (en) | 2021-05-18 |
Family
ID=64485715
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810723556.1A Active CN108965278B (en) | 2018-07-04 | 2018-07-04 | Transaction request processing method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108965278B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110310192A (en) * | 2019-05-23 | 2019-10-08 | 平安银行股份有限公司 | Transaction processing method, device, equipment and storage medium based on data analysis |
| CN111443962A (en) * | 2020-03-31 | 2020-07-24 | 海南新软软件有限公司 | Transaction limiting method and device |
| CN114499837B (en) * | 2021-12-29 | 2023-09-26 | 广州蚁比特区块链科技有限公司 | Message leakage prevention method, device, system and equipment |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104104687A (en) * | 2014-07-28 | 2014-10-15 | 飞天诚信科技股份有限公司 | Safe login method and system |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101442451A (en) * | 2008-12-22 | 2009-05-27 | 华为技术有限公司 | Butt-joint test matching equipment and implementing method |
| RU2591564C2 (en) * | 2010-08-25 | 2016-07-20 | ЭйСиИ Сиэриз Эй Холдко ЭлЭлСи. | Authorisation of cash withdrawal |
| CN104243451B (en) * | 2014-08-19 | 2018-04-13 | 天地融科技股份有限公司 | A kind of information interacting method, system and intelligent cipher key equipment |
| CN105721154B (en) * | 2014-12-05 | 2020-02-18 | 航天信息股份有限公司 | Encryption protection method based on Android platform communication interface |
| CN105871918A (en) * | 2016-06-08 | 2016-08-17 | 美的集团股份有限公司 | Household appliance, communication system and method between household appliance and cloud server as well as cloud server |
-
2018
- 2018-07-04 CN CN201810723556.1A patent/CN108965278B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104104687A (en) * | 2014-07-28 | 2014-10-15 | 飞天诚信科技股份有限公司 | Safe login method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108965278A (en) | 2018-12-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10069806B2 (en) | Secure transfer and use of secret material in a shared environment | |
| US10719602B2 (en) | Method and device for realizing session identifier synchronization | |
| CN105577379B (en) | Information processing method and device | |
| CN109728914B (en) | Digital signature verification method, system, device and computer readable storage medium | |
| EP3337088B1 (en) | Data encryption method, decryption method, apparatus, and system | |
| US9020149B1 (en) | Protected storage for cryptographic materials | |
| CN107342861B (en) | Data processing method, device and system | |
| WO2021179744A1 (en) | Code-scanning payment method, apparatus and device, information sending method, apparatus and device, and key management method, apparatus and device | |
| CN108111622B (en) | Method, device and system for downloading white box library file | |
| US11146554B2 (en) | System, method, and apparatus for secure identity authentication | |
| CN108965278B (en) | Transaction request processing method and device | |
| CN108134673B (en) | Method and device for generating white box library file | |
| CN112688773A (en) | Token generation and verification method and device | |
| CN111741268B (en) | Video transmission method, device, server, equipment and medium | |
| CN113949552A (en) | Large file encryption and decryption system, method, storage medium and equipment | |
| WO2017006118A1 (en) | Secure distributed encryption system and method | |
| CN112700242A (en) | Method, device and medium for detecting sensitive information of block chain in advance | |
| CN113204772A (en) | Data processing method, device, system, terminal, server and storage medium | |
| CN114172664B (en) | Data encryption and data decryption methods and devices, electronic equipment and storage medium | |
| CN114172719A (en) | Encryption and decryption method, device, equipment and computer readable storage medium | |
| CN107968793B (en) | Method, device and storage medium for downloading white box key | |
| CN116346341A (en) | Private key protection and server access method, system, equipment and storage medium | |
| CN115694921A (en) | Data storage method, device and medium | |
| CN112995111A (en) | Block chain-based Internet of things security detection method, equipment, system and medium | |
| CN116566642B (en) | Privacy protection system and method based on cloud server crypto machine |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |