CN112862484A - Secure payment method and device based on multi-terminal interaction - Google Patents
Secure payment method and device based on multi-terminal interaction Download PDFInfo
- Publication number
- CN112862484A CN112862484A CN202110068213.8A CN202110068213A CN112862484A CN 112862484 A CN112862484 A CN 112862484A CN 202110068213 A CN202110068213 A CN 202110068213A CN 112862484 A CN112862484 A CN 112862484A
- Authority
- CN
- China
- Prior art keywords
- payment
- client
- server
- information
- authentication
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
- 238000000034 method Methods 0.000 title claims abstract description 47
- 230000003993 interaction Effects 0.000 title abstract description 5
- 230000005540 biological transmission Effects 0.000 claims description 22
- 238000004590 computer program Methods 0.000 claims description 12
- 238000012795 verification Methods 0.000 claims description 12
- 230000004044 response Effects 0.000 claims description 4
- 238000005516 engineering process Methods 0.000 abstract description 4
- 239000000284 extract Substances 0.000 abstract description 4
- 230000006870 function Effects 0.000 description 15
- 238000010586 diagram Methods 0.000 description 8
- 238000004891 communication Methods 0.000 description 4
- 238000012545 processing Methods 0.000 description 4
- 230000006399 behavior Effects 0.000 description 3
- 230000000694 effects Effects 0.000 description 3
- 239000004973 liquid crystal related substance Substances 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 125000004122 cyclic group Chemical group 0.000 description 1
- 238000001514 detection method Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 239000012634 fragment Substances 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3823—Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3821—Electronic credentials
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention relates to an information technology, and discloses a secure payment method based on multi-terminal interaction, which comprises the following steps: when a client side carries out transaction payment, firstly, payment authentication is carried out on a payment identifier of an obtained user, and after the payment identifier passes the payment authentication, client side encryption is carried out on the payment identifier to generate a payment request; after the payment platform authenticates and passes the client side of the payment request, the payment platform extracts payment information from the payment request and carries out payment encryption on the payment information to obtain encrypted payment information; and after the server decrypts the encrypted payment information and succeeds, the server authenticates the payment information in the encrypted payment information to generate a corresponding payment result, and returns the payment result to the payment platform, and the payment platform returns the payment result to the client. The invention also provides a secure payment device, an electronic device and a computer readable storage medium. The invention can improve the security of network payment.
Description
Technical Field
The present invention relates to information technology, and in particular, to the field of internet security technologies including mobile internet, and in particular, to a secure payment method, apparatus, electronic device, and computer-readable storage medium.
Background
With the continuous development of internet technology, cash payment has been gradually replaced by network payment, which uses a client as a payment carrier to perform payment transactions in a network form. At present, an online bank payment means becomes a mainstream payment means, a user can realize payment transaction in a mobile phone payment app or a webpage payment page, and great convenience is brought to the daily life of the user. Although the network payment can bring great payment convenience to the user, meanwhile, the network payment also easily brings certain network payment security.
In order to solve the above network payment security, at present, payment information verification methods such as password verification, face verification, password verification and the like are generally adopted, but the payment information verification method is implemented based on the user, and an illegal person can easily install an illegal program (such as a trojan horse) in user payment equipment, so that the payment information of the user during network payment is stolen, and further certain potential safety hazards are brought.
Disclosure of Invention
The invention provides a secure payment method, a secure payment device, electronic equipment and a computer readable storage medium, and mainly aims to reduce the potential safety hazard during network payment so as to improve the security of network payment.
In order to achieve the above object, the present invention provides a secure payment method, which is applied to a payment platform and includes:
receiving a payment request of a client, and performing client authentication on the payment request;
when the client authentication is successful, extracting payment information from the payment request, and carrying out payment encryption on the payment information to obtain encrypted payment information;
and transmitting the encrypted payment information to a corresponding server by using a pre-constructed data transmission channel, receiving a payment result returned by the server, and returning the payment result to the client.
Optionally, the performing client authentication on the payment request includes:
acquiring a port number and an IP address of a client corresponding to the payment request;
inquiring the digital certificate of the client according to the port number and the IP address, and verifying the digital certificate by using a security certificate which is constructed in advance at the client and the payment platform;
if the verification fails, generating a result of the authentication failure of the client;
and if the verification is successful, generating a result that the client authentication is successful.
In order to achieve the above object, the present invention further provides a secure payment method, which is applied to a server and includes:
receiving the encrypted payment information, and decrypting the encrypted payment information;
when the decryption is successful, performing server authentication on the encrypted payment information;
if the authentication of the server fails, generating a corresponding payment result as payment failure;
and if the server side is authenticated successfully, generating a corresponding payment result as successful payment.
Optionally, the performing server authentication on the encrypted payment information includes:
acquiring payment information in the encrypted payment information;
inquiring whether server information corresponding to the payment information exists in the server;
if the server-side information corresponding to the payment information does not exist, the encrypted payment information authentication fails;
and if the server-side information corresponding to the payment information exists, the encrypted payment information is successfully authenticated.
In order to achieve the above object, the present invention further provides a secure payment method, which is applied to a client, and includes:
responding to a transaction service request, acquiring a payment identifier of a user, and performing payment authentication on the payment identifier;
and when the payment authentication is successful, carrying out client encryption on the payment identifier to generate a payment request.
Optionally, the obtaining the payment identifier of the user in response to the transaction service request includes:
triggering a transaction payment event according to the transaction service request;
identifying a payment environment according to the transaction payment event;
and receiving user credentials input by a user in the payment environment to obtain the payment identifier of the user.
In order to solve the above problem, the present invention further provides a secure payment device, which is installed on a payment platform, and includes:
the client authentication module is used for receiving a payment request of a client and authenticating the client for the payment request;
the payment encryption module is used for extracting payment information from the payment request and carrying out payment encryption on the payment information to obtain encrypted payment information when the client authentication is successful;
and the transmission module is used for transmitting the encrypted payment information to a corresponding server by using a pre-constructed data transmission channel, receiving a payment result returned by the server and returning the payment result to the client.
In order to solve the above problem, the present invention further provides a secure payment device, where the secure payment device is installed at a server, and the secure payment device includes:
the decryption module is used for receiving the encrypted payment information and decrypting the encrypted payment information;
the server authentication module is used for performing server authentication on the encrypted payment information when the decryption is successful;
the server authentication module is further used for generating a corresponding payment result as a payment failure when the server authentication fails;
the server authentication module is further configured to generate a corresponding payment result as a successful payment when the server authentication is successful.
In order to solve the above problem, the present invention further provides a secure payment apparatus, which is installed at a client, and includes:
the payment authentication module is used for responding to the transaction service request, acquiring the payment identifier of the user and performing payment authentication on the payment identifier;
and the client encryption module is used for encrypting the payment identifier by the client to generate a payment request when the payment authentication is successful.
In order to solve the above problem, the present invention also provides an electronic device, including:
a memory storing at least one computer program; and
a processor executing the computer program stored in the memory to implement the secure payment method described above.
The embodiment of the invention generates the payment request after carrying out payment authentication and encryption on the payment identifier of the user, can identify the authenticity of the user identity corresponding to the payment identifier and ensure the privacy of the subsequent payment identifier in the transmission process of the client and the payment platform; secondly, after the payment request is authenticated, extracted and encrypted by the client, the encrypted payment information is obtained, so that the reliability of the corresponding client equipment can be ensured, and the encrypted payment information is transmitted to the corresponding server by utilizing a pre-constructed data transmission channel, so that the encrypted payment information is prevented from being stolen in the transmission process; furthermore, the embodiment of the invention can ensure the authenticity of the server side by decrypting the encrypted payment information, enhance the reliability of the payment environment, and carry out server side authentication on the encrypted payment information which is decrypted successfully to generate a corresponding payment result. Therefore, the secure payment method, the secure payment device, the electronic device and the computer-readable storage medium provided by the embodiment of the invention can improve the security of network payment.
Drawings
Fig. 1 is a schematic flow chart of a secure payment method applied to a payment platform according to a first embodiment of the present invention;
fig. 2 is a schematic flowchart of a secure payment method applied to a server according to a second embodiment of the present invention;
fig. 3 is a schematic flowchart of a secure payment method applied to a client according to a third embodiment of the present invention;
fig. 4 is a schematic block diagram of a secure payment device applied to a payment platform according to a fourth embodiment of the present invention;
fig. 5 is a schematic block diagram of a payment apparatus applied to secure payment at a server according to a fifth embodiment of the present invention;
fig. 6 is a schematic block diagram of a payment device applied to secure payment of a client according to a sixth embodiment of the present invention;
fig. 7 is a schematic internal structural diagram of an electronic device implementing a secure payment method according to a seventh embodiment of the present invention;
the implementation, functional features and advantages of the objects of the present invention will be further explained with reference to the accompanying drawings.
Detailed Description
It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
The embodiment of the application provides a secure payment method, and an execution subject of the secure payment method includes but is not limited to at least one of electronic devices such as a server and a client, which can be configured to execute the method provided by the embodiment of the application. In other words, the secure payment method may be performed by software or hardware installed in the client or the server, and the software may be a blockchain platform. The server includes but is not limited to: a single server, a server cluster, a cloud server or a cloud server cluster, and the like.
