CN107230054B - Method and system for depositing digital currency into a deposit account - Google Patents

Abstract

The present invention provides a method and system for depositing digital currency into a deposit account to solve various deficiencies in the prior art. The method for depositing digital currency into a deposit account of the present invention includes: the terminal device receives the deposit amount and the deposit account input by an external operation; the terminal device selects the digital currency whose total amount is equal to the deposit amount in the digital currency wallet; the terminal device stores the digital currency and the deposit amount. The deposit account is sent to the commercial bank digital currency system; the commercial bank digital currency system sends the digital currency and the deposit account to the central bank digital currency system; the central bank digital currency system changes the owner information of the digital currency from the user to the commercial bank, and to the central bank digital currency system. The commercial bank digital currency system feeds back the transaction success information; the commercial bank digital currency system adds the deposit amount to the deposit account according to the transaction success information, and sends a deposit success notification to the terminal device.

Description

Method and system for depositing digital currency into a deposit account

technical field

The present invention relates to the technical field of computer networks and computer software, and in particular, to a method and system for depositing digital currency into a deposit account.

Background technique

Digital currency is a currency that converts cash values into a series of electronically encrypted serial numbers. The security of the currency itself relies on cryptographic algorithms to protect. In terms of cryptographic algorithms, the security of the digital currency system involves symmetric cryptography, asymmetric cryptography, message digest algorithms and identity-based cryptography. The implementation of algorithms, the design of interactive protocols, the compatibility of international and domestic standards, etc., ensure the security of digital currency transactions.

With the development and popularization of the mobile Internet, the rapid transformation of the mobile payment industry, the continuous innovation of business models based on mobile Internet, NFC, HCE, Token, biometrics and other technologies, the continuous expansion of application scenarios, and the integration of online and offline services accelerated development. While new mobile payment technology provides users with diversified and convenient payment services, it also leads the transformation and upgrading of industries such as communications, finance, and the Internet. The broad development prospect of mobile payment has become a broad consensus in the entire industry, and mobile payment is considered to be an important entry point for connecting online and offline. The digital currency transaction system should be designed with mobile payment as the core business model.

In the mobile payment business mode, the key storage carrier of digital currency can be provided by hardware SE module (security module), HCE and TEE. Hardware SE has been recognized in the field of financial transactions because of the secure computing environment it provides, and is widely used in current debit and credit cards and electronic cash, with a wide user base, good acceptance environment and usage habits. With the continuous development of mobile payment technology and the continuous development of mobile payment technology, many changes have taken place in the form of SE modules, and new solutions are constantly being practiced.

On the data transmission channel between the transaction acceptance terminal (POS machine) and payment tools (such as cards and mobile phones), there are currently multiple transmission methods: RF radio frequency communication, SMS, scanning code, sound waves, photons, and the coexistence of multiple methods. It facilitates the communication between payment carriers.

In terms of authentication methods, it can be divided into password-based authentication, password + smart card-based authentication, and biometrics (fingerprint, face)-based authentication. Among them, the authentication of passwords and biometrics is mostly used for far-field payment, and the authentication of smart card is mostly used for near-field payment.

Cloud computing is the mainstream direction of the back-end server side in the future, and the back-end system of digital currency should adopt cloud-based solutions.

In e-commerce activities, due to different roles, the requirements for digital currency are also different: customers require digital currency to be easy to use, safe to store and have anonymity; merchants require digital currency to be verifiable and convertible into real currency; banks It is required that the digital currency cannot be illegally used and counterfeited. Therefore, the digital currency D-RMB should have the following characteristics:

1. Security: It can prevent any party in the business from changing or illegally using digital currency;

2. Non-repetitive spending: digital currency can only be used once, and repeated spending can be easily checked;

3. Controllable anonymity: Banks and merchants cannot track the use of digital currency even if they collude with each other, requiring the system to be unable to link the purchase behavior of users of electronic cash, thereby concealing the purchase history of digital currency users, but the issuer of digital currency can track the use of digital currency;

4. Unforgeability: users cannot forge fake digital currency;

5. Fairness: The payment process is fair, ensuring that either the transaction is successful for both parties, or there is no loss for both parties, preventing a transaction party from suffering losses in the transaction;

6. Compatibility: The issuance process and circulation of digital currency in the D-RMB system refer to the issuance and circulation of physical currency as much as possible.

And for digital currency, it should be able to adapt to various usage scenarios of existing currencies and be freely convertible with existing currencies.

At present, the currency in circulation in my country is paper currency or metal currency. Whether it is paper currency or metal currency, it belongs to physical currency. Physical currency wastes natural resources and has the disadvantages of high issuance and circulation costs, low transaction or investment efficiency, low convenience of economic activities and low transparency. The traceability of physical currency is relatively low, and criminal acts such as corruption and bribery, illegal money laundering, robbery and theft are unavoidable in society. In addition, it is not very convenient to use bank counters or self-service deposit machines to deposit physical currency into bank accounts.

SUMMARY OF THE INVENTION

In view of this, the present invention provides a method and system for depositing digital currency into a deposit account to solve various deficiencies in the prior art. Other objects, effects, and advantageous effects of the present invention can be derived from the embodiments.

A first aspect of the present invention provides a method for depositing digital currency into a deposit account, comprising: a terminal device receiving a deposit amount and a deposit account input by an external operation; the terminal device selecting a total amount in a digital currency wallet equal to the deposit amount the digital currency; the terminal device sends the digital currency and the deposit account to the commercial bank digital currency system; the commercial bank digital currency system sends the digital currency and the deposit account to the central bank digital currency system; the central bank The bank digital currency system changes the owner information of the digital currency from the user to a commercial bank, and feeds back transaction success information to the commercial bank digital currency system; The deposit account increases the billing of the deposit amount and sends a deposit success notification to the terminal device.

