PROCEDE, DISPOSITIF ET SYSTEME DE TRANSACTION EN LIGNE

ONLINE TRANSACTION METHOD, DEVICE AND SYSTEM

Abrégé français

L'invention concerne un procédé, un dispositif et un système de transaction en ligne, se rapportant au domaine technique de l'Internet. Le procédé comprend les opérations suivantes : un client génère des informations de commande selon un article commandé par un acheteur, et envoie les informations de commande à un serveur d'article (S101), et envoie une requête d'émission de certificat de crédit bancaire à un premier serveur bancaire (S102) ; le premier serveur bancaire génère un certificat de crédit bancaire devant prendre effet (S103), et vérifie des informations de vérification de paiement d'acheteur obtenues par le client (S104) ; si la vérification est validée, le premier serveur bancaire bloque des fonds dans un compte d'acheteur qui correspondent à un montant de commande, met à jour le statut du certificat de crédit bancaire à "en vigueur", et envoie le certificat de crédit bancaire à un second serveur bancaire (S105) ; le second serveur bancaire met à jour le statut du certificat de crédit bancaire reçu à "a été reçu", et envoie une notification "a été reçu" au serveur d'article (S106) ; après confirmation du fait que l'acheteur a reçu, le client envoie une notification "a été reçu" au premier serveur bancaire (S107) ; le premier serveur bancaire transfère les fonds bloqués du compte d'acheteur dans un compte de vendeur (S108). Le procédé réduit de manière efficace le risque pour les fonds, et augmente la sécurité de la transaction.

Abrégé anglais

An online transaction method, device and system, belonging to the technical field of the Internet. The method comprises: a client generates order information according to an item ordered by a buyer, and sends the order information to an item server (S101), and sends a bank credit certificate issuing request to a first bank server (S102); the first bank server generates a to-be-effective bank credit certificate (S103), and verifies buyer payment checking information obtained by the client (S104); if verification is passed, the first bank server freezes funds in a buyer account which correspond to an order amount, updates the status of the bank credit certificate to effective, and sends the bank credit certificate to a second bank server (S105); the second bank server updates the status of the received bank credit certificate to has-been-received, and sends a has-been-received notification to the item server (S106); after confirming that the buyer has received, the client sends a has-been-received notification to the first bank server (S107); the first bank server transfers the frozen funds of the buyer account into a seller account (S108). The method effectively reduces the risk to the funds, and increases the security of the transaction.

Revendications

Claims:
1. A computer system for online transaction, the system comprising:
a client device configured to:
deliver a request for issuing Bank Credit Certificate to a buyer's bank server
according to order information for commodity, after generating and delivering
the order information according to commodity ordered by a buyer to a
commodity server;
submit buyer's payment verification infomiation inputted by the buyer on a
payment page to the buyer's bank server, when receiving a request for
payment verification delivered by the buyer's bank server; and
detennine that the buyer has received the commodity and deliver a receipt
notification for commodity delivery to the buyer's bank server, to enable the
buyer's bank server to transfer an amount of funds for the commodity from a
buyer's account to a seller's account on a seller's bank server;
the buyer's bank server configured to:
generate a to-be-validated Bank Credit Certificate according to the request
for
issuing Bank Credit Certificate to deliver the request for payment
verification
to the client device, wherein the Bank Credit Certificate is generated for
monitoring transaction status in real time so as to keep time of fund flow in
sync with actual transaction time;
Date Recue/Date Received 2022-06-08

freeze an amount of funds in a buyer's account corresponding to an amount of
funds in the order information, to update the status of the Bank Credit
Certificate to a validated status, when a dynamic verification process has
been
successful completed based on the buyer's payment verification information
inputted by the client device on the payment page;
deliver the validated status for the Bank Credit Certificate to a seller's
bank
server, to enable the seller's bank server to notify the commodity server for
the
commodity delivery according to the order infonnation; and
unfreeze the frozen amount of funds in the buyer's account to transfer the
amount of funds to the seller's account through the seller's bank server,
after
receiving the receipt notification for commodity delivery from the client
device, wherein the amount of funds corresponds to the Bank Credit
Certificate;
the seller's bank server configured to:
update a validated status of the Bank Credit Certificate to a received status,
to
deliver a notification for receiving the Bank Credit Certificate to the
commodity server, to enable the commodity server to notify for the
commodity delivery;
the commodity server configured to:
receive the order information delivered by the client device and the
notification
for receiving the Bank Credit Certificate by the seller's bank server; and
notify a seller for delivering the commodity according to the notification for
receiving the Bank Credit Certificate;
16
Date Recue/Date Received 2022-06-08

wherein the order information, the request for issuing Bank Credit
Certificate, the buyer's
payment verification information, the request for payment verification, the
receipt
notification for commodity delivery, the validated status for the Bank Credit
Certificate,
the amount of funds and the notification for receiving the Bank Credit
Certificate are
communicative data transmitted via digital envelopes;
a monitoring server configured to simultaneously collect communicative data
delivered
by a data deliverer and the communicative data received by a data receiver to
verify the
consistency of the transmitted data and the received data in a data
transmission process,
wherein the monitoring server is communicatively connected with the client
device, the
commodity server, the buyer's bank server and the seller's bank server.
2. The system of claim 1, wherein the Bank Credit Certificate is configured as
data that may be
stored in a computer system and transmitted via the Internet.
3. The system of claim 1, wherein the client device is configured to transmit
the communicative
data to the buyer's bank server and the commodity server respectively via the
digital
envelopes for data security.
4. The system of claim 1, wherein the buyer's bank server is configured to
transmit the
communicative data to the client device and the seller's bank server
respectively via the
digital envelopes for data security.
5. The system of claim 1, wherein the seller's bank server is configured to
transmit the
communicative data to the commodity server and the buyer's bank server
respectively via the
digital envelopes for data security.
6. The system of claim 1, wherein the commodity server is configured to
transmit the
communicative data to the client device and the seller's bank server
respectively via the
digital envelopes for data security.
17
Date Recue/Date Received 2022-06-08

7. The system of any one of claims 1 to 6, wherein transmitting the
communicative data via the
digital envelopes for data security further includes a data sender.
8. The system of claim 7, wherein the data sender is configured to:
generate a symmetric key and enclypt the communicative data by using the
symmetric
key to form a first ciphertext, as well as by using a public key of the data
receiver to
encrypt the symmetric key to form a second ciphertext; and
deliver the first ciphertext and the second ciphertext to a data receiver.
9. The system of any one of claims 1 to 7, wherein transmitting the
communicative data via the
digital envelopes for data security further includes a data receiver.
10. The system of claim 9, wherein the data receiver is configured to:
decrypt the second ciphertext by using an owned private key to obtain the
symmetric key;
and
decrypt the first ciphertext by using the symmetric key to obtain the
communicative data.
11. The system of any one of claims 7 to 10, wherein the data deliverer is
further configured to
sign digitally the first ciphertext and the second ciphertext respectively by
using the own
private key.
12. The system of any one of claims 7 to 11, wherein the data receiver is
further configured to
verify the first ciphertext and the second ciphertext with the digital signs
respectively by
using the public key from the data deliverer.
13. The system of any one of claims 7 to 12, wherein the data sender is
further configured to
randomly generate the symmetric key dynamically.
18
Date Recue/Date Received 2022-06-08

14. The system of any one of claims 7 to 13, wherein the data sender is
further configured to
encrypt the communicative data by using the symmetric key based on Advanced
Encryption
Standard (AES) algorithm to form the first ciphertext.
15. The system of any one of claims 1 to 14, wherein the client device is
configured as the data
sender when sending the communicative data.
16. The system of any one of claims 1 to 14, wherein the commodity server is
configured as the
data sender when sending the communicative data.
17. The system of any one of claims 1 to 14, wherein the buyer's bank server
is configured as the
data sender when sending the communicative data.
18. The system of any one of claims 1 to 14, wherein the seller's bank server
is configured as the
data sender when sending the communicative data.
19. The system of any one of claims 1 to 18, wherein the client device is
configured as the data
receiver when receiving the communicative data.
20. The system of any one of claims 1 to 19, wherein the commodity server is
configured as the
data receiver when receiving the communicative data.
21. The system of any one of claims 1 to 19, wherein the buyer's bank server
is configured as the
data receiver when receiving the communicative data.
22. The system of any one of claims 1 to 19, wherein the seller's bank server
is configured as the
data receiver when receiving the communicative data.
19
Date Recue/Date Received 2022-06-08

23. The system of any one of claims 1 to 19, wherein the communicative data is
transmitted
among the client device, the commodity server, the buyer's bank server and the
seller's bank
server through a public network.
24. The system of any one of claims 1 to 19, wherein the communicative data is
transmitted
between the monitoring server and the buyer's bank server and the seller's
bank server
respectively via dedicated line communication.
25. The system of any one of claims 1 to 24, wherein the buyer's bank server
is configured to
transfer the frozen amount of funds to a seller's account through the seller's
bank server
beyond the pre-set delivery period, when the buyer's bank server fails to
receive the receipt
confirmation notification for the commodity delivery from the client device
within a pre-set
delivery period.
26. The system of any one of claims 1 to 25, wherein the buyer's bank server
is configured a
computer server corresponding to the buyer's bank account.
27. The system of any one of claims 1 to 25, wherein the seller's bank server
is configured a
computer server corresponding to the seller's bank account.
28. The system of any one of claims 1 to 27, wherein the seller's bank server
may be the same
with the buyer's bank server.
29. The system of any one of claims 1 to 27, wherein the seller's bank server
may be different
from the buyer's bank server.
30. The system of any one of claims 1 to 29, wherein the payment verification
information may
be a webpage for payment.
31. The system of claim 30, wherein the webpage for payment is configured to
be inputted
verification information by the buyer via the client device.
Date Recue/Date Received 2022-06-08

32. The system of any one of claims 30 to 31, wherein the verification
information includes
buyer's bank account number.
33. The system of any one of claims 30 to 32, wherein the verification
information includes
password of the buyer's bank account.
34. The system of any one of claims 30 to 33, wherein the verification
information includes
verification code.
35. The system of any one of claims 30 to 34, wherein the verification
information includes
expiration date.
36. The system of any one of claims 30 to 35, wherein the webpage for payment
is configured to
be inputted payment amount by the buyer via the client device.
37. A computer implemented method for online transaction, the method
comprising:
a client device delivers a request for issuing Bank Credit Certificate to a
buyer's bank
server according to order information for commodity, after generating and
delivering the
order information according to commodity ordered by a buyer to a commodity
server;
the buyer's bank server generates a to-be-validated Bank Credit Certificate
according to
the request for issuing Bank Credit Certificate to deliver a request for
payment
verification to the client device, wherein the Bank Credit Certificate is
generated for
monitoring transaction status in real time so as to keep time of fund flow in
sync with
actual transaction time;
the client device submits buyer's payment verification information inputted by
the buyer
on a payment page to the buyer's bank server, when receiving the request for
payment
verification delivered by the buyer's bank server;
21
Date Recue/Date Received 2022-06-08

the buyer's bank server freezes an amount of funds in a buyer's account
corresponding to
an amount of funds in the order information, to update status of the Bank
Credit
Certificate to a validated status, when a dynamic verification process has
been successful
completed based on the buyer's payment verification information inputted by
the client
device on the payment page;
the buyer's bank server delivers a validated status for the Bank Credit
Certificate to a
seller's bank server, to enable the seller's bank server to notify the
commodity server for
commodity delivery according to the order information;
the seller's bank server updates the validated status of the Bank Credit
Certificate to a
received status, to deliver a notification for receiving the Bank Credit
Certificate to the
commodity server, to enable the commodity server to notify for the commodity
delivery;
the client device determines that the buyer has received the commodity and
delivers a
receipt notification for commodity delivery to the buyer's bank server, to
enable the
buyer's bank server to transfer an amount of funds for the commodity from a
buyer's
account to a seller's account on a seller's bank server;
the buyer's bank server unfreezes the frozen amount of funds in the buyer's
account to
transfer the amount of funds to the seller's account through the seller's bank
server, after
receiving the receipt notification for commodity delivery from the client
device, wherein
the amount of funds corresponds to the Bank Credit Certificate; and
wherein the order information, the request for issuing Bank Credit
Certificate, the buyer's
payment verification information, the request for payment verification, the
receipt
notification for commodity delivery, the validated status for the Bank Credit
Certificate,
the amount of funds and the notification for receiving the Bank Credit
Certificate are
communicative data transmitted via digital envelopes;
22
Date Recue/Date Received 2022-06-08

a monitoring server simultaneously collects communicative data delivered by a
data
deliverer and the communicative data received by a data receiver to verify the
consistency of the transmitted data and the received data in a data
transmission process,
wherein the monitoring server is communicatively connected with the client
device, the
commodity server, the buyer's bank server and the seller's bank server.
38. The method of claim 37, wherein the Bank Credit Certificate is configured
as data that may
be stored in a computer system and transmitted via the Internet.
39. The method of claim 37 further includes that the client device transmits
the communicative
data to the buyer's bank server and the commodity server respectively via the
digital
envelopes for data security.
40. The method of claim 37 further includes that the buyer's bank server
transmits the
communicative data to the client device and the seller's bank server
respectively via the
digital envelopes for data security.
41. The method of claim 37 further includes that the seller's bank server
transmits the
communicative data to the commodity server and the buyer's bank server
respectively via the
digital envelopes for data security.
42. The method of claim 37 further includes that the commodity server
transmits the
communicative data to the seller's bank server and the client device
respectively via the
digital envelopes for data security.
43. The method of any one of claims 37 to 42, wherein transmitting the
communicative data via
the digital envelopes for data security further includes that
23
Date Recue/Date Received 2022-06-08

a data sender generates a symmetric key and encrypts the communicative data by
using
the symmetric key to form a first ciphertext, as well as by using a public key
of the data
receiver to enclypt the symmetric key to form a second ciphertext, then the
data sender
delivers the first ciphertext and the second ciphertext to a data receiver;
and
the data receiver decrypts the second ciphertext by using an owned private key
to obtain
the symmetric key and decrypts the first ciphertext by using the symmetric key
to obtain
the communicative data.
44. The method of claim 43 further includes that
the data deliverer signs digitally the first ciphertext and the second
ciphertext respectively
by using the own private key; and
the data receiver verifies the first ciphertext and the second ciphertext with
the digital
signs respectively by using the public key from the data deliverer.
45. The method of claim 43, wherein the data sender randomly generates the
symmetric key
dynamically.
46. The method of claim 43, wherein the data sender encrypts the communicative
data by using
the symmetric key based on Advanced Encryption Standard (AES) algorithm to
fonn the first
ciphertext.
47. The method of any one of claims 37 to 46, wherein the client device is
configured as the data
sender when sending the communicative data.
48. The method of any one of claims 37 to 46, wherein the commodity server is
configured as the
data sender when sending the communicative data.
24
Date Recue/Date Received 2022-06-08

49. The method of any one of claims 37 to 46, wherein the buyer's bank server
is configured as
the data sender when sending the communicative data.
50. The method of any one of claims 37 to 46, wherein the seller's bank server
is configured as
the data sender when sending the communicative data.
51. The method of any one of claims 37 to 50, wherein the client device is
configured as the data
receiver when receiving the communicative data.
52. The method of any one of claims 37 to 50, wherein the commodity server is
configured as the
data receiver when receiving the communicative data.
53. The method of any one of claims 37 to 50, wherein the buyer's bank server
is configured as
the data receiver when receiving the communicative data.
54. The method of any one of claims 37 to 50, wherein the seller's bank server
is configured as
the data receiver when receiving the communicative data.
55. The method of any one of claims 37 to 54, wherein the communicative data
is transmitted
among the client device, the commodity server, the buyer's bank server and the
seller's bank
server through a public network.
56. The method of any one of claims 37 to 55, wherein the communicative data
is transmitted
between the monitoring server and the buyer's bank server and the seller's
bank server
respectively via dedicated line communication.
57. The method of any one of claims 37 to 56 further includes that the buyer's
bank server
transfers the frozen amount of funds to a seller's account through the
seller's bank server
beyond the pre-set delivery period, when the buyer's bank server fails to
receive the receipt
confirmation notification for the commodity delivery from the client device
within a pre-set
delivery period.
Date Recue/Date Received 2022-06-08

