CN1801226A - Universal check IC card processing method - Google Patents
Universal check IC card processing method Download PDFInfo
- Publication number
- CN1801226A CN1801226A CN 200510135341 CN200510135341A CN1801226A CN 1801226 A CN1801226 A CN 1801226A CN 200510135341 CN200510135341 CN 200510135341 CN 200510135341 A CN200510135341 A CN 200510135341A CN 1801226 A CN1801226 A CN 1801226A
- Authority
- CN
- China
- Prior art keywords
- check
- parameter
- card
- file
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention discloses a method for dealing with general check IC card which comprises: setting assured files in check IC card and accessing the file with assured command. Taking digital signature with check IC card comprises steps of: verifying password; external certification; internal certification; inputting parameter; confirming signature or canceling; and getting check information after getting signature. Wherein inputting parameter and signature calculation are processed according to the self definition of check IC card itself, and the amount of parameter, order and clew are decided by check IC card and processed with uniform style by terminals.
Description
Technical field
The invention belongs to the Financial Information process field, specifically is the method that a kind of universal check IC card is handled.
Background technology
Worldwide, the use of cashier's check is very universal, and this almost is indispensable in the financial transaction field.The U.S.'s check use amount in 2003 has reached 36,700,000,000.The People's Bank is also in the use that promotes check or even personal cheque energetically.
Traditional check is handled 3 the following problems that face: cost, speed, security.The annual output value 30,000,000,000 U.S. dollars of U.S.'s check treatment industry, this is the scale of an industry on the one hand, has also reacted the huge cost that check is handled simultaneously.Therefore under the situation of modern IT technology height development, need greatly develop digitizing check technology to overcome the shortcoming of conventional checks.
At present, digital signature has obtained the legislation approval of the United Nations and national governments, in this case, takes the mode of digital signature to realize that check digitization is that check is handled a modern feasible scheme.
The scheme that digital signature is the most ripe is to take PKI IC-card technology.Use the IC-card signature to realize that the digitizing check will also can produce huge change to existing check tupe, thereby also bring new problem simultaneously to producing great influence future.When using the check IC card signature, the problem of the environment for use set up is arranged inevitably.
This environment may use the cheque punch that can handle digital signature, also may use a computer to handle the digital signature of check.No matter be the sort of environment, all can require terminal device or computer software can handle the check IC card of a plurality of banks simultaneously.Can not produce a kind of cheque punch only handles the check IC card of some banks and can not handle the check IC card of other bank.This, just require terminal device to possess versatility: a cheque punch can be handled the check IC card of a plurality of banks.
Meanwhile, there is the treatment scheme of the safety of inherent demand oneself definition check IC card in each bank, rather than all banks all adopt consistent methods.There are the needs of different signature algorithms and flow definition in each bank, and the safe handling technology that adopts own renewal and the needs of disposal route are arranged, and the versatility of this and device processes is a contradiction.The continuous upgrading that can not rely on the terminal device program solves the contradiction between equipment interoperability and each bank's different disposal.
The present invention solves the problem that the check IC card versatility is handled just, solves the coordination problem of equipment interoperability and each cashier's check IC-card processing independence from the design point of view of check IC card own.
Summary of the invention
The invention discloses the method that a kind of universal check IC card is handled, be provided with following file in the described check IC card:
● check merchant identification management document;
● check PKI storage file;
● the check formatted file;
● the check log file.
Described file has been set file name of determining and the access instruction of determining.
The content and the character of described file are described as follows:
● check merchant identification management document
Content comprises: Bank Name, certification path (different numerical value being arranged for different commercial banks), name of account, account number, the key version, key length, cryptographic algorithm sign, check IC card hair fastener time, initial check sequence number, the digital signature of above information self, or the like.This document rewrites only, cannot revise, and rewrites just to be equivalent to hair fastener again.If rewrite, its corresponding public and private key is invalid to placing when rewriteeing, and must produce again.
● check PKI storage file
Storage of public keys and corresponding current sequence number information, for applied links, the direct control of this document has only read operation.
● the check formatted file;
File content is described the composition of explanation check information: comprise number of parameters, parameter name prompting, parameter length, parameter type, algorithm sign, check digit signature length.Comprise the explanation of the partial parameters that need not import, such as the check sequence number, payer information, or the like (these parameters need illustrate when reading the check log file and show).