Optionally, before the step of sending the digital currency and the deposit account to the central bank digital currency system by the commercial bank digital currency system, the method further includes: the commercial bank digital currency system confirming that the digital currency is legal; the The commercial bank digital currency system confirms that the digital currency is equivalent to the deposit amount; the commercial bank digital currency system confirms that the user is a registered user of the commercial bank.

Optionally, before the steps of the central bank digital currency system changing the owner information of the digital currency from the user to a commercial bank, and feeding back transaction success information to the commercial bank digital currency system, the method further includes: the The central bank digital currency system confirms that the owner of the digital currency is the user.

Optionally, after the step of adding the deposit amount to the deposit account by the commercial bank digital currency system according to the transaction success information, the method further includes: recording the transaction flow by the central bank digital currency system.

A second aspect of the present invention provides a system for depositing digital currency into a deposit account, including: terminal equipment, a commercial bank digital currency system and a central bank digital currency system, wherein: the terminal equipment is used for: receiving deposits inputted by external operations Amount and deposit account; select a digital currency whose total amount is equal to the deposit amount in the digital currency wallet; send the digital currency and the deposit account to the commercial bank digital currency system; the commercial bank digital currency system is used for: Send the digital currency and the deposit account to the central bank digital currency system; add the deposit amount to the deposit account according to the transaction success information, and send a deposit success notification to the terminal device; the central bank The bank digital currency system is used for: changing the owner information of the digital currency from the user to a commercial bank, and feeding back the transaction success information to the commercial bank digital currency system.

Optionally, the commercial bank digital currency system is further used to: confirm that the digital currency is legal; confirm that the digital currency is equivalent to the deposit amount; confirm that the user is a registered user of a commercial bank.

Optionally, the central bank digital currency system is further configured to: confirm that the owner of the digital currency is the user.

Optionally, the central bank digital currency system is further used to: record transaction flow.

According to the technical solution of the present invention, the digital currency itself brings many advantages. Digital currency can save natural resources, save the cost of issuance and circulation, improve the efficiency of transactions or investments, improve the convenience and transparency of economic transaction activities, and improve the traceability of currency circulation. In the deposit process, digital currency deposits do not need to rely on bank counters or self-service deposit machines, but only need to be completed on terminal devices such as users' mobile phones.

Description of drawings

The accompanying drawings are used for better understanding of the present invention and do not constitute an improper limitation of the present invention. in:

FIG. 1 is a schematic diagram of the main flow of the work of the prefabricated card related to the embodiment of the present invention;

Fig. 2 is the schematic diagram of the process flow of user registration D-RMB account related to the embodiment of the present invention;

3 is a schematic diagram of a D-RMB transaction process related to an embodiment of the present invention;

4 is a schematic diagram of a structure of an overall framework when the D-RMB digital currency system provides online services according to an embodiment of the present invention;

5 is a schematic diagram of a computer system included in a commercial bank digital currency system according to an embodiment of the present invention;

FIG. 6 is a schematic diagram of an architecture of the interconnection between a commercial bank digital currency system and an external system according to an embodiment of the present invention;

7 is a schematic diagram of the main steps of a method for depositing digital currency into a deposit account according to an embodiment of the present invention;

8 is a schematic diagram of the main modules of a system for depositing digital currency into a deposit account according to an embodiment of the present invention.

Detailed ways

Exemplary embodiments of the present invention are described below with reference to the accompanying drawings, which include various details of the embodiments of the present invention to facilitate understanding and should be considered as exemplary only. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the invention. Also, descriptions of well-known functions and constructions are omitted from the following description for clarity and conciseness.

In the embodiment of the present invention, the design scheme of digital currency (hereinafter referred to as D-RMB) based on cryptographic mathematics is described. The central bank here is the issuer of the currency, such as the People's Bank of China. In the following description, central banks are sometimes referred to simply as "central banks", and similarly, commercial banks are sometimes referred to simply as "commercial banks". In addition, the digital currency is represented as "D _currency ".

The D-RMB system is a fund transfer system based on D _currency transactions, which is jointly operated by the central bank and commercial banks. The D-RMB system includes D _coin issuance, customer login, customer account management, transaction management, fraud detection, and core business modules running on the core server of a specific digital center, as well as mobile phones and laptops on the client side that need to interact with the core server. At the same time, it also includes an open form of electronic communication network including the Internet and mobile communication network throughout the country on which the D _coin fund transfer system operates. Before discussing the D-RMB system, make it clear:

1. Compatibility with existing physical currency circulation. The issuance process and circulation of digital currency in the D-RMB system refer to the issuance and circulation of physical currency as much as possible. The storage of digital currency in the D-RMB system goes through three links. One is the central bank's digital currency issuance library (ie, digital currency fund); The second is the bank vault of the commercial bank, that is, the digital cash in stock of the commercial bank; the third is the client application on the client side, that is, the electronic wallet. In the process of these different links, the registration center of D-RMB will complete the relevant registration operations.

2. D-RMB digital currency does not require blind signatures. Limited anonymity protection during use.

3. D-RMB digital currency can be circulated on different networks, and may exist in various electronic equipment terminals such as mobile phones, IC card chips, notebook computers, etc. in electronic digital form. This article mainly uses mobile phones and IC cards as carriers to store D-RMB digital currency. Currency is used to discuss examples, but it does not mean that it can only be carried by mobile phones and IC cards.

4. The payment mode designed by the D-RMB system relies on the transfer of D-RMB digital currency (ie: D _currency transaction).

5. The D-RMB system must obey the relevant system requirements of my country's cash management. The specific requirements are determined by the needs of the business unit.

6. In order to avoid homogeneous competition with the existing bookkeeping payment system, the D-RMB system can be designed to pay with a limited amount.

For the convenience of subsequent descriptions, the following notation conventions are made:

Enc: Encryption, here means that after the user downloads the private key from the IBC center, he signs the sent information with his own private key and encrypts it with the other party's public key.

