WO2017016039A1 - Procédé et dispositif de transfert de données commerciales entre comptes - Google Patents

Procédé et dispositif de transfert de données commerciales entre comptes Download PDF

Info

Publication number
WO2017016039A1
WO2017016039A1 PCT/CN2015/088498 CN2015088498W WO2017016039A1 WO 2017016039 A1 WO2017016039 A1 WO 2017016039A1 CN 2015088498 W CN2015088498 W CN 2015088498W WO 2017016039 A1 WO2017016039 A1 WO 2017016039A1
Authority
WO
WIPO (PCT)
Prior art keywords
account
fingerprint information
data transfer
service data
terminal corresponding
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2015/088498
Other languages
English (en)
Chinese (zh)
Inventor
陈剑
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Original Assignee
Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Yulong Computer Telecommunication Scientific Shenzhen Co Ltd filed Critical Yulong Computer Telecommunication Scientific Shenzhen Co Ltd
Publication of WO2017016039A1 publication Critical patent/WO2017016039A1/fr
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks

Definitions

  • the present invention relates to the field of Internet technologies, and in particular, to a method and apparatus for implementing mobile payment.
  • Mobile payment refers to the transaction of a certain commodity or business through a mobile phone, PDA, etc., and the transfer of related goods or wealth in the process of mobile payment.
  • the process of mobile payment is a business data transfer.
  • the process such as a transfer transaction process, is the process of transferring the account amount of a transferee to the account of the transferee.
  • the account amount here is an example of business data.
  • the specific transfer amount is the transfer of business data transfer. Business value.
  • WIFI third-generation mobile communication technology
  • mobile Internet and intelligent terminals mobile payment based on terminal application is rapidly popularized, users can conveniently pay for payment, transfer, and financial management of customers through mobile phones such as Alipay and WeChat. Wait for the operation.
  • the mobile payment client makes full use of near-field recognition technology to simplify payment operations, such as providing a two-dimensional code payment function based on a mobile phone camera, or providing a sound wave payment function based on a mobile phone speaker or a microphone.
  • the prior art mainly uses the terminal application or the mobile payment server to authenticate the payer, and the mobile payment can be performed only when the payer identity authentication is passed.
  • the mobile payment can be performed only when the payer identity authentication is passed.
  • due to malware damage caused by backdoors or loopholes in the entire payment system, virus Trojan implantation, terminal loss or user information leakage, the current business data transfer (mobile payment) process has serious security risks and insufficient security.
  • a service data between accounts is provided.
  • the method of transfer in order to solve the technical problem of insufficient security in the process of performing the user's service data transfer service (for example, mobile payment service) existing in the above-mentioned prior art, a service data between accounts is provided.
  • the method of transfer in order to solve the technical problem of insufficient security in the process of performing the user's service data transfer service (for example, mobile payment service) existing in the above-mentioned prior art, a service data between accounts is provided.
  • a method of transferring business data between accounts including:
  • the fingerprint information of the second account is authenticated, and when the fingerprint information of the second account is verified, the service data is transferred between the first account and the second account according to the service value.
  • the fingerprint information of the first account is fingerprint information encrypted by using the first third-party public key; the step of authenticating the fingerprint information of the first account further includes: acquiring the first Decrypting the encrypted fingerprint information of the first account by using the first third-party private key; acquiring pre-stored sample fingerprint information corresponding to the first account; The fingerprint information of the decrypted first account is matched with the pre-stored sample fingerprint information corresponding to the first account. If the matching is successful, the fingerprint information of the first account is verified.
  • the fingerprint information of the second account is fingerprint information encrypted by using a second third-party public key; the step of authenticating the fingerprint information of the second account further includes: acquiring the second Decrypting the encrypted fingerprint information of the second account by using the second third-party private key by using the second third-party private key corresponding to the three-party public key; acquiring the pre-stored corresponding to the second account according to the second account Pre-stored sample fingerprint information; matching the decrypted fingerprint information of the second account with the pre-stored sample fingerprint information corresponding to the second account, and if the matching is successful, the fingerprint information of the second account is verified.
  • the step of performing identity verification on the fingerprint information of the first account further includes: if the fingerprint information verification of the first account fails, the service data transfer is terminated; and the first account is notified to correspond Terminal.
  • the method further includes: if the verification of the fingerprint information of the second account fails, terminating the service data transfer; notifying the first account and Each of the second accounts corresponds to a terminal.
  • the step of notifying the terminal corresponding to the second account to perform the confirmation further includes: sending the first account and the service value to the terminal corresponding to the second account.
  • the method further includes: notifying the terminal corresponding to the first account and the second The service data transfer described by the terminal corresponding to the account has been completed.
