CN103268436A - Method and system for touch-screen based graphical password authentication in mobile payment - Google Patents
Method and system for touch-screen based graphical password authentication in mobile payment Download PDFInfo
- Publication number
- CN103268436A CN103268436A CN2013101426721A CN201310142672A CN103268436A CN 103268436 A CN103268436 A CN 103268436A CN 2013101426721 A CN2013101426721 A CN 2013101426721A CN 201310142672 A CN201310142672 A CN 201310142672A CN 103268436 A CN103268436 A CN 103268436A
- Authority
- CN
- China
- Prior art keywords
- module
- user
- mobile
- bank
- data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention relates to a method and a system for touch-screen based graphical password authentication in mobile payment. The system comprises a user mobile terminal module, a mobile financial service trade center module and a bank card center module, and wireless network connection between the user mobile terminal module and the bank card center module is a GMS network and/or a CDMA (code division multiple accesses) communication network and/or a 3G (the 3th generation telecommunication) mobile communication network and/or a 4G (the 4th generation telecommunication) mobile communication network; and the mobile financial service trade center module is at least provided with a database module, a communication module, a message data protocol conversion module and an encryption and decryption module. By the system for the touch-screen based graphical password authentication in the mobile payment which is used for verifying password, password inputting efficiency, convenience and safety are improved, so that users can experience more rapid and convenient mobile payment, and losses caused by the fact that the password are divulged by others or accounts are stolen are effectively reduced.
Description
Technical field
The present invention relates to IT mobile technology industry, a kind of graphical method of password authentication and system based on touch-screen in the mobile payment specifically, being intended to provides a kind of convenient and swift easy-operating method of payment for the payment behavior by the mobile terminal purchase and consumption.
Background technology
In the prior art along with the development of mobile communication technology, and the shopping overbearing tide of gained popularity, for the modes of payments of doing shopping more fast and easily is provided to the consumer, the bank electric payment mode just is widely adopted.Except traditional debit card and Credit Card Payments and computer payment way, the mode of utilizing mobile terminal device to pay also is subjected to increasing consumer's favor,, traditional mobile payment technology is that common manual input character password is verified, this technology has individual weak point, being exactly common input of character string password can be more loaded down with trivial details, lose time, and confidentiality is not high.
Summary of the invention
Technical matters to be solved by this invention is to overcome the deficiencies in the prior art, a kind of graphical method of password authentication and system based on touch-screen in the mobile payment are provided, the technical solution adopted for the present invention to solve the technical problems is: the present invention includes the customer mobile terminal module, mobile financial services transactions center module, the bank card center module, wherein the wireless network connecting mode that adopts between customer mobile terminal module and the bank card center module be the GMS net and or the cdma communication net and or the 3G mobile radio communication and or the 4G mobile radio communication, wherein mobile financial services transactions center module is provided with database module at least, communication module, the message data protocol modular converter, the encryption and decryption module, it is characterized in that customer mobile terminal user registration and using method: 1., at first set up the net connection of customer mobile terminal module and bank card center module, in the customer mobile terminal module, fill in the true identity information of oneself, the identity information of filling in comprises user's real identity card sectional drawing, own existing Bank Account Number, numerical ciphers and the graphical password of drawing out the needs binding, then the information of filling in and the graphical password of oneself wanting are bound, send request registration information at last to bank finance service centre, bank finance service centre can examine it, decides the set password of user whether effectively to finish registration according to the reliability correctness; 2., the user when the selected commodity of shopping are paid, select the mobile gesture modes of payments; 3., the user selects the bank's card number that oneself will pay, mobile financial services transactions center module judges at first whether user terminal meets the equipment requirement of business support, if meet the accounts information that then obtains the user, select the mobile gesture modes of payments, the user inputs the Bank Account Number of oneself and draws out graphical password, input finishes to click and determines that the back portable terminal can be encrypted data, used algorithm was the one-way hash function computing when data message was encrypted, information after the encryption is sent to the bank finance center by the networking and verifies, after data are received at the bank finance center, data are sent to encrypted authentication equipment to be verified, verify and again data transmission to decryption system is decrypted after errorless, be sent to database search then, if its validity of checking of comparing is effectively, just object information is fed back to user and businessman, notify the success of user and merchant transaction, if invalid user and the businessman's data then can notified of information of checking are made mistakes Fail Transaction; 4., when the user when the selected commodity of shopping are paid, when the user terminal that mobile financial services transactions center module is judged does not meet professional legal payment devices, then directly notify user and businessman's data to make mistakes Fail Transaction.
The equipment of wanting required for the present invention comprises: the mobile device that can connect network can be that mobile phone also can be panel computer etc., and this mobile device must be equipped with specific payment system software, and normally smooth operation; A payment services device that links with payment and settlement system, this device can link with some businessmans and user, carries out the transmission of data and the processing of order; Also have a decryption system that connects with bank, after the user sent enciphered data, can receive these data and successfully decipher the system that database is compared and verified that is resent to.
The invention has the beneficial effects as follows, the present invention is used for authentication password, only need the terminal device with camera, rely on server to accelerate computing, efficient, convenience and the security of input password have been improved by the mode based on the graphical password authentification of touch-screen, thereby it is quick more and convenient to allow the user of mobile payment experience, and can effectively reduce because of password by others know, the stolen and damnous situation of number of the account.
Description of drawings
Fig. 1: embodiment of the invention payment flow structural representation.
Embodiment
With reference to description of drawings the present invention is done following concrete detailed description.As shown in drawings, the present invention includes the customer mobile terminal module, mobile financial services transactions center module, the bank card center module, wherein the wireless network connecting mode that adopts between customer mobile terminal module and the bank card center module be the GMS net and or the cdma communication net and or the 3G mobile radio communication and or the 4G mobile radio communication, wherein mobile financial services transactions center module is provided with database module at least, communication module, the message data protocol modular converter, the encryption and decryption module, it is characterized in that customer mobile terminal user registration and using method: 1., at first set up the net connection of customer mobile terminal module and bank card center module, in the customer mobile terminal module, fill in the true identity information of oneself, the identity information of filling in comprises user's real identity card sectional drawing, own existing Bank Account Number, numerical ciphers and the graphical password of drawing out the needs binding, then the information of filling in and the graphical password of oneself wanting are bound, send request registration information at last to bank finance service centre, bank finance service centre can examine it, decides the set password of user whether effectively to finish registration according to the reliability correctness; 2., the user when the selected commodity of shopping are paid, select the mobile gesture modes of payments; 3., the user selects the bank's card number that oneself will pay, mobile financial services transactions center module judges at first whether user terminal meets the equipment requirement of business support, if meet the accounts information that then obtains the user, select the mobile gesture modes of payments, the user inputs the Bank Account Number of oneself and draws out graphical password, input finishes to click and determines that the back portable terminal can be encrypted data, used algorithm was the one-way hash function computing when data message was encrypted, information after the encryption is sent to the bank finance center by the networking and verifies, after data are received at the bank finance center, data are sent to encrypted authentication equipment to be verified, verify and again data transmission to decryption system is decrypted after errorless, be sent to database search then, if its validity of checking of comparing is effectively, just object information is fed back to user and businessman, notify the success of user and merchant transaction, if invalid user and the businessman's data then can notified of information of checking are made mistakes Fail Transaction; 4., when the user when the selected commodity of shopping are paid, when the user terminal that mobile financial services transactions center module is judged does not meet professional legal payment devices, then directly notify user and businessman's data to make mistakes Fail Transaction.
The payment flow of specific embodiment is:
1, user's registration is bound in the own existing number of the account of mobile terminal registration and with the graphical password of wanting, and is passed through the checking at bank finance center.
2, the user selects the mobile payment mode when paying behind the selected commodity of shopping.
3, the user selects the bank's card number that oneself will pay, and draws out graphical password, click determine the mobile terminal, back can be automatically with bank's card number of user and graphical code data in conjunction with and be encrypted.
4, encrypting successfully, the back data can be sent to the bank finance center by network.
5, after user's account number cipher data are received at the bank finance center, at first deciphering, the validity of its account password of deciphering back checking.
6, the bank finance center sends different notices with businessman for the consumer according to validity.If effectively then notify consumer and businessman to finish payment, pay otherwise can point out the consumer to re-enter.
7, businessman determines whether providing commodity to the buyer according to payment result.
Embodiment recited above is described preferred implementation of the present invention; be not that the spirit and scope of the present invention are limited; under the prerequisite that does not break away from design concept of the present invention; common engineering technical personnel make technical scheme of the present invention in this area various modification and improvement; all should fall into protection scope of the present invention; the technology contents that the present invention asks for protection all is documented in claims.