Dec: Decryption, here specifically means that the user decrypts the communication with his own private key, and uses the mobile phone number of the other party as the corresponding public key (or direct public key) to sign and confirm the information sent by the user.

_Bank D: refers to the reserve account opened by the bank in the central system of the central bank for bookkeeping.

D _currency : refers to the D-RMB digital currency generated by the central bank according to its own encryption mechanism, which is a string of characters representing a certain amount of RMB.

D _{Coin 100} : Refers to the D-RMB digital currency generated by the central bank according to its own encryption mechanism. It is a string of numbers representing 100 yuan, and so on.

_Account B: The bank account number of the bank where the user's account is opened.

H(M): The value obtained by hashing M, M can be a mobile phone number, an organization code, or a string of characters, numbers, etc.

As a digital currency, D-RMB is established and issued into circulation by the People's Bank of China as legal tender. The People's Bank of China is the ultimate lender to provide guarantees and participate in exchange, exchange and consumption within the national standard framework. It is a string of codes that has the same monetary meaning as the "face value" in actual circulation. D-RMB digital currency simulates the issuance and management process of paper currency in the central bank, and digital currency is generated at one time in the D-RMB issuance library according to the central bank's current digital currency issuance.

In the design of the D-RMB system, D _coins can be generated according to the minimum unit denomination, or according to the specific withdrawal amount of the user, or according to the denomination of the physical currency in circulation. The specific method can be determined by the system parameters in the initial process. in the settings. In order to be close to reality, the following will be explained by taking the fixed denomination in circulation as an example.

The D-RMB in the distribution library completely simulates the face value in circulation, and "printing" produces digital representations of "one yuan, five yuan, ten yuan, two ten yuan, five ten yuan, one hundred yuan", etc., an encrypted text representation A face value of D-RMB digital currency.

D-RMB is generated according to a fixed face value. For example, D-RMB is represented by the fifth set of production (then need to produce: D _{coin 1} , D _{coin 5} , D _{coin 10} , D _{coin 20} , D _{coin 50} , D _{coin 100} ):

Step 1: Generate six basic encrypted passwords from the master password and the numbers 1, 5, 10, 20, 50, and 100, respectively.

Step 2: Generate system random numbers by hash algorithm. A random number can be understood as a crown number.

Step 3: Encrypt with basic encryption passwords representing different currency values and random numbers to generate encrypted passwords.

Step 4: The encrypted password is signed by the central bank's private key, representing the generation of new coins. If the withdrawer wants to withdraw 100 D _coins representing 100 yuan, in the actual withdrawal process, the encrypted ciphertext m can be generated by encrypting the unique random number representing 100 yuan and the corresponding basic encryption password, and then the central bank private key pair m. to sign.

In the D-RMB system, there are the central bank's digital currency issuance library, the commercial bank's digital currency bank library, and the electronic wallet of the client (such as mobile phone). The basic contents of digital currency transfer include:

(1) According to the total amount of digital currency issued, the central bank uniformly generates digital currency (that is, the production of digital currency funds) and stores it in the central bank's issuance library.

(2) According to the application for digital currency of commercial banks, the digital currency is sent to the database of the corresponding commercial bank where the digital currency is stored, that is, the digital currency is transferred from the issuing library to the bank treasury.

For example, according to the total amount of currency issuance, the central bank issued 1 billion D-RMB, and these D-RMBs were placed in the central bank's issuance library after issuance. Later, according to a bank's application, 200 million of the 1 billion D-RMB was withdrawn, and the withdrawn 200 million D-RMB was deposited in the bank's treasury (the bank's deposit reserve account in the central bank is recorded in the central bank's deposit reserve account). The account is reduced by 200 million. At the same time, 200 million D-RMB is stored in the bank vault of the commercial bank, and its bookkeeping operation is equivalent to the withdrawal of the existing physical currency). In the registration center, the corresponding owners of these digital currencies are determined by the central bank. Change it to a commercial bank, and record the corresponding operation flow and other information.

(3) When the user applies to withdraw digital currency, the digital currency goes from the bank vault to the circulation link, and enters the storage medium of the user client (such as in the mobile phone), that is, from the bank vault to the user's electronic wallet. In the registration center, the corresponding owners of these digital currencies are changed from commercial banks to users, and information such as the corresponding operation flow is recorded.

(4) In the circulation process, the essence of digital currency is to transfer between the two users' respective electronic wallets to complete the payment. At this time, the payment is divided into online transactions and offline transactions. The specific business process will be analyzed in detail later. In the registration center, the corresponding owner of these digital currencies is changed from user 1 to user 2, and information such as the corresponding operation flow is recorded.

During the above digital currency transfer process, the registration center of the D-RMB system needs to verify the legitimacy of the transaction digital currency, record the transaction flow and correct the new owner of the corresponding digital currency, and register other required information (specifically determined by business needs) .

If the IC card is used as the carrier, there is still the work of prefabricated cards. In the work of prefabricated cards, the central bank digital currency system and the commercial bank digital currency system perform a series of operations on the D-RMB chip card containing the storage medium, mainly including: : The central bank digital currency system generates the personalized data of the D-RMB chip card according to the pre-specified content; the commercial bank digital currency system writes the personal information of the user who applies for the D-RMB chip card into the D-RMB chip card; the commercial bank The digital currency system applies the user's IBC public key to the authentication system for the IBC private key, and the user's IBC public key is the identity of the D-RMB chip card or the identity of the user. The main flow involved in the above operation is shown in FIG. 1 , which is a schematic diagram of the main flow of the prefabricated card operation related to the embodiment of the present invention.

As the security carrier of D _coin , the card base has a certain strengthening effect on ensuring the security of D _coin in all aspects of D _coin circulation (independent physical carrier IC card is also referred to as "D-RMB chip card").