58. The method of any one of claims 37 to 57, wherein the buyer's bank server
is configured a
computer server corresponding to the buyer's bank account.
59. The method of any one of claims 37 to 57, wherein the seller's bank server
is configured a
computer server corresponding to the seller's bank account.
60. The method of any one of claims 37 to 59, wherein the seller's bank server
may be the same
with the buyer's bank server.
61. The method of any one of claims 37 to 59, wherein the seller's bank server
may be different
from the buyer's bank server.
62. The method of any one of claims 37 to 61, wherein the payment verification
infonnation may
be a webpage for payment.
63. The method of claim 62, wherein the webpage for payment is configured to
be inputted
verification infonnation by the buyer via the client device.
64. The method of any one of claims 62 to 63, wherein the verification
information includes
buyer's bank account number.
65. The method of any one of claims 62 to 64, wherein the verification
information includes
password of the buyer's bank account.
66. The method of any one of claims 62 to 65, wherein the verification
information includes
verification code.
67. The method of any one of claims 62 to 66, wherein the verification
information includes
expiration date.
26
Date Recue/Date Received 2022-06-08

68. The method of any one of claims 62 to 67, wherein the webpage for payment
is configured
to be inputted payment amount by the buyer via the client device.
69. A computer implemented method for online transaction, applied in a client
device, the
method comprising:
delivering a request for issuing Bank Credit Certificate to a buyer's bank
server according
to order information for commodity, after generating and delivering the order
infonnation according to commodity ordered by a buyer to a commodity server;
submitting buyer's payment verification infonnation inputted by the buyer on a
payment
page to the buyer's bank server, when receiving a request for payment
verification
delivered by the buyer's bank server; and
determining that the buyer has received the commodity and deliver a receipt
notification
for commodity delivery to the buyer's bank server, to enable the buyer's bank
server to
transfer an amount of funds for the commodity from a buyer's account to a
seller's
account on a seller's bank server;
wherein the order information, the request for issuing Bank Credit
Certificate, the buyer's
payment verification information, the request for payment verification, the
receipt
notification for commodity delivery are communicative data transmitted via
digital
envelopes, wherein the communicative data is collected simultaneously by a
monitoring
server to verify the consistency of the transmitted data and the received data
in a data
transmission process, wherein the monitoring server is communicatively
connected with
the client device, the commodity server, the buyer's bank server and the
seller's bank
server.
27
Date Recue/Date Received 2022-06-08

70. The method of claim 69, wherein the Bank Credit Certificate is configured
as data that may
be stored in a computer system and transmitted via the Internet.
71. The method of claim 69 further includes transmitting the communicative
data to the
commodity server and the buyer's bank server respectively the via digital
envelopes for data
security.
72. The method of claim 70, wherein transmitting the communicative data via
the digital
envelopes for data security further includes that
a data sender generates a symmetric key and encrypts the communicative data by
using
the symmetric key to form a first ciphertext, as well as by using a public key
of the data
receiver to encrypt the symmetric key to form a second ciphertext, then the
data sender
delivers the first ciphertext and the second ciphertext to a data receiver;
and
the data receiver decrypts the second ciphertext by using an owned private key
to obtain
the symmetric key and decrypts the first ciphertext by using the symmetric key
to obtain
the communicative data.
73. The method of claim 72 further includes that
the data deliverer signs digitally the first ciphertext and the second
ciphertext respectively
by using the own private key; and
the data receiver verifies the first ciphertext and the second ciphertext with
the digital
signs respectively by using the public key from the data deliverer.
74. The method of claim 72, wherein the data sender randomly generates the
symmetric key
dynamically.
28

75. The method of claim 72, wherein the data sender encrypts the communicative
data by using
the symmetric key based on Advanced Encryption Standard (AES) algorithm to
fonn the first
ciphertext.
76. The method of any one of claims 70 to 75, wherein the commodity bank
server is configured
as the data receiver when receiving the communicative data.
77. The method of any one of claims 70 to 75, wherein the buyer's bank server
is configured as
the data receiver when receiving the communicative data.
78. The method of any one of claims 70 to 75, wherein the buyer's bank server
is configured as
the data sender when sending the communicative data.
79. The method of any one of claims 70 to 78, wherein the communicative data
is transmitted
among the client device, the commodity server, the buyer's bank server and a
seller's bank
server through a public network.
80. The method of any one of claims 70 to 79, wherein the communicative data
is transmitted
between a monitoring server and the buyer's bank server and the seller's bank
server
respectively via dedicated line communication.
81. The method of any one of claims 69 to 80, wherein the seller's bank server
is configured a
computer server corresponding to the seller's bank account.
82. The method of any one of claims 69 to 81, wherein the seller's bank server
may be the same
with the buyer's bank server.
83. The method of any one of claims 69 to 81, wherein the seller's bank server
may be different
from the buyer's bank server.
29
Date Recue/Date Received 2022-06-08

84. A computer implemented method for online transaction, applied in a buyer's
bank server, the
method comprising:
generating a to-be-validated Bank Credit Certificate according to a request
for issuing
Bank Credit Certificate to deliver a request for payment verification to a
client device,
wherein the Bank Credit Certificate is generated for monitoring transaction
status in real
time so as to keep time of fund flow in sync with actual transaction time;
freezing an amount of funds in a buyer's account corresponding to an amount of
funds in
order information, to update status of the Bank Credit Certificate to a
validated status,
when a dynamic verification process has been successful completed based on
buyer's
payment verification information inputted by a client device on a payment
page;
delivering the validated status for the Bank Credit Certificate to a seller's
bank server, to
enable the seller's bank server to notify a commodity server for the commodity
delivery
according to the order information; and
unfreezing the frozen amount of funds in a buyer's account to transfer the
amount of
funds to a seller's account through the seller's bank server, after receiving
a receipt
notification for the commodity delivery from the client device, wherein the
amount of
funds corresponds to the Bank Credit Certificate;
wherein the order information, the request for issuing Bank Credit
Certificate, the buyer's
payment verification information, the request for payment verification, the
receipt
notification for commodity delivery, the validated status for the Bank Credit
Certificate
and the amount of funds are communicative data transmitted via digital
envelopes,
wherein the communicative data is collected simultaneously by a monitoring
server to
verify the consistency of the transmitted data and the received data in a data
transmission
process, wherein the monitoring server is communicatively connected with the
client
device, the commodity server, the buyer's bank server and the seller's bank
server.