In the embodiment of the invention, the safe payment method is realized by interaction of a payment platform, a client and a server, wherein the client can use portable electronic equipment such as a notebook computer, a desktop computer, a smart phone and the like of a user, an intelligent wearable type and the like, and the core of the embodiment of the invention is as follows: when a guest client side carries out transaction payment, firstly, payment authentication is carried out on a payment identifier of an obtained user, and after the payment identifier passes the payment authentication, client side encryption is carried out on the payment identifier to generate a payment request; after the payment platform authenticates and passes the client side of the payment request, the payment platform extracts payment information from the payment request and carries out payment encryption on the payment information to obtain encrypted payment information; and after the server decrypts the encrypted payment information and succeeds, the server authenticates the payment information in the encrypted payment information to generate a corresponding payment result, and returns the payment result to the payment platform, and the payment platform pushes the payment result to the client. The payment information verification of the embodiment of the invention is not realized only according to the user, but multiple authentications are carried out on the server side and the client side through the payment platform, so that the safety of the user in network payment is further ensured.
The principle of implementing the secure payment method of the present invention is further described below with reference to fig. 1 to 3.
The secure payment method provided by the first embodiment of the present invention is described with reference to the flowchart shown in fig. 1. Wherein, the method described in fig. 1 is applied to a payment platform, comprising:
s10, receiving a payment request of the client, and authenticating the payment request.
In the embodiment of the invention, the payment platform refers to a payment service intermediary mechanism of a third party and is used for guaranteeing the safe payment of the third party, for example, a PayPal platform, and based on the payment platform, a plurality of bank card payment modes can be attached to the same payment plane, so that different customers are prevented from opening different accounts in different banks, the living requirements of the users are greatly met, and meanwhile, the bandwidth flow of a bank gateway can be reduced.
Further, the embodiment of the present invention receives a payment request from a client through the payment platform, and performs client authentication on the payment request, so as to ensure the validity of the payment request and the reliability of the client device corresponding to the payment request. Wherein, the client terminal can also be called as a mobile payment terminal, is used for carrying out payment transaction, and comprises: the payment request refers to payment transaction information encrypted based on a client, and comprises the following steps: user personal information and payment identification, etc.
In detail, the client authenticating the payment request comprises: acquiring a port number and an IP address of a client corresponding to the payment request, inquiring a digital certificate of the client according to the port number and the IP address, verifying the digital certificate by using a security certificate constructed in advance at the client and the payment platform, generating a result of failure of authentication of the client if the verification fails, and generating a result of success of authentication of the client if the verification succeeds.
In an alternative embodiment, the port number and IP address may be obtained by a socket query.
In an alternative embodiment, the digital certificate may be queried by the get () computer program, and the digital certificate refers to a digital signature of a corresponding client for characterizing device information uniqueness of the client.
In an alternative embodiment, the security credential refers to a data credential for data communication between the client and the payment platform. Wherein the security credentials comprise: digital signature, validity time, domain name, etc. Further, in an alternative embodiment of the present invention, the security credentials are constructed using the currently known Secure Sockets Layer (SSL).
And S11, when the client authentication is successful, extracting payment information from the payment request, and carrying out payment encryption on the payment information to obtain encrypted payment information.
In this embodiment of the present invention, when the client authentication is successful, it indicates that the client authentication corresponding to the payment request by the payment platform is successful, and thus, in this embodiment of the present invention, payment information is extracted from the payment request to execute a subsequent payment transaction, where the payment information includes: user personal information and payment identification, wherein the user personal information comprises: name, age, identification card, gender, etc., the payment identification includes: passwords, gestures, computer programs, human faces, and the like.
In detail, the extracting payment information from the payment request includes: inquiring data containing user personal information in the payment request to obtain first payment information, inquiring data containing payment identification in the payment request to obtain second payment information, and summarizing the first payment information and the second payment information to obtain the payment information.
The first payment information and the second payment information may be obtained through SQL query statements, such as select query statements, it should be noted that the payment information is generated based on client encryption, so the payment platform cannot know specific data in the payment information, and thus the payment platform may be prevented from revealing user personal data, and privacy and security of the user personal data may be protected.
Further, in order to ensure that the payment information is not stolen in the subsequent transmission process, the embodiment of the invention performs payment encryption on the payment information so as to further ensure the safety of the payment information.
In one optional embodiment of the invention, the payment information is payment encrypted using the following method:
wherein E (M) represents encrypted payment information, m represents the mth plaintext in the payment information, t represents the number of the plaintext in the payment information, e represents a wireless non-cyclic fraction, mod represents a plaintext encryption function, and N represents the number of times of encryption.
S12, transmitting the encrypted payment information to a corresponding server by using a pre-constructed data transmission channel, receiving a payment result returned by the server, and returning the payment result to the client.
In the embodiment of the invention, the data transmission channel refers to a data communication path between the payment platform and the corresponding server, and based on the data transmission channel, the payment information of the client can be transmitted to the server so as to realize the payment transaction of the client. The server end is a server providing service capability and used for storing user data and executing logic processing of the user data
Further, before transmitting the encrypted payment information to the corresponding server by using the pre-constructed data transmission channel in the embodiment of the present invention, the method further includes: acquiring a first interface address of a payment platform corresponding to the encrypted payment information and a second interface address of the server; constructing a configuration file for the first interface address and the second interface address to obtain a first configuration file and a second configuration file; defining the same identification bits in the first configuration file and the second configuration file, and adding attribute parameters in the identification bits; and constructing the data transmission channel according to the attribute parameters.
In an optional embodiment, the definition of the identification bit may be defined by a window function, and the attribute parameters include: primary key, id, and field, etc.
In an alternative embodiment, the data transfer may be constructed in the Java language.
Further, in the embodiment of the present invention, the payment result returned by the server is pushed to the client to inform the corresponding user of the payment result, so that the whole transaction process is completed.
The secure payment method provided by the second embodiment of the present invention is described with reference to the flowchart shown in fig. 2. The method described in fig. 2 is applied to a server, and includes:
s20, receiving the encrypted payment information and decrypting the encrypted payment information.
In the embodiment of the present invention, after receiving the encrypted payment information, the encrypted payment information needs to be decrypted to obtain the user personal information and the payment identifier in the encrypted payment information, so as to execute a subsequent payment transaction.
In detail, the decrypting the encrypted payment information includes: and acquiring an encrypted plaintext of the encrypted payment information, and executing decryption of the encrypted plaintext by using a decryption algorithm in the server to obtain a decryption result. If the decryption result is the payment information in the encrypted payment information, the decryption is successful, and if the decryption result is not the payment information in the encrypted payment information, the decryption is failed.
In a preferred implementation of the invention, the authenticity of the service end corresponding to the payment platform can be identified by decrypting the encrypted payment information, so that the reliability of the corresponding service end can be judged, and the reliability of the payment environment is enhanced.
And S21, when the encrypted payment information is decrypted successfully, performing server authentication on the encrypted payment information.
In the embodiment of the invention, when the encrypted payment information is decrypted successfully, the reliability of the corresponding server is shown, so that the payment transaction is realized by performing server authentication on the encrypted payment information.
In detail, the performing server authentication on the encrypted payment information includes: acquiring payment information in the encrypted payment information; inquiring whether server information corresponding to the payment information exists in the server; if the server-side information corresponding to the payment information does not exist, the encrypted payment information authentication fails; and if the server-side information corresponding to the payment information exists, the encrypted payment information is successfully authenticated.
The server information refers to an identity identifier which is registered and stored in the server in advance by the user and comprises user personal information and a payment identifier.
S22, if the authentication of the server fails, generating a corresponding payment result as payment failure.
In the embodiment of the invention, if the authentication of the server fails, the encrypted payment information is not registered and stored in the server in advance, and then a corresponding payment result is generated as payment failure.
And S23, if the server side is authenticated successfully, generating a corresponding payment result as successful payment.
In the embodiment of the invention, if the authentication of the server is successful, the encrypted payment information is registered and stored in the server in advance, and then the corresponding payment result is generated as the successful payment.
A secure payment method provided by a third embodiment of the present invention is described with reference to the flowchart shown in fig. 3. The method described in fig. 3 is applied to a client, and includes:
s30, responding to the transaction service request, obtaining the payment identification of the user, and carrying out payment authentication on the payment identification.
In a preferred embodiment of the present invention, the transaction service request refers to a payment interaction behavior generated by the user and the payment platform, for example, the user a sees an electronic product in the mall platform through the client, before the user makes a payment, the mall platform sends a payment request behavior to the user through the client, and the payment request behavior is the transaction service request.
In detail, the obtaining of the payment identifier of the user in response to the transaction service request includes: and triggering a transaction payment event according to the transaction service request, identifying a payment environment according to the transaction payment event, receiving a user certificate input by a user in the payment environment, and obtaining a payment identifier of the user.
Wherein the transaction payment event is constructed by PerformCardick () function for triggering transaction payment. Optionally, the payment environment is identified by a preset Linux statement, wherein the preset Linux statement may be an OpenSSL statement. The user credential refers to a user identity, including: user personal information and payment identification, such as user name, payment password, user fingerprint and the like.
Further, the embodiment of the invention performs payment authentication on the payment identifier to ensure the authenticity of the user identity corresponding to the payment identifier. In detail, the performing payment authentication on the payment identifier includes: and acquiring a user ID corresponding to the payment identifier, inquiring whether the user ID exists in the client, if not, failing the payment authentication, returning the authentication failure result to the user, and if so, successfully authenticating the payment.