(1) Production of D-RMB chip card

The production of D-RMB chip cards must be produced by enterprises certified by the central bank with production qualifications, and the quantity and quality of their production are strictly controlled by the central bank (or other departments authorized by the central bank). The enterprise qualification certification process includes: application submission, material review, sample card testing, on-site evaluation, authorization qualification and other links.

(2) Personalization of D-RMB chip card

The personalized data in the D-RMB chip card is generated by the central bank, and the relevant departments are authorized to establish a personalization center to carry out personalized operations on the newly produced D-RMB chip card.

(3) Issuance of D-RMB chip card

The system can support real-name card issuance and anonymous card issuance.

Real-name system card issuance: D-RMB chip card is applied by the user personally, real-name system card is issued, and the central bank authorizes the commercial bank to issue it on behalf of the commercial bank. The card is issued a second time, and the user's personal information is written into the D-RMB chip card.

Anonymous card issuance: Users can directly apply for a D-RMB chip card from a commercial bank, and the commercial bank can choose whether to verify the applicant's identity information according to the actual situation.

The commercial bank chooses to use the unique identification number of the D-RMB chip card or the user's mobile phone number as the user's IBC public key according to the actual situation, and then applies to the IBC certification center for the private key.

The D-RMB system supports the choice of online or offline transactions using computer equipment, mobile phones, POS, ATM, and the Web as carriers.

With regard to mobile phone terminals, various digital passwords, graphic passwords and other unlocking settings and power-on passwords can effectively protect the security of personal information on the mobile phone. With the advent of the era of smart phones, all kinds of fingerprint mobile phones based on biometric features have entered the general consumer group. It can adopt different fingerprint encryption for different applications and different specific information. The application of these new technologies can effectively ensure the digital currency on mobile phones, related Safe storage of transaction information.

In order to ensure the safe transfer of digital currency between mobile phones, the D-RMB system needs to introduce a security certification system. The existing CA certification center is used between the central bank and financial institutions, and social users (including individuals and enterprises) can use the IBC (Identity-Based Cryptograph) certification center for identity authentication.

The private key and central bank public key generated in IBC and PKI need to be reliably and safely stored in the secure exclusive area SE area (Secure Element) of the mobile phone. HostCard Emulation) to achieve. If the user chooses to change the card to protect the key, download the key to the SE area of the mobile phone during the card change application process.

During the construction of the certification system, it can be designed according to the traditional PKI certification system, and the PKI system can be established uniformly, and the strong digital signature can be provided by the CA. It can also be designed according to the IBC and managed by the user's mobile phone number as the public key, especially for small quotas. Offline payment seems to be more convenient. All business descriptions below will be explained with IBC certification. FIG. 2 is a schematic diagram of a process of a user registering a D-RMB account related to an embodiment of the present invention, and FIG. 3 is a schematic diagram of a D-RMB transaction process related to an embodiment of the present invention.

During user registration, there are mainly the following processes: after receiving the identity certification information from the terminal device used by the user, the central bank digital currency system sends the terminal device the application software suitable for the terminal device; the central bank digital currency The system sends the IBC public key and IBC private key to the terminal device running the application software, and then conducts an identity authentication session and session key negotiation with the terminal device; the central bank digital currency system receives the IBC running the application software. The user account sent by the terminal device, and then the user password is sent to the terminal device.

Taking user 1 to pay user 2 the digital currency D _{coin 50} of 50 yuan online as an example, to illustrate the security protocol when the transfer of D _{coin 50} is involved in the transaction process. User 1 logs in to his mobile APP, completes the two-party identity authentication with the D-RMB system, and negotiates the session key in SSL mode, and then executes the transaction protocol. Taking the mobile phone number as the IBC public key as an example, in the mobile client of User 1: the mobile client automatically selects the digital currency D _{coin 50} of 50 yuan, and organizes the relevant information M||m according to the transaction rules, where M can be designed as: M= Transaction code||Mobile phone number 1||D _{coin 50} ||Payment amount||Mobile phone number 2, hash the information segment to get the message H(M), and sign H(M) with the private key corresponding to the mobile phone number 1 To get m, send M||m to the D-RMB system in an encrypted manner.

D-RMB system side: decrypt the message according to the protocol to obtain M||m, and verify the validity of the message, that is, verify m and H(M) with the public key, namely the mobile phone number 1, to prevent the message from being tampered with during the transmission process; Whether the D _{coin 50} is legal, interpret the transaction rules and related information, and perform corresponding operations, mainly including changing the owner of the D _{coin 50} by the registration center after business verification, changing the bound mobile phone number 1 to mobile phone number 2, and recording the corresponding flow. Send D _{coins 50} to mobile phone 2, and notify both parties that the transaction is successful.

In order to further enhance the anonymity, the mobile phone number corresponding to the ownership of the registration center can be changed to the hash of the mobile phone number (that is, borrowed from the Bitcoin wallet address, which is composed of the hash of the public key), and the specific description is as follows:

The client organization message remains unchanged. On the user 1 mobile phone client: automatically select 50 yuan of digital currency D _{coin 50} , and organize relevant information M||m according to the transaction rules, where M can be designed as M=transaction code||mobile phone number 1||D _{coin 50} ||Payment amount||Mobile phone number 2, hash the information segment to get the message H(M), sign H(M) with the private key corresponding to the mobile phone number 1 to get m, encrypt the message Send M||m to the D-RMB system.

D-RMB system side: decrypt the message according to the protocol to obtain M||m, and verify the validity of the message, that is, verify m and H(M) with the public key, namely the mobile phone number 1, to prevent the message from being tampered with during the transmission process; Whether the D _{coin 50} is legal, interpret the transaction rules and related information, and perform the corresponding operations, mainly including the registration center changing the owner of the D _{coin 50} after the business verification, from the bound H (mobile phone number 1) to H (mobile phone number 2), And record the corresponding flow. Send D _{coins 50} to mobile phone 2, and notify both parties that the transaction is successful.

Regarding the system convenience design, in the embodiment of the present invention, there are various interfaces and entrances for transactions. In the scenario example process, only one entry is used as an example. For example, if a registered user handles business in a commercial bank, the user can directly log in to the D-RMB system with a mobile phone, or the commercial bank can log in to the D-RMB system.

Regarding the account password, you can flexibly design whether the user is required to enter the account password according to business needs. Based on the D-RMB system is a small payment system, it is suggested that users can freely choose whether to set a password. In the description of the embodiment of the present invention, it is described as not leaving a password, but in implementation, it can be determined according to the actual situation.

Regarding the client application program, users can download the corresponding client application program on their corresponding terminal (such terminal software is equivalent to a "wallet" tool), for example, mobile phone users can download the D-RMB mobile phone terminal program (also called for mobile APP). The terminal program can be designed to include the following functions: First, the D _coin management function. (1) The terminal program can automatically count the amount of all D _coins ; (2) It can automatically find the combination of D _coins in the "wallet" according to the amount entered by the user, and automatically select the matched D _coins for transactions during the payment process. ; (3) After the transaction is completed, the D _coins participating in the expenditure are automatically deleted; (4) The digital currency in the "wallet" that has not been verified online by the central bank and the digital currency that has been verified and registered can be automatically distinguished. The second is to complete the functions required by the business, such as online registration application, withdrawal, payment, cashing, offline payment request and other business functions, as well as automatic completion of public key encryption, private key signature and other operations during the transaction process.

In general, the core elements of the D-RMB system are one currency, two types of libraries, and three centers:

A coin, namely "D-RMB", also known as D _coin , specifically refers to a string of encrypted numbers signed by the central bank representing a specific amount.

There are two types of libraries: D-RMB's distribution library and bank library. The digital currency appears as the central bank's digital currency fund in the issuance library; the digital currency appears as the commercial bank's inventory digital cash in the bank treasury.

Three centers: one is the registration center (including the whole process record of currency generation, circulation, check and demise); the other two are the certification center, namely the CA certification center (based on the PKI system, centralized management of institutional and user certificates, such as CFCA) and IBC certification center, that is, the certification center (Identity-BasedCryptograph) established based on identity-based cryptography. Two forms can be designed in the registration center, one is the digital currency ownership registration form, which records the ownership of the digital currency, and the other is the transaction flow table.

The identity-based cryptosystem IBC in the embodiment of the present invention can directly use the user's identity as the public key, and the authentication of the public key no longer relies on the certificate, which simplifies the use and management of the key, and has the advantages of no directory, convenient use, and easy access. maintenance, etc.

For identity identification, individual users can use mobile phone numbers, D-mail addresses that match mobile phones, or other transformed strings, which are convenient for the customer to remember, and others have no way of knowing), so as to achieve the purpose of controllable anonymity. Enterprise users can use the organization code or a self-defined code as the ID of the IBC center, which is used as the public key. In the following example, only the mobile phone number is used as an example for convenience.

The D-RMB system is a hierarchical system, that is, it is jointly built by the central bank and various commercial banks. The central bank digital currency system is a computer operated and maintained by the central bank or a central bank-designated institution to process information about digital currency. The main functions of the system include being responsible for the issuance and verification monitoring of digital currency. A commercial bank is a computer system operated and maintained by a commercial bank or a designated institution of a commercial bank to process information about digital currency. Various functions, namely banking functions, mainly include, after applying for digital currency from the central bank, it is responsible for directly facing the society and meeting the needs of providing digital currency circulation services.

In the basic structure of the digital currency system according to the embodiment of the present invention, the digital currency system mainly includes a central bank digital currency system, a commercial bank digital currency system (in practice, there may be multiple commercial bank digital currency systems), and an authentication system. Among them, the central bank digital currency system is used to generate and issue digital currency, and to register the ownership of digital currency; the commercial bank digital currency system is used to perform banking functions for digital currency; the authentication system is used to verify the central bank digital currency system and digital currency. Authentication is provided for interactions between terminal devices used by users of the currency, as well as for interactions between central bank digital currency systems and commercial bank digital currency systems.

FIG. 4 is a schematic diagram of a structure of an overall framework when the D-RMB digital currency system provides online services according to an embodiment of the present invention.

In the overall framework shown in Figure 4, the core of the D-RMB digital currency operation is the commercial bank digital currency system. The central bank's D-RMB system is connected to the commercial bank's D-RMB system and is responsible for transaction confirmation. Both the commercial bank D-RMB system and the central bank D-RMB system can make full use of advanced cloud technology for decentralized deployment, and the commercial bank D-RMB system is interconnected with its internal systems.

It can be seen from the figure that the digital currency system of commercial banks is connected to other networks or systems at the core position, and can be constructed using "cloud computing" technology. D-RMB digital currency system supports network data of various protocols, such as: virtual private network VPN, dedicated line, satellite network, public switched telephone network (PSTN), global system for mobile communications (GSM), public land mobile network (PLMN) , each different network can realize direct or indirect connection with the central server.

The digital currency system of the commercial bank is connected to the central bank registration center, and also has four basic functional modules: an electronic wallet function module that automatically tracks how much D-RMB digital currency an account has, automatically tracks the D-RMB digital currency transfer between parties and identifies suspicious Transaction supervision function module, electronic banking service function and customer relationship management CRM function module.

The logical layout of the server in the commercial bank digital currency system adopts a three-layer structure: the presentation layer, which is the front-end application system 200; the back-end application system 202, which is also called the session layer, application layer, or transaction logic layer; back-end database 204 is the data layer. The corresponding physical machine deployment block diagram is shown in FIG. 5 , which is a schematic diagram of a computer system included in a commercial bank digital currency system according to an embodiment of the present invention.

