CN1845185A

Movatterモバイル変換

Info

Publication number: CN1845185A
Application number: CN 200610050936
Authority: CN
Inventors: 杨杰; 岳礁
Original assignee: Individual
Current assignee: Individual
Priority date: 2006-02-05
Filing date: 2006-02-05
Publication date: 2006-10-11

Abstract

A method and system for ensuring the safety of transaction by using magnetic card to authorize and verify the authenticity of card in on-line system and/or by fingerprint recognition and on-line verification. The authenticity of the bank card/magnetic card is verified in an online mode in the transaction process of the bank card/magnetic card by adding a verification anti-counterfeiting magnetic stripe on the magnetic card; in the transaction process of the bank card/magnetic card, the identity of the card holder is verified by scanning, identifying and extracting the fingerprint characteristic data of the card holder and sending the fingerprint characteristic data to the online server for comparison, so that the situation that the bank card/magnetic card certificate is falsely used is prevented; the cardholder can flexibly select bank card/magnetic card service modes with different security levels according to the need of the cardholder on risk control, so that the bank card/magnetic card transaction is safe, convenient and quick; the cost of bank card/magnetic card is not needed to be increased obviously, the POS machine merchant can upgrade the equipment smoothly, and the investment of the original system is protected effectively.

Description

A kind of method and system that is used for checking true/false via online checking

Technical field:

In general the present invention relates to the bank card business dealing field, comprises with the magnetic card being other field of authorizing warrant.Specifically, relate to and a kind ofly authorizing by magnetic card, and in on-line system this card true and false of checking and (or) method validation holder identity by fingerprint recognition, online validation, to guarantee the method and system of transaction security.

Background technology:

General people believe that as long as oneself bank card and corresponding password are not stolen simultaneously, the money that then leaves in the bank is exactly safe.

But actual conditions are really not so.Great mass of data shows, as long as someone has obtained the card number of bank card and (has please noted, do not need to take the magnetic stripe of bank card, and only need to obtain the card number of bank card) and password, go out a forgery magnetic card that magnetic stripe recording information is the same with former bank card with regard to reproducible, and can use this forgery magnetic stripe card and password to extract cash or consumption " legal " in ATM, POS terminal.Make former holder or bank etc. suffer a loss.

For example:

" deposit that vigilant " clone's card " eats you steathily " www.xinhuanet.com on 06 13rd, 2002

Http：//news.xinhuanet.com/fortune/2002-06/13/content_438478.htm；

" ten thousand balance moneys not the wing fly depositor bank face a charge in court " www.xinhuanet.com's Fujian channel on 09 10th, 2003

http：//news.xinhuanet.com/newscenter/2003-09/10/eontent_1074602.htm；

" the stolen loss of deposit of bank card password who be responsible for " Beijing Star Daily on Dec 22nd, 2004

http：//news.xinhuanet.com/it/2004-12/22/content_2366085.htm

At present, bank card is in the operation flow of ATM enchashment: the holder inserts card on ATM, import 6 personal identification numbers, selects the enchashment transaction, the input enchashment amount of money; Transaction Success, ATM are told paper money and are printed with bar (maybe can select not print with bar), withdraw from and fetch card by prompting; Transaction is unsuccessful, and the holder can just point out to all row (merchant bank) consultings of facility.

" bank card networking consolidated traffic standard " according to People's Bank of China's (March 29 calendar year 2001) issue, bank card is in the operation flow of the POS of franchised business consumption and payment: the holder hands over the cashier of franchised business with bank card, and the cashier examines the printed words that do not have " scale " or improper signatures such as " personality cards " on the bank card card signature strip; Card does not have and burrows, shear angle, ruins the vestige that changes or alter; Credit card also need be examined the term of validity of card, the photo on the photo cards.The cashier of franchised business swipes the card on POS, and the input dealing money requires the holder by 6 personal identification numbers of code keypad input, does not require the input password as credit card issuer, directly presses acknowledgement key by the cashier.Transaction Success, print the transaction document, the cashier checks on the document and to print transaction number of the account and the card number back that whether conforms to and hand over cardholder signature to confirm, and to credit card trade check signature and card back sign whether consistent after, with friendship holders such as bank card, sales slip receipt connection; Transaction is unsuccessful, and cashier just prompting explains to the holder.

The voucher that ATM and POS terminal facility are printed comprises following fundamental at least:

The ATM voucher of concluding the business: card number, dealing money, type of transaction, transaction Ref, trade date, exchange hour, receipts single file number, ATM numbering;

The POS voucher of concluding the business: card number, the card term of validity (credit card), dealing money, type of transaction, transaction Ref, authorization number, trade date, exchange hour, receipts single file number, franchised business's numbering, franchised business's title, POS numbering, POS serial number.

The holder checks bank card and the program of the operation of swiping the card obviously is wrong by the cashier when using bank card to carry out consumption and payment on the POS of trade company machine.At first, the cashier layman in market, they take in counterfeit money once in a while and are difficult to avoid.And require outward appearance, or, obviously be to have surpassed its technical ability by the true and false that cardholder signature is checked bank card almost without any anti-fraud functional bank card; Secondly, aspect the legal argument of bank card business dealing affirmation, only there is bank computer system that the record of bank card account, password and the payment information of bank card be can be used as vaild evidence at present.Arrested unless forge, usurp the offender of bank card, otherwise other method proof cashier does not at fault in the process of bank card being done examination.Prove its fault since have no idea, trade company and cashier just should reliefs; Since there is not responsibility, the obligation of examining bank card validity by the cashier of trade company of front defined is also just just illusory.Actual conditions also are so, and the cashier of trade company does not generally fulfil the item that bank card validity is examined of defined in " bank card networking consolidated traffic standard " when swiping the card.In addition, the bank ATM machine also only carries out at the bank card magnetic stripe the knowledge of debating of bank card at present, also can reasonably infer thus, and the cashier of trade company does not have ability, also should not bear the responsibility or the obligation of examination bank card.Program by trade company's examination bank card does not have practical significance and operability, has increased bank card on the contrary and has been utilized this program to steal the risk of bank card magnetic strip information by illegal trade company or cashier.

