CN102291376B

Movatterモバイル変換

Info

Publication number: CN102291376B
Application number: CN2010102105175A
Authority: CN
Inventors: 茹昭; 王四军; 陈庆方
Original assignee: Potevio Institute of Technology Co Ltd
Current assignee: China Potevio Co ltd; Petevio Institute Of Technology Co ltd
Priority date: 2010-06-18
Filing date: 2010-06-18
Publication date: 2013-11-20
Anticipated expiration: 2030-06-18
Also published as: CN102291376A

Abstract

本发明提供了一种支持移动终端的电子交易实现方法和系统。移动终端通过代理服务平台登录到金融服务平台，当需要进行电子交易时，通过代理服务平台向金融服务平台发送交易请求；金融服务平台向代理服务平台发送安全认证请求；代理服务平台根据安全认证请求生成调用移动硬件证书设备的命令，发送给移动终端；交易请求、安全认证请求和调用移动硬件证书设备的命令中均携带有交易信息；移动终端调用移动硬件证书设备对交易信息进行签名，将签名后的信息发送给代理服务平台；代理服务平台将签名后的信息转换为指定格式，发送给金融服务平台；金融服务平台对签名后的信息进行认证，认证通过，完成交易。应用本发明所述方案，能够降低实现成本。

The invention provides a method and system for realizing electronic transactions supporting mobile terminals. The mobile terminal logs in to the financial service platform through the proxy service platform. When electronic transactions are required, the transaction request is sent to the financial service platform through the proxy service platform; the financial service platform sends a security authentication request to the proxy service platform; Generate a command to call the mobile hardware certificate device and send it to the mobile terminal; the transaction request, security authentication request and the command to call the mobile hardware certificate device all carry transaction information; the mobile terminal calls the mobile hardware certificate device to sign the transaction information, and the signature The signed information is sent to the agency service platform; the agency service platform converts the signed information into a specified format and sends it to the financial service platform; the financial service platform authenticates the signed information, and if the authentication passes, the transaction is completed. Applying the solution of the present invention can reduce the implementation cost.

Description

A kind of electronic transaction implementation method and system of supporting mobile terminal

Technical field

The present invention relates to the electronic transaction technology, particularly a kind of electronic transaction implementation method and system of supporting mobile terminal.

Background technology

Along with the lifting of 3G (Third Generation) Moblie (3G) network capabilities and the fusion gradually of movement and the Internet, mobile terminal will have internet function, thereby make the electronic transactions such as ecommerce, Web bank, Internet securities have to the trend that shifts on mobile terminal; Simultaneously, the user is also increasing to the demand of the electronic transaction of movement-based terminal.

The electronic transaction technology of traditional support fixed network terminal (as computer etc.) is comparative maturity, as shown in Figure 1, Fig. 1 realizes the composition structural representation of system for the electronic transaction of existing support fixed network terminal, comprising: fixed network terminal, financial service platform and fixed network hardware certificate equipment.

at first fixed network terminal signs in to the financial service platform, be that fixed network terminal sends connection request to the financial service platform, the financial service platform returns to the required web page code of login to fixed network terminal, then, fixed network terminal is resolved the web page code that receives, according to the result after resolving, show the webpage that login is required, afterwards, fixed network terminal receives the username and password of user's input, send to the financial service platform, the financial service platform is verified the username and password that receives, and return and be proved to be successful or failed web page code to fixed network terminal according to the result, the user is resolved and be shown to fixed network terminal.

After logining successfully, when needs carry out electronic transaction, fixed network terminal sends transaction request to the financial service platform, and the financial service platform returns to safety certification request to fixed network terminal, in transaction request and safety certification request, all carries the Transaction Information of this transaction; Correspondingly, safe control in fixed network terminal calls fixed network hardware certificate equipment, being assumed to be electric signing tools (USBKEY) signs to Transaction Information, and the information after signing returns to the financial service platform, the information of financial service platform after to the signature that receives authenticates, authentication is passed through, and completes transaction.

But above-mentioned electronic transaction realizes that system is not suitable for mobile terminal, because: the first, the serviceability of mobile terminal is limited, and the microbrowser on it can not be supported the financial service platform for the fixed network terminal exploitation effectively; The second, the operating system of mobile terminal and fixed network terminal there are differences, and original safe control for fixed network terminal can't be installed on mobile terminal; The 3rd, for the safe control of fixed network terminal, can't directly call mobile hardware certificate equipment.Exactly because there are the problems referred to above, existing electronic trading system can not be supported mobile terminal preferably, and if support mobile terminal, must special exploitation one cover system, namely develop special financial service platform etc., but this can cause realizing the increase of cost undoubtedly.