The front-end application system 200 is used to run an application program that the user directly interacts with the money transfer service operator, such as a Web application program, where a Web server cluster is deployed. Users and money transfer service operators interact with these applications through user interfaces such as personal computing devices 114 and mobile devices. Users can access electronic wallet functions, supervision functions, virtual banking functions, and CRM functions through this portal. Open source software such as apache can be used on the Web server.

The back-end application system 202 is mainly used to support back-end functions such as data access and business logic processing of the front-end application system 200 . This zone deploys application servers. The D-RMB digital currency can use the JBOSS tool under the Red Hat open source system to develop applications.

The background database 204 is mainly a database management system DBMS, including a data warehouse, which stores sales transactions of transferred currency, customer files, and other data required to track and adjust the central bank digital currency system for D-RMB digital currency transfers. The D-RMB digital currency system can be designed with Oracle's DBMS as the database system.

The above-mentioned commercial bank digital currency system can be interconnected with external systems. An optional architecture is shown in FIG. 6 , which is a schematic diagram of an architecture for interconnecting a commercial bank digital currency system with an external system according to an embodiment of the present invention.

The above figure demonstrates the physical and logical layout of the commercial bank digital currency system and various external system adapters including the central bank central server and other commercial banking systems. There are currency transaction data adapters, mobile phone service provider SMS gateway adapters, retailer system adapters, ATM data supply system adapters, etc. Through this interconnection, the central server can accept digital currency transfer requests and responses from each type of entity. Figure 6 fully illustrates the D-RMB digital currency system's good support for various channels and different protocol networks, which is also a manifestation of the openness of its system.

The following will take the user's mobile phone as the terminal, and use the mobile phone number as the identification to describe the various business processes of operating D-RMB, mainly including client download and login, withdrawal, payment, deposit and cashing and other processes, and conduct face-to-face transactions. to explain. The user's client login, withdrawal, and redemption process requires the user to complete the online state, and the payment process can be divided into online payment and offline payment, so multiple scene states and their corresponding processes are formed. The purpose of each process is to achieve It is realized by a series of operation steps. In addition to mobile phones, other intelligent terminals that may appear at present and in the future can be used as the carrier of D-RMB and execute various business processes.

The outline of the flow (the following "flow description"), the scene state (the following "scenario description"), and the steps for realizing the flow in the scenario (the following "step description") are described below.

For user client download and login, follow the steps below:

Process description: The user downloads the APP installer provided by the commercial bank to log in to the D-RMB system through the mobile phone.

Scenario description: Qualified commercial banks (such as Industrial and Commercial Bank of China) connect to the CA certification center, IBC certification center and registration center to provide users with digital currency services. The user logs in to the D-RMB system of the commercial bank by downloading the APP installation program provided by the commercial bank through the mobile phone.

Step instructions:

Step 1. The user logs in to the D-RMB system page of the commercial bank (such as the Industrial and Commercial Bank of China) with a mobile phone, and downloads the mobile APP installation program provided by the commercial bank. For users who already have an account (IBC Certification Center), they can log in directly; Users need to initialize the account first.

Step 2. Initialization: Enter relevant information on the page (such as name, address, email address, mobile phone number, ID number, registered account or mobile phone number, etc.), and click Send.

Step 3. Commercial Bank: Connect to the IBC Certification Center, create a unique account of the D-RMB digital currency system for the user, and verify its uniqueness at the IBC Center. Individual users can use the mobile phone number to generate the user's initial login password and send it to the user's mobile phone; IBC Center generates the user's private key according to the mobile phone number, the public key is the user's mobile phone number, and the public key is used as the account for transaction flow.

Step 4. User's mobile terminal: Activate the account after receiving the initial login password, download the user's private key and the central bank's public key to the mobile phone security protection area, and log in to the mobile APP again to modify the login password to complete the initialization.

If the user applies for changing the mobile phone card, the key can be pre-planted in the SE area of the card in advance.

The method and system for depositing digital currency into a deposit account in the embodiments of the present invention will be described in further detail below.

7 is a schematic diagram of the main steps of a method of depositing digital currency into a deposit account according to an embodiment of the present invention. As shown in FIG. 7 , the method for depositing digital currency into a deposit account according to an embodiment of the present invention may include the following steps A1 to A6. This method is applicable to the system for depositing digital currency into a deposit account according to an embodiment of the present invention.

Step A1: The terminal device receives the deposit amount and the deposit account input by the external operation.

For example: Suppose the user wishes to deposit a digital currency D _{coin 100} with an amount of 100 yuan in his digital currency wallet into the current deposit account B _account opened by the user in a commercial bank. The terminal device is the mobile client developed by the commercial bank. After the user enters the user name and password to log in to the mobile client, click to select the "deposit function", and then enter "the deposit amount is 100 yuan" and "the deposit account B _account number" into the terminal device. This means that the terminal device has received a deposit instruction including the deposit amount (100 yuan) and the deposit account (B _account number).

Step A2: The terminal device selects the digital currency whose total amount is equal to the deposit amount in the digital currency wallet.

Specifically: after receiving the above deposit instruction, the terminal device selects a digital currency D _{coin 100} with an amount of 100 yuan in the digital currency wallet according to the deposit amount in the deposit instruction.

Step A3: The terminal device sends the first message including the digital currency and the deposit account to the digital currency system of the commercial bank.

Specifically: the mobile phone client organizes the relevant information according to the preset transaction specifications, generates a first message including the digital currency D _{coin 100} and the deposit account B _account number, and then sends it to the commercial bank digital currency system.

Optionally, before step A4 is performed, the commercial bank digital currency system may perform the following first verification on the first message: the commercial bank digital currency system verifies the legality of the digital currency according to the first message; the commercial bank digital currency system verifies the legality of the digital currency according to the first message; According to the first message, verify whether the alleged digital currency is equivalent to the deposit amount; the commercial bank digital currency system verifies whether the user is a registered user of the commercial bank according to the first message. It should be noted that the specific content of the first packet and the first verification can be flexibly set according to the transaction rules, and this is only an example and not a limitation of the present invention. If the first verification is passed, step A4 is performed. If the first verification fails, the process ends.