Bank card extracts cash in ATM, and these two kinds of the POS of franchised business consumption and payments during the general function of frequent use, the approach that bank's card number and password are revealed is a lot, and concluding has following several situation (also having mutation or newly-increased).

1. utilize ATM to steal accounts information and password

The method of stealing its accounts information and password when the user uses ATM has: (1) is installed at the magnetic card access hole and is stolen read apparatus; (2) pseudo-card reader is installed and covers true card reader on ATM; (3) the mounting board instrument is placed on ATM card inserting mouth place,, treats after the user leaves card to be stolen in order to clamp user's card; (4) utilize false keyboard, steal user cipher; (5) recessive camera is installed, the user cipher of taking on the sly; (6) put up false notice, false bulletin, false customer service call, extract user cipher, gain user's fund by cheating; (7) even utilize false ATM to steal holder's card information and password etc.

2. utilize the machine for punching the card of POS can steal accounts information and password

Stealing cardholder account information also can occur in the process of bankcard consumption.Some bad trade companies and lawless person collude with, and when holder's bankcard consumption, will steal a sign indicating number device and be placed in the hand or be placed under the sales counter, take advantage of the holder and do not note stealing magnetic strip information on the bank card.

3. utilize the gate inhibition to steal accounts information and password

In recent years, pseudo-card reader is installed and day by day becomes a kind of new means of crime on BankGuard Systems.Pseudo-card reader is installed on the gate inhibition, not only requires the holder to swipe the card, even also require the input password.The holder does not often understand, and on the ground confused lawless person works as.

Above-mentioned various situation finally all corresponds to two kinds of situations in essence: the one, and bank's card number and password are stolen, and the 2nd, the bank card magnetic strip information directly is replicated with password stolen.Both of these case all can finally be used to forge bank card by the bank card crime molecule, extracts cash or makes former holder or bank etc. suffer a loss by the consumption of POS machine from ATM.

The financial industry standard JR/T 0009-2000 of the People's Republic of China (PRC) " bank card magnetic strip information form and operating specification " has made regulation to the magnetic strip information form and the banks of China card of bank card the 1st magnetic track and the 2nd magnetic track to the use of each magnetic track.

Stipulate that all bank card magnetic stripes must use the 2nd magnetic track in the standard the 8th [operating specification].Whether the 3rd magnetic track uses by each card sending mechanism is stipulated voluntarily.The 1st magnetic track wouldn't use, and keeps to take the circumstances into consideration in the future to use.The 2nd magnetic track is magnetic track in return, and each card sending mechanism is as the criterion with the 2nd magnetic track when discerning with message exchange.

Stipulate that the 2nd magnetic track is a read track in the standard the 6th [information format of the 2nd magnetic track]; The digital coding dominant record size is 40 characters;

The 2nd magnetic track information form, the 1st field is a beginning flag, accounts for 1; The 2nd field is a primary account number, accounts for 13～19 (the bank card account number mostly is 16 at present); The 3rd field is a field separator, accounts for 1; The 4th field is the Expiration Date, accounts for 4; The 5th field is a service code, accounts for 3; The 6th field is an additional data, variable (accounting for 10～16); The 7th field is an end mark, accounts for 1; The 8th field is lonitudinal redundance effect position, accounts for 1.

Illustrated that the purposes of additional data is to hold the significant arbitrary data of bank card card sending mechanism in the standard the 7th article the 8th [additional data]; Form is variable, but should guarantee that this magnetic track character sum must not surpass maximum code length; Particular content is made by oneself by credit card issuer.

From prescribed by standard: the 2nd magnetic track is a read track; The 2nd magnetic track is magnetic track in return, and each card sending mechanism is as the criterion with the 2nd magnetic track when discerning with message exchange.Can know by inference, can be used in 10～16 (actual bank card number standard length is 16, so the length of additional data field is for the longest 13) of the 6th field " additional data " of having only second magnetic track of bank card encrypted authentication.Because the encrypted authentication position is long limited, add bank from the cost consideration of making and the bank of issue blocks, the stage that many banks are chosen in the produce in factory magnetic card just writes magnetic stripe data information, and the data of extra data segment are general to be to go up other field data by card to calculate definite through the self-defining card encrypted authentication sign indicating number CVN of bank (CVV) cryptographic algorithm.In case therefore the cryptographic algorithm of card encrypted authentication sign indicating number CVN (CVV) is cracked, it just is a kind of corollary that bank card is replicated.

In recent years, banking industry begins to hanker after the IC-card technology, and numerous and confused plan is applied to the IC-card technology on the bank card.To compare with bank card based on magnetic stripe based on IC-card, is the IC bank card just more safer than magnetic stripe bank card?