S31, when the payment authentication is successful, the payment identifier is encrypted by the client side to obtain an encrypted payment identifier, a payment task of the encrypted payment identifier is constructed, and a payment request is generated.
In the embodiment of the invention, when the payment authentication is successful, the user identity corresponding to the payment identifier is true and legal, so that the embodiment of the invention encrypts the payment identifier by the client side to ensure the privacy of the subsequent payment identifier in the transmission process.
In an optional embodiment of the invention, the payment identifier is client encrypted using the following method:
fakeMd5expect=∑md5i
wherein, fakeMd5expectMd5 value, md5, representing information in an encrypted payment identificationiAnd the file signature represents the ith information of the payment identifier, and i represents the fragment number of the information in the payment identifier.
Further, the embodiment of the invention compiles the payment task of the encrypted payment identifier through Java language to obtain the payment request.
In summary, the embodiment of the present invention generates the payment request after performing payment authentication and encryption on the payment identifier of the user, so as to identify the authenticity of the payment identifier corresponding to the user identity and ensure the privacy of the subsequent payment identifier in the transmission process between the client and the payment platform; secondly, after the payment request is authenticated, extracted and encrypted by the client, the encrypted payment information is obtained, so that the reliability of the corresponding client equipment can be ensured, and the encrypted payment information is transmitted to the corresponding server by utilizing a pre-constructed data transmission channel, so that the encrypted payment information is prevented from being stolen in the transmission process; furthermore, the embodiment of the invention can ensure the authenticity of the server side by decrypting the encrypted payment information, enhance the reliability of the payment environment, and carry out server side authentication on the encrypted payment information which is decrypted successfully to generate a corresponding payment result. Therefore, the secure payment method, the secure payment device, the electronic device and the computer-readable storage medium provided by the embodiment of the invention can improve the security of network payment.
Fig. 4 is a schematic block diagram of a secure payment device applied to a payment platform according to a fourth embodiment of the present invention.
The secure payment apparatus 100 applied to the payment platform according to the present invention may be installed in an electronic device. According to the realized functions, the secure payment device applied to the payment platform may include a client authentication module 101, a payment encryption module 102, and a transmission module 103. A module according to the present invention, which may also be referred to as a unit, refers to a series of computer program segments that can be executed by a processor of an electronic device and that can perform a fixed function, and that are stored in a memory of the electronic device.
In this embodiment, the functions of each module/unit in the secure payment device applied to the payment platform are as follows:
the client authentication module 101 is configured to receive a payment request of a client and perform client authentication on the payment request;
the payment encryption module 102 is configured to, when the client authentication is successful, extract payment information from the payment request, and perform payment encryption on the payment information to obtain encrypted payment information;
the transmission module 103 is configured to transmit the encrypted payment information to a corresponding server by using a pre-constructed data transmission channel, receive a payment result returned by the server, and return the payment result to the client.
In detail, when the modules in the secure payment apparatus 100 applied to a payment platform according to the embodiment of the present invention are used, the same technical means as the secure payment method applied to a payment platform described in fig. 1 are adopted, and the same technical effect can be produced, which is not described herein again.
Fig. 5 is a schematic block diagram of a secure payment device applied to a server according to a fifth embodiment of the present invention.
The secure payment apparatus 200 applied to the server side according to the present invention may be installed in an electronic device. According to the realized functions, the secure payment device applied to the server can comprise a decryption module 201 and a server authentication module 202. A module according to the present invention, which may also be referred to as a unit, refers to a series of computer program segments that can be executed by a processor of an electronic device and that can perform a fixed function, and that are stored in a memory of the electronic device.
In this embodiment, the functions of each module/unit in the secure payment device applied to the server are as follows:
the decryption module 201 is configured to receive the encrypted payment information and decrypt the encrypted payment information;
the server authentication module 202 is configured to perform server authentication on the encrypted payment information when the decryption is successful;
the server authentication module 202 is further configured to generate a corresponding payment result as a payment failure when the server authentication fails;
the server authentication module 202 is further configured to generate a corresponding payment result as a successful payment when the server authentication is successful.
In detail, when the modules in the secure payment apparatus 100 applied to the server in the embodiment of the present invention are used, the same technical means as the secure payment method applied to the server in fig. 2 is adopted, and the same technical effect can be produced, and details are not described here.
Fig. 6 is a schematic block diagram of a secure payment device applied to a client according to a sixth embodiment of the present invention.