85. The method of claim 84, wherein the Bank Credit Certificate is configured
as data that may
be stored in a computer system and transmitted via the Internet.
86. The method of claim 84 further includes transmitting the communicative
data to the client
device and the seller's bank server respectively via the digital envelopes for
data security.
87. The method of claim 85, wherein transmitting the communicative data via
the digital
envelopes for data security further includes that
a data sender generates a symmetric key and encrypts the communicative data by
using
the symmetric key to form a first ciphertext, as well as by using a public key
of the data
receiver to encrypt the symmetric key to form a second ciphertext, then the
data sender
delivers the first ciphertext and the second ciphertext to a data receiver;
and
the data receiver decrypts the second ciphertext by using an owned private key
to obtain
the symmetric key and decrypts the first ciphertext by using the symmetric key
to obtain
the communicative data.
88. The method of claim 87 further includes that
the data deliverer signs digitally the first ciphertext and the second
ciphertext respectively
by using the own private key; and
the data receiver verifies the first ciphertext and the second ciphertext with
the digital
signs respectively by using the public key from the data deliverer.
89. The method of claim 87, wherein the data sender randomly generates the
symmetric key
dynamically.
31
Date Recue/Date Received 2022-06-08

90. The method of claim 87, wherein the data sender encrypts the communicative
data by using
the symmetric key based on Advanced Encryption Standard (AES) algorithm to
fonn the first
ciphertext.
91. The method of any one of claims 84 to 90, wherein the client device is
configured as the data
sender when sending the communicative data.
92. The method of any one of claims 84 to 90, wherein the buyer's bank server
is configured as
the data sender when sending the communicative data.
93. The method of any one of claims 84 to 90, wherein the buyer's bank server
is configured as
the data receiver when receiving the communicative data.
94. The method of any one of claims 84 to 90, wherein the seller's bank server
is configured as
the data sender when sending the communicative data.
95. The method of any one of claims 84 to 90, wherein the seller's bank server
is configured as
the data receiver when receiving the communicative data.
96. The method of any one of claims 85 to 95, wherein the communicative data
is transmitted
among the client device, the buyer's bank server and the seller's bank server
through a public
network.
97. The method of any one of claims 85 to 96, wherein the communicative data
is transmitted
between a monitoring server and the buyer's bank server and the seller's bank
server
respectively via dedicated line communication.
98. The method of any one of claims 84 to 97, wherein the buyer's bank server
is configured a
computer server corresponding to the buyer's bank account.
32
Date Recue/Date Received 2022-06-08

99. The method of any one of claims 84 to 97, wherein the seller's bank server
is configured a
computer server corresponding to the seller's bank account.
100.The method of any one of claims 84 to 99, wherein the seller's bank server
may be the same
with the buyer's bank server.
101.The method of any one of claims 84 to 99, wherein the seller's bank server
may be different
from the buyer's bank server.
102.The method of any one of claims 84 to 101, wherein the payment
verification infomiation
may be a webpage for payment.
103.The method of claim 102, wherein the webpage for payment is configured to
be inputted
verification infomiation by the buyer via the client device.
104.The method of any one of claims 102 to 103, wherein the verification
information includes
buyer's bank account number.
105.The method of any one of claims 84 to 104, wherein the verification
information includes
password of the buyer's bank account.
106.The method of any one of claims 84 to 105, wherein the verification
information includes
verification code.
107.The method of any one of claims 84 to 106, wherein the verification
information includes
expiration date.
108. The method of any one of claims 84 to 107, wherein the webpage for
payment is configured
to be inputted payment amount by the buyer via the client device.
33
Date Recue/Date Received 2022-06-08

109.A computer implemented device for online transaction, applied in a client
device, the device
comprising:
an order delivery module configured to generate and deliver order information
according
to commodity ordered by a buyer to a commodity server; and
a Bank Credit Certificate requesting module configured to deliver a request
for issuing
Bank Credit Certificate to a buyer's bank server according to the order
information;
a verification information delivery module is configured to submit buyer's
payment
verification information inputted by the buyer on a payment page to the
buyer's bank
server, when receiving a request for payment verification delivered by the
buyer's bank
server; and
a receipt notification module configured to determine that the buyer has
received the
commodity and deliver a receipt notification for commodity delivery to the
buyer's bank
server; and
wherein the order information, the request for issuing Bank Credit
Certificate, the buyer's
payment verification information, the request for payment verification, the
receipt
notification for commodity delivery are communicative data transmitted via
digital
envelopes, wherein the communicative data is collected simultaneously by a
monitoring
server to verify the consistency of the transmitted data and the received data
in a data
transmission process, wherein the monitoring server is communicatively
connected with
the client device, the commodity server, the buyer's bank server and the
seller's bank
server.
110.The device of claim 109, wherein the Bank Credit Certificate is configured
as data that may
be stored in a computer system and transmitted via the Internet.
34
Date Recue/Date Received 2022-06-08

111.The device of claim 109, wherein the order delivery module is further
configured to transmit
the communicative data with the commodity server via the digital envelopes for
data
security.
112.The device of claim 109, wherein the receipt notification module is
further configured to
transmit the communicative data with the client device via the digital
envelopes for data
security.
113.The device of claim 109, wherein the Bank Credit Certificate requesting
module is further
configured to transmit the communicative data with the buyer's bank server via
the digital
envelopes for data security.
114.The device of claim 109, wherein the verification information delivery
module is further
configured to transmit the communicative data with the buyer's bank server via
the digital
envelopes for data security.
115.The device of any one of claims 110 to 114, wherein transmitting the
communicative data
via the digital envelopes for data security further includes that
a data sender generates a symmetric key and encrypts the communicative data by
using
the symmetric key to form a first ciphertext, as well as by using a public key
of the data
receiver to encrypt the symmetric key to form a second ciphertext, then the
data sender
delivers the first ciphertext and the second ciphertext to a data receiver;
and
the data receiver decrypts the second ciphertext by using an owned private key
to obtain
the symmetric key and decrypts the first ciphertext by using the symmetric key
to obtain
the communicative data.
116.The device of claim 115 further includes that
Date Recue/Date Received 2022-06-08

the data deliverer signs digitally the first ciphertext and the second
ciphertext respectively
by using the own private key; and
the data receiver verifies the first ciphertext and the second ciphertext with
the digital
signs respectively by using the public key from the data deliverer.
117.The device of claim 115, wherein the data sender randomly generates the
symmetric key
dynamically.
118.The device of claim 115, wherein the data sender encrypts the
communicative data by using
the symmetric key based on Advanced Encryption Standard (AES) algorithm to
fonn the first
ciphertext.
119.The device of any one of claims 109 to 118, wherein the buyer' s bank
server is configured
as the data receiver when receiving the communicative data.
120.The device of any one of claims 109 to 118, wherein the buyer's bank
server is configured
as the data sender when sending the communicative data.
121.The device of any one of claims 109 to 118, wherein the commodity server
is configured as
the data receiver when receiving the communicative data.
122.The device of any one of claims 109 to 121, wherein the communicative data
is transmitted
among the client device, the commodity server, the buyer's bank server and a
seller's bank
server through a public network.
123.The device of any one of claims 109 to 121, wherein the communicative data
is transmitted
between a monitoring server and the buyer's bank server and the seller's bank
server
respectively via dedicated line communication.
124.The device of any one of claims 109 to 123, wherein the seller's bank
server is configured a
computer server corresponding to the seller's bank account.
36

125.The device of any one of claims 109 to 124, wherein the seller's bank
server may be the
same with the buyer's bank server.
126.The device of any one of claims 109 to 124, wherein the seller's bank
server may be
different from the buyer's bank server.
127.A computer implemented device for online transaction, applied in a buyer's
bank server, the
device comprising:
a first receiving module configured to:
receive a request for issuing Bank Credit Certificate delivered by a client
device;
receive buyer's payment verification information from a client device, wherein
the payment verification information is inputted on a payment page; and
receive a receipt notification for commodity delivery from the client device;
a Bank Credit Certificate generating module configured to generate a to-be-
validated
Bank Credit Certificate according to a request for issuing Bank Credit
Certificate;
a verification module configured to:
deliver a request for payment verification to the client device, wherein the
Bank Credit Certificate is generated for monitoring transaction status in real
time so as to keep time of fund flow in sync with actual transaction time; and
perform a dynamic verification process based on the buyer's payment
verification information inputted by the client device on the payment page;
37
Date Recue/Date Received 2022-06-08

a freezing module configured to:
freeze an amount of funds in a buyer's account corresponding to an amount of
funds in the order information when the verification process is passed; and
update status of the Bank Credit Certificate to a validated status and
delivering
the validated status for the Bank Credit Certificate to a seller's bank
server;
and
a money transfer module configured to unfreeze the frozen amount of funds in a
buyer's
account to transfer the amount of funds to a seller's account through a
seller's bank
server, after receiving the receipt notification for commodity delivery from
the client
device;
wherein the order information, the request for issuing Bank Credit
Certificate, the buyer's
payment verification information, the request for payment verification, the
receipt
notification for commodity delivery, the validated status for the Bank Credit
Certificate
and the amount of funds are communicative data transmitted via digital
envelopes,
wherein the communicative data is collected simultaneously by a monitoring
server to
verify the consistency of the transmitted data and the received data in a data
transmission
process, wherein the monitoring server is communicatively connected with the
client
device, the commodity server, the buyer's bank server and the seller's bank
server.
128.The device of claim 127, wherein the Bank Credit Certificate is configured
as data that may
be stored in a computer system and transmitted via the Internet.
129.The device of claim 127, wherein the first receiving module is further
configured to transmit
the communicative data with the client device via the digital envelopes for
data security.
38
Date Recue/Date Received 2022-06-08