SIM card in the digital mobile communication terminal (mobile phone) is exactly a kind of intellective IC card of special use.Just entered one period in mobile communication epoch, the mobile phone of simulating signal is cloned easily, and the message that hand-set from stolen is beaten is occasionally in space in a newspaper; Enter after the mobile communication of digital signal, because encryption and antiforge function that SIM card had, people believe that the situation that hand-set from stolen is beaten will be gone for ever.Yet, along with close mythology that can not break of IC-card and illusion (West China City Newspaper on 06 28th, 2004) have just thoroughly been forfeited in the appearance of SIM card reproducer in recent years.What is more, and other has report to refer to: the member of car clout group can be in 2 minutes, and the advanced digital anti-theft system that the latest model of easily decoding car is equipped with starts up the car, and automobile is driven away (Guangzhou Daily on 05 26th, 2005).

The SIM cards of mobile phones that dozens of yuan is one (intellective IC card) becomes in face of the SIM card reproducer has no secret and can say; Even be worth the advanced digital anti-theft system of the thousands of units of value of hundreds thousand of up-to-date outfits of car, also just perform practically no function in the face of being equipped with the advanced cartheft of stealing demoder.Also having what reason allow it is believed that, cost need be controlled at several units, bank's IC-card of tens yuan, can effectively prevent to be replicated, forge and usurp? if bank's IC-card is replicated, forges and usurps, will fund loss in the bank card account be born by whom again? peep of cipher causes the bank card deposit stolen, also to continue to bear all losses by the holder?

At number of patent application is in " a kind of bank card and bank card carry out extremely system of transaction method " of 200510011648.x, a kind of IC-card that adds " hardware solidifies password and the user confirms fingerprint " in bank card has been proposed, and the method by local computer and bank main online validation.There is the defective of several aspects in this invention: at first, all bank cards all need to change into IC-card, the POS machine of all franchised businesses of bank, the bank ATM machine all must all upgrade simultaneously, implementing this invents described system and will obviously increase the holder, trade company and the three parts's of bank update cost and cost, and during renewal of the equipment because related scope is wide and enormous amount, will cause the bank card service to be interrupted or discontinuous; Secondly, in this method password and confirmation finger print data are all left in bank's IC-card, in case solidifying the method for password is cracked, the possibility that bank's IC-card still exists IC-card information to be stolen and to be replicated, if steal the card people again by inverse algorithm, the confirmation finger print information in the IC-card is carried out reduction copying, be made into the finger film of forgery, bank's IC-card of utilize forging so and refer to film this system of still can out-tricking, thus the fund loss that causes holder and bank because of outside; At last, if here " confirmation fingerprint " is meant fingerprint image, also can there be legal problem in " confirmation fingerprint " concept obfuscation on specialty so in the future.General law the expert think, because the reason of individual privacy aspect, commercial systems for applications should directly not stored individual's information in fingerprint, therefore generally only stores fingerprint characteristic data technically but not fingerprint image data.

By 2005, the bank card issued volume of China reached 7.7 hundred million; Bank card is accepted trade company and is reached 30.6 ten thousand families (470,000 in POS machine); 6.9 ten thousand of ATM; ATM inter-bank ta vservice is opened facility and is reached 1.3 ten thousand.At present, the case-involving amount of money of bank card in China every year is about 100,000,000 yuan, and the economic loss that is caused is ascendant trend year by year.In the global range, the credit card fraud turnover has accounted for 1.5% of year total turnover at present.

IC-card is compared with magnetic card, the former cost is the latter's more than ten times (may be reduced to 3～5 times in the future), consider that the banks of China system has 7.7 hundred million huge bank card issued volume radixes, the bank magnetic stripe card hair fastener cost that relates to is about 1,000,000,000 yuan, if and all change bank card into the bank IC-card, the cost of hair fastener will reach 50～10,000,000,000 yuan scale.Therefore, on simple technology and program, improved, can be more effective to the problem that solves bank card security, more meet economic principle.

Summary of the invention:

A feature and advantage of the present invention provides a kind of bank card/magnetic card transaction method and system that be used for finishing safely, be used to verify false proof magnetic stripe by on magnetic card, increasing by one, can be in bank card/magnetic card process of exchange, by the true and false of online server checking bank card/magnetic card.Effectively prevent only because of bank card/magnetic card number and the stolen situation generation that causes bank card/magnetic card to be forged of password.

Another feature and advantage of the present invention provide a kind of bank card/magnetic card transaction method and system that be used for finishing safely, the fingerprint characteristic that utilizes everyone is unique and lifelong constant characteristic, in bank card/magnetic card process of exchange, fingerprint characteristic data by scanning identification and extraction holder, and send on the online server and compare, holder's identity is effectively verified.After preventing that effectively bank card/magnetic card is stolen, the situation that huge deposit is stolen or the magnetic card warrant is falsely used on the bank card card takes place.

Another feature and advantage of the present invention provide a kind of bank card/magnetic card transaction method and system that be used for finishing safely, allow the holder can be according to own different needs to risk control, select the bank card/magnetic card method of service of different level of securitys flexibly, make that bank card/magnetic card transaction is not only safe but also efficient and convenient.And need to increase bank card/magnetic card cost hardly, and POS machine trade company can select updating apparatus smoothly, realize the systemic-function combination of different level of securitys, thereby lower the cost of investment of trade company, the investment of protection original system POS system.