● the check log file;
Externally belonging to read-only file, is a circular file, always deposits the digital check record of up-to-date some (such as 30).When the check of signing and issuing surpassed the number of setting, the earliest one was capped.Each check record is deposited according to the definition of check formatted file.Each bar record comprises: complete check information such as check parameter and check sequence number, termination number, digital signature.After confirming to carry out digital signature, check IC card calculates digital signature for the parameter of input, automatically complete check information is write described check log file.
Be provided with on the basis of the above file, the present invention realizes that the processing of check IC card signature defers to following step:
● carry out password authentification with the order format of determining, confirm possessor's identity;
● with the authentication order format external authentication of determining, during authentication, termination number, certification path, account number participates in computing; Authentication is in the state that allows the input parameter and the computing of signing by the state of check IC card internal control afterwards, and this state is returned to original state when resetting or behind the signature;
● with the authentication order format internal authentication of determining, after authentication was passed through, external unit can be carried out the check signature procedure of mandate;
● after inside and outside authentication, the software in terminal program or the computing machine is handled relevant parameter prompting and input according to the flow process of IC-card self definition drivenly, and at this time what, read-write mode of order format and parameter determined by check IC card self;
● after all check information inputs and confirming, confirm to ask for an autograph with the order format of determining, perhaps cancel current check, promptly the signature of check is handled;
● the state-of-the-art record of visit check log file can obtain signing and issuing later check information, and further handles on terminal and computer application software, such as: processing such as printout, e-file storage, the delivery of mail.
In above-mentioned step, described check IC card is after internal authentication and external authentication, terminal program or computer application software are handled relevant parameter prompting and input according to the flow process of check IC card self definition drivenly, and described check parameter prompting and input process are as follows:
● at first from the check formatted file, obtain the format information of check, comprise: read the parametric description instruction, the instruction of input parameter, the instruction of reading the check parameter, check number of parameters with the order format of determining;
● according to reading the parametric description instruction, read first check parametric description data, comprise prompt strings, parameter length, parameter type etc.;
● according to the input parameter instruction, import first check parameter; On terminal program or computer software interface, point out according to the prompt strings in the parametric description data, judge according to parameter length and type whether input is legal, with the later parameter of correct input on the terminal, be input in the check IC card;
● according to the parameter reading command, read first check parameter; If desired, adjust and re-enter first check parameter, promptly revise first check parameter;
● according to reading the parametric description instruction, read second check parametric description data, comprise prompt strings, parameter length, parameter type etc.;
●。。。。。。
● and the like, up to having imported all check parameters that require input.
Wherein, the parameter that check information need be imported comprises at least: type of payment, payee's title, account number, the amount of money, time etc.;
Other parameter that does not need to import then comprises respectively:
● the check parameter of paying party is obtained by check trade company management document;
● the check sequence number of check IC card is obtained by the PKI storage file;
● authentication state " position " produces when externally authenticating; Have 2 kinds, be respectively: the authentication state " position " of terminal authentication pattern and application software pattern automatically produces different numerical value owing to use the difference of authenticate key in the check IC card.
● when then externally being authenticated by check IC card self, termination number obtains.
Method of the present invention, the fileinfo form that is provided with in check IC card adopts unified coding, and its corresponding codes numerical value determined in characters such as Chinese character, takes GB encode Chinese characters for computer standard.
Method of the present invention, check IC card are taked cipher authentication mode and the password alter mode determined, so that terminal device is realized the versatility that check IC card such as password is safeguarded.
The present invention from the design angle of check IC card, realizes the versatility of handling emphatically in the process of carrying out digital signature.As for the initialization of check IC card, the injection of unlock password key and storage, the injection of authenticate key and storage, the generation of other associated documents, or the like, the present invention does not limit its processing procedure and instruction type.
Embodiment
The method that a kind of universal check IC card disclosed by the invention is handled is provided with definite file to realize the general of terminal device in the described check IC card, described file and character thereof are as follows:
● check merchant identification management document
File name and the operational order determined.
File name and the operational order determined are meant that these parameters all are appointments.Such as file name (perhaps document number) 2F01, the operational order of reading file adopt OAOD2F01 for its APDU order format front initial several encoding.
File content comprises: type of payment 1 byte, 10 bytes of Bank Name, 2 bytes of certification path, 20 bytes of name of account, 10 bytes of account number, 1 byte of key version, 2 bytes of key length, 1 byte of cryptographic algorithm sign, check IC card hair fastener time 4 bytes, 5 bytes of initial sequence number, 8 bytes of the digital signature of above information self, or the like.