130.The device of claim 127, wherein the verification module is further
configured to transmit
the communicative data with the client device via the digital envelopes for
data security.
131.The device of claim 127, wherein the freezing module is further configured
to transmit the
communicative data with the seller's bank server via the digital envelopes for
data security.
132.The device of claim 127, wherein the money transfer module is further
configured to
transmit the communicative data with the client device and the seller's bank
server via the
digital envelopes for data security.
133.The device of any one of claims 128 to 132, wherein transmitting the
communicative data
via the digital envelopes for data security further includes that
a data sender generates a symmetric key and encrypts the communicative data by
using
the symmetric key to form a first ciphertext, as well as by using a public key
of the data
receiver to encrypt the symmetric key to form a second ciphertext, then the
data sender
delivers the first ciphertext and the second ciphertext to a data receiver;
and
the data receiver decrypts the second ciphertext by using an owned private key
to obtain
the symmetric key and decrypts the first ciphertext by using the symmetric key
to obtain
the communicative data.
134.The device of claim 133 further includes that
the data deliverer signs digitally the first ciphertext and the second
ciphertext respectively
by using the own private key; and
the data receiver verifies the first ciphertext and the second ciphertext with
the digital
signs respectively by using the public key from the data deliverer.
39
Date Recue/Date Received 2022-06-08

135.The device of claim 133, wherein the data sender randomly generates the
symmetric key
dynamically.
136.The device of claim 133 wherein the data sender encrypts the communicative
data by using
the symmetric key based on Advanced Encryption Standard (AES) algorithm to
fonn the first
ciphertext.
137.The device of any one of claims 127 to 136, wherein the client device is
configured as the
data sender when sending the communicative data.
138.The device of any one of claims 127 to 136, wherein the client device is
configured as the
data receiver when receiving the communicative data.
139.The device of any one of claims 127 to 136, wherein the buyer's bank
server is configured
as the data sender when sending the communicative data.
140.The device of any one of claims 127 to 136, wherein the buyer's bank
server is configured
as the data receiver when receiving the communicative data.
141.The device of any one of claims 127 to 136, wherein the seller's bank
server is configured as
the data sender when sending the communicative data.
142.The device of any one of claims 127 to 136, wherein the seller's bank
server is configured as
the data receiver when receiving the communicative data.
143.The device of any one of claims 127 to 142, wherein the communicative data
is transmitted
among the client device, a commodity server, the buyer's bank server and the
seller's bank
server through a public network.
Date Recue/Date Received 2022-06-08

144.The device of any one of claims 127 to 142, wherein the communicative data
is transmitted
between a monitoring server and the buyer's bank server and the seller's bank
server
respectively via dedicated line communication.
145.The device of any one of claims 127 to 144, wherein the buyer's bank
server is configured a
computer server corresponding to the buyer's bank account.
146.The device of any one of claims 127 to 145, wherein the seller's bank
server is configured a
computer server corresponding to the seller's bank account.
147.The device of any one of claims 127 to 146, wherein the seller's bank
server may be the
same with the buyer's bank server.
148.The device of any one of claims 127 to 146, wherein the seller's bank
server may be
different from the buyer's bank server.
149.The device of any one of claims 127 to 148, wherein the payment
verification information
may be a webpage for payment.
150.The device of claim 149, wherein the webpage for payment is configured to
be inputted
verification information by the buyer via the client device.
151.The device of any one of claims 149 to 150, wherein the verification
information includes
buyer's bank account number.
152.The device of any one of claims 127 to 151, wherein the verification
information includes
password of the buyer's bank account.
153.The device of any one of claims 127 to 152, wherein the verification
information includes
verification code.
41
Date Recue/Date Received 2022-06-08

154.The device of any one of claims 127 to 153, wherein the verification
information includes
expiration date.
155. The device of any one of claims 127 to 154, wherein the webpage for
payment is configured
to be inputted payment amount by the buyer via the client device.
42
Date Recue/Date Received 2022-06-08

Description

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
Online Transaction Method, Device And System
Technical Field
[0001] The present invention relates to the field of Internet technology, and
in particular, to an
online transaction method, device, and system.
Background Technology
[0002] With the rapid development of Internet technology, E-commerce has been
booming around
the world, with online trading platforms such as Amazon, Alibaba, Taobao and
other
E-commerce as the main mode of operation of the online trading platform. At
present, the
online trading mode mainly adopts the third-party payment platform. During the
transaction, the buyer transfers the transaction funds to the third-party
payment platform,
and the third-party payment platform also stores the relevant information in
the transaction
at the same time. After the buyer receives the commodity, the third-party
payment platform
transfers the transaction funds to the seller, and the transaction is
completed.
[0003] However, it is often appear the following case that the customer has
not yet received the
commodity or services provided by the merchant, the funds have been paid by
the
third-party payment institution to the merchant, or after a merchant provides
a commodity
or service, the customer will not be able to pay the corresponding funds. It
can be seen that,
due to the outflow of trading funds out of the banking system, the payment of
bank servers
is completely dependent on the operation of third-party payment platforms,
which is not
conducive to the supervision of funds by banks. When the above situation
occurs in the
third-party payment platform, the bank server is not able to make the
effective capital flow
of the delivery of the first hand, which may result in large deviation of the
cash flow time
of the bank server from the actual transaction time to the user it may bring
financial risk to
users, and trading funds and transaction information in the third-party
payment platform
information has the risk of being stolen, the security is not high. Thus it
can be seen that at
this stage an improved transaction method is needed to reduce the risk of
capital and
improve the security of transaction information.
Technical problem
[0004] In view of this, the technical problem to be solved by the present
invention is to provide an
online transaction method, device and system to reduce the risk of funds and
improve
transaction security.
Problem solving solution

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
Technical solutions
[0005] The technical solution of the present invention to solve the above-
mentioned technical
problems is as follows:
[0006] According to one aspect of the present invention, there is provided an
online transaction
method including the following steps:
[0007] The client generates order information according to the commodity
ordered by the buyer
and delivers the order information to the commodity server;
[0008] The client delivers a Bank Credit Certificate issuing request to the
first bank server
according to the order information;
[0009] After receiving the Bank Credit Certificate issuing request, the first
bank server generates a
Bank Credit Certificate to be validated;
[0010] The first bank server obtains the buyer's payment verification
information from the client
and verification;
[0011] If the verification is passed, the funds in the buyer account
corresponding to the order
amount are frozen, and the status of the Bank Credit Certificate is updated to
the effective
and delivered to the second bank server;
[0012] After the second bank server receives the valid Bank Credit
Certificate, it updates the
status of the Bank Credit Certificate to the received certificate and delivers
the received
certificate to the commodity server.
[0013] The client delivers the receipt notification to the first bank server
after the buyer confirms
the receipt;
[0014] After receiving the receipt notification delivered by the client, the
first bank server
transfers the funds frozen by the buyer's account to the seller account of the
second bank
server.
[0015] According to one aspect of the present invention, an online transaction
method is provided
for the client, which is applied to a client, and the method includes the
following steps:
[0016] According to the commodity ordered by the buyer to generate order
information and
deliver it to the commodity server;
[0017] According to the order information to the first bank server deliver a
bank credit certificate
issuing request;
[0018] After receiving the payment verification request delivered by the first
bank server, the
payment check information of the buyer is fed back to the first bank server;
[0019] After the buyer confirms the commodity receipt, the receipt is
delivered to the first bank
server.
[0020] According to another aspect of the present invention, it is provided an
online transaction
2

