CN113988828A - Payment method, payment system and security chip of digital currency - Google Patents
Payment method, payment system and security chip of digital currency Download PDFInfo
- Publication number
- CN113988828A CN113988828A CN202111299719.6A CN202111299719A CN113988828A CN 113988828 A CN113988828 A CN 113988828A CN 202111299719 A CN202111299719 A CN 202111299719A CN 113988828 A CN113988828 A CN 113988828A
- Authority
- CN
- China
- Prior art keywords
- payment
- security chip
- terminal
- chip
- application
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 108
- 238000012546 transfer Methods 0.000 claims abstract description 43
- 230000008569 process Effects 0.000 claims abstract description 33
- 238000004891 communication Methods 0.000 claims description 26
- 230000006870 function Effects 0.000 description 11
- 238000012790 confirmation Methods 0.000 description 8
- 238000010586 diagram Methods 0.000 description 7
- 241000700605 Viruses Species 0.000 description 3
- 238000012011 method of payment Methods 0.000 description 3
- 238000006243 chemical reaction Methods 0.000 description 2
- 238000004590 computer program Methods 0.000 description 2
- 230000007246 mechanism Effects 0.000 description 2
- 238000004806 packaging method and process Methods 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- ZXQYGBMAQZUVMI-GCMPRSNUSA-N gamma-cyhalothrin Chemical compound CC1(C)[C@@H](\C=C(/Cl)C(F)(F)F)[C@H]1C(=O)O[C@H](C#N)C1=CC=CC(OC=2C=CC=CC=2)=C1 ZXQYGBMAQZUVMI-GCMPRSNUSA-N 0.000 description 1
- 238000002955 isolation Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/04—Payment circuits
- G06Q20/06—Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
Abstract
The embodiment of the invention discloses a payment method, a payment system and a security chip of digital currency. One specific implementation of the payment method comprises the following steps: the payment terminal stores digital currency through a first security chip arranged in the payment terminal; the payment terminal transfers digital money to a second security chip arranged in the collection terminal through the first security chip; the receiving terminal stores the digital money transferred by the first security chip through the second security chip. Based on the technical scheme of the implementation mode, the payment terminal and the function module of the collection terminal do not participate in the payment process of the digital currency, the payment process of the digital currency is completely completed by the safety chips configured on the collection terminal and the payment terminal, and the safety of the digital currency payment is improved.
Description
Technical Field
The embodiment of the invention relates to the technical field of computers, in particular to a payment method, a payment system and a security chip of digital currency.
Background
At present, mobile payment methods all perform communication and transaction through the network and the functional module of the mobile phone. However, the security risk of the mobile phone itself (for example, the mobile phone is easily attacked by viruses) cannot be ignored, and leakage of sensitive information such as transaction records sometimes occurs. Therefore, although the current mobile payment method is convenient, the current mobile payment method also has great potential safety hazard.
Disclosure of Invention
It is an object of embodiments of the present invention to address at least the above problems and/or disadvantages and to provide at least the advantages described hereinafter.
The embodiment of the invention provides a payment method, a payment system and a security chip of digital currency, which improve the security of digital currency payment.
In a first aspect, a payment method for digital money is provided, which is applied to a payment system, the payment system includes a payment terminal and a collection terminal, a first secure chip is disposed in the payment terminal, a second secure chip is disposed in the collection terminal, and the method includes:
the payment terminal stores digital currency through the first security chip;
the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip;
the receiving terminal stores the digital money transferred by the first security chip through the second security chip.
Optionally, the payment terminal transfers digital money to the second secure chip of the collection terminal through the first secure chip, including:
the first safety chip sends digital currency to a second safety chip of the collection terminal according to the payment request generated by a first application on the payment terminal;
the second security chip receives the digital currency sent by the first security chip;
the second security chip sends payment information to a second application on the money receiving terminal according to the received digital currency;
the second security chip stores the payment information;
the second security chip returns the payment information to the first security chip;
the first security chip sends the payment information to a first application on the payment terminal;
the first secure chip stores the payment information.
Optionally, the second security chip stores a second public key and private key pair;
the first secure chip sends digital money to a second secure chip of the receiving terminal according to the payment request generated by the first application on the payment terminal, and the sending process includes:
the first security chip acquires a second public key of the second security chip;
the first security chip encrypts digital currency based on the second public key according to the payment request generated by the first application on the payment terminal, and sends the encrypted digital currency to the second security chip of the collection terminal;
the second security chip sends payment information to a second application on the cash receiving terminal according to the received digital currency, and the payment information includes:
and the second security chip decrypts the encrypted digital currency based on the second private key, and sends payment information to a second application on the money receiving terminal under the condition of successful decryption.
Optionally, the first security chip stores a first public key and private key pair;
the second secure chip returns the payment information to the first secure chip, including:
the second security chip acquires a first public key of the first security chip;
the second security chip encrypts the payment information based on the first public key and returns the encrypted payment information to the first security chip;
the first security chip sends the payment information to a first application on the payment terminal, and the payment information includes:
and the first security chip decrypts the encrypted payment information based on the first private key, and sends the decrypted payment information to the first application on the payment terminal under the condition of successful decryption.
Optionally, the first security chip stores identity authentication information of the first application; the second security chip stores the identity authentication information of the second application;
before the first secure chip sends digital money to the second secure chip of the receiving terminal according to the payment request generated by the first application on the payment terminal, the method includes:
the first security chip and the second security chip mutually exchange identity authentication information of the first application and the second application;
the first security chip verifies the identity authentication information of the second application, and the second security chip verifies the identity authentication information of the second application; and under the condition that the first security chip verifies the identity authentication information of the second application and the second security chip verifies the identity authentication information of the second application, the first security chip sends digital currency to the second security chip of the cash receiving terminal according to the payment request generated by the first application on the payment terminal.
Optionally, before the payment terminal transfers digital money to the second secure chip of the collection terminal through the first secure chip, the method includes:
the first security chip acquires the identity information of the payment user bound by the payment terminal, and determines that the payment terminal has the authority of driving the first security chip to transfer digital money to the second security chip under the condition that the identity information of the payment user bound by the payment terminal is authenticated;
and the second security chip acquires the identity information of the collection user bound by the collection terminal, and determines that the collection terminal has the right to drive the second security chip to be transferred by the first security chip under the condition that the identity information of the collection user bound by the collection terminal is authenticated.
Alternatively,
the first security chip acquires the user identity information of the payment terminal, and the method comprises the following steps:
the first security chip reads the mobile phone number of the payment user from the user identification module of the payment terminal;
the second security chip acquires the user identity information of the collection terminal, and the method comprises the following steps:
and the second security chip reads the mobile phone number of the payee from the user identification module of the payee terminal.
Optionally, the method further comprises:
the payment terminal and the collection terminal establish a Bluetooth communication channel;
when the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip, the first security chip and the second security chip transfer the digital money based on the Bluetooth communication channel.