In the process of using the check IC card signature, this document is a read-only file, can't make amendment to its parameter.In initialization procedure, generate this document, write its content.This process does not influence versatility according to needs oneself definition of each bank-user.
This document rewrites only, cannot revise, and rewrites just to be equivalent to hair fastener again.If rewrite, it is invalid that its corresponding public and private key is opposite to, and must produce again.
● check PKI storage file
File name and the operational order determined.
Storage of public keys and corresponding current check sequence number information, in the applied links of check signature, the direct control of this document has only read operation.When the corresponding private key that uses public-key was signed, current check sequence number is handled by check IC card automatically increased by 1.
● the check formatted file
File name and the operational order determined.
File content is described the composition of explanation check information: comprise number of parameters, parameter name prompting, parameter length, parameter type, check digit signature length; And the order format of parameter reading and writing.
Parameter wherein is divided into 2 classes: the parameter that the parameter of needs inputs and not needing is imported.The parameter that does not need to import comprises that by the payment enterprise name that obtains in the check merchant identification management document, account number etc. by the check sequence number of PKI storage file storage, the numerical value and the termination number of authentication state " position " obtain in verification process.
● the check log file
File name and the operational order determined.
The check log file generates when initialization, and initialized mode and instruction do not influence versatility by check IC card producer or bank oneself definition.
Wait in other processing procedure signing, the check log file is an independently external read-only file.Each check record is deposited according to the form of check formatted file definition.
Generally deposit the digital check record of up-to-date some, such as 30.
The check log file is a circular file, and when check outnumbered the number of setting, during such as 30, the earliest one by a up-to-date covering.
After confirming to carry out digital signature, check IC card calculates digital signature for the parameter of input, automatically complete check information is write described check log file.
More than be the file setting of check IC card and the character of file, these have determined the processing of file, and it is specifically handled is easy for the engineering technical personnel of IC-card industry.
According to described method file is set, can realizes using the versatility of link file.On this basis, handle the signature of check IC card according to the following steps:
● carry out password authentification with the order format of determining, confirm possessor's identity;
● with the authentication order format external authentication of determining, confirm the legitimacy of terminal by check IC card.During authentication, termination number, certification path, account number participates in computing; Authentication by after the state of check IC card internal control be in the state that allows the input parameter and the computing of signing, this state is the answer original state after signature and when resetting;
● with the authentication order format internal authentication of determining, after authentication was passed through, the legitimacy of external unit approval check IC card just allowed to authorize and carries out the check signature procedure;
● after inside and outside authentication, software in terminal program or the computing machine is handled relevant parameter prompting and input according to the flow process of check IC card self definition drivenly, and at this time what, read-write mode of order format and parameter determined by check IC card self;
● after all check information inputs and confirming, confirm to ask for an autograph or cancel current check with the order format of determining;
● the state-of-the-art record of visit check log file, promptly obtain signing and issuing later check information, can on terminal and software, further handle: printing, the delivery of mail etc.
In above-mentioned step, all processing modes all are processing instruction and the treatment scheme of determining in fact, versatility of the present invention is prior to be: the independence that is provided with and imports in definition check parameter in the check IC card is provided on the basis of determining, can solves each bank according to own inherent setting and the input that requires processing check parameter according to following flow process.
Terminal program or computer application software are handled relevant parameter prompting and input according to the flow process of check IC card self definition drivenly, and described check parameter input process is as follows:
● at first obtain the format information of check, comprise with the order format of determining: read the parametric description instruction, the instruction of input parameter, the instruction of reading the check parameter, the check number of parameters, or the like;
● according to reading the parametric description instruction, read first check parametric description data, comprise prompt strings, parameter length, parameter type etc.;
● according to the input parameter instruction, import first check parameter.At terminal program, perhaps on the software interface, point out according to the prompt strings in the parametric description data, judge according to parameter length and type whether input is legal, with the later parameter of correct input on the terminal, be input in the check IC card;
● according to the parameter reading command, read first check parameter, correct with the check parameter contrast of exterior storage to guarantee the parameter input, if desired, re-enter first check parameter, promptly revised first check parameter;
● according to reading the parametric description instruction, read second check parametric description data, comprise prompt strings, parameter length, parameter type etc.;
●。。。。。。
● and the like, up to having imported all check parameters that require input.