Summary of the invention

In view of this, main purpose of the present invention is to provide a kind of electronic trade method of supporting mobile terminal, can reduce and realize cost.

Another object of the present invention is to provide a kind of electronic trading system of supporting mobile terminal, can reduce and realize cost.

For achieving the above object, technical scheme of the present invention is achieved in that

A kind of electronic transaction implementation method of supporting mobile terminal comprises:

Mobile terminal signs in to the financial service platform by the agency service platform, when needs carry out electronic transaction, by described agency service platform, to described financial service platform, sends transaction request;

Described financial service platform sends safety certification request to described agency service platform;

Described agency service platform generates and calls the order of mobile hardware certificate equipment according to described safety certification request, and sends to described mobile terminal; Described transaction request, safety certification request and call the Transaction Information that all carries this transaction in the order of mobile hardware certificate equipment;

Described mobile terminal calls mobile hardware certificate equipment described Transaction Information is signed, and the information after signing sends to described agency service platform;

Described agency service platform is converted to specified format by the information after described signature, and sends to described financial service platform;

The information of described financial service platform after to the signature that receives authenticates, and authentication is passed through, and completes transaction.

A kind ofly support the electronic transaction of mobile terminal to realize system, comprising: mobile terminal, agency service platform, financial service platform and mobile hardware certificate equipment;

Described mobile terminal, for by described agency service platform, to described financial service platform, sending connection request, receive the result after the parsing that described agency service platform returns, according to the result after described parsing, show the webpage that login is required, and receive the username and password that the user inputs, by described agency service platform, send to described financial service platform;

Described financial service platform, after the connection request when receiving from described agency service platform, return to the required web page code of login to described agency service platform, and the username and password that receives verified, is verified, and completes login;

Described agency service platform, resolve for the web page code to being received from described financial service platform, and the result after resolving sends to described mobile terminal;

Described mobile terminal is further used for, when needs carry out electronic transaction, by described agency service platform, to described financial service platform, send transaction request, and reception is from the order of calling mobile hardware certificate equipment of described agency service platform, described transaction request and call the Transaction Information that all carries this transaction in the order of mobile hardware certificate equipment, call described mobile hardware certificate equipment described Transaction Information is signed, and the information after signing sends to described agency service platform;

Described financial service platform is further used for, after the transaction request that receives from described agency service platform, to described agency service platform, send safety certification request, wherein carry Transaction Information, and receive the information after the signature that described agency service platform returns, information after described signature is authenticated, and authentication is passed through, and completes transaction;

Described agency service platform is further used for, according to the safety certification request that is received from described financial service platform, generate the order of calling mobile hardware certificate equipment, send to described mobile terminal, and receive the information after the signature that described mobile terminal returns, be converted to specified format, send to described financial service platform.

Visible, adopt technical scheme of the present invention, between mobile terminal and financial service platform, the agency service platform is set, by mobile terminal virtual be fixed network terminal, by mobile hardware certificate equipment virtual be fixed network hardware certificate equipment, the agency service platform carries out information interaction according to mode and the financial service platform of fixed network terminal, and by conversion, waits operation to help mobile terminal and realize calling the functions such as mobile hardware certificate equipment and web displaying.Compared with prior art, scheme of the present invention can directly be utilized existing financial service platform, namely, without the financial service platform of special exploitation for mobile terminal, thereby reduced, realizes cost.

The accompanying drawing explanation

Fig. 1 realizes the composition structural representation of system for the electronic transaction of existing support fixed network terminal.

Fig. 2 is that the present invention supports the electronic transaction of mobile terminal to realize the composition structural representation of system embodiment.

Fig. 3 is the composition structural representation of agency service platform shown in Figure 2.

Fig. 4 is the composition structural representation of mobile terminal shown in Figure 2.

Fig. 5 is the flow chart that the present invention supports the electronic transaction implementation method embodiment of mobile terminal.

Fig. 6 is the specific implementation process schematic diagram of step 51 shown in Figure 5.

Embodiment

For problems of the prior art, a kind of electronic transaction implementation of supporting mobile terminal is proposed in the present invention, between mobile terminal and existing financial service platform, the agency service platform is set, by mobile terminal virtual be fixed network terminal, by mobile hardware certificate equipment virtual be fixed network hardware certificate equipment, the agency service platform carries out information interaction according to mode and the financial service platform of fixed network terminal, and by conversion, waits operation to help mobile terminal and realize calling the functions such as mobile hardware certificate equipment and web displaying.

For make technical scheme of the present invention clearer, understand, referring to the accompanying drawing embodiment that develops simultaneously, scheme of the present invention is described in further detail.