In a second aspect, an embodiment of the present invention provides a payment system for digital money, including a payment terminal and a collection terminal, where the payment terminal is provided with a first secure chip, and the collection terminal is provided with a second secure chip;
the payment terminal is used for storing digital currency through the first security chip;
the payment terminal is used for transferring digital money to the second security chip of the collection terminal through the first security chip;
the cash receiving terminal is also used for storing the digital currency transferred by the first security chip through the second security chip.
Alternatively,
the first security chip is used for sending digital currency to the second security chip of the collection terminal according to the payment request generated by the first application on the payment terminal;
the second security chip is used for receiving the digital currency sent by the first security chip;
the second security chip is also used for sending payment information to a second application on the money receiving terminal according to the received digital currency;
the second security chip is used for storing the payment information;
the second security chip is also used for returning the payment information to the first security chip;
the first security chip is used for sending the payment information to a first application on the payment terminal;
the first security chip is used for storing the payment information.
Alternatively,
the second security chip is also used for storing a second public key and private key pair;
the first security chip is further configured to obtain a second public key of the second security chip;
the first security chip is further configured to encrypt digital currency based on the second public key according to the payment request generated by the first application on the payment terminal, and send the encrypted digital currency to the second security chip of the collection terminal;
the second security chip is further configured to decrypt the encrypted digital currency based on the second private key, and send payment information to a second application on the cash receiving terminal if decryption is successful.
Alternatively,
the first security chip is used for storing a first public key and private key pair;
the second security chip is further used for acquiring a first public key of the first security chip;
the second security chip is further configured to encrypt the payment information based on the first public key, and return the encrypted payment information to the first security chip;
the first security chip is further configured to send the payment information to a first application on the payment terminal, and includes:
the first security chip is used for decrypting the encrypted payment information based on the first private key, and is used for sending the decrypted payment information to the first application on the payment terminal under the condition that decryption is successful.
Alternatively,
the first security chip is used for storing the identity authentication information of the first application;
the second security chip is used for storing the identity authentication information of the second application;
the first security chip and the second security chip are used for mutually exchanging the identity authentication information of the first application and the second application;
the first security chip is used for verifying the identity authentication information of the second application;
the second security chip is used for verifying the identity authentication information of the second application;
and under the condition that the first security chip verifies the identity authentication information of the second application and the second security chip verifies the identity authentication information of the second application, the first security chip is used for sending digital currency to the second security chip of the money receiving terminal according to the payment request generated by the first application on the payment terminal.
Alternatively,
the first security chip is used for acquiring the identity information of the payment user bound by the payment terminal and determining that the payment terminal has the authority of driving the first security chip to transfer digital money to the second security chip under the condition that the identity information of the payment user bound by the payment terminal is authenticated;
the second security chip is used for acquiring the identity information of the collection user bound by the collection terminal and determining that the collection terminal has the authority of driving the second security chip to transfer digital money from the first security chip under the condition that the identity information of the collection user bound by the collection terminal is authenticated.
Alternatively,
the payment terminal and the collection terminal are used for establishing a Bluetooth communication channel;
the first security chip and the second security chip are used for transferring the digital money based on the Bluetooth communication channel.
In a third aspect, an embodiment of the present invention provides a payment method for digital currency, which is applied to a first secure chip, where the first secure chip is built in a payment terminal, and the method includes:
storing digital currency;
transferring digital money to a second secure chip of the cash receiving terminal such that the second secure chip stores the transferred digital money.
In a fourth aspect, an embodiment of the present invention provides a payment method for digital money, which is applied to a second secure chip, where the second secure chip is embedded in a cash receiving terminal, and the method includes:
transferring digital money by a first secure chip of a payment terminal;
storing the digital currency transferred by the first secure chip of the payment terminal.
In a fifth aspect, an embodiment of the present invention provides a first secure chip, including: at least one processor, and a memory communicatively coupled to the at least one processor, wherein the memory stores instructions executable by the at least one processor to cause the at least one processor to perform the method.
In a sixth aspect, an embodiment of the present invention provides a second secure chip, including: at least one processor, and a memory communicatively coupled to the at least one processor, wherein the memory stores instructions executable by the at least one processor to cause the at least one processor to perform the method.
The embodiment of the invention at least comprises the following beneficial effects:
the payment method of the digital money provided by the embodiment of the invention is applied to a payment system, the payment system comprises a payment terminal and a collection terminal, a first safety chip is arranged in the payment terminal, a second safety chip is arranged in the collection terminal, in the method, the payment terminal stores the digital money through the first safety chip, the payment terminal transfers the digital money to the second safety chip of the collection terminal through the first safety chip, and the collection terminal stores the digital money transferred by the first safety chip through the second safety chip. Namely, based on the method, the payment terminal and the function module of the collection terminal do not participate in the payment process of the digital currency, the payment process of the digital currency is completely completed by the safety chips configured on the collection terminal and the payment terminal, and the safety of the digital currency payment is improved.
Additional advantages, objects, and features of embodiments of the invention will be set forth in part in the description which follows and in part will become apparent to those having ordinary skill in the art upon examination of the following or may be learned from practice of embodiments of the invention.
Drawings
Fig. 1 is a schematic view of an application scenario of a digital currency-based payment method according to an embodiment of the present invention;
FIG. 2 is a flow chart of a method of payment of digital currency provided in one embodiment of the invention;
FIG. 3 is a block diagram of a payment system for digital currency according to an embodiment of the present invention;
FIG. 4 is a flow chart of a method of payment of digital currency provided in accordance with another embodiment of the present invention;
FIG. 5 is a flow chart of a method of payment of digital currency provided in accordance with yet another embodiment of the present invention;
FIG. 6 is a block diagram of a payment system for digital currency according to another embodiment of the present invention;
fig. 7 is a schematic structural diagram of a first security chip according to an embodiment of the present invention;
fig. 8 is a schematic structural diagram of a second security chip according to an embodiment of the present invention.
Detailed Description
The embodiments of the present invention will be described in further detail with reference to the accompanying drawings so that those skilled in the art can implement the embodiments of the invention with reference to the description.
The existing mobile payment methods are based on the communication and transaction of the functional module of the mobile phone. Taking the example that the user uses the third party payment platform to conduct transaction, the user installs a merchant APP in an operating system of a mobile phone, during payment, the user places an order to a transaction party background (merchant background) through the merchant APP, starts the third party payment platform APP, the third party payment platform APP requests payment to the third party payment platform background, and after the third party payment platform background pays the merchant background, the user payment result is returned to the third party payment platform APP. Namely, the payment process is realized based on the functional module and the system of the mobile phone.
However, the mobile phone itself has a system bug, for example, the Android system and the IOS system of the mobile phone may be upgraded regularly or irregularly, so that the system has a known or unknown security bug, and thus, the transaction cannot be performed safely and effectively. In addition, the mobile phone operating system is open and can be loaded with a lot of software, namely, the Trojan horse virus program can be loaded and run on the mobile phone operating system, so that the transaction information and sensitive data are leaked at risk, and the safety is low. Based on this, the embodiment of the invention provides a payment method of digital money, which aims to arrange a safety chip in each of a payment terminal and a collection terminal, store the digital money by using the safety chip, and directly transfer the digital money to the safety chip of the collection terminal by the payment terminal through the safety chip when the payment of the digital money is required to be carried out to the collection terminal through the payment terminal, so that the functional modules of the payment terminal and the collection terminal are prevented from participating in the payment process of the digital money, the payment process of the digital money is completely completed by the collection terminal and the safety chip configured by the payment terminal, and the safety of the digital money payment is improved.
Fig. 1 is a schematic view illustrating an application scenario of a payment method for digital currency according to an embodiment of the present invention. Fig. 1 includes a payment system 100, a payment terminal 110, and a receipt terminal 120. The payment terminal 110 is installed with a first application having a payment function, where the first application may be a digital currency wallet, the payment terminal 110 is embedded with a first security chip 130, the payment terminal 110 shown in fig. 1 is a mobile phone, and in practical applications, the payment terminal 110 may also be a PAD (tablet computer), a wearable device, and the like, which is not limited in this embodiment of the present invention. The receiving terminal 120 is installed with a second application having a receiving function, the receiving terminal 120 is embedded with a second security chip 140, the second application may be a digital money wallet, the receiving terminal 120 shown in fig. 1 is exemplified by a mobile phone, in an actual application, the payment terminal 110 may also be a PAD (tablet computer), a wearable device, and the like, which is not limited in this embodiment of the present invention. The first security chip 130 may be separately built in the payment terminal 110, and may also be packaged with a bluetooth module of the payment terminal 110 to form a first bluetooth film card, attached to a mobile phone SIM card, and the first security chip 130 communicates with the SIM card through an ISO7816 interface. Correspondingly, the second security chip 140 may be separately built in the collection terminal 120, and may be packaged with a bluetooth module of the collection terminal 120 to form a second bluetooth film card, which is attached to the SIM card, and the second security chip 140 communicates with the SIM card through an ISO7816 interface.
It should be noted that although the first application and the second application are installed at the payment terminal 110 and the collection terminal 120, respectively, the process of transferring the digital money from the payment terminal 110 to the collection terminal 120 is directly completed by the first secure chip 130 and the second secure chip 140, the first application and the second application do not directly participate in the process of transferring the digital money from the payment terminal 110 to the collection terminal 120, the first application is only used for generating a payment request and receiving payment information returned by the first secure chip 130, and the second application is only used for receiving payment information sent by the second secure chip 140. In other words, the first application and the second application actually provide an interface for the user to interact with the corresponding terminal, so that the user can input the payment amount, confirm whether the payment is executed or not, confirm whether the payment is completed or not, and the like, but the forwarding and the storage of the digital money are not participated by the application programs on the payment terminal 110 and the collection terminal 120, and are not interfered by the payment user and the collection user, so that the physical isolation of the payment process of the digital money can be realized by using the security chip, and the security of the digital money payment is improved.
Example one
Fig. 2 is a flowchart of a method for paying for digital money according to an embodiment of the present invention. The payment process of the digital money from the payment terminal 110 to the receipt terminal 120 will be described below by way of example with reference to fig. 1. The payment method of the digital currency provided by the embodiment of the invention is applied to a payment system 100, the payment system 100 comprises a payment terminal 110 and a collection terminal 120, a first security chip 130 is arranged in the payment terminal 110, and a second security chip 140 is arranged in the collection terminal 120. The method comprises the following steps:
at step 210, the payment terminal 110 stores digital money through the first security chip 130.
Digital currency (DC/EP) is usually issued by a central bank or authorized by the central bank, and legal currency represented by an encryption technology string representing a specific amount of money is supported by cryptography. The digital currency issuing authorities are central banks. The digital money operator is usually a third party operator with a right to issue the DC/EP, which is permitted by the central bank, for example, a commercial bank, a third party payment platform, and the like, and can obtain the right to issue the DC/EP under the permission of the central bank.
Here, the payment terminal 110 may provide the payment terminal 110 with a specific amount of digital money according to the digital money conversion request submitted by the payment terminal 110 by submitting the digital money conversion request to the digital money execution agency. In the above process, when the payment terminal 110 firstly exchanges the digital money with the digital money operating mechanism, the payment terminal may first register and open a digital money wallet, which is installed on the payment terminal 110 and may manage the digital money in the payment terminal 110. Accordingly, the receiving terminal 120 may also register with the digital money execution agency to open a digital money wallet installed on the receiving terminal 120, which may manage digital money in the receiving terminal 120. In the embodiment of the present invention, the payment terminal 110 stores digital money through the first security chip 130, and the collection terminal 120 stores digital money through the second security chip 140, so as to physically isolate the digital money and ensure the security of the digital money.
In step 220, the payment terminal 110 transfers digital money to the second security chip 140 of the collection terminal 120 through the first security chip 130.
In some embodiments, the payment terminal 110 transfers digital money to the second secure chip 140 of the collection terminal 120 through the first secure chip 130, including:
in step S1, the first secure chip 130 sends the digital money to the second secure chip 140 of the receiving terminal 120 according to the payment request generated by the first application on the payment terminal 110.
Wherein the first application may be a digital money wallet installed at the payment terminal 110. The paying user needs to log into the digital money wallet first. After the payment user logs in the digital money wallet, the digital money wallet may generate a payment request according to an operation of the user on the operation interface, where the payment request carries a payment amount input through the operation interface of the payment terminal 110, and may also carry identity information of the payment user, an identifier of the payment terminal 110, an identifier of the collection terminal 120, identity information of the collection user, and the like, and the first security chip 130 sends the digital money to the second security chip 140 of the collection terminal 120 according to the payment request. Here, the first application may be another third-party application that requires payment using digital money, the third-party application generating a payment request according to an operation of a payer, the third-party application calling a digital money wallet according to the payment request, and the first secure chip 130 transmitting the digital money to the second secure chip 140 of the payee terminal 120 according to the payment request.
Further, in order to improve the security of the digital money, the first security chip 130 encrypts the digital money before sending the digital money to the second security chip 140. Specifically, the second security chip 140 stores a second public key and private key pair; the first secure chip 130 obtains a second public key of the second secure chip 140; the first secure chip 130 encrypts the digital money based on the second public key according to the payment request generated by the first application on the payment terminal 110, and transmits the encrypted digital money to the second secure chip 140 of the receipt terminal 120.
In step S2, the second secure chip 140 receives the digital money transmitted by the first secure chip 130.
In step S3, the second security chip 140 sends payment information to the second application on the receiving terminal 120 according to the received digital currency.
Wherein the second application may be a digital money wallet installed at the receiving terminal 120. The receiving user needs to log into the digital money wallet first. After the receiving user logs in to the digital money wallet, the second security chip 140 may send payment information to the digital money wallet on the receiving terminal 120 according to the received digital money. The payment information may include the amount of digital currency received, the identity of the payment terminal 110, the identity information of the paying user, etc. Here, the second application may also be another third-party application that needs to use digital currency to realize payment, and when the second secure chip 140 receives the digital currency, the second secure chip 140 may send payment information to the third-party application.
In some examples, after the second secure chip 140 sends the payment information to the second application, the payee may perform a viewing confirmation on the payment information through the second application, the second application may generate confirmation information for the payment information according to an operation of the payee, and the second secure chip 140 stores the payment information and returns the payment information to the first secure chip 130 according to the confirmation information.
Further, the digital currency received by the second secure chip 140 is actually the digital currency encrypted by the first secure chip 130 based on the second public key. In this step, the second security chip 140 decrypts the encrypted digital currency based on the second private key, and if the decryption is successful, the second security chip 140 sends payment information to the second application on the cash receiving terminal 120. Thus, even if another receiving terminal 120 receives the digital money, the other receiving terminal 120 cannot decrypt the digital money, that is, cannot complete the payment process of the digital money, because the other receiving terminal 120 does not have the correct second private key of the receiving terminal 120.
In step S4, the second security chip 140 stores the payment information, thereby ensuring the security of the payment information and preventing sensitive information contained in the payment information from being leaked. The payee may perform an inquiry operation on the second application, and the second security chip 140 provides the payment information to the second application according to the inquiry request generated by the second application.
In step S5, the second secure chip 140 returns payment information to the first secure chip 130, thereby causing the first secure chip 130 to determine that the payment process for the digital money has been completed.
Further, the first secure chip 130 stores a first public key and private key pair. In order for the first secure chip 130 to determine that the digital money has been transferred to the second secure chip 140 of the correct cash receiving terminal 120, the second secure chip 140 returns payment information to the first secure chip 130, including: the second secure chip 140 obtains the first public key of the first secure chip 130; the second secure chip 140 encrypts the payment information based on the first public key, and returns the encrypted payment information to the first secure chip 130.
In step S6, the first secure chip 130 sends payment information to the first application on the payment terminal 110. The payer can check and confirm the payment information through the first application, the first application can generate the confirmation information for the payment information again according to the operation of the payer, and the first security chip 130 stores the payment information according to the confirmation information.
Further, in this step, the second secure chip 140 returns the encrypted payment information to the first secure chip 130, so that the sending of the payment information by the first secure chip 130 to the first application on the payment terminal 110 includes: the first secure chip 130 decrypts the encrypted payment information based on the first private key, and if the decryption is successful, the first secure chip 130 sends the decrypted payment information to the first application on the payment terminal 110. When the decryption is successful, it indicates that the payment information is from the correct second security chip 140, i.e. from the correct receiving terminal 120, and that the payment of the digital money by the first security chip 130 is successful.
In step S7, the first security chip 130 stores the payment information, thereby ensuring the security of the payment information and preventing sensitive information contained in the payment information from being leaked. The payer may perform an inquiry operation on the first application, and the first security chip 130 provides payment information to the first application according to the inquiry request generated by the first application.
In some examples, the first secure chip 130 stores identity authentication information of the first application; the second security chip 140 stores the authentication information of the second application. Therefore, in order to confirm the legitimacy of the first application and the second application, the identities of the first application and the second application are authenticated. In the embodiment of the invention, the first application and the second application have the function of payment by using the digital currency, so that the authenticity of the digital currency can be further determined by verifying the legality of the identities of the first application and the second application.
Specifically, before the first secure chip 130 sends the digital money to the second secure chip 140 of the receiving terminal 120 according to the payment request generated by the first application on the payment terminal 110, the method further includes: the first secure chip 130 and the second secure chip 140 exchange the identity authentication information of the first application and the second application with each other; the first security chip 130 verifies the identity authentication information of the second application, and the second security chip 140 verifies the identity authentication information of the second application; and in case that the first secure chip 130 verifies the authentication information of the second application and the second secure chip 140 verifies the authentication information of the second application, the first secure chip 130 sends the digital money to the second secure chip 140 of the payee terminal 120 according to the payment request generated by the first application on the payment terminal 110. Here, when the first application and the second application are digital money wallets, the identification authentication information may be an authentication certificate issued by the digital money execution authority.
In some embodiments, before the payment terminal 110 transfers the digital money to the second security chip 140 of the collection terminal 120 through the first security chip 130, the first security chip 130 authenticates the payment terminal 110 to ensure that the payment terminal 110 has the authority to drive the first security chip 130 to transfer the digital money, and the second security chip 140 authenticates the collection terminal 120 to ensure that the collection terminal 120 has the authority to drive the second security chip 140 to be transferred with the digital money, so as to prevent the first security chip 130 and the second security chip 140 from being maliciously used by other terminals, and thus, the digital money stored in the first security chip 130 and the second security chip 140 is stolen.
Specifically, the first secure chip 130 obtains the identity information of the payment user bound to the payment terminal 110, and determines that the payment terminal 110 has the right to drive the first secure chip 130 to transfer digital money to the second secure chip 140 if the authentication of the identity information of the payment user bound to the payment terminal 110 passes. The second security chip 140 obtains the identity information of the receiving user bound to the receiving terminal 120, and determines that the receiving terminal 120 has the right to drive the second security chip 140 to be transferred by the first security chip 130 when the identity information of the receiving user bound to the receiving terminal 120 is authenticated.
Here, more specifically, the authority of the payment terminal 110 to drive the first secure chip 130 to transfer digital money to the second secure chip 140 may be a series of steps for implementing transfer of digital money, which the first secure chip 130 performs according to a payment request generated by a first application on the payment terminal 110, including, for example: verifying the identity of the second application, encrypting the digital currency, sending the digital currency to the second secure chip 140, receiving payment information returned by the second secure chip 140, sending payment information to the first application, and so on. In other words, when the first secure chip 130 is not authenticated to the payment terminal 110, the first secure chip 130 does not perform a transfer step for digital money. Accordingly, the authority of the cash receiving terminal 120 to drive the second secure chip 140 to be transferred by the first secure chip 130 may be a series of steps of the second secure chip 140 interacting with the first secure chip 130 for implementing the transfer of the digital money, including, for example: and verifying the identity of the second application, decrypting the digital currency, sending payment information to the second application, returning the payment information to the first secure chip 130, and the like. In other words, when the second security chip 140 is not verified to the cash receiving terminal 120, the second security chip 140 does not perform the step of transferring the digital money.
In some examples, the first security chip 130 reads a mobile phone number of the payment user from a subscriber identity module of the payment terminal 110, and in case that the mobile phone number of the payment user read by the first security chip 130 is identical to a mobile phone number pre-stored in the first security chip 130, the first security chip 130 passes the authentication of the payment terminal 110. The second security chip 140 reads the mobile phone number of the payee from the user identification module of the payee terminal 120, and the second security chip 140 passes the verification of the payee terminal 120 when the mobile phone number of the payee read by the second security chip 140 is identical to the mobile phone number pre-stored in the second security chip 140. Here, the subscriber identity module may be a SIM card inserted into a mobile phone, or may be a software module that is integrated into the payment terminal 110 or the payment receiving terminal 120 and can implement a subscriber identity function.
The existing mobile payment methods all need to rely on a mobile network, and the transaction process cannot be realized under the condition of no network caused by mobile phone arrearages or under the condition of poor network signals such as a basement. Based on this, in some embodiments, the transfer of digital money is accomplished based on a bluetooth communication channel. Specifically, before the transfer of the digital money is performed, the payment terminal 110 establishes a bluetooth communication channel with the receipt terminal 120; when the payment terminal 110 transfers digital money to the second security chip 140 of the collection terminal 120 through the first security chip 130, the first security chip 130 and the second security chip 140 perform digital money transfer based on a bluetooth communication channel. It should be understood that various items of information interacted between the first secure chip 130 and the second secure chip 140, such as the authentication information of the first application and the second application, the first public key, the second public key, the digital currency, and the transaction information, are exchanged based on the bluetooth communication channel.
During the process of establishing the bluetooth communication channel between the payment terminal 110 and the collection terminal 120, the identity may be exchanged and verified, for example, terminal identification, mobile phone number, etc. may be exchanged to confirm that the bluetooth communication connection is established with the terminal that needs to transfer digital money.
When the first security chip 130 and the second security chip 140 complete the transfer of digital money, the bluetooth communication channel may be closed. For example, after the second secure chip 140 returns payment information to the first secure chip 130, the second secure chip 140 may close the bluetooth module of the cash receiving terminal 120, and after the first secure chip 130 sends the payment information to the first application on the payment terminal 110 and the first secure chip 130 receives a confirmation message returned by the first application, the first secure chip 130 closes the bluetooth module of the payment terminal 110.
According to the above-mentioned digital money transfer process, the first application may be configured to generate a payment request and perform a confirmation query on payment information, the second application may be configured to perform a confirmation query on payment information, that is, neither the first application nor the second application participates in the digital money transfer process, and the first security chip 130 and the second security chip 140 are responsible for transferring and storing digital money, so that the payment of digital money is physically isolated from other functional modules and operating systems of the payment terminal 110 and the collection terminal 120, and the security of digital money is ensured.
In step 230, the receiving terminal 120 stores the digital money transferred by the first security chip 130 through the second security chip 140.
In summary, the payment method for digital money provided in the embodiments of the present invention is applied to a payment system, where the payment system includes a payment terminal and a collection terminal, the payment terminal has a first security chip, the collection terminal has a second security chip, the payment terminal stores digital money through the first security chip, the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip, and the collection terminal stores digital money transferred by the first security chip through the second security chip. Namely, based on the method, the payment terminal and the function module of the collection terminal do not participate in the payment process of the digital currency, the payment process of the digital currency is completely completed by the safety chips configured on the collection terminal and the payment terminal, and the safety of the digital currency payment is improved.
Example two
The implementation process of the payment method for digital currency provided by the embodiment of the invention is described below with reference to a specific scenario.
Fig. 3 is a schematic diagram of an architecture of a payment system according to an embodiment of the present invention. The mobile phone of user a is used as a payment terminal (also called as a terminal a), and the mobile phone of user B is used as a payment terminal. The mobile phone of the user A is internally provided with a Bluetooth film card 01, the Bluetooth film card 01 is formed by packaging a security chip SE01 and a Bluetooth module BT01, and the Bluetooth film card 01 is communicated with the SIM card 01 through an ISO7816 interface. Correspondingly, a Bluetooth film card 02 is arranged in the mobile phone of the user B, the Bluetooth film card 02 is formed by packaging a security chip SE02 and a Bluetooth module BT02, and the Bluetooth film card 02 is communicated with the SIM card 02 through an ISO7816 interface. The payment process of the digital currency by the user a and the user B through the respective mobile phones is described with reference to the payment system illustrated in fig. 3.
1. And (4) safe login: and the user A and the user B can safely log in the respective digital currency wallets through respective mobile phone interfaces. In the login process, the Bluetooth film sticking card needs to directly perform strong identity authentication with the SIM card of the user through an ISO7816 interface, and after the authentication is passed, the user is fed back to the successful login. And after the user B logs in, the Bluetooth film sticking card 02 generates a Bluetooth connection password.
2. Establishing a Bluetooth communication channel: the user A inputs the identity information of the user B through a mobile phone interface, the identity information of the user B is used for establishing a Bluetooth communication channel between the end A and the end B, and can be understood as a terminal identification of the end B, and the form of the terminal identification is not limited to two-dimensional codes, serial numbers, mobile phone numbers and the like. Meanwhile, the identity information of the user B should include a bluetooth connection password. After the user A inputs the identity information of the user B through the mobile phone interface, the identity information of the user B is transmitted to a security chip SE01 of the Bluetooth film sticking card 01 through an ISO7816 interface, and a Bluetooth module BT01 is started by the security chip SE01 to be connected to a Bluetooth module BT02 of the user B; the user B establishes a Bluetooth communication channel under the condition that the Bluetooth connection password is confirmed to be correct; the secure chip SE01 of the user A returns a Bluetooth communication channel through the ISO7816 interface to establish a successful identifier to the mobile phone interface.
3. Trading: the user A inputs payment amount through a mobile phone interface, the digital currency wallet generates a payment request based on the operation of the user A, the payment request carries the payment amount and is transmitted to the Bluetooth film card 01 through an ISO7816 interface, the Bluetooth film card 01 is communicated with a Bluetooth module BT02 on the Bluetooth film card 02 through a Bluetooth module BT01 of the Bluetooth film card 01, and the security chip SE01 and the security chip SE02 perform encryption exchange to verify the authenticity of the digital currency, the digital currency issuing mechanism, the payment information and other data. In the above process, the secure chip SE01 and the secure chip SE02 exchange the certificate of authentication of the digital money wallet, the public key, and the operations of encrypting and decrypting the digital money, and the like, so that the digital money is transferred from the secure chip SE01 to the secure chip SE 02. The Bluetooth film card 02 feeds back the transaction number and the transaction result of the user B through an ISO7816 interface, and displays the transaction number and the transaction result on a mobile phone interface of the user B.
4. And (4) ending the transaction: after the user B confirms payment information through the mobile phone interface, the security chip SE02 of the Bluetooth chip card 02 informs the security chip SE01 of the Bluetooth chip card 01 of a transaction result through the Bluetooth module BT02 and the Bluetooth module BT01, and the Bluetooth chip card 02 closes the Bluetooth module BT 02; the user A displays the transaction result, and the Bluetooth chip card 01 closes the transaction channel of the Bluetooth module BT 01; the secure chip SE01 and the secure chip SE02 respectively store transaction information securely.
In summary, the payment method for digital money provided in the embodiments of the present invention is applied to a payment system, where the payment system includes a payment terminal and a collection terminal, the payment terminal has a first security chip, the collection terminal has a second security chip, the payment terminal stores digital money through the first security chip, the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip, the collection terminal stores digital money transferred by the first security chip through the second security chip, and the first security chip and the second security chip communicate with each other through a bluetooth communication channel. Based on this, the method can achieve the following technical effects:
1. off-line transactions: the digital money is directly transferred from the payment terminal of the A subscriber to the collection terminal of the B subscriber through the secure communication channel.
2. Ultra-strong security: the user confirms the information through the ISO7816 interface of the mobile phone, the user and the mobile phone do not participate in the transaction flow of the digital currency, the digital currency transaction is realized through a device independent of the mobile phone, namely a Bluetooth film card, and the Bluetooth film card provides an independent Bluetooth communication channel and an independent operation security chip, so that the transaction channel and the transaction process are independent of the mobile phone, viruses and security holes brought by the mobile phone are avoided, and the transaction security is ultrahigh.
3. The transaction is portable: the users can directly carry out off-line transaction, and the method is convenient and safe and has simple operation method.
4. Active safety protection: the transaction is encrypted by establishing connection, encrypting a transaction channel and encrypting a transaction method.
EXAMPLE III
Fig. 4 is a flowchart of a payment method of digital currency according to an embodiment of the present invention. The method may be applied to the first secure chip 130 illustrated in fig. 1, the first secure chip 130 being built in the payment terminal 110, the method including:
at step 410, digital currency is stored.
In step 420, the digital money is transferred to the second security chip 140 of the receiving terminal 120, so that the second security chip 140 stores the transferred digital money.
In summary, the payment method for digital money provided in the embodiments of the present invention is applied to a first security chip, where the first security chip is built in a payment terminal, and the first security chip stores digital money and transfers the digital money to a second security chip of a collection terminal, so that the second security chip can store the digital money transferred by the first security chip. Namely, based on the method, the payment terminal and the function module of the collection terminal do not participate in the payment process of the digital currency, the payment process of the digital currency is completely completed by the safety chips configured on the collection terminal and the payment terminal, and the safety of the digital currency payment is improved.
Example four
Fig. 5 is a flowchart of a payment method for digital currency according to an embodiment of the present invention. The method may be applied to the second security chip 140 illustrated in fig. 1, where the second security chip 140 is embedded in the cash receiving terminal 120, and the method includes:
the digital money is transferred by the first security chip 130 of the payment terminal 110, step 510.
The digital money transferred by the first security chip 130 of the payment terminal 110 is stored, step 520.
In summary, the payment method for digital money provided in the embodiment of the present invention is applied to the second security chip, the second security chip is disposed in the cash receiving terminal, and the second security chip transfers digital money from the first security chip of the payment terminal to the second security chip, and stores the digital money transferred from the first security chip. Namely, based on the method, the payment terminal and the function module of the collection terminal do not participate in the payment process of the digital currency, the payment process of the digital currency is completely completed by the safety chips configured on the collection terminal and the payment terminal, and the safety of the digital currency payment is improved.
EXAMPLE five
Fig. 6 is a schematic architecture diagram of a payment system 600 according to an embodiment of the present invention. The payment system 600 provided by the embodiment of the invention comprises a payment terminal 610 and a collection terminal 620, wherein a first security chip 630 is arranged in the payment terminal 610, and a second security chip 640 is arranged in the collection terminal 620; the payment terminal 610 is used for storing digital currency through the first security chip 630; the payment terminal 610 is used for transferring digital money to the second security chip 640 of the collection terminal 620 through the first security chip 630; the cash receiving terminal 620 is further configured to store the digital money transferred by the first secure chip 630 through the second secure chip 640.
In some embodiments, the first secure chip 630 is configured to send digital money to the second secure chip 640 of the receiving terminal 620 according to the payment request generated by the first application on the payment terminal 610; the second secure chip 640 is configured to receive the digital currency sent by the first secure chip 630; the second security chip 640 is further configured to send payment information to a second application on the cash receiving terminal 620 according to the received digital currency; the second security chip 640 is configured to store the payment information; the second secure chip 640 is further configured to return the payment information to the first secure chip 630; the first security chip 630 is configured to send the payment information to a first application on the payment terminal 610; the first security chip 630 is configured to store the payment information.
In some embodiments, the second security chip 640 is further configured to store a second public key and private key pair; the first secure chip 630 is further configured to obtain a second public key of the second secure chip 640; the first security chip 630 is further configured to encrypt digital money based on the second public key according to the payment request generated by the first application on the payment terminal 610, and send the encrypted digital money to the second security chip 640 of the collection terminal 620; the second security chip 640 is further configured to decrypt the encrypted digital currency based on the second private key, and if the decryption is successful, send payment information to a second application on the cash receiving terminal 620.
In some embodiments, the first security chip 630 is configured to store a first public key and private key pair; the second secure chip 640 is further configured to obtain a first public key of the first secure chip 630; the second secure chip 640 is further configured to encrypt the payment information based on the first public key, and return the encrypted payment information to the first secure chip 630; the first security chip 630 is further configured to send the payment information to a first application on the payment terminal 610, including: the first security chip 630 is configured to decrypt the encrypted payment information based on the first private key, and if the decryption is successful, is configured to send the decrypted payment information to the first application on the payment terminal 610.
In some embodiments, the first security chip 630 is configured to store identity authentication information of the first application; the second security chip 640 is configured to store the identity authentication information of the second application; the first secure chip 630 and the second secure chip 640 are configured to exchange identity authentication information of the first application and the second application with each other; the first security chip 630 is configured to verify the identity authentication information of the second application; the second security chip 640 is configured to verify the identity authentication information of the second application; and in the case that the authentication information of the second application is verified by the first secure chip 630 and the authentication information of the second application is verified by the second secure chip 640, the first secure chip 630 is configured to send digital money to the second secure chip 640 of the receiving terminal 620 according to the payment request generated by the first application on the payment terminal 610.
In some embodiments, the first secure chip 630 is configured to obtain the identity information of the payment terminal 610 bound to the payment terminal, and determine that the payment terminal 610 has the right to drive the first secure chip 630 to transfer digital money to the second secure chip 640 if the identity information of the payment terminal 610 bound to the payment terminal passes authentication; the second security chip 640 is configured to obtain the identity information of the receiving user bound to the receiving terminal 620, and determine that the receiving terminal 620 has a right to drive the second security chip 640 to transfer digital money from the first security chip 630 when the identity information of the receiving user bound to the receiving terminal 620 passes authentication.
In some embodiments, the payment terminal 610 and the collection terminal 620 are configured to establish a bluetooth communication channel; the first secure chip 630 and the second secure chip 640 are configured to transfer the digital money based on the bluetooth communication channel.
In summary, in the payment system based on digital money provided in the embodiments of the present invention, the payment system includes a payment terminal and a collection terminal, the payment terminal has a first security chip, the collection terminal has a second security chip, the payment terminal stores digital money through the first security chip, the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip, and the collection terminal stores digital money transferred by the first security chip through the second security chip. Namely, based on the system, the payment terminal and the function module of the collection terminal do not participate in the payment process of the digital currency, and the payment process of the digital currency is completely completed by the safety chips configured on the collection terminal and the payment terminal, so that the safety of the digital currency payment is improved.
EXAMPLE six
Fig. 7 is a schematic structural diagram of a first security chip according to an embodiment of the present invention. As shown in fig. 7, the first secure chip 700 includes: at least one processor 710, and a memory 720 communicatively coupled to the at least one processor 710, wherein the memory stores instructions executable by the at least one processor to cause the at least one processor to perform the method.
Specifically, the memory 720 and the processor 710 are connected together via the bus 730, and can be a general memory and a processor, which are not limited in detail here, and when the processor 710 executes a computer program stored in the memory 720, the operations and functions described in the embodiments of the present invention in conjunction with fig. 1, fig. 2, and fig. 4 can be performed.
EXAMPLE seven
Fig. 8 shows a second secure chip of an embodiment of the invention. As shown in fig. 8, the second secure chip 800 includes: at least one processor 810, and a memory 820 communicatively coupled to the at least one processor 810, wherein the memory stores instructions executable by the at least one processor for causing the at least one processor to perform the method.
Specifically, the memory 820 and the processor 810 are connected together via the bus 830, and can be general-purpose memory and processor, which are not specifically limited herein, and when the processor 810 executes the computer program stored in the memory 820, the operations and functions described in the embodiments of the present invention in conjunction with fig. 1, fig. 2, and fig. 5 can be performed.
While embodiments of the present invention have been disclosed above, it is not limited to the applications listed in the description and the embodiments. It is fully applicable to a variety of fields in which embodiments of the present invention are suitable. Additional modifications will readily occur to those skilled in the art. Therefore, the embodiments of the invention are not to be limited to the specific details and illustrations shown and described herein, without departing from the general concept defined by the claims and their equivalents.
Claims (19)
1. The payment method of the digital currency is applied to a payment system, the payment system comprises a payment terminal and a collection terminal, a first safety chip is arranged in the payment terminal, a second safety chip is arranged in the collection terminal, and the method comprises the following steps:
the payment terminal stores digital currency through the first security chip;
the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip;
the receiving terminal stores the digital money transferred by the first security chip through the second security chip.
2. A payment method as recited in claim 1, wherein the payment terminal transferring digital money to the second secure chip of the payment terminal via the first secure chip comprises:
the first safety chip sends digital currency to a second safety chip of the collection terminal according to the payment request generated by a first application on the payment terminal;
the second security chip receives the digital currency sent by the first security chip;
the second security chip sends payment information to a second application on the money receiving terminal according to the received digital currency;
the second security chip stores the payment information;
the second security chip returns the payment information to the first security chip;
the first security chip sends the payment information to a first application on the payment terminal;
the first secure chip stores the payment information.
3. A payment method as recited in claim 2, wherein the second secure chip stores a second public-private key pair;
the first secure chip sends digital money to a second secure chip of the receiving terminal according to the payment request generated by the first application on the payment terminal, and the sending process includes:
the first security chip acquires a second public key of the second security chip;
the first security chip encrypts digital currency based on the second public key according to the payment request generated by the first application on the payment terminal, and sends the encrypted digital currency to the second security chip of the collection terminal;
the second security chip sends payment information to a second application on the cash receiving terminal according to the received digital currency, and the payment information includes:
and the second security chip decrypts the encrypted digital currency based on the second private key, and sends payment information to a second application on the money receiving terminal under the condition of successful decryption.
4. A payment method as recited in claim 3, wherein the first secure chip stores a first public-private key pair;
the second secure chip returns the payment information to the first secure chip, including:
the second security chip acquires a first public key of the first security chip;
the second security chip encrypts the payment information based on the first public key and returns the encrypted payment information to the first security chip;
the first security chip sends the payment information to a first application on the payment terminal, and the payment information includes:
and the first security chip decrypts the encrypted payment information based on the first private key, and sends the decrypted payment information to the first application on the payment terminal under the condition of successful decryption.
5. A payment method as defined in claim 2, wherein the first secure chip stores authentication information of the first application; the second security chip stores the identity authentication information of the second application;
before the first secure chip sends digital money to the second secure chip of the receiving terminal according to the payment request generated by the first application on the payment terminal, the method includes:
the first security chip and the second security chip mutually exchange identity authentication information of the first application and the second application;
the first security chip verifies the identity authentication information of the second application, and the second security chip verifies the identity authentication information of the second application; and under the condition that the first security chip verifies the identity authentication information of the second application and the second security chip verifies the identity authentication information of the second application, the first security chip sends digital currency to the second security chip of the cash receiving terminal according to the payment request generated by the first application on the payment terminal.
6. A payment method as recited in claim 1, wherein before the payment terminal transfers digital money to the second secure chip of the payment terminal via the first secure chip, the method comprises:
the first security chip acquires the identity information of the payment user bound by the payment terminal, and determines that the payment terminal has the authority of driving the first security chip to transfer digital money to the second security chip under the condition that the identity information of the payment user bound by the payment terminal is authenticated;
and the second security chip acquires the identity information of the collection user bound by the collection terminal, and determines that the collection terminal has the right to drive the second security chip to be transferred by the first security chip under the condition that the identity information of the collection user bound by the collection terminal is authenticated.
7. A payment method as recited in claim 6,
the first security chip acquires the user identity information of the payment terminal, and the method comprises the following steps:
the first security chip reads the mobile phone number of the payment user from the user identification module of the payment terminal;
the second security chip acquires the user identity information of the collection terminal, and the method comprises the following steps:
and the second security chip reads the mobile phone number of the payee from the user identification module of the payee terminal.
8. A payment method as recited in claim 1, wherein the method further comprises:
the payment terminal and the collection terminal establish a Bluetooth communication channel;
when the payment terminal transfers digital money to the second security chip of the collection terminal through the first security chip, the first security chip and the second security chip transfer the digital money based on the Bluetooth communication channel.
9. The payment system of the digital currency is characterized by comprising a payment terminal and a collection terminal, wherein a first safety chip is arranged in the payment terminal, and a second safety chip is arranged in the collection terminal;
the payment terminal is used for storing digital currency through the first security chip;
the payment terminal is used for transferring digital money to the second security chip of the collection terminal through the first security chip;
the cash receiving terminal is also used for storing the digital currency transferred by the first security chip through the second security chip.
10. The payment system of claim 9,
the first security chip is used for sending digital currency to the second security chip of the collection terminal according to the payment request generated by the first application on the payment terminal;
the second security chip is used for receiving the digital currency sent by the first security chip;
the second security chip is also used for sending payment information to a second application on the money receiving terminal according to the received digital currency;
the second security chip is used for storing the payment information;
the second security chip is also used for returning the payment information to the first security chip;
the first security chip is used for sending the payment information to a first application on the payment terminal;
the first security chip is used for storing the payment information.
11. The payment system of claim 10,
the second security chip is also used for storing a second public key and private key pair;
the first security chip is further configured to obtain a second public key of the second security chip;
the first security chip is further configured to encrypt digital currency based on the second public key according to the payment request generated by the first application on the payment terminal, and send the encrypted digital currency to the second security chip of the collection terminal;
the second security chip is further configured to decrypt the encrypted digital currency based on the second private key, and send payment information to a second application on the cash receiving terminal if decryption is successful.
12. The payment system of claim 11,
the first security chip is used for storing a first public key and private key pair;
the second security chip is further used for acquiring a first public key of the first security chip;
the second security chip is further configured to encrypt the payment information based on the first public key, and return the encrypted payment information to the first security chip;
the first security chip is further configured to send the payment information to a first application on the payment terminal, and includes:
the first security chip is used for decrypting the encrypted payment information based on the first private key, and is used for sending the decrypted payment information to the first application on the payment terminal under the condition that decryption is successful.
13. The payment system of claim 10,
the first security chip is used for storing the identity authentication information of the first application;
the second security chip is used for storing the identity authentication information of the second application;
the first security chip and the second security chip are used for mutually exchanging the identity authentication information of the first application and the second application;
the first security chip is used for verifying the identity authentication information of the second application;
the second security chip is used for verifying the identity authentication information of the second application;
and under the condition that the first security chip verifies the identity authentication information of the second application and the second security chip verifies the identity authentication information of the second application, the first security chip is used for sending digital currency to the second security chip of the money receiving terminal according to the payment request generated by the first application on the payment terminal.
14. The payment system of claim 9,
the first security chip is used for acquiring the identity information of the payment user bound by the payment terminal and determining that the payment terminal has the authority of driving the first security chip to transfer digital money to the second security chip under the condition that the identity information of the payment user bound by the payment terminal is authenticated;
the second security chip is used for acquiring the identity information of the collection user bound by the collection terminal and determining that the collection terminal has the authority of driving the second security chip to transfer digital money from the first security chip under the condition that the identity information of the collection user bound by the collection terminal is authenticated.
15. The payment system of claim 9,
the payment terminal and the collection terminal are used for establishing a Bluetooth communication channel;
the first security chip and the second security chip are used for transferring the digital money based on the Bluetooth communication channel.
16. A payment method of digital currency is applied to a first security chip, the first security chip is arranged in a payment terminal, and the method comprises the following steps:
storing digital currency;
transferring digital money to a second secure chip of the cash receiving terminal such that the second secure chip stores the transferred digital money.
17. A payment method of digital currency is characterized in that the method is applied to a second security chip, the second security chip is arranged in a cash receiving terminal, and the method comprises the following steps:
transferring digital money by a first secure chip of a payment terminal;
storing the digital currency transferred by the first secure chip of the payment terminal.
18. A first secure chip, comprising: at least one processor, and a memory communicatively coupled to the at least one processor, wherein the memory stores instructions executable by the at least one processor to cause the at least one processor to perform the method of claim 16.
19. A second secure chip, comprising: at least one processor, and a memory communicatively coupled to the at least one processor, wherein the memory stores instructions executable by the at least one processor to cause the at least one processor to perform the method of claim 17.
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011382627X | 2020-12-01 | ||
| CN202011382627.XA CN112581108A (en) | 2020-12-01 | 2020-12-01 | Payment method, payment system and security chip based on digital currency |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113988828A true CN113988828A (en) | 2022-01-28 |
Family
ID=75126707
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011382627.XA Pending CN112581108A (en) | 2020-12-01 | 2020-12-01 | Payment method, payment system and security chip based on digital currency |
| CN202111299719.6A Pending CN113988828A (en) | 2020-12-01 | 2021-11-04 | Payment method, payment system and security chip of digital currency |
Family Applications Before (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011382627.XA Pending CN112581108A (en) | 2020-12-01 | 2020-12-01 | Payment method, payment system and security chip based on digital currency |
Country Status (1)
| Country | Link |
|---|---|
| CN (2) | CN112581108A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2024046282A1 (en) * | 2022-08-29 | 2024-03-07 | 中国人民银行数字货币研究所 | Ultra-wideband-based payment method and apparatus, computer device, and payment terminal |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113112251A (en) * | 2021-04-12 | 2021-07-13 | 上海方付通科技服务股份有限公司 | Digital currency thin film smart card, digital currency transaction system and method |
-
2020
- 2020-12-01 CN CN202011382627.XA patent/CN112581108A/en active Pending
-
2021
- 2021-11-04 CN CN202111299719.6A patent/CN113988828A/en active Pending
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2024046282A1 (en) * | 2022-08-29 | 2024-03-07 | 中国人民银行数字货币研究所 | Ultra-wideband-based payment method and apparatus, computer device, and payment terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112581108A (en) | 2021-03-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11258777B2 (en) | Method for carrying out a two-factor authentication | |
| US10909531B2 (en) | Security for mobile applications | |
| EP1277301B1 (en) | Method for transmitting payment information between a terminal and a third equipement | |
| CN103714639B (en) | A kind of method and system that realize the operation of POS terminal security | |
| JP5895252B2 (en) | Method for protecting a communication terminal connected with a terminal user identification information module | |
| US11562354B2 (en) | Terminal configuration server for the remote configuration of terminals | |
| US20150310427A1 (en) | Method, apparatus, and system for generating transaction-signing one-time password | |
| US20020129261A1 (en) | Apparatus and method for encrypting and decrypting data recorded on portable cryptographic tokens | |
| US20190087814A1 (en) | Method for securing a payment token | |
| CN110278180B (en) | Financial information interaction method, device, equipment and storage medium | |
| CN104301110A (en) | Authentication method, authentication device and system applied to intelligent terminal | |
| CN101770619A (en) | Multiple-factor authentication method for online payment and authentication system | |
| KR101385429B1 (en) | Method for authenticating individual of electronic contract using nfc, authentication server and terminal for performing the method | |
| KR100939725B1 (en) | Certification method for a mobile phone | |
| CN102667800A (en) | Method for securely interacting with a security element | |
| CN113988828A (en) | Payment method, payment system and security chip of digital currency | |
| US20070118749A1 (en) | Method for providing services in a data transmission network and associated components | |
| JP2011118789A (en) | Communication device and processing system | |
| CN112712354A (en) | Interaction method of digital currency wallet and digital currency server | |
| JP7268279B2 (en) | Secure mobile payment and back-office application solutions that can be accepted as contactless payments for on-shelf transaction devices | |
| CN111652612B (en) | Mobile payment method and device | |
| KR101710950B1 (en) | Method for distributing encrypt key, card reader and system for distributing encrypt key thereof | |
| CN117063174A (en) | Security module and method for inter-app trust through app-based identity | |
| GB2525426A (en) | Secure token implementation | |
| KR101394147B1 (en) | How to use Certificate safely at Mobile Terminal |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |