[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CN107679846A - Businessman's secure payment platform and its method of work - Google Patents

Businessman's secure payment platform and its method of work Download PDF

Info

Publication number
CN107679846A
CN107679846A CN201710905981.8A CN201710905981A CN107679846A CN 107679846 A CN107679846 A CN 107679846A CN 201710905981 A CN201710905981 A CN 201710905981A CN 107679846 A CN107679846 A CN 107679846A
Authority
CN
China
Prior art keywords
businessman
terminal
server
authentication
user
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710905981.8A
Other languages
Chinese (zh)
Inventor
王小绪
王力
李秋盛
陶化伦
万紫吟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Nanjing Zhonggao Intellectual Property Co Ltd
Original Assignee
Nanjing Zhonggao Intellectual Property Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Nanjing Zhonggao Intellectual Property Co Ltd filed Critical Nanjing Zhonggao Intellectual Property Co Ltd
Priority to CN201710905981.8A priority Critical patent/CN107679846A/en
Publication of CN107679846A publication Critical patent/CN107679846A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/16Payments settled via telecommunication systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The present invention relates to a kind of businessman's secure payment platform and its method of work, this businessman secure payment platform includes user's payment terminal, certificate server, bank server, re-authentication server, businessman's cashier terminal with safety certification function, wherein before transaction, businessman's cashier terminal is suitable to establish incidence relation with user's payment terminal;When needing transaction, user's payment terminal is suitable to complete once certification by certificate server, and is sent by certificate server to bank server and pay request;Then, the re-authentication server asks to carry out re-authentication by businessman's cashier terminal to paying, and in re-authentication by rear, then pass through the bank server and carry out delivery operation;And after completion of transactions, the bank server is suitable to payment result feeding back to businessman's cashier terminal and user's payment terminal.