In order to realize described and other feature, advantage and purpose, an example of the present invention provides a kind of bank card/magnetic card transaction method and system that be used for finishing safely, wherein on bank card/magnetic card, increase the second magnetic stripe, be used to store the false proof data message of checking of the checking magnetic card true and false.This verifies that false proof magnetic stripe is placed on the position that becomes with original magnetic stripe with magnetic card transverse axis symmetry, is convenient to the operation of swiping the card on original magnetic card reader.The width of the false proof magnetic stripe of checking that should be newly-increased is identical with original standard magnetic stripe, and length can identical as required or different (as shown in Figure 1).Two magnetic stripes of visual differentiation for example are chosen in the covering color different with former magnetic stripe on the false proof magnetic stripe of newly-increased checking for convenience.When using bank card/magnetic card to conclude the business or exercising related right, verify the true and false of this magnetic card as needs, can verify false proof data of checking on the false proof magnetic stripe by reading this, and send on system's online server and verify.This invention can effectively prevent only because of bank card/magnetic card card number and the stolen situation generation that causes bank card/magnetic card to be forged of password.

In an example of the present invention, the magnetic card read/write device on the teller terminal of teller terminal in the ATM of bank and the lobby or magnetic card distribution unit is designed to dual-magnetic head, and two magnetic heads are a magnetic stripe on the corresponding read/write magnetic card respectively.

In an example of the present invention, an integrated data encrypting module in magnetic card read/write card device, digital signature method or other cryptographic algorithm that encryption method can select SET (Secure Electronic Transaction) agreement to support, support to use from what system's online server obtained and carry out data encryption by online server for the secret key of distributing when inferior transaction, the ciphertext that forms after encrypting is output the system online server of being uploaded at last and verifies.The fingerprint characteristic data that false proof data of checking on the magnetic card that dealing money, password, the magnetic card reader of being imported by keyboard reads in the false proof magnetic stripe and finger scan obtain can carry out data encryption by this encrypting module.This invention can prevent effectively that dealing money, password, magnetic card from verifying that false proof data and fingerprint characteristic data are intercepted and captured, altered or counterfeit situation takes place in the communication transmission course.

In an example of the present invention, on magnetic card reader or magnetic card read write line, an integrated cipher inputting keyboard.When the input password, password output after encrypt with the different secret keys that obtain distribution each time from system's online server card reader inside.The code data of reserving when being resent to system's online server and being kept on the server with holder's card drawing compares checking.By checking, system enters next step relevant business operation.

In an example of the present invention, the magnetic card read write line verifies that false proof data encrypt back output with the different secret keys that obtain distribution from system's online server each time in that card reader is inner when reading magnetic card and verify false proof magnetic stripe data.Be resent to system's online server and compare checking with the false proof data of checking that are kept on the server.Be proved to be successful, promptly check and approve transaction.

In an example of the present invention, on magnetic card reader or magnetic card read write line, an integrated finger scan recognizer.When needs confirm that trading objects (holder) are bank card/magnetic card card drawing people, by scanning holder's fingerprint and with the algorithm for recognizing fingerprint characteristic that takes the fingerprint, and fingerprint characteristic data is encrypted back output with the different secret keys that obtain distribution from system's online server each time in card reader inside.The fingerprint characteristic data of reserving when being resent to system's online server and being kept on the server with holder's card drawing compares checking.Be proved to be successful, promptly check and approve transaction.

In an example of the present invention, the holder is when bank card/magnetic card is got in application or after the card drawing, selection is provided with one group of tactic amount control line, this group amount control line includes one, two or many amount control lines, what each bar amount control line reality was corresponding is a natural number, the value of adjacent amount control line can equate that this group amount control line is divided into a plurality of sections with whole natural number codomain; In process of exchange dealing money is in the payment between the different amount control lines or withdraws deposit, system carries out the risk control program flow process of different security strategies.For example, divide three level of securitys for bank card/magnetic card transaction, elementary level of security is the same with current system, only bank card/magnetic card account number and password is verified; The middle rank level of security then beyond bank card/magnetic card account number and password are verified, is further also verified bank card/magnetic card true and false by on-line mode; Highest level is then beyond verifying bank card/magnetic card account number and password, further also by on-line mode checking holder identity.The holder is according to the consumption habit of oneself, for tackling the different amount control line combination of different risk selection, customized different security strategy control effectively to the risk in bank card/magnetic card use, and safety and convenient between obtain a kind of effective, selectable balance method.Also make simultaneously trade company of bank/or trade company of the system POS machine of selecting to upgrade smoothly become possibility; thereby allow the escalation process of whole POS system have alternative, controllability, can predict and make the existing equipment investment to obtain appropriate protection, the cost that effectively attenuating system drops into.

In an example of the present invention, the method for commerce of a transaction limit credit of a kind of bank card/magnetic card is provided, can allow the holder finish the function of consumption and payment safely at the trade company place that does not also finish the POS system upgrading.Concrete grammar is, the holder at first needs on any customer service terminal that is equipped with the finger scan function under the hair fastener unit, is this bank card/transaction limit credit of magnetic card application on the service teller terminal of ATM or magnetic card distribution unit for example.Can arrive the consumption of being correlated with at this trade company place then and use bank card/magnetic card to finish payment.The amount of a credit can only be used once effective, and must be in the time that limits, for example can select between 1～12 hour any one effective numerical value as finishing transaction in the limiting time, cancel otherwise cross this time of after date credit, reuse a transaction limit credit if desired and just must apply for again.

Specifically apply for and use the operation flow of a transaction limit credit as follows:

A transaction limit credit of magnetic card service terminal application of finger scan function is being arranged, will block and insert card reader; By prompting input password; Magnetic card and password are selected [a transaction limit credit] according to prompting after the online server checking is passed through; And then according to pointing out input to need the amount amount of money of credit; And import effective time (time is 1～12 hour) of this credit; Carry out finger scan identification according to system prompt at last, the fingerprint characteristic data after encrypting is transferred on system's online server compares, and checking is by then credit success.System is kept at system's online server in should the record of card account with the related data of credit success.The holder can be in credit effective time locates not to be higher than the consumption and payment of this time amount credit amount of money to trade company then, at this moment only needs brush magnetic card number and input payment cipher can finish transaction.