Step A4: The commercial bank digital currency system sends the digital currency and the deposit account to the central bank digital currency system.

Specifically, the commercial bank digital currency system organizes the relevant information according to the preset transaction specifications, generates a second message including the digital currency D _{coin 100} and the deposit account B _account number, and then sends it to the central bank digital currency system.

Optionally, before step A5 is performed, the central bank digital currency system may perform the following second verification on the second message: the central bank digital currency system verifies whether the owner of the digital currency is the user according to the second message. It should be noted that the specific content of the second packet and the second verification can be flexibly set according to the transaction rules, which are merely examples and not limitations of the present invention. If the second verification is passed, step A5 is performed. If the second verification fails, the process ends.

Step A5: The central bank digital currency system changes the owner information of the digital currency from the user to the commercial bank, and feeds back the transaction success information to the commercial bank digital currency system.

Specifically, the central bank digital currency system performs the following operations: in the registration center inside the central bank digital currency system, the owner information of the digital currency D _{coin 100} is changed from the user account to the code of the commercial bank, which means that the commercial bank's The business library took back _{100 of the digital currency D coins} . In addition, the central bank digital currency system also feeds back transaction success information to the commercial bank digital currency system.

Step A6: The commercial bank digital currency system adds the deposit amount to the user's commercial bank account according to the transaction success information, and sends a deposit success notification to the terminal device.

Specifically: after the commercial bank digital currency system receives the transaction success information sent by the central bank digital currency system, it adds 100 yuan to the user's deposit account B _account , and sends a deposit success notification to the terminal device.

Optionally, after step A6, the method further includes: the central bank digital currency system records the transaction flow.

8 is a schematic diagram of the main modules of a system for depositing digital currency into a deposit account according to an embodiment of the present invention. As shown in FIG. 8 , the system B for depositing digital currency into a deposit account according to an embodiment of the present invention may include: a terminal device B1 , a commercial bank digital currency system B2 and a central bank digital currency system B3 .

Among them, the terminal device B1 is used to: receive the deposit amount and deposit account input by external operations; select the digital currency whose total amount is equal to the deposit amount in the digital currency wallet; send the digital currency and the deposit account to the commercial bank digital currency system B2.

Among them, the commercial bank digital currency system B2 is used to: send the digital currency and the deposit account to the central bank digital currency system B3; increase the deposit amount in the deposit account according to the transaction success information, and send a deposit success notification to the terminal device B1.

Among them, the central bank digital currency system B3 is used to: change the owner information of the digital currency from the user to a commercial bank, and feed back transaction success information to the commercial bank digital currency system B2.

Optionally, the commercial bank digital currency system B2 is also used for: confirming the legality of the digital currency; confirming that the alleged digital currency is equivalent to the deposit amount; and verifying that the user is a registered user of the commercial bank.

Optionally, the central bank digital currency system B3 is also used for: confirming that the owner of the digital currency is the user.

Optionally, the central bank digital currency system B3 is also used for: recording transaction flow.

As can be seen from the above, the method and system for depositing digital currency into a deposit account according to the embodiments of the present invention bring many advantages due to the properties of digital currency itself. Digital currency can save natural resources, save the cost of issuance and circulation, improve the efficiency of transactions or investments, improve the convenience and transparency of economic transaction activities, and improve the traceability of currency circulation. In the deposit process of the embodiment of the present invention, the digital currency deposit does not need to rely on bank counters or self-service deposit machines, but only needs to be completed on a terminal device such as a user's mobile phone, which has the advantages of being movable, depositing at any time, convenient and quick, etc. .

The duplicate transaction detection is described below. In the case of online transactions, the D-RMB system prevents repeated transactions by binding D _coins to user accounts. The registration center in the D-RMB system has an ownership registration form, and the style of the record form can be designed as shown in Table 1:

Table 1

digital currency name owner Remark Pbc100adfkl09987766670 138 xxxxx 001 D_{Coin 100} ... ... ... Pbc50cadfkl09987766670 137 xxxxx 002 D_{Coin 50}

When user 1 (mobile phone number 138xxxxx001) pays D _{currency 100} to user 2 (mobile phone number 138xxxxx002), the ownership registration form of the D-RMB system registration center: change the owner corresponding to D _{currency 100} , and change the original mobile phone number 138xxxxx001 in the owner field Change the wallet address of 138xxxxx002 to the wallet address of the mobile phone number 138xxxxx002. If user 1 still wants to pay other users with D _{coins 100} , the owner is not user 1 and cannot complete the payment, so as to prevent repeated payments.

If the owner is represented by the public key hash in the registration center ownership registration table in the D-RMB system, the registration center ownership registration table can be designed as shown in Table 2:

Table 2

Assuming that the value of H(138xxxxx001) is 1Xadcfdgdadg, and the value of H(138xxxxx002) is 2xcfdald3xgdf, user 1 (mobile phone number 138xxxxx001) is in the process of paying D _{coins 100} to user 2 (mobile phone number 138xxxxx002), D-RMB system registration center ownership registration form : Change the corresponding owner of D _{coin 100} , and change 1Xadcfdgdadg in the owner field to 2xcfdald3xgdf. If user 1 wants to pay other users with D _{coin 100} , the owner is no longer user 1, and the payment cannot be completed. Prevent double payments.

In the case of offline transactions, it is found and held accountable by lagging duplicate payment checks. At present, almost all electronic cash systems perform duplicate payment checks with a lag, that is, duplicate payment checks are performed after the payment process is completed.

At the same time, the transaction we set is a small payment (less than 1,000 yuan), which is an acceptable range for individual users, and a post-event accountability mechanism is adopted. Bad records will be entered into the credit reporting system for punishment.