  • the present invention also provides an apparatus for performing service data transfer between accounts, including:
  • the service data transfer request receiving module is configured to receive a service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries the second account, the service value, and the fingerprint information of the first account;
  • a first identity verification module configured to perform identity verification on the fingerprint information of the first account, and notify the terminal corresponding to the second account to confirm when the fingerprint information of the first account is verified;
  • a fingerprint information receiving module of the second account configured to receive fingerprint information of the second account uploaded by the terminal corresponding to the second account
  • a second identity verification module configured to perform identity verification on the fingerprint information of the second account, when the fingerprint information of the second account is verified, according to the service value in the first account and the second Business data transfer between accounts.
  • the fingerprint information of the first account is the fingerprint information encrypted by using the first third-party public key; the first identity verification module is further configured to: acquire the first number corresponding to the first third-party public key a three-party private key, using the first third-party private key to decrypt the encrypted fingerprint information of the first account; acquiring pre-stored sample fingerprint information corresponding to the first account; The fingerprint information of the account is matched with the pre-stored sample fingerprint information corresponding to the first account. If the matching is successful, the fingerprint information of the first account is verified.
  • the fingerprint information of the second account is fingerprint information encrypted by using a second third-party public key;
  • the second identity verification module is further configured to: acquire a second number corresponding to the second third-party public key a third-party private key, using the second third-party private key to decrypt the encrypted fingerprint information of the second account; acquiring pre-stored pre-stored sample fingerprint information corresponding to the second account according to the second account; The fingerprint information of the second account is matched with the pre-stored sample fingerprint information corresponding to the second account. If the matching is successful, the fingerprint information of the second account is verified.
  • the first identity verification module is further configured to: when the fingerprint information verification of the first account fails, terminate the service data transfer; and notify the terminal corresponding to the first account.
  • the second identity verification module is further configured to: when the fingerprint information verification of the second account fails, terminate the service data transfer, and notify the first account and the second account respectively terminal.
  • the first identity verification module is further configured to: send the first account and the service value to the terminal corresponding to the second account.
  • the device further includes a service data transfer completion notification module, configured to notify the terminal corresponding to the first account and the terminal corresponding to the second account that the service data transfer has been completed.
  • the present invention also provides a method for initiating service data transfer.
  • Methods including:
  • Receiving the input service data transfer instruction acquiring the first account that is logged in, and acquiring the service value carried by the service data transfer instruction and the second account;
  • the fingerprint input event is detected by the fingerprint sensor, and the fingerprint information corresponding to the first account corresponding to the fingerprint input event is obtained;
  • the server receives the service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries the second account, the service value And the fingerprint information of the first account, the fingerprint information of the first account is authenticated by the server, and when the fingerprint information of the first account is verified, the server notifies the second account to correspond Receiving, confirming, receiving fingerprint information of the second account uploaded by the terminal corresponding to the second account, performing identity verification on the fingerprint information of the second account, and verifying that the fingerprint information of the second account passes And performing service data transfer between the first account and the second account according to the service value.
  • the present invention also provides an apparatus for initiating service data transfer, including:
  • a service data transfer instruction receiving module configured to receive the input service data transfer instruction, obtain the first account that is logged in, and obtain the service value and the second account carried by the service data transfer instruction;
  • a fingerprint information acquiring module configured to detect, by using a fingerprint sensor, an input fingerprint input event, and obtain fingerprint information corresponding to the first account corresponding to the fingerprint input event;
  • a service data transfer request generating module configured to generate a corresponding service data transfer request according to the first account, the second account, the service value, and the fingerprint information
  • a service data transfer request uploading module configured to upload the service data transfer request to a server, where the server receives the service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries Describe the second account, the service value, and the fingerprint information of the first account, and the server performs identity verification on the fingerprint information of the first account, and when the fingerprint information of the first account is verified, the The server notifies the terminal corresponding to the second account to perform confirmation, receives fingerprint information of the second account uploaded by the terminal corresponding to the second account, and performs identity verification on the fingerprint information of the second account, where When the fingerprint information of the second account is verified, the service data is transferred between the first account and the second account according to the service value.
  • the server needs to be initiated and received by the server.
  • the party authenticates its fingerprint information, and the data transfer can be completed only if both parties pass the authentication. That is to say, a service data transfer requires two authentications, thereby improving the security of business data transfer.
  • FIG. 1 is a schematic diagram of an operating system of a mechanism for performing service data transfer between accounts in an embodiment
  • FIG. 2 is a flow chart of a method for performing service data transfer between accounts in an embodiment
  • FIG. 3 is a flow chart of a method for initiating service data transfer in an embodiment
  • FIG. 4 is a schematic structural diagram of an apparatus for initiating service data transfer in an embodiment
  • FIG. 5 is a schematic structural diagram of an apparatus for performing service data transfer between accounts in an embodiment.
  • a method is proposed between accounts.
  • the mechanism for transferring business data, the business data transfer mechanism between the accounts is composed of two parts, including a "method of initiating business data transfer" running on the terminal and "transfer of business data between accounts” running on the server. method".
  • the mechanism for performing service data transfer between accounts operates on a system constituted by the terminal 10 corresponding to the initiator, the server 20 performing the service data transfer, and the terminal 30 corresponding to the receiver as shown in FIG.
  • the computer program for carrying the foregoing method for initiating the data transfer of the service may be a client program of the mobile payment application running on the terminal corresponding to the initiator shown in FIG. 1; the terminal may be a smart phone, a tablet computer or Computer equipment such as laptops.
  • the computer program carrying the above method for performing service data transfer between accounts may be a server program of a mobile payment application running on the server as shown at 20 in FIG.
  • a method for performing service data transfer between accounts is as shown in FIG. 2, and can be run on the server 20 in FIG. 1 above, and includes the following steps:
  • Step S102 Receive a service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries the second account, the service value, and the fingerprint information of the first account.
  • the server receives the service data transfer request uploaded by the terminal corresponding to the first account, and receives the service data transfer request uploaded by the terminal corresponding to the first account at the server. Previously, the request was initiated by the terminal corresponding to the first account and uploaded to the server.
  • FIG. 3 illustrates a method of initiating a service data transfer, which specifically includes the following steps:
  • S202 Receive an input service data transfer instruction, obtain a first account that is logged in, and obtain a service value carried by the service data transfer instruction and a second account.
  • S204 The fingerprint input event is detected by the fingerprint sensor, and the fingerprint information corresponding to the first account corresponding to the fingerprint input event is obtained.
  • S206 Generate a corresponding service data transfer request according to the first account, the second account, the service value, and the fingerprint information.
  • the first account is an initiator of the service data transfer
  • the terminal corresponding to the first account receives the service data transfer instruction input by the user through the sensor, triggering the start of the service data transfer, for example, when the first account corresponds to
  • the terminal is a smart phone
  • the service data transfer instruction input by the user on the touch screen is received through the touch screen of the mobile phone, and then the account of the first account registered in the client is acquired.
  • the information that is, the account information that needs to be transferred by the service data, is then obtained by acquiring the second account corresponding to the service value corresponding to the service data transfer instruction and the recipient of the service data transfer carried in the service data transfer instruction.
  • the identity of the first account needs to be verified, that is, the user needs to input the fingerprint information after inputting the service data transfer instruction for verification.
  • the input fingerprint input event is detected by the fingerprint sensor of the terminal.
  • the fingerprint input event is acquired, and the fingerprint information corresponding to the first account corresponding to the fingerprint input event is obtained.
  • user A wants to transfer the amount of money agreed to user B to 1000.00 yuan, that is, it is desirable to transfer the service data whose service value is 1000.00 from the account of user A to the account of user B.
  • A inputs a corresponding transfer instruction on the online application terminal of the bank of the terminal, that is, the account information "1111222233334444" of the user B and the transfer information "1000.00", and after confirming the corresponding transfer information, inputting in the fingerprint sensor of the terminal Fingerprint information, thereby completing the input of the transfer instruction, generating a corresponding transfer request according to the input transfer instruction, and then The transfer request is uploaded to the server.
  • the server receives the service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries the second account, the service value, and the fingerprint information of the first account.
  • Step S104 Perform identity verification on the fingerprint information of the first account, and notify the terminal corresponding to the second account to confirm when the fingerprint information of the first account is verified.