In an example of the present invention, provide the step of operation flow of a kind of bank card/magnetic card transaction as follows:

The cashier of step a. trade company is on POS, and input is when time dealing money;

Step b. holder (but not cashier) the input card number of on the magnetic card reader of POS machine, swiping the card;

The step c card number is sent to the ard issuers online server;

Steps d. the ard issuers online server judges whether card number is effective;

If judge in the step e. steps d that card number is effective, online server is just distributed a cryptographic keys and is sent to the POS of trade company machine;

After step f.POS machine was received the secret key of online server distribution, the holder was according to prompting input payment cipher; The POS machine is reinstated secret key that online server distributes with password and front by the dealing money one of cashier's input and is sent to the ard issuers online server after encrypting;

Step g. whether the online server authentication password is effective;

If authentication password is effective in the step h. step g, the transaction limit control line lower limit that (or after card drawing) selected when then online server was with this dealing money and holder's card drawing compares, if dealing money less than this transaction limit control line lower limit, is is then checked and approved transaction;

If step I. do not check and approve transaction among the step h, then further check should whether an effective accrediting amount being arranged card number, and this dealing money is not more than the effective accrediting amount of this time, then check and approve transaction;

If do not check and approve transaction in the step j. step I, the transaction limit control line upper limit that (or after card drawing) selected during then further with this dealing money and holder's card drawing compares, if dealing money is more than or equal to this transaction limit control line upper limit, then need further by scanning holder fingerprint characteristic data, data are through encrypting after and be sent to and verify holder's identity on the ard issuers online server;

If judge among the step k. step j that dealing money is less than this transaction limit control line upper limit (more than or equal to this transaction limit control line lower limit), then needing further swipes the card by the holder imports the magnetic card anti-fake verification msg, and data are sent to after encrypting and verify bank card/magnetic card true and false on the ard issuers online server;

If step l. in step j holder's identity by the checking or in step k bank card/magnetic card true and false by the checking, all check and approve transaction;

If after step m. concludes the business in step h, step I or step l and checked and approved, promptly Transaction Success is printed the transaction voucher, writes transaction record in the ard issuers online server;

If step n. judges that in steps d card number is invalid, or it is invalid to fail authentication password in step g, or fails to check and approve transaction in step l, then judges Fail Transaction, writes the Fail Transaction record in the ard issuers online server.

Description of drawings:

Fig. 1: be system construction drawing involved in the present invention;

Fig. 2: be false proof bank card/magnetic card of the present invention;

Fig. 3: be inner band data encryption feature of the present invention, the magnetic card read/write device of integrated code keypad, finger scan recognition function;

Fig. 4: the business process map that is a kind of typical bank card of the present invention/magnetic card transaction.

Embodiment:

Below specific embodiments of the invention just are described in conjunction with the accompanying drawings.

The participant of native system comprises:

The holder: promptly hold the consumer of bank card, can be in business such as lobby, the enterprising line access money of ATM, account transfers, or pay by POS system at bank card franchised business place and to realize consumption;

Trade company: refer to bank card franchised business here;

Settlement center: for different commercial banks provides professional financial settlement center such as payment and overseas transfers, for example China is that People's Bank of China financial settlement center is a Unionpay.

Issuing bank: refer to bank card issuing bank; Also can be the financial institution of an independent distribution credit card, debit card, for the holder opens an account, and bank of issue's card;

Merchant bank: for trade company opens an account, or provide ATM the business of withdrawing the money, handle the bank that carries out bank card payment matters on the POS machine of the ATM that belongs to one's own profession or franchised business;

Issuing bank is relative notion with merchant bank, and in certain bank's bank card business dealing, a concrete bank both can be an issuing bank, also may be merchant bank; Perhaps be issuing bank be again merchant bank simultaneously.

One, bank card

Compare with traditional bank card, employed bank card among the present invention, principal character is that two magnetic stripes of placing with the transverse axis symmetry are arranged on bank card, as magnetic card among Fig. 2 500.Others such as printing or compacting form type bank card number, and issuing bank's title, sign and false proof pattern etc. are identical with original bank card.

Magnetic stripe 501 magnetic recording forms, data layout and content and the present bank card conformance to standard that place the origin-location.The magnetic recording form of newly-increased false proof magnetic stripe 502 is identical with former magnetic stripe (also can work out new magnetic recording format standard for this newly-increased false proof magnetic stripe 502 by financial settlement center 100 and a bank 201,202 and 20N etc. in the future jointly, the new standard of unified then use), data layout and content are defined by concrete issuing bank, are used to store the false proof data of checking of the checking bank card true and false.

Newly-increased false proof magnetic stripe 502 is designed to the benefit of the symmetrical form of placing of former magnetic stripe 501 transverse axis, can use the single magnetic head card reader, swipes the card by twice and reads the data message of two magnetic stripes respectively.

It is to continue to use existing card-reading apparatus that false proof magnetic stripe 502 uses the benefit of identical magnetic recording form with former magnetic stripe 501; Shortcoming is that magnetic card is replicated on present numerous magnetic card read-write equipments easily, has increased the risk that magnetic card is replicated.(but, the holder can initiatively prevent and control this risk.)