The secure payment apparatus 300 applied to the client terminal according to the present invention may be installed in an electronic device. According to the implemented functions, the secure payment device applied to the client may include a payment authentication module 301 and a client encryption module 302. A module according to the present invention, which may also be referred to as a unit, refers to a series of computer program segments that can be executed by a processor of an electronic device and that can perform a fixed function, and that are stored in a memory of the electronic device.
In this embodiment, the functions of the modules/units in the secure payment device applied to the client are as follows:
the payment authentication module 301 is configured to, in response to a transaction service request, obtain a payment identifier of a user, and perform payment authentication on the payment identifier;
the client encryption module 302 is configured to perform client encryption on the payment identifier when the payment authentication is successful, so as to generate a payment request.
In detail, when the modules in the secure payment apparatus 100 applied to the client in the embodiment of the present invention are used, the same technical means as the secure payment method applied to the client described in fig. 3 are adopted, and the same technical effects can be produced, and no further description is given here.
Fig. 7 is a schematic structural diagram of an electronic device of a secure payment method according to a seventh embodiment of the present invention.
The electronic device 1 may comprise a processor 10, a memory 11 and a bus, and may further comprise a computer program, such as a secure payment program 12, stored in the memory 11 and executable on the processor 10.
The memory 11 includes at least one type of readable storage medium, which includes flash memory, removable hard disk, multimedia card, card-type memory (e.g., SD or DX memory, etc.), magnetic memory, magnetic disk, optical disk, etc. The memory 11 may in some embodiments be an internal storage unit of the electronic device 1, such as a removable hard disk of the electronic device 1. The memory 11 may also be an external storage device of the electronic device 1 in other embodiments, such as a plug-in mobile hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card), and the like, which are provided on the electronic device 1. Further, the memory 11 may also include both an internal storage unit and an external storage device of the electronic device 1. The memory 11 may be used not only to store application software installed in the electronic device 1 and various types of data, such as codes of secure payment programs, etc., but also to temporarily store data that has been output or is to be output.
The processor 10 may be composed of an integrated circuit in some embodiments, for example, a single packaged integrated circuit, or may be composed of a plurality of integrated circuits packaged with the same or different functions, including one or more Central Processing Units (CPUs), microprocessors, digital Processing chips, graphics processors, and combinations of various control chips. The processor 10 is a Control Unit (Control Unit) of the electronic device, connects various components of the whole electronic device by using various interfaces and lines, and executes various functions and processes data of the electronic device 1 by running or executing programs or modules (e.g., executing a secure payment program, etc.) stored in the memory 11 and calling data stored in the memory 11.
The bus may be a Peripheral Component Interconnect (PCI) bus, an Extended Industry Standard Architecture (EISA) bus, or the like. The bus may be divided into an address bus, a data bus, a control bus, etc. The bus is arranged to enable connection communication between the memory 11 and at least one processor 10 or the like.
Fig. 7 only shows an electronic device with components, and it will be understood by a person skilled in the art that the structure shown in fig. 7 does not constitute a limitation of the electronic device 1, and may comprise fewer or more components than shown, or a combination of certain components, or a different arrangement of components.
For example, although not shown, the electronic device 1 may further include a power supply (such as a battery) for supplying power to each component, and preferably, the power supply may be logically connected to the at least one processor 10 through a power management device, so as to implement functions of charge management, discharge management, power consumption management, and the like through the power management device. The power supply may also include any component of one or more dc or ac power sources, recharging devices, power failure detection circuitry, power converters or inverters, power status indicators, and the like. The electronic device 1 may further include various sensors, a bluetooth module, a Wi-Fi module, and the like, which are not described herein again.
Further, the electronic device 1 may further include a network interface, and optionally, the network interface may include a wired interface and/or a wireless interface (such as a WI-FI interface, a bluetooth interface, etc.), which are generally used for establishing a communication connection between the electronic device 1 and other electronic devices.
Optionally, the electronic device 1 may further comprise a user interface, which may be a Display (Display), an input unit (such as a Keyboard), and optionally a standard wired interface, a wireless interface. Alternatively, in some embodiments, the display may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, an OLED (Organic Light-Emitting Diode) touch device, or the like. The display, which may also be referred to as a display screen or display unit, is suitable for displaying data processed in the electronic device 1 and for displaying a visualized user interface, among other things.
It is to be understood that the described embodiments are for purposes of illustration only and that the scope of the appended claims is not limited to such structures.
The secure payment program 12 stored by the memory 11 in the electronic device 1 is a combination of computer programs that, when run in the processor 10, enable:
when a client side carries out transaction payment, firstly, payment authentication is carried out on a payment identifier of an obtained user, and after the payment identifier passes the payment authentication, client side encryption is carried out on the payment identifier to generate a payment request;
after the payment platform authenticates and passes the client side of the payment request, the payment platform extracts payment information from the payment request and carries out payment encryption on the payment information to obtain encrypted payment information;
and after the server decrypts the encrypted payment information and succeeds, the server authenticates the payment information in the encrypted payment information to generate a corresponding payment result, and returns the payment result to the payment platform, and the payment platform pushes the payment result to the client.