  • the first account After receiving the service data transfer request uploaded by the terminal corresponding to the first account in step S102, the first account is authenticated according to the fingerprint information of the first account carried in the service data transfer request. Obtaining, according to the received service data transfer request, the account information for uploading the request, that is, the account information of the first account, and then acquiring the sample fingerprint information corresponding to the first account pre-stored in the server according to the account information of the first account. . It should be noted that each account needs to upload its corresponding sample fingerprint information when it is established, in the subsequent account management, in the process of verifying the identity of the user, the relevant sample fingerprint information is called for further processing. .
  • the process of authenticating the fingerprint information of the first account that is, the fingerprint information of the first account carried in the received service data transfer request, and the sample fingerprint information pre-stored in the first account are performed.
  • the process of matching If the two are matched, it is determined that the identity verification of the fingerprint information of the first account is passed, and if the two are not matched, it is determined that the fingerprint information of the first account is not matched.
  • the execution of the service data transfer can be continued. Then, the related information of the service data transfer is sent to the receiver for confirmation, and the receiver is the receiving account of the service data transfer, that is, the terminal corresponding to the second account, that is, the corresponding information of the service data transfer is sent. Confirm the terminal corresponding to the second account.
  • the step of notifying the terminal corresponding to the second account to perform the confirmation further includes: sending the first account and the service value to the terminal corresponding to the second account.
  • user A agrees to transfer money to user B for a total of 1000.00 yuan.
  • user B needs to confirm the transaction and confirm whether the originator of the transfer is correct. And whether the transfer amount is correct and so on. Therefore, when the fingerprint information of the user A is verified, the account information of the user A and the transfer amount of 1000.00 yuan are sent to the user. The user B notifies the terminal corresponding to the user B to confirm the related information.
  • the method for performing service data transfer between accounts further includes: if the fingerprint information of the first account is verified If not, the service data transfer is terminated; and the terminal corresponding to the first account is notified.
  • step S104 If the identity verification of the first account fails in step S104, the user who sends the service data transfer request does not have the corresponding service data transfer authority, and the corresponding service data transfer cannot be performed, then the service data transfer is terminated, and the service is terminated.
  • the message that the data transfer is terminated is notified to the initiator that initiated the data transfer of the service, that is, the terminal corresponding to the first account.
  • Step S106 Receive fingerprint information of the second account uploaded by the terminal corresponding to the second account.
  • the server when the receiver of the service data transfer, that is, the terminal corresponding to the second account, confirms the service data transfer, the server also needs to verify the identity of the second account, and only the identity verification of the second account is also performed. The execution process of the business data transfer can be continued when passing.
  • the terminal corresponding to the second account When receiving the notification message about the service data transfer sent by the server and confirming, the terminal corresponding to the second account needs to input the corresponding identity information and send it to the server for identity verification.
  • the identity information that needs to be input is required. That is the fingerprint information of the second account.
  • Step S108 Perform identity verification on the fingerprint information of the second account, and perform service between the first account and the second account according to the service value when the fingerprint information of the second account is verified. Data transfer.
  • the second account After receiving the fingerprint information of the second account uploaded by the terminal corresponding to the second account in step S106, the second account is authenticated to the fingerprint information of the second account.
  • the pre-stored sample fingerprint information corresponding to the second account is obtained according to the account information of the second account.
  • the process of authenticating the fingerprint information of the second account is a process of matching the fingerprint information of the received second account with the sample fingerprint information pre-stored by the second account. If the two are matched, it is determined that the identity verification of the fingerprint information of the second account is passed, and if the two are not matched, it is determined that the fingerprint information of the second account is not matched.
  • the service data transfer can be performed, that is, the service data transfer request can be performed according to the service data transfer request.
  • the corresponding service value is transferred between the first account and the second account, and the service data transfer is completed.
  • the step of the data transfer further includes: notifying the terminal corresponding to the first account and the terminal corresponding to the second account that the service data transfer has been completed.
  • Performing service data transfer between the first account and the second account according to the service value that is, the service data transfer has been performed, and further, the terminal corresponding to the first account and the second account are further notified.
  • the terminal informs that the business data transfer has been completed. Specifically, the terminal corresponding to the first account is notified, the service data transfer has been completed, and the corresponding service value has been deducted from the first account; the terminal corresponding to the second account is notified, the service data transfer has been completed, and the corresponding service value has been transferred. To the second account.
  • the method further includes: if the fingerprint information verification of the second account fails, terminating the service data transfer; A terminal corresponding to each of the first account and the second account.
  • step S108 If the identity verification of the second account fails to pass in step S108, the user who receives the service data transfer does not have the corresponding authority, and the service data transfer has a security risk or other problem, and the service data transfer cannot be continued.
  • the execution of the service data transfer is terminated, and the related message is notified to the related user, that is, the terminal corresponding to the first account and the terminal service data transfer corresponding to the second account have been terminated.
  • the fingerprint information of the first account may also be fingerprint information encrypted by using the first third-party public key; and identifying the fingerprint information of the first account
  • the step of verifying further includes: acquiring a first third-party private key corresponding to the first third-party public key, and decrypting the encrypted fingerprint information of the first account by using the first third-party private key; Pre-stored sample fingerprint information corresponding to the first account; matching the decrypted fingerprint information of the first account with pre-stored sample fingerprint information corresponding to the first account, if the matching is successful, the first The fingerprint information of the account is verified.
  • the fingerprint information is encrypted by the encryption module, that is, the encrypted fingerprint information is sent to the server.
  • the encryption for the fingerprint information of the first account may be encrypted by using a third-party public key, that is, using the first third public key for encryption, for example, by obtaining PKI authorization encryption on the PKI authorized party. To achieve encryption.
  • the server performs identity verification on the fingerprint information of the first account
  • the encrypted information needs to be decrypted first.
  • the server is based on the first third-party private key corresponding to the first third-party public key.
  • the fingerprint information of the encrypted first account is decrypted for use in subsequent authentication.
  • the process of authenticating the fingerprint information of the first account is a process of matching the fingerprint information of the decrypted first account with the pre-stored sample fingerprint information corresponding to the first account. If the two are matched, it is determined that the identity verification of the fingerprint information of the first account is passed, and if the two are not matched, it is determined that the fingerprint information of the first account is not matched.
  • the fingerprint information of the second account is fingerprint information encrypted by using a second third-party public key; and the step of authenticating the fingerprint information of the second account further includes: acquiring the second a second third-party private key corresponding to the third-party public key, using the second third-party private key to decrypt the encrypted fingerprint information of the second account; and acquiring, according to the second account, the pre-stored corresponding to the second account Pre-stored sample fingerprint information; matching the decrypted fingerprint information of the second account with the pre-stored sample fingerprint information corresponding to the second account, and if the matching is successful, the fingerprint information of the second account is verified .
  • the fingerprint information is encrypted by the encryption module, that is, the encrypted fingerprint information is sent to the server.
  • the encryption for the fingerprint information of the second account is encrypted by using a third-party public key, that is, using the second third public key for encryption, for example, by obtaining PKI authorization encryption on the PKI authorized party.
  • the encrypted information of the second account uploaded by the terminal corresponding to the second account received by the server is the encrypted fingerprint information
  • the server performs identity verification on the fingerprint information of the second account
  • the encrypted information needs to be decrypted first.
  • the server decrypts the encrypted fingerprint information of the second account according to the second third-party private key corresponding to the second third-party public key, so as to be used in subsequent identity verification.
  • the sample fingerprint information corresponding to the second account pre-stored in the server is acquired according to the account information of the second account.
  • the process of authenticating the fingerprint information of the second account is a process of matching the fingerprint information of the decrypted second account with the pre-stored sample fingerprint information corresponding to the second account. If the two are matched, it is determined that the identity verification of the fingerprint information of the second account is passed, and if the two are not matched, it is determined that the fingerprint information of the second account is not matched.
  • a A device for initiating service data transfer on a terminal and a device for performing service data transfer between accounts on a server in order to solve the technical problem of insufficient security in the process of performing a user's service data transfer service (for example, a mobile payment service) existing in the above-mentioned conventional technology, in one embodiment, a A device for initiating service data transfer on a terminal and a device for performing service data transfer between accounts on a server.
  • a user's service data transfer service for example, a mobile payment service
  • the device for initiating service data transfer is as shown in FIG. 4, and includes: a service data transfer instruction receiving module 102, a fingerprint information obtaining module 104, a service data transfer request generating module 106, and a service data transfer request uploading module 108, wherein:
  • the service data transfer instruction receiving module 102 is configured to receive the input service data transfer instruction, obtain the first account that is logged in, and obtain the service value and the second account carried by the service data transfer instruction.
  • the fingerprint information acquiring module 104 is configured to detect, by using the fingerprint sensor, the input fingerprint input event, and obtain the fingerprint information corresponding to the first account corresponding to the fingerprint input event.
  • the service data transfer request generating module 106 is configured to generate a corresponding service data transfer request according to the first account, the second account, the service value, and the fingerprint information.
  • the service data transfer request uploading module 108 is configured to upload the service data transfer request to the server, and the server receives the service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries The second account, the service value, and the fingerprint information of the first account are authenticated by the server for fingerprint information of the first account, and when the fingerprint information of the first account is verified, The server notifies the terminal corresponding to the second account to perform confirmation, receives fingerprint information of the second account uploaded by the terminal corresponding to the second account, and performs identity verification on the fingerprint information of the second account. When the fingerprint information verification of the second account is passed, the service data is transferred between the first account and the second account according to the service value.
  • the device for performing service data transfer between the accounts is as shown in FIG. 5, and specifically includes:
  • the service data transfer request receiving module 202 is configured to receive a service data transfer request uploaded by the terminal corresponding to the first account, where the service data transfer request carries the second account, the service value, and the fingerprint information of the first account.
  • the first identity verification module 204 is configured to perform identity verification on the fingerprint information of the first account, and notify the terminal corresponding to the second account to confirm when the fingerprint information of the first account is verified.
  • the fingerprint information receiving module 206 of the second account is configured to receive the terminal uploaded by the terminal corresponding to the second account. Fingerprint information of the second account.
  • the second identity verification module 208 is configured to perform identity verification on the fingerprint information of the second account.
  • the service data is transferred between the first account and the second account according to the service value.
  • the fingerprint information of the first account is the fingerprint information encrypted by using the first third-party public key; the first identity verification module 204 is further configured to: acquire the first third-party private key corresponding to the first third-party public key, Decrypting the encrypted fingerprint information of the first account by using the first third-party private key; acquiring pre-stored sample fingerprint information corresponding to the first account; pre-storing the fingerprint information of the decrypted first account corresponding to the first account The sample fingerprint information is matched. If the matching is successful, the fingerprint information of the first account is verified.
  • the fingerprint information of the second account is the fingerprint information encrypted by using the second third-party public key; the second identity verification module 208 is further configured to: acquire the second third-party private key corresponding to the second third-party public key, Decrypting the encrypted fingerprint information of the second account by using the second third-party private key; acquiring the pre-stored sample fingerprint information corresponding to the second account according to the second account; and deleting the fingerprint information of the decrypted second account
  • the pre-stored sample fingerprint information corresponding to the second account is matched. If the matching is successful, the fingerprint information of the second account is verified.
  • the first identity verification module 204 is further configured to: when the fingerprint information verification of the first account fails, terminate the service data transfer; and notify the terminal corresponding to the first account.
  • the second identity verification module 208 is further configured to: when the fingerprint information verification of the second account fails, terminate the service data transfer, and notify the terminal corresponding to each of the first account and the second account.
  • the first identity verification module 204 is further configured to: send the first account and the service value to the terminal corresponding to the second account.
  • the device further includes a service data transfer completion notification module 210, configured to notify that the terminal corresponding to the first account and the terminal service data transfer corresponding to the second account have been completed.
  • the server needs to be initiated and received by the server.
  • the party authenticates its fingerprint information, and the data transfer can be completed only if both parties pass the authentication.
  • a business data transfer Two authentications are required, which increases the security of business data transfer.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

L'invention concerne un procédé de transfert de données commerciales entre comptes. Le procédé consiste à réaliser les étapes suivantes : une requête de transfert de données commerciales téléchargées vers l'amont par un terminal correspondant à un premier compte est reçue (S102) ; les informations d'empreintes digitales du premier compte sont authentifiées, on constate que le terminal correspondant à un second compte confirme lorsque les informations d'empreintes digitales du premier compte réussissent l'authentification (S104), les informations d'empreintes digitales du second compte téléchargées vers l'amont par le terminal correspondant au second compte sont reçues (S106) ; les informations d'empreintes digitales du second compte sont authentifiées, les données commerciales sont transférées entre le premier compte et le second compte selon des valeurs commerciales lorsque les informations d'empreintes digitales du second compte réussissent l'authentification (S108). L'invention concerne également un procédé d'initiation de transfert de données commerciales, un dispositif de transfert de données commerciales entre comptes et un dispositif d'initiation de transfert de données commerciales. Le procédé et le dispositif de transfert de données commerciales entre comptes peut améliorer la sécurité de transfert des données commerciales entre comptes.
PCT/CN2015/088498 2015-07-30 2015-08-30 Procédé et dispositif de transfert de données commerciales entre comptes Ceased WO2017016039A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510459132.5A CN105550859A (zh) 2015-07-30 2015-07-30 一种在账户之间进行业务数据转移的方法及装置
CN201510459132.5 2015-07-30

Publications (1)

Publication Number Publication Date
WO2017016039A1 true WO2017016039A1 (fr) 2017-02-02

Family

ID=55830039

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/088498 Ceased WO2017016039A1 (fr) 2015-07-30 2015-08-30 Procédé et dispositif de transfert de données commerciales entre comptes

Country Status (2)

Country Link
CN (1) CN105550859A (fr)
WO (1) WO2017016039A1 (fr)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111369250A (zh) * 2020-03-06 2020-07-03 微民保险代理有限公司 基于联盟链的数据处理方法、装置、设备以及存储介质

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106529955A (zh) * 2016-10-19 2017-03-22 上海摩软通讯技术有限公司 一种支付方法及装置
CN108537050B (zh) * 2018-03-20 2021-12-14 中国建设银行股份有限公司 业务数据转移方法和相关装置
CN110738491B (zh) * 2019-10-16 2025-10-31 北京三快在线科技有限公司 数值转移方法、系统、装置、终端及存储介质
CN111626723A (zh) * 2020-06-04 2020-09-04 中国银行股份有限公司 一种账户标识的判断方法和系统

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101324950A (zh) * 2008-07-23 2008-12-17 中国建设银行股份有限公司 一种通过手机实现转帐的方法和系统
US20120158594A1 (en) * 2008-10-16 2012-06-21 China Unionpay Co., Ltd Transfer method of electronic cash
CN103065243A (zh) * 2011-10-19 2013-04-24 王晓辰 具有收、付双重功能的手机钱包

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101986355B (zh) * 2010-10-29 2013-02-13 中国工商银行股份有限公司 一种银行卡交易权限管理方法、系统及终端
CN103116844A (zh) * 2013-03-06 2013-05-22 李锦风 一种交易双方互相认证的近场支付方法
US9892413B2 (en) * 2013-09-05 2018-02-13 International Business Machines Corporation Multi factor authentication rule-based intelligent bank cards
CN103942688A (zh) * 2014-04-25 2014-07-23 天地融科技股份有限公司 数据安全交互系统
CN103955828A (zh) * 2014-05-13 2014-07-30 陈业军 一种点对点支付系统及方法
CN104217332A (zh) * 2014-08-29 2014-12-17 华为技术有限公司 一种支付验证方法、服务器及系统

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101324950A (zh) * 2008-07-23 2008-12-17 中国建设银行股份有限公司 一种通过手机实现转帐的方法和系统
US20120158594A1 (en) * 2008-10-16 2012-06-21 China Unionpay Co., Ltd Transfer method of electronic cash
CN103065243A (zh) * 2011-10-19 2013-04-24 王晓辰 具有收、付双重功能的手机钱包

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111369250A (zh) * 2020-03-06 2020-07-03 微民保险代理有限公司 基于联盟链的数据处理方法、装置、设备以及存储介质
CN111369250B (zh) * 2020-03-06 2023-09-05 微民保险代理有限公司 基于联盟链的数据处理方法、装置、设备以及存储介质

Also Published As

Publication number Publication date
CN105550859A (zh) 2016-05-04

Similar Documents

Publication Publication Date Title
US12165141B1 (en) Biometrics-based e-signatures for pre-authorization and acceptance transfer
CN113474774B (zh) 用于认可新验证器的系统和方法
CN113302894B (zh) 安全账户访问
CN106664208B (zh) 使用安全传输协议建立信任的系统和方法
US10810585B2 (en) Systems and methods for authenticating users in connection with mobile operations
RU2649786C2 (ru) Мобильное платежное устройство на базе технологии биораспознавания, способ и устройство
CN106575416B (zh) 用于向装置验证客户端的系统和方法
CN106464673B (zh) 用于验证装置注册的增强的安全性
TWI792320B (zh) 判定認證能力之查詢系統、方法及非暫態機器可讀媒體
US20190173873A1 (en) Identity verification document request handling utilizing a user certificate system and user identity document repository
CN106575281B (zh) 用于实施托管的验证服务的系统和方法
CN105959287A (zh) 一种基于生物特征的安全认证方法及装置
CN111431719A (zh) 一种移动终端密码保护模块、移动终端及密码保护方法
CN104618116A (zh) 一种协同数字签名系统及其方法
WO2024109551A1 (fr) Procédé et appareil de traitement de paiement numérique, ainsi que dispositif, système et support
WO2017016039A1 (fr) Procédé et dispositif de transfert de données commerciales entre comptes
JP2017535893A (ja) 支払い検証方法、装置及びシステム
TWM642599U (zh) 身分驗證系統
CN104320261B (zh) 金融智能卡上实现身份认证的方法、金融智能卡和终端
TWI753102B (zh) 實名認證服務系統及實名認證服務方法
CN115567240A (zh) 身份认证方法、装置、计算机设备和存储介质
US12316630B2 (en) Systems and methods for identity verification and authentication
CN113872989A (zh) 基于ssl协议的认证方法、装置、计算机设备和存储介质
KR101625065B1 (ko) 휴대단말기에서의 사용자 인증방법
TWI778319B (zh) 跨平台授權存取資源方法及授權存取系統

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15899391

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15899391

Country of ref document: EP

Kind code of ref document: A1