In terms of convenience, the mobile phone as the terminal carrier solution (hereinafter referred to as the "mobile phone solution") provides more implementation methods and means of use, the system deployment is convenient, the user operation is convenient, and it is easier to promote.

From the point of view of security, with the mobile phone as the D-RMB carrier, HCE and TEE solutions can be used, thus providing more storage space, not completely dependent on hardware manufacturers, and more convenient for promotion.

Compared with other currency systems that replace banknotes in the market, D-RMB initially has the characteristics of good convenience and high security. The convenience is reflected in the following aspects:

In terms of issuance method, D-RMB is the digitization of the currency itself, and does not rely on any bank account and a single network;

In terms of storage mode, the storage medium of D-RMB can be a mobile phone, or an electronic device such as a card, a disk, a computer, etc., providing users with a variety of choices. In particular, D-RMB with mobile phone as the carrier can make full use of the functions of the mobile phone's keyboard, display, positioning, storage, computing, communication, etc., and can also be re-developed to greatly expand the payment scene and convenience;

In terms of payment methods, it can provide not only face-to-face payment transactions similar to paper money, but also network remote payment transactions similar to electronic payment systems, which can support online or offline transactions, which are convenient and flexible;

In terms of transaction speed, the payment speed is greatly improved compared to the online credit card payment method. Very suitable for small and fast payments;

In terms of usage habits, it is compatible with the original card payment method, and can also provide face-to-face digital currency payment. At the same time, it can also provide electronic transaction records, which is convenient for financial statistics and highly acceptable to users.

Security is manifested in the following aspects:

Compared with other digital currency systems, D-RMB digital currency is a series of electronic encrypted serial numbers converted from cash values, and payment transactions are completed through the transfer of these encrypted serial numbers. The security of the currency itself is protected by a cryptographic algorithm, which can effectively ensure the confidentiality and integrity of currency information, with high security;

The security of D-RMB digital currency carrier utilizes chip technology in mobile terminals and trusted technology in the background cloud to achieve end-to-end security;

The security of the D-RMB digital currency transaction system relies on the traditional electronic payment system security technology on the one hand, and the powerful D-RMB cloud computing system is used in the background to further ensure transaction security;

In terms of user privacy protection, the method of "voluntary front-end and real-name back-end" not only ensures user privacy, but also avoids the risk of illegal transactions.

The above-mentioned specific embodiments do not constitute a limitation on the protection scope of the present invention. It should be understood by those skilled in the art that various modifications, combinations, sub-combinations and substitutions may occur depending on design requirements and other factors. Any modifications, equivalent replacements and improvements made within the spirit and principle of the present invention shall be included within the protection scope of the present invention.

Claims (8)

1. A method of depositing digital currency into a savings account, comprising:

the terminal equipment receives a deposit amount and a deposit account input by external operation;

the terminal equipment selects digital currency with the total sum equal to the deposit sum in a digital currency wallet;

the terminal equipment sends the digital currency and the deposit account to a commercial bank digital currency system;

the commercial bank digital currency system sending the digital currency and the deposit account to a central bank digital currency system;

the central bank digital currency system changes owner information of the digital currency from a user to a commercial bank and feeds back transaction success information to the commercial bank digital currency system;

the commercial bank digital currency system adds the accounting of the deposit amount to the deposit account according to the transaction success information and sends a deposit success notice to the terminal equipment;

wherein the central bank digital currency system is for generating and issuing the digital currency;

the commercial bank digital currency system is for performing banking functions on the digital currency.

2. A method of depositing digital currency into a deposit account according to claim 1, further comprising, prior to the step of the commercial bank digital currency system sending the digital currency and the deposit account to a central bank digital currency system:

the commercial bank digital currency system confirms that the digital currency is legal;

the commercial bank digital currency system confirms that the digital currency is equivalent to the deposit amount;

the commercial bank digital currency system confirms that the user is a registered user of a commercial bank.

3. A method of depositing digital currency into a deposit account according to claim 1, further comprising, before the steps of the central bank digital currency system changing owner information of the digital currency from a user to a commercial bank and feeding back transaction success information to the commercial bank digital currency system:

the central bank digital currency system confirms that the owner of the digital currency is the user.

4. The method of depositing digital money into a deposit account according to claim 1, wherein after the step of the commercial bank digital money system adding an accounting of the deposit amount to the deposit account according to the transaction success information, further comprising:

the central bank digital currency system records the flow of transactions.

5. A system for depositing digital money into a deposit account, comprising: terminal device, commercial bank digital currency system and central bank digital currency system, wherein:

the terminal device is configured to: receiving a deposit amount and a deposit account input by an external operation; selecting digital currency with a total amount equal to the deposit amount in a digital currency wallet; sending the digital currency and the deposit account to the commercial bank digital currency system;

the commercial bank digital currency system is to: sending the digital currency and deposit account to the central bank digital currency system; adding the accounting of the deposit amount to the deposit account according to the transaction success information, and sending a deposit success notice to the terminal equipment;

the central bank digital currency system is to: changing the owner information of the digital currency into a commercial bank by a user, and feeding back the transaction success information to a commercial bank digital currency system;

wherein,

said central bank digital currency system for generating and issuing said digital currency;

the commercial bank digital currency system is for performing banking functions on the digital currency.

6. The system for depositing digital currency into a savings account of claim 5 wherein the commercial bank digital currency system is further configured to:

confirming that the digital currency is legal;

confirming that the digital currency is equivalent to the deposit amount;

confirming that the user is a registered user of the commercial bank.

7. The system for depositing digital currency into a savings account of claim 5 wherein the central bank digital currency system is further configured to:

confirming that the owner of the digital currency is the user.

8. The system for depositing digital currency into a savings account of claim 5 wherein the central bank digital currency system is further configured to: the transaction flow is recorded.

Images