Specifically, the processor 10 may refer to the description of the relevant steps in the embodiments corresponding to fig. 1 to fig. 3 for a specific implementation method of the computer program, which is not described herein again.
Further, the integrated modules/units of the electronic device 1, if implemented in the form of software functional units and sold or used as separate products, may be stored in a non-volatile computer-readable storage medium. The computer-readable medium may include: any entity or device capable of carrying said computer program code, recording medium, U-disk, removable hard disk, magnetic disk, optical disk, computer Memory, Read-Only Memory (ROM).
In the embodiments provided in the present invention, it should be understood that the disclosed apparatus, device and method can be implemented in other ways. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the modules is only one logical functional division, and other divisions may be realized in practice.
The modules described as separate parts may or may not be physically separate, and parts displayed as modules may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment.
In addition, functional modules in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, or in a form of hardware plus a software functional module.
It will be evident to those skilled in the art that the invention is not limited to the details of the foregoing illustrative embodiments, and that the present invention may be embodied in other specific forms without departing from the spirit or essential attributes thereof.
The present embodiments are therefore to be considered in all respects as illustrative and not restrictive, the scope of the invention being indicated by the appended claims rather than by the foregoing description, and all changes which come within the meaning and range of equivalency of the claims are therefore intended to be embraced therein. Any reference signs in the claims shall not be construed as limiting the claim concerned.
Furthermore, it is obvious that the word "comprising" does not exclude other elements or steps, and the singular does not exclude the plural. A plurality of units or means recited in the system claims may also be implemented by one unit or means in software or hardware. The terms second, etc. are used to denote names, but not any particular order.
Finally, it should be noted that the above embodiments are only for illustrating the technical solutions of the present invention and not for limiting, and although the present invention is described in detail with reference to the preferred embodiments, it should be understood by those skilled in the art that modifications or equivalent substitutions may be made on the technical solutions of the present invention without departing from the spirit and scope of the technical solutions of the present invention.
Claims (10)
1. A secure payment method is applied to a payment platform and comprises the following steps:
receiving a payment request of a client, and performing client authentication on the payment request;
when the client authentication is successful, extracting payment information from the payment request, and carrying out payment encryption on the payment information to obtain encrypted payment information;
and transmitting the encrypted payment information to a corresponding server by using a pre-constructed data transmission channel, receiving a payment result returned by the server, and returning the payment result to the client.
2. A secure payment method as recited in claim 1, wherein the client authenticating the payment request comprises:
acquiring a port number and an IP address of a client corresponding to the payment request;
inquiring the digital certificate of the client according to the port number and the IP address, and verifying the digital certificate by using a security certificate which is constructed in advance at the client and the payment platform;
if the verification fails, generating a result of the authentication failure of the client;
and if the verification is successful, generating a result that the client authentication is successful.
3. A secure payment method is applied to a server and comprises the following steps:
receiving the encrypted payment information, and decrypting the encrypted payment information;
when the decryption is successful, performing server authentication on the encrypted payment information;
if the authentication of the server fails, generating a corresponding payment result as payment failure;
and if the server side is authenticated successfully, generating a corresponding payment result as successful payment.
4. A secure payment method as recited in claim 3, wherein said performing server-side authentication of the encrypted payment information comprises:
acquiring payment information in the encrypted payment information;
inquiring whether server information corresponding to the payment information exists in the server;
if the server-side information corresponding to the payment information does not exist, the encrypted payment information authentication fails;
and if the server-side information corresponding to the payment information exists, the encrypted payment information is successfully authenticated.
5. A secure payment method is applied to a client side and comprises the following steps:
responding to a transaction service request, acquiring a payment identifier of a user, and performing payment authentication on the payment identifier;
and when the payment authentication is successful, carrying out client encryption on the payment identifier to generate a payment request.
6. A secure payment method as recited in claim 5, wherein the obtaining a payment identification of the user in response to the transaction service request comprises:
triggering a transaction payment event according to the transaction service request;
identifying a payment environment according to the transaction payment event;
and receiving user credentials input by a user in the payment environment to obtain the payment identifier of the user.
7. A secure payment device, the device being installed in a payment platform, comprising:
the client authentication module is used for receiving a payment request of a client and authenticating the client for the payment request;
the payment encryption module is used for extracting payment information from the payment request and carrying out payment encryption on the payment information to obtain encrypted payment information when the client authentication is successful;
and the transmission module is used for transmitting the encrypted payment information to a corresponding server by using a pre-constructed data transmission channel, receiving a payment result returned by the server and returning the payment result to the client.