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
method applied to a first bank server, the method including the steps of:
[0021] After receiving the Bank Credit Certificate issuing request delivered
by the client, a Bank
Credit Certificate to be validated is generated;
[0022] Obtain the buyer's payment check information to the client and verify;
[0023] If the verification is passed, the funds in the buyer account
corresponding to the order
amount are frozen, and the status of the Bank Credit Certificate is updated to
the effective
and delivered to the second bank server;
[0024] After receiving the receipt notification delivered by the client,
transfer funds from the
buyer's account into the seller's account of the second bank server.
[0025] According to another aspect of the present invention, an online
transaction device is
provided for the client, which includes the following modules:
[0026] An order delivery module is set up to generate order information
according to the
commodity that the buyer has reserved, and delivers it to the commodity
server;
[0027] Opening certificate requesting module is used to deliver a bank credit
certificate issuing
request to the first bank server according to the order information;
[0028] A verification information delivery module is set to provide the
payment verification
information to the first bank server after receiving the payment verification
request
delivered by the first bank server;
[0029] The receiving notification module is used to deliver the receipt
notification to the first bank
server after the buyer confirms the receipt.
[0030] According to another aspect of the present invention, it is provided an
online transaction
device applied to a first bank server, the device including the following
modules:
[0031] The first receiving module is used to receive a Bank Credit Certificate
issuance request
delivered by the client, and a receipt notification delivered by the client;
[0032] The Bank Credit Certificate generating module is used to generate a
Bank Credit
Certificate to be validated after receiving the Bank Credit Certificate
issuing request
delivered by the client;
[0033] The verification module is used to acquire the buyer's payment
verification information
from the client according to the Bank Credit Certificate to be validated, and
verify the
payment verification information;
[0034] The freezing module is used to: if the verification is passed, freeze
the funds corresponding
to the order amount in the buyer's account, update the status of the Bank
Credit Certificate
to be valid and deliver the status to the second bank server;
[0035] The money transfer module is set up to transfer the funds frozen to the
buyer's account to
the seller's account of the second bank server after receiving the received
notice delivered
3

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
by the client.
[0036] According to another aspect of the present invention, it is provided an
online transaction
system including a commodity server for receiving order information, a client,
a first bank
server, and a second bank server, wherein:
[0037] The client is used to generate order information according to the
commodity ordered by the
buyer and deliver the order information to the commodity server; deliver a
Bank Credit
Certificate issuing request to the first bank server according to the order
information; and it
is also set up to deliver the receipt notification to the first bank server
after the buyer
confirms the receipt.
[0038] The first bank server is used to generate a Bank Credit Certificate to
be validated after
receiving the Bank Credit Certificate request; acquire the buyer's payment
verification
information from the client and perform verification, and if the verification
is successful,
freeze the funds of the order amount in the buyer's account and updating the
status of the
Bank Credit Certificate into effect, and delivered to the second bank server;
after receiving
the notification delivered by the client, the funds frozen by the buyer's
account are
transferred to the seller's account of the second bank server.
[0039] The second bank server is used to receive the valid Bank Credit
Certificate, updates the
status of the Bank Credit Certificate to the received certificate and delivers
the received
credit notification to the commodity server.
The beneficial effect of the invention
Beneficial effect
[0040] The online transaction method, device and system of the present
invention delivers the
issuing request through the first bank server (buyer's bank) to the client and
delivers the
receipt notification to the first bank server (buyer's bank). The completion
of the
transaction in the interaction between buyers and sellers and their bank
accounts, the
transaction process of transaction funds and transaction information did not
go to
third-party payment platform, and the transaction status is monitored in real
time by
generating Bank Credit Certificate, so that there is no deviation between
funds flow and
actual transaction, so that the effective flow of funds for delivery of first-
hand commodity
and it can effectively reduce the risk of funds and improve the security of
the transaction.
[0041] Figure 1 is a flowchart of an online transaction method provided by an
example of the
present invention.
[0042] Figure 2 is a flow chart of information interaction according to an
online transaction
method provided by an example of the present invention.
[0043] Figure 3 is a flowchart of a data transmission method according to an
example of the
4

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
present invention.
[0044] Figure 4 is a flowchart of an online transaction method applied to a
client according to an
example of the present invention.
[0045] Figure 5 is a flowchart of an online transaction method applied to a
first bank server
according to an example of the present invention.
[0046] Figure 6 is a system structure diagram of an online trading system
provided by an example
of the present invention.
[0047] Figure 7 is a block diagram of an online trading system provided by an
example of the
present invention.
Examples of the Invention
Implementation pattern of the present invention
[0048] To make the technical problems, technical solutions and advantages more
apparent and
clear, the present invention will be described in further detail with
reference to the
accompanying drawings and examples. It is to be understood that the specific
examples
described herein are merely illustrative of the invention and are not intended
to limit the
invention.
[0049] Example 1
[0050] As shown in Figure 1 and Figure 2, an online transaction method
provided in an example
of the present invention includes the following steps:
[0051] S101: the client generates the order information according to the
commodity ordered by the
buyer, and delivers the order information to the commodity server.
[0052] Specifically, the seller stores the commodity information into the
commodity server, and
the buyer communicates with the commodity server through the client, obtains
the
commodity information from the commodity server, and selects the commodity
that needs
to be purchased. The client generates order information according to the
commodity
information selected by the buyer and submits the order information to the
commodity
server. Wherein, commodity include tangible physical commodity and intangible
services.
Product information includes the price of commodity, parameters and other
information.
The commodity server can be a commercial computer server or a seller's own
computer
server. The client is a communication terminal operated by the buyer,
including but not
limited to a terminal device such as a mobile phone, a tablet, a computer and
so on.
[0053] S102: Deliver a Bank Credit Certificate issuing request to the first
bank server according to
the order information.
[0054] Specifically, the client first bank server (to the buyer's bank where
the bank server) delivers
a Bank Credit Certificate issuing request, Bank Credit Certificate is an
electronic certificate

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
of bank credit commitment can be interpreted as an electronic data, it can be
understood as
an electronic data that can be stored in a computer system and transmitted
over the
network.
[0055] S103: After receiving the bank credit certificate issuing request, the
first bank server
generates a bank credit certificate to be validated.
[0056] Specifically, after receiving the Bank Credit Certificate issuing
request, the first bank
server generates a Bank Credit Certificate Z1 to be validated according to the
Bank Credit
Certificate issuing request information.
[0057] S104: Acquire the buyer's payment verification information from the
client and performs
verification. If the verification succeeds, Step S105 is executed, otherwise,
the process
ends.
[0058] Specifically, according to the Bank Credit Certificate to be validated,
and delivers the
payment verification information to the client, after receiving the payment
check
information from the buyer, the client is submitted to the first bank server
for verification.
Wherein, the payment verification information may be a payment page, and the
buyer
inputs information such as verification information and payment amount on the
payment
page on the client. The verification information includes at least the bank
account number
and password, and may further include the verification code, expiration date
and other
information.
[0059] S105, freezing the funds corresponding to the order amount in the
buyer's account,
updating the status of the Bank Credit Certificate to be valid, and delivering
the status to
the second bank server.
[0060] Specifically, after the verification is passed, the funds corresponding
to the order amount in
the buyer's bank account are frozen according to Bank Credit Certificate Z1,
and the Bank
Credit Certificate Z1 to be validated is updated to the valid Bank Credit
Certificate Z2 and
the valid Bank Credit Certificate Z2 delivered to the second bank server.
[0061] S106: the second bank server updates the status of the Bank Credit
Certificate that has
taken effect to the received credit and delivers the received credit
notification to the
commodity server.
[0062] Specifically, after the second bank server receives the valid Bank
Credit Certificate, the
second bank server updates the status to the certified status. And delivers
the received
notification to the commodity server, the commodity server has received the
notification of
receipt of the certificate, and notify the seller to deliver the commodity.
[0063] S107: The client delivers the receipt notification to the first bank
server after the buyer
confirms the receipt.
6

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
[0064] Specifically, after the client receives the confirmation of receipt
input by the buyer, the
client delivers a receipt notification of receipt to the first bank service,
thereby notifying
the first bank server of the withdrawal.
[0065] S108: After receiving the receipt notification sent by the client, the
first bank server
transfers the funds frozen by the buyer account to the seller account of the
second bank
server.
[0066] Specifically, after receiving the receipt notification delivered by the
client, the second bank
server transfers the funds frozen in the buyer's bank account to the seller's
bank account. As
a result, the transaction is completed.
[0067] In order to prevent the buyer from receiving the commodity after
receiving confirmation,
the above method also includes: if the first bank server does not receive the
notifications
received by the client within the preset time, the frozen funds from the
buyer's account will
be transferred to the seller's account of the second bank server after
exceeding the preset
time.
[0068] In the online transaction method in the example of the present
invention, transaction funds
and transaction information in the transaction process are not transferred to
a third-party
payment platform, and the status of the transaction is monitored in real time
by generating
a Bank Credit Certificate, so that there is no deviation between the time of
capital flow and
the actual transaction time, and the effective flow of money to deliver the
money by hand is
achieved,it can effectively reduce the financial risks and improve the
security of transaction
information.
[0069] As a preferred example, in order to prevent the transaction information
from being stolen,
the client, the commodity server, the first bank server and the second bank
server use
digital envelopes to secure the communication data during data delivering and
data
receiving transmission. Thereby further enhancing the security of data
transmission and
ensuring the security of transactions.
[0070] Please refer to Figure 3, the method of using digital envelope
technology to secure
communication data includes the following steps:
[0071] Step S301: the data deliverer generates a symmetric key, and encrypts
the communication
data by using a symmetric key to form a first ciphertext.
[0072] In order to prevent the symmetric key from being stolen, each time the
data deliverer the
data, the symmetric key is randomly generated to achieve the dynamic anti-
counterfeiting
effect. When encrypting the communication data, the data deliverer preferably
encrypts the
communication data by using the symmetric key to form the first ciphertext.
[0073] Step S302: the data deliverer encrypts the symmetric key by using the
public key of the
7

CA 02993110 2018-01-19
=
WO 2017/012069 PCT/CN2015/084667
data receiver to form a second ciphertext.
[0074] Step S303: the data deliverer signs the first ciphertext and the second
ciphertext using its
own private key, and delivers the data signature to the data receiver.
[0075] Step S304: After receiving the first ciphertext and the second
ciphertext, the data receiver
verifies the signatures of the first ciphertext and the second ciphertext
using the public key
of the data deliverer.
[0076] Step S305: After the verification is passed, the data receiver decrypts
the second ciphertext
using its private key to obtain a symmetric key.
[0077] Step S306: the data receiver uses the symmetric key to decrypt the
first ciphertext to obtain
the communication data
[0078] In some examples, it can also omit the signature step in step S303 and
the verification
signature step in step S304.
[0079] As another preferred example, in order to prevent data from being
tampered with after the
communication caused by financial safety, information security and other
issues, therefore,
the dual-track verification technology is used. Specifically, in the data
transmission
process, the monitoring system collects the data delivered by the data
deliverer and the data
received by the data receiver at the same time, verifies the consistency of
the data delivered
and the received data, and compare the data collected and the received data to
determine
whether the two are consistent. To determine whether the data is tampered with
during
communication.
[0080] As another preferred example, in order to balance the convenience of
communication and
ensure data security, a dual-network combination technology is adopted. That
is, the client,
the first bank server, the second bank server and the commodity server
communicate with
each other through the public network, and the monitoring system communicates
with the
first bank server and the second bank server through leased lines
respectively. As a result it
further ensuring the security of the transaction.
[0081] Example 2
[0082] As shown in Figure 4, an online transaction method provided in an
example of the present
invention is applied to a client, where the method includes the following
steps:
[0083] S401: Generate order information according to the commodity ordered by
the buyer, and
delivers the order information to the commodity server.
[0084] Specifically, the client obtains the commodity information from the
commodity server,
generates the order information according to the commodity according to the
commodity
ordered by the buyer, and delivers it to the commodity server.
[0085] S402: Deliver a Bank Credit Certificate issuing request to the first
bank server according to
8

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
the order information.
[0086] S403, after receiving the payment verification request delivered by the
first bank server, the
payment check information of the buyer is fed back to the first bank server.
[0087] S404, Delivers the receipt notification to the first bank server after
the buyer confirms the
receipt.
[0088] Example 3
[0089] As shown in Figure 5, the online transaction method provided by the
example of the
present invention is applied to a first bank server, and the method includes
the following
steps:
[0090] S501: After receiving the Bank Credit Certificate issuing request s
delivered by the client, a
Bank Credit Certificate to be validated is generated.
[0091] S502: acquire the buyer's payment verification information from the
client and performs
verification. If the verification succeeds, Step S503 is executed, otherwise,
the process
ends.
[0092] S503, freezing the funds corresponding to the order amount in the
buyer's account,
updating the status of the Bank Credit Certificate to be valid, and delivering
the status to
the second bank server.
[0093] S504. After receiving the notified receipt delivered by the client,
transfer funds from the
buyer's account into the seller's account of the second bank server.
[0094] Example 4
[0095] As shown in Figure 6 and Figure 7, an online transaction system
provided in an example of
the present invention includes a Client 10, a first bank server 20, a second
bank server 30,
and a commodity server 40.
[0096] The Client 10 is used to acquire commodity information from the
commodity server 40,
generate order information according to the commodity ordered by the buyer,
and deliver
the order information to the commodity server 40; deliver a Bank Credit
Certificate issuing
request to the first bank server 20 according to the order information; it is
also used to
deliver a receipt notification to the first bank server 20.
[0097] Wherein, please refer to Figure 7, the online trading device applied to
the Client 10
includes the following modules:
[0098] The order delivery module 101 is used to generate the order information
according to the
commodity o that the buyer has reserved, and delivers it to the commodity
server 40;
[0099] Opening certificate 102 requesting module is used to deliver a bank
credit certificate
issuing request to the first bank server 20 according to the order
information;
[0100] The verification information delivery module 103 is set to provide the
payment verification
9

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
information to the first bank server 20 after receiving the payment
verification information
delivered by the first bank server 20;
[0101] The received notification module 104 is used to deliver a receipt
notification to the first
bank server 20 after the buyer confirms the receipt.
[0102] The first bank server 20 is used to generate a Bank Credit Certificate
to be validated after
receiving a Bank Credit Certificate issuing request, acquire the buyer's
payment
verification information from the Client 10, and perform verification, and if
the verification
is successful, freeze the funds of the order amount in the buyer's account and
updating the
status of the Bank Credit Certificate into effect, and delivered to the second
bank server 30;
after receiving the notification delivered by the client, the funds frozen by
the buyer's
account are transferred to the seller's account of the second bank server 30.
[0103] Please refer to Figure 7, the online transaction device applied to the
first bank server 20
includes the following modules:
[0104] The first receiving module 201 is used to receive a Bank Credit
Certificate issuing request
delivered by the Client 10 and a received notification delivered by the Client
10;
[0105] The Bank Credit Certificate generating module 202 is used to generate a
Bank Credit
Certificate to be validated after receiving a Bank Credit Certificate issuing
request
delivered by the Client 10;
[0106] The verification module 203 is used to acquire the buyer's payment
verification
information from the Client 10 according to the Bank Credit Certificate to be
validated,
and verify the payment verification information;
[0107] The freezing module 204 is used to: if the verification is passed,
freeze the funds
corresponding to the order amount in the buyer's account, update the status of
the Bank
Credit Certificate to be valid and deliver the status to the second bank serve
30;
[0108] The money transfer module 205 is set up to transfer the funds frozen to
the buyer's account
to the seller's account of the second bank server 30 after receiving the
received notification
delivered by the Client 10.
[0109] In order to prevent the buyer does not confirm receipt of commodity
after receiving the
commodity, and the money transfer module 205 is also used: If the first bank
server does
not receive the received notification delivered by the client within the
preset time, then
after a preset time, the funds frozen by the buyer's account are transferred
to the seller's
account of the second bank server.
[0110] The second bank server 30 is used to receive the valid Bank Credit
Certificate, updates the
status of the Bank Credit Certificate to the received certificate and delivers
the received
credit notification to the commodity server 40.

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
[0111] Please refer to Figure 7, the online transaction device applied to the
second bank server 30
includes the following modules:
[0112] The second receiving module 301 is used to receive an effective Bank
Credit Certificate
and update the status of the Bank Credit Certificate to a received
certificate.
[0113] The received card notification 302 is set to deliver the received card
notification to the
commodity server 40.
[0114] The commodity server 40 is used to receive the order information
delivered by the Client
10; after receiving the received card notification delivered by the second
bank server 30,
notify the seller deliver the commodity.
[0115] Please refer to Figure 7, the online trading device applied to the
commodity server 40
includes the following modules:
[0116] The third receiving module 401 is used to receive the order information
delivered by the
Client 10 and the received card notification delivered by the second bank
server 30.
[0117] The delivery notification module 402 is used to notify the seller to
deliver the commodity
after receiving the received card notification delivered by the second bank
server 30.
[0118] The monitoring server 50 is used to collect data delivered by the data
deliverer and data
received by the data receiver at the same time during the data transmission,
and verify the
consistency of the delivered data and the received data. When the Client 10,
the first bank
server 20, the second bank server 30 or the commodity server 40 is the data
deliverer when
delivering data, the Client 10, the first bank server 20, the second bank
server 30, or the
commodity server 40 is the receiver of the data when it is received.
[0119] In the present example, the seller stores the commodity information in
the commodity
server 40. The buyer communicates with the commodity server 40 through the
Client 10,
acquires the commodity information from the commodity server 40, and selects
the
commodity that needs to be purchased. The Client 10 generates order
information
according to the commodity information selected by the buyer, and submits the
order
information to the commodity server 40. Wherein, commodity include tangible
physical
commodity and intangible services. Product information includes the price of
commodity,
parameters and other information. The commodity server 40 may be a commercial
computer server or a seller's own computer server. The Client 10 is a
communication
terminal operated by a buyer, including but not limited to a terminal device
such as a
mobile phone, a tablet, a computer and so on. The first bank server 20 refers
to the bank
server where the buyer's bank account is located and the second bank server 30
refers to the
bank server where the seller's bank account is located. The first bank server
20 and the
second bank server 30 may be servers of the same bank (i.e. the buyer and the
seller's bank
11

CA 02993110 2018-01-19
WO 2017/012069 PCT/CN2015/084667
account are same), may also be different bank server (that is, the buyer and
the seller's bank
are not at the same time). Bank Credit Certificate is an electronic
certificate that a bank
promises to pay for. It can be understood as an electronic data that can be
stored in a
computer system and transmitted over the Internet.
[0120] Wherein, the monitoring server 50 is a two-track verification mechanism
that is set to
prevent data from being tampered with during communications. In some examples,
it may
be omitted.
[0121] With the online trading system of this example, transaction funds and
transaction
information in the transaction process are not transferred to a third-party
payment platform,
and the status of the transaction is monitored in real time by generating a
Bank Credit
Certificate, so that there is no deviation between the time of capital flow
and the actual
transaction time, so that the effective delivery of cash flow can effectively
reduce the
financial risk and improve the security of transaction information.
[0122] As a preferred example, in order to prevent the transaction information
from being stolen,
when the Client 10, the first bank server 20, the second bank server 30 and
the commodity
server 40 are also used to: when delivering data and receiving data, the
digital envelope
technology is used to transmit the communication data safely. Thereby further
enhancing
the security of data transmission and ensuring the security of transactions.
[0123] When the Client 10, the first bank server 20, the second bank server 30
and the commodity
server 40 serve as data delivering parties, it also used to generate a
symmetric key and
encrypt the communication data by using a symmetric key to form a first
ciphertext; using
the public key of the data receiver to encrypt the symmetric key to form a
second
ciphertext; signing the first ciphertext and the second ciphertext separately
by using its own
private key and delivering it to the data receiver.
[0124] In order to further prevent the symmetric key from being stolen, each
time the data
deliverer delivers data; a symmetric key is randomly generated to achieve the
dynamic
anti-counterfeiting effect. When encrypting the communication data, the data
deliverer
preferably encrypts the communication data by using the symmetric key to form
the first
ciphertext.
[0125] When the Client 10, the first bank server 20, the second bank server 30
and the commodity
server 40 serve as data delivering parties, it is also used to:
[0126] After receiving the first ciphertext and the second ciphertext, the
signature of the first
ciphertext and the second ciphertext are verified by using the public key of
the deliverer of
the data; when the verification is passed, the symmetric key is obtained by
using its own
private key to decrypt the second ciphertext, and the communication data is
obtained by
12

using the symmetric key to decrypt the first ciphertext.
[0127] In some examples, the data deliverer may not sign the first ciphertext
and the second
ciphertext, and the corresponding data receiver does not need to perform
signature
verification on the first ciphertext and the second ciphertext.
[0128] As another preferred example, in order to balance the convenience of
communication and
ensure data security, a combination of two networks is also used in this
example. That is,
the Client 10, the first bank server 20, the second bank server 30 and the
commodity
server 40 communicate with each other through the public network. The
monitoring server
50 communicates with the first bank server 20 and the second bank server 30
respectively
through leased lines.
[0129] It is important to note that the technical features of the above-
described method in
example is applicable in the present system and is not need to repeated here.
[0130] A person of skill in the art considers the problems disclosed herein
and sought to be solved
by the present disclosure to be exclusively computer problems and contemplates
only
solutions to those problems that include essential computer elements. Abstract
ideas, mere
schemes, plans, rules, or mental processes that do not include computer
elements are
expressly excluded from this application.
[0131] A person of skill in the art can understand and implement all or parts
of steps in the above-
mentioned examples that can complete the procedure by controlling relevant
hardware,
and the said procedure can be stored in a readable storage media of a computer
such as
ROM/RAM, disk and light disk.
[0132] The preferred examples of the present invention have been described
above with reference
to the accompanying drawings, which are not to limit the scope of the present
invention. It
will be apparent to those skilled in the field that various modifications,
equivalents, and
improvements may be made without departing from the scope and spirit of the
invention.
Industrial utility
[0133] The online transaction method, device and system of the present
invention delivers the
issuing request through the first bank server (buyer's bank) to the client and
delivers the
receipt notification to the first bank server (buyer's bank). The completion
of the
transaction in the interaction between buyers and sellers and their bank
accounts, the
transaction process of transaction funds and transaction information did not
go to third-
party payment platform, and the transaction status is monitored in real time
by generating
Bank Credit Certificate, so that there is no deviation between funds flow and
actual
transaction, so that the effective flow of funds for delivery of first-hand
commodity and it
can effectively reduce the risk of funds and improve the security of the
transaction. In
13
Date Recue/Date Received 2020-06-23

addition, the use of digital envelopes and dynamic anti-counterfeiting
technology for
secure transmission of communication data to ensure the safety of
communication data;
the use of double-track check to prevent data from being tampered with
technology; the
two networks are used to balance the convenience and security of
communication. In
addition, the use of digital envelopes and dynamic anti-counterfeiting
technology for
secure transmission of communication data to ensure the safety of
communication data;
the use of double-track check to prevent data from being tampered with
technology; the
two networks are used to balance the convenience and security of
communication.
14
Date Recue/Date Received 2020-06-23

Dessin représentatif