Fig. 2 is that the present invention supports the electronic transaction of mobile terminal to realize the composition structural representation of system embodiment.As shown in Figure 2, comprising: mobile terminal, agency service platform, financial service platform and mobile hardware certificate equipment.

Wherein, mobile terminal, for by the agency service platform, to the financial service platform, sending connection request, result after the parsing that the Receiving Agent service platform returns, according to the result after resolving, show the webpage that login is required, and receive the username and password that the user inputs, by the agency service platform, send to the financial service platform;

The financial service platform, after the connection request when receiving from the agency service platform, return to the required web page code of login to the agency service platform, and the username and password that receives verified, is verified, and completes login;

The agency service platform, resolve for the web page code to being received from the financial service platform, and the result after resolving sends to mobile terminal.

In addition, mobile terminal can be further used for, when needs carry out electronic transaction, by the agency service platform, to the financial service platform, send transaction request, and reception is from the order of calling mobile hardware certificate equipment of agency service platform, transaction request and call the Transaction Information that all carries this transaction in the order of mobile hardware certificate equipment, calls mobile hardware certificate equipment Transaction Information is signed, and the information after signing sends to the agency service platform;

The financial service platform is further used for, after the transaction request that receives from the agency service platform, to the agency service platform, send safety certification request, wherein carry Transaction Information, and the information after the signature that returns of Receiving Agent service platform, information after signature is authenticated, and authentication is passed through, and completes transaction;

The agency service platform is further used for, according to the safety certification request that is received from the financial service platform, generate the order call mobile hardware certificate equipment, send to mobile terminal, and the information after the signature that returns of mobile terminal receive, be converted to specified format, send to the financial service platform.

Financial service platform shown in Figure 2 can or be paid service platform etc. by mails for Net silver service platform, security service platform; Mobile terminal can be mobile phone, personal digital assistant (PDA) or palmtop PC etc.; Mobile hardware certificate equipment can be used for for user identity identification (SIM) card, flash memory (TF) card or intelligent memory card etc. the smart card of safety certification.

Mobile hardware certificate equipment can arrange separately, also can be arranged in mobile terminal.

Mobile hardware certificate equipment and tradition are the same for the USBKEY of the electronic transaction of fixed network terminal etc., call hardware and generate key pair, for encryption and decryption and signature operation, guarantee the fail safe of transaction, and with the identical signature scheme of employing such as USBKEY.

Fig. 3 is the composition structural representation of agency service platform shown in Figure 2.As shown in Figure 3, comprising: first communication module, transport module, webpage parsing module, authentication control module and safe control.

Wherein, first communication module, be used to setting up being connected between agency service platform and mobile terminal, to carry out the transmission of the two contact information, such as the connection request that will be received from mobile terminal sends to transport module, and then send it to financial service platform etc. by transport module; Transport module, be used to setting up being connected between agency service platform and financial service platform, to carry out the transmission of the two contact information; The webpage parsing module, resolve for the web page code to being received from the financial service platform, and the result after resolving is sent to mobile terminal.

Safe control, be used to sending the order of calling USBKEY, and the information that will be received from after the signature of USBKEY response format of authentication control module sends to the financial service platform; Safe control is that transport module is automatically downloaded and installed to the financial service platform; The authentication control module, for intercepting and capturing the order of calling USBKEY that safe control sends, be converted into the order of calling mobile hardware certificate equipment, send to mobile terminal, and the information that will be received from after the signature of mobile terminal is converted to the USBKEY response format, sends to safe control.Perhaps, safe control, be used to sending the order of calling software certificate, and the information that will be received from after the signature of software certificate response format of authentication control module sends to the financial service platform; The authentication control module, for intercepting and capturing the order of calling software certificate that safe control sends, be converted into the order of calling mobile hardware certificate equipment, send to mobile terminal, and the information that will be received from after the signature of mobile terminal is converted to the software certificate response format, sends to safe control.

Fig. 4 is the composition structural representation of mobile terminal shown in Figure 2.As shown in Figure 4, comprising: second communication module, web displaying module and signature blocks;

Second communication module, for setting up the connection between mobile terminal and agency service platform, to carry out the transmission of the two contact information, such as receiving from the result after the parsing of agency service platform, send to the web displaying module, reception, from the order of calling mobile hardware certificate equipment of agency service platform, sends to signature blocks; The web displaying module, for the result according to after the parsing that receives for the user shows the corresponding page so that the user seamlessly carries out various operations, and obtain by human-computer interaction interface the username and password that the user inputs, send to the agency service platform; Signature blocks, for after receiving the order of calling mobile hardware certificate equipment, calls mobile hardware certificate equipment described Transaction Information is signed, and the information after signing sends to the agency service platform.