Description

Businessman's secure payment platform and its method of work
Technical field
The present invention relates to a kind of safety means, more particularly to a kind of businessman's secure payment platform applied to mobile terminal and Its method of work.
Background technology
With the development of internet, using internet as emerging payments such as the Web bank of support, ecommerce, online funds Platform is favored by increasing user.But because the opening of internet also causes the peace of these emerging payment platforms Full property receives much concern always.
So user when paying, may connect the WiFi network of the illegal WiFi that hacker set up or camouflage, make Data are usurped into payment process, and serious economic loss occurs.
The content of the invention
The technical problem to be solved in the present invention is to provide a kind of network businessman secure payment platform and its method of work, to carry Security in high payment process.
The technical solution adopted for the present invention to solve the technical problems is:
Present embodiments provide a kind of businessman's secure payment platform, including user's payment terminal, certificate server, bank service Device, re-authentication server, businessman's cashier terminal with safety certification function, wherein before transaction, businessman's cash register is whole End is suitable to establish incidence relation with user's payment terminal;When needing transaction, user's payment terminal is suitable to pass through certificate server Once certification is completed, and is sent by certificate server to bank server and pays request;Then, the re-authentication server Ask to carry out re-authentication to paying by businessman's cashier terminal, and in re-authentication by rear, then pass through the bank Server carries out delivery operation;And after completion of transactions, the bank server is suitable to payment result feeding back to businessman's receipts Silver-colored terminal and user's payment terminal.
Further, before transaction, businessman's cashier terminal is suitable to establish incidence relation with user's payment terminal, i.e.,
Businessman's cashier terminal is suitable to be associated by near-field communication with user's payment terminal, and sets the association term of validity, Receive the random number for dummy authentication that user's payment terminal is sent;Then, businessman's cashier terminal and user's payment terminal Disconnect so that both are in different network environments.
Further, described pay asks to be generated according to the payment information of user's payment terminal for certificate server, the user Payment terminal is the authenticated service device terminal that once certification passes through.
Further, when needing transaction, the re-authentication server is asked paying by businessman's cashier terminal Re-authentication is carried out, i.e.,
Judge whether in the term of validity, when in the term of validity, businessman's cashier terminal receives and comes from re-authentication server Re-authentication request, wherein, the re-authentication request for re-authentication server according to intercept and capture certificate server be sent to bank The payment request generation of server.
Further, user's payment terminal is communicated with certificate server based on first network;And
Businessman's cashier terminal is communicated with re-authentication server using the second network, and wherein second network is bank The designated lane that server externally interacts.
Further, when needing transaction, businessman's cashier terminal is suitable to select authentication mode according to user's request, and certainly Data of the dynamic generation for certification, and itself and authentication mode, random number are sent to re-authentication server;
The re-authentication server is suitable to secondary to the progress of businessman's cashier terminal according to the data and authentication mode for being used for certification Certification, and to random number without operation;Wherein
Data and random number for certification are separate.
Further, in re-authentication by rear, then delivery operation carried out by the bank server, i.e.,
When re-authentication by after, the payment request is forwarded to bank server and paid by the re-authentication server Operation.
Further, businessman's cashier terminal is suitable to be associated by near-field communication with user's payment terminal, as uses Family payment terminal and businessman's cashier terminal are established binary channels using near-field communication and are mutually authenticated, wherein, incidence relation is only protected Exist in businessman's cashier terminal.
Another aspect, the present embodiment additionally provide a kind of method of work of businessman's secure payment platform.
Wherein, businessman's secure payment platform includes user's payment terminal, certificate server, bank server, secondary Certificate server, and businessman's cashier terminal with safety certification function.
Further, the method for work of businessman's secure payment platform includes:Before transaction, businessman's cashier terminal is fitted In establishing incidence relation with user's payment terminal;When needing transaction, user's payment terminal is suitable to complete by certificate server Once certification, and sent by certificate server to bank server and pay request;Then, the re-authentication server passes through Businessman's cashier terminal asks to carry out re-authentication to paying, and in re-authentication by rear, then pass through the bank service Device carries out delivery operation;And after completion of transactions, the bank server is suitable to payment result feeding back to businessman's cash register end End and user's payment terminal.
The invention has the advantages that businessman's secure payment platform provided by the invention and its method of work, in payment In verification process, being mutually authenticated between distinct device is realized based on three kinds of communication protocols, that is, has used different passages to carry out Certification, it is effectively prevented safety problem existing for same passage;It is proposed to carry out dummy authentication using random number simultaneously, can be effective Hacker is disturbed, improve the security of certification.
Brief description of the drawings
The present invention is further described with reference to the accompanying drawings and examples.
Fig. 1 is the theory diagram of the preferred embodiments of the present invention.
Embodiment
In conjunction with the accompanying drawings, the present invention is further explained in detail.These accompanying drawings are simplified schematic diagram, only with Illustration illustrates the basic structure of the present invention, therefore it only shows the composition relevant with the present invention.
Embodiment 1
As shown in figure 1, the theory diagram of the preferred embodiments of the present invention.
In daily life, people are for the needs for working, living, entertaining, it will usually possess multiple terminals, and in order to fill The existing mobile terminal of utilization divided, the invention provides businessman's secure payment platform, it includes:User's payment terminal, certification Server, bank server, re-authentication server, businessman's cashier terminal with safety certification function.