Claims (1)
1. a kind of graphical method of password authentication and system based on touch-screen in the mobile payment, comprise the customer mobile terminal module, mobile financial services transactions center module, the bank card center module, wherein the wireless network connecting mode that adopts between customer mobile terminal module and the bank card center module be the GMS net and or the cdma communication net and or the 3G mobile radio communication and or the 4G mobile radio communication, wherein mobile financial services transactions center module is provided with database module at least, communication module, the message data protocol modular converter, the encryption and decryption module, it is characterized in that customer mobile terminal user registration and using method: 1., at first set up the net connection of customer mobile terminal module and bank card center module, in the customer mobile terminal module, fill in the true identity information of oneself, the identity information of filling in comprises user's real identity card sectional drawing, own existing Bank Account Number, numerical ciphers, then the information of filling in and the graphical password of oneself wanting are bound, send log-on message at last to bank finance service centre, bank finance service centre can examine it, decides the set password of user whether effectively to finish registration according to the reliability correctness; 2., the user when the selected commodity of shopping are paid, select the mobile gesture modes of payments; 3., the user selects the bank's card number that oneself will pay, mobile financial services transactions center module judges at first whether user terminal meets the equipment requirement of business support, if meet the accounts information that then obtains the user, select the mobile gesture modes of payments, the user inputs the Bank Account Number of oneself and draws out graphical password, input finishes to click and determines that the back portable terminal can be encrypted data, used algorithm was the one-way hash function computing when data message was encrypted, information after the encryption is sent to the bank finance center by the networking and verifies, after data are received at the bank finance center, data are sent to encrypted authentication equipment to be verified, verify and again data transmission to decryption system is decrypted after errorless, be sent to database search then, if its validity of checking of comparing is effectively, just object information is fed back to user and businessman, notify the success of user and merchant transaction, if invalid user and the businessman's data then can notified of information of checking are made mistakes Fail Transaction; 4., when the user when the selected commodity of shopping are paid, when the user terminal that mobile financial services transactions center module is judged does not meet professional legal payment devices, then directly notify user and businessman's data to make mistakes Fail Transaction.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013101426721A CN103268436A (en) | 2013-04-24 | 2013-04-24 | Method and system for touch-screen based graphical password authentication in mobile payment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2013101426721A CN103268436A (en) | 2013-04-24 | 2013-04-24 | Method and system for touch-screen based graphical password authentication in mobile payment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103268436A true CN103268436A (en) | 2013-08-28 |
Family
ID=49012064
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2013101426721A Pending CN103268436A (en) | 2013-04-24 | 2013-04-24 | Method and system for touch-screen based graphical password authentication in mobile payment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103268436A (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104504569A (en) * | 2014-12-24 | 2015-04-08 | 网易宝有限公司 | Verification method and device |
| CN104618100A (en) * | 2013-12-23 | 2015-05-13 | 腾讯科技(深圳)有限公司 | Identity authentication method, method for paying based on terminal, terminal and server |
| CN104852884A (en) * | 2014-02-14 | 2015-08-19 | 中兴通讯股份有限公司 | Registration method of third party payment platform, device, and system |
| TWI549017B (en) * | 2013-11-19 | 2016-09-11 | 騰訊科技(深圳)有限公司 | Method and related apparatus for confirmation processing and system thereof |
| CN104135676B (en) * | 2014-08-14 | 2017-04-05 | 诚迈科技(南京)股份有限公司 | The method that business is paid is realized using figure destructing |
| CN107169763A (en) * | 2017-04-26 | 2017-09-15 | 沈思远 | Safe payment method and system based on signature recognition |
| US10419428B2 (en) | 2015-07-05 | 2019-09-17 | NXT-ID, Inc. | System and method to authenticate electronics using electronic-metrics |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080212771A1 (en) * | 2005-10-05 | 2008-09-04 | Privasphere Ag | Method and Devices For User Authentication |
| CN101901517A (en) * | 2009-05-27 | 2010-12-01 | 上海点佰趣信息科技有限公司 | Fingerprint payment certificate server, fingerprint payment method and system thereof |
| CN102073810A (en) * | 2010-12-06 | 2011-05-25 | 上海合合信息科技发展有限公司 | Method for integrating account management function in input method software |
| US20110145152A1 (en) * | 2009-12-15 | 2011-06-16 | Mccown Steven Harvey | Systems, apparatus, and methods for identity verification and funds transfer via a payment proxy system |
| CN102143482A (en) * | 2011-04-13 | 2011-08-03 | 中国工商银行股份有限公司 | Method and system for authenticating mobile banking client information, and mobile terminal |
-
2013
- 2013-04-24 CN CN2013101426721A patent/CN103268436A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20080212771A1 (en) * | 2005-10-05 | 2008-09-04 | Privasphere Ag | Method and Devices For User Authentication |
| CN101901517A (en) * | 2009-05-27 | 2010-12-01 | 上海点佰趣信息科技有限公司 | Fingerprint payment certificate server, fingerprint payment method and system thereof |
| US20110145152A1 (en) * | 2009-12-15 | 2011-06-16 | Mccown Steven Harvey | Systems, apparatus, and methods for identity verification and funds transfer via a payment proxy system |
| CN102073810A (en) * | 2010-12-06 | 2011-05-25 | 上海合合信息科技发展有限公司 | Method for integrating account management function in input method software |
| CN102143482A (en) * | 2011-04-13 | 2011-08-03 | 中国工商银行股份有限公司 | Method and system for authenticating mobile banking client information, and mobile terminal |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWI549017B (en) * | 2013-11-19 | 2016-09-11 | 騰訊科技(深圳)有限公司 | Method and related apparatus for confirmation processing and system thereof |
| CN104618100A (en) * | 2013-12-23 | 2015-05-13 | 腾讯科技(深圳)有限公司 | Identity authentication method, method for paying based on terminal, terminal and server |
| WO2015096418A1 (en) * | 2013-12-23 | 2015-07-02 | Tencent Technology (Shenzhen) Company Limited | Systems and methods for identity verification for terminal-based payments |
| CN104618100B (en) * | 2013-12-23 | 2019-03-01 | 腾讯科技(深圳)有限公司 | Authentication, method, terminal and the server paid based on terminal |
| CN104852884A (en) * | 2014-02-14 | 2015-08-19 | 中兴通讯股份有限公司 | Registration method of third party payment platform, device, and system |
| CN104135676B (en) * | 2014-08-14 | 2017-04-05 | 诚迈科技(南京)股份有限公司 | The method that business is paid is realized using figure destructing |
| CN104504569A (en) * | 2014-12-24 | 2015-04-08 | 网易宝有限公司 | Verification method and device |
| US10419428B2 (en) | 2015-07-05 | 2019-09-17 | NXT-ID, Inc. | System and method to authenticate electronics using electronic-metrics |
| CN107169763A (en) * | 2017-04-26 | 2017-09-15 | 沈思远 | Safe payment method and system based on signature recognition |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103793815B (en) | Mobile intelligent terminal acquirer system and method suitable for bank cards and business cards | |
| KR101621254B1 (en) | Payment method, computer readable recording medium and system using virtual number based on otp | |
| CN102202300B (en) | A kind of based on twin-channel dynamic cipher authentication system and method | |
| US20110103586A1 (en) | System, Method and Device To Authenticate Relationships By Electronic Means | |
| CN202067336U (en) | Payment device and system for realizing network security certification | |
| CN103268436A (en) | Method and system for touch-screen based graphical password authentication in mobile payment | |
| CN101221641B (en) | On-line trading method and its safety affirmation equipment | |
| CN101576983A (en) | Electronic payment method and system based on mobile terminal | |
| Chen et al. | NFC mobile payment with Citizen Digital Certificate | |
| CN103123706A (en) | Management method, device and system of bill payment for another | |
| WO2015180578A1 (en) | Secure payment method for visual financial card | |
| CN101308557A (en) | Method for implementing secured electronic charging | |
| CN101697220A (en) | Systems and methods for secure pin-based transactions | |
| Husni et al. | Efficient tag-to-tag near field communication (NFC) protocol for secure mobile payment | |
| CN102567877A (en) | Field payment method, equipment and system | |
| CN101916476A (en) | Mobile data transmission method based on combination of SD (Secure Digital) encrypted card and short-distance wireless communication technology | |
| CN101841417A (en) | Electronic signature device supporting short-distance wireless communication technology and method for ensuring safety of electronic transaction by applying same | |
| CN102592221A (en) | Bank card payment system and method based on mobile phone confirmed password | |
| CN101790166A (en) | Digital signing method based on mobile phone intelligent card | |
| CN102136172A (en) | Card terminal and realization method thereof used by individuals or families | |
| CN102855560A (en) | Method and system for mobile payment | |
| WO2017083961A1 (en) | Coordinator managed payments | |
| CN103955820A (en) | Non-card payment method and device | |
| CN103761644A (en) | Ordering processing method for mobile Internet online payment | |
| CN103745352A (en) | Method for placing order by calling payment plug-in on WAP (Wireless Application Protocol) merchant mobile platform |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20130828 |