Wherein, the parameter that check information need be imported comprises at least: payee's title, account number, the amount of money, time etc.; The parameter that other parameter does not need to import is then distinguished following processing:
● the check parameter of paying party is obtained by check trade company management document;
● the check sequence number of check IC card is obtained by the PKI storage file;
● authentication state " position " produces when externally authenticating, and has 2 kinds: the authentication state " position " of terminal authentication pattern and software authentication pattern automatically produces different numerical value owing to use the difference of authenticate key in the check IC card.
● when then externally being authenticated by check IC card self, termination number obtains.
By above-mentioned mode, just can handle the input of check parameter according to the definition of check IC card.What of check parameter, the title of check parameter, the sequencing of input, or the like, and the signature algorithm of check IC card inherence all only is to decide according to the design by check IC card.Terminal program or computer software need not be revised the variation and the upgrading that just can realize check IC card ordinatedly, have given check IC card the concrete independence of handling, and have so just realized the direct versatility of check IC card, take into account each different needs.Can define the safety requirements of oneself be sure oing by each bank like this, and need not other link bear safe responsibility.
The information format of the file that is provided with in check IC card adopts unified information coded format.Simultaneously, check IC card is taked cipher authentication mode and the password alter mode determined, has realized the versatility of check IC card password maintenance on terminal program and computer application software.
The present invention realizes the versatility of processing emphatically from the processing of using the check IC card signature, these are by the operating system decision of check IC card, as for the processing of check IC card initialization procedure, then can determine to cooperation by IC-card producer and bank, not scope of the present invention.
The present invention does not specifically describe the details of processing, but the relevant specific implementation of handling is the technology of knowing for the engineering technical personnel of IC-card industry.Such as external authentication and internal authentication, the authentication of the IC-card standard that meets the People's Bank's formulation is arranged, the authentication of alternate manner is also arranged, be recognized techniques from technical finesse, the present invention is not limited to specify a certain.
Claims (6)
1. the method handled of a universal check IC card is characterized in that: be provided with following file in the described check IC card:
● check merchant identification management document has defined file name and the access instruction determined;
● check PKI storage file has defined file name and the access instruction determined;
● check formatted file: defined file name and the access instruction determined;
● the check log file has defined file name and the access instruction determined;
Described file has definite title in check IC card, definite access instruction is arranged in use.
2. the method handled of a universal check IC card is characterized in that: abide by following step when described check IC card carries out digital signature:
● carry out password authentification with the order format of determining, confirm possessor's identity;
● carry out external authentication with the authentication order format of determining, confirm the legitimacy of external unit;
● carry out internal authentication with the authentication order format of determining, terminal device is confirmed the legitimacy of check IC card;
● after internal authentication and external authentication, the application software in terminal program or the computing machine is handled the prompting and the input of relevant check parameter drivenly according to the flow process of check IC card self definition;
● after all check information inputs and confirming,, confirm to carry out digital signature or cancel current check with the order format of determining;
● the state-of-the-art record of visit check log file, complete digitized check information after obtaining signing and issuing.
3. the method that a kind of universal check IC card according to claim 2 is handled, it is characterized in that: described check IC card is after internal authentication and external authentication, terminal program or computer application software are handled relevant parameter prompting and input according to the flow process of check IC card self definition drivenly, and described parameter prompting and input process are deferred to following step:
● the parameter operation information with definite order format acquisition check comprises: read the parametric description instruction, parameter instruction is read in the input parameter instruction, the check number of parameters, or the like;
● according to reading the parametric description instruction, read first check parametric description data, comprising: prompt strings, parameter length, parameter type etc.;
● instruct according to input parameter, import first check parameter, on terminal program or computer application software interface, point out according to first parametric description data, judge according to parameter length and type whether input is legal, with the later parameter of correct input on terminal or the computer application software, be input in the check IC card;
● in order to strengthen reliability,, read first check parameter,,, just can revise first check parameter if wrong then re-enter first check parameter with the comparison of preserving in terminal or the computer application software according to the parameter reading command;
● according to reading the parametric description instruction, read second check parametric description data, comprise prompt strings, parameter length, type etc.;
●。。。。。。
● and the like, up to having imported all check parameters that require input.
4. the method that a kind of universal check IC card according to claim 3 is handled is characterized in that: described check parameter is divided into the parameter of needs input and the parameter that obtains from the check IC card file; Wherein, the parameter that check information need be imported comprises at least: type of payment, payee's title, account number, the amount of money, time etc.; Other parameter does not need input, but obtains in the file by check IC card, and is as follows respectively:
● the check parameter of paying party is obtained by check trade company management document;
● the check sequence number is obtained by the PKI storage file;
● produce when the parameter of authentication state " position " externally authenticates, have 2 kinds of numerical value at least: expression terminal authentication pattern and computer software certification mode are automatically produced different numerical value when authentication by the difference of using authenticate key in the check IC card;
● when then externally being authenticated by check IC card self, termination number obtains.
5. the method that a kind of universal check IC card according to claim 1 is handled, it is characterized in that: the information format of the file that is provided with in the described check IC card adopts unified coded system, realization is to the unification of character numeric codings such as Chinese character, such as adopting GB encode Chinese characters for computer standard.
6. the method that a kind of universal check IC card according to claim 1 is handled is characterized in that: take cipher authentication mode and the password alter mode determined in the described check IC card, to realize the versatility of terminal device to the check IC card password maintenance.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200510135341 CN1801226A (en) | 2005-12-30 | 2005-12-30 | Universal check IC card processing method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 200510135341 CN1801226A (en) | 2005-12-30 | 2005-12-30 | Universal check IC card processing method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1801226A true CN1801226A (en) | 2006-07-12 |
Family
ID=36811214
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 200510135341 Pending CN1801226A (en) | 2005-12-30 | 2005-12-30 | Universal check IC card processing method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1801226A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101562523B (en) * | 2008-04-15 | 2011-04-20 | 航天信息股份有限公司 | Security certification method applied on mobile storage device |
| CN108256860A (en) * | 2018-01-03 | 2018-07-06 | 山东富瑞英泽资产管理股份有限公司 | Business clearing special certificate based on electronic information management splits method of payment |
| CN108256861A (en) * | 2018-01-03 | 2018-07-06 | 山东富瑞英泽资产管理股份有限公司 | Business clearing special certificate transfer payment method based on electronic information management |
-
2005
- 2005-12-30 CN CN 200510135341 patent/CN1801226A/en active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101562523B (en) * | 2008-04-15 | 2011-04-20 | 航天信息股份有限公司 | Security certification method applied on mobile storage device |
| CN108256860A (en) * | 2018-01-03 | 2018-07-06 | 山东富瑞英泽资产管理股份有限公司 | Business clearing special certificate based on electronic information management splits method of payment |
| CN108256861A (en) * | 2018-01-03 | 2018-07-06 | 山东富瑞英泽资产管理股份有限公司 | Business clearing special certificate transfer payment method based on electronic information management |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110674523B (en) | Method for confirming electronic contract signer by combining digital signature with handwritten signature | |
| US12430390B2 (en) | Secure signing method, device and system | |
| CN1156785C (en) | Electronic Data Management System | |
| CN2667807Y (en) | Network bank with device for encrypting and idetificating utilizing USB key | |
| CN1353386A (en) | Card business confirmation method using finger print information and its system | |
| CN108154351B (en) | Method, system and medium for implementing physical and electronic integrated seal and transaction approval | |
| CN1858793A (en) | Electronic contract managing system operation platform | |
| CN1941009A (en) | Method for realizing fee payment by mobile telecommunication terminal | |
| US8924729B1 (en) | Systems and methods for biometric E-signature | |
| CN101034986A (en) | Method and system for securely using the intelligent secrete key device | |
| CN117114677A (en) | Digital wallet management system and method | |
| CN1873705A (en) | Automated teller machine | |
| US20210019384A1 (en) | System and method for authentication using biometric hash strings | |
| WO2025060792A1 (en) | Electronic seal system for accessing digital mailbox, and method for accessing digital mailbox | |
| CN1801226A (en) | Universal check IC card processing method | |
| WO2023174091A1 (en) | Home-based business startup pre-authentication apparatus and home-based business startup pre-authentication method | |
| WO2023193585A1 (en) | Authentication apparatus and method for original of and copy of electronic certificate license | |
| CN103810556A (en) | Digital invoicing management system | |
| CN118657573B (en) | Digital bill management method, system, equipment and medium based on data credentials | |
| CN1655505A (en) | Bank cashier safety system and method | |
| CN119515406A (en) | Enterprise verification system, method, device and storage medium based on handwriting identity features | |
| CN1959750A (en) | Cash automatic access system and device | |
| CN1223961C (en) | Method and system of identifying teller identity using fingerprint | |
| WO2025140295A1 (en) | Ipv6-based multi-factor authentication root system and method | |
| CN1220932C (en) | Electronic autograph on document |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |