CN104715370A - Method and system for carrying out safety payment based on encrypted two-dimension code - Google Patents
Method and system for carrying out safety payment based on encrypted two-dimension code Download PDFInfo
- Publication number
- CN104715370A CN104715370A CN201310677127.2A CN201310677127A CN104715370A CN 104715370 A CN104715370 A CN 104715370A CN 201310677127 A CN201310677127 A CN 201310677127A CN 104715370 A CN104715370 A CN 104715370A
- Authority
- CN
- China
- Prior art keywords
- consumption
- consumption card
- information
- user
- management platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Cash Registers Or Receiving Machines (AREA)
Abstract
The embodiment of the invention discloses a method and system for carrying out safety payment based on an encrypted two-dimension code. The method comprises the steps that a user has access to a network safe box through login authentication; a consumer card management client side selects a consumer card to be used from the network safe box according to the user indication and initiates a payment confirmation request; a time synchronous mode is adopted in a consumer card management platform, and a one-time two-dimension code is dynamically generated according to the encrypted two-dimension code of the consumer card used in current consumption, the user account and the current time information based on a second preset algorithm; a POS machine scans the one-time two-dimension code and sends the one-time two-dimension code to the consumer card management platform; the consumer card management platform decrypts the one-time two-dimension code and carries out timeliness authentication; if the timeliness authentication is passed, a first preset encryption algorithm is used for decryption, and the consumer card information obtained through decryption is sent to a payment management platform. According to the method and system, payment convenience can be achieved, and the safety of the information of the consumer card is improved.
Description
Technical field
The present invention relates to development of Mobile Internet technology, especially a kind of method and system carrying out secure payment based on ciphering two-dimension code.
Background technology
Circulate non-magnetic stripe class prepaid card miscellaneous, Gift Card at present on the market, such as, joins the consumption cards such as magnificent OK card.The use of this kind of consumption card is very universal, but usually can only use in limited appointment businessman.Therefore, consumer may need to carry with multiple consumption card.Which adds the burden of consumer's wallet, simultaneously once consumption card is lost, the situation that consumption card is usurped just may occur.
Along with the development of Mobile-Payment Technology, consumer also starts to carry out payment behavior with mobile phone terminal gradually.Current mobile phone terminal short range pays the transformation all related to mobile phone terminal, such as, changes mobile phone terminal or uses specific user ID card, and this is comparatively difficult to accept concerning user.
Quick Response Code because of its contain much information, the advantage such as recognition speed is fast, be also widely used in mobile Internet field recently, but the Quick Response Code relating to payment exist be photographed, risk that duplicating etc. is stolen.
Summary of the invention
Embodiment of the present invention technical matters to be solved is: provide a kind of method and system carrying out secure payment based on ciphering two-dimension code, with the security of the convenience and raising consumption card information that realize payment.
A kind of method of carrying out secure payment based on ciphering two-dimension code that the embodiment of the present invention provides, comprising:
Consumption card administrative client receives logging request that user sends when using consumption card to consume and is transmitted to consumption card management platform and carries out login authentication; Described logging request comprises the user account number and password that user arranges when consumption card management platform is registered, user's network safe that consumption card management platform is distributed as this user after consumption card management platform is registered, described network safe stores the Quick Response Code of the encryption that the consumption card information based on described user generates with the first predetermined encryption algorithm, and described consumption card information comprises bar code, card number, the password of consumption card;
Consumption card management platform carries out certification based on user's registration information to described logging request, and accesses by permission user during certification the network safe that consumption card management platform is this user distribution in described logging request;
Consumption card administrative client indicates according to user, and the consumption card selecting this consumption to use from network safe also initiates to confirm to pay request;
Consumption card management platform adopts time synchronizing method, and the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and send to mobile phone terminal;
Point-of-sale terminal POS receives this consumption information and scans described disposable Quick Response Code, and this consumption information and described disposable Quick Response Code are sent to consumption card management platform; This consumption information comprises dealing money and the Business Information of this consumption;
Consumption card management platform utilizes the second predetermined encryption algorithm, to be decrypted and to carry out ageing certification based on user account number and current time information to the disposable Quick Response Code received;
In response to by ageing certification, the deciphering of consumption card management platform obtains the 2 D code information of the encryption of the consumption card that this consumption uses;
Consumption card management platform adopts the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses, and consumption card information and this consumption information that this consumption uses is sent to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform.
In a specific embodiment of said method of the present invention, consumption card management platform adopts time synchronizing method, and the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and comprise:
Utilize the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with described random series for key, utilize the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be encrypted, generate a disposable Quick Response Code.
In a specific embodiment of said method of the present invention, the disposable Quick Response Code received be decrypted and carry out ageing certification comprise:
Consumption card management platform utilizes the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code received is decrypted, if successful decryption, then consumption card management platform deciphering time current time information with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
In a specific embodiment of said method of the present invention, consumption card administrative client also comprises before receiving the logging request of user's transmission when using consumption card to consume:
Consumption card administrative client sends registration request according to user's instruction to consumption card management platform, and described registration request comprises user account number and the password of the login consumption card management platform that user is arranged;
Log in consumption card management platform for user's registration, and after succeeding in registration, to described user account number distribution network proof box;
Consumption card administrative client indicates the consumption card information of collection user according to user and is encrypted consumption card information with the first predetermined encryption algorithm, generate the Quick Response Code of an encryption, the network safe Quick Response Code of encryption being uploaded to distribution stores, and in network safe, input the relevant information of this consumption card.
