Realization technology of mobile banking

The implementation technology of mobile banking, from the first short message mode based on STK card to WAP mode and USSD mode based on signaling channel, mobile communication network has developed to the second and fifth generation, including KJava, BREW mode and even ordinary short message. Only after taking certain business security control can bank transactions be realized. You can sing all kinds of techniques. I'll go on stage. The marketing of IT vendors dazzles commercial banks, and they don't know which technology will become the mainstream in the future.

Short elimination mode

The popularity of short messages in China can be called a legend, and people from all walks of life were not optimistic at first. In the past few years, not only the two major network operators, China Mobile and China Unicom, have made a lot of money, but also the short message income of 20 12 has exceeded 7 billion yuan, which has also promoted the stock prices of the three major portals to soar in the Nasdaq market. Driven by huge interests, people started the idea of SMS application, only to find that the active on-demand mode of SMS can also be used to realize bank transactions. Although the implementation method is primitive and requires memorizing and inputting a long string of characters, isn't that how other SMS applications operate? Although the security level is very low, it will leave traces in the servers of mobile phones and network operators. However, if you control the business, it is not bad to only open services such as inquiry and payment of mobile phone fees. Moreover, its advantages are obvious. All mobile phones support SMS, and most people use SMS. If there is a convenient and effective signing process, it is very easy to develop customers.

Short message mode based on STK card

As the first technology applied to mobile banking, this method is to write the menu of banking services into a special STK card, which is convenient for customers to operate in menu mode. At the same time, STK card itself has a relatively perfect identity authentication mechanism, which can effectively guarantee the transaction security. There are several shortcomings: first, the STK card has limited capacity, and usually only one bank application can be written in the card, which cannot be changed. Recently, OTA over-the-air download technology can update the content of STK card and upgrade the service, but it is still more troublesome. Second, the SMS store-and-forward mechanism will leave traces of transactions on the servers of network operators. Third, there are fatal flaws in the business and business model. Although it is suggested that the card replacement procedure can be changed to the bank counter, it requires deeper cooperation between banks and network operators.

USSD mode

This way may not be familiar to everyone. USSD is a new type of unstructured supplementary data service of interactive mobile data service, and it is a new type of interactive data service based on GSM network, which can be used to carry out various services. USSD messages are transmitted through SS7 channel, which can maintain dialogue with various application services. USSD can regard the existing GSM network as a transparent bearer entity, and operators can make their own corresponding services that meet the needs of local users through USSD. In this way, USSD service can provide data services for mobile users conveniently, and adding new services has little impact on the original system, thus maintaining the stability of the original system. The advantages of USSD mode are as follows: firstly, the customer group does not need to change cards, and it is suitable for most types of GSM mobile phones; Second, real-time online, interactive dialogue, a transaction only needs one visit; Third, the cost is low, and each visit only needs about 0. 1 yuan. Its limitations are: first, the interface display of different types of mobile phones is quite different; Second, the downstream information from the bank to the mobile phone cannot be encrypted end to end; Third, the business has only been piloted in some areas and has not been extended to the whole country.

WAP mode

Is the abbreviation of (Wireless Application Protocol), which is a combination of a series of specifications for developing Internet-like applications on mobile networks. It will enable a new generation of wireless communication devices to reliably access the Internet and other advanced telephone services. Because the wireless network system is different from the fixed network system, the screen and keyboard of the mobile terminal are very small, WAP is not suitable for HTML (Hypertext Markup Language), and special WML (Wireless Markup Language) is needed. Around 2000, WAP technology was once a hot spot promoted by IT vendors, but it quickly declined due to factors such as Internet access speed. Since 2002, the introduction of China Mobile GPRS network has improved the network speed and provided new opportunities for the development of WAP technology. WAP2.0 realizes the end-to-end encryption from WAP terminal to CP, and uses TLS as the end-to-end encryption algorithm. The advantages of WAP are: first, the development of the bank is very small, and only the WML version needs to be developed on the basis of online banking; Second, people's content browsing, real-time trading; Thirdly, the appearance of GPRS improves the browsing speed. Its limitations are: first, customers need to have WAP mobile phones; Second, it can only handle words, with poor interactivity and simple interface.

KJava mode

It is a Java application specially used for embedded devices and an extension of Java technology on wireless small terminal devices. J2ME platform technology expands the application scope of Java technology. This multifunctional KJava application development platform can develop many new and powerful information products. KJava technology enables users, service providers and equipment manufacturers to use rich applications at any time and on demand through physical (wired) connection or wireless connection. The configuration and framework of J2ME greatly improve the flexibility of information equipment, including computing technology and application installation methods. Its advantages are: first, real-time online and interactive dialogue; Second, the graphical interface is very friendly to operate; Thirdly, some 1024-bit RSA authentication encryption technology and 128-bit triple DES encryption and decryption technology are adopted, which has high security. Its limitations are: first, KJava mobile phone is expensive and has few users; Second, it is impossible to display different models of mobile phones in a unified way, and some targeted development is needed for different models of mobile phones.

BREW mode

Wireless binary operating environment is a technology based on CDMA network. Users can download application software and run it on their mobile phones, thus realizing various functions. BREW is located between the chip software system layer and the application software layer, and provides a general middleware, which can be directly integrated on the chip without intermediate code. The whole system only needs about 150K storage capacity. Just as programs can be added and deleted in Windows, users can download all kinds of software through their mobile phones to personalize their mobile phones, and operators can also download, upgrade or recycle software for users wirelessly. BREW supports various encryption algorithms. Developers only need to directly call basic functions such as symmetric encryption algorithm RC4, asymmetric algorithm RSA, SSL algorithm and hash function through API interface, without further development. The advantages and disadvantages of BREW are similar to those of KJava, but it is superior to KJava in the security and consistency of terminal performance. But BREW is a patented technology in Qualcomm, which is not as open as KJava.