System and method for secure trading mechanism combining wireless communication and wired communication
First Claim
1. A method for a secure trading mechanism combining wireless communication and wired communication, comprising the steps of:
- (1) registering at a trading host, wherein a user inputs data including a unique identity identification code, a personal identification number and a device identification code dedicated for a wireless two-way communication device of the user, and stores the data in a memory unit of the trading host;
(2) inputting the user'"'"'s identity identification code, the personal identification number, a trading host code and a trading type code to the wireless two-way communication device;
(3) using the personal identification number as a key for being encrypted by an encryption method of DES (data encryption standard), so as to acquire an encrypted personal identification number key to be stored in a memory unit of the wireless two-way communication device;
(4) encrypting the device identification code of the wireless two-way communication device by the personal identification number key so as to generate an encrypted device identification code, and incorporating the personal identification number key and the encrypted device identification code, for being digitally signed by a one-way hash function so as to acquire a digital signature;
(5) incorporating the personal identification number key, the encrypted device identification code and the digital signature, for being symmetrically encrypted by the encrypted personal identification number key so as to acquire re-encrypted data;
(6) incorporating the trading host code, the trading type code, the identification code and the re-encrypted data obtained from step (5), for being transmitted, by the wireless two-way communication device to the trading host;
(7) acquiring via the trading host a set of keys, including a trading host key and a trading data key, relating to the identity identification code from the memory unit of the trading host according to the identity identification code;
(8) using the device identification code of the wireless two-way communication device and the personal identification number key as keys for symmetrically encrypting the trading host key and the trading data key sequentially;
(9) incorporating the encrypted trading host key and trading data key to form a trading result for being digitally signed by the one-way hash function so as to generate digitally signed data;
(10) incorporating the identity identification code, the trading result and the digitally signed data, for being transmitted by the trading host to the wireless two-way communication device;
(11) initiating trading between the trading host and the wireless two-way communication device, in a manner that the wireless two-way communication device acquires information of the user about to perform e-commerce, verifies the user in correct identity, and transmits the set of keys stored in the trading host to a smart card of the wireless two-way communication device for storage; and
(12) performing the trading between the wireless two-way communication device and the trading host, in a manner that after the user inputs related trading data to the wireless two-way communication device, the related trading data are encrypted by the set of keys and transmitted to the trading host, wherein the wading data is merely able to be decrypted by the trading host so as to assure security of the trading data in transmission.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and a method for a secure trading mechanism combining wireless communication and wired communication are proposed, which, in the condition of two-way trading constructed based on network connection of a wireless communication device functioning in two-way transmission to a trading server and a trading host of a wired communication devices, allow the trading to be performed in real time and the correctness to be determined for data transmitted between different levels of the network according to a secure communication protocol defined in each communication device, so as to assure the security of trading data in transmission, and prevent the trading data from being acquired or changed without authorization.
28 Citations
10 Claims
-
1. A method for a secure trading mechanism combining wireless communication and wired communication, comprising the steps of:
-
(1) registering at a trading host, wherein a user inputs data including a unique identity identification code, a personal identification number and a device identification code dedicated for a wireless two-way communication device of the user, and stores the data in a memory unit of the trading host;
(2) inputting the user'"'"'s identity identification code, the personal identification number, a trading host code and a trading type code to the wireless two-way communication device;
(3) using the personal identification number as a key for being encrypted by an encryption method of DES (data encryption standard), so as to acquire an encrypted personal identification number key to be stored in a memory unit of the wireless two-way communication device;
(4) encrypting the device identification code of the wireless two-way communication device by the personal identification number key so as to generate an encrypted device identification code, and incorporating the personal identification number key and the encrypted device identification code, for being digitally signed by a one-way hash function so as to acquire a digital signature;
(5) incorporating the personal identification number key, the encrypted device identification code and the digital signature, for being symmetrically encrypted by the encrypted personal identification number key so as to acquire re-encrypted data;
(6) incorporating the trading host code, the trading type code, the identification code and the re-encrypted data obtained from step (5), for being transmitted, by the wireless two-way communication device to the trading host;
(7) acquiring via the trading host a set of keys, including a trading host key and a trading data key, relating to the identity identification code from the memory unit of the trading host according to the identity identification code;
(8) using the device identification code of the wireless two-way communication device and the personal identification number key as keys for symmetrically encrypting the trading host key and the trading data key sequentially;
(9) incorporating the encrypted trading host key and trading data key to form a trading result for being digitally signed by the one-way hash function so as to generate digitally signed data;
(10) incorporating the identity identification code, the trading result and the digitally signed data, for being transmitted by the trading host to the wireless two-way communication device;
(11) initiating trading between the trading host and the wireless two-way communication device, in a manner that the wireless two-way communication device acquires information of the user about to perform e-commerce, verifies the user in correct identity, and transmits the set of keys stored in the trading host to a smart card of the wireless two-way communication device for storage; and
(12) performing the trading between the wireless two-way communication device and the trading host, in a manner that after the user inputs related trading data to the wireless two-way communication device, the related trading data are encrypted by the set of keys and transmitted to the trading host, wherein the wading data is merely able to be decrypted by the trading host so as to assure security of the trading data in transmission. - View Dependent Claims (2, 3, 4)
(12-1) inputting the identity identification code, the personal identification number, a the trading host code, the wading type code and related trading data to the wireless two-way communication device;
(12-2) using the personal identification number as a key, for being encrypted by a symmetric encryption method of DES (data encryption standard), so as to acquire an encrypted personal identification number key;
(12-3) incorporating the encrypted personal identification number key and the trading data input to the wireless two-way communication device to form incorporated trading data for being digitally signed by the one-way hash function so as to acquire a digital signature, and incorporating the incorporated trading data and the digital signature to generate new incorporated trading data;
(12-4) symmetrically encrypting the new trading data by the trading data key of the set of keys in the trading initiation so as to acquire encrypted second incorporated trading data;
(12-5) incorporating the identity identification code and the encrypted second incorporated trading data to form third incorporated trading data, for being symmetrically encrypted by a trading host key of the set of keys in the trading initiation so as to generate re-encrypted third incorporated trading data;
(12-6) incorporating the trading host code, the device identification code of the wireless two-way communication device, the trading typo code and the re-encrypted third incorporated trading data, for being transmitted by the wireless two-way communication device to the trading host;
(12-7) prior to transmitting downlink data in the trading performance, outputting via the trading host a trading result for being digitally signed by the one-way hash function so as to generate a digitally signed trading result, and incorporating the trading result and the digitally signed trading result to form trading data;
(12-8) obtaining via the trading host a trading data key in a set of keys relating to the identity identification code according to the identity identification code, and symmetrically encrypting the trading data obtained in step (12-7) by the trading data key so as to generate encrypted trading data;
(12-9) encrypting the encrypted trading data by the trading data key so as to form re-encrypted trading data; and
(12-10) incorporating the identity identification code and the re-encrypted trading data, for being transmitted by the trading host to the wireless two-way communication device.
-
-
3. The method of claim 1, wherein encryption and decryption methods used in the method include a data encryption standard (DES) for encrypting and decrypting trading data symmetrically, and a digital signature using a one-way hash function of MD5 (message digest 5) or SHA (secure hash algorithm) for digitally signing the trading data.
-
4. The method of claim 2, wherein encryption and decryption methods used in the method include the data encryption standard (DES) for encrypting and decrypting trading data symmetrically, and a digital signature using the one-way hash function of MD5 (message digest 5) or SHA (secure hash algorithm) for digitally signing the trading data.
-
5. A system for a secure trading mechanism combining wireless communication and wired communication, comprising;
-
wired communication devices including a plurality of trading hosts, a plurality of trading servers, and a plurality of wireless and wired data exchange gateways; and
wireless communication devices including a plurality of wireless communication message interchange centers and a wireless two-way communication device;
whereinthe trading hosts each has a memory unit for storing an identity identification code, a personal identification number, a device identification code dedicated for a wireless two-way communication device of a user and a plurality of sets of keys, which are input by the user to the trading host;
a secure communication protocol for allowing data transmission and communication with the trading servers;
encryption and decryption software for encrypting and decrypting data received and transmitted by the trading host;
a method for determining correctness of the personal identification number during trading;
a method for modifying the personal identification number; and
a function of being a router, so as to allow the trading hosts to serve as devices for registration prior to performing trading;
the trading servers each has a memory unit for recording a look-up table of correlation between the trading server and the trading hosts;
a secure communication protocol for data transmission and communication with the trading hosts, and with the wireless and wired data exchange gateways; and
a function of being a router; and
the trading servers serve as communication interfaces between the trading hosts and the wireless and wired data exchange gateways, in a manner that the trading servers receive data from the trading hosts and transmit the data to the wireless and wired data exchange gateways, or receive data from the wireless and wired data exchange gateways and transmit the data to the trading hosts;
the wireless and wired data exchange gateways each has a memory unit for recording a look-up table of correlation between a trading type and the trading servers;
a secure communication protocol for data transmission and communication with the trading servers, and with the wireless communication message interchange centers; and
a function of being a router; and
the wireless and wired data exchange gateways receive data from the trading servers and transmit the data to the wireless communication message interchange centers, or receive data from the wireless communication message interchange centers and transmit the data to the trading servers, so as to allow the wireless and wired data exchange gateways to serve as communication interfaces between the trading servers and the wireless communication message interchange centers;
the wireless communication message interchange centers each has a communication device for receiving and transmitting wireless messages;
a secure communication protocol for data transmission and communication with the wireless and wired data exchange gateways, and with the wireless two-way communication device; and
a function of being a router; and
the wireless communication message interchange centers receive data from the wireless and wired data exchange gateways and transmit to the wireless two-way communication device, or receive data from the wireless two-way communication device and transmit the data to the wireless and wired data exchange gateways, so as to allow the wireless communication message interchange centers to serve as communication interfaces between the wireless and wired data exchange gateways and the wireless two-way communication device; and
the wireless two-way communication device has a communication device for receiving and transmitting wireless messages;
a memory unit for storing trading data and a device identification code dedicated for the wireless two-way communication device;
a smart card for storing a plurality of sets of keys;
a secure communication protocol for data transmission and communication with the wireless communication message interchange centers;
encryption and decryption software for encrypting and decrypting data received and transmitted by the wireless two-way communication device;
a method for inputting the personal identification number; and
software for managing the trading; and
the wireless two-way communication device serves as a controlling center for trading management of the present system, and has a wireless communication number for identifying an address of a transmitting network.- View Dependent Claims (6, 7, 8, 9, 10)
-
Specification