A kind of system of carrying out secure payment based on ciphering two-dimension code that the embodiment of the present invention provides, comprising:
Consumption card administrative client, is arranged on mobile phone terminal, for receiving logging request that user sends when using consumption card to consume and being transmitted to consumption card management platform and carrying out login authentication; Described logging request comprises the user account number and password that user arranges when consumption card management platform is registered, user's network safe that consumption card management platform is distributed as this user after consumption card management platform is registered, described network safe stores the Quick Response Code of the encryption that the consumption card information based on described user generates with the first predetermined encryption algorithm, and described consumption card information comprises bar code, card number, the password of consumption card; And according to user's instruction, the consumption card selecting this consumption to use from network safe also initiates to confirm to pay request;
Consumption card management platform, for carrying out certification based on user's registration information to described logging request, and accesses by permission user during certification the network safe that consumption card management platform is this user distribution in described logging request; Adopt time synchronizing method, the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and send to mobile phone terminal; Utilize the second predetermined encryption algorithm, based on user account number and current time information the disposable Quick Response Code that POS sends be decrypted and carry out ageing certification; In response to by ageing certification, decipher the 2 D code information of the encryption obtaining the consumption card that this consumption uses; The Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses is adopted to be decrypted, obtain the consumption card information that this consumption uses, and consumption card information and this consumption information that this consumption uses is sent to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform;
Point-of-sale terminal POS, for receiving this consumption information and scanning described disposable Quick Response Code, sends to consumption card management platform by this consumption information and described disposable Quick Response Code, and this consumption information comprises dealing money and the Business Information of this consumption.
In a specific embodiment of said system of the present invention, described consumption card management platform specifically utilizes the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with described random series for key, utilize the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be encrypted, generate a disposable Quick Response Code.
In a specific embodiment of said system of the present invention, when described consumption card management platform is decrypted the disposable Quick Response Code received and carries out ageing certification, specifically utilize the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code that POS sends is decrypted, if successful decryption, current time information when then deciphering with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
In a specific embodiment of said system of the present invention, described consumption card administrative client, also for sending registration request according to user's instruction to consumption card management platform, described registration request comprises user account number and the password of the login consumption card management platform that user is arranged; And according to user indicate gather user consumption card information and with the first predetermined encryption algorithm to consumption card information be encrypted, generate the Quick Response Code of an encryption, the network safe Quick Response Code of encryption being uploaded to distribution stores, and in network safe, input the relevant information of this consumption card;
Consumption card management platform, also for being user's registration, and after succeeding in registration, to described user account number distribution network proof box.
A kind of consumption card management platform that the embodiment of the present invention provides, comprising:
User profile unit, for storing the user's registration information of each user when consumption card management platform is registered, comprises user account number and password;
Multiple network safe, after the registration of consumption card management platform, distribute to user by consumption card management platform user respectively to use, for the Quick Response Code of the encryption that the consumption card information stored based on described user generates with the first predetermined encryption algorithm, described consumption card information comprises bar code, card number, the password of consumption card;
Service Processing Unit, for receiving the logging request that consumption card administrative client sends, described logging request comprises the user account number and password that user arranges when consumption card management platform is registered, based on user's registration information, certification is carried out to described logging request, and at the network safe that described logging request is distributed for this user by allowing user's access during certification; And receive the confirmation payment request initiated after consumption card administrative client selects the consumption card of this consumption use according to user's instruction from network safe; And the disposable Quick Response Code that enciphering/deciphering unit generates is sent to the mobile phone terminal at consumption card administrative client place; And receiving this consumption information of point-of-sale terminal POS transmission and disposable Quick Response Code, this consumption information comprises dealing money and the Business Information of this consumption; And consumption card information and this consumption information that this consumption deciphering of enciphering/deciphering unit to be obtained uses send to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform;
Enciphering/deciphering unit, for adopting time synchronizing method, the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code; And utilize the second predetermined encryption algorithm, based on user account number and current time information the disposable Quick Response Code that Service Processing Unit receives be decrypted and carry out ageing certification; In response to by ageing certification, obtain the 2 D code information of the encryption of the consumption card that this consumption uses; Adopt the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses.
In a specific embodiment of the above-mentioned platform of the present invention, described enciphering/deciphering unit adopts time synchronizing method, based on the Quick Response Code of the second preset algorithm by the encryption of the consumption card of this consumption use, when user account number and current time information dynamically generate a disposable Quick Response Code, specifically utilize the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with described random series for key, the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses is utilized to be encrypted, generate disposable Quick Response Code.
In a specific embodiment of the above-mentioned platform of the present invention, when described enciphering/deciphering unit is decrypted the disposable Quick Response Code received and carries out ageing certification, specifically utilize the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code received is decrypted, if successful decryption, then consumption card management platform deciphering time current time information with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
In a specific embodiment of the above-mentioned platform of the present invention, described Service Processing Unit, the registration request also sent for receiving consumption card administrative client is also user's registration, and after succeeding in registration, to described user account number distribution network proof box, described registration request comprises user account number and the password of the login consumption card management platform that user is arranged.
Based on the method and system carrying out secure payment based on ciphering two-dimension code that the above embodiment of the present invention provides, avoid that the Quick Response Code carrying consumption card information is photographed, risk that duplicating etc. is stolen, improve the security of Quick Response Code payment and the security of consumption card information, also enrich the application mode that mobile phone terminal short range pays, reduce the payment threshold of mobile phone terminal.
Below by drawings and Examples, technical scheme of the present invention is described in further detail.
Description of the invention provides in order to example with for the purpose of describing, and is not exhaustively or limit the invention to disclosed form.Many modifications and variations are obvious for the ordinary skill in the art.Selecting and describing embodiment is in order to principle of the present invention and practical application are better described, and enables those of ordinary skill in the art understand the present invention thus design the various embodiments with various amendment being suitable for special-purpose.
Accompanying drawing explanation
What form a part for instructions drawings describes embodiments of the invention, and is used from explanation principle of the present invention together with description one.
With reference to accompanying drawing, according to detailed description below, clearly the present invention can be understood, wherein:
Fig. 1 the present invention is based on the structural representation that ciphering two-dimension code carries out a system embodiment of secure payment.
Fig. 2 the present invention is based on the process flow diagram that ciphering two-dimension code carries out a method embodiment of secure payment.
Fig. 3 the present invention is based on the process flow diagram that ciphering two-dimension code carries out another embodiment of method of secure payment.
Fig. 4 is the structural representation of a consumption card management platform of the present invention embodiment.
Embodiment
Various exemplary embodiment of the present invention is described in detail now with reference to accompanying drawing.It should be noted that: unless specifically stated otherwise, otherwise positioned opposite, the numerical expression of the parts of setting forth in these embodiments and step and numerical value do not limit the scope of the invention.
Meanwhile, it should be understood that for convenience of description, the size of the various piece shown in accompanying drawing is not draw according to the proportionate relationship of reality.
Illustrative to the description only actually of at least one exemplary embodiment below, never as any restriction to the present invention and application or use.
May not discuss in detail for the known technology of person of ordinary skill in the relevant, method and apparatus, but in the appropriate case, described technology, method and apparatus should be regarded as a part for instructions.
In all examples with discussing shown here, any occurrence should be construed as merely exemplary, instead of as restriction.Therefore, other example of exemplary embodiment can have different values.
It should be noted that: represent similar terms in similar label and letter accompanying drawing below, therefore, once be defined in an a certain Xiang Yi accompanying drawing, then do not need to be further discussed it in accompanying drawing subsequently.
Fig. 1 the present invention is based on the structural representation that ciphering two-dimension code carries out a system embodiment of secure payment.As shown in Figure 1, the system that this embodiment carries out secure payment based on ciphering two-dimension code comprises consumption card administrative client, consumption card management platform and point-of-sale terminal (POS) machine.Wherein:
Consumption card administrative client, be arranged on mobile phone terminal, for receiving logging request that user sends when using consumption card to consume and being transmitted to consumption card management platform and carrying out login authentication, this logging request comprises the user account number and password that user arranges when consumption card management platform is registered, user's network safe that consumption card management platform is distributed as this user after consumption card management platform is registered, the Quick Response Code of the encryption generated with the first predetermined encryption algorithm with the consumption card information stored based on user, consumption card information wherein comprises the bar code of consumption card, card number, password, and according to user's instruction, the consumption card selecting this consumption to use from network safe also initiates to confirm to pay request.
Consumption card management platform, for carrying out certification based on user's registration information to the logging request that consumption card administrative client sends, and accesses by permission user during certification the network safe that this consumption card management platform is this user distribution in logging request; Adopt time synchronizing method, the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and send to mobile phone terminal; Utilize the second predetermined encryption algorithm, based on user account number and current time information the disposable Quick Response Code that POS sends be decrypted and carry out ageing certification; In response to by ageing certification, decipher the 2 D code information of the encryption obtaining the consumption card that this consumption uses; And adopt the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses, and consumption card information and this consumption information that this consumption uses is sent to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform.
POS, for receiving this consumption information and run-down Quick Response Code, sends to consumption card management platform by this consumption information and disposable Quick Response Code, and this consumption information comprises dealing money and the Business Information of this consumption.
The system of carrying out secure payment based on ciphering two-dimension code that the above embodiment of the present invention provides, avoid that the Quick Response Code carrying consumption card information is photographed, risk that duplicating etc. is stolen, improve the security of Quick Response Code payment and the security of consumption card information, also enrich the application mode that mobile phone terminal short range pays, reduce the payment threshold of mobile phone terminal.
Be described below in conjunction with the present invention is based on embodiment of the method that ciphering two-dimension code the carries out secure payment system of carrying out secure payment based on ciphering two-dimension code to the above embodiment of the present invention, the system that the method that various embodiments of the present invention carry out secure payment based on ciphering two-dimension code can carry out secure payment by above-described embodiment based on ciphering two-dimension code realizes.
Fig. 2 the present invention is based on the process flow diagram that ciphering two-dimension code carries out a method embodiment of secure payment.As shown in Figure 2, the method that this embodiment carries out secure payment based on ciphering two-dimension code comprises:
110. consumption card administrative clients receive logging request that users send when using consumption card to consume and are transmitted to consumption card management platform and carry out login authentication.
Logging request wherein comprises the user account number and password that user arranges when consumption card management platform is registered, user's network safe that consumption card management platform is distributed as this user after consumption card management platform is registered, for the Quick Response Code of the encryption that the consumption card information stored based on this user generates with the first predetermined encryption algorithm, consumption card information comprises bar code, card number, the password of consumption card.
120, consumption card management platform carries out certification based on user's registration information to logging request, and accesses by permission user during certification the network safe that consumption card management platform is this user distribution in logging request.
130, consumption card administrative client indicates according to user, and the consumption card selecting this consumption to use from network safe also initiates to confirm to pay request.
140, consumption card management platform adopts time synchronizing method, and the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and send to mobile phone terminal.
Particularly, consumption card management platform utilizes the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with this random series for key, utilize the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be encrypted, generate a disposable Quick Response Code.
150, POS receives this consumption information and run-down Quick Response Code, and this consumption information and disposable Quick Response Code are sent to consumption card management platform, and this consumption information comprises dealing money and the Business Information of this consumption.
160, consumption card management platform utilizes the second predetermined encryption algorithm, to be decrypted and to carry out ageing certification based on user account number and current time information to the disposable Quick Response Code received.
Particularly, consumption card management platform utilizes the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code received is decrypted, if successful decryption, then consumption card management platform deciphering time current time information with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
170, in response to by ageing certification, the deciphering of consumption card management platform obtains the 2 D code information of the encryption of the consumption card that this consumption uses.
Otherwise, if not by ageing certification, do not perform this operation 170 and follow-up flow process thereof.
180, consumption card management platform adopts the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses, and the consumption card information this consumption used and this consumption information send to payment management platform, by payment management platform based on this consumption use consumption card information and this consumption information this consumer behavior is paid, after payment completes, this Quick Response Code lost efficacy.
The method of carrying out secure payment based on ciphering two-dimension code that the above embodiment of the present invention provides, avoid that the Quick Response Code carrying consumption card information is photographed, risk that duplicating etc. is stolen, improve the security of Quick Response Code payment and the security of consumption card information, also enrich the application mode that mobile phone terminal short range pays, reduce the payment threshold of mobile phone terminal.
Fig. 3 the present invention is based on the process flow diagram that ciphering two-dimension code carries out another embodiment of method of secure payment.As shown in Figure 3, this embodiment, before the embodiment shown in Fig. 2, also comprises following operation:
210, consumption card administrative client sends registration request according to user's instruction to consumption card management platform, and this registration request comprises user account number and the password for logging in consumption card management platform that user is arranged.
220, log in consumption card management platform for user's registration, and after succeeding in registration, to this user account number distribution network proof box.
230, consumption card administrative client indicates the consumption card information gathering user according to user, and with the first predetermined encryption algorithm, this consumption card information is encrypted, generate the Quick Response Code of an encryption, the network safe Quick Response Code of encryption being uploaded to distribution stores, the relevant information of this consumption card can also be inputted in network safe, such as, the purposes, the amount of money, the term of validity etc. of this consumption card.
Fig. 4 is the structural representation of a consumption card management platform of the present invention embodiment.This consumption card management platform can be used as the consumption card management platform of to carry out based on ciphering two-dimension code in the system of secure payment, realizes the corresponding function of consumption card management platform in the above-mentioned each system and method embodiment of the present invention.As shown in Figure 4, the consumption card management platform of this embodiment comprises: user profile unit, multiple network safe, Service Processing Unit and enciphering/deciphering unit.Wherein:
User profile unit, for storing the user's registration information of each user when consumption card management platform is registered, comprises user account number and password.
Multiple network safe, after the registration of consumption card management platform, distribute to user by consumption card management platform user respectively to use, for the Quick Response Code of the encryption that the consumption card information stored based on user generates with the first predetermined encryption algorithm, consumption card information comprises bar code, card number, the password of consumption card.
Service Processing Unit, for receiving the logging request that consumption card administrative client sends, the user account number arranged when consumption card management platform is registered comprising user and password, based on user's registration information, certification is carried out to this logging request, and at the network safe that logging request is distributed for this user by allowing user's access during certification; And receive the confirmation payment request initiated after consumption card administrative client selects the consumption card of this consumption use according to user's instruction from network safe; And the disposable Quick Response Code that enciphering/deciphering unit generates is sent to the mobile phone terminal at consumption card administrative client place; And receiving this consumption information of point-of-sale terminal POS transmission and disposable Quick Response Code, this consumption information comprises dealing money and the Business Information of this consumption; And by enciphering/deciphering unit deciphering obtain this consumption use consumption card information and this consumption information send to payment management platform, by payment management platform based on this consumption use consumption card information and this consumption information this consumer behavior is paid, after payment completes, this Quick Response Code lost efficacy.
Enciphering/deciphering unit, for adopting time synchronizing method, the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code; And utilize the second predetermined encryption algorithm, based on user account number and current time information the disposable Quick Response Code that Service Processing Unit receives be decrypted and carry out ageing certification; In response to by ageing certification, obtain the 2 D code information of the encryption of the consumption card that this consumption uses; Adopt the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses.
The consumption card management platform that the above embodiment of the present invention provides, avoid that the Quick Response Code carrying consumption card information is photographed, risk that duplicating etc. is stolen, improve the security of Quick Response Code payment and the security of consumption card information, also enrich the application mode that mobile phone terminal short range pays, reduce the payment threshold of mobile phone terminal.
Unrestricted according to a concrete example of consumption card management platform embodiment of the present invention, enciphering/deciphering unit adopts time synchronizing method, based on the Quick Response Code of the second preset algorithm by the encryption of the consumption card of this consumption use, when user account number and current time information dynamically generate a disposable Quick Response Code, specifically can utilize the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, take random series as key, the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses is utilized to be encrypted, generate disposable Quick Response Code.
Correspondingly, when enciphering/deciphering unit is decrypted the disposable Quick Response Code received and carries out ageing certification, specifically can utilize the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code received is decrypted, if successful decryption, then consumption card management platform deciphering time current time information with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
In another embodiment of consumption card management platform of the present invention, the registration request that Service Processing Unit can also be used for receiving the transmission of consumption card administrative client is also user's registration, and after succeeding in registration, to user account number distribution network proof box, registration request wherein comprises user account number and the password of the login consumption card management platform that user is arranged.
Below for an Application Example, further application explanation is carried out to method and system, the consumption card management platform that the present invention is based on ciphering two-dimension code and carry out secure payment.This Application Example comprises following flow process:
User installs consumption card administrative client on mobile phone terminal;
User has by consumption card administrative client, registers in consumption card management platform with the phone number that user uses, and submits user profile to and arranges the user account number and password that log in consumption card management platform.User profile wherein comprises the phone number that user uses; User account number can be the phone number that user uses;
After succeeding in registration, consumption card management platform is to user account number distribution network proof box;
User gathers the consumption card information of this user by consumption card administrative client, and with the first predetermined encryption algorithm to consumption card information, such as, the bar code of consumption card, card number, password, be encrypted, generate the Quick Response Code of an encryption, the network safe Quick Response Code of encryption being uploaded to distribution stores, and in network safe, input the relevant information of this consumption card;
When user uses consumption card to consume, the user account number arranged during to register and password login consumption card management platform enter the network safe of distribution;
User is by consumption card administrative client, and the consumption card that the relevant information based on consumption card selects this consumption to use also sends and confirms to pay request;
Enciphering/deciphering center in consumption card management platform adopts time synchronizing method, and the Quick Response Code of the encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a new disposable Quick Response Code and send to mobile phone terminal;
Disposable Quick Response Code on mobile phone terminal is consumed in the enterprising line scanning of POS by user;
POS receives this consumption information of businessman or user's input and scans described disposable Quick Response Code, and this consumption information and disposable Quick Response Code are sent to consumption card management platform;
Enciphering/deciphering center in consumption card management platform utilizes the second predetermined encryption algorithm, to be decrypted and to carry out ageing certification based on user account number and current time information to the disposable Quick Response Code received; If successful decryption, current time information then during the deciphering of consumption card management platform and current time information when generating a disposable Quick Response Code are in default time difference range, by ageing certification, obtain the 2 D code information of the encryption of the consumption card that this consumption uses;
Enciphering/deciphering center adopts the 2 D code information of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses, and the consumption card information this consumption used and this consumption information send to payment management platform, by payment management platform based on this consumption use consumption card information and this consumption information this consumer behavior is paid, after payment completes, this Quick Response Code lost efficacy.
In this instructions, each embodiment all adopts the mode of going forward one by one to describe, and what each embodiment stressed is the difference with other embodiment, same or analogous part cross-reference between each embodiment.For system, consumption card management platform embodiment, because itself and embodiment of the method are substantially corresponding, so description is fairly simple, relevant part illustrates see the part of embodiment of the method.
Method of the present invention, system, consumption card management platform may be realized in many ways.Such as, any combination by software, hardware, firmware or software, hardware, firmware realizes method of the present invention, system, consumption card management platform.Said sequence for the step of described method is only to be described, and the step of method of the present invention is not limited to above specifically described order, unless specifically stated otherwise.In addition, in certain embodiments, can be also record program in the recording medium by the invention process, these programs comprise the machine readable instructions for realizing according to method of the present invention.Thus, the present invention also covers the recording medium stored for performing the program according to method of the present invention.
One of ordinary skill in the art will appreciate that: all or part of step realizing said method embodiment can have been come by the hardware that programmed instruction is relevant, aforesaid program can be stored in a computer read/write memory medium, this program, when performing, performs the step comprising said method embodiment; And aforesaid storage medium comprises: ROM, RAM, magnetic disc or CD etc. various can be program code stored medium.