If select newly-increased magnetic stripe 502 to use different magnetic recording forms with former magnetic stripe 501, benefit is to increase the difficulty that magnetic card is replicated, thereby lowers the risk that is replicated; But the magnetic card read-write equipment need be supported to read and write new magnetic recording form, thereby has increased the equipment cost of bank and trade company.

Two, bank card application to get

Individual or the legal person of unit will become the holder, at first will select a tame bank, for example, select bank 202 (also can be 201 or 20N etc.), and bank card is got in application.

The card drawing people need fill in the relevant personal information information that bank requires.

Can reserve two passwords, comprise the Zhi Fuyu password of withdrawing the money, password for inquiry.Two passwords can be identical or different, also can be empty (promptly not establishing password);

All bank card business all need to check the validity (remove bank card report the loss or password is reported the loss) of validity, integrality and the password of bank's card number information;

The card drawing people can oneself select to be provided with two amount control lines of controlling risk up and down when using bank card.Be lower than the payment of lower limit amount control line or withdraw deposit for dealing money, do not need the bank card true and false or holder's identity are done checking; Dealing money between the lower limit and the upper limit payment or withdraw deposit, need the further checking bank card true and false; Dealing money is higher than the payment of the upper limit or withdraws deposit, and needs further checking holder identity.The bound codomain is stipulated voluntarily by issuing bank 201,202 or 20N etc., for example can be 0～50000 (or 0～100000), and the upper limit must be more than or equal to lower limit (restraining line can overlappingly equate up and down);

For example, can select lower limit amount control line is 30 (units), on be limited to 500 (units), then when dealing money less than 30 yuan, system only checks card number and password; When dealing money more than or equal to 30 yuan, less than 500 yuan, system also need verify the bank card true and false except that checking card number and password; When dealing money during more than or equal to 500 yuan, system also needs to verify holder's identity except that checking card number and password.

Select the amount control line of special bound to be provided with, can obtain some special effects.For example, lower limit is set to 0, and the upper limit is set to 50000; Lower limit is set to 50000; The upper limit is set to 0 etc., can produce some special effects.

After holder's card drawing, can reset the amount control line to the issuing bank business hall according to the needs of oneself;

Issuing bank is by finger scan Recognition and Acquisition application card drawing people's (will become the holder) fingerprint characteristic data during card drawing, can select to gather the fingerprint of 2～3 fingers of holder, generally can select to gather respectively one or two fingerprint characteristic data of holder right-hand man.Pay normally or withdraw deposit and when needing checking holder identity when the holder uses bank card, the right-hand man that can use reservation is any fingerprint in two fingers of one respectively, in case influence the normal use of bank card during finger injuries; The 3rd fingerprint characteristic data is used for deadly condition, and for example the holder is held as a hostage or coerces when using bank card to conclude the business purposes such as warning;

During card drawing, produce the false proof data of checking at random or partly at random by issuing bank's computer interconnection server system and write the false proof magnetic stripe 502 of checking, and identical data are recorded in the computer server of bank, be used for holder's data true and false of when using bank card and needs to verify this bank card true and false, comparing.

After holder's card drawing,, can arrive any business hall of issuing bank, require to produce new false proof data again, and write the false proof magnetic stripe 502 of bank card when having reason to believe or suspecting that the bank card magnetic stripe data of oneself may be stolen when duplicating by other people.This bank card can regain antiforge function.

Three, integrated multifunction magnetic card read/write device

Fig. 3 is the most complete integrated multifunction magnetic card of a function of the present invention read/write device structural representation.In the practical application, the magnetic card reader that lobby automatic teller machine, bank ATM machine or trade company are selected can only comprise the partial function described in Fig. 3, is the full release of a concrete simple version or repertoire.

Lobby teller terminal 311 is equipped with the magnetic card read write line 600 of global function dual-magnetic head design.Can finish new bank card hair fastener, change card, the business such as magnetic recording data of modification (produce again and write) magnetic card anti-fake magnetic stripe 502, can certainly carry out bank card to deposit and withdraw general business such as account transfer.

ATM for example ATM 312 general what be equipped with is magnetic card reader.Card reader is dual-magnetic head design, can read on the bank card 500 the magnetic recording data message on two magnetic stripes simultaneously; Keyboard 603, finger scan function 604 be equipped with, data encryption module 602 and communication module 601.

The POS of trade company machine for example POS machine 313 machines general what be equipped with is magnetic card reader.Card reader adopts the single magnetic head design, can read on the magnetic card card number information and the false proof data of checking in two magnetic stripes by swiping the card for twice respectively.

The magnetic card reader configuration that the POS machine is joined can be selected flexibly.Trade company's existing POS machine magnetic card reader can continue to use in the lower bank card payment of the consumption amount of money at present.For cooperating the original POS system of such trade company, bank can write down the feature of these equipment in system, and for example, whether have data encryption feature 602, whether the finger scan function is arranged if writing down every POS machine.For the POS terminal that does not have data encryption feature, can design special flow process and handle.For example, an external encrypting module; For the POS terminal that does not have the finger scan function, need then not accept the payment of checking fingerprint to accept.Large-scale market trade company can choose reasonable dispose sales counter, carries out the renewal upgrading of equipment stage by stage.

Four, bank card business system architecture

Fig. 1 has described the structural model of a bank card business systems connection.Actual system is more complicated than this model, but principle is the same.The head office of financial settlement center and each commercial bank, each area branch etc. are classification (layers) in " the bank card networking consolidated traffic standard " of People's Bank of China's (March 29 calendar year 2001) issue, it is basic structure that the final structure that forms belongs to the tree structure, adds the complication system that netted structure constitutes.But structural model shown in Figure 1 is described bank card business and is stood good.

System is by financial settlement center 100, many tame commercial banks such as Abank 201,B bank 201 etc., commercial bank of every family has the online server of oneself, online server is made up of database server and application servers group, the account information of database server stores bank card user, the software program that the bank card related business process is handled is supported in the application server operation; And a plurality of lobbies, ATM and the POS of trade company terminal under the bank of every family.

Financial settlement center and each commercial bank form the relation of one-to-many, and bank of every family and the lobby, ATM and the POS of the trade company terminal that belong to this bank form the relation of one-to-many again.Forming one at last is root with the financial settlement center, and each commercial bank is a branch, and lobby, ATM and the POS of trade company terminal are the tree of leaf.(if consider that financial settlement center and each commercial bank are hierarchical layer, trans-regional situation, final what form be reticulate texture) based on tree structure.

In the bank card business of reality, merchant bank and issuing bank may be identical, also may be different.When the receipts list is identical with issuing bank, generally do not need the financial settlement center to participate in the operation flow; And most bank card business belong to single and the issuing bank's situation inequality received, and at this moment just need the financial settlement center to participate in into, set up from the service terminal (ATM, POS machine) of merchant bank and the communication link between issuing bank's online server.

Five, a transaction limit credit of bank card

The holder buys total value and surpasses on the amount of controlling risk that the own institute bank card of holding selects and prescribe a time limit when need arrive franchised business of a bank place that is not equipped with the finger scan function as yet, in order to use bank card to pay, can arrive first on any ATM that is equipped with the finger scan function under the issuing bank or the business hall teller terminal and be a transaction limit credit of this bank card application to this franchised business place.Can arrive the consumption of being correlated with at this trade company place then and use bank card to finish payment.

The amount of a credit can only be used once effective, and must be in the time that limits, for example can select between 1～12 hour any one effective numerical value as finishing transaction in the limiting time, cancel otherwise cross this time of after date credit, reuse a transaction limit credit if desired and just must apply for again.

The holder under the issuing bank the business hall teller terminal that is equipped with the finger scan function or ATM on a transaction limit credit of application: at first will block the insertion card reader; By prompting input password; Magnetic card and password are selected a transaction limit credit according to prompting after the online server checking is passed through; And then according to pointing out input to need the accrediting amount amount of money; And the effective time of selection credit; Carry out finger scan identification according to system prompt at last, the fingerprint characteristic data after encrypting is transferred on system's online server compares, and checking is by then credit success.System is kept at system's online server in should the record of card account with the related data of credit success.The holder can be in credit effective time be higher than the consumption and payment of this time amount credit amount of money to any bank card franchised business place then, at this moment only needs brush bank's card number and input payment cipher can finish payment.

Six, bank card business dealing operation flow

What Fig. 4 described is a typical bank card carries out the consumption and payment transaction on the POS of franchised business machine operation flow.

When consuming at any one franchised business of tame bank place and select to use bank card to pay, the holder starts this program.

At first, this consumes payable amount of money F805 to import this client by the cashier of trade company on POS machine 313; Swipe the card on the magnetic card reader 313 of POS machine by holder (but not cashier) then and import bank card number 502, and the card number data are sent the online server 201F810 of merchant bank by POS terminal 313; Merchant bank judges according to card number whether oneself is this bank card issuing bank, if oneself be issuing bank, promptly goes to the program F815 of issuing bank's checking; Otherwise,, then this bank card number information is sent to financial settlement center 100F820 if oneself be not the issuing bank of this bank card; Financial settlement center 100 goes to card number information for example 202F825 of concrete issuing bank again;

Determine after the issuing bank that system sets up a logical communications links between trade company of merchant bank and issuing bank's online server.

Next judge by issuing bank whether the bank card number receive is effective,, be relevant treatment F830 if invalidly promptly judge Fail Transaction; When bank card effectively promptly distributes the bright spoon password that a digital signature uses, and send to the POS system 313F835 of trade company of merchant bank; POS machine 313 is received after the secret key of issuing bank's distribution, i.e. prompting input password, at this moment the holder is according to prompting input bank card payment cipher, the dealing money that POS machine 313 has been imported password and front together, the secret key of distributing with issuing bank is sent to the F845 of issuing bank after encrypting; Issuing bank's online server is verified F850 to password, if the password mistake, password is imported in prompting again, and it is inferior to repeat theF845 step 3, if three password authentifications are all failed then judged Fail Transaction; If password is by checking F850 then enter next step;

Next the transaction limit control line lower limit of selecting in issuing bank by with this dealing money and holder's card drawing time that is used to control risk compares, and less than this lower limit, then directly checks and approves transaction F855 as dealing money;

Otherwise, check whether this bank card has an effective accrediting amount, and this dealing money is not more than this accrediting amount, then check and approve transaction F860;

Otherwise, the transaction limit control line upper limit of selecting in issuing bank during with this dealing money and holder's card drawing that is used to control risk compares F865,, then need more than or equal in this upper limit as dealing money further by scanning holder fingerprint characteristic data checking holder identity F870F875;

Otherwise, swipe the card by the holder and to read the false proof data verification bank card of checking true and false F880 F885 on the false proof magnetic stripe 502 on the bank card 500;

Holder's identity is passed through checking by the checking or the bank card true and false, then checks and approves transaction; If verify holder's identity or the failure of the bank card true and false, then Fail Transaction F890 for three times.

At last, Transaction Success is then printed the transaction voucher, record transaction in issuing bank's online server, merchant bank's online server, and record transaction in the financial settlement center transaction system (if merchant bank is different with issuing bank);

If Fail Transaction is write down Fail Transaction in issuing bank's online server, merchant bank's online server, and record Fail Transaction in the financial settlement center transaction system (if merchant bank is different with issuing bank).

In having realized each purpose process of the present invention, the preferred embodiments of the present invention have been described also.Should be noted that this embodiment is just done explanation and description by explanation principle of the present invention.Many improvement and adaptability revision all are conspicuous for one of ordinary skill in the art under the condition that does not depart from the present invention's essence and scope.Therefore, the present invention is only limited by following claims.

Claims

1, a kind of being used for finished magnetic card transaction method and system safely, comprising:

Anti-counterfeit magnetic card;

Multi-function magnetic card read/write device, promptly the multi-function magnetic card reader with (or) the multi-function magnetic card reader;

Distribute a cryptographic keys;

The amount control line is set;

A transaction limit credit;

Checking holder identity;

Select the situation of the amount control line set and a transaction limit credit to determine to check and approve the program of transaction by dealing money, holder.

2, present magnetic card is a PVC card of putting up a magnetic stripe, the method of claim 1, it is characterized in that: two magnetic stripes are arranged on the Anti-counterfeit magnetic card, and the second magnetic stripe is placed on the position that becomes with original magnetic stripe with magnetic card transverse axis symmetry, is used to deposit the magnetic card anti-fake data; The magnetic recording form of newly-increased false proof magnetic stripe and the magnetic recording form of original magnetic stripe are identical or different; The magnetic card true and false is verified by the online server of magnetic card ard issuers.

3, according to the method for claim 1, it is characterized in that: multi-function magnetic card read/write device is a single magnetic head, inner integrated a data encryption function module, a code keypad module and a finger scan identification module.

4, according to the method for claim 1, it is characterized in that: multi-function magnetic card read/write device, it is dual-magnetic head, two corresponding respectively read/write of magnetic head are got on the Anti-counterfeit magnetic card magnetic stripe in two magnetic stripes, inner integrated a data encryption function module, a code keypad module and a finger scan identification module.

5, claim 3 or 4 method is characterized in that: it is to be distributed for transaction each time by the ard issuers online server that multi-function magnetic card read/write device is encrypted used secret key to data.

6, the method for claim 1, it is characterized in that: an amount control line correspondence be a natural number, the holder is when bank card/magnetic card is got in application or after the card drawing, can select to be provided with one group of tactic amount control line, this group amount control line includes one, two or many amount restraining lines, and whole natural number codomain is divided into a plurality of sections; The value of adjacent amount control line can equate; Amount control line information stores is on the ard issuers online server; Dealing money is in the payment between the different amount control lines or withdraws deposit, and system carries out the risk control program flow process of different security strategies.

7, the method for claim 6 is characterized in that: by the holder two amount control lines up and down are set; The transaction that the amount of money is not higher than lower limit is only verified bank card/magnetic card account number and password; The amount of money is higher than lower limit and is not higher than the transaction of the upper limit, then beyond bank card/magnetic card account number and password are verified, further also need bank card/magnetic card true and false to be verified by on-line mode; The transaction that the amount of money is higher than the upper limit then beyond bank card/magnetic card account number and password are verified, further also needs by on-line mode holder's identity to be verified.

8, the method for claim 1 is characterized in that:

A transaction limit credit application and using method, the holder applies for that the step of a transaction limit credit is as follows to the magnetic card service terminal that the finger scan function is arranged:

Step a. will block the insertion card reader;

Step b. is by prompting input password;

Step c magnetic card and password are selected a transaction limit credit according to prompting after the online server checking is passed through;

Steps d. need the amount amount of money of credit according to the prompting input;

Step e. imports the effective time of this credit;

Step f. carries out finger scan identification according to system prompt at last, and the fingerprint characteristic data after encrypting is transferred on system's online server compares, and checking is by then credit success;

Step g. system is kept at system's online server in should the record of card account with the related data of credit success;

Step h. holder then is not higher than the consumption and payment of this time amount credit amount of money to the POS machine of trade company in credit effective time, at this moment only need brush magnetic card number and input payment cipher can finish transaction.

9, the method for claim 1, it is characterized in that: holder's auth method is by finger scan identification module scanning holder fingerprint, through the algorithm for recognizing fingerprint characteristic that takes the fingerprint, the fingerprint characteristic data of reserving and being kept on the server when fingerprint characteristic data after encrypting is transferred on system's online server with holder's card drawing is compared checking holder identity.

10, the method for claim 1 is characterized in that:

It is as follows to select the situation of the amount control line set and a transaction limit credit to determine to check and approve the program step of transaction by dealing money, holder:

Step b. holder (but not cashier) swipes the card on the magnetic card reader of POS machine and imports the magnetic card card number;

The step c card number is sent to the ard issuers online server;

Steps d. the ard issuers online server judges whether card number is effective;

Step g. whether the online server authentication password is effective;

If step 1. in step j holder's identity by the checking or in step k bank card/magnetic card true and false by the checking, all check and approve transaction;

If after step m. concludes the business in step h, step I or step 1 and checked and approved, promptly Transaction Success is printed the transaction voucher, writes transaction record in the ard issuers online server;

If step n. judges that in steps d card number is invalid, or it is invalid to fail authentication password in step g, or fails to check and approve transaction in step 1, then judges Fail Transaction, writes the Fail Transaction record in the ard issuers online server.