Financial service platform in system shown in Figure 2 is not distinguished for the information from agency service platform and fixed network terminal, makes identical response.

Based on above-mentioned introduction, Fig. 5 is the flow chart that the present invention supports the electronic transaction implementation method embodiment of mobile terminal.As shown in Figure 5, comprise the following steps:

Step 51: mobile terminal signs in to the financial service platform by the agency service platform.

Fig. 6 is the specific implementation process schematic diagram of step 51 shown in Figure 5.As shown in Figure 6, comprising:

61, mobile terminal sends connection request to the agency service platform.

62, the agency service platform connection request that will receive is transmitted to the financial service platform.

63, the financial service platform returns to the required web page code of login to the agency service platform.

64, the agency service platform is resolved the web page code that receives, and the result after resolving sends to mobile terminal, and mobile terminal shows according to the result after resolving the webpage that login is required.

65, mobile terminal receives the username and password of user's input, sends to the agency service platform.

66, the agency service platform username and password transparent forwarding that will receive is to the financial service platform.

67, the financial service platform is verified the username and password that receives, and returns and login successfully or failed web page code to the agency service platform.

68, the agency service platform is resolved the web page code that receives, and the result after resolving sends to mobile terminal; Mobile terminal logins successfully or failed webpage for the user shows, with the prompting user, logins successfully or login failure.

Step 52: when needs carried out electronic transaction, mobile terminal sent transaction request by the agency service platform to the financial service platform.

In described transaction request, carry the Transaction Information of this transaction, comprise that specifically which information and scheme of the present invention, without direct relation, are not described.

Step 53: the financial service platform sends safety certification request to the agency service platform.

The financial service platform is initiated safety certification, to the agency service platform, sends safety certification request, wherein carries equally Transaction Information.

Step 54: the agency service platform generates and calls the order of mobile hardware certificate equipment according to the safety certification request that receives, and sends to mobile terminal.

In this step, after the agency service platform receives safety certification request, safe control by self sends the order of calling USBKEY, authentication control program in the agency service platform is intercepted and captured the order that this calls USBKEY, be converted into the order of calling mobile hardware certificate equipment, send to mobile terminal.

Perhaps, after the agency service platform receives safety certification request, safe control by self sends the order of calling software certificate, authentication control program in the agency service platform is intercepted and captured the order that this calls software certificate, be converted into the order of calling mobile hardware certificate equipment, send to mobile terminal.

How to be converted to prior art, to repeat no more.In addition, call in the order of mobile hardware certificate equipment and carry equally Transaction Information.

Step 55: mobile terminal calls the Transaction Information that carries in the order of calling mobile hardware certificate equipment that mobile hardware certificate equipment interconnection receives and signs, and the information after signing sends to the agency service platform.

In this step, the Transaction Information that carries in the order of calling mobile hardware certificate equipment that mobile terminal will receive sends to mobile hardware certificate equipment; Mobile hardware certificate equipment is signed to Transaction Information, and the information after being signed, send to mobile terminal; Information after mobile terminal further will be signed sends to the agency service platform.

Step 56: the information after the signature that the agency service platform will receive is converted to specified format, and sends to the financial service platform.

if the order for calling USBKEY that in step 54, safe control sends, information after the signature that in this step, the authentication control program in the agency service platform will receive is converted to the USBKEY response format, if the order for calling software certificate that in step 54, safe control sends, in this step, the information of the authentication control program in the agency service platform after signing is converted to the software certificate response format, these are the form corresponding to fixed network terminal, afterwards, information after conversion is sent to safe control, by safe control, further send to the financial service platform.

Step 57: the information of financial service platform after to the signature that receives authenticates, and authentication is passed through, and completes transaction.

How to authenticate and how to complete transaction and be prior art, repeat no more.

So far, namely completed the introduction about the inventive method embodiment.

In a word, adopt technical scheme of the present invention, between mobile terminal and financial service platform, the agency service platform is set, by mobile terminal virtual be fixed network terminal, by mobile hardware certificate equipment virtual be fixed network hardware certificate equipment, the agency service platform carries out information interaction according to mode and the financial service platform of fixed network terminal, and by conversion, waits operation to help mobile terminal and realize calling the functions such as mobile hardware certificate equipment and web displaying.Compared with prior art, scheme of the present invention directly utilizes existing financial service platform to get final product, and namely, without the financial service platform of special exploitation for mobile terminal, thereby reduced, realizes cost.

The foregoing is only preferred embodiment of the present invention, in order to limit the present invention, within the spirit and principles in the present invention not all, any modification of making, be equal to replacement, improvement etc., within all should being included in the scope of protection of the invention.