Claims (12)
1. carry out a method for secure payment based on ciphering two-dimension code, it is characterized in that, comprising:
Consumption card administrative client receives logging request that user sends when using consumption card to consume and is transmitted to consumption card management platform and carries out login authentication; Described logging request comprises the user account number and password that user arranges when consumption card management platform is registered, user's network safe that consumption card management platform is distributed as this user after consumption card management platform is registered, described network safe stores the Quick Response Code of the encryption that the consumption card information based on described user generates with the first predetermined encryption algorithm, and described consumption card information comprises bar code, card number, the password of consumption card;
Consumption card management platform carries out certification based on user's registration information to described logging request, and accesses by permission user during certification the network safe that consumption card management platform is this user distribution in described logging request;
Consumption card administrative client indicates according to user, and the consumption card selecting this consumption to use from network safe also initiates to confirm to pay request;
Consumption card management platform adopts time synchronizing method, and the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and send to mobile phone terminal;
Point-of-sale terminal POS receives this consumption information and scans described disposable Quick Response Code, and this consumption information and described disposable Quick Response Code are sent to consumption card management platform; This consumption information comprises dealing money and the Business Information of this consumption;
Consumption card management platform utilizes the second predetermined encryption algorithm, to be decrypted and to carry out ageing certification based on user account number and current time information to the disposable Quick Response Code received;
In response to by ageing certification, the deciphering of consumption card management platform obtains the 2 D code information of the encryption of the consumption card that this consumption uses;
Consumption card management platform adopts the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses, and consumption card information and this consumption information that this consumption uses is sent to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform.
2. method according to claim 1, it is characterized in that, consumption card management platform adopts time synchronizing method, and the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and comprise:
Utilize the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with described random series for key, utilize the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be encrypted, generate a disposable Quick Response Code.
3. method according to claim 2, is characterized in that, is decrypted and carries out ageing certification to comprise the disposable Quick Response Code received:
Consumption card management platform utilizes the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code received is decrypted, if successful decryption, then consumption card management platform deciphering time current time information with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
4. the method according to claims 1 to 3 any one, is characterized in that, consumption card administrative client also comprises before receiving the logging request of user's transmission when using consumption card to consume:
Consumption card administrative client sends registration request according to user's instruction to consumption card management platform, and described registration request comprises user account number and the password of the login consumption card management platform that user is arranged;
Log in consumption card management platform for user's registration, and after succeeding in registration, to described user account number distribution network proof box;
Consumption card administrative client indicates the consumption card information of collection user according to user and is encrypted consumption card information with the first predetermined encryption algorithm, generate the Quick Response Code of an encryption, the network safe Quick Response Code of encryption being uploaded to distribution stores, and in network safe, input the relevant information of this consumption card.
5. carry out a system for secure payment based on ciphering two-dimension code, it is characterized in that, comprising:
Consumption card administrative client, is arranged on mobile phone terminal, for receiving logging request that user sends when using consumption card to consume and being transmitted to consumption card management platform and carrying out login authentication; Described logging request comprises the user account number and password that user arranges when consumption card management platform is registered, user's network safe that consumption card management platform is distributed as this user after consumption card management platform is registered, described network safe stores the Quick Response Code of the encryption that the consumption card information based on described user generates with the first predetermined encryption algorithm, and described consumption card information comprises bar code, card number, the password of consumption card; And according to user's instruction, the consumption card selecting this consumption to use from network safe also initiates to confirm to pay request;
Consumption card management platform, for carrying out certification based on user's registration information to described logging request, and accesses by permission user during certification the network safe that consumption card management platform is this user distribution in described logging request; Adopt time synchronizing method, the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code and send to mobile phone terminal; Utilize the second predetermined encryption algorithm, based on user account number and current time information the disposable Quick Response Code that POS sends be decrypted and carry out ageing certification; In response to by ageing certification, decipher the 2 D code information of the encryption obtaining the consumption card that this consumption uses; The Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses is adopted to be decrypted, obtain the consumption card information that this consumption uses, and consumption card information and this consumption information that this consumption uses is sent to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform;
Point-of-sale terminal POS, for receiving this consumption information and scanning described disposable Quick Response Code, sends to consumption card management platform by this consumption information and described disposable Quick Response Code, and this consumption information comprises dealing money and the Business Information of this consumption.
6. system according to claim 5, it is characterized in that, described consumption card management platform specifically utilizes the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with described random series for key, utilize the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be encrypted, generate a disposable Quick Response Code.
7. system according to claim 6, it is characterized in that, when described consumption card management platform is decrypted the disposable Quick Response Code received and carries out ageing certification, specifically utilize the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code that POS sends is decrypted, if successful decryption, then current time information when deciphering with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
8. the system according to claim 5 to 7 any one, it is characterized in that, described consumption card administrative client, also for sending registration request according to user's instruction to consumption card management platform, described registration request comprises user account number and the password of the login consumption card management platform that user is arranged; And according to user indicate gather user consumption card information and with the first predetermined encryption algorithm to consumption card information be encrypted, generate the Quick Response Code of an encryption, the network safe Quick Response Code of encryption being uploaded to distribution stores, and in network safe, input the relevant information of this consumption card;
Consumption card management platform, also for being user's registration, and after succeeding in registration, to described user account number distribution network proof box.
9. a consumption card management platform, is characterized in that, comprising:
User profile unit, for storing the user's registration information of each user when consumption card management platform is registered, comprises user account number and password;
Multiple network safe, after the registration of consumption card management platform, distribute to user by consumption card management platform user respectively to use, for the Quick Response Code of the encryption that the consumption card information stored based on described user generates with the first predetermined encryption algorithm, described consumption card information comprises bar code, card number, the password of consumption card;
Service Processing Unit, for receiving the logging request that consumption card administrative client sends, described logging request comprises the user account number and password that user arranges when consumption card management platform is registered, based on user's registration information, certification is carried out to described logging request, and at the network safe that described logging request is distributed for this user by allowing user's access during certification; And receive the confirmation payment request initiated after consumption card administrative client selects the consumption card of this consumption use according to user's instruction from network safe; And the disposable Quick Response Code that enciphering/deciphering unit generates is sent to the mobile phone terminal at consumption card administrative client place; And receiving this consumption information of point-of-sale terminal POS transmission and disposable Quick Response Code, this consumption information comprises dealing money and the Business Information of this consumption; And consumption card information and this consumption information that this consumption deciphering of enciphering/deciphering unit to be obtained uses send to payment management platform, this consumer behavior is paid based on the consumption card information of this consumption use and this consumption information by payment management platform;
Enciphering/deciphering unit, for adopting time synchronizing method, the Quick Response Code of encryption of the consumption card used by this consumption based on the second preset algorithm, user account number and current time information dynamically generate a disposable Quick Response Code; And utilize the second predetermined encryption algorithm, based on user account number and current time information the disposable Quick Response Code that Service Processing Unit receives be decrypted and carry out ageing certification; In response to by ageing certification, obtain the 2 D code information of the encryption of the consumption card that this consumption uses; Adopt the Quick Response Code of the first predetermined encryption algorithm to the encryption of the consumption card that this consumption uses to be decrypted, obtain the consumption card information that this consumption uses.
10. consumption card management platform according to claim 9, it is characterized in that, described enciphering/deciphering unit adopts time synchronizing method, based on the Quick Response Code of the second preset algorithm by the encryption of the consumption card of this consumption use, when user account number and current time information dynamically generate a disposable Quick Response Code, specifically utilize the dynamic password authentication technology of time synchronized, produce the random series be associated with user account number and current time information, with described random series for key, the Quick Response Code of the second predetermined encryption algorithm to the encryption of the consumption card that this consumption uses is utilized to be encrypted, generate disposable Quick Response Code.
11. consumption card management platforms according to claim 10, it is characterized in that, when described enciphering/deciphering unit is decrypted the disposable Quick Response Code received and carries out ageing certification, specifically utilize the second predetermined encryption algorithm, based on user account number and current time information, the disposable Quick Response Code received is decrypted, if successful decryption, then consumption card management platform deciphering time current time information with generate a disposable Quick Response Code time current time information in default time difference range, by ageing certification; Otherwise, not by ageing certification.
12. consumption card management platforms according to claim 9 to 11 any one, it is characterized in that, described Service Processing Unit, the registration request also sent for receiving consumption card administrative client is also user's registration, and after succeeding in registration, to described user account number distribution network proof box, described registration request comprises user account number and the password of the login consumption card management platform that user is arranged.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310677127.2A CN104715370B (en) | 2013-12-12 | 2013-12-12 | The method and system of secure payment is carried out based on ciphering two-dimension code |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310677127.2A CN104715370B (en) | 2013-12-12 | 2013-12-12 | The method and system of secure payment is carried out based on ciphering two-dimension code |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104715370A true CN104715370A (en) | 2015-06-17 |
| CN104715370B CN104715370B (en) | 2018-07-27 |
Family
ID=53414674
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310677127.2A Active CN104715370B (en) | 2013-12-12 | 2013-12-12 | The method and system of secure payment is carried out based on ciphering two-dimension code |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104715370B (en) |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105426765A (en) * | 2015-07-09 | 2016-03-23 | 深圳百云信息技术有限公司 | Two-dimensional code dynamic encryption and decryption algorithm |
| CN107194688A (en) * | 2017-05-16 | 2017-09-22 | 冯汉江 | In payment system and its method of the offline scenario based on Quick Response Code |
| CN107479359A (en) * | 2017-08-22 | 2017-12-15 | 北京智芯微电子科技有限公司 | Scan the time service method and device of ciphering two-dimension code |
| CN108305169A (en) * | 2018-02-28 | 2018-07-20 | 易百信息技术(上海)股份有限公司 | Prepaid card transactions data save method and device |
| CN109167666A (en) * | 2018-08-31 | 2019-01-08 | 深圳众赢维融科技有限公司 | Identifying code generation, decryption, method of mobile payment and device |