8. A secure payment device, wherein the device is installed in a server, comprising:
the decryption module is used for receiving the encrypted payment information and decrypting the encrypted payment information;
the server authentication module is used for performing server authentication on the encrypted payment information when the decryption is successful;
the server authentication module is further used for generating a corresponding payment result as a payment failure when the server authentication fails;
the server authentication module is further configured to generate a corresponding payment result as a successful payment when the server authentication is successful.
9. A secure payment device, the device being installed at a client, comprising:
the payment authentication module is used for responding to the transaction service request, acquiring the payment identifier of the user and performing payment authentication on the payment identifier;
and the client encryption module is used for encrypting the payment identifier by the client to generate a payment request when the payment authentication is successful.
10. An electronic device, characterized in that the electronic device comprises:
at least one processor; and the number of the first and second groups,
a memory communicatively coupled to the at least one processor; wherein,
the memory stores a computer program executable by the at least one processor to enable the at least one processor to perform a secure payment method as claimed in any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110068213.8A CN112862484A (en) | 2021-01-19 | 2021-01-19 | Secure payment method and device based on multi-terminal interaction |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110068213.8A CN112862484A (en) | 2021-01-19 | 2021-01-19 | Secure payment method and device based on multi-terminal interaction |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112862484A true CN112862484A (en) | 2021-05-28 |
Family
ID=76007162
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110068213.8A Withdrawn CN112862484A (en) | 2021-01-19 | 2021-01-19 | Secure payment method and device based on multi-terminal interaction |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112862484A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113792323A (en) * | 2021-11-15 | 2021-12-14 | 聊城高新生物技术有限公司 | Sensitive data encryption method and device based on agricultural products and electronic equipment |
| CN116957570A (en) * | 2023-06-27 | 2023-10-27 | 南昌君坦荡荡科技有限公司 | Safety payment protection method and system based on artificial intelligence |
-
2021
- 2021-01-19 CN CN202110068213.8A patent/CN112862484A/en not_active Withdrawn
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113792323A (en) * | 2021-11-15 | 2021-12-14 | 聊城高新生物技术有限公司 | Sensitive data encryption method and device based on agricultural products and electronic equipment |
| CN116957570A (en) * | 2023-06-27 | 2023-10-27 | 南昌君坦荡荡科技有限公司 | Safety payment protection method and system based on artificial intelligence |
| CN116957570B (en) * | 2023-06-27 | 2024-09-24 | 南昌君坦荡荡科技有限公司 | Safety payment protection method and system based on artificial intelligence |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108900464B (en) | Electronic device, block chain-based data processing method, and computer storage medium | |
| CN111080295B (en) | Electronic contract processing method and device based on blockchain | |
| US10574648B2 (en) | Methods and systems for user authentication | |
| EP3319292B1 (en) | Methods, client and server for checking security based on biometric features | |
| US20190305955A1 (en) | Push notification authentication | |
| US7934096B2 (en) | Integrity protected smart card transaction | |
| CN110677376B (en) | Authentication method, related device and system and computer readable storage medium | |
| KR20140099325A (en) | System and method for key management for issuer security domain using global platform specifications | |
| CN106936588B (en) | Hosting method, device and system of hardware control lock | |
| US20140172741A1 (en) | Method and system for security information interaction based on internet | |
| EP3206329B1 (en) | Security check method, device, terminal and server | |
| WO2019205389A1 (en) | Electronic device, authentication method based on block chain, and program and computer storage medium | |
| EP3552131B1 (en) | Password security | |
| CN116980230B (en) | Information security protection method and device | |
| TWI724684B (en) | Method, system and device for performing cryptographic operations subject to identity verification | |
| US20140095863A1 (en) | Internet based security information interaction apparatus and method | |
| CN114363088B (en) | Method and device for requesting data | |
| CN113836506A (en) | Identity authentication method, device, system, electronic equipment and storage medium | |
| CN112862484A (en) | Secure payment method and device based on multi-terminal interaction | |
| CN114726630B (en) | License-based information security authorization method and device, electronic equipment and medium | |
| CN114499859A (en) | Password verification method, device, equipment and storage medium | |
| US8904508B2 (en) | System and method for real time secure image based key generation using partial polygons assembled into a master composite image | |
| CN109889342B (en) | Interface test authentication method and device, electronic equipment and storage medium | |
| CN116049802B (en) | Application single sign-on method, system, computer equipment and storage medium | |
| CN112150151B (en) | Secure payment method, apparatus, electronic device and storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WW01 | Invention patent application withdrawn after publication | ||
| WW01 | Invention patent application withdrawn after publication |
Application publication date: 20210528 |