Before transaction, businessman's cashier terminal is associated with user's payment terminal by near-field communication, and sets the term of validity, And receive user's payment terminal transmission the random number for dummy authentication, then businessman's cashier terminal at once with user's payment terminal Disconnect so that both are in different network environments;Now, although the random number sent, in follow-up certification During, user can not select random number to be authenticated as needed, but still send random number so that be paid in user Terminal can interfere when by attacking to attack, improve security.Wherein, it is described to be associated as user's payment eventually End and businessman's cashier terminal are established binary channels using near-field communication and are mutually authenticated.
The near-field communication can be the bluetooth communication between user's payment terminal and businessman's cashier terminal.
When needing transaction, judge whether in the term of validity, when in the term of validity, businessman's cashier terminal, which receives, to be come Asked from the re-authentication of re-authentication server, wherein, re-authentication request is recognized for re-authentication server according to intercepting and capturing Card server is sent to the payment request generation of bank server;Payment request is certificate server according to user's payment terminal Payment information generates, and user's payment terminal is the authenticated service device terminal that once certification passes through;If not before the deadline, Then need to associate again, the term of validity, which is user, to be configured according to being actually needed.Moreover, the incidence relation established only is stored in business In family's cashier terminal, user's payment terminal is effectively prevented hacker and obtains businessman by user's payment terminal without preserving The information of cashier terminal, it ensure that the independence of interchannel.
Businessman's cashier terminal receives the re-authentication request from re-authentication server, wherein, re-authentication request Generation is asked in the payment that bank server is sent to according to intercepting and capturing certificate server for re-authentication server;Payment request is to recognize Demonstrate,prove server to be generated according to the payment information of user's payment terminal, user's payment terminal is that authenticated service device once lead to by certification The terminal crossed.Wherein, once certification is one of authentication modes such as static password, safety certificate, random number signature.
Wherein, businessman's cashier terminal is communicated with re-authentication server using the second network, wherein second network The designated lane externally interacted for bank server, and it is different from first network;So that two terminals are in different nets In network environment, the isolation of network is realized, improves security.
Also, the first network can be the WiFi network that businessman provides or the 4G nets that user's payment terminal carries Network;If user is paid using the WiFi network of camouflage, due to the random number that user's payment terminal is sent, but follow-up In verification process, user can not select random number to be authenticated as needed, but still send random number so that in user Payment terminal can be interfered effectively when by attacking to attack, improve security.
Businessman's cashier terminal selects authentication mode according to user's request, and is automatically generated for the data of certification, and should Data are sent to re-authentication server with authentication mode, the random number for dummy authentication, and re-authentication server is according to certification Data and authentication mode carry out re-authentication to businessman's cashier terminal, to random number without operation, wherein, the number for certification According to unrelated with random number;Authentication mode is selected by user, can prevent hacker from obtaining authentication mode by other approach and causing to attack Hit.Wherein, businessman's cashier terminal supports the authentication modes such as static password, dynamic password, safety certificate, random number signature, user A variety of authentication modes can be selected.Moreover, in this process, user only needs to select authentication mode, for certification information by Businessman's cashier terminal automatically generates, and improves the convenience of operation.
When re-authentication by after, the payment request is forwarded to bank server and paid by re-authentication server Operation.Wherein, businessman's cashier terminal is the mobile terminal different from user's payment terminal.
After completion of transactions, the bank server is suitable to payment result feeding back to businessman's cashier terminal and user pays Terminal.
Embodiment 2
On the basis of embodiment 1, the present embodiment 2 provides a kind of method of work of businessman's secure payment platform.
Businessman's secure payment platform includes user's payment terminal, certificate server, bank server, re-authentication clothes Business device, and businessman's cashier terminal with safety certification function.
The method of work of businessman's secure payment platform includes:
Before transaction, businessman's cashier terminal is suitable to establish incidence relation with user's payment terminal;
When needing transaction, user's payment terminal is suitable to complete once certification by certificate server, and passes through certificate server Sent to bank server and pay request;Then, the re-authentication server please to paying by businessman's cashier terminal Seek carry out re-authentication, and in re-authentication by rear, then pass through the bank server and carry out delivery operation.
After completion of transactions, the bank server is suitable to payment result feeding back to businessman's cashier terminal and user pays Terminal.
Wherein, operation principle, method of work and the course of work of businessman's secure payment platform described in the present embodiment with Businessman's secure payment platform is identical in embodiment 1, and here is omitted.
The invention has the advantages that businessman's secure payment platform provided by the invention and its method of work, in payment In verification process, being mutually authenticated between distinct device is realized based on three kinds of communication protocols, that is, has used different passages to carry out Certification, it is effectively prevented safety problem existing for same passage;It is proposed to carry out dummy authentication using random number simultaneously, can be effective Hacker is disturbed, improve the security of certification, during re-authentication, user only need select authentication mode, Improve the convenience of operation.
It is complete by above-mentioned description, relevant staff using the above-mentioned desirable embodiment according to the present invention as enlightenment Various changes and amendments can be carried out without departing from the scope of the technological thought of the present invention' entirely.The technology of this invention Property scope is not limited to the content on specification, it is necessary to determines its technical scope according to right.

Claims (10)

  1. A kind of 1. businessman's secure payment platform, it is characterised in that including user's payment terminal, certificate server, bank server, Re-authentication server, businessman's cashier terminal with safety certification function, wherein
    Before transaction, businessman's cashier terminal is suitable to establish incidence relation with user's payment terminal;
    When needing transaction, user's payment terminal is suitable to complete once certification by certificate server, and passes through certificate server Sent to bank server and pay request;Then, the re-authentication server please to paying by businessman's cashier terminal Seek carry out re-authentication, and in re-authentication by rear, then pass through the bank server and carry out delivery operation;And
    After completion of transactions, the bank server is suitable to payment result feeding back to businessman's cashier terminal and user pays eventually End.
  2. 2. businessman's secure payment platform according to claim 1, it is characterised in that
    Before transaction, businessman's cashier terminal is suitable to establish incidence relation with user's payment terminal, i.e.,
    Businessman's cashier terminal is suitable to be associated by near-field communication with user's payment terminal, and sets the association term of validity, Receive the random number for dummy authentication that user's payment terminal is sent;Then, businessman's cashier terminal and user's payment terminal Disconnect so that both are in different network environments.
  3. 3. businessman's secure payment platform according to claim 2, it is characterised in that
    Described pay asks to be generated according to the payment information of user's payment terminal for certificate server, and user's payment terminal is warp The certificate server terminal that once certification passes through.
  4. 4. businessman's secure payment platform according to claim 3, it is characterised in that
    When needing transaction, by businessman's cashier terminal, to paying, request progress is secondary to be recognized the re-authentication server Card, i.e.,
    Judge whether in the term of validity, when in the term of validity, businessman's cashier terminal receives and comes from re-authentication server Re-authentication request, wherein, the re-authentication request for re-authentication server according to intercept and capture certificate server be sent to bank The payment request generation of server.
  5. 5. businessman's secure payment platform according to claim 4, it is characterised in that
    User's payment terminal is communicated with certificate server based on first network;And
    Businessman's cashier terminal is communicated with re-authentication server using the second network, and wherein second network is bank The designated lane that server externally interacts.
  6. 6. businessman's secure payment platform according to claim 5, it is characterised in that
    When needing transaction, businessman's cashier terminal is suitable to select authentication mode according to user's request, and is automatically generated for The data of certification, and itself and authentication mode, random number are sent to re-authentication server;
    The re-authentication server is suitable to secondary to the progress of businessman's cashier terminal according to the data and authentication mode for being used for certification Certification, and to random number without operation;Wherein
    Data and random number for certification are separate.
  7. 7. businessman's secure payment platform according to claim 6, it is characterised in that
    In re-authentication by rear, then delivery operation carried out by the bank server, i.e.,
    When re-authentication by after, the payment request is forwarded to bank server and paid by the re-authentication server Operation.
  8. 8. businessman's secure payment platform according to claim 7, it is characterised in that
    Businessman's cashier terminal be suitable to be associated with user's payment terminal by near-field communication, as user's payment terminal and Businessman's cashier terminal is established binary channels using near-field communication and is mutually authenticated, wherein, incidence relation is only stored in businessman's cash register In terminal.
  9. A kind of 9. method of work of businessman's secure payment platform, it is characterised in that
    Businessman's secure payment platform includes user's payment terminal, certificate server, bank server, re-authentication service Device, and businessman's cashier terminal with safety certification function.
  10. 10. the method for work of businessman's secure payment platform according to claim 9, it is characterised in that
    The method of work of businessman's secure payment platform includes:
    Before transaction, businessman's cashier terminal is suitable to establish incidence relation with user's payment terminal;
    When needing transaction, user's payment terminal is suitable to complete once certification by certificate server, and passes through certificate server Sent to bank server and pay request;Then, the re-authentication server please to paying by businessman's cashier terminal Seek carry out re-authentication, and in re-authentication by rear, then pass through the bank server and carry out delivery operation;And
    After completion of transactions, the bank server is suitable to payment result feeding back to businessman's cashier terminal and user pays eventually End.
CN201710905981.8A 2017-09-29 2017-09-29 Businessman's secure payment platform and its method of work Pending CN107679846A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710905981.8A CN107679846A (en) 2017-09-29 2017-09-29 Businessman's secure payment platform and its method of work

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710905981.8A CN107679846A (en) 2017-09-29 2017-09-29 Businessman's secure payment platform and its method of work

Publications (1)

Publication Number Publication Date
CN107679846A true CN107679846A (en) 2018-02-09

Family

ID=61139317

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710905981.8A Pending CN107679846A (en) 2017-09-29 2017-09-29 Businessman's secure payment platform and its method of work

Country Status (1)

Country Link
CN (1) CN107679846A (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101114901A (en) * 2006-07-26 2008-01-30 联想(北京)有限公司 Safety authentication system, apparatus and method for non-contact type wireless data transmission
US20100107228A1 (en) * 2008-09-02 2010-04-29 Paul Lin Ip address secure multi-channel authentication for online transactions
CN101795454A (en) * 2010-02-10 2010-08-04 熊文俊 Method and system of double identity authentication based on mobile communication independent channel
WO2010102545A1 (en) * 2009-03-09 2010-09-16 华为技术有限公司 Method, device and system for authentication
CN102938116A (en) * 2012-10-25 2013-02-20 时代亿宝(北京)科技有限公司 Full-link protection and management method for ensuring safety of transaction
CN103295130A (en) * 2012-02-24 2013-09-11 黄金富 Payment system with dual authentication paths and corresponding method

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101114901A (en) * 2006-07-26 2008-01-30 联想(北京)有限公司 Safety authentication system, apparatus and method for non-contact type wireless data transmission
US20100107228A1 (en) * 2008-09-02 2010-04-29 Paul Lin Ip address secure multi-channel authentication for online transactions
WO2010102545A1 (en) * 2009-03-09 2010-09-16 华为技术有限公司 Method, device and system for authentication
CN101795454A (en) * 2010-02-10 2010-08-04 熊文俊 Method and system of double identity authentication based on mobile communication independent channel
CN103295130A (en) * 2012-02-24 2013-09-11 黄金富 Payment system with dual authentication paths and corresponding method
CN102938116A (en) * 2012-10-25 2013-02-20 时代亿宝(北京)科技有限公司 Full-link protection and management method for ensuring safety of transaction

Similar Documents

Publication Publication Date Title
JP7483688B2 (en) System and method for cryptographic authentication of contactless cards - Patents.com
US20200286088A1 (en) Method, device, and system for securing payment data for transmission over open communication networks
JP6370407B2 (en) O2O secure settlement method and O2O secure settlement system
US20140297435A1 (en) Bank card secured payment system and method using real-time communication technology
US20170364911A1 (en) Systems and method for enabling secure transaction
CN112789643A (en) System and method for password authentication of contactless cards
CN102202300A (en) System and method for dynamic password authentication based on dual channels
WO2015180578A1 (en) Secure payment method for visual financial card
CN101697220A (en) Systems and methods for secure pin-based transactions
JP7633150B2 (en) System and method for notifying potential attacks on contactless cards - Patents.com
CN102201137A (en) Network security terminal, and interaction system and method based on terminal
CN103489104A (en) Security payment method and system
CN101308557A (en) Method for implementing secured electronic charging
US20140330689A1 (en) System and Method for Verifying Online Banking Account Identity Using Real-Time Communication and Digital Certificate
WO2016088087A1 (en) Third party access to a financial account
CN113169873B (en) System and method for password authentication of contactless cards
CN103268436A (en) Method and system for touch-screen based graphical password authentication in mobile payment
CN101901306A (en) Network transaction encryption method and dynamic password equipment used by same
EP4040361A1 (en) A communication system comprising a local payment kernel
CN107679853A (en) Offline electronic payment system and its method of work
CN202206419U (en) Network security terminal and interactive system based on terminal
CN107506631A (en) Face recognition payment system and its method of work
CN102542503A (en) System and method for realizing bank security transaction by mobile communication terminal
US20150112869A1 (en) Methods and Systems for Use in Online Transactions
CN104766203A (en) High-security electronic payment method for intelligent terminals

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20180209