| CN110335035A (en) * | 2019-04-25 | 2019-10-15 | 深圳市德名利电子有限公司 | A kind of antitheft dynamic payment figure code verification method taken the photograph and system and equipment |
| CN110555693A (en) * | 2018-06-04 | 2019-12-10 | 紫光同芯微电子有限公司 | system and method for realizing two-dimensional code security by using SIM card |
| CN111582877A (en) * | 2020-05-09 | 2020-08-25 | 加减信息科技(深圳)有限公司 | Static two-dimensional code upgrading method and static two-dimensional code transaction method and device |
| CN112541761A (en) * | 2020-12-09 | 2021-03-23 | 深圳市快付通金融网络科技服务有限公司 | Method and device for generating and scanning offline payment code and scanning device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101482948A (en) * | 2008-01-07 | 2009-07-15 | 唐红波 | Method for implementing mobile phone payment based on two-dimensional code |
| CN102163291A (en) * | 2010-02-22 | 2011-08-24 | 上海镭立激光科技有限公司 | Laser marking multi-encrypted two-dimensional code fingerprint anti-counterfeit authentication method and system |
| CN102461229A (en) * | 2009-04-20 | 2012-05-16 | 欧特科尔有限公司 | System and method for personal certification using a mobile device |
| CN102842081A (en) * | 2011-06-23 | 2012-12-26 | 上海易悠通信息科技有限公司 | Method for generating two-dimensional code and implementing mobile payment by mobile phone |
-
2013
- 2013-12-12 CN CN201310677127.2A patent/CN104715370B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101482948A (en) * | 2008-01-07 | 2009-07-15 | 唐红波 | Method for implementing mobile phone payment based on two-dimensional code |
| CN102461229A (en) * | 2009-04-20 | 2012-05-16 | 欧特科尔有限公司 | System and method for personal certification using a mobile device |
| CN102163291A (en) * | 2010-02-22 | 2011-08-24 | 上海镭立激光科技有限公司 | Laser marking multi-encrypted two-dimensional code fingerprint anti-counterfeit authentication method and system |
| CN102842081A (en) * | 2011-06-23 | 2012-12-26 | 上海易悠通信息科技有限公司 | Method for generating two-dimensional code and implementing mobile payment by mobile phone |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105426765A (en) * | 2015-07-09 | 2016-03-23 | 深圳百云信息技术有限公司 | Two-dimensional code dynamic encryption and decryption algorithm |
| CN107194688A (en) * | 2017-05-16 | 2017-09-22 | 冯汉江 | In payment system and its method of the offline scenario based on Quick Response Code |
| CN107479359A (en) * | 2017-08-22 | 2017-12-15 | 北京智芯微电子科技有限公司 | Scan the time service method and device of ciphering two-dimension code |
| CN107479359B (en) * | 2017-08-22 | 2019-07-09 | 北京智芯微电子科技有限公司 | Scan the time service method and device of ciphering two-dimension code |
| CN108305169B (en) * | 2018-02-28 | 2022-05-20 | 易百信息技术(上海)股份有限公司 | Prepaid card transaction data storage method and device |
| CN108305169A (en) * | 2018-02-28 | 2018-07-20 | 易百信息技术(上海)股份有限公司 | Prepaid card transactions data save method and device |
| CN110555693A (en) * | 2018-06-04 | 2019-12-10 | 紫光同芯微电子有限公司 | system and method for realizing two-dimensional code security by using SIM card |
| CN110555693B (en) * | 2018-06-04 | 2023-09-12 | 紫光同芯微电子有限公司 | System and method for realizing two-dimension code safety by using SIM card |
| CN109167666A (en) * | 2018-08-31 | 2019-01-08 | 深圳众赢维融科技有限公司 | Identifying code generation, decryption, method of mobile payment and device |
| CN110335035A (en) * | 2019-04-25 | 2019-10-15 | 深圳市德名利电子有限公司 | A kind of antitheft dynamic payment figure code verification method taken the photograph and system and equipment |
| CN111582877B (en) * | 2020-05-09 | 2023-09-05 | 加减信息科技(深圳)有限公司 | Static two-dimensional code upgrading method and static two-dimensional code transaction-based method and device |
| CN111582877A (en) * | 2020-05-09 | 2020-08-25 | 加减信息科技(深圳)有限公司 | Static two-dimensional code upgrading method and static two-dimensional code transaction method and device |
| CN112541761B (en) * | 2020-12-09 | 2021-12-17 | 深圳市快付通金融网络科技服务有限公司 | Method and device for generating and scanning offline payment code and scanning device |
| CN112541761A (en) * | 2020-12-09 | 2021-03-23 | 深圳市快付通金融网络科技服务有限公司 | Method and device for generating and scanning offline payment code and scanning device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104715370B (en) | 2018-07-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112602300B (en) | System and method for password authentication of contactless cards | |
| CN104715370B (en) | The method and system of secure payment is carried out based on ciphering two-dimension code | |
| JP2022504072A (en) | Systems and methods for cryptographic authentication of contactless cards | |
| JP2022508010A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| US20150066778A1 (en) | Digital card-based payment system and method | |
| JP2022502888A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| Dmitrienko et al. | Secure free-floating car sharing for offline cars | |
| US20160277363A1 (en) | System and method of mobile authentication | |
| JP2022502901A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| JP2022501875A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| JP2022501872A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| US20220036349A1 (en) | Systems and methods for user authorization and access to services using contactless cards | |
| US20210385652A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| Chang | A secure operational model for mobile payments | |
| JP2022508026A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| CA3115107A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| JP2022501858A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| JP2022511281A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| JP2022502891A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| KR20150123551A (en) | Mobile Card Service Method with HCE and Mobile Terminal using the same | |
| KR20130009890A (en) | The security online payment system and those methods based on two dimensions code scanning with a device containing encrypted payment authentication information | |
| KR20130016145A (en) | The security online payment system and those methods based on two dimensions code scanning with a device containing encrypted payment authentication information | |
| JP6515080B2 (en) | INFORMATION PROCESSING SYSTEM, INFORMATION PROCESSING METHOD, AND PROGRAM | |
| JP2022501861A (en) | Systems and methods for cryptographic authentication of non-contact cards | |
| KR101691169B1 (en) | Method for distributing encrypt key, card reader, authentification server and system for distributing encrypt key thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| EXSB | Decision made by sipo to initiate substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |