WO2021227966A1 - Binding processing - Google Patents

Binding processing Download PDF

Info

Publication number
WO2021227966A1
WO2021227966A1 PCT/CN2021/092234 CN2021092234W WO2021227966A1 WO 2021227966 A1 WO2021227966 A1 WO 2021227966A1 CN 2021092234 W CN2021092234 W CN 2021092234W WO 2021227966 A1 WO2021227966 A1 WO 2021227966A1
Authority
WO
WIPO (PCT)
Prior art keywords
account
target user
information
server
binding
Prior art date
Application number
PCT/CN2021/092234
Other languages
French (fr)
Chinese (zh)
Inventor
殷雅雯
Original Assignee
支付宝(杭州)信息技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 支付宝(杭州)信息技术有限公司 filed Critical 支付宝(杭州)信息技术有限公司
Publication of WO2021227966A1 publication Critical patent/WO2021227966A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]

Definitions

  • This document relates to the field of data processing technology, in particular to a binding processing method, device and equipment.
  • the purpose of the embodiments of this specification is to provide a binding processing method, device, and equipment to complete the binding of the payment account and the storage account without adding user operations, so as to meet the binding requirements of users in different scenarios.
  • the embodiment of this specification provides a binding processing method, applied to the first server of a payment application, including: receiving an account registration request of a target user sent by a second server of a resource storage institution; wherein, the account registration request It is sent by the second server when it receives a binding request sent by the target user using the second client of the resource storage mechanism and determines that the target user has not registered the payment account of the payment application;
  • the binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application to be registered by the target user, so as to grant the payment account based on the The payment authority of the storage account for payment;
  • the account registration request includes the registration information of the target user; the registration processing of the payment account is performed according to the registration information to obtain the account identification information of the target user; and the account is identified
  • the information is sent to the second server, so that the second server performs binding processing according to the account identification information; if it is determined that the operation processing of the target user on the first client of the
  • the embodiment of this specification provides a binding processing method, which is applied to the second server of a resource storage institution, and includes: receiving a binding request sent by a second client of the resource storage institution, where the binding request is based on a target
  • the binding operation is sent by the user, and the binding request is used to request that the storage account of the target user in the resource storage institution be bound with the payment account of the payment application of the target user to grant the The payment account is based on the payment authority of the storage account for payment;
  • the binding request includes the first account information of the storage account; if it is determined that the target user has not registered the payment account of the payment application, then according to the first An account information sends the account registration request of the target user to the first server of the payment application, so that the first server performs payment account registration processing to obtain the account identification information of the target user, and determines When the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition, perform security authentication processing on the target user through the first client terminal;
  • the embodiment of this specification provides a binding processing method applied to a first client of a payment application, including: receiving an acquisition request for security authentication information sent by a first server of the payment application; wherein, the acquisition request After performing account registration processing for the first server based on the account registration request of the target user sent by the second server of the resource storage institution, it is determined that the operation processing of the target user on the first client meets the preset
  • the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, when it is determined that the target user is not registered Sent when the payment account of the payment application; the binding request is used to request that the target user's storage account in the resource storage institution be exchanged with the payment account of the payment application to be registered by the target user Binding to grant the payment account the payment authority to make payments based on the storage account; obtain the device information of the terminal device where it is located, and generate the device fingerprint of the terminal device based on the device information; send the device fingerprint to all
  • the first server is
  • the embodiment of this specification provides a binding processing method applied to the second client of the resource storage organization, including: in response to the binding operation of the target user, sending a binding request to the second server of the resource storage organization; wherein The binding request is used to request to bind the payment account of the payment application of the target user with the storage account of the target user in the resource storage institution, so as to grant the payment account to perform processing based on the storage account.
  • Payment authority for payment the binding request includes the first account information of the storage account, so that the second server performs binding processing according to the first account information; receives the information sent by the second server Binding result information.
  • the embodiment of this specification provides a binding processing device, which is applied to the first server of a payment application, and includes: a receiving module that receives an account registration request of a target user sent by a second server of a resource storage institution;
  • the account registration request is when the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user has not registered the payment account of the payment application
  • the binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application to be registered by the target user to grant the
  • the payment account is based on the payment authority of the storage account;
  • the account registration request includes the registration information of the target user;
  • the registration module performs the registration processing of the payment account according to the registration information to obtain the account of the target user Identification information;
  • a sending module which sends the account identification information to the second server, so that the second server performs binding processing according to the account identification information; an authentication module, if it determines the target
  • the embodiment of this specification provides a binding processing device, which is applied to a second server of a resource storage mechanism, and includes: a receiving module that receives a binding request sent by a second client of the resource storage mechanism; The binding request is sent based on the binding operation of the target user, and the binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application of the target user.
  • the binding request includes the first account information of the storage account; the determining module, if it determines that the target user is not registered for the payment
  • the payment account of the application according to the first account information, send the account registration request of the target user to the first server of the payment application, so that the first server performs payment account registration processing to obtain the The account identification information of the target user, and when it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies the preset security authentication conditions, the target user is processed through the first client terminal Security authentication processing; a binding module that receives the account identification information sent by the first server, and performs binding processing based on the account identification information and the first account information; a sending module that sends the account identification information to the first server 2.
  • the client sends the binding result information.
  • the embodiment of this specification provides a binding processing device, which is applied to a first client of a payment application, and includes: a receiving module that receives an acquisition request for security authentication information sent by the first server of the payment application, and the acquisition The request is that after the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, it is determined that the target user’s operation processing on the first client meets the expected
  • the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, when it is determined that the target user has not Sent when the payment account of the payment application is registered; the binding request is used to request that the storage account of the target user in the resource storage institution be connected to the payment account of the payment application to be registered by the target user Binding to grant the payment account the payment authority to make payments based on the storage account; an obtaining module, which obtains the device information of the terminal device where it is located, and generates the device fingerprint of the terminal device according to
  • the embodiment of this specification provides a binding processing device, which is applied to the second client of the resource storage organization, and includes: a sending module, which sends the binding to the second server of the resource storage organization in response to the binding operation of the target user.
  • the binding request is used to request to bind the payment account of the target user’s payment application with the target user’s storage account in the resource storage institution, so as to grant the payment account based on the The payment authority of the storage account for payment;
  • the binding request includes the first account information of the storage account, so that the second server performs binding processing according to the first account information; a receiving module, which receives The binding result information sent by the second server.
  • the embodiments of this specification provide a binding processing device including a processor and a memory arranged to store computer-executable instructions.
  • the processor When the computer-executable instructions are executed, the processor: receives an account registration request of the target user sent by the second server of the resource storage mechanism; wherein, the account registration request is received by the second server.
  • the binding request is used to request Binding the target user's storage account in the resource storage institution with the payment account of the payment application to which the target user is to be registered, so as to grant the payment account the right to pay based on the storage account;
  • the account registration request includes the registration information of the target user; the payment account registration processing is performed according to the registration information to obtain the account identification information of the target user; the account identification information is sent to the second server , So that the second server performs binding processing according to the account identification information; if it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication conditions, pass The first client performs security authentication processing on the target user.
  • the embodiments of this specification provide a binding processing device including a processor and a memory arranged to store computer-executable instructions.
  • the processor receives a binding request sent by a second client of the resource storage mechanism; wherein, the binding request is sent based on the binding operation of the target user, The binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application of the target user, so as to authorize the payment account to perform processing based on the storage account Payment authority for payment; the binding request includes the first account information of the storage account; if it is determined that the target user has not registered the payment account of the payment application, send the payment application to the payment application according to the first account information
  • the first server sends the account registration request of the target user, so that the first server performs payment account registration processing to obtain the account identification information of the target user, and determines that the target user is in the payment account.
  • the embodiment of the present specification provides a binding processing device, including a processor and a memory arranged to store computer-executable instructions.
  • the processor When the computer-executable instructions are executed, the processor: An acquisition request for security authentication information sent by the first server; where the acquisition request is after the first server performs account registration processing based on the target user's account registration request sent by the second server of the resource storage institution, Sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is that the second server uses the resource storage mechanism based on the target user
  • the binding request sent by the second client of the second client is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be registered in the resource storage institution
  • a storage account is bound to the payment account of the payment application to be registered by the target user to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, according to the The device
  • the embodiment of the present specification provides a binding processing device including a processor and a memory arranged to store computer-executable instructions, which when executed, cause the processor to respond to the binding of a target user.
  • the storage account is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second server can perform payment according to the The first account information is subjected to binding processing; the binding result information sent by the second server is received.
  • the embodiments of this specification provide a storage medium for storing computer-executable instructions that, when executed, realize the following process: receiving a target user's account registration request sent by a second server of a resource storage institution; Wherein, the account registration request is when the second server receives a binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user is not registered with the payment application
  • the binding request is used to request that the storage account of the target user in the resource storage institution be bound with the payment account of the payment application to be registered by the target user, so as to Grant the payment account the payment authority to make payments based on the storage account
  • the account registration request includes the registration information of the target user; perform the registration processing of the payment account according to the registration information to obtain the account identification of the target user Information; send the account identification information to the second server, so that the second server performs binding processing according to the account identification information; if it is determined that the target user is in the first payment application If the operation processing on the client meets the preset security authentication condition,
  • the embodiment of this specification provides a storage medium for storing computer-executable instructions that, when executed, realize the following process: receiving a binding request sent by a second client of the resource storage mechanism; Wherein, the binding request is sent based on the binding operation of the target user, and the binding request is used to request payment between the target user’s storage account in the resource storage institution and the payment application of the target user.
  • the account is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account; if it is determined that the target user has not registered the payment application
  • the payment account of the target user is sent to the first server of the payment application according to the first account information, so that the first server performs payment account registration processing to obtain the target
  • the user s account identification information, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, the target user is secured through the first client Authentication processing; receiving the account identification information sent by the first server, performing binding processing according to the account identification information and the first account information, and sending binding result information to the second client.
  • the embodiments of this specification provide a storage medium for storing computer-executable instructions that, when executed, implement the following process: receiving a request for obtaining security authentication information sent by the first server of the payment application
  • the acquisition request is that the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, and then determines that the target user is in the first client
  • the above operation processing is sent when the preset security authentication conditions are met;
  • the account registration request is a binding request sent by the second server based on the target user using the second client of the resource storage mechanism, Sent when it is determined that the target user has not registered the payment account of the payment application;
  • the binding request is used to request that the target user be registered in the storage account of the resource storage institution with the target user to be registered Bind the payment account of the payment application to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, and generate the device fingerprint of the terminal device based on the device information
  • the embodiment of this specification provides a storage medium for storing computer-executable instructions that, when executed, realize the following process: in response to the binding operation of the target user, provide a second service to the resource storage organization Terminal sends a binding request; wherein, the binding request is used to request to bind the payment account of the target user’s payment application with the target user’s storage account in the resource storage institution to grant the payment
  • the account is based on the payment authority of the storage account; the binding request includes the first account information of the storage account, so that the second server performs binding processing according to the first account information;
  • the binding result information sent by the second server in response to the binding operation of the target user, provide a second service to the resource storage organization Terminal sends a binding request; wherein, the binding request is used to request to bind the payment account of the target user’s payment application with the target user’s storage account in the resource storage institution to grant the payment
  • the account is based on the payment authority of the storage account; the binding request includes the first account information of the storage account,
  • the target user can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations by operating the second client of the resource storage institution; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • FIG. 1 is a schematic diagram of the first scenario of a binding processing method provided by an embodiment of this specification
  • FIG. 2 is a schematic diagram of a second scenario of a binding processing method provided by an embodiment of this specification
  • FIG. 3 is a schematic diagram of the first flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 4 is a schematic diagram of the second flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 5 is a schematic diagram of a third process of a binding processing method provided by an embodiment of this specification.
  • FIG. 6 is a schematic diagram of the fourth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 7 is a schematic diagram of a fifth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 8 is a schematic diagram of a sixth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 9 is a schematic diagram of a seventh flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 10 is a schematic diagram of the eighth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 11 is a schematic diagram of a ninth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 12 is a schematic diagram of a tenth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 13 is a schematic diagram of the eleventh flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 14 is a schematic diagram of a twelfth flow of a binding processing method provided by an embodiment of this specification.
  • 15 is a schematic diagram of the thirteenth process of a binding processing method provided by an embodiment of this specification.
  • 16 is a schematic diagram of the fourteenth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 17 is a schematic diagram of a fifteenth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 18 is a schematic diagram of a sixteenth flow of a binding processing method provided by an embodiment of this specification.
  • FIG. 19 is a schematic diagram of the composition of the first module of a binding processing apparatus provided by an embodiment of this specification.
  • 20 is a schematic diagram of the composition of a second type of module of a binding processing apparatus provided by an embodiment of this specification;
  • FIG. 21 is a schematic diagram of the composition of a third module of a binding processing apparatus provided by an embodiment of this specification.
  • FIG. 22 is a schematic diagram of the fourth module composition of a binding processing apparatus provided by an embodiment of this specification.
  • FIG. 23 is a schematic structural diagram of a binding processing device provided by an embodiment of this specification.
  • Figure 1 is a schematic diagram of an application scenario of a binding processing method provided by an embodiment of this specification.
  • the scenario includes: the first client of the payment application, the first server of the payment application, and the The second client, the second server of the resource storage organization.
  • the first client and the second client can be a mobile phone, a tablet computer, a desktop computer, a portable notebook computer, etc. (only a mobile phone is shown in FIG. 1); it should be understood that a payment application is installed in the first client
  • the second client is installed with the resource management application of the resource storage mechanism; the first server and the second server may be independent servers or a server cluster composed of multiple servers.
  • the second client terminal performs account binding processing.
  • the second client sends a binding request to the second server to request that the storage account of the target user in the resource storage institution be bound to the payment account of the payment application of the target user. Grant the payment account the right to pay based on the storage account.
  • the second server receives the binding request sent by the second client, and according to the first account information of the storage account to be bound included in the binding request, determines whether the target user has registered the payment account of the payment application, and determines whether the result is If not, send an account registration request to the first server.
  • the first server performs payment account registration processing according to the registration information included in the account registration request, obtains the account identification information of the target user, and sends the account identification information to the first server; the first server according to the received account identification information Perform binding processing with the first account information of the storage account to be bound, and send the binding result information to the second client.
  • the binding result information is binding success information and the target user operates the first client to perform related business processing
  • the first server determines that the target user's operation processing on the first client meets the preset security authentication conditions, Then, the target user is subjected to security authentication processing through the first client.
  • the target user has registered the payment account of the payment application and needs to bind the payment account with the target user's storage account in the resource storage institution
  • the second client can also be operated to realize the account binding. The specific process will be carried out later. Detailed.
  • the second client can also be a self-service operation machine of a resource storage institution.
  • the target user is in a resource storage institution for business processing, such as opening a storage account, transferring resources, etc.
  • the self-service operation machine of the resource storage institution can be operated.
  • the self-service operation machine sends a binding request to the second server of the resource storage institution, thereby realizing the payment account in the above manner. Registration, and the binding of payment accounts and storage accounts.
  • the opening of the storage account, the registration of the payment account, and the binding of the storage account and the payment account can be realized at the same time.
  • the opening of a storage account and the registration of a payment account all require the identity verification of the target user.
  • the identity verification can be passed once, and the opening of the storage account and the registration of the payment account can be realized at the same time.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • Fig. 3 is a schematic flowchart of a binding processing method provided by an embodiment of this specification.
  • the method in Fig. 3 can be executed by the first server in Fig. 1.
  • the method includes the following steps:
  • Step S102 receiving an account registration request of the target user sent by the second server of the resource storage institution, the account registration request being a binding request sent by the second server after receiving the second client of the target user using the resource storage institution, and Sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request to bind the target user's storage account in the resource storage institution with the target user's payment account of the payment application to be registered, so as to grant the payment account based on the storage
  • the payment authority of the account for payment the account registration request includes the registration information of the target user.
  • the second client terminal of the resource storage institution can be operated to perform account binding processing.
  • the second client sends a binding request to the second server of the resource storage institution to request that the target user be registered in the storage account of the resource storage institution with the payment application of the target user to be registered.
  • the payment account is bound.
  • the second server determines whether the target user has registered the payment account of the payment application according to the first account information of the storage account to be bound included in the binding request, and determines If the result is no, send an account registration request to the first server.
  • the storage account of the target user in the resource storage institution may be a savings account, a credit account, and so on.
  • Step S104 Perform registration processing of the payment account according to the registration information to obtain the account identification information of the target user.
  • Step S106 Send the account identification information to the second server, so that the second server performs binding processing according to the account identification information.
  • Step S108 If it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication condition, then the target user is subjected to security authentication processing through the first client.
  • the first server when the first server receives the account registration request sent by the second server of the resource storage institution, it performs the registration process of the payment account, and sends the obtained account identification information of the target user to the second server , So that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target user Sent when the payment account of the payment application is not registered; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is processed through the first client Security authentication processing.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the target user when the target user is operating the second client terminal to bind the payment account and the storage account, the target user may have registered a payment account; based on this, in order to avoid repeated registration of the payment account, in the embodiment of this specification, the second service
  • the terminal When receiving the binding request sent by the second client, the terminal first sends a payment account query request to the first server to determine whether the target user has registered a payment account of the payment application.
  • the terminal may further include:
  • Step S100-2 receiving a payment account query request sent by the second server; where the payment account query request is sent by the second server when receiving a binding request sent by the second client of the target user using the resource storage mechanism ;
  • the binding request is used to request to bind the target user's storage account in the resource storage institution with the payment account of the target user's payment application to grant the payment account the right to pay based on the storage account;
  • the payment account query request includes storage The identity information of the target user associated with the account;
  • the identity information is the identity information provided by the target user when opening a storage account at the resource storage institution.
  • the identity information has been authenticated by authority and has authenticity and validity; such identity information is the user name of the target user, the target user’s ID number, etc.
  • Step S100-4 If the associated account identification information is not queried based on the identity information, the query result indicating that the account identification information is not queried is sent to the second server, so that the second server determines that the target user is not registered with the payment application. Pay for the account and send an account registration request.
  • the first server can match the identity information included in the payment account query request with each identity information in the designated user information database, and when all matching fails, send a query result indicating that the account identification information is not queried to the second server .
  • the user information database includes the association relationship between the identity information of multiple users and the account identification information of the payment account.
  • step S102 includes the following step S102-2, receiving the account registration request of the target user sent by the second server; wherein the account registration request includes the registration information of the target user.
  • the account query request further includes the first account information of the storage account to be bound
  • the registration request also includes the contact information of the target user associated with the storage account to be bound.
  • step S104 may include the following steps S104-2 and S104-4;
  • step S104-2 the account identification information of the target user is generated according to the preset account identification generation rules, where the generation rules can be set according to needs in actual applications, which are not specifically limited in this specification.
  • Step S104-4 the generated account identification information, the contact information included in the registration information, the identity information, the first account information of the storage account included in the account query request, and the first authentication identifier representing the security authentication to be performed are associated and recorded to obtain The first record information.
  • the first server does not need to collect the identity information provided by the user again during the registration process of the payment account, and can directly perform the payment account registration process based on the identity information in the account query request. The user completes the registration of the payment account without feeling the user, reducing user operations and improving user experience.
  • the method may further include step S110, updating the first authentication identifier in the first record information It is the second certification mark; among them, the second certification mark signifies that the safety certification has passed.
  • the registration information includes the contact information of the target user associated with the storage account to be bound.
  • step S104 may include the following:
  • Step S104-6 Send the first verification information to the contact information included in the registration information, so that the second client sends the acquired first verification information entered by the target user to be verified to the second server, so that the second server Sending the first verification information to be verified to the first server;
  • Step S104-8 receiving the first verification information to be verified sent by the second server
  • step S104-10 if the verification of the first verification information to be verified is passed, the payment account registration process is performed according to the registration information to obtain the account identification information of the target user.
  • the contact method can be a mobile phone number, an email address, etc.
  • the second server after the second server sends an account registration request to the first server, it also sends a verification information acquisition request to the second client; the second client displays verification based on the verification information acquisition request Information input interface; after receiving the account registration request, the first server sends the first verification information to the mobile phone number in the form of information, and stores the first verification information in association with the first contact method; when the target user receives When sending information from the first server, enter the first verification information in the information into the input interface displayed by the second client, and click the OK control in the input interface to submit the first verification information to be verified ;
  • the second client obtains the first verification information to be verified submitted by the target user, and sends the first verification information and contact information to be verified to the second server; the second server sends the received first verification to be verified
  • the information and contact information are sent to the first server; the first server queries the associated stored first verification information according to the received contact information, and matches the
  • the first server can reduce the risk of others pretending to be a target user to perform operations by sending and verifying the first verification code to the contact information included in the registration information, thereby ensuring business security.
  • step S106 it further includes step S107, recording the sending time of the account identification information.
  • the sending time is recorded in association with the first record information, or the sending time is recorded in association with the account identification information.
  • step S108 may include the following steps:
  • Step S108-2 if it is determined that the target user has successfully logged in to the first client of the payment application, and the authentication identifier in the first record information queried according to the contact information in the login information is the first authentication identifier, then the queried first client is determined 1. Whether the number of account identification information associated with the identity information in the record information does not exceed the preset number;
  • Step S108-4 obtaining the current time, and determining the binding duration of the payment account and the storage account corresponding to the first recorded information according to the recorded sending time and the current time;
  • Step S108-6 determining whether the binding duration exceeds the preset duration
  • Step S108-8 if it is determined that the number of account identification information associated with the identity information does not exceed the preset number and the binding duration does not exceed the preset duration, it is determined that the target user's operation processing on the first client of the payment application satisfies The preset security authentication conditions perform security authentication processing on the target user through the first client.
  • the target user can use the target associated with the bound storage account when logging in for the first time.
  • Log in with the user s contact information.
  • the first server determines that the target user successfully logs in to the first client, it queries the associated first record information according to the contact information included in the login information, and determines whether the authentication identifier included in the first record information is the first authentication identifier.
  • the binding duration of the corresponding storage account and, determining whether the binding duration exceeds the preset duration, and if the preset duration exceeds the preset duration, the first prompt message is sent to the first client to enable the target user to re-bind the storage account Operate, or use other security authentication methods recognized by the payment application for security authentication; if the preset duration is not exceeded, it is determined that the preset security authentication conditions are met, and the target user is subjected to security authentication processing through the first client.
  • the preset number is the upper limit of the number of payment accounts that can be registered by the user, and the preset number and preset duration can be set according to actual needs.
  • the first server receives a service request sent by the first client during the process of determining whether the preset security authentication conditions are met, or when it determines that the preset security authentication conditions are met, and the service request needs to be addressed to the target user To perform security authentication processing, it is sufficient to perform security authentication processing on the target user once based on the business request. And, when the first client receives the first prompt information sent by the first server, the target user can operate the first client to bind other storage accounts.
  • the risk of illegal operations by users registering too many payment accounts can not only be avoided, but also the security risks caused by the long binding time can be avoided.
  • the first server determining that the target user successfully logs in to the first client includes: receiving a login request sent by the first client, and sending the contact information included in the login request Sending the second verification information to the first client to send the acquired second verification information entered by the target user to the first server; and receiving the second verification information to be verified sent by the first client If the verification of the second verification information to be verified is passed, it is determined that the target user successfully logs in to the first client.
  • the login interface of the first client includes an account input field, a verification information acquisition control, and a verification information input field.
  • the target user enters the contact information of the target user associated with the storage account in the account input field, click the verification information acquisition Control;
  • the first client detects the click operation of the verification information acquisition control, it sends a login request to the first server according to the obtained contact information, and if the first server finds the associated first record according to the contact information included in the login request Information, the second verification information is sent to the contact method, and the second verification information is stored in association with the contact method;
  • the target user enters the received second verification information into the verification information input field, and clicks the OK control;
  • the first customer The terminal sends the acquired second verification information and contact information to be verified to the first server;
  • the first server queries the associated stored second verification information according to the received contact information, and then compares the queried second verification information with the received The received second verification information to be verified is matched.
  • the matching is successful, it is determined that the target user is successfully logged in; if the matching fails, the login failure information is sent to the first client.
  • the first server can modify the payment account of the target user based on the account modification request sent by the target user through the first client.
  • the target user can log in based on the modified account information and login password in the future.
  • step S108 may include:
  • Step S108-10 If it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication conditions, a request for obtaining security authentication information is sent to the first client, so that the first client can obtain The device information of the terminal device where it is located, and generate a device fingerprint based on the device information, and send the device fingerprint to the first server;
  • Step S108-12 Receive the device fingerprint sent by the first client, and if it is determined to pass the risk assessment based on the device fingerprint, it is determined that the security authentication of the target user has passed.
  • It can receive the device fingerprint sent by the first client, and send the device fingerprint to the designated risk assessment system, so that the risk assessment system performs risk assessment based on the device fingerprint, and sends the risk assessment result to the first server; If it is determined that the received risk assessment result is risk-free, it is determined that the security authentication for the target user has passed.
  • the first server When the current user operates the first client to register the payment account of the payment application for the first time, the first server first obtains the device fingerprint of the terminal device where the first client is located during the payment account registration process, and then passes the device fingerprint verification. After that, proceed with the registration process of the payment account.
  • an asynchronous security authentication method is provided, that is, the target user logs in to the first client for the first time after operating the second client to register the payment account and bind the payment account to the storage account. Perform security authentication processing at the same time, which can not only meet the security authentication requirements of the payment application, but also meet the account binding requirements of the user based on the second client's account binding scenario.
  • the target user may also operate the second client terminal to bind the payment account and the storage account, as shown in FIG. 9, after step S100-2, it may also include:
  • Step S112 If the associated account identification information is queried according to the identity information, the queried account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information;
  • Step S114 the first account information of the storage account included in the account query request and the sent account identification information are associated and recorded to obtain second record information; wherein, the second record information represents the payment account corresponding to the sent account identification information and The storage account is successfully bound.
  • the target user When the associated account identification information is queried based on the identity information, the target user is determined to register the payment account of the payment application. Since the previous payment account registration process is used for security authentication processing, the queried account can be directly
  • the identification information is sent to the second server to enable the second server to perform binding processing; and the first account information of the storage account included in the account query request and the queried account identification information are associated and recorded to indicate successful binding , And when the target user logs in to the second client, there is no need to perform security authentication again.
  • step S112 may include:
  • step S112-2 if the associated account identification information is queried according to the identity information, it is determined whether the number of the queried account identification information is one, if yes, execute step S112-4, otherwise, execute step S112-6;
  • Step S112-4 sending the queried account identification information to the second server, so that the second server performs binding processing according to the account identification information, and step S114 is executed;
  • Step S112-6 Obtain the address information from the account query request, and display the second account information of the payment account corresponding to the multiple account identification information in the second client on the display interface corresponding to the address information, and obtain the target The target second account information selected by the user based on the display interface;
  • step S112-8 the account identification information corresponding to the target second account information is sent to the second server, and step S114 is performed.
  • the corresponding second account information is displayed in the corresponding display interface, and the target second selected by the target user based on the display interface is obtained.
  • the account information does not need to obtain the target second account information through the second server, which not only avoids the leakage of the user's account information, but also reduces the number of communications and improves the efficiency of data processing.
  • the first server when the first server receives the account registration request sent by the second server of the resource storage institution, it performs the registration process of the payment account, and sends the obtained account identification information of the target user to the second server , So that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target user Sent when the payment account of the payment application is not registered; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is processed through the first client Security authentication processing.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • FIG. 11 is another binding processing provided by the embodiment of this specification.
  • a schematic flowchart of the method. The method in FIG. 11 can be executed by the second server of the resource storage mechanism in FIG. 1; as shown in FIG. 11, the method includes the following steps:
  • Step S202 receiving a binding request sent by a second client of the resource storage institution; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target user be stored in the storage account of the resource storage institution; Binding with the payment account of the payment application of the target user to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account;
  • the second client terminal of the resource storage institution can be operated to perform account binding processing.
  • the second client sends a binding request to the second server of the resource storage institution to request that the target user be registered in the storage account of the resource storage institution with the payment application of the target user to be registered.
  • the payment account is bound.
  • Step S204 If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first server performs payment account registration processing to obtain Account identification information of the target user, and when it is determined that the operation processing of the target user on the first client terminal of the payment application meets the preset security authentication conditions, the target user is subjected to security authentication processing through the first client terminal;
  • Step S206 Receive the account identification information sent by the first server, perform binding processing according to the account identification information and the first account information, and send the binding result information to the second client.
  • the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not Register the payment account of the payment application, then send the account registration request of the target user to the first server of the payment application according to the first account information of the storage account included in the binding request, and bind according to the account identification information sent by the first server. Set treatment.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • step S204 may include:
  • Step S204-2 Obtain the associated identity information of the target user from a specified database according to the first account information, where the specified database includes the association relationship between the first account information and the identity information, contact information, etc.;
  • Step S204-4 Send an account query request to the second server according to the acquired identity information and the first account information, so that the second server queries the associated account identification information according to the identity information;
  • Step S204-6 If a query result sent by the second server indicating that the account identification information has not been queried is received, it is determined that the target user has not registered a payment account of the payment application;
  • Step S204-8 Send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first server performs payment account registration processing to obtain the account identification information of the target user, and determines the target user’s account identification information.
  • the target user is subjected to security authentication processing through the first client terminal.
  • step S204 may further include the following:
  • step S204-10 if it is determined that the target user has not registered a payment account of the payment application, the contact information of the associated target user is obtained from the designated database according to the first account information;
  • Step S204-12 Send the account registration request of the target user to the first server of the payment application according to the contact method, so that the first server sends the first verification information to the contact method when performing payment account registration processing.
  • step S204-12 in order to ensure the registration security of the payment account, as shown in Figure 13, after step S204-12, it also includes:
  • Step S205-2 Send a verification information acquisition request to the second client, so that the second client displays the input interface and acquires the first verification information to be verified input by the target user based on the input interface;
  • Step S205-4 receiving the first verification information to be verified sent by the second client
  • step S205-6 the first verification information to be verified is sent to the first server, so that the first server performs the registration process of the payment account when the first verification information is successfully verified.
  • step S204 may further include step S204-14: if the target is determined The user has not registered the payment account of the payment application, and it is determined that the signature information for the target user to sign the preset binding agreement is obtained, then the account registration request of the target user is sent to the first server of the payment application according to the first account information.
  • the binding request includes the signing information of the preset binding agreement, and accordingly, the second server obtains the signing information from the binding request; or, the second server receives the binding sent by the second client.
  • send a binding agreement signing request to the second client so that the second client displays the preset binding agreement and obtains the signing information for the target user to sign the binding agreement, and sends the obtained signing information to the first Two server side.
  • the signing process of the signing agreement is not specifically limited in this manual, and it can be set according to the needs in actual applications. By allowing the target user to sign the binding agreement, not only can the user be notified of related matters, but the signed information can be used as the confirmation information for the target user to confirm the binding.
  • step S206 includes:
  • Step S206-2 Associate and record the received account identification information with the first account information to obtain third record information; wherein the third record information represents the payment account corresponding to the account identification information and the storage account corresponding to the first account information Bind successfully;
  • Step S206-4 Send binding success information to the second client.
  • the binding failure information is sent to the second client.
  • the binding request is sent based on the binding operation of the target user; if the target is determined If the user does not register the payment account of the payment application, then according to the first account information of the storage account included in the binding request, send the account registration request of the target user to the first server of the payment application, and according to the account identification information sent by the first server Perform binding processing.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • FIG. 16 is a schematic flowchart of another binding processing method provided by the embodiment of this specification.
  • the method in FIG. 16 can be executed by the first client of the payment application in FIG. 1; as shown in FIG. 16, the method includes the following steps:
  • Step S302 Receive a security authentication information acquisition request sent by the first server of the payment application; where the acquisition request is that the first server performs account registration at the target user’s account registration request sent by the second server based on the resource storage institution After processing, it is sent when it is determined that the operation processing of the target user on the first client meets the preset security authentication conditions; the account registration request is a binding sent by the second server based on the second client of the target user using the resource storage mechanism The request is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request to bind the target user’s storage account in the resource storage institution with the target user’s payment account of the payment application to be registered. Grant the payment account the right to pay based on the storage account;
  • Step S304 Obtain device information of the terminal device where it is located, and generate a device fingerprint of the terminal device according to the device information;
  • the device information includes information such as the device identification, the MAC address of the device, and the system version number of the device.
  • the method of generating device fingerprints can be set according to actual needs, and there is no specific limitation in this manual.
  • Step S306 Send the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  • step S302 it may further include:
  • Step S300-2 in response to the login operation of the target user based on the login interface, a login request is sent to the first server; the login request includes the contact information of the target user associated with the storage account, so that the first server sends the contact information Second verification information;
  • Step S300-4 Obtain the second verification information to be verified entered by the target user in the login interface, and send the second verification information to be verified to the first server, so that the first server can verify the second verification information to be verified authenticating;
  • Step S300-6 Receive the login result information sent by the first server.
  • the first client of the payment application when the first client of the payment application receives the acquisition of the security authentication information sent by the first server of the payment application, it generates the device fingerprint of the terminal device where it is located, and sends the device fingerprint to the first server, In order to enable the first server to perform security authentication processing; wherein, the acquisition request is that after the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, it is determined that the target user is in the first The operation processing on the client is sent when the preset security authentication conditions are met; and the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, after determining that the target user is not registered Sent when the payment account of the application is paid.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • FIG. 17 is a schematic flowchart of another binding processing method provided by the embodiment of this specification.
  • the method in FIG. 17 can be executed by the second client of the resource storage mechanism in FIG. 1; as shown in FIG. 17, the method includes the following steps:
  • Step S402 in response to the binding operation of the target user, send a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the payment application of the target user be registered with the target user in the resource storage institution. Bind the storage account of the storage account to grant the payment account the right to pay based on the storage account; the binding request includes the first account information of the storage account, so that the second server performs binding processing based on the first account information;
  • Step S404 Receive the binding result information sent by the second server.
  • the method further includes:
  • Step S403-2 receiving the verification information acquisition request sent by the second server; where the verification information acquisition request is sent based on the account registration request of the target user sent to the first server of the payment application;
  • Step S403-4 according to the verification information acquisition request, display the input interface
  • Step S403-6 Obtain the first verification information to be verified input by the target user in the input interface
  • Step S403-8 Send the acquired first verification information to be verified to the second server, so that the second server sends the first verification information to be verified to the first server, so that the first server is When the verified first verification information is verified, the payment account registration process is performed.
  • the method further includes:
  • the target user in response to the binding operation of the target user, obtain the signature information for the target user to sign the preset binding agreement, and send to the second server according to the obtained signature information and the first account information of the storage account to be bound Binding request.
  • the agreement signing request sent by the second server is received, the preset signing agreement is displayed, and the signing information for the target user to sign the preset binding agreement is obtained.
  • the second client in response to the binding operation of the target user, sends a binding request to the second server of the resource storage institution, so that the second server determines that the target user has not registered the payment account of the payment application.
  • send an account registration request to the first server of the payment application and perform binding processing based on the account identification information of the payment account sent by the first server; and when the first server determines that the preset security authentication conditions are met, Perform security authentication processing on the target user.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations;
  • the registration process of the payment account and the security authentication process of the target user are performed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • FIG. 19 is a schematic diagram of the module composition of a binding processing device provided by an embodiment of this specification. As shown in FIG. 19, the device includes:
  • the receiving module 501 which receives the account registration request of the target user sent by the second server of the resource storage institution; wherein, the account registration request is when the second server receives the target user's use of the resource storage institution
  • a storage account is bound to the payment account of the payment application to be registered by the target user to grant the payment account the payment authority to make payments based on the storage account;
  • the account registration request includes the target user’s registration message;
  • the registration module 502 which performs payment account registration processing according to the registration information, and obtains the account identification information of the target user;
  • the authentication module 504 if it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies the preset security authentication condition, then the target user is subjected to security authentication processing through the first client terminal .
  • the binding processing device when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target Sent when the user has not registered the payment account of the payment application; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is sent to the target user through the first client Perform security authentication processing.
  • the target user when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the device further includes a query module.
  • the query module receives the payment account query request sent by the second server before the receiving module 501 receives the account registration request of the target user sent by the second server of the resource storage institution; wherein, the payment account The query request is sent based on the binding request, the payment account query request includes the identity information of the target user associated with the storage account; and, if the associated account identification information is not queried based on the identity information , Send the query result indicating that the account identification information has not been queried to the second server, so that the second server determines that the target user has not registered the payment account of the payment application, and sends the Account registration request.
  • the registration information includes the contact information of the target user associated with the storage account.
  • the registration module 502 sends first verification information to the contact information, so that the second client sends the acquired first verification information entered by the target user to be verified to the second server, Enable the second server to send the first verification information to be verified to the first server; and receive the first verification information to be verified sent by the second server; If the verification of the first verification information to be verified is passed, the account registration process is performed according to the registration information.
  • the account query request further includes: first account information of the storage account; and the registration information includes: contact information of the target user associated with the storage account.
  • the registration module 502 generates the account identification information of the target user according to preset account identification generation rules; and, the generated account identification information, the contact information, the identity information, and the first An account information and a first authentication identifier that characterizes the security authentication to be performed are associated and recorded to obtain the first record information.
  • the method further includes: updating the first authentication identifier in the first record information to a second authentication identifier; wherein, the second authentication The identifier indicates that the safety certification has passed.
  • the device further includes a recording module.
  • the recording module records the sending time of the account identification information after the sending module 503 sends the account identification information to the second server.
  • the authentication module 504 if it is determined that the target user successfully logs in to the first client and the authentication identifier in the first record information queried according to the contact information in the login information is the first authentication identifier, Determining whether the number of account identification information associated with the identity information in the first record information that is queried does not exceed the preset number; The binding duration between the payment account and the storage account corresponding to a record of information; determine whether the binding duration exceeds a preset duration; if it is determined that the number of account identification information associated with the identity information does not exceed the A preset number and the binding duration does not exceed the preset duration, then it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition.
  • the authentication module 504 receives the login request sent by the first client; and sends second verification information to the contact information included in the login request, so that the first client will obtain
  • the second verification information to be verified inputted by the target user is sent to the first server; the second verification information to be verified sent by the first client is received; if the second verification information is to be verified Second, if the verification information is verified, it is determined that the target user successfully logs in to the first client.
  • the authentication module 504 sends a request for obtaining security authentication information to the first client, so that the first client obtains the device information of the terminal device where it is located, and generates a device fingerprint based on the device information , Send the device fingerprint to the first server; and receive the device fingerprint sent by the first client, and if it is determined that the risk assessment is passed according to the device fingerprint, determine the target user’s Safety certification passed.
  • the payment account query request further includes the first account information of the storage account; the device further includes an association module.
  • the query module if the associated account identification information is queried according to the identity information, then the queried account identification information is sent to the second server, so that the second server will The account identification information is bound; the association module associates and records the first account information with the queried account identification information to obtain second record information; wherein, the second record information represents the query The payment account corresponding to the received account identification information is successfully bound to the storage account.
  • the account query request further includes address information; the query module determines whether the number of the queried account identification information is one; if so, the queried account identification information is sent to the Second server; if not, display the second account information of the payment account corresponding to the multiple queried account identification information on the display interface corresponding to the address information in the second client, and obtain the target The user selects the target second account information based on the display interface; and sends the account identification information corresponding to the target second account information to the second server.
  • the second client includes: a resource management application of the resource storage organization or a self-service operation machine of the resource storage organization.
  • the binding processing device when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information, and the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user is not Sent when the payment account of the payment application is registered; and, when the first server determines that the target user's operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is secured through the first client Authentication processing.
  • the target user when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the embodiment of the binding processing device applied to the first server in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the first server in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The corresponding implementation of the binding processing method applied to the first server will not be repeated here.
  • FIG. 20 is a schematic diagram of the module composition of another binding processing device provided by an embodiment of the specification. As shown in FIG. 20, the device includes:
  • the receiving module 601 receives a binding request sent by the second client of the resource storage mechanism; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request the
  • the storage account of the target user in the resource storage institution is bound with the payment account of the payment application of the target user to grant the payment account the payment authority to make payments based on the storage account;
  • the binding request includes The first account information of the storage account;
  • the determining module 602 if it is determined that the target user has not registered the payment account of the payment application, sends the account registration request of the target user to the first server of the payment application according to the first account information to Make the first server perform payment account registration processing to obtain the account identification information of the target user, and determine that the target user's operation processing on the first client of the payment application meets the preset security authentication If conditions are met, perform security authentication processing on the target user through the first client;
  • the sending module 604 sends the binding result information to the second client.
  • the binding request upon receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered
  • the payment account of the payment application sends the target user's account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the determining module 602 obtains the associated identity information of the target user from a designated database according to the first account information; and, according to the identity information and the first account information, The second server sends an account query request, so that the second server queries the associated account identification information according to the identity information; if the signature sent by the second server is received, the account identification is not queried As a result of the information query, it is determined that the target user has not registered the payment account of the payment application.
  • the determining module 602 obtains the associated contact information of the target user from a designated database according to the first account information; The server sends the account registration request of the target user, so that the first server sends first verification information to the contact method when performing payment account registration processing.
  • the sending module 604 sends a verification information acquisition request to the second client, so that the second client displays an input interface and acquires the to-be-verified input by the target user based on the input interface First verification information; and receiving the first verification information to be verified sent by the second client; sending the first verification information to be verified to the first server, so that the first A server performs registration processing of the payment account when the verification of the first verification information is passed.
  • the determining module 602 if it is determined to obtain the signature information for the target user to sign the preset binding agreement, sends the target to the first server of the payment application according to the first account information. User’s account registration request.
  • the binding module 603 associates and records the account identification information with the first account information to obtain third record information; wherein, the third record information represents the corresponding account identification information
  • the payment account is successfully bound to the storage account corresponding to the first account information.
  • the binding request upon receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered
  • the payment account of the payment application sends the target user’s account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the embodiment of the binding processing device applied to the second server in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the second server in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The implementation of the corresponding binding processing method applied to the second server end will not be repeated here.
  • FIG. 21 is a schematic diagram of the module composition of another binding processing device provided by an embodiment of this specification. As shown in FIG. 21, the device includes:
  • a receiving module 701 which receives a request for obtaining security authentication information sent by a first server of the payment application; wherein, the request for obtaining is a target sent by the first server on a second server based on a resource storage mechanism
  • the account registration request is the second server Based on the binding request sent by the target user using the second client of the resource storage mechanism, it is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request Binding the target user's storage account in the resource storage institution with the payment account of the payment application to which the target user is to be registered, so as to grant the payment account the right to pay based on the storage account;
  • An obtaining module 702 which obtains device information of the terminal device where it is located, and generates a device fingerprint of the terminal device according to the device information;
  • the sending module 703 sends the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  • the device further includes a login module.
  • the login module before the receiving module 701 receives the security authentication information acquisition request sent by the first server of the payment application, in response to the target user's login operation based on the login interface, send the request to the first service Terminal sends a login request; wherein, the login request includes the contact information of the target user associated with the storage account, so that the first server sends the second verification information to the contact information; and, obtains the The second verification information to be verified entered by the target user in the login interface; the second verification information to be verified is sent to the first server, so that the first server can verify the The second verification information is verified; the login result information sent by the first server is received.
  • the binding processing apparatus generates the device fingerprint of the terminal device where it is located when receiving the acquisition of the security authentication information sent by the first server of the payment application, and sends the device fingerprint to the first server so that The first server performs security authentication processing; where the acquisition request is that the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, and then determines that the target user is in the first client
  • the above operation processing is sent when the preset security authentication conditions are met; and the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, after determining that the target user is not registered with the payment application Sent when the payment account is made.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the embodiment of the binding processing apparatus applied to the first client in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the first client in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The implementation of the corresponding binding processing method applied to the first client terminal will not be repeated here.
  • FIG. 22 is a schematic diagram of the module composition of another binding processing apparatus provided by an embodiment of the specification. As shown in FIG. 22, the apparatus includes:
  • the sending module 801 in response to the binding operation of the target user, sends a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the target user's payment application be linked with The target user binds to the storage account of the resource storage institution to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, So that the second server performs binding processing according to the first account information;
  • the receiving module 802 receives the binding result information sent by the second server.
  • the device further includes a display module.
  • the receiving module 802 after the sending module 801 sends the binding request to the second server of the resource storage mechanism, also receives the verification information acquisition request sent by the second server; wherein, the verification information acquisition request Sent based on the account registration request of the target user sent to the first server of the payment application.
  • the display module displays the input interface according to the verification information acquisition request; and, acquires the first verification information to be verified input by the target user in the input interface; and transfers the first verification information to be verified Sent to the second server, so that the second server sends the first verification information to be verified to the first server, so that the first server is in the process of verifying the When the first verification information is verified, the payment account registration process is performed.
  • the device further includes an acquisition module.
  • the obtaining module before the receiving module 802 receives the binding result information sent by the second server, obtains the signing information for the target user to sign the preset binding agreement, and sends the signing information to the The second server, so that the second server performs related processing based on the signed information.
  • the binding processing device sends a binding request to the second server of the resource storage institution in response to the binding operation of the target user, so that the second server determines that the target user has not registered the payment application of the payment application.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the embodiment of the binding processing device applied to the second client in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the second client in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The implementation of the corresponding binding processing method applied to the second client terminal will not be repeated here.
  • FIG. 23 is an embodiment of this specification. A schematic structural diagram of a binding processing device is provided.
  • the binding processing device may have relatively large differences due to different configurations or performances, and may include one or more processors 901 and a memory 902, and the memory 902 may store one or more storage application programs. Or data. Among them, the memory 902 may be short-term storage or persistent storage.
  • the application program stored in the memory 902 may include one or more modules (not shown in the figure), and each module may include a series of computer-executable instructions in the binding processing device.
  • the processor 901 may be configured to communicate with the memory 902, and execute a series of computer-executable instructions in the memory 902 on the binding processing device.
  • the binding processing device may also include one or more power supplies 903, one or more wired or wireless network interfaces 904, one or more input and output interfaces 905, one or more keyboards 906, and the like.
  • the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each The module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following:
  • the binding request is used to request that the target user be registered in the storage account of the resource storage institution with the target user to be registered
  • the payment account of the payment application is bound to grant the payment account the payment authority to make payments based on the storage account;
  • the account registration request includes the registration information of the target user; the payment is made according to the registration information Account registration processing to obtain the account identification information of the target user;
  • the binding processing device when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target Sent when the user has not registered the payment account of the payment application; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is sent to the target user through the first client Perform security authentication processing.
  • the target user when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the method further includes: receiving the payment account query request sent by the second server Wherein, the payment account query request is sent based on the binding request, the payment account query request includes the identity information of the target user associated with the storage account; if the associated information is not queried based on the identity information The account identification information sends a query result indicating that the account identification information is not queried to the second server, so that the second server determines that the target user has not registered the payment account of the payment application , And send the account registration request.
  • the registration information includes the contact information of the target user associated with the storage account.
  • the registration processing of the payment account according to the registration information includes: sending first verification information to the contact information, so that the second client will obtain the first verification input by the target user to be verified Information is sent to the second server, so that the second server sends the first verification information to be verified to the first server; receives the to-be-verified sent by the second server The first verification information; if the verification of the first verification information to be verified is passed, the account registration process is performed according to the registration information.
  • the account query request further includes the first account information of the storage account.
  • the registration information includes the contact information of the target user associated with the storage account.
  • the performing the registration processing of the payment account according to the registration information to obtain the account identification information of the target user includes: generating the account identification information of the target user according to preset account identification generation rules;
  • the account identification information, the contact information, the identity information, the first account information, and the first authentication identifier representing the security authentication to be performed are associated and recorded to obtain the first record information.
  • the method further includes: updating the first authentication identifier in the first record information to a second authentication identifier; wherein, the second authentication The identifier indicates that the safety certification has passed.
  • the method further includes: recording the sending time of the account identification information.
  • the determining that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition includes: if it is determined that the target user successfully logs in to the first client terminal, and according to the login information If the authentication identifier in the first record information queried in the contact information is the first authentication identifier, it is determined whether the number of account identification information associated with the identity information in the queried first record information is not Exceed the preset number; and, obtain the current time, and determine the binding duration of the payment account and the storage account corresponding to the first record information according to the sending time and the current time; determine the binding Whether the duration exceeds the preset duration; if it is determined that the number of account identification information associated with the identity information does not exceed the preset number, and the binding duration does not exceed the preset duration, it is determined that the target user is in the place.
  • the determining that the target user successfully logs in to the one client may include: receiving a login request sent by the first client; sending to the contact information included in the login request Second verification information, so that the first client sends the acquired second verification information input by the target user to be verified to the first server; receives the to-be-verified sent by the first client The verified second verification information; if the verification of the to-be-verified second verification information is passed, it is determined that the target user successfully logs in to the first client.
  • the performing security authentication processing on the target user through the first client may include: sending a request for obtaining security authentication information to the first client, so that the The first client obtains the device information of the terminal device where it is located, generates a device fingerprint based on the device information, sends the device fingerprint to the first server; receives the device fingerprint sent by the first client, If it is determined that the risk assessment based on the device fingerprint is passed, it is determined that the security authentication of the target user is passed.
  • the payment account query request further includes: the first account information of the storage account; the method further includes: if the associated said information is queried according to the identity information Account identification information, the queried account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; and, the first account The information is recorded in association with the queried account identification information to obtain second record information; wherein, the second record information indicates that the payment account corresponding to the queried account identification information is successfully bound to the storage account .
  • the account query request further includes address information.
  • the sending the queried account identification information to the second server includes: determining whether the number of the queried account identification information is one; if so, sending the queried account identification information To the second server; if not, display the second account information of the payment account corresponding to the multiple queried account identification information on the display interface corresponding to the address information in the second client, and obtain The target user selects target second account information based on the display interface; and sends account identification information corresponding to the target second account information to the second server.
  • the second client when the computer-executable instructions are executed, includes: a resource management application of the resource storage institution or a self-service operation machine of the resource storage institution.
  • the binding processing device when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information, and the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user is not Sent when the payment account of the payment application is registered; and, when the first server determines that the target user's operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is secured through the first client Authentication processing.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each Each module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: receiving resource storage mechanism The binding request sent by the second client of the second client; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target user be stored in the storage account of the resource storage institution Binding with the payment account of the payment application of the target user to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account; if It is determined that the target user has not registered the payment account of the payment application, and then sends the account registration request of the target user to the first server of the payment application according to the first account information, so that the first service The terminal performs payment account
  • the binding processing device when receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered
  • the payment account of the payment application sends the target user's account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the determining that the target user is not registered with the payment account of the payment application includes: obtaining the associated information from a designated database according to the first account information The identity information of the target user; according to the identity information and the first account information, send an account query request to the second server, so that the second server queries the associated account identification information according to the identity information If receiving a query result sent by the second server indicating that the account identification information has not been queried, it is determined that the target user has not registered the payment account of the payment application.
  • the sending the account registration request of the target user to the first server of the payment application according to the first account information includes: according to the first account Information, obtain the associated contact information of the target user from a specified database; according to the contact information, send the account registration request of the target user to the first server of the payment application, so that the first When the server performs the registration processing of the payment account, the first verification information is sent to the contact method.
  • the method further includes: 2.
  • the client sends a verification information acquisition request, so that the second client displays the input interface and acquires the first verification information to be verified input by the target user based on the input interface; receiving the verification information sent by the second client The first verification information to be verified; the first verification information to be verified is sent to the first server, so that the first server performs verification on the first verification information Payment account registration processing.
  • the sending the target user's account registration request to the first server of the payment application according to the first account information includes: if it is determined that the The target user signs the signature information of the preset binding agreement, and then sends the account registration request of the target user to the first server of the payment application according to the first account information.
  • the binding processing according to the account identification information includes: associating and recording the account identification information with the first account information to obtain third record information
  • the third record information characterizes that the payment account corresponding to the account identification information is successfully bound with the storage account corresponding to the first account information.
  • the binding processing device when receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered
  • the payment account of the payment application sends the target user's account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration processing of the payment account and the security authentication processing of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each Each module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: An acquisition request for security authentication information sent by the first server; where the acquisition request is after the first server performs account registration processing based on the target user's account registration request sent by the second server of the resource storage institution, Sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is that the second server uses the resource storage mechanism based on the target user
  • the binding request sent by the second client of the second client is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be registered in the resource storage institution A storage account is bound to the payment account of the payment application to be registered
  • the method further includes: responding to the target user's login operation based on the login interface , Sending a login request to the first server; wherein the login request includes the contact information of the target user associated with the storage account, so that the first server sends a second verification to the contact information Information; obtain the second verification information to be verified input by the target user in the login interface; send the second verification information to be verified to the first server, so that the first server Verifying the second verification information to be verified; receiving the login result information sent by the first server.
  • the binding processing device provided by the embodiment of this specification generates the device fingerprint of the terminal device where it is located when receiving the acquisition of the security authentication information sent by the first server of the payment application, and sends the device fingerprint to the first server so that The first server performs security authentication processing; where the acquisition request is that the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, and then determines that the target user is in the first client
  • the above operation processing is sent when the preset security authentication conditions are met; and the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, after determining that the target user is not registered with the payment application Sent when the payment account is made.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each Each module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: in response to the target user
  • the binding operation of the resource storage institution sends a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the target user’s payment application and the target user’s payment account be stored in the resource
  • the storage account of the institution is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second server is based on Perform binding processing on the first account information; receive binding result information sent by the second server.
  • the method further includes: receiving a verification information acquisition request sent by the second server, and the verification The information acquisition request is sent based on the account registration request of the target user sent to the first server of the payment application; the input interface is displayed according to the verification information acquisition request; the target user is acquired in the input interface Input first verification information to be verified; sending the first verification information to be verified to the second server, so that the second server sends the first verification information to be verified to all
  • the first server enables the first server to perform registration processing of the payment account when the verification of the first verification information to be verified is passed.
  • the method further includes: acquiring the signing information of the preset binding agreement signed by the target user, The signing information is sent to the second server, so that the second server performs related processing based on the signing information.
  • the binding processing device in response to the binding operation of the target user, sends a binding request to the second server of the resource storage institution, so that the second server determines that the target user has not registered the payment application of the payment application.
  • send an account registration request to the first server of the payment application and perform binding processing based on the account identification information of the payment account sent by the first server; and when the first server determines that the preset security authentication conditions are met , Perform security authentication processing on the target user.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the embodiment of the binding processing device in this specification is based on the same inventive concept as the embodiment of the binding processing method in this specification. Therefore, the specific implementation of this embodiment can refer to the implementation of the corresponding binding processing method mentioned above. No longer.
  • the embodiments of this specification also provide a storage medium for storing computer-executable instructions.
  • the storage medium may be a USB flash drive.
  • Optical disk, hard disk, etc. when the computer executable instructions stored in the storage medium are executed by the processor, the following process can be realized: receiving the target user's account registration request sent by the second server of the resource storage institution; wherein, the account The registration request is when the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user has not registered the payment account of the payment application.
  • the binding request is used to request that the target user's storage account in the resource storage institution be bound with the payment account of the payment application to be registered by the target user to grant the payment account
  • the payment authority for payment based on the storage account includes the registration information of the target user; the registration processing of the payment account is performed according to the registration information to obtain the account identification information of the target user;
  • the account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; if it is determined that the target user operates on the first client of the payment application When the processing meets the preset security authentication condition, the target user is subjected to security authentication processing through the first client.
  • the processor when the account registration request sent by the second server of the resource storage institution is received, the payment account registration process is performed, and the obtained target The user’s account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; wherein, the account registration request is the second client receiving the target user’s use of the resource storage mechanism by the second server The binding request sent by the terminal and it is sent when it is determined that the target user has not registered the payment account of the payment application; and, the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication Condition, the target user is subjected to security authentication processing through the first client.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the method further includes: receiving the second service Payment account query request sent by the client terminal; wherein the payment account query request is sent based on the binding request, and the payment account query request includes the identity information of the target user associated with the storage account; If the associated account identification information is not queried for the identity information, the query result indicating that the account identification information is not queried is sent to the second server, so that the second server determines that the target user is not registered The payment account of the payment application, and send the account registration request.
  • the registration information includes: the contact information of the target user associated with the storage account.
  • the registration processing of the payment account according to the registration information includes: sending first verification information to the contact information, so that the second client will obtain the first verification input by the target user to be verified Information is sent to the second server, so that the second server sends the first verification information to be verified to the first server; receives the to-be-verified sent by the second server The first verification information; if the verification of the first verification information to be verified is passed, the account registration process is performed according to the registration information.
  • the account query request further includes the first account information of the storage account.
  • the registration information includes the contact information of the target user associated with the storage account.
  • the performing the registration processing of the payment account according to the registration information to obtain the account identification information of the target user includes: generating the account identification information of the target user according to preset account identification generation rules;
  • the account identification information, the contact information, the identity information, the first account information, and the first authentication identifier representing the security authentication to be performed are associated and recorded to obtain the first record information.
  • the method further includes: updating the first authentication identifier in the first record information to a second authentication identifier, and the second authentication identifier represents The safety certification is passed.
  • the method further includes: recording the sending time of the account identification information .
  • the determining that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition includes: if it is determined that the target user successfully logs in to the first client terminal, and according to the login information If the authentication identifier in the first record information queried in the contact information is the first authentication identifier, it is determined whether the number of account identification information associated with the identity information in the queried first record information is not Exceed the preset number; and, obtain the current time, and determine the binding duration of the payment account and the storage account corresponding to the first record information according to the sending time and the current time; determine the binding Whether the duration exceeds the preset duration; if it is determined that the number of account identification information associated with the identity information does not exceed the preset number, and the binding duration does not exceed the preset duration, then it is determined that
  • the determining that the target user successfully logs in to the one client includes: receiving a login request sent by the first client; The contact information included in the login request sends second verification information, so that the first client sends the acquired second verification information input by the target user to be verified to the first server; The second verification information to be verified sent by the first client; and if the verification of the second verification information to be verified is passed, it is determined that the target user successfully logs in to the first client.
  • the performing security authentication processing on the target user through the first client includes: sending security to the first client Request for obtaining authentication information, so that the first client obtains the device information of the terminal device where it is located, generates a device fingerprint based on the device information, and sends the device fingerprint to the first server; and receives the first client device. If the device fingerprint sent by a client is determined to pass the risk assessment based on the device fingerprint, it is determined that the security authentication of the target user is passed.
  • the payment account query request further includes the first account information of the storage account
  • the method further includes: The associated account identification information is queried, and the queried account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; and, The first account information and the queried account identification information are associated and recorded to obtain second record information, and the second record information represents the payment account and the storage account corresponding to the queried account identification information The binding is successful.
  • the account query request further includes address information
  • the queried account identification information is sent to the second server, Including: determining whether the number of the queried account identification information is one; if so, sending the queried account identification information to the second server; if not, in the second client
  • the display interface corresponding to the address information displays the second account information of the payment account corresponding to the multiple queried account identification information, and obtains the target second account information selected by the target user based on the display interface;
  • the account identification information corresponding to the target second account information is sent to the second server.
  • the second client when the computer-executable instructions stored in the storage medium are executed by the processor, the second client includes: a resource management application of the resource storage organization or a self-service operation machine of the resource storage organization.
  • the payment account registration process is performed, and the obtained The account identification information of the target user is sent to the second server, so that the second server performs binding processing according to the account identification information; wherein, the account registration request is that the second server receives the second request of the target user to use the resource storage mechanism.
  • the binding request sent by the client is sent when it is determined that the target user has not registered the payment account of the payment application; and the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security
  • the authentication condition is to perform security authentication processing on the target user through the first client.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the storage medium may be a U disk, an optical disk, a hard disk, etc.
  • the computer-executable instructions stored in the storage medium can realize the following process when being executed by the processor: the second client receiving the resource storage mechanism sends The binding request; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target user be stored in the storage account of the resource storage institution with the target user Bind the payment account of the payment application to grant the payment account the right to pay based on the storage account; the binding request includes the first account information of the storage account; if it is determined that the target user is not Register the payment account of the payment application, then send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first server can register the payment account Process to obtain the account identification information of the target user, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, the first client performs The target user performs security
  • the binding request is based on the binding of the target user. If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information of the storage account included in the binding request, and according to the A binding process is performed on the account identification information sent by the server.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the determining that the target user has not registered the payment account of the payment application includes: according to the first account information, from a specified Acquire the associated identity information of the target user from the database; send an account query request to the second server according to the identity information and the first account information, so that the second server can make the second server according to the identity Information query associated account identification information; if a query result sent by the second server indicating that the account identification information is not inquired is received, it is determined that the target user has not registered the payment account of the payment application.
  • the sending the account registration request of the target user to the first server of the payment application according to the first account information includes : According to the first account information, obtain the associated contact information of the target user from a designated database; according to the contact information, send the account registration request of the target user to the first server of the payment application , So that the first server sends the first verification information to the contact method when performing the registration processing of the payment account.
  • the method further includes : Send a verification information acquisition request to the second client, so that the second client displays an input interface and acquires the first verification information to be verified input by the target user based on the input interface; receiving the first verification information 2.
  • the first verification information to be verified sent by the client; sending the first verification information to be verified to the first server, so that the first server is checking the first verification information When the verification is passed, the registration process of the payment account is performed.
  • sending the account registration request of the target user to the first server of the payment application according to the first account information includes: It is determined that the signature information for the target user to sign the preset binding agreement is obtained, and then the account registration request of the target user is sent to the first server of the payment application according to the first account information.
  • the binding processing according to the account identification information includes: associating the account identification information with the first account information Record to obtain third record information; wherein the third record information indicates that the payment account corresponding to the account identification information is successfully bound with the storage account corresponding to the first account information.
  • the binding request is based on the binding of the target user. If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information of the storage account included in the binding request, and according to the A binding process is performed on the account identification information sent by the server.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the storage medium may be a U disk, an optical disk, a hard disk, etc.
  • the computer executable instructions stored in the storage medium can implement the following process when executed by the processor: Security authentication information acquisition request; wherein, the acquisition request is that the first server determines that the target user is in the account registration process based on the target user’s account registration request sent by the second server of the resource storage institution.
  • the account registration request is sent by the second server based on the target user using the second client of the resource storage mechanism
  • the binding request is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be stored in the storage account of the resource storage institution with the Bind the payment account of the payment application to be registered by the target user to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, and generate the terminal based on the device information Device fingerprint of the device; sending the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  • the method further includes: responding to the target The user sends a login request to the first server based on the login operation of the login interface; wherein the login request includes the contact information of the target user associated with the storage account, so that the first server sends the Send the second verification information in the contact information; obtain the second verification information to be verified input by the target user in the login interface; send the second verification information to be verified to the first server to Enabling the first server to verify the second verification information to be verified; receiving the login result information sent by the first server.
  • the device fingerprint of the terminal device where it is located is generated, and the The device fingerprint is sent to the first server to enable the first server to perform security authentication processing;
  • the acquisition request is the account registration request of the target user sent by the first server to the second server based on the resource storage institution for account registration
  • the account registration request is a binding sent by the second server based on the second client of the target user using the resource storage mechanism The request is sent when it is determined that the target user has not registered the payment account of the payment application.
  • the target user when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • the storage medium may be a U disk, an optical disk, a hard disk, etc.
  • the following process can be realized: in response to the binding operation of the target user, The second server of the resource storage institution sends a binding request; wherein the binding request is used to request to bind the payment account of the payment application of the target user with the storage account of the target user in the resource storage institution To grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second server can make the payment according to the first account information Perform binding processing; receive the binding result information sent by the second server.
  • the method further includes: receiving a verification sent by the second server Information acquisition request; wherein the verification information acquisition request is sent based on the target user account registration request sent to the first server of the payment application; according to the verification information acquisition request, an input interface is displayed; The first verification information to be verified entered by the target user in the input interface; the first verification information to be verified is sent to the second server, so that the second server sends the The verified first verification information is sent to the first server, so that when the first server passes the verification of the to-be-verified first verification information, the payment account is registered.
  • the method further includes: obtaining the target user to sign a preset binding
  • the signing information of the agreement is sent to the second server, so that the second server performs related processing based on the signing information.
  • the binding request is sent to the second server of the resource storage mechanism to enable the second service
  • the terminal sends an account registration request to the first server of the payment application, and performs binding processing based on the account identification information of the payment account sent by the first server; and the first service
  • the terminal determines that it meets the preset security authentication conditions, it performs security authentication processing on the target user.
  • the target user when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and
  • the registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
  • a programmable logic device Programmable Logic Device, PLD
  • PLD Programmable Logic Device
  • FPGA Field Programmable Gate Array
  • HDL Hardware Description Language
  • ABEL Advanced Boolean Expression Language
  • AHDL Altera Hardware Description Language
  • HDCal JHDL
  • Lava Lava
  • Lola MyHDL
  • PALASM RHDL
  • VHDL Very-High-Speed Integrated Circuit Hardware Description Language
  • Verilog Verilog
  • the controller can be implemented in any suitable manner.
  • the controller can take the form of, for example, a microprocessor or a processor and a computer readable medium storing computer readable program codes (such as software or firmware) executable by the (micro) processor. , Logic gates, switches, application specific integrated circuits (ASICs), programmable logic controllers and embedded microcontrollers. Examples of controllers include but are not limited to the following microcontrollers: ARC625D, Atmel AT91SAM, Microchip PIC18F26K20 and Silicon Labs C8051F320, the memory controller can also be implemented as part of the memory control logic.
  • controllers in addition to implementing the controller in a purely computer-readable program code manner, it is completely possible to program the method steps to make the controller use logic gates, switches, application-specific integrated circuits, programmable logic controllers, and embedded logic.
  • the same function can be realized in the form of a microcontroller or the like. Therefore, such a controller can be regarded as a hardware component, and the devices included in it for realizing various functions can also be regarded as a structure within the hardware component. Or even, a device for realizing various functions can be regarded as both a software module for realizing the method and a structure within a hardware component.
  • a typical implementation device is a computer.
  • the computer can be, for example, a personal computer, a laptop computer, a cellular phone, a camera phone, a smart phone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or among these devices Any combination of equipment.
  • the embodiments of this specification can be provided as methods, systems or computer program products. Therefore, the embodiments of this specification may adopt the form of a complete hardware embodiment, a complete software embodiment, or an embodiment combining software and hardware. Moreover, this specification can take the form of a computer program product implemented on a computer-usable storage medium (including but not limited to disk storage, CD-ROM, optical storage, etc.) containing computer-usable program code.
  • a computer-usable storage medium including but not limited to disk storage, CD-ROM, optical storage, etc.
  • These computer program instructions can also be stored in a computer-readable memory that can guide a computer or other programmable data processing equipment to work in a specific manner, so that the instructions stored in the computer-readable memory produce an article of manufacture including the instruction device.
  • the device implements the functions specified in one process or multiple processes in the flowchart and/or one block or multiple blocks in the block diagram.
  • These computer program instructions can also be loaded on a computer or other programmable data processing equipment, so that a series of operation steps are executed on the computer or other programmable equipment to produce computer-implemented processing, so as to execute on the computer or other programmable equipment.
  • the instructions provide steps for implementing the functions specified in one process or multiple processes in the flowchart and/or one block or multiple blocks in the block diagram.
  • the computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
  • processors CPUs
  • input/output interfaces network interfaces
  • memory volatile and non-volatile memory
  • the memory may include non-permanent memory in computer readable media, random access memory (RAM) and/or non-volatile memory, such as read-only memory (ROM) or flash memory (flash RAM). Memory is an example of computer readable media.
  • RAM random access memory
  • ROM read-only memory
  • flash RAM flash memory
  • Computer-readable media include permanent and non-permanent, removable and non-removable media, and information storage can be realized by any method or technology.
  • Information can be computer-readable instructions, data structures, program modules, or other data.
  • Examples of computer storage media include, but are not limited to, phase change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random access memory (RAM), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory or other memory technology, CD-ROM, digital versatile disc (DVD) or other optical storage, Magnetic cassettes, magnetic tape disk storage or other magnetic storage devices or any other non-transmission media can be used to store information that can be accessed by computing devices. According to the definition in this article, computer-readable media does not include transitory media, such as modulated data signals and carrier waves.
  • program modules include routines, programs, objects, components, data structures, etc. that perform specific tasks or implement specific abstract data types.
  • the embodiments of this specification can also be practiced in distributed computing environments. In these distributed computing environments, tasks are performed by remote processing devices connected through a communication network. In a distributed computing environment, program modules can be located in local and remote computer storage media including storage devices.

Abstract

The embodiments of the present specification provide a binding processing method, apparatus and device. The method comprising: a second server side of a resource storage mechanism receiving a binding request sent by a second client side of the resource storage mechanism, and if it is determined that a target user does not register a payment account of a payment application, sending an account registration request of the target user to a first server side of the payment application; the first server side performing registration processing of the payment account according to registration information included in the account registration request, so as to obtain account identification information of the target user; sending the account identification information to the second server side, so that the second server side performs binding processing according to the account identification information; and if the first server side determines that the operation processing of the target user on a first client side of the payment application meets a preset security authentication condition, performing security authentication processing on the target user by means of the first client side.

Description

绑定处理Binding processing 技术领域Technical field
本文件涉及数据处理技术领域,尤其涉及一种绑定处理方法、装置及设备。This document relates to the field of data processing technology, in particular to a binding processing method, device and equipment.
背景技术Background technique
随着移动支付行业的快速发展,各种支付应用应运而生。为了确保支付安全,通常在用户首次注册支付应用的支付账户时,不仅需要对用户的身份进行验证,还需对支付应用所在终端设备的设备环境进行验证。为了实现支付应用的支付功能,用户通常在支付账户注册成功之后进行银行卡的绑定。当前,银行卡的绑定方式,通常为用户操作支付应用完成银行卡的绑定。该单一的绑定方式,不能满足用户在不同场景的绑定需求。With the rapid development of the mobile payment industry, various payment applications have emerged. In order to ensure payment security, usually when a user registers for a payment account of a payment application for the first time, not only the identity of the user needs to be verified, but also the device environment of the terminal device where the payment application is located. In order to realize the payment function of the payment application, the user usually binds the bank card after the payment account is successfully registered. Currently, the bank card binding method usually involves the user operating a payment application to complete the bank card binding. This single binding method cannot meet the binding requirements of users in different scenarios.
发明内容Summary of the invention
本说明书实施例的目的是提供一种绑定处理方法、装置及设备,在不增加用户操作的基础上,完成支付账户与存储账户的绑定,满足用户在不同场景下的绑定需求。The purpose of the embodiments of this specification is to provide a binding processing method, device, and equipment to complete the binding of the payment account and the storage account without adding user operations, so as to meet the binding requirements of users in different scenarios.
本说明书实施例提供了一种绑定处理方法,应用于支付应用的第一服务端,包括:接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。The embodiment of this specification provides a binding processing method, applied to the first server of a payment application, including: receiving an account registration request of a target user sent by a second server of a resource storage institution; wherein, the account registration request It is sent by the second server when it receives a binding request sent by the target user using the second client of the resource storage mechanism and determines that the target user has not registered the payment account of the payment application; The binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application to be registered by the target user, so as to grant the payment account based on the The payment authority of the storage account for payment; the account registration request includes the registration information of the target user; the registration processing of the payment account is performed according to the registration information to obtain the account identification information of the target user; and the account is identified The information is sent to the second server, so that the second server performs binding processing according to the account identification information; if it is determined that the operation processing of the target user on the first client of the payment application satisfies The preset security authentication conditions are used to perform security authentication processing on the target user through the first client.
本说明书实施例提供了一种绑定处理方法,应用于资源存储机构的第二服务端,包括:接收所述资源存储机构的第二客户端发送的绑定请求,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。The embodiment of this specification provides a binding processing method, which is applied to the second server of a resource storage institution, and includes: receiving a binding request sent by a second client of the resource storage institution, where the binding request is based on a target The binding operation is sent by the user, and the binding request is used to request that the storage account of the target user in the resource storage institution be bound with the payment account of the payment application of the target user to grant the The payment account is based on the payment authority of the storage account for payment; the binding request includes the first account information of the storage account; if it is determined that the target user has not registered the payment account of the payment application, then according to the first An account information sends the account registration request of the target user to the first server of the payment application, so that the first server performs payment account registration processing to obtain the account identification information of the target user, and determines When the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition, perform security authentication processing on the target user through the first client terminal; receive the first service The account identification information sent by the terminal performs binding processing according to the account identification information and the first account information, and sends binding result information to the second client.
本说明书实施例提供了一种绑定处理方法,应用于支付应用的第一客户端,包括: 接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The embodiment of this specification provides a binding processing method applied to a first client of a payment application, including: receiving an acquisition request for security authentication information sent by a first server of the payment application; wherein, the acquisition request After performing account registration processing for the first server based on the account registration request of the target user sent by the second server of the resource storage institution, it is determined that the operation processing of the target user on the first client meets the preset The account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, when it is determined that the target user is not registered Sent when the payment account of the payment application; the binding request is used to request that the target user's storage account in the resource storage institution be exchanged with the payment account of the payment application to be registered by the target user Binding to grant the payment account the payment authority to make payments based on the storage account; obtain the device information of the terminal device where it is located, and generate the device fingerprint of the terminal device based on the device information; send the device fingerprint to all The first server is configured to enable the first server to perform security authentication processing according to the device fingerprint.
本说明书实施例提供了一种绑定处理方法,应用于资源存储机构的第二客户端,包括:响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;接收所述第二服务端发送的绑定结果信息。The embodiment of this specification provides a binding processing method applied to the second client of the resource storage organization, including: in response to the binding operation of the target user, sending a binding request to the second server of the resource storage organization; wherein The binding request is used to request to bind the payment account of the payment application of the target user with the storage account of the target user in the resource storage institution, so as to grant the payment account to perform processing based on the storage account. Payment authority for payment; the binding request includes the first account information of the storage account, so that the second server performs binding processing according to the first account information; receives the information sent by the second server Binding result information.
本说明书实施例提供了一种绑定处理装置,应用于支付应用的第一服务端,包括:接收模块,其接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;注册模块,其根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;发送模块,其将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;认证模块,其若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。The embodiment of this specification provides a binding processing device, which is applied to the first server of a payment application, and includes: a receiving module that receives an account registration request of a target user sent by a second server of a resource storage institution; The account registration request is when the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user has not registered the payment account of the payment application The binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application to be registered by the target user to grant the The payment account is based on the payment authority of the storage account; the account registration request includes the registration information of the target user; the registration module performs the registration processing of the payment account according to the registration information to obtain the account of the target user Identification information; a sending module, which sends the account identification information to the second server, so that the second server performs binding processing according to the account identification information; an authentication module, if it determines the target The user's operation processing on the first client terminal of the payment application satisfies a preset security authentication condition, and then the target user is subjected to security authentication processing through the first client terminal.
本说明书实施例提供了一种绑定处理装置,应用于资源存储机构的第二服务端,包括:接收模块,其接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;确定模块,其若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;绑定模块,其接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息 进行绑定处理;发送模块,其向所述第二客户端发送绑定结果信息。The embodiment of this specification provides a binding processing device, which is applied to a second server of a resource storage mechanism, and includes: a receiving module that receives a binding request sent by a second client of the resource storage mechanism; The binding request is sent based on the binding operation of the target user, and the binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application of the target user. To grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account; the determining module, if it determines that the target user is not registered for the payment The payment account of the application, according to the first account information, send the account registration request of the target user to the first server of the payment application, so that the first server performs payment account registration processing to obtain the The account identification information of the target user, and when it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies the preset security authentication conditions, the target user is processed through the first client terminal Security authentication processing; a binding module that receives the account identification information sent by the first server, and performs binding processing based on the account identification information and the first account information; a sending module that sends the account identification information to the first server 2. The client sends the binding result information.
本说明书实施例提供一种绑定处理装置,应用于支付应用的第一客户端,包括:接收模块,其接收所述支付应用的第一服务端发送的安全认证信息的获取请求,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;获取模块,其获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;发送模块,其将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The embodiment of this specification provides a binding processing device, which is applied to a first client of a payment application, and includes: a receiving module that receives an acquisition request for security authentication information sent by the first server of the payment application, and the acquisition The request is that after the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, it is determined that the target user’s operation processing on the first client meets the expected The account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, when it is determined that the target user has not Sent when the payment account of the payment application is registered; the binding request is used to request that the storage account of the target user in the resource storage institution be connected to the payment account of the payment application to be registered by the target user Binding to grant the payment account the payment authority to make payments based on the storage account; an obtaining module, which obtains the device information of the terminal device where it is located, and generates the device fingerprint of the terminal device according to the device information; a sending module, It sends the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
本说明书实施例提供了一种绑定处理装置,应用于资源存储机构的第二客户端,包括:发送模块,其响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;接收模块,其接收所述第二服务端发送的绑定结果信息。The embodiment of this specification provides a binding processing device, which is applied to the second client of the resource storage organization, and includes: a sending module, which sends the binding to the second server of the resource storage organization in response to the binding operation of the target user. Wherein, the binding request is used to request to bind the payment account of the target user’s payment application with the target user’s storage account in the resource storage institution, so as to grant the payment account based on the The payment authority of the storage account for payment; the binding request includes the first account information of the storage account, so that the second server performs binding processing according to the first account information; a receiving module, which receives The binding result information sent by the second server.
本说明书实施例提供了一种绑定处理设备,包括处理器以及被安排成存储计算机可执行指令的存储器。所述计算机可执行指令在被执行时使所述处理器:接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。The embodiments of this specification provide a binding processing device including a processor and a memory arranged to store computer-executable instructions. When the computer-executable instructions are executed, the processor: receives an account registration request of the target user sent by the second server of the resource storage mechanism; wherein, the account registration request is received by the second server. Sent when the target user uses the binding request sent by the second client of the resource storage institution and it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request Binding the target user's storage account in the resource storage institution with the payment account of the payment application to which the target user is to be registered, so as to grant the payment account the right to pay based on the storage account; The account registration request includes the registration information of the target user; the payment account registration processing is performed according to the registration information to obtain the account identification information of the target user; the account identification information is sent to the second server , So that the second server performs binding processing according to the account identification information; if it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication conditions, pass The first client performs security authentication processing on the target user.
本说明书实施例提供了一种绑定处理设备,包括处理器以及被安排成存储计算机可执行指令的存储器。所述计算机可执行指令在被执行时使所述处理器:接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理 得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。The embodiments of this specification provide a binding processing device including a processor and a memory arranged to store computer-executable instructions. When the computer-executable instructions are executed, the processor: receives a binding request sent by a second client of the resource storage mechanism; wherein, the binding request is sent based on the binding operation of the target user, The binding request is used to request to bind the storage account of the target user in the resource storage institution with the payment account of the payment application of the target user, so as to authorize the payment account to perform processing based on the storage account Payment authority for payment; the binding request includes the first account information of the storage account; if it is determined that the target user has not registered the payment account of the payment application, send the payment application to the payment application according to the first account information The first server sends the account registration request of the target user, so that the first server performs payment account registration processing to obtain the account identification information of the target user, and determines that the target user is in the payment account. When the operation processing on the first client of the application meets the preset security authentication conditions, perform security authentication processing on the target user through the first client; receive the account identification information sent by the first server , Perform binding processing according to the account identification information and the first account information, and send binding result information to the second client.
本说明书实施例提供了一种绑定处理设备,包括处理器以及被安排成存储计算机可执行指令的存储器,所述计算机可执行指令在被执行时使所述处理器:接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The embodiment of the present specification provides a binding processing device, including a processor and a memory arranged to store computer-executable instructions. When the computer-executable instructions are executed, the processor: An acquisition request for security authentication information sent by the first server; where the acquisition request is after the first server performs account registration processing based on the target user's account registration request sent by the second server of the resource storage institution, Sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is that the second server uses the resource storage mechanism based on the target user The binding request sent by the second client of the second client is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be registered in the resource storage institution A storage account is bound to the payment account of the payment application to be registered by the target user to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, according to the The device information generates the device fingerprint of the terminal device; and sends the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
本说明书实施例提供了一种绑定处理设备,包括处理器以及被安排成存储计算机可执行指令的存储器,所述计算机可执行指令在被执行时使所述处理器:响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;接收所述第二服务端发送的绑定结果信息。The embodiment of the present specification provides a binding processing device including a processor and a memory arranged to store computer-executable instructions, which when executed, cause the processor to respond to the binding of a target user. Send a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the target user’s payment application be combined with the target user’s payment account in the resource storage institution. The storage account is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second server can perform payment according to the The first account information is subjected to binding processing; the binding result information sent by the second server is received.
本说明书实施例提供一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。The embodiments of this specification provide a storage medium for storing computer-executable instructions that, when executed, realize the following process: receiving a target user's account registration request sent by a second server of a resource storage institution; Wherein, the account registration request is when the second server receives a binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user is not registered with the payment application The binding request is used to request that the storage account of the target user in the resource storage institution be bound with the payment account of the payment application to be registered by the target user, so as to Grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the registration information of the target user; perform the registration processing of the payment account according to the registration information to obtain the account identification of the target user Information; send the account identification information to the second server, so that the second server performs binding processing according to the account identification information; if it is determined that the target user is in the first payment application If the operation processing on the client meets the preset security authentication condition, then the first client performs security authentication processing on the target user.
本说明书实施例提供了一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包 括所述存储账户的第一账户信息;若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。The embodiment of this specification provides a storage medium for storing computer-executable instructions that, when executed, realize the following process: receiving a binding request sent by a second client of the resource storage mechanism; Wherein, the binding request is sent based on the binding operation of the target user, and the binding request is used to request payment between the target user’s storage account in the resource storage institution and the payment application of the target user. The account is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account; if it is determined that the target user has not registered the payment application The payment account of the target user is sent to the first server of the payment application according to the first account information, so that the first server performs payment account registration processing to obtain the target The user’s account identification information, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, the target user is secured through the first client Authentication processing; receiving the account identification information sent by the first server, performing binding processing according to the account identification information and the first account information, and sending binding result information to the second client.
本说明书实施例提供一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The embodiments of this specification provide a storage medium for storing computer-executable instructions that, when executed, implement the following process: receiving a request for obtaining security authentication information sent by the first server of the payment application Wherein, the acquisition request is that the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, and then determines that the target user is in the first client The above operation processing is sent when the preset security authentication conditions are met; the account registration request is a binding request sent by the second server based on the target user using the second client of the resource storage mechanism, Sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be registered in the storage account of the resource storage institution with the target user to be registered Bind the payment account of the payment application to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, and generate the device fingerprint of the terminal device based on the device information; The device fingerprint is sent to the first server, so that the first server performs security authentication processing according to the device fingerprint.
本说明书实施例提供了一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;接收所述第二服务端发送的绑定结果信息。The embodiment of this specification provides a storage medium for storing computer-executable instructions that, when executed, realize the following process: in response to the binding operation of the target user, provide a second service to the resource storage organization Terminal sends a binding request; wherein, the binding request is used to request to bind the payment account of the target user’s payment application with the target user’s storage account in the resource storage institution to grant the payment The account is based on the payment authority of the storage account; the binding request includes the first account information of the storage account, so that the second server performs binding processing according to the first account information; The binding result information sent by the second server.
本说明书一个实施例中,目标用户通过操作资源存储机构的第二客户端,在不增加任何用户操作的基础上,同时实现了支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In an embodiment of this specification, the target user can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations by operating the second client of the resource storage institution; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
附图说明Description of the drawings
为了更清楚地说明本说明书实施例或现有技术中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本说明书中记载的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动性的前提下,还可根据这些附图获得其他的附图。In order to more clearly describe the technical solutions in the embodiments of this specification or the prior art, the following will briefly introduce the drawings that need to be used in the description of the embodiments or the prior art. Obviously, the drawings in the following description are only These are some embodiments described in this specification. For those of ordinary skill in the art, other drawings can be obtained based on these drawings without creative labor.
图1为本说明书实施例提供的一种绑定处理方法的第一种场景示意图;FIG. 1 is a schematic diagram of the first scenario of a binding processing method provided by an embodiment of this specification;
图2为本说明书实施例提供的一种绑定处理方法的第二种场景示意图;2 is a schematic diagram of a second scenario of a binding processing method provided by an embodiment of this specification;
图3为本说明书实施例提供的一种绑定处理方法的第一种流程示意图;3 is a schematic diagram of the first flow of a binding processing method provided by an embodiment of this specification;
图4为本说明书实施例提供的一种绑定处理方法的第二种流程示意图;4 is a schematic diagram of the second flow of a binding processing method provided by an embodiment of this specification;
图5为本说明书实施例提供的一种绑定处理方法的第三种流程示意图;FIG. 5 is a schematic diagram of a third process of a binding processing method provided by an embodiment of this specification;
图6为本说明书实施例提供的一种绑定处理方法的第四种流程示意图;6 is a schematic diagram of the fourth flow of a binding processing method provided by an embodiment of this specification;
图7为本说明书实施例提供的一种绑定处理方法的第五种流程示意图;FIG. 7 is a schematic diagram of a fifth flow of a binding processing method provided by an embodiment of this specification;
图8为本说明书实施例提供的一种绑定处理方法的第六种流程示意图;FIG. 8 is a schematic diagram of a sixth flow of a binding processing method provided by an embodiment of this specification;
图9为本说明书实施例提供的一种绑定处理方法的第七种流程示意图;FIG. 9 is a schematic diagram of a seventh flow of a binding processing method provided by an embodiment of this specification;
图10为本说明书实施例提供的一种绑定处理方法的第八种流程示意图;FIG. 10 is a schematic diagram of the eighth flow of a binding processing method provided by an embodiment of this specification;
图11为本说明书实施例提供的一种绑定处理方法的第九种流程示意图;FIG. 11 is a schematic diagram of a ninth flow of a binding processing method provided by an embodiment of this specification;
图12为本说明书实施例提供的一种绑定处理方法的第十种流程示意图;FIG. 12 is a schematic diagram of a tenth flow of a binding processing method provided by an embodiment of this specification;
图13为本说明书实施例提供的一种绑定处理方法的第十一种流程示意图;FIG. 13 is a schematic diagram of the eleventh flow of a binding processing method provided by an embodiment of this specification;
图14为本说明书实施例提供的一种绑定处理方法的第十二种流程示意图;FIG. 14 is a schematic diagram of a twelfth flow of a binding processing method provided by an embodiment of this specification;
图15为本说明书实施例提供的一种绑定处理方法的第十三种流程示意图;15 is a schematic diagram of the thirteenth process of a binding processing method provided by an embodiment of this specification;
图16为本说明书实施例提供的一种绑定处理方法的第十四种流程示意图;16 is a schematic diagram of the fourteenth flow of a binding processing method provided by an embodiment of this specification;
图17为本说明书实施例提供的一种绑定处理方法的第十五种流程示意图;FIG. 17 is a schematic diagram of a fifteenth flow of a binding processing method provided by an embodiment of this specification;
图18为本说明书实施例提供的一种绑定处理方法的第十六种流程示意图;18 is a schematic diagram of a sixteenth flow of a binding processing method provided by an embodiment of this specification;
图19为本说明书实施例提供的一种绑定处理装置的第一种模块组成示意图;FIG. 19 is a schematic diagram of the composition of the first module of a binding processing apparatus provided by an embodiment of this specification;
图20为本说明书实施例提供的一种绑定处理装置的第二种模块组成示意图;20 is a schematic diagram of the composition of a second type of module of a binding processing apparatus provided by an embodiment of this specification;
图21为本说明书实施例提供的一种绑定处理装置的第三种模块组成示意图;FIG. 21 is a schematic diagram of the composition of a third module of a binding processing apparatus provided by an embodiment of this specification;
图22为本说明书实施例提供的一种绑定处理装置的第四种模块组成示意图;FIG. 22 is a schematic diagram of the fourth module composition of a binding processing apparatus provided by an embodiment of this specification; FIG.
图23为本说明书实施例提供的一种绑定处理设备的结构示意图。FIG. 23 is a schematic structural diagram of a binding processing device provided by an embodiment of this specification.
具体实施方式Detailed ways
为了使本技术领域的人员更好地理解本说明书实施例中的技术方案,下面将结合本说明书实施例中的附图,对本说明书实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本说明书的一部分实施例,而不是全部的实施例。基于本说明书实施例,本领域普通技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都应当属于本文件的保护范围。In order to enable those skilled in the art to better understand the technical solutions in the embodiments of this specification, the technical solutions in the embodiments of this specification will be clearly and completely described below in conjunction with the drawings in the embodiments of this specification. Obviously, The described embodiments are only a part of the embodiments in this specification, rather than all the embodiments. Based on the embodiments of this specification, all other embodiments obtained by those of ordinary skill in the art without creative work shall fall within the protection scope of this document.
图1为本说明书实施例提供的一种绑定处理方法的应用场景示意图,如图1所示,该场景包括:支付应用的第一客户端、支付应用的第一服务端、资源存储机构的第二客户端、资源存储机构的第二服务端。其中,第一客户端和第二客户端可为手机、平板电脑、台式计算机、便携笔记本式计算机等(图1中仅示出手机);应当理解的是,第一客户端中安装有支付应用的应用程序(application,简称app),第二客户端安装有资源存储机构的资源管理应用程序;第一服务端和第二服务端可是独立的服务器,也可是由 多个服务器组成的服务器集群。Figure 1 is a schematic diagram of an application scenario of a binding processing method provided by an embodiment of this specification. As shown in Figure 1, the scenario includes: the first client of the payment application, the first server of the payment application, and the The second client, the second server of the resource storage organization. Among them, the first client and the second client can be a mobile phone, a tablet computer, a desktop computer, a portable notebook computer, etc. (only a mobile phone is shown in FIG. 1); it should be understood that a payment application is installed in the first client The second client is installed with the resource management application of the resource storage mechanism; the first server and the second server may be independent servers or a server cluster composed of multiple servers.
当目标用户身处任何地点时,如家中、公司、资源存储机构等,若需要将其待注册的支付应用的支付账户,与其在资源存储机构的存储账户绑定,则可操作资源存储机构的第二客户端进行账户的绑定处理。第二客户端响应于目标用户的绑定操作,向第二服务端发送绑定请求,以请求将目标用户在资源存储机构的存储账户,与目标用户的支付应用的支付账户进行绑定,以授予支付账户基于存储账户进行支付的支付权限。第二服务端接收第二客户端发送的绑定请求,根据绑定请求包括的待绑定的存储账户的第一账户信息,确定目标用户是否已注册支付应用的支付账户,并在确定结果为否时,向第一服务端发送账户注册请求。第一服务端根据账户注册请求包括的注册信息进行支付账户的注册处理,得到目标用户的账户标识信息,并将账户标识信息发送给第一服务端;第一服务端根据接收到的账户标识信息和待绑定的存储账户的第一账户信息进行绑定处理,并向第二客户端发送绑定结果信息。当绑定结果信息为绑定成功信息、且目标用户操作第一客户端进行相关业务处理时,第一服务端若确定目标用户在第一客户端上的操作处理满足预设的安全认证条件,则通过第一客户端对目标用户进行安全认证处理。当目标用户已注册支付应用的支付账户,并需要将支付账户与目标用户在资源存储机构的存储账户进行绑定时,也可操作第二客户端实现账户的绑定,具体过程在后文进行详述。When the target user is in any place, such as home, company, resource storage institution, etc., if you need to bind the payment account of the payment application to be registered with the storage account of the resource storage institution, you can operate the resource storage institution. The second client terminal performs account binding processing. In response to the binding operation of the target user, the second client sends a binding request to the second server to request that the storage account of the target user in the resource storage institution be bound to the payment account of the payment application of the target user. Grant the payment account the right to pay based on the storage account. The second server receives the binding request sent by the second client, and according to the first account information of the storage account to be bound included in the binding request, determines whether the target user has registered the payment account of the payment application, and determines whether the result is If not, send an account registration request to the first server. The first server performs payment account registration processing according to the registration information included in the account registration request, obtains the account identification information of the target user, and sends the account identification information to the first server; the first server according to the received account identification information Perform binding processing with the first account information of the storage account to be bound, and send the binding result information to the second client. When the binding result information is binding success information and the target user operates the first client to perform related business processing, if the first server determines that the target user's operation processing on the first client meets the preset security authentication conditions, Then, the target user is subjected to security authentication processing through the first client. When the target user has registered the payment account of the payment application and needs to bind the payment account with the target user's storage account in the resource storage institution, the second client can also be operated to realize the account binding. The specific process will be carried out later. Detailed.
进一步的,如图2所示,第二客户端还可为资源存储机构的自助操作机。当目标用户身处资源存储机构进行业务办理时,如开立存储账户、进行资源的转移等,若目标用户此时有将其待注册的支付应用的支付账户,与其在资源存储机构的存储账户进行绑定的需求,则可操作资源存储机构的自助操作机,该自助操作机基于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求,从而按照上述方式实现支付账户的注册,以及支付账户与存储账户的绑定。特别地,当自助操作机具有存储账户的开立功能时,可同时实现存储账户的开立、支付账户的注册、以及存储账户与支付账户的绑定等。通常的,存储账户的开立、支付账户的注册等,均需要对目标用户进行身份验证,此时,则可通过一次身份验证,同时实现存储账户的开立和支付账户的注册等,因此能够减少用户操作,提升用户体验。Further, as shown in Figure 2, the second client can also be a self-service operation machine of a resource storage institution. When the target user is in a resource storage institution for business processing, such as opening a storage account, transferring resources, etc., if the target user has a payment account for the payment application to be registered at this time, and the storage account in the resource storage institution For binding requirements, the self-service operation machine of the resource storage institution can be operated. Based on the binding operation of the target user, the self-service operation machine sends a binding request to the second server of the resource storage institution, thereby realizing the payment account in the above manner. Registration, and the binding of payment accounts and storage accounts. In particular, when the self-service operation machine has the function of opening a storage account, the opening of the storage account, the registration of the payment account, and the binding of the storage account and the payment account can be realized at the same time. Generally, the opening of a storage account and the registration of a payment account all require the identity verification of the target user. In this case, the identity verification can be passed once, and the opening of the storage account and the registration of the payment account can be realized at the same time. Reduce user operations and improve user experience.
由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
图3为本说明书实施例提供的一种绑定处理方法的流程示意图,图3中的方法能够由图1中的第一服务端执行,如图3所示,该方法包括以下步骤:Fig. 3 is a schematic flowchart of a binding processing method provided by an embodiment of this specification. The method in Fig. 3 can be executed by the first server in Fig. 1. As shown in Fig. 3, the method includes the following steps:
步骤S102,接收资源存储机构的第二服务端发送的目标用户的账户注册请求,账户注册请求为第二服务端在接收到目标用户使用资源存储机构的第二客户端发送的绑定请求、且确定目标用户未注册支付应用的支付账户时发送;绑定请求用于请求将目标用户在资源存储机构的存储账户与目标用户待注册的支付应用的支付账户进行绑定,以授予支付账户基于存储账户进行支付的支付权限;账户注册请求包括目标用户的注册信息。Step S102, receiving an account registration request of the target user sent by the second server of the resource storage institution, the account registration request being a binding request sent by the second server after receiving the second client of the target user using the resource storage institution, and Sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request to bind the target user's storage account in the resource storage institution with the target user's payment account of the payment application to be registered, so as to grant the payment account based on the storage The payment authority of the account for payment; the account registration request includes the registration information of the target user.
当目标用户需要将其待注册的支付应用的支付账户,与其在资源存储机构的存储账 户绑定时,可操作资源存储机构的第二客户端进行账户的绑定处理。第二客户端响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求,以请求将目标用户在资源存储机构的存储账户,与目标用户的待注册的支付应用的支付账户进行绑定。第二服务端接收到第二客户端发送的绑定请求后,根据绑定请求包括的待绑定的存储账户的第一账户信息,确定目标用户是否已注册支付应用的支付账户,并在确定结果为否时,向第一服务端发送账户注册请求。其中,目标用户在资源存储机构的存储账户可为储蓄账户、信用账户等。When the target user needs to bind the payment account of the payment application to be registered with its storage account in the resource storage institution, the second client terminal of the resource storage institution can be operated to perform account binding processing. In response to the binding operation of the target user, the second client sends a binding request to the second server of the resource storage institution to request that the target user be registered in the storage account of the resource storage institution with the payment application of the target user to be registered. The payment account is bound. After receiving the binding request sent by the second client, the second server determines whether the target user has registered the payment account of the payment application according to the first account information of the storage account to be bound included in the binding request, and determines If the result is no, send an account registration request to the first server. Among them, the storage account of the target user in the resource storage institution may be a savings account, a credit account, and so on.
步骤S104,根据注册信息进行支付账户的注册处理,得到目标用户的账户标识信息。Step S104: Perform registration processing of the payment account according to the registration information to obtain the account identification information of the target user.
步骤S106,将账户标识信息发送给第二服务端,以使第二服务端根据账户标识信息进行绑定处理。Step S106: Send the account identification information to the second server, so that the second server performs binding processing according to the account identification information.
步骤S108,若确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过第一客户端对目标用户进行安全认证处理。Step S108: If it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication condition, then the target user is subjected to security authentication processing through the first client.
本说明书实施例中,第一服务端接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理;其中,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请求、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the embodiment of this specification, when the first server receives the account registration request sent by the second server of the resource storage institution, it performs the registration process of the payment account, and sends the obtained account identification information of the target user to the second server , So that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target user Sent when the payment account of the payment application is not registered; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is processed through the first client Security authentication processing. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
考虑到目标用户在操作第二客户端进行支付账户与存储账户的绑定操作时,目标用户可能已注册支付账户;基于此,为了避免支付账户的重复注册,本说明书实施例中,第二服务端接收到第二客户端发送的绑定请求时,首先向第一服务端发送支付账户查询请求以确定目标用户是否已注册支付应用的支付账户。相应的,如图4所示,步骤S102之前,还可包括:Considering that when the target user is operating the second client terminal to bind the payment account and the storage account, the target user may have registered a payment account; based on this, in order to avoid repeated registration of the payment account, in the embodiment of this specification, the second service When receiving the binding request sent by the second client, the terminal first sends a payment account query request to the first server to determine whether the target user has registered a payment account of the payment application. Correspondingly, as shown in FIG. 4, before step S102, it may further include:
步骤S100-2,接收第二服务端发送的支付账户查询请求;其中,支付账户查询请求为第二服务端在接收到目标用户使用资源存储机构的第二客户端发送的绑定请求时所发送;绑定请求用于请求将目标用户在资源存储机构的存储账户,与目标用户的支付应用的支付账户进行绑定,以授予支付账户基于存储账户进行支付的支付权限;支付账户查询请求包括存储账户所关联的目标用户的身份信息;Step S100-2, receiving a payment account query request sent by the second server; where the payment account query request is sent by the second server when receiving a binding request sent by the second client of the target user using the resource storage mechanism ; The binding request is used to request to bind the target user's storage account in the resource storage institution with the payment account of the target user's payment application to grant the payment account the right to pay based on the storage account; the payment account query request includes storage The identity information of the target user associated with the account;
其中,身份信息为目标用户在资源存储机构开立存储账户时,所提供的身份信息,该身份信息经过权威认证,具有真实性和有效性;该身份信息如目标用户的用户姓名、目标用户的身份证件号码等。Among them, the identity information is the identity information provided by the target user when opening a storage account at the resource storage institution. The identity information has been authenticated by authority and has authenticity and validity; such identity information is the user name of the target user, the target user’s ID number, etc.
步骤S100-4,若根据身份信息未查询到关联的账户标识信息,则向第二服务端发送表征未查询到账户标识信息的查询结果,以使第二服务端确定目标用户未注册支付应用 的支付账户,并发送账户注册请求。Step S100-4: If the associated account identification information is not queried based on the identity information, the query result indicating that the account identification information is not queried is sent to the second server, so that the second server determines that the target user is not registered with the payment application. Pay for the account and send an account registration request.
第一服务端可将支付账户查询请求包括的身份信息与指定的用户信息库中的各身份信息进行匹配,并在均匹配失败时向第二服务端发送表征未查询到账户标识信息的查询结果。用户信息库包括多个用户的身份信息与支付账户的账户标识信息的关联关系。The first server can match the identity information included in the payment account query request with each identity information in the designated user information database, and when all matching fails, send a query result indicating that the account identification information is not queried to the second server . The user information database includes the association relationship between the identity information of multiple users and the account identification information of the payment account.
与之对应的,如图4所示,步骤S102包括以下步骤S102-2,接收第二服务端发送的目标用户的账户注册请求;其中账户注册请求包括目标用户的注册信息。Correspondingly, as shown in FIG. 4, step S102 includes the following step S102-2, receiving the account registration request of the target user sent by the second server; wherein the account registration request includes the registration information of the target user.
为了实现待注册的支付账户与待绑定的存储账户的绑定,以及便于后续对目标用户进行安全认证,本说明书实施例中,账户查询请求还包括待绑定的存储账户的第一账户信息,注册请求还包括待绑定的存储账户所关联的目标用户的联系方式。如图5所示,步骤S104可包括以下步骤S104-2和步骤S104-4;In order to realize the binding of the payment account to be registered and the storage account to be bound, and to facilitate subsequent security authentication of the target user, in the embodiment of this specification, the account query request further includes the first account information of the storage account to be bound , The registration request also includes the contact information of the target user associated with the storage account to be bound. As shown in FIG. 5, step S104 may include the following steps S104-2 and S104-4;
步骤S104-2,根据预设的账户标识的生成规则,生成目标用户的账户标识信息,其中,生成规则可在实际应用中根据需要自行设定,对此本说明书中不做具体限定。In step S104-2, the account identification information of the target user is generated according to the preset account identification generation rules, where the generation rules can be set according to needs in actual applications, which are not specifically limited in this specification.
步骤S104-4,将生成的账户标识信息、注册信息包括的联系方式、身份信息、账户查询请求包括的存储账户的第一账户信息和表征待进行安全认证的第一认证标识进行关联记录,得到第一记录信息。Step S104-4, the generated account identification information, the contact information included in the registration information, the identity information, the first account information of the storage account included in the account query request, and the first authentication identifier representing the security authentication to be performed are associated and recorded to obtain The first record information.
通常的,在进行支付账户的注册处理时,需要通过客户端采集用户提供的身份信息并对采集的身份信息验证。而本说明书的实施例中,由于第二服务端发送的账户查询请求中的身份信息,为目标用户在资源存储机构开立存储账户时所提供的身份信息,该身份信息已经过权威认证,具有真实性和有效性,因此,第一服务端在进行支付账户的注册处理时,无需再次采集用户提供的身份信息,可直接基于账户查询请求中的身份信息进行支付账户的注册处理,因此,在用户无感的情况下完成了支付账户的注册,减少了用户操作,提升了用户体验。Generally, when registering a payment account, it is necessary to collect the identity information provided by the user through the client terminal and verify the collected identity information. In the embodiment of this specification, since the identity information in the account query request sent by the second server is the identity information provided by the target user when opening the storage account at the resource storage institution, the identity information has been authenticated by the authority and has Authenticity and validity. Therefore, the first server does not need to collect the identity information provided by the user again during the registration process of the payment account, and can directly perform the payment account registration process based on the identity information in the account query request. The user completes the registration of the payment account without feeling the user, reducing user operations and improving user experience.
为了避免多次对目标用户进行安全认证,如图5所示,本说明书实施例中,步骤S108中若安全认证通过,方法还可包括步骤S110,将第一记录信息中的第一认证标识更新为第二认证标识;其中,第二认证标识表征安全认证通过。In order to avoid multiple security authentication of the target user, as shown in FIG. 5, in the embodiment of this specification, if the security authentication is passed in step S108, the method may further include step S110, updating the first authentication identifier in the first record information It is the second certification mark; among them, the second certification mark signifies that the safety certification has passed.
为了确保支付账户的注册安全,本说明书实施例中,注册信息包括待绑定的存储账户所关联的目标用户的联系方式,相应地,如图6所示,步骤S104可包括以下:In order to ensure the registration security of the payment account, in the embodiment of this specification, the registration information includes the contact information of the target user associated with the storage account to be bound. Correspondingly, as shown in FIG. 6, step S104 may include the following:
步骤S104-6,向注册信息包括的联系方式发送第一验证信息,以使第二客户端将获取的目标用户输入的待验证的第一验证信息发送给第二服务端,使第二服务端将待验证的第一验证信息发送给第一服务端;Step S104-6: Send the first verification information to the contact information included in the registration information, so that the second client sends the acquired first verification information entered by the target user to be verified to the second server, so that the second server Sending the first verification information to be verified to the first server;
步骤S104-8,接收第二服务端发送的待验证的第一验证信息;Step S104-8, receiving the first verification information to be verified sent by the second server;
步骤S104-10,若对待验证的第一验证信息验证通过,则根据注册信息进行支付账户的注册处理,得到目标用户的账户标识信息。In step S104-10, if the verification of the first verification information to be verified is passed, the payment account registration process is performed according to the registration information to obtain the account identification information of the target user.
其中,联系方式可为手机号码、电子邮箱等。以联系方式为手机号码为例,第二服务端在向第一服务端发送账户注册请求之后,还向第二客户端发送验证信息获取请求;第二客户端基于该验证信息获取请求,展示验证信息的输入界面;第一服务端接收到账 户注册请求之后,以信息的方式向该手机号码中发送第一验证信息,并将第一验证信息与第一联系方式关联保存;当目标用户接收到第一服务端发送的信息时,将该信息中的第一验证信息输入至第二客户端所展示的输入界面中,并点击该输入界面中的确定控件,以提交待验证的第一验证信息;第二客户端获取目标用户提交的待验证的第一验证信息,将待验证的第一验证信息和联系方式发送给第二服务端;第二服务端将接收到的待验证的第一验证信息和联系方式发送给第一服务端;第一服务端根据接收到的联系方式查询关联保存的第一验证信息,将查询到的第一验证信息与待验证的第一验证信息进行匹配,若匹配成功,则确定验证通过,根据注册信息进行账户注册处理;若匹配失败,则发送注册失败信息给第二服务端,以使第二服务端向第二客户端发送绑定失败信息。Among them, the contact method can be a mobile phone number, an email address, etc. Taking the mobile phone number as the contact method as an example, after the second server sends an account registration request to the first server, it also sends a verification information acquisition request to the second client; the second client displays verification based on the verification information acquisition request Information input interface; after receiving the account registration request, the first server sends the first verification information to the mobile phone number in the form of information, and stores the first verification information in association with the first contact method; when the target user receives When sending information from the first server, enter the first verification information in the information into the input interface displayed by the second client, and click the OK control in the input interface to submit the first verification information to be verified ; The second client obtains the first verification information to be verified submitted by the target user, and sends the first verification information and contact information to be verified to the second server; the second server sends the received first verification to be verified The information and contact information are sent to the first server; the first server queries the associated stored first verification information according to the received contact information, and matches the queried first verification information with the first verification information to be verified, if If the matching is successful, it is determined that the verification is passed, and the account registration process is performed according to the registration information; if the matching fails, the registration failure information is sent to the second server, so that the second server sends the binding failure information to the second client.
由此,第一服务端通过向注册信息包括的联系方式发送第一验证码并进行验证,能够降低他人冒充目标用户进行操作的风险,确保了业务安全。Therefore, the first server can reduce the risk of others pretending to be a target user to perform operations by sending and verifying the first verification code to the contact information included in the registration information, thereby ensuring business security.
考虑到本说明书实施例中,支付账户的注册和对目标用户的安全认证是异步执行的,为了避免异步的时间间隔较长所带来的安全隐患,如图7所示,本说明书实施例中,步骤S106之后,还包括步骤S107,记录账户标识信息的发送时间。可选地,将发送时间与第一记录信息关联记录,或者,将发送时间与账户标识信息关联记录。Considering that in the embodiment of this specification, the registration of the payment account and the security authentication of the target user are performed asynchronously, in order to avoid the security risks caused by the long asynchronous time interval, as shown in FIG. 7, in the embodiment of this specification After step S106, it further includes step S107, recording the sending time of the account identification information. Optionally, the sending time is recorded in association with the first record information, or the sending time is recorded in association with the account identification information.
与之对应的,如图7所示,步骤S108可包括以下步骤:Correspondingly, as shown in FIG. 7, step S108 may include the following steps:
步骤S108-2,若确定目标用户成功登录支付应用的第一客户端、且根据登录信息中的联系方式查询到的第一记录信息中的认证标识为第一认证标识,则确定查询到的第一记录信息中的身份信息所关联的账户标识信息的数量是否未超过预设数量;Step S108-2, if it is determined that the target user has successfully logged in to the first client of the payment application, and the authentication identifier in the first record information queried according to the contact information in the login information is the first authentication identifier, then the queried first client is determined 1. Whether the number of account identification information associated with the identity information in the record information does not exceed the preset number;
步骤S108-4,获取当前时间,根据记录的发送时间和当前时间确定第一记录信息所对应的支付账户与存储账户的绑定时长;Step S108-4, obtaining the current time, and determining the binding duration of the payment account and the storage account corresponding to the first recorded information according to the recorded sending time and the current time;
步骤S108-6,确定绑定时长是否超过预设时长;Step S108-6, determining whether the binding duration exceeds the preset duration;
步骤S108-8,若确定身份信息所关联的账户标识信息的数量未超过预设数量、且绑定时长未超过预设时长,则确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。Step S108-8, if it is determined that the number of account identification information associated with the identity information does not exceed the preset number and the binding duration does not exceed the preset duration, it is determined that the target user's operation processing on the first client of the payment application satisfies The preset security authentication conditions perform security authentication processing on the target user through the first client.
由于支付账户的注册是在目标用户无感的情况下进行的,即并未要求目标用户设置其支付账户的账户信息,因此,目标用户在首次登录时可通过绑定的存储账户所关联的目标用户的联系方式进行登录。具体而言,当第一服务端确定目标用户成功登录第一客户端时,根据登录信息包括的联系方式查询关联的第一记录信息,确定第一记录信息包括的认证标识是否为第一认证标识,若不是第一认证标识,则等待第一客户端发送的业务请求;若是第一认证标识,则根据第一记录信息中的身份信息,查询关联的账户标识信息的数量,确定查询到的数量是否超过预设数量,若未超过预设数量,则获取当前时间,根据记录的发送时间和获取的当前时间,确定第一记录信息中的账户标识信息所对应的支付账户与第一账户信息所对应的存储账户的绑定时长;以及,确定绑定时长是否超过预设时长,若超过预设时长,则向第一客户端发送第一提示信息,以使目标用户重新进行存储账户的绑定操作,或者使用支付应用认可的其他安全认证方式进行安全认证;若未超过预设时长,则确定满足预设的安全认证条件,通过第一客户端对目标用户进行 安全认证处理。其中,预设数量为用户可注册的支付账户的数量上限,预设数量和预设时长均可在实际应用中根据需要自行设定。Since the registration of the payment account is done when the target user is insensitive, that is, the target user is not required to set the account information of his payment account. Therefore, the target user can use the target associated with the bound storage account when logging in for the first time. Log in with the user’s contact information. Specifically, when the first server determines that the target user successfully logs in to the first client, it queries the associated first record information according to the contact information included in the login information, and determines whether the authentication identifier included in the first record information is the first authentication identifier. If it is not the first authentication identifier, wait for the service request sent by the first client; if it is the first authentication identifier, query the number of associated account identification information according to the identity information in the first record information to determine the number of queries Whether it exceeds the preset number, if it does not exceed the preset number, the current time is obtained, and the payment account corresponding to the account identification information in the first record information and the first account information location are determined based on the recorded sending time and the obtained current time. The binding duration of the corresponding storage account; and, determining whether the binding duration exceeds the preset duration, and if the preset duration exceeds the preset duration, the first prompt message is sent to the first client to enable the target user to re-bind the storage account Operate, or use other security authentication methods recognized by the payment application for security authentication; if the preset duration is not exceeded, it is determined that the preset security authentication conditions are met, and the target user is subjected to security authentication processing through the first client. Among them, the preset number is the upper limit of the number of payment accounts that can be registered by the user, and the preset number and preset duration can be set according to actual needs.
若第一服务端在确定是否满足预设的安全认证条件的过程中,或者在确定满足预设的安全认证条件时,接收到第一客户端发送的业务请求,且该业务请求需要对目标用户进行安全认证处理,则基于该业务请求对目标用户进行一次安全认证处理即可。以及,当第一客户端接收到第一服务端发送的第一提示信息时,目标用户可操作第一客户端进行其他存储账户的绑定。If the first server receives a service request sent by the first client during the process of determining whether the preset security authentication conditions are met, or when it determines that the preset security authentication conditions are met, and the service request needs to be addressed to the target user To perform security authentication processing, it is sufficient to perform security authentication processing on the target user once based on the business request. And, when the first client receives the first prompt information sent by the first server, the target user can operate the first client to bind other storage accounts.
通过对身份信息所关联的账户标识信息的数量及绑定时长的判断,不仅能避免用户注册过多支付账户进行非法操作的风险,而且能避免因绑定时长过长而带来的安全隐患。By judging the number of account identification information associated with the identity information and the binding time, the risk of illegal operations by users registering too many payment accounts can not only be avoided, but also the security risks caused by the long binding time can be avoided.
进一步的,上述目标用户通过联系方式登录第一客户端的过程中,第一服务端确定目标用户成功登录第一客户端,包括:接收第一客户端发送的登录请求,向登录请求包括的联系方式中发送第二验证信息,以使第一客户端将获取的目标用户输入的待验证的第二验证信息发送给第一服务端;以及,接收第一客户端发送的待验证的第二验证信息,若对待验证的第二验证信息验证通过,则确定目标用户成功登录第一客户端。Further, in the above process that the target user logs in to the first client through the contact information, the first server determining that the target user successfully logs in to the first client includes: receiving a login request sent by the first client, and sending the contact information included in the login request Sending the second verification information to the first client to send the acquired second verification information entered by the target user to the first server; and receiving the second verification information to be verified sent by the first client If the verification of the second verification information to be verified is passed, it is determined that the target user successfully logs in to the first client.
具体而言,第一客户端的登录界面包括账户输入栏、验证信息获取控件及验证信息输入栏,目标用户在账户输入栏中输入存储账户所关联的目标用户的联系方式后,可点击验证信息获取控件;第一客户端检测到验证信息获取控件的点击操作后,根据获取的联系方式向第一服务端发送登录请求,第一服务端若根据登录请求包括的联系方式查询到关联的第一记录信息,则向该联系方式发送第二验证信息,并将第二验证信息与联系方式关联保存;目标用户将接收到的第二验证信息输入至验证信息输入栏,并点击确定控件;第一客户端将获取的待验证的第二验证信息和联系方式发送给第一服务端;第一服务端根据接收到的联系方式查询关联保存的第二验证信息,将查询到的第二验证信息与接收到的待验证的第二验证信息进行匹配,若匹配成功,则确定目标用户登录成功,若匹配失败,则向第一客户端发送登录失败信息。由此,基于联系方式和第二验证信息,完成了目标用户的首次登录,在登录成功之后,第一服务端可基于目标用户通过第一客户端发送的账户修改请求,修改目标用户的支付账户的账户信息和登录密码等,目标用户后续可基于修改后的账户信息和登录密码进行登录。Specifically, the login interface of the first client includes an account input field, a verification information acquisition control, and a verification information input field. After the target user enters the contact information of the target user associated with the storage account in the account input field, click the verification information acquisition Control; after the first client detects the click operation of the verification information acquisition control, it sends a login request to the first server according to the obtained contact information, and if the first server finds the associated first record according to the contact information included in the login request Information, the second verification information is sent to the contact method, and the second verification information is stored in association with the contact method; the target user enters the received second verification information into the verification information input field, and clicks the OK control; the first customer The terminal sends the acquired second verification information and contact information to be verified to the first server; the first server queries the associated stored second verification information according to the received contact information, and then compares the queried second verification information with the received The received second verification information to be verified is matched. If the matching is successful, it is determined that the target user is successfully logged in; if the matching fails, the login failure information is sent to the first client. Thus, based on the contact information and the second verification information, the first login of the target user is completed. After the login is successful, the first server can modify the payment account of the target user based on the account modification request sent by the target user through the first client. The target user can log in based on the modified account information and login password in the future.
为避免恶意的机器行为,本说明书实施例中,如图8所示,步骤S108可包括:To avoid malicious machine behavior, in the embodiment of this specification, as shown in FIG. 8, step S108 may include:
步骤S108-10,若确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,则向第一客户端发送安全认证信息的获取请求,以使第一客户端获取所在终端设备的设备信息,并基于设备信息生成设备指纹,将设备指纹发送给第一服务端;Step S108-10: If it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication conditions, a request for obtaining security authentication information is sent to the first client, so that the first client can obtain The device information of the terminal device where it is located, and generate a device fingerprint based on the device information, and send the device fingerprint to the first server;
步骤S108-12,接收第一客户端发送的设备指纹,若确定根据设备指纹进行风险评估通过,则确定对目标用户的安全认证通过。Step S108-12: Receive the device fingerprint sent by the first client, and if it is determined to pass the risk assessment based on the device fingerprint, it is determined that the security authentication of the target user has passed.
可接收第一客户端发送的设备指纹,并将设备指纹发送给指定的风险评估系统,以使风险评估系统基于设备指纹进行风险评估,并向第一服务端发送风险评估结果;第一服务端若确定接收到的风险评估结果为无风险,则确定对目标用户的安全认证通过。It can receive the device fingerprint sent by the first client, and send the device fingerprint to the designated risk assessment system, so that the risk assessment system performs risk assessment based on the device fingerprint, and sends the risk assessment result to the first server; If it is determined that the received risk assessment result is risk-free, it is determined that the security authentication for the target user has passed.
当前用户操作第一客户端首次注册支付应用的支付账户时,第一服务端在进行支付 账户的注册处理过程中,首先获取第一客户端所在终端设备的设备指纹,并在对设备指纹验证通过后,进行支付账户的注册处理。而本申请实施例中,提供了一种异步的安全认证方式,即目标用户在操作第二客户端进行支付账户的注册、以及支付账户与存储账户的绑定之后,在首次登录第一客户端时进行安全认证处理,其不仅能够满足支付应用的安全认证需求,且能够满足用户基于第二客户端进行账户绑定场景下的账户绑定需求。When the current user operates the first client to register the payment account of the payment application for the first time, the first server first obtains the device fingerprint of the terminal device where the first client is located during the payment account registration process, and then passes the device fingerprint verification. After that, proceed with the registration process of the payment account. In the embodiment of the present application, an asynchronous security authentication method is provided, that is, the target user logs in to the first client for the first time after operating the second client to register the payment account and bind the payment account to the storage account. Perform security authentication processing at the same time, which can not only meet the security authentication requirements of the payment application, but also meet the account binding requirements of the user based on the second client's account binding scenario.
进一步的,当目标用户已注册支付应用的支付账户时,目标用户也可操作第二客户端进行支付账户与存储账户的绑定,如图9所示,步骤S100-2之后还可包括:Further, when the target user has registered the payment account of the payment application, the target user may also operate the second client terminal to bind the payment account and the storage account, as shown in FIG. 9, after step S100-2, it may also include:
步骤S112,若根据身份信息查询到关联的账户标识信息,则将查询到的账户标识信息发送给第二服务端,以使第二服务端根据账户标识信息进行绑定处理;Step S112: If the associated account identification information is queried according to the identity information, the queried account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information;
步骤S114,将账户查询请求包括的存储账户的第一账户信息与发送的账户标识信息进行关联记录,得到第二记录信息;其中,第二记录信息表征发送的账户标识信息所对应的支付账户与存储账户绑定成功。Step S114, the first account information of the storage account included in the account query request and the sent account identification information are associated and recorded to obtain second record information; wherein, the second record information represents the payment account corresponding to the sent account identification information and The storage account is successfully bound.
当根据身份信息查询到关联的账户标识信息时,确定目标用户以注册支付应用的支付账户,由于在之前的支付账户的注册过程中,以进行安全认证处理,因此,可直接将查询到的账户标识信息发送给第二服务端,以使第二服务端进行绑定处理;以及将账户查询请求包括的存储账户的第一账户信息与查询到的账户标识信息进行关联记录,以表征绑定成功,且当目标用户登录第二客户端时,无需再次进行安全认证处理。When the associated account identification information is queried based on the identity information, the target user is determined to register the payment account of the payment application. Since the previous payment account registration process is used for security authentication processing, the queried account can be directly The identification information is sent to the second server to enable the second server to perform binding processing; and the first account information of the storage account included in the account query request and the queried account identification information are associated and recorded to indicate successful binding , And when the target user logs in to the second client, there is no need to perform security authentication again.
目标用户还可能已注册多个支付账户,基于此,如图10所示,步骤S112可包括:The target user may also have registered multiple payment accounts. Based on this, as shown in FIG. 10, step S112 may include:
步骤S112-2,若根据身份信息查询到关联的账户标识信息,则确定查询到的账户标识信息的数量是否为一,是则执行步骤S112-4,否则执行步骤S112-6;In step S112-2, if the associated account identification information is queried according to the identity information, it is determined whether the number of the queried account identification information is one, if yes, execute step S112-4, otherwise, execute step S112-6;
步骤S112-4,将查询到的账户标识信息发送给第二服务端,以使第二服务端根据账户标识信息进行绑定处理,执行步骤S114;Step S112-4, sending the queried account identification information to the second server, so that the second server performs binding processing according to the account identification information, and step S114 is executed;
步骤S112-6,从账户查询请求中获取地址信息,在第二客户端中该地址信息所对应的展示界面展示查询到的多个账户标识信息所对应的支付账户的第二账户信息,获取目标用户基于展示界面所选择的目标第二账户信息;Step S112-6: Obtain the address information from the account query request, and display the second account information of the payment account corresponding to the multiple account identification information in the second client on the display interface corresponding to the address information, and obtain the target The target second account information selected by the user based on the display interface;
步骤S112-8,将目标第二账户信息所对应的账户标识信息发送给第二服务端,执行步骤S114。In step S112-8, the account identification information corresponding to the target second account information is sent to the second server, and step S114 is performed.
由此,在查询到多个账户标识信息时,基于账户查询请求包括的地址信息,在对应的展示界面中展示对应的第二账户信息,并获取目标用户基于该展示界面所选择的目标第二账户信息,而无需通过第二服务端获取目标第二账户信息,不仅避免了用户的账户信息的外泄,而且降低了通信次数,提升了数据处理效率。Thus, when multiple account identification information is queried, based on the address information included in the account query request, the corresponding second account information is displayed in the corresponding display interface, and the target second selected by the target user based on the display interface is obtained. The account information does not need to obtain the target second account information through the second server, which not only avoids the leakage of the user's account information, but also reduces the number of communications and improves the efficiency of data processing.
本说明书实施例中,第一服务端接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理;其中,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的 第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the embodiment of this specification, when the first server receives the account registration request sent by the second server of the resource storage institution, it performs the registration process of the payment account, and sends the obtained account identification information of the target user to the second server , So that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target user Sent when the payment account of the payment application is not registered; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is processed through the first client Security authentication processing. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
对应上述图3至图10描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了另一种绑定处理方法,图11为本说明书实施例提供的另一种绑定处理方法的流程示意图,图11中的方法能够由图1中的资源存储机构的第二服务端执行;如图11所示,该方法包括以下步骤:Corresponding to the binding processing method described in FIG. 3 to FIG. 10, based on the same technical concept, the embodiment of this specification also provides another binding processing method. FIG. 11 is another binding processing provided by the embodiment of this specification. A schematic flowchart of the method. The method in FIG. 11 can be executed by the second server of the resource storage mechanism in FIG. 1; as shown in FIG. 11, the method includes the following steps:
步骤S202,接收资源存储机构的第二客户端发送的绑定请求;其中,绑定请求基于目标用户的绑定操作所发送,绑定请求用于请求将目标用户在资源存储机构的存储账户,与目标用户的支付应用的支付账户进行绑定,以授予支付账户基于存储账户进行支付的支付权限;绑定请求包括存储账户的第一账户信息;Step S202, receiving a binding request sent by a second client of the resource storage institution; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target user be stored in the storage account of the resource storage institution; Binding with the payment account of the payment application of the target user to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account;
当目标用户需要将其待注册的支付应用的支付账户,与其在资源存储机构的存储账户绑定时,可操作资源存储机构的第二客户端进行账户的绑定处理。第二客户端响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求,以请求将目标用户在资源存储机构的存储账户,与目标用户的待注册的支付应用的支付账户进行绑定。When the target user needs to bind the payment account of the payment application to be registered with the storage account of the resource storage institution, the second client terminal of the resource storage institution can be operated to perform account binding processing. In response to the binding operation of the target user, the second client sends a binding request to the second server of the resource storage institution to request that the target user be registered in the storage account of the resource storage institution with the payment application of the target user to be registered. The payment account is bound.
步骤S204,若确定目标用户未注册支付应用的支付账户,则根据第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以使第一服务端进行支付账户的注册处理得到目标用户的账户标识信息,并在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过第一客户端对目标用户进行安全认证处理;Step S204: If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first server performs payment account registration processing to obtain Account identification information of the target user, and when it is determined that the operation processing of the target user on the first client terminal of the payment application meets the preset security authentication conditions, the target user is subjected to security authentication processing through the first client terminal;
步骤S206,接收第一服务端发送的账户标识信息,根据账户标识信息和第一账户信息进行绑定处理,向第二客户端发送绑定结果信息。Step S206: Receive the account identification information sent by the first server, perform binding processing according to the account identification information and the first account information, and send the binding result information to the second client.
本说明书实施例中,资源存储机构的第二服务端在接收到资源存储机构的第二客户端发送的绑定请求时,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the embodiment of this specification, when the second server of the resource storage institution receives the binding request sent by the second client of the resource storage institution, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not Register the payment account of the payment application, then send the account registration request of the target user to the first server of the payment application according to the first account information of the storage account included in the binding request, and bind according to the account identification information sent by the first server. Set treatment. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
为便于第一服务端查询支付账户的账户标识信息,如图12所示,步骤S204可包括:To facilitate the first server to query the account identification information of the payment account, as shown in FIG. 12, step S204 may include:
步骤S204-2,根据第一账户信息,从指定的数据库获取关联的目标用户的身份信息,其中,指定的数据库中包括第一账户信息与身份信息、联系方式等的关联关系;Step S204-2: Obtain the associated identity information of the target user from a specified database according to the first account information, where the specified database includes the association relationship between the first account information and the identity information, contact information, etc.;
步骤S204-4,根据获取的身份信息和第一账户信息,向第二服务端发送账户查询请求,以使第二服务端根据身份信息查询关联的账户标识信息;Step S204-4: Send an account query request to the second server according to the acquired identity information and the first account information, so that the second server queries the associated account identification information according to the identity information;
步骤S204-6,若接收到第二服务端发送的表征未查询到账户标识信息的查询结果, 则确定目标用户未注册支付应用的支付账户;Step S204-6: If a query result sent by the second server indicating that the account identification information has not been queried is received, it is determined that the target user has not registered a payment account of the payment application;
步骤S204-8,根据第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以使第一服务端进行支付账户的注册处理得到目标用户的账户标识信息,并在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过第一客户端对目标用户进行安全认证处理。Step S204-8: Send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first server performs payment account registration processing to obtain the account identification information of the target user, and determines the target user’s account identification information. When the user's operation processing on the first client terminal of the payment application meets the preset security authentication conditions, the target user is subjected to security authentication processing through the first client terminal.
为便于第一服务端进行支付账户的注册处理,以及后续目标用户登录第二客户端,如图13所示,步骤S204还可包括以下:In order to facilitate the registration processing of the payment account by the first server, and the subsequent target user logging in to the second client, as shown in FIG. 13, step S204 may further include the following:
步骤S204-10,若确定目标用户未注册支付应用的支付账户,则根据第一账户信息,从指定的数据库中获取关联的目标用户的联系方式;In step S204-10, if it is determined that the target user has not registered a payment account of the payment application, the contact information of the associated target user is obtained from the designated database according to the first account information;
步骤S204-12,根据联系方式,向支付应用的第一服务端发送目标用户的账户注册请求,以使第一服务端进行支付账户的注册处理时,向联系方式发送第一验证信息。Step S204-12: Send the account registration request of the target user to the first server of the payment application according to the contact method, so that the first server sends the first verification information to the contact method when performing payment account registration processing.
与之对应,为确保支付账户的注册安全,如图13所示,步骤S204-12之后,还包括:Correspondingly, in order to ensure the registration security of the payment account, as shown in Figure 13, after step S204-12, it also includes:
步骤S205-2,向第二客户端发送验证信息获取请求,以使第二客户端展示输入界面并获取目标用户基于输入界面输入的待验证的第一验证信息;Step S205-2: Send a verification information acquisition request to the second client, so that the second client displays the input interface and acquires the first verification information to be verified input by the target user based on the input interface;
步骤S205-4,接收第二客户端发送的待验证的第一验证信息;Step S205-4, receiving the first verification information to be verified sent by the second client;
步骤S205-6,将待验证的第一验证信息发送给第一服务端,以使第一服务端在对第一验证信息验证通过时,进行支付账户的注册处理。In step S205-6, the first verification information to be verified is sent to the first server, so that the first server performs the registration process of the payment account when the first verification information is successfully verified.
进一步,为确认目标用户将其支付应用的支付账户与其在资源存储机构的存储账户进行绑定,本说明书实施例中,如图14所示,步骤S204还可包括步骤S204-14:若确定目标用户未注册支付应用的支付账户、且确定获取到目标用户签署预设绑定协议的签署信息,则根据第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求。Further, in order to confirm that the target user binds the payment account of its payment application with its storage account in the resource storage institution, in the embodiment of this specification, as shown in FIG. 14, step S204 may further include step S204-14: if the target is determined The user has not registered the payment account of the payment application, and it is determined that the signature information for the target user to sign the preset binding agreement is obtained, then the account registration request of the target user is sent to the first server of the payment application according to the first account information.
可选地,绑定请求中包括预设绑定协议的签署信息,相应地,第二服务端从绑定请求中获取签署信息;或者,第二服务端在接收到第二客户端发送的绑定请求后,向第二客户端发送绑定协议签署请求,以使第二客户端展示预设的绑定协议并获取目标用户签署该绑定协议的签署信息,将获取的签署信息发送给第二服务端。对于签署协议的签署过程,本说明书中不做具体限定,可在实际应用中根据需要自行设定。通过让目标用户签署绑定协议,不仅能够将相关事项告知用户,而且可将该签署信息作为目标用户确认绑定的确认信息。Optionally, the binding request includes the signing information of the preset binding agreement, and accordingly, the second server obtains the signing information from the binding request; or, the second server receives the binding sent by the second client. After setting the request, send a binding agreement signing request to the second client, so that the second client displays the preset binding agreement and obtains the signing information for the target user to sign the binding agreement, and sends the obtained signing information to the first Two server side. The signing process of the signing agreement is not specifically limited in this manual, and it can be set according to the needs in actual applications. By allowing the target user to sign the binding agreement, not only can the user be notified of related matters, but the signed information can be used as the confirmation information for the target user to confirm the binding.
进一步的,如图15所示,本说明书实施例中,步骤S206包括:Further, as shown in FIG. 15, in the embodiment of this specification, step S206 includes:
步骤S206-2,将接收到的账户标识信息与第一账户信息进行关联记录,得到第三记录信息;其中,第三记录信息表征账户标识信息对应的支付账户与第一账户信息对应的存储账户绑定成功;Step S206-2: Associate and record the received account identification information with the first account information to obtain third record information; wherein the third record information represents the payment account corresponding to the account identification information and the storage account corresponding to the first account information Bind successfully;
步骤S206-4,向第二客户端发送绑定成功信息。Step S206-4: Send binding success information to the second client.
进一步的,当第二服务端的绑定处理失败时,向第二客户端发送绑定失败信息。Further, when the binding processing of the second server fails, the binding failure information is sent to the second client.
上述各步骤的具体实现方式,可参见前述相关描述,重复之处这里不再赘述。For the specific implementation of the above steps, please refer to the aforementioned related descriptions, and the repetitive points will not be repeated here.
本说明书实施例中,资源存储机构的第二服务端在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the embodiment of this specification, when the second server of the resource storage institution receives the binding request sent by the second client of the resource storage institution, the binding request is sent based on the binding operation of the target user; if the target is determined If the user does not register the payment account of the payment application, then according to the first account information of the storage account included in the binding request, send the account registration request of the target user to the first server of the payment application, and according to the account identification information sent by the first server Perform binding processing. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了另一种绑定处理方法,图16为本说明书实施例提供的另一种绑定处理方法的流程示意图,图16中的方法能够由图1中的支付应用的第一客户端执行;如图16所示,该方法包括以下步骤:Corresponding to the binding processing method described above, based on the same technical concept, the embodiment of this specification also provides another binding processing method. FIG. 16 is a schematic flowchart of another binding processing method provided by the embodiment of this specification. The method in FIG. 16 can be executed by the first client of the payment application in FIG. 1; as shown in FIG. 16, the method includes the following steps:
步骤S302,接收支付应用的第一服务端发送的安全认证信息的获取请求;其中,获取请求为第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定目标用户在第一客户端上的操作处理满足预设的安全认证条件时所发送;账户注册请求为第二服务端基于目标用户使用资源存储机构的第二客户端发送的绑定请求,在确定目标用户未注册支付应用的支付账户时所发送;绑定请求用于请求将目标用户在资源存储机构的存储账户,与目标用户待注册的支付应用的支付账户进行绑定,以授予支付账户基于存储账户进行支付的支付权限;Step S302: Receive a security authentication information acquisition request sent by the first server of the payment application; where the acquisition request is that the first server performs account registration at the target user’s account registration request sent by the second server based on the resource storage institution After processing, it is sent when it is determined that the operation processing of the target user on the first client meets the preset security authentication conditions; the account registration request is a binding sent by the second server based on the second client of the target user using the resource storage mechanism The request is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request to bind the target user’s storage account in the resource storage institution with the target user’s payment account of the payment application to be registered. Grant the payment account the right to pay based on the storage account;
步骤S304,获取所在终端设备的设备信息,根据设备信息生成终端设备的设备指纹;Step S304: Obtain device information of the terminal device where it is located, and generate a device fingerprint of the terminal device according to the device information;
其中,设备信息如设备标识、设备的MAC地址、设备的系统版本号等信息。设备指纹的生成方式可在实际应用中根据需要自行设定,本说明书中不做具体限定。Among them, the device information includes information such as the device identification, the MAC address of the device, and the system version number of the device. The method of generating device fingerprints can be set according to actual needs, and there is no specific limitation in this manual.
步骤S306,将设备指纹发送给第一服务端,以使第一服务端根据设备指纹进行安全认证处理。Step S306: Send the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
本说明书实施例中,步骤S302之前还可包括:In the embodiment of this specification, before step S302, it may further include:
步骤S300-2,响应于目标用户基于登录界面的登录操作,向第一服务端发送登录请求;其中,登录请求包括存储账户关联的目标用户的联系方式,以使第一服务端向联系方式发送第二验证信息;Step S300-2, in response to the login operation of the target user based on the login interface, a login request is sent to the first server; the login request includes the contact information of the target user associated with the storage account, so that the first server sends the contact information Second verification information;
步骤S300-4,获取目标用户在登录界面中输入的待验证的第二验证信息,将待验证的第二验证信息发送给第一服务端,以使第一服务端对待验证的第二验证信息进行验证;Step S300-4: Obtain the second verification information to be verified entered by the target user in the login interface, and send the second verification information to be verified to the first server, so that the first server can verify the second verification information to be verified authenticating;
步骤S300-6,接收第一服务端发送的登录结果信息。Step S300-6: Receive the login result information sent by the first server.
上述各步骤的具体实现方式,可参见前述相关描述,重复之处这里不再赘述。For the specific implementation of the above steps, please refer to the aforementioned related descriptions, and the repetitive points will not be repeated here.
本说明书实施例中,支付应用的第一客户端接收到支付应用的第一服务端发送的安全认证信息的获取时,生成所在终端设备的设备指纹,并将设备指纹发送给第一服务端,以使第一服务端进行安全认证处理;其中,获取请求为第一服务端在基于资源存 储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定目标用户在第一客户端上的操作处理满足预设的安全认证条件时所发送;而账户注册请求为第二服务端基于目标用户使用资源存储机构的第二客户端发送的绑定请求,在确定目标用户未注册支付应用的支付账户时所发送。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the embodiment of this specification, when the first client of the payment application receives the acquisition of the security authentication information sent by the first server of the payment application, it generates the device fingerprint of the terminal device where it is located, and sends the device fingerprint to the first server, In order to enable the first server to perform security authentication processing; wherein, the acquisition request is that after the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, it is determined that the target user is in the first The operation processing on the client is sent when the preset security authentication conditions are met; and the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, after determining that the target user is not registered Sent when the payment account of the application is paid. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了另一种绑定处理方法,图17为本说明书实施例提供的另一种绑定处理方法的流程示意图,图17中的方法能够由图1中的资源存储机构的第二客户端执行;如图17所示,该方法包括以下步骤:Corresponding to the binding processing method described above, based on the same technical concept, the embodiment of this specification also provides another binding processing method. FIG. 17 is a schematic flowchart of another binding processing method provided by the embodiment of this specification. The method in FIG. 17 can be executed by the second client of the resource storage mechanism in FIG. 1; as shown in FIG. 17, the method includes the following steps:
步骤S402,响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,绑定请求用于请求将目标用户的支付应用的支付账户与目标用户在资源存储机构的存储账户进行绑定,以授予支付账户基于存储账户进行支付的支付权限;绑定请求包括存储账户的第一账户信息,以使第二服务端根据第一账户信息进行绑定处理;Step S402, in response to the binding operation of the target user, send a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the payment application of the target user be registered with the target user in the resource storage institution. Bind the storage account of the storage account to grant the payment account the right to pay based on the storage account; the binding request includes the first account information of the storage account, so that the second server performs binding processing based on the first account information;
步骤S404,接收第二服务端发送的绑定结果信息。Step S404: Receive the binding result information sent by the second server.
为了确保支付账户的注册安全,本说明书实施例中,如图18所示,步骤S402之后,还包括:In order to ensure the registration security of the payment account, in the embodiment of this specification, as shown in FIG. 18, after step S402, the method further includes:
步骤S403-2,接收第二服务端发送的验证信息获取请求;其中,验证信息获取请求基于向支付应用的第一服务端发送的目标用户的账户注册请求所发送;Step S403-2, receiving the verification information acquisition request sent by the second server; where the verification information acquisition request is sent based on the account registration request of the target user sent to the first server of the payment application;
步骤S403-4,根据验证信息获取请求,展示输入界面;Step S403-4, according to the verification information acquisition request, display the input interface;
步骤S403-6,获取目标用户在输入界面中输入的待验证的第一验证信息;Step S403-6: Obtain the first verification information to be verified input by the target user in the input interface;
步骤S403-8,将获取的待验证的第一验证信息发送给第二服务端,以使第二服务端将待验证的第一验证信息发送给第一服务端,使第一服务端在对待验证的第一验证信息验证通过时,进行支付账户的注册处理。Step S403-8: Send the acquired first verification information to be verified to the second server, so that the second server sends the first verification information to be verified to the first server, so that the first server is When the verified first verification information is verified, the payment account registration process is performed.
进一步的,为了使第二服务端确定目标用户同意将目标用户的支付账户与存储账户进行绑定,本说明书实施例中,步骤S404之前还包括:Further, in order for the second server to determine that the target user agrees to bind the payment account of the target user with the storage account, in this embodiment of the specification, before step S404, the method further includes:
获取目标用户签署预设绑定协议的签署信息,将签署信息发送给第二服务端,以使第二服务端基于签署信息进行相关处理。Obtain the signature information for the target user to sign the preset binding agreement, and send the signature information to the second server, so that the second server performs related processing based on the signature information.
可选的,响应于目标用户的绑定操作,获取目标用户签署预设绑定协议的签署信息,并根据获取的签署信息和待绑定的存储账户的第一账户信息向第二服务端发送绑定请求。或者,在向第二服务端发送绑定请求之后,接收第二服务端发送的协议签署请求,展示预设的签署协议,并获取目标用户签署预设绑定协议的签署信息。Optionally, in response to the binding operation of the target user, obtain the signature information for the target user to sign the preset binding agreement, and send to the second server according to the obtained signature information and the first account information of the storage account to be bound Binding request. Alternatively, after sending the binding request to the second server, the agreement signing request sent by the second server is received, the preset signing agreement is displayed, and the signing information for the target user to sign the preset binding agreement is obtained.
上述各步骤的具体实现过程,可参见前述相关描述,重复之处这里不再赘述。For the specific implementation process of the foregoing steps, please refer to the foregoing related descriptions, and the repetitions are not repeated here.
本说明书实施例中,第二客户端响应于目标用户的绑定操作,向资源存储机构 的第二服务端发送绑定请求,以使第二服务端在确定目标用户未注册支付应用的支付账户时,向支付应用的第一服务端发送账户注册请求,并基于第一服务端发送的支付账户的账户标识信息进行绑定处理;以及第一服务端在确定满足预设的安全认证条件时,对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足支付应用的安全认证需求,又满足用户在不同场景下的账户绑定需求。In the embodiment of this specification, in response to the binding operation of the target user, the second client sends a binding request to the second server of the resource storage institution, so that the second server determines that the target user has not registered the payment account of the payment application. At the time, send an account registration request to the first server of the payment application, and perform binding processing based on the account identification information of the payment account sent by the first server; and when the first server determines that the preset security authentication conditions are met, Perform security authentication processing on the target user. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; The registration process of the payment account and the security authentication process of the target user are performed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供一种绑定处理装置,应用于支付应用的第一服务端。图19为本说明书实施例提供的一种绑定处理装置的模块组成示意图,如图19所示,该装置包括:Corresponding to the above-described binding processing method, based on the same technical concept, the embodiment of this specification also provides a binding processing device applied to the first server of the payment application. FIG. 19 is a schematic diagram of the module composition of a binding processing device provided by an embodiment of this specification. As shown in FIG. 19, the device includes:
接收模块501,其接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;The receiving module 501, which receives the account registration request of the target user sent by the second server of the resource storage institution; wherein, the account registration request is when the second server receives the target user's use of the resource storage institution The binding request sent by the second client of the second client terminal and sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be registered in the resource storage institution A storage account is bound to the payment account of the payment application to be registered by the target user to grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the target user’s registration message;
注册模块502,其根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;The registration module 502, which performs payment account registration processing according to the registration information, and obtains the account identification information of the target user;
发送模块503,其将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;A sending module 503, which sends the account identification information to the second server, so that the second server performs binding processing according to the account identification information;
认证模块504,其若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。The authentication module 504, if it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies the preset security authentication condition, then the target user is subjected to security authentication processing through the first client terminal .
本说明书实施例提供的绑定处理装置,接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理;其中,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足支付应用的安全认证需求,又满足用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target Sent when the user has not registered the payment account of the payment application; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is sent to the target user through the first client Perform security authentication processing. Therefore, when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
可选地,所述装置还包括查询模块。所述查询模块,在所述接收模块501接收资源存储机构的第二服务端发送的目标用户的账户注册请求之前,接收所述第二服务端发送的支付账户查询请求;其中,所述支付账户查询请求基于所述绑定请求所发送,所述支付账户查询请求包括所述存储账户关联的所述目标用户的身份信息;以及,若根据所述身份信息未查询到关联的所述账户标识信息,则向所述第二服务端发送表征未查询到所述账户标识信息的查询结果,以使所述第二服务端确定所述目标用户未注册所述支 付应用的支付账户,并发送所述账户注册请求。Optionally, the device further includes a query module. The query module receives the payment account query request sent by the second server before the receiving module 501 receives the account registration request of the target user sent by the second server of the resource storage institution; wherein, the payment account The query request is sent based on the binding request, the payment account query request includes the identity information of the target user associated with the storage account; and, if the associated account identification information is not queried based on the identity information , Send the query result indicating that the account identification information has not been queried to the second server, so that the second server determines that the target user has not registered the payment account of the payment application, and sends the Account registration request.
可选地,所述注册信息包括所述存储账户关联的所述目标用户的联系方式。所述注册模块502,向所述联系方式发送第一验证信息,以使所述第二客户端将获取的所述目标用户输入的待验证的第一验证信息发送给所述第二服务端,使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端;以及,接收所述第二服务端发送的所述待验证的第一验证信息;若对所述待验证的第一验证信息验证通过,则根据所述注册信息进行账户注册处理。Optionally, the registration information includes the contact information of the target user associated with the storage account. The registration module 502 sends first verification information to the contact information, so that the second client sends the acquired first verification information entered by the target user to be verified to the second server, Enable the second server to send the first verification information to be verified to the first server; and receive the first verification information to be verified sent by the second server; If the verification of the first verification information to be verified is passed, the account registration process is performed according to the registration information.
可选地,所述账户查询请求还包括:所述存储账户的第一账户信息;所述注册信息包括:所述存储账户关联的所述目标用户的联系方式。所述注册模块502,根据预设的账户标识的生成规则,生成所述目标用户的账户标识信息;以及,将生成的所述账户标识信息、所述联系方式、所述身份信息、所述第一账户信息和表征待进行安全认证的第一认证标识进行关联记录,得到第一记录信息。通过所述第一客户端对所述目标用户进行安全认证通过之后,还包括:将所述第一记录信息中的所述第一认证标识更新为第二认证标识;其中,所述第二认证标识表征所述安全认证通过。Optionally, the account query request further includes: first account information of the storage account; and the registration information includes: contact information of the target user associated with the storage account. The registration module 502 generates the account identification information of the target user according to preset account identification generation rules; and, the generated account identification information, the contact information, the identity information, and the first An account information and a first authentication identifier that characterizes the security authentication to be performed are associated and recorded to obtain the first record information. After passing the security authentication of the target user through the first client, the method further includes: updating the first authentication identifier in the first record information to a second authentication identifier; wherein, the second authentication The identifier indicates that the safety certification has passed.
可选地,所述装置还包括记录模块。所述记录模块,在所述发送模块503将所述账户标识信息发送给所述第二服务端之后,记录所述账户标识信息的发送时间。所述认证模块504,若确定所述目标用户成功登录所述第一客户端、且根据登录信息中的联系方式查询到的所述第一记录信息中的认证标识为所述第一认证标识,则确定查询到的所述第一记录信息中的身份信息所关联的账户标识信息的数量是否未超过预设数量;以及,获取当前时间,根据所述发送时间和所述当前时间确定所述第一记录信息所对应的所述支付账户与所述存储账户的绑定时长;确定所述绑定时长是否超过预设时长;若确定所述身份信息所关联的账户标识信息的数量未超过所述预设数量、且所述绑定时长未超过所述预设时长,则确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件。Optionally, the device further includes a recording module. The recording module records the sending time of the account identification information after the sending module 503 sends the account identification information to the second server. The authentication module 504, if it is determined that the target user successfully logs in to the first client and the authentication identifier in the first record information queried according to the contact information in the login information is the first authentication identifier, Determining whether the number of account identification information associated with the identity information in the first record information that is queried does not exceed the preset number; The binding duration between the payment account and the storage account corresponding to a record of information; determine whether the binding duration exceeds a preset duration; if it is determined that the number of account identification information associated with the identity information does not exceed the A preset number and the binding duration does not exceed the preset duration, then it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition.
可选地,所述认证模块504,接收所述第一客户端发送的登录请求;以及,向所述登录请求包括的联系方式中发送第二验证信息,以使所述第一客户端将获取的所述目标用户输入的待验证的第二验证信息发送给所述第一服务端;接收所述第一客户端发送的所述待验证的第二验证信息;若对所述待验证的第二验证信息验证通过,则确定所述目标用户成功登录所述第一客户端。Optionally, the authentication module 504 receives the login request sent by the first client; and sends second verification information to the contact information included in the login request, so that the first client will obtain The second verification information to be verified inputted by the target user is sent to the first server; the second verification information to be verified sent by the first client is received; if the second verification information is to be verified Second, if the verification information is verified, it is determined that the target user successfully logs in to the first client.
可选地,所述认证模块504,向所述第一客户端发送安全认证信息的获取请求,以使所述第一客户端获取所在终端设备的设备信息,并基于所述设备信息生成设备指纹,将所述设备指纹发送给所述第一服务端;以及,接收所述第一客户端发送的所述设备指纹,若确定根据所述设备指纹进行风险评估通过,确定对所述目标用户的安全认证通过。Optionally, the authentication module 504 sends a request for obtaining security authentication information to the first client, so that the first client obtains the device information of the terminal device where it is located, and generates a device fingerprint based on the device information , Send the device fingerprint to the first server; and receive the device fingerprint sent by the first client, and if it is determined that the risk assessment is passed according to the device fingerprint, determine the target user’s Safety certification passed.
可选地,所述支付账户查询请求还包括所述存储账户的第一账户信息;所述装置还包括关联模块。所述查询模块,若根据所述身份信息查询到关联的所述账户标识信息,则将查询到的所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;所述关联模块,将所述第一账户信息与查询到的所述账户标识信息进行关联记录,得到第二记录信息;其中,所述第二记录信息表征查询到 的所述账户标识信息所对应的支付账户与所述存储账户绑定成功。Optionally, the payment account query request further includes the first account information of the storage account; the device further includes an association module. The query module, if the associated account identification information is queried according to the identity information, then the queried account identification information is sent to the second server, so that the second server will The account identification information is bound; the association module associates and records the first account information with the queried account identification information to obtain second record information; wherein, the second record information represents the query The payment account corresponding to the received account identification information is successfully bound to the storage account.
可选地,所述账户查询请求还包括地址信息;所述查询模块,确定查询到的所述账户标识信息的数量是否为一;若是,则将查询到的所述账户标识信息发送给所述第二服务端;若否,则在所述第二客户端中所述地址信息所对应的展示界面展示查询到的多个账户标识信息所对应的支付账户的第二账户信息,获取所述目标用户基于所述展示界面所选择的目标第二账户信息;将所述目标第二账户信息所对应的账户标识信息发送给所述第二服务端。Optionally, the account query request further includes address information; the query module determines whether the number of the queried account identification information is one; if so, the queried account identification information is sent to the Second server; if not, display the second account information of the payment account corresponding to the multiple queried account identification information on the display interface corresponding to the address information in the second client, and obtain the target The user selects the target second account information based on the display interface; and sends the account identification information corresponding to the target second account information to the second server.
可选地,所述第二客户端包括:所述资源存储机构的资源管理应用程序或所述资源存储机构的自助操作机。Optionally, the second client includes: a resource management application of the resource storage organization or a self-service operation machine of the resource storage organization.
本说明书实施例提供的绑定处理装置,接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information, and the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user is not Sent when the payment account of the payment application is registered; and, when the first server determines that the target user's operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is secured through the first client Authentication processing. Therefore, when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
本说明书中关于应用于第一服务端的绑定处理装置的实施例与本说明书中关于应用于第一服务端的绑定处理方法的实施例基于同一发明构思,因此该实施例的具体实施可参见前述对应的关于应用于第一服务端的绑定处理方法的实施,重复之处不再赘述。The embodiment of the binding processing device applied to the first server in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the first server in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The corresponding implementation of the binding processing method applied to the first server will not be repeated here.
对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了另一种绑定处理装置,应用于资源存储机构的第二服务端。图20为本说明书实施例提供的另一种绑定处理装置的模块组成示意图,如图20所示,该装置包括:Corresponding to the binding processing method described above, based on the same technical concept, the embodiment of this specification also provides another binding processing device, which is applied to the second server of the resource storage mechanism. FIG. 20 is a schematic diagram of the module composition of another binding processing device provided by an embodiment of the specification. As shown in FIG. 20, the device includes:
接收模块601,其接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;The receiving module 601 receives a binding request sent by the second client of the resource storage mechanism; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request the The storage account of the target user in the resource storage institution is bound with the payment account of the payment application of the target user to grant the payment account the payment authority to make payments based on the storage account; the binding request includes The first account information of the storage account;
确定模块602,其若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;The determining module 602, if it is determined that the target user has not registered the payment account of the payment application, sends the account registration request of the target user to the first server of the payment application according to the first account information to Make the first server perform payment account registration processing to obtain the account identification information of the target user, and determine that the target user's operation processing on the first client of the payment application meets the preset security authentication If conditions are met, perform security authentication processing on the target user through the first client;
绑定模块603,其接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理;A binding module 603, which receives the account identification information sent by the first server, and performs binding processing according to the account identification information and the first account information;
发送模块604,其向所述第二客户端发送绑定结果信息。The sending module 604 sends the binding result information to the second client.
本说明书实施例提供的绑定处理装置,在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the binding processing apparatus provided by the embodiment of the present specification, upon receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered The payment account of the payment application sends the target user's account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
可选地,所述确定模块602,根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的身份信息;以及,根据所述身份信息和所述第一账户信息,向所述第二服务端发送账户查询请求,以使所述第二服务端根据所述身份信息查询关联的账户标识信息;若接收到所述第二服务端发送的表征未查询到所述账户标识信息的查询结果,则确定所述目标用户未注册所述支付应用的支付账户。Optionally, the determining module 602 obtains the associated identity information of the target user from a designated database according to the first account information; and, according to the identity information and the first account information, The second server sends an account query request, so that the second server queries the associated account identification information according to the identity information; if the signature sent by the second server is received, the account identification is not queried As a result of the information query, it is determined that the target user has not registered the payment account of the payment application.
可选地,所述确定模块602,根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的联系方式;以及,根据所述联系方式,向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理时,向所述联系方式发送第一验证信息。Optionally, the determining module 602 obtains the associated contact information of the target user from a designated database according to the first account information; The server sends the account registration request of the target user, so that the first server sends first verification information to the contact method when performing payment account registration processing.
可选地,所述发送模块604,向所述第二客户端发送验证信息获取请求,以使所述第二客户端展示输入界面并获取所述目标用户基于所述输入界面输入的待验证的第一验证信息;以及,接收所述第二客户端发送的所述待验证的第一验证信息;将所述待验证的第一验证信息发送给所述第一服务端,以使所述第一服务端在对所述第一验证信息验证通过时,进行支付账户的注册处理。Optionally, the sending module 604 sends a verification information acquisition request to the second client, so that the second client displays an input interface and acquires the to-be-verified input by the target user based on the input interface First verification information; and receiving the first verification information to be verified sent by the second client; sending the first verification information to be verified to the first server, so that the first A server performs registration processing of the payment account when the verification of the first verification information is passed.
可选地,所述确定模块602,若确定获取到所述目标用户签署预设绑定协议的签署信息,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求。Optionally, the determining module 602, if it is determined to obtain the signature information for the target user to sign the preset binding agreement, sends the target to the first server of the payment application according to the first account information. User’s account registration request.
可选地,所述绑定模块603,将所述账户标识信息与所述第一账户信息进行关联记录,得到第三记录信息;其中,所述第三记录信息表征所述账户标识信息对应的支付账户与所述第一账户信息对应的存储账户绑定成功。Optionally, the binding module 603 associates and records the account identification information with the first account information to obtain third record information; wherein, the third record information represents the corresponding account identification information The payment account is successfully bound to the storage account corresponding to the first account information.
本说明书实施例提供的绑定处理装置,在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。In the binding processing apparatus provided by the embodiment of the present specification, upon receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered The payment account of the payment application sends the target user’s account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
本说明书中关于应用于第二服务端的绑定处理装置的实施例与本说明书中关于应用于第二服务端的绑定处理方法的实施例基于同一发明构思,因此该实施例的具体实施可参见前述对应的应用于第二服务端的绑定处理方法的实施,重复之处不再赘述。The embodiment of the binding processing device applied to the second server in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the second server in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The implementation of the corresponding binding processing method applied to the second server end will not be repeated here.
进一步的,对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了另一种绑定处理装置,应用于支付应用的第一客户端。图21为本说明书实施例提供的另一种绑定处理装置的模块组成示意图,如图21所示,该装置包括:Further, corresponding to the above-described binding processing method, based on the same technical concept, the embodiment of this specification also provides another binding processing device, which is applied to the first client of the payment application. FIG. 21 is a schematic diagram of the module composition of another binding processing device provided by an embodiment of this specification. As shown in FIG. 21, the device includes:
接收模块701,其接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;A receiving module 701, which receives a request for obtaining security authentication information sent by a first server of the payment application; wherein, the request for obtaining is a target sent by the first server on a second server based on a resource storage mechanism After the user’s account registration request is processed for account registration, it is sent when it is determined that the operation processing of the target user on the first client meets the preset security authentication conditions; the account registration request is the second server Based on the binding request sent by the target user using the second client of the resource storage mechanism, it is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request Binding the target user's storage account in the resource storage institution with the payment account of the payment application to which the target user is to be registered, so as to grant the payment account the right to pay based on the storage account;
获取模块702,其获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;An obtaining module 702, which obtains device information of the terminal device where it is located, and generates a device fingerprint of the terminal device according to the device information;
发送模块703,其将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The sending module 703 sends the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
可选地,所述装置还包括登录模块。所述登录模块,在所述接收模块701接收所述支付应用的第一服务端发送的安全认证信息的获取请求之前,响应于所述目标用户基于登录界面的登录操作,向所述第一服务端发送登录请求;其中,所述登录请求包括所述存储账户关联的所述目标用户的联系方式,以使所述第一服务端向所述联系方式发送第二验证信息;以及,获取所述目标用户在所述登录界面中输入的待验证的第二验证信息;将所述待验证的第二验证信息发送给所述第一服务端,以使所述第一服务端对所述待验证的第二验证信息进行验证;接收所述第一服务端发送的登录结果信息。Optionally, the device further includes a login module. The login module, before the receiving module 701 receives the security authentication information acquisition request sent by the first server of the payment application, in response to the target user's login operation based on the login interface, send the request to the first service Terminal sends a login request; wherein, the login request includes the contact information of the target user associated with the storage account, so that the first server sends the second verification information to the contact information; and, obtains the The second verification information to be verified entered by the target user in the login interface; the second verification information to be verified is sent to the first server, so that the first server can verify the The second verification information is verified; the login result information sent by the first server is received.
本说明书实施例提供的绑定处理装置,接收到支付应用的第一服务端发送的安全认证信息的获取时,生成所在终端设备的设备指纹,并将设备指纹发送给第一服务端,以使第一服务端进行安全认证处理;其中,获取请求为第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定目标用户在第一客户端上的操作处理满足预设的安全认证条件时所发送;而账户注册请求为第二服务端基于目标用户使用资源存储机构的第二客户端发送的绑定请求,在确定目标用户未注册支付应用的支付账户时所发送。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing apparatus provided by the embodiment of this specification generates the device fingerprint of the terminal device where it is located when receiving the acquisition of the security authentication information sent by the first server of the payment application, and sends the device fingerprint to the first server so that The first server performs security authentication processing; where the acquisition request is that the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, and then determines that the target user is in the first client The above operation processing is sent when the preset security authentication conditions are met; and the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, after determining that the target user is not registered with the payment application Sent when the payment account is made. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
本说明书中关于应用于第一客户端的绑定处理装置的实施例与本说明书中关于应用于第一客户端的绑定处理方法的实施例基于同一发明构思,因此该实施例的具体实 施可参见前述对应的应用于第一客户端的绑定处理方法的实施,重复之处不再赘述。The embodiment of the binding processing apparatus applied to the first client in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the first client in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The implementation of the corresponding binding processing method applied to the first client terminal will not be repeated here.
进一步地,对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了另一种绑定处理装置,应用于资源存储机构的第二客户端。图22为本说明书实施例提供的另一种绑定处理装置的模块组成示意图,如图22所示,该装置包括:Further, corresponding to the above-described binding processing method, based on the same technical concept, the embodiment of this specification also provides another binding processing device, which is applied to the second client of the resource storage mechanism. FIG. 22 is a schematic diagram of the module composition of another binding processing apparatus provided by an embodiment of the specification. As shown in FIG. 22, the apparatus includes:
发送模块801,其响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;The sending module 801, in response to the binding operation of the target user, sends a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the target user's payment application be linked with The target user binds to the storage account of the resource storage institution to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, So that the second server performs binding processing according to the first account information;
接收模块802,其接收所述第二服务端发送的绑定结果信息。The receiving module 802 receives the binding result information sent by the second server.
可选地,所述装置还包括展示模块。所述接收模块802,在所述发送模块801向资源存储机构的第二服务端发送绑定请求之后,还接收所述第二服务端发送的验证信息获取请求;其中,所述验证信息获取请求基于向所述支付应用的第一服务端发送的所述目标用户的账户注册请求所发送。所述展示模块,根据所述验证信息获取请求,展示输入界面;以及,获取所述目标用户在所述输入界面中输入的待验证的第一验证信息;将所述待验证的第一验证信息发送给所述第二服务端,以使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端,使所述第一服务端在对所述待验证的第一验证信息验证通过时,进行支付账户的注册处理。Optionally, the device further includes a display module. The receiving module 802, after the sending module 801 sends the binding request to the second server of the resource storage mechanism, also receives the verification information acquisition request sent by the second server; wherein, the verification information acquisition request Sent based on the account registration request of the target user sent to the first server of the payment application. The display module displays the input interface according to the verification information acquisition request; and, acquires the first verification information to be verified input by the target user in the input interface; and transfers the first verification information to be verified Sent to the second server, so that the second server sends the first verification information to be verified to the first server, so that the first server is in the process of verifying the When the first verification information is verified, the payment account registration process is performed.
可选地,所述装置还包括获取模块。所述获取模块,在所述接收模块802接收所述第二服务端发送的绑定结果信息之前,获取所述目标用户签署预设绑定协议的签署信息,将所述签署信息发送给所述第二服务端,以使所述第二服务端基于所述签署信息进行相关处理。Optionally, the device further includes an acquisition module. The obtaining module, before the receiving module 802 receives the binding result information sent by the second server, obtains the signing information for the target user to sign the preset binding agreement, and sends the signing information to the The second server, so that the second server performs related processing based on the signed information.
本说明书实施例提供的绑定处理装置,响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求,以使第二服务端在确定目标用户未注册支付应用的支付账户时,向支付应用的第一服务端发送账户注册请求,并基于第一服务端发送的支付账户的账户标识信息进行绑定处理;以及第一服务端在确定满足预设的安全认证条件时,对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification sends a binding request to the second server of the resource storage institution in response to the binding operation of the target user, so that the second server determines that the target user has not registered the payment application of the payment application. In the case of an account, send an account registration request to the first server of the payment application, and perform binding processing based on the account identification information of the payment account sent by the first server; and when the first server determines that the preset security authentication conditions are met , Perform security authentication processing on the target user. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
本说明书中关于应用于第二客户端的绑定处理装置的实施例与本说明书中关于应用于第二客户端的绑定处理方法的实施例基于同一发明构思,因此该实施例的具体实施可参见前述对应的应用于第二客户端的绑定处理方法的实施,重复之处不再赘述。The embodiment of the binding processing device applied to the second client in this specification is based on the same inventive concept as the embodiment of the binding processing method applied to the second client in this specification. Therefore, the specific implementation of this embodiment can be referred to the foregoing The implementation of the corresponding binding processing method applied to the second client terminal will not be repeated here.
进一步地,对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供一种绑定处理设备,该设备用于执行上述的绑定处理方法,图23为本说明书实施例提供的一种绑定处理设备的结构示意图。Further, corresponding to the binding processing method described above, based on the same technical concept, an embodiment of this specification also provides a binding processing device, which is used to execute the above binding processing method. FIG. 23 is an embodiment of this specification. A schematic structural diagram of a binding processing device is provided.
如图23所示,绑定处理设备可因配置或性能不同而产生比较大的差异,可包括一个或一个以上的处理器901和存储器902,存储器902中可存储有一个或一个以上存储应用程序或数据。其中,存储器902可是短暂存储或持久存储。存储在存储器902的应用程序可包括一个或一个以上模块(图示未示出),每个模块可包括绑定处理设备中的一系列计算机可执行指令。更进一步地,处理器901可设置为与存储器902通信,在绑定处理设备上执行存储器902中的一系列计算机可执行指令。绑定处理设备还可包括一个或一个以上电源903,一个或一个以上有线或无线网络接口904,一个或一个以上输入输出接口905,一个或一个以上键盘906等。As shown in Figure 23, the binding processing device may have relatively large differences due to different configurations or performances, and may include one or more processors 901 and a memory 902, and the memory 902 may store one or more storage application programs. Or data. Among them, the memory 902 may be short-term storage or persistent storage. The application program stored in the memory 902 may include one or more modules (not shown in the figure), and each module may include a series of computer-executable instructions in the binding processing device. Furthermore, the processor 901 may be configured to communicate with the memory 902, and execute a series of computer-executable instructions in the memory 902 on the binding processing device. The binding processing device may also include one or more power supplies 903, one or more wired or wireless network interfaces 904, one or more input and output interfaces 905, one or more keyboards 906, and the like.
在一个实施例中,绑定处理设备包括有存储器,以及一个或一个以上的程序,其中一个或者一个以上程序存储于存储器中,且一个或者一个以上程序可包括一个或一个以上模块,且每个模块可包括对绑定处理设备中的一系列计算机可执行指令,且经配置以由一个或者一个以上处理器执行该一个或者一个以上程序包含用于进行以下计算机可执行指令:接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。In one embodiment, the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each The module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: The account registration request of the target user sent by the second server; wherein, the account registration request is a binding request sent by the second server after receiving the second client of the target user using the resource storage mechanism And sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be registered in the storage account of the resource storage institution with the target user to be registered The payment account of the payment application is bound to grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the registration information of the target user; the payment is made according to the registration information Account registration processing to obtain the account identification information of the target user; send the account identification information to the second server, so that the second server performs binding processing according to the account identification information; if It is determined that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition, and then the target user is subjected to security authentication processing through the first client terminal.
本说明书实施例提供的绑定处理设备,接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理;其中,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足支付应用的安全认证需求,又满足用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information; wherein the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines the target Sent when the user has not registered the payment account of the payment application; and, when the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is sent to the target user through the first client Perform security authentication processing. Therefore, when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
可选地,计算机可执行指令在被执行时,所述接收资源存储机构的第二服务端发送的目标用户的账户注册请求之前,还包括:接收所述第二服务端发送的支付账户查询请求;其中,所述支付账户查询请求基于所述绑定请求所发送,所述支付账户查询请求包括所述存储账户关联的所述目标用户的身份信息;若根据所述身份信息未查询到关联的所述账户标识信息,则向所述第二服务端发送表征未查询到所述账户标识信息的查询结果,以使所述第二服务端确定所述目标用户未注册所述支付应用的支付账户,并发送所述账户注册请求。Optionally, when the computer-executable instructions are executed, before the receiving the account registration request of the target user sent by the second server of the resource storage institution, the method further includes: receiving the payment account query request sent by the second server Wherein, the payment account query request is sent based on the binding request, the payment account query request includes the identity information of the target user associated with the storage account; if the associated information is not queried based on the identity information The account identification information sends a query result indicating that the account identification information is not queried to the second server, so that the second server determines that the target user has not registered the payment account of the payment application , And send the account registration request.
可选地,计算机可执行指令在被执行时,所述注册信息包括所述存储账户关联的所述目标用户的联系方式。所述根据所述注册信息进行支付账户的注册处理,包括:向所述联系方式发送第一验证信息,以使所述第二客户端将获取的所述目标用户输入的待验证的第一验证信息发送给所述第二服务端,使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端;接收所述第二服务端发送的所述待验证的第一验证信息;若对所述待验证的第一验证信息验证通过,则根据所述注册信息进行账户注册处理。Optionally, when the computer-executable instructions are executed, the registration information includes the contact information of the target user associated with the storage account. The registration processing of the payment account according to the registration information includes: sending first verification information to the contact information, so that the second client will obtain the first verification input by the target user to be verified Information is sent to the second server, so that the second server sends the first verification information to be verified to the first server; receives the to-be-verified sent by the second server The first verification information; if the verification of the first verification information to be verified is passed, the account registration process is performed according to the registration information.
可选地,计算机可执行指令在被执行时,所述账户查询请求还包括所述存储账户的第一账户信息。所述注册信息包括所述存储账户关联的所述目标用户的联系方式。所述根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息,包括:根据预设的账户标识的生成规则,生成所述目标用户的账户标识信息;将生成的所述账户标识信息、所述联系方式、所述身份信息、所述第一账户信息和表征待进行安全认证的第一认证标识进行关联记录,得到第一记录信息。通过所述第一客户端对所述目标用户进行安全认证通过之后,还包括:将所述第一记录信息中的所述第一认证标识更新为第二认证标识;其中,所述第二认证标识表征所述安全认证通过。Optionally, when the computer-executable instructions are executed, the account query request further includes the first account information of the storage account. The registration information includes the contact information of the target user associated with the storage account. The performing the registration processing of the payment account according to the registration information to obtain the account identification information of the target user includes: generating the account identification information of the target user according to preset account identification generation rules; The account identification information, the contact information, the identity information, the first account information, and the first authentication identifier representing the security authentication to be performed are associated and recorded to obtain the first record information. After passing the security authentication of the target user through the first client, the method further includes: updating the first authentication identifier in the first record information to a second authentication identifier; wherein, the second authentication The identifier indicates that the safety certification has passed.
可选地,计算机可执行指令在被执行时,所述将所述账户标识信息发送给所述第二服务端之后,还包括:记录所述账户标识信息的发送时间。所述确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,包括:若确定所述目标用户成功登录所述第一客户端、且根据登录信息中的联系方式查询到的所述第一记录信息中的认证标识为所述第一认证标识,则确定查询到的所述第一记录信息中的身份信息所关联的账户标识信息的数量是否未超过预设数量;以及,获取当前时间,根据所述发送时间和所述当前时间确定所述第一记录信息所对应的所述支付账户与所述存储账户的绑定时长;确定所述绑定时长是否超过预设时长;若确定所述身份信息所关联的账户标识信息的数量未超过所述预设数量、且所述绑定时长未超过所述预设时长,确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件。Optionally, when the computer-executable instructions are executed, after sending the account identification information to the second server, the method further includes: recording the sending time of the account identification information. The determining that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition includes: if it is determined that the target user successfully logs in to the first client terminal, and according to the login information If the authentication identifier in the first record information queried in the contact information is the first authentication identifier, it is determined whether the number of account identification information associated with the identity information in the queried first record information is not Exceed the preset number; and, obtain the current time, and determine the binding duration of the payment account and the storage account corresponding to the first record information according to the sending time and the current time; determine the binding Whether the duration exceeds the preset duration; if it is determined that the number of account identification information associated with the identity information does not exceed the preset number, and the binding duration does not exceed the preset duration, it is determined that the target user is in the place The operation processing on the first client of the payment application satisfies the preset safety authentication condition.
计算机可执行指令在被执行时,所述确定所述目标用户成功登录所述一客户端,可包括:接收所述第一客户端发送的登录请求;向所述登录请求包括的联系方式中发送第二验证信息,以使所述第一客户端将获取的所述目标用户输入的待验证的第二验证信息发送给所述第一服务端;接收所述第一客户端发送的所述待验证的第二验证信息;若对所述待验证的第二验证信息验证通过,则确定所述目标用户成功登录所述第一客户端。When the computer-executable instructions are executed, the determining that the target user successfully logs in to the one client may include: receiving a login request sent by the first client; sending to the contact information included in the login request Second verification information, so that the first client sends the acquired second verification information input by the target user to be verified to the first server; receives the to-be-verified sent by the first client The verified second verification information; if the verification of the to-be-verified second verification information is passed, it is determined that the target user successfully logs in to the first client.
计算机可执行指令在被执行时,所述通过所述第一客户端对所述目标用户进行安全认证处理,可包括:向所述第一客户端发送安全认证信息的获取请求,以使所述第一客户端获取所在终端设备的设备信息,并基于所述设备信息生成设备指纹,将所述设备指纹发送给所述第一服务端;接收所述第一客户端发送的所述设备指纹,若确定根据所述设备指纹进行风险评估通过,则确定对所述目标用户的安全认证通过。When the computer-executable instructions are executed, the performing security authentication processing on the target user through the first client may include: sending a request for obtaining security authentication information to the first client, so that the The first client obtains the device information of the terminal device where it is located, generates a device fingerprint based on the device information, sends the device fingerprint to the first server; receives the device fingerprint sent by the first client, If it is determined that the risk assessment based on the device fingerprint is passed, it is determined that the security authentication of the target user is passed.
可选地,计算机可执行指令在被执行时,所述支付账户查询请求还包括:所述存储账户的第一账户信息;所述方法还包括:若根据所述身份信息查询到关联的所述账户标识信息,则将查询到的所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;以及,将所述第一账户信息与查询到的所述 账户标识信息进行关联记录,得到第二记录信息;其中,所述第二记录信息表征查询到的所述账户标识信息所对应的支付账户与所述存储账户绑定成功。Optionally, when the computer-executable instructions are executed, the payment account query request further includes: the first account information of the storage account; the method further includes: if the associated said information is queried according to the identity information Account identification information, the queried account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; and, the first account The information is recorded in association with the queried account identification information to obtain second record information; wherein, the second record information indicates that the payment account corresponding to the queried account identification information is successfully bound to the storage account .
可选地,计算机可执行指令在被执行时,所述账户查询请求还包括地址信息。所述将查询到的所述账户标识信息发送给所述第二服务端,包括:确定查询到的所述账户标识信息的数量是否为一;若是,则将查询到的所述账户标识信息发送给所述第二服务端;若否,则在所述第二客户端中所述地址信息所对应的展示界面展示查询到的多个账户标识信息所对应的支付账户的第二账户信息,获取所述目标用户基于所述展示界面所选择的目标第二账户信息;将所述目标第二账户信息所对应的账户标识信息发送给所述第二服务端。Optionally, when the computer-executable instructions are executed, the account query request further includes address information. The sending the queried account identification information to the second server includes: determining whether the number of the queried account identification information is one; if so, sending the queried account identification information To the second server; if not, display the second account information of the payment account corresponding to the multiple queried account identification information on the display interface corresponding to the address information in the second client, and obtain The target user selects target second account information based on the display interface; and sends account identification information corresponding to the target second account information to the second server.
可选地,计算机可执行指令在被执行时,所述第二客户端包括:所述资源存储机构的资源管理应用程序或所述资源存储机构的自助操作机。Optionally, when the computer-executable instructions are executed, the second client includes: a resource management application of the resource storage institution or a self-service operation machine of the resource storage institution.
本说明书实施例提供的绑定处理设备,接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, when receiving the account registration request sent by the second server of the resource storage institution, performs the registration processing of the payment account, and sends the obtained account identification information of the target user to the second service Terminal, so that the second server performs binding processing according to the account identification information, and the account registration request is that the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user is not Sent when the payment account of the payment application is registered; and, when the first server determines that the target user's operation processing on the first client of the payment application meets the preset security authentication conditions, the target user is secured through the first client Authentication processing. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
在另一个实施例中,绑定处理设备包括有存储器,以及一个或一个以上的程序,其中一个或者一个以上程序存储于存储器中,且一个或者一个以上程序可包括一个或一个以上模块,且每个模块可包括对绑定处理设备中的一系列计算机可执行指令,且经配置以由一个或者一个以上处理器执行该一个或者一个以上程序包含用于进行以下计算机可执行指令:接收资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。In another embodiment, the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each Each module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: receiving resource storage mechanism The binding request sent by the second client of the second client; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target user be stored in the storage account of the resource storage institution Binding with the payment account of the payment application of the target user to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account; if It is determined that the target user has not registered the payment account of the payment application, and then sends the account registration request of the target user to the first server of the payment application according to the first account information, so that the first service The terminal performs payment account registration processing to obtain the account identification information of the target user, and when it is determined that the operation processing of the target user on the first client of the payment application satisfies the preset security authentication conditions, pass the The first client performs security authentication processing on the target user; receives the account identification information sent by the first server, performs binding processing based on the account identification information and the first account information, and sends The second client sends the binding result information.
本说明书实施例提供的绑定处理设备,在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未 注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, when receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered The payment account of the payment application sends the target user's account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
可选地,计算机可执行指令在被执行时,所述确定所述目标用户未注册所述支付应用的支付账户,包括:根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的身份信息;根据所述身份信息和所述第一账户信息,向所述第二服务端发送账户查询请求,以使所述第二服务端根据所述身份信息查询关联的账户标识信息;若接收到所述第二服务端发送的表征未查询到所述账户标识信息的查询结果,则确定所述目标用户未注册所述支付应用的支付账户。Optionally, when the computer-executable instructions are executed, the determining that the target user is not registered with the payment account of the payment application includes: obtaining the associated information from a designated database according to the first account information The identity information of the target user; according to the identity information and the first account information, send an account query request to the second server, so that the second server queries the associated account identification information according to the identity information If receiving a query result sent by the second server indicating that the account identification information has not been queried, it is determined that the target user has not registered the payment account of the payment application.
可选地,计算机可执行指令在被执行时,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,包括:根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的联系方式;根据所述联系方式,向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理时,向所述联系方式发送第一验证信息。Optionally, when the computer-executable instructions are executed, the sending the account registration request of the target user to the first server of the payment application according to the first account information includes: according to the first account Information, obtain the associated contact information of the target user from a specified database; according to the contact information, send the account registration request of the target user to the first server of the payment application, so that the first When the server performs the registration processing of the payment account, the first verification information is sent to the contact method.
可选地,计算机可执行指令在被执行时,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求之后,还包括:向所述第二客户端发送验证信息获取请求,以使所述第二客户端展示输入界面并获取所述目标用户基于所述输入界面输入的待验证的第一验证信息;接收所述第二客户端发送的所述待验证的第一验证信息;将所述待验证的第一验证信息发送给所述第一服务端,以使所述第一服务端在对所述第一验证信息验证通过时,进行支付账户的注册处理。Optionally, when the computer-executable instructions are executed, after the sending the target user's account registration request to the first server of the payment application according to the first account information, the method further includes: 2. The client sends a verification information acquisition request, so that the second client displays the input interface and acquires the first verification information to be verified input by the target user based on the input interface; receiving the verification information sent by the second client The first verification information to be verified; the first verification information to be verified is sent to the first server, so that the first server performs verification on the first verification information Payment account registration processing.
可选地,计算机可执行指令在被执行时,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,包括:若确定获取到所述目标用户签署预设绑定协议的签署信息,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求。Optionally, when the computer-executable instructions are executed, the sending the target user's account registration request to the first server of the payment application according to the first account information includes: if it is determined that the The target user signs the signature information of the preset binding agreement, and then sends the account registration request of the target user to the first server of the payment application according to the first account information.
可选地,计算机可执行指令在被执行时,所述根据所述账户标识信息进行绑定处理,包括:将所述账户标识信息与所述第一账户信息进行关联记录,得到第三记录信息;其中,所述第三记录信息表征所述账户标识信息对应的支付账户与所述第一账户信息对应的存储账户绑定成功。Optionally, when the computer-executable instructions are executed, the binding processing according to the account identification information includes: associating and recording the account identification information with the first account information to obtain third record information Wherein, the third record information characterizes that the payment account corresponding to the account identification information is successfully bound with the storage account corresponding to the first account information.
本说明书实施例提供的绑定处理设备,在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行, 既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, when receiving the binding request sent by the second client of the resource storage mechanism, the binding request is sent based on the binding operation of the target user; if it is determined that the target user is not registered The payment account of the payment application sends the target user's account registration request to the first server of the payment application according to the first account information of the storage account included in the binding request, and binds according to the account identification information sent by the first server deal with. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration processing of the payment account and the security authentication processing of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
在另一个实施例中,绑定处理设备包括有存储器,以及一个或一个以上的程序,其中一个或者一个以上程序存储于存储器中,且一个或者一个以上程序可包括一个或一个以上模块,且每个模块可包括对绑定处理设备中的一系列计算机可执行指令,且经配置以由一个或者一个以上处理器执行该一个或者一个以上程序包含用于进行以下计算机可执行指令:接收支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。In another embodiment, the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each Each module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: An acquisition request for security authentication information sent by the first server; where the acquisition request is after the first server performs account registration processing based on the target user's account registration request sent by the second server of the resource storage institution, Sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is that the second server uses the resource storage mechanism based on the target user The binding request sent by the second client of the second client is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be registered in the resource storage institution A storage account is bound to the payment account of the payment application to be registered by the target user to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, according to the The device information generates the device fingerprint of the terminal device; and sends the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
可选地,计算机可执行指令在被执行时,所述接收所述支付应用的第一服务端发送的安全认证信息的获取请求之前,还包括:响应于所述目标用户基于登录界面的登录操作,向所述第一服务端发送登录请求;其中,所述登录请求包括所述存储账户关联的所述目标用户的联系方式,以使所述第一服务端向所述联系方式发送第二验证信息;获取所述目标用户在所述登录界面中输入的待验证的第二验证信息;将所述待验证的第二验证信息发送给所述第一服务端,以使所述第一服务端对所述待验证的第二验证信息进行验证;接收所述第一服务端发送的登录结果信息。Optionally, when the computer-executable instruction is executed, before the receiving request for obtaining the security authentication information sent by the first server of the payment application, the method further includes: responding to the target user's login operation based on the login interface , Sending a login request to the first server; wherein the login request includes the contact information of the target user associated with the storage account, so that the first server sends a second verification to the contact information Information; obtain the second verification information to be verified input by the target user in the login interface; send the second verification information to be verified to the first server, so that the first server Verifying the second verification information to be verified; receiving the login result information sent by the first server.
本说明书实施例提供的绑定处理设备,接收到支付应用的第一服务端发送的安全认证信息的获取时,生成所在终端设备的设备指纹,并将设备指纹发送给第一服务端,以使第一服务端进行安全认证处理;其中,获取请求为第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定目标用户在第一客户端上的操作处理满足预设的安全认证条件时所发送;而账户注册请求为第二服务端基于目标用户使用资源存储机构的第二客户端发送的绑定请求,在确定目标用户未注册支付应用的支付账户时所发送。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification generates the device fingerprint of the terminal device where it is located when receiving the acquisition of the security authentication information sent by the first server of the payment application, and sends the device fingerprint to the first server so that The first server performs security authentication processing; where the acquisition request is that the first server performs account registration processing based on the target user’s account registration request sent by the second server of the resource storage institution, and then determines that the target user is in the first client The above operation processing is sent when the preset security authentication conditions are met; and the account registration request is a binding request sent by the second server based on the second client of the target user using the resource storage mechanism, after determining that the target user is not registered with the payment application Sent when the payment account is made. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
在另一个实施例中,绑定处理设备包括有存储器,以及一个或一个以上的程序,其中一个或者一个以上程序存储于存储器中,且一个或者一个以上程序可包括一个或一个以上模块,且每个模块可包括对绑定处理设备中的一系列计算机可执行指令,且经配置以由一个或者一个以上处理器执行该一个或者一个以上程序包含用于进行以下计算机可执行指令:响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用 户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;接收所述第二服务端发送的绑定结果信息。In another embodiment, the binding processing device includes a memory and one or more programs, wherein one or more programs are stored in the memory, and the one or more programs may include one or more modules, and each Each module may include a series of computer-executable instructions in the binding processing device, and the one or more programs configured to be executed by one or more processors include computer-executable instructions for performing the following: in response to the target user The binding operation of the resource storage institution sends a binding request to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the target user’s payment application and the target user’s payment account be stored in the resource The storage account of the institution is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second server is based on Perform binding processing on the first account information; receive binding result information sent by the second server.
可选地,计算机可执行指令在被执行时,所述向资源存储机构的第二服务端发送绑定请求之后,还包括:接收所述第二服务端发送的验证信息获取请求,所述验证信息获取请求基于向所述支付应用的第一服务端发送的所述目标用户的账户注册请求所发送;根据所述验证信息获取请求,展示输入界面;获取所述目标用户在所述输入界面中输入的待验证的第一验证信息;将所述待验证的第一验证信息发送给所述第二服务端,以使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端,使所述第一服务端在对所述待验证的第一验证信息验证通过时,进行支付账户的注册处理。Optionally, when the computer-executable instructions are executed, after the sending of the binding request to the second server of the resource storage mechanism, the method further includes: receiving a verification information acquisition request sent by the second server, and the verification The information acquisition request is sent based on the account registration request of the target user sent to the first server of the payment application; the input interface is displayed according to the verification information acquisition request; the target user is acquired in the input interface Input first verification information to be verified; sending the first verification information to be verified to the second server, so that the second server sends the first verification information to be verified to all The first server enables the first server to perform registration processing of the payment account when the verification of the first verification information to be verified is passed.
可选地,计算机可执行指令在被执行时,所述接收所述第二服务端发送的绑定结果信息之前,还包括:获取所述目标用户签署预设绑定协议的签署信息,将所述签署信息发送给所述第二服务端,以使所述第二服务端基于所述签署信息进行相关处理。Optionally, when the computer-executable instruction is executed, before the receiving the binding result information sent by the second server, the method further includes: acquiring the signing information of the preset binding agreement signed by the target user, The signing information is sent to the second server, so that the second server performs related processing based on the signing information.
本说明书实施例提供的绑定处理设备,响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求,以使第二服务端在确定目标用户未注册支付应用的支付账户时,向支付应用的第一服务端发送账户注册请求,并基于第一服务端发送的支付账户的账户标识信息进行绑定处理;以及第一服务端在确定满足预设的安全认证条件时,对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。The binding processing device provided by the embodiment of this specification, in response to the binding operation of the target user, sends a binding request to the second server of the resource storage institution, so that the second server determines that the target user has not registered the payment application of the payment application. In the case of an account, send an account registration request to the first server of the payment application, and perform binding processing based on the account identification information of the payment account sent by the first server; and when the first server determines that the preset security authentication conditions are met , Perform security authentication processing on the target user. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
本说明书中关于绑定处理设备的实施例与本说明书中关于绑定处理方法的实施例基于同一发明构思,因此该实施例的具体实施可参见前述对应的绑定处理方法的实施,重复之处不再赘述。The embodiment of the binding processing device in this specification is based on the same inventive concept as the embodiment of the binding processing method in this specification. Therefore, the specific implementation of this embodiment can refer to the implementation of the corresponding binding processing method mentioned above. No longer.
进一步地,对应上述描述的绑定处理方法,基于相同的技术构思,本说明书实施例还提供了一种存储介质,用于存储计算机可执行指令,一个实施例中,该存储介质可为U盘、光盘、硬盘等,该存储介质存储的计算机可执行指令在被处理器执行时,能实现以下流程:接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。Further, corresponding to the binding processing method described above, based on the same technical concept, the embodiments of this specification also provide a storage medium for storing computer-executable instructions. In one embodiment, the storage medium may be a USB flash drive. , Optical disk, hard disk, etc., when the computer executable instructions stored in the storage medium are executed by the processor, the following process can be realized: receiving the target user's account registration request sent by the second server of the resource storage institution; wherein, the account The registration request is when the second server receives the binding request sent by the second client of the target user using the resource storage mechanism, and determines that the target user has not registered the payment account of the payment application. Send; the binding request is used to request that the target user's storage account in the resource storage institution be bound with the payment account of the payment application to be registered by the target user to grant the payment account The payment authority for payment based on the storage account; the account registration request includes the registration information of the target user; the registration processing of the payment account is performed according to the registration information to obtain the account identification information of the target user; The account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; if it is determined that the target user operates on the first client of the payment application When the processing meets the preset security authentication condition, the target user is subjected to security authentication processing through the first client.
本说明书实施例提供的存储介质存储的计算机可执行指令在被处理器执行时,接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理;其中,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。When the computer-executable instructions stored in the storage medium provided in the embodiments of this specification are executed by the processor, when the account registration request sent by the second server of the resource storage institution is received, the payment account registration process is performed, and the obtained target The user’s account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; wherein, the account registration request is the second client receiving the target user’s use of the resource storage mechanism by the second server The binding request sent by the terminal and it is sent when it is determined that the target user has not registered the payment account of the payment application; and, the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security authentication Condition, the target user is subjected to security authentication processing through the first client. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述接收资源存储机构的第二服务端发送的目标用户的账户注册请求之前,还包括:接收所述第二服务端发送的支付账户查询请求;其中,所述支付账户查询请求基于所述绑定请求所发送,所述支付账户查询请求包括所述存储账户关联的所述目标用户的身份信息;若根据所述身份信息未查询到关联的所述账户标识信息,则向所述第二服务端发送表征未查询到所述账户标识信息的查询结果,以使所述第二服务端确定所述目标用户未注册所述支付应用的支付账户,并发送所述账户注册请求。Optionally, when the computer executable instructions stored in the storage medium are executed by the processor, before the receiving the target user account registration request sent by the second server of the resource storage mechanism, the method further includes: receiving the second service Payment account query request sent by the client terminal; wherein the payment account query request is sent based on the binding request, and the payment account query request includes the identity information of the target user associated with the storage account; If the associated account identification information is not queried for the identity information, the query result indicating that the account identification information is not queried is sent to the second server, so that the second server determines that the target user is not registered The payment account of the payment application, and send the account registration request.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述注册信息包括:所述存储账户关联的所述目标用户的联系方式。所述根据所述注册信息进行支付账户的注册处理,包括:向所述联系方式发送第一验证信息,以使所述第二客户端将获取的所述目标用户输入的待验证的第一验证信息发送给所述第二服务端,使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端;接收所述第二服务端发送的所述待验证的第一验证信息;若对所述待验证的第一验证信息验证通过,则根据所述注册信息进行账户注册处理。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the registration information includes: the contact information of the target user associated with the storage account. The registration processing of the payment account according to the registration information includes: sending first verification information to the contact information, so that the second client will obtain the first verification input by the target user to be verified Information is sent to the second server, so that the second server sends the first verification information to be verified to the first server; receives the to-be-verified sent by the second server The first verification information; if the verification of the first verification information to be verified is passed, the account registration process is performed according to the registration information.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述账户查询请求还包括所述存储账户的第一账户信息。所述注册信息包括所述存储账户关联的目标用户的联系方式。所述根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息,包括:根据预设的账户标识的生成规则,生成所述目标用户的账户标识信息;将生成的所述账户标识信息、所述联系方式、所述身份信息、所述第一账户信息和表征待进行安全认证的第一认证标识进行关联记录,得到第一记录信息。通过所述第一客户端对所述目标用户进行安全认证通过之后,还包括:将所述第一记录信息中的所述第一认证标识更新为第二认证标识,所述第二认证标识表征所述安全认证通过。Optionally, when the computer executable instructions stored in the storage medium are executed by the processor, the account query request further includes the first account information of the storage account. The registration information includes the contact information of the target user associated with the storage account. The performing the registration processing of the payment account according to the registration information to obtain the account identification information of the target user includes: generating the account identification information of the target user according to preset account identification generation rules; The account identification information, the contact information, the identity information, the first account information, and the first authentication identifier representing the security authentication to be performed are associated and recorded to obtain the first record information. After the security authentication of the target user through the first client is passed, the method further includes: updating the first authentication identifier in the first record information to a second authentication identifier, and the second authentication identifier represents The safety certification is passed.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述将所述账户标识信息发送给所述第二服务端之后,还包括:记录所述账户标识信息的发送时间。所述确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,包括:若确定所述目标用户成功登录所述第一客户端、且根据登录信息中的联系方式查询到的所述第一记录信息中的认证标识为所述第一认证标识,则确定查询到的所述第一记录信息中的身份信息所关联的账户标识信息的数量是否未超过预设数量;以 及,获取当前时间,根据所述发送时间和所述当前时间确定所述第一记录信息所对应的所述支付账户与所述存储账户的绑定时长;确定所述绑定时长是否超过预设时长;若确定所述身份信息所关联的账户标识信息的数量未超过所述预设数量、且所述绑定时长未超过所述预设时长,则确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件。Optionally, when the computer executable instructions stored in the storage medium are executed by the processor, after sending the account identification information to the second server, the method further includes: recording the sending time of the account identification information . The determining that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition includes: if it is determined that the target user successfully logs in to the first client terminal, and according to the login information If the authentication identifier in the first record information queried in the contact information is the first authentication identifier, it is determined whether the number of account identification information associated with the identity information in the queried first record information is not Exceed the preset number; and, obtain the current time, and determine the binding duration of the payment account and the storage account corresponding to the first record information according to the sending time and the current time; determine the binding Whether the duration exceeds the preset duration; if it is determined that the number of account identification information associated with the identity information does not exceed the preset number, and the binding duration does not exceed the preset duration, then it is determined that the target user is The operation processing on the first client of the payment application satisfies the preset safety authentication condition.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述确定所述目标用户成功登录所述一客户端,包括:接收所述第一客户端发送的登录请求;向所述登录请求包括的联系方式中发送第二验证信息,以使所述第一客户端将获取的所述目标用户输入的待验证的第二验证信息发送给所述第一服务端;接收所述第一客户端发送的所述待验证的第二验证信息;若对所述待验证的第二验证信息验证通过,则确定所述目标用户成功登录所述第一客户端。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the determining that the target user successfully logs in to the one client includes: receiving a login request sent by the first client; The contact information included in the login request sends second verification information, so that the first client sends the acquired second verification information input by the target user to be verified to the first server; The second verification information to be verified sent by the first client; and if the verification of the second verification information to be verified is passed, it is determined that the target user successfully logs in to the first client.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述通过所述第一客户端对所述目标用户进行安全认证处理,包括:向所述第一客户端发送安全认证信息的获取请求,以使所述第一客户端获取所在终端设备的设备信息,并基于所述设备信息生成设备指纹,将所述设备指纹发送给所述第一服务端;接收所述第一客户端发送的所述设备指纹,若确定根据所述设备指纹进行风险评估通过,则确定对所述目标用户的安全认证通过。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the performing security authentication processing on the target user through the first client includes: sending security to the first client Request for obtaining authentication information, so that the first client obtains the device information of the terminal device where it is located, generates a device fingerprint based on the device information, and sends the device fingerprint to the first server; and receives the first client device. If the device fingerprint sent by a client is determined to pass the risk assessment based on the device fingerprint, it is determined that the security authentication of the target user is passed.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述支付账户查询请求还包括所述存储账户的第一账户信息,所述方法还包括:若根据所述身份信息查询到关联的所述账户标识信息,将查询到的所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;以及,将所述第一账户信息与查询到的所述账户标识信息进行关联记录,得到第二记录信息,所述第二记录信息表征查询到的所述账户标识信息所对应的支付账户与所述存储账户绑定成功。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the payment account query request further includes the first account information of the storage account, and the method further includes: The associated account identification information is queried, and the queried account identification information is sent to the second server, so that the second server performs binding processing according to the account identification information; and, The first account information and the queried account identification information are associated and recorded to obtain second record information, and the second record information represents the payment account and the storage account corresponding to the queried account identification information The binding is successful.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述账户查询请求还包括地址信息,所述将查询到的所述账户标识信息发送给所述第二服务端,包括:确定查询到的所述账户标识信息的数量是否为一;若是,则将查询到的所述账户标识信息发送给所述第二服务端;若否,则在所述第二客户端中所述地址信息所对应的展示界面展示查询到的多个账户标识信息所对应的支付账户的第二账户信息,获取所述目标用户基于所述展示界面所选择的目标第二账户信息;将所述目标第二账户信息所对应的账户标识信息发送给所述第二服务端。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the account query request further includes address information, and the queried account identification information is sent to the second server, Including: determining whether the number of the queried account identification information is one; if so, sending the queried account identification information to the second server; if not, in the second client The display interface corresponding to the address information displays the second account information of the payment account corresponding to the multiple queried account identification information, and obtains the target second account information selected by the target user based on the display interface; The account identification information corresponding to the target second account information is sent to the second server.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述第二客户端包括:所述资源存储机构的资源管理应用程序或所述资源存储机构的自助操作机。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the second client includes: a resource management application of the resource storage organization or a self-service operation machine of the resource storage organization.
本说明书实施例提供的存储介质所存储的计算机可执行指令在被处理器执行时,接收到资源存储机构的第二服务端发送的账户注册请求时,进行支付账户的注册处理,并将得到的目标用户的账户标识信息发送给第二服务端,以使第二服务端根据该账户标识信息进行绑定处理;其中,账户注册请求为第二服务端接收到目标用户使用资源存储机构的第二客户端发送的绑定请、且确定目标用户未注册支付应用的支付账户时所发送;以及,第一服务端在确定目标用户在支付应用的第一客户端上的操作处理满足预设的安 全认证条件,通过第一客户端对目标用户进行安全认证处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。When the computer-executable instructions stored in the storage medium provided by the embodiment of this specification are executed by the processor, when the account registration request sent by the second server of the resource storage institution is received, the payment account registration process is performed, and the obtained The account identification information of the target user is sent to the second server, so that the second server performs binding processing according to the account identification information; wherein, the account registration request is that the second server receives the second request of the target user to use the resource storage mechanism. The binding request sent by the client is sent when it is determined that the target user has not registered the payment account of the payment application; and the first server determines that the target user’s operation processing on the first client of the payment application meets the preset security The authentication condition is to perform security authentication processing on the target user through the first client. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
另一个实施例中,该存储介质可为U盘、光盘、硬盘等,该存储介质存储的计算机可执行指令在被处理器执行时,能实现以下流程:接收资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。In another embodiment, the storage medium may be a U disk, an optical disk, a hard disk, etc., and the computer-executable instructions stored in the storage medium can realize the following process when being executed by the processor: the second client receiving the resource storage mechanism sends The binding request; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target user be stored in the storage account of the resource storage institution with the target user Bind the payment account of the payment application to grant the payment account the right to pay based on the storage account; the binding request includes the first account information of the storage account; if it is determined that the target user is not Register the payment account of the payment application, then send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first server can register the payment account Process to obtain the account identification information of the target user, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, the first client performs The target user performs security authentication processing; receives the account identification information sent by the first server, performs binding processing based on the account identification information and the first account information, and sends the binding to the second client Determine the result information.
本说明书实施例提供的存储介质所存储的计算机可执行指令在被处理器执行时,在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。When the computer-executable instructions stored in the storage medium provided in the embodiments of this specification are executed by the processor, when a binding request sent by the second client of the resource storage mechanism is received, the binding request is based on the binding of the target user. If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information of the storage account included in the binding request, and according to the A binding process is performed on the account identification information sent by the server. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述确定所述目标用户未注册所述支付应用的支付账户,包括:根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的身份信息;根据所述身份信息和所述第一账户信息,向所述第二服务端发送账户查询请求,以使所述第二服务端根据所述身份信息查询关联的账户标识信息;若接收到所述第二服务端发送的表征未查询到所述账户标识信息的查询结果,则确定所述目标用户未注册所述支付应用的支付账户。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the determining that the target user has not registered the payment account of the payment application includes: according to the first account information, from a specified Acquire the associated identity information of the target user from the database; send an account query request to the second server according to the identity information and the first account information, so that the second server can make the second server according to the identity Information query associated account identification information; if a query result sent by the second server indicating that the account identification information is not inquired is received, it is determined that the target user has not registered the payment account of the payment application.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,包括:根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的联系方式;根据所述联系方式,向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理时,向所述联系方式发送第一验证信息。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the sending the account registration request of the target user to the first server of the payment application according to the first account information includes : According to the first account information, obtain the associated contact information of the target user from a designated database; according to the contact information, send the account registration request of the target user to the first server of the payment application , So that the first server sends the first verification information to the contact method when performing the registration processing of the payment account.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,根据所述第 一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求之后,还包括:向所述第二客户端发送验证信息获取请求,以使所述第二客户端展示输入界面并获取所述目标用户基于所述输入界面输入的待验证的第一验证信息;接收所述第二客户端发送的所述待验证的第一验证信息;将所述待验证的第一验证信息发送给所述第一服务端,以使所述第一服务端在对所述第一验证信息验证通过时,进行支付账户的注册处理。Optionally, when the computer executable instructions stored in the storage medium are executed by the processor, after sending the account registration request of the target user to the first server of the payment application according to the first account information, the method further includes : Send a verification information acquisition request to the second client, so that the second client displays an input interface and acquires the first verification information to be verified input by the target user based on the input interface; receiving the first verification information 2. The first verification information to be verified sent by the client; sending the first verification information to be verified to the first server, so that the first server is checking the first verification information When the verification is passed, the registration process of the payment account is performed.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,包括:若确定获取到所述目标用户签署预设绑定协议的签署信息,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求。Optionally, when the computer executable instructions stored in the storage medium are executed by the processor, sending the account registration request of the target user to the first server of the payment application according to the first account information includes: It is determined that the signature information for the target user to sign the preset binding agreement is obtained, and then the account registration request of the target user is sent to the first server of the payment application according to the first account information.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述根据所述账户标识信息进行绑定处理,包括:将所述账户标识信息与所述第一账户信息进行关联记录,得到第三记录信息;其中,所述第三记录信息表征所述账户标识信息对应的支付账户与所述第一账户信息对应的存储账户绑定成功。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, the binding processing according to the account identification information includes: associating the account identification information with the first account information Record to obtain third record information; wherein the third record information indicates that the payment account corresponding to the account identification information is successfully bound with the storage account corresponding to the first account information.
本说明书实施例提供的存储介质所存储的计算机可执行指令在被处理器执行时,在接收到资源存储机构的第二客户端发送的绑定请求时,其中,绑定请求基于目标用户的绑定操作所发送;若确定目标用户未注册支付应用的支付账户,则根据绑定请求包括的存储账户的第一账户信息向支付应用的第一服务端发送目标用户的账户注册请求,以及根据第一服务端发送的账户标识信息进行绑定处理。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。When the computer-executable instructions stored in the storage medium provided in the embodiments of this specification are executed by the processor, when a binding request sent by the second client of the resource storage mechanism is received, the binding request is based on the binding of the target user. If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information of the storage account included in the binding request, and according to the A binding process is performed on the account identification information sent by the server. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
另一个实施例中,该存储介质可为U盘、光盘、硬盘等,该存储介质存储的计算机可执行指令在被处理器执行时,能实现以下流程:接收支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。In another embodiment, the storage medium may be a U disk, an optical disk, a hard disk, etc., and the computer executable instructions stored in the storage medium can implement the following process when executed by the processor: Security authentication information acquisition request; wherein, the acquisition request is that the first server determines that the target user is in the account registration process based on the target user’s account registration request sent by the second server of the resource storage institution. Sent when the operation processing on the first client meets preset security authentication conditions; the account registration request is sent by the second server based on the target user using the second client of the resource storage mechanism The binding request is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be stored in the storage account of the resource storage institution with the Bind the payment account of the payment application to be registered by the target user to grant the payment account the right to pay based on the storage account; obtain the device information of the terminal device where it is located, and generate the terminal based on the device information Device fingerprint of the device; sending the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述接收所述支付应用的第一服务端发送的安全认证信息的获取请求之前,还包括:响应于所述目标用户基于登录界面的登录操作,向所述第一服务端发送登录请求;其中,所述登录请求包括所述存储账户关联的所述目标用户的联系方式,以使所述第一服务端向所述联系 方式发送第二验证信息;获取所述目标用户在所述登录界面中输入的待验证的第二验证信息;将所述待验证的第二验证信息发送给所述第一服务端,以使所述第一服务端对所述待验证的第二验证信息进行验证;接收所述第一服务端发送的登录结果信息。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, before the receiving request for obtaining the security authentication information sent by the first server of the payment application, the method further includes: responding to the target The user sends a login request to the first server based on the login operation of the login interface; wherein the login request includes the contact information of the target user associated with the storage account, so that the first server sends the Send the second verification information in the contact information; obtain the second verification information to be verified input by the target user in the login interface; send the second verification information to be verified to the first server to Enabling the first server to verify the second verification information to be verified; receiving the login result information sent by the first server.
本说明书实施例提供的存储介质所存储的计算机可执行指令在被处理器执行时,接收到支付应用的第一服务端发送的安全认证信息的获取时,生成所在终端设备的设备指纹,并将设备指纹发送给第一服务端,以使第一服务端进行安全认证处理;其中,获取请求为第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定目标用户在第一客户端上的操作处理满足预设的安全认证条件时所发送;而账户注册请求为第二服务端基于目标用户使用资源存储机构的第二客户端发送的绑定请求,在确定目标用户未注册支付应用的支付账户时所发送。由此,目标用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。When the computer-executable instructions stored in the storage medium provided in the embodiments of this specification are executed by the processor, when the security authentication information sent by the first server of the payment application is acquired, the device fingerprint of the terminal device where it is located is generated, and the The device fingerprint is sent to the first server to enable the first server to perform security authentication processing; wherein, the acquisition request is the account registration request of the target user sent by the first server to the second server based on the resource storage institution for account registration After processing, it is sent when it is determined that the operation processing of the target user on the first client meets the preset security authentication conditions; and the account registration request is a binding sent by the second server based on the second client of the target user using the resource storage mechanism The request is sent when it is determined that the target user has not registered the payment account of the payment application. Therefore, when the target user operates the second client terminal of the resource storage institution to bind the account, it can realize the registration of the payment account and the binding of the payment account and the storage account at the same time without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
另一个实施例中,该存储介质可为U盘、光盘、硬盘等,该存储介质存储的计算机可执行指令在被处理器执行时,能实现以下流程:响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;接收所述第二服务端发送的绑定结果信息。In another embodiment, the storage medium may be a U disk, an optical disk, a hard disk, etc., when the computer executable instructions stored in the storage medium are executed by the processor, the following process can be realized: in response to the binding operation of the target user, The second server of the resource storage institution sends a binding request; wherein the binding request is used to request to bind the payment account of the payment application of the target user with the storage account of the target user in the resource storage institution To grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second server can make the payment according to the first account information Perform binding processing; receive the binding result information sent by the second server.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述向资源存储机构的第二服务端发送绑定请求之后,还包括:接收所述第二服务端发送的验证信息获取请求;其中,所述验证信息获取请求基于向所述支付应用的第一服务端发送的所述目标用户的账户注册请求所发送;根据所述验证信息获取请求,展示输入界面;获取所述目标用户在所述输入界面中输入的待验证的第一验证信息;将所述待验证的第一验证信息发送给所述第二服务端,以使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端,使所述第一服务端在对所述待验证的第一验证信息验证通过时,进行支付账户的注册处理。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, after the sending of the binding request to the second server of the resource storage mechanism, the method further includes: receiving a verification sent by the second server Information acquisition request; wherein the verification information acquisition request is sent based on the target user account registration request sent to the first server of the payment application; according to the verification information acquisition request, an input interface is displayed; The first verification information to be verified entered by the target user in the input interface; the first verification information to be verified is sent to the second server, so that the second server sends the The verified first verification information is sent to the first server, so that when the first server passes the verification of the to-be-verified first verification information, the payment account is registered.
可选地,该存储介质存储的计算机可执行指令在被处理器执行时,所述接收所述第二服务端发送的绑定结果信息之前,还包括:获取所述目标用户签署预设绑定协议的签署信息,将所述签署信息发送给所述第二服务端,以使所述第二服务端基于所述签署信息进行相关处理。Optionally, when the computer-executable instructions stored in the storage medium are executed by the processor, before the receiving the binding result information sent by the second server, the method further includes: obtaining the target user to sign a preset binding The signing information of the agreement is sent to the second server, so that the second server performs related processing based on the signing information.
本说明书实施例提供的存储介质所存储的计算机可执行指令在被处理器执行时,响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求,以使第二服务端在确定目标用户未注册支付应用的支付账户时,向支付应用的第一服务端发送账户注册请求,并基于第一服务端发送的支付账户的账户标识信息进行绑定处理;以及第一服务端在确定满足预设的安全认证条件时,对目标用户进行安全认证处理。由此,目标 用户操作资源存储机构的第二客户端进行账户绑定时,能够在不增加任何用户操作的基础上,同时实现支付账户的注册、以及支付账户与存储账户的绑定;且通过将支付账户的注册处理与对目标用户的安全认证处理以异步的方式执行,既满足了支付应用的安全认证需求,又满足了用户在不同场景下的账户绑定需求。When the computer-executable instructions stored in the storage medium provided by the embodiments of this specification are executed by the processor, in response to the binding operation of the target user, the binding request is sent to the second server of the resource storage mechanism to enable the second service When determining that the target user has not registered the payment account of the payment application, the terminal sends an account registration request to the first server of the payment application, and performs binding processing based on the account identification information of the payment account sent by the first server; and the first service When the terminal determines that it meets the preset security authentication conditions, it performs security authentication processing on the target user. Therefore, when the target user operates the second client terminal of the resource storage institution for account binding, it can simultaneously realize the registration of the payment account and the binding of the payment account and the storage account without adding any user operations; and The registration process of the payment account and the security authentication process of the target user are executed in an asynchronous manner, which not only meets the security authentication requirements of the payment application, but also meets the user's account binding requirements in different scenarios.
本说明书中关于存储介质的实施例与本说明书中关于绑定处理方法的实施例基于同一发明构思,因此该实施例的具体实施可参见前述对应的绑定处理方法的实施,重复之处不再赘述。The embodiment of the storage medium in this specification and the embodiment of the binding processing method in this specification are based on the same inventive concept. Therefore, the specific implementation of this embodiment can refer to the implementation of the corresponding binding processing method mentioned above, and the repetition will not be omitted. Go into details.
上述对本说明书特定实施例进行了描述。其它实施例在所附权利要求书的范围内。在一些情况下,在权利要求书中记载的动作或步骤可按照不同于实施例中的顺序来执行且仍然可实现期望的结果。另外,在附图中描绘的过程不一定要求示出的特定顺序或者连续顺序才能实现期望的结果。在某些实施方式中,多任务处理和并行处理也是可的或者可能是有利的。The foregoing describes specific embodiments of this specification. Other embodiments are within the scope of the appended claims. In some cases, the actions or steps described in the claims can be performed in a different order than in the embodiments and still achieve desired results. In addition, the processes depicted in the drawings do not necessarily require the specific order or sequential order shown in order to achieve the desired results. In some embodiments, multitasking and parallel processing are also possible or may be advantageous.
在20世纪90年代,对于一个技术的改进可很明显地区分是硬件上的改进(例如,对二极管、晶体管、开关等电路结构的改进)还是软件上的改进(对于方法流程的改进)。然而,随着技术的发展,当今的很多方法流程的改进已经可视为硬件电路结构的直接改进。设计人员几乎都通过将改进的方法流程编程到硬件电路中来得到相应的硬件电路结构。因此,不能说一个方法流程的改进就不能用硬件实体模块来实现。例如,可编程逻辑器件(Programmable Logic Device,PLD)(例如现场可编程门阵列(Field Programmable Gate Array,FPGA))就是这样一种集成电路,其逻辑功能由用户对器件编程来确定。由设计人员自行编程来把一个数字系统“集成”在一片PLD上,而不需要请芯片制造厂商来设计和制作专用的集成电路芯片。而且,如今,取代手工地制作集成电路芯片,这种编程也多半改用“逻辑编译器(logic compiler)”软件来实现,它与程序开发撰写时所用的软件编译器相类似,而要编译之前的原始代码也得用特定的编程语言来撰写,此称之为硬件描述语言(Hardware Description Language,HDL),而HDL也并非仅有一种,而是有许多种,如ABEL(Advanced Boolean Expression Language)、AHDL(Altera Hardware Description Language)、Confluence、CUPL(Cornell University Programming Language)、HDCal、JHDL(Java Hardware Description Language)、Lava、Lola、MyHDL、PALASM、RHDL(Ruby Hardware Description Language)等,目前最普遍使用的是VHDL(Very-High-Speed Integrated Circuit Hardware Description Language)与Verilog。本领域技术人员也应该清楚,只需要将方法流程用上述几种硬件描述语言稍作逻辑编程并编程到集成电路中,就可很容易得到实现该逻辑方法流程的硬件电路。In the 1990s, the improvement of a technology can be clearly distinguished between hardware improvements (for example, improvements in circuit structures such as diodes, transistors, switches, etc.) and software improvements (improvements in method flow). However, with the development of technology, the improvement of many methods in today's process has been regarded as a direct improvement of the hardware circuit structure. Designers almost always get the corresponding hardware circuit structure by programming the improved method flow into the hardware circuit. Therefore, it cannot be said that the improvement of a method flow cannot be realized by the hardware entity module. For example, a programmable logic device (Programmable Logic Device, PLD) (such as a Field Programmable Gate Array (Field Programmable Gate Array, FPGA)) is such an integrated circuit whose logic function is determined by the user's programming of the device. It is programmed by the designer to "integrate" a digital system on a piece of PLD, without requiring chip manufacturers to design and manufacture dedicated integrated circuit chips. Moreover, nowadays, instead of manually making integrated circuit chips, this kind of programming is mostly realized with "logic compiler" software, which is similar to the software compiler used in program development and writing, but before compilation The original code must also be written in a specific programming language, which is called Hardware Description Language (HDL), and there is not only one type of HDL, but many types, such as ABEL (Advanced Boolean Expression Language) , AHDL (Altera Hardware Description Language), Confluence, CUPL (Cornell University Programming Language), HDCal, JHDL (Java Hardware Description Language), Lava, Lola, MyHDL, PALASM, RHDL (Ruby Hardware Description), etc., currently most commonly used It is VHDL (Very-High-Speed Integrated Circuit Hardware Description Language) and Verilog. It should also be clear to those skilled in the art that just a little bit of logic programming of the method flow in the above-mentioned hardware description languages and programming into an integrated circuit can easily obtain the hardware circuit that implements the logic method flow.
控制器可按任何适当的方式实现,例如,控制器可采取例如微处理器或处理器以及存储可由该(微)处理器执行的计算机可读程序代码(例如软件或固件)的计算机可读介质、逻辑门、开关、专用集成电路(Application Specific Integrated Circuit,ASIC)、可编程逻辑控制器和嵌入微控制器的形式,控制器的例子包括但不限于以下微控制器:ARC 625D、Atmel AT91SAM、Microchip PIC18F26K20以及Silicone Labs C8051F320,存储器控制器还可被实现为存储器的控制逻辑的一部分。本领域技术人员也知道,除了以纯计算机可读程序代码方式实现控制器以外,完全可通过将方法步骤进行逻辑编程来使得控制器以逻辑门、开关、专用集成电路、可编程逻辑控制器和嵌入微控制器等的形 式来实现相同功能。因此这种控制器可被认为是一种硬件部件,而对其内包括的用于实现各种功能的装置也可视为硬件部件内的结构。或者甚至,可将用于实现各种功能的装置视为既可是实现方法的软件模块又可是硬件部件内的结构。The controller can be implemented in any suitable manner. For example, the controller can take the form of, for example, a microprocessor or a processor and a computer readable medium storing computer readable program codes (such as software or firmware) executable by the (micro) processor. , Logic gates, switches, application specific integrated circuits (ASICs), programmable logic controllers and embedded microcontrollers. Examples of controllers include but are not limited to the following microcontrollers: ARC625D, Atmel AT91SAM, Microchip PIC18F26K20 and Silicon Labs C8051F320, the memory controller can also be implemented as part of the memory control logic. Those skilled in the art also know that in addition to implementing the controller in a purely computer-readable program code manner, it is completely possible to program the method steps to make the controller use logic gates, switches, application-specific integrated circuits, programmable logic controllers, and embedded logic. The same function can be realized in the form of a microcontroller or the like. Therefore, such a controller can be regarded as a hardware component, and the devices included in it for realizing various functions can also be regarded as a structure within the hardware component. Or even, a device for realizing various functions can be regarded as both a software module for realizing the method and a structure within a hardware component.
上述实施例阐明的系统、装置、模块或单元,具体可由计算机芯片或实体实现,或者由具有某种功能的产品来实现。一种典型的实现设备为计算机。计算机例如可为个人计算机、膝上型计算机、蜂窝电话、相机电话、智能电话、个人数字助理、媒体播放器、导航设备、电子邮件设备、游戏控制台、平板计算机、可穿戴设备或者这些设备中的任何设备的组合。The systems, devices, modules, or units explained in the above embodiments may be specifically implemented by computer chips or entities, or implemented by products with certain functions. A typical implementation device is a computer. The computer can be, for example, a personal computer, a laptop computer, a cellular phone, a camera phone, a smart phone, a personal digital assistant, a media player, a navigation device, an email device, a game console, a tablet computer, a wearable device, or among these devices Any combination of equipment.
为了描述的方便,描述以上装置时以功能分为各种单元分别描述。当然,在实施本说明书实施例时可把各单元的功能在同一个或多个软件和/或硬件中实现。For the convenience of description, when describing the above device, the functions are divided into various units and described separately. Of course, when implementing the embodiments of this specification, the functions of each unit may be implemented in the same one or more software and/or hardware.
本领域内的技术人员应明白,本说明书实施例可提供为方法、系统或计算机程序产品。因此,本说明书实施例可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本说明书可采用在其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art should understand that the embodiments of this specification can be provided as methods, systems or computer program products. Therefore, the embodiments of this specification may adopt the form of a complete hardware embodiment, a complete software embodiment, or an embodiment combining software and hardware. Moreover, this specification can take the form of a computer program product implemented on a computer-usable storage medium (including but not limited to disk storage, CD-ROM, optical storage, etc.) containing computer-usable program code.
本说明书是参照根据本说明书实施例的方法、设备(系统)、和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。This specification is described with reference to flowcharts and/or block diagrams of methods, devices (systems), and computer program products according to the embodiments of this specification. It should be understood that each process and/or block in the flowchart and/or block diagram, and the combination of processes and/or blocks in the flowchart and/or block diagram can be realized by computer program instructions. These computer program instructions can be provided to the processor of a general-purpose computer, a special-purpose computer, an embedded processor, or other programmable data processing equipment to generate a machine, so that the instructions executed by the processor of the computer or other programmable data processing equipment are used to generate It is a device that realizes the functions specified in one process or multiple processes in the flowchart and/or one block or multiple blocks in the block diagram.
这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。These computer program instructions can also be stored in a computer-readable memory that can guide a computer or other programmable data processing equipment to work in a specific manner, so that the instructions stored in the computer-readable memory produce an article of manufacture including the instruction device. The device implements the functions specified in one process or multiple processes in the flowchart and/or one block or multiple blocks in the block diagram.
这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。These computer program instructions can also be loaded on a computer or other programmable data processing equipment, so that a series of operation steps are executed on the computer or other programmable equipment to produce computer-implemented processing, so as to execute on the computer or other programmable equipment. The instructions provide steps for implementing the functions specified in one process or multiple processes in the flowchart and/or one block or multiple blocks in the block diagram.
在一个典型的配置中,计算设备包括一个或多个处理器(CPU)、输入/输出接口、网络接口和内存。In a typical configuration, the computing device includes one or more processors (CPUs), input/output interfaces, network interfaces, and memory.
内存可能包括计算机可读介质中的非永久性存储器,随机存取存储器(RAM)和/或非易失性内存等形式,如只读存储器(ROM)或闪存(flash RAM)。内存是计算机可读介质的示例。The memory may include non-permanent memory in computer readable media, random access memory (RAM) and/or non-volatile memory, such as read-only memory (ROM) or flash memory (flash RAM). Memory is an example of computer readable media.
计算机可读介质包括永久性和非永久性、可移动和非可移动媒体可由任何方法或技术来实现信息存储。信息可是计算机可读指令、数据结构、程序的模块或其他数据。 计算机的存储介质的例子包括,但不限于相变内存(PRAM)、静态随机存取存储器(SRAM)、动态随机存取存储器(DRAM)、其他类型的随机存取存储器(RAM)、只读存储器(ROM)、电可擦除可编程只读存储器(EEPROM)、快闪记忆体或其他内存技术、只读光盘只读存储器(CD-ROM)、数字多功能光盘(DVD)或其他光学存储、磁盒式磁带,磁带磁盘存储或其他磁性存储设备或任何其他非传输介质,可用于存储可被计算设备访问的信息。按照本文中的界定,计算机可读介质不包括暂存电脑可读媒体(transitory media),如调制的数据信号和载波。Computer-readable media include permanent and non-permanent, removable and non-removable media, and information storage can be realized by any method or technology. Information can be computer-readable instructions, data structures, program modules, or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random access memory (RAM), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory or other memory technology, CD-ROM, digital versatile disc (DVD) or other optical storage, Magnetic cassettes, magnetic tape disk storage or other magnetic storage devices or any other non-transmission media can be used to store information that can be accessed by computing devices. According to the definition in this article, computer-readable media does not include transitory media, such as modulated data signals and carrier waves.
术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、商品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、商品或者设备所固有的要素。在没有更多限制的情况下,由语句“包括一个……”限定的要素,并不排除在包括所述要素的过程、方法、商品或者设备中还存在另外的相同要素。The terms "include", "include" or any other variants thereof are intended to cover non-exclusive inclusion, so that a process, method, commodity or equipment including a series of elements includes not only those elements, but also other elements that are not explicitly listed. Elements, or also include elements inherent to such processes, methods, commodities, or equipment. If there are no more restrictions, the element defined by the sentence "including a..." does not exclude the existence of other identical elements in the process, method, commodity, or equipment that includes the element.
本说明书实施例可在由计算机执行的计算机可执行指令的一般上下文中描述,例如程序模块。一般地,程序模块包括执行特定任务或实现特定抽象数据类型的例程、程序、对象、组件、数据结构等等。也可在分布式计算环境中实践本说明书的实施例,在这些分布式计算环境中,由通过通信网络而被连接的远程处理设备来执行任务。在分布式计算环境中,程序模块可位于包括存储设备在内的本地和远程计算机存储介质中。The embodiments of this specification may be described in the general context of computer-executable instructions executed by a computer, such as program modules. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform specific tasks or implement specific abstract data types. The embodiments of this specification can also be practiced in distributed computing environments. In these distributed computing environments, tasks are performed by remote processing devices connected through a communication network. In a distributed computing environment, program modules can be located in local and remote computer storage media including storage devices.
本说明书中的各个实施例均采用递进的方式描述,各个实施例之间相同相似的部分互相参见即可,每个实施例重点说明的都是与其他实施例的不同之处。尤其,对于系统实施例而言,由于其基本相似于方法实施例,所以描述的比较简单,相关之处参见方法实施例的部分说明即可。The various embodiments in this specification are described in a progressive manner, and the same or similar parts between the various embodiments can be referred to each other, and each embodiment focuses on the difference from other embodiments. In particular, as for the system embodiment, since it is basically similar to the method embodiment, the description is relatively simple, and for related parts, please refer to the part of the description of the method embodiment.
以上所述仅为本文件的实施例而已,并不用于限制本文件。对于本领域技术人员来说,本文件可有各种更改和变化。凡在本文件的精神和原理之内所作的任何修改、等同替换、改进等,均应包含在本文件的权利要求范围之内。The above descriptions are only examples of this document, and are not intended to limit this document. For those skilled in the art, this document can have various modifications and changes. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of this document shall be included in the scope of the claims of this document.

Claims (33)

  1. 一种绑定处理方法,应用于支付应用的第一服务端,包括:A binding processing method, applied to the first server of a payment application, includes:
    接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;Receive a target user’s account registration request sent by the second server of the resource storage institution; wherein, the account registration request is when the second server receives the target user’s use of the resource storage institution’s second client The binding request is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be in the storage account of the resource storage institution with all Binding the payment account of the payment application to be registered by the target user to grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the registration information of the target user;
    根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;Perform payment account registration processing according to the registration information to obtain the account identification information of the target user;
    将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;Sending the account identification information to the second server, so that the second server performs binding processing according to the account identification information;
    若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。If it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition, then the target user is subjected to security authentication processing through the first client terminal.
  2. 根据权利要求1所述的方法,所述接收资源存储机构的第二服务端发送的目标用户的账户注册请求之前,还包括:The method according to claim 1, before the receiving the account registration request of the target user sent by the second server of the resource storage institution, the method further comprises:
    接收所述第二服务端发送的支付账户查询请求;其中,所述支付账户查询请求基于所述绑定请求所发送,所述支付账户查询请求包括所述存储账户关联的所述目标用户的身份信息;Receiving a payment account query request sent by the second server; wherein the payment account query request is sent based on the binding request, and the payment account query request includes the identity of the target user associated with the storage account information;
    若根据所述身份信息未查询到关联的所述账户标识信息,则向所述第二服务端发送表征未查询到所述账户标识信息的查询结果,以使所述第二服务端确定所述目标用户未注册所述支付应用的支付账户,并发送所述账户注册请求。If the associated account identification information is not queried according to the identity information, the query result indicating that the account identification information is not queried is sent to the second server, so that the second server determines the The target user has not registered the payment account of the payment application, and sends the account registration request.
  3. 根据权利要求1所述的方法,所述注册信息包括:所述存储账户关联的所述目标用户的联系方式;The method according to claim 1, wherein the registration information comprises: contact information of the target user associated with the storage account;
    所述根据所述注册信息进行支付账户的注册处理,包括:The performing the registration processing of the payment account according to the registration information includes:
    向所述联系方式发送第一验证信息,以使所述第二客户端将获取的所述目标用户输入的待验证的第一验证信息发送给所述第二服务端,使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端;Send the first verification information to the contact information, so that the second client sends the acquired first verification information entered by the target user to be verified to the second server, so that the second service Sending the first verification information to be verified to the first server;
    接收所述第二服务端发送的所述待验证的第一验证信息;Receiving the first verification information to be verified sent by the second server;
    若对所述待验证的第一验证信息验证通过,则根据所述注册信息进行账户注册处理。If the verification of the first verification information to be verified is passed, an account registration process is performed according to the registration information.
  4. 根据权利要求2所述的方法,所述账户查询请求还包括:所述存储账户的第一账户信息;所述注册信息包括:所述存储账户关联的所述目标用户的联系方式;The method according to claim 2, wherein the account query request further includes: first account information of the storage account; the registration information includes: contact information of the target user associated with the storage account;
    所述根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息,包括:The performing the registration processing of the payment account according to the registration information to obtain the account identification information of the target user includes:
    根据预设的账户标识的生成规则,生成所述目标用户的账户标识信息;Generating the account identification information of the target user according to a preset account identification generation rule;
    将生成的所述账户标识信息、所述联系方式、所述身份信息、所述第一账户信息和表征待进行安全认证的第一认证标识进行关联记录,得到第一记录信息;Associate and record the generated account identification information, the contact information, the identity information, the first account information, and the first authentication identifier that characterizes the security authentication to be performed to obtain the first record information;
    通过所述第一客户端对所述目标用户进行安全认证通过之后,还包括:After passing the security authentication of the target user through the first client, the method further includes:
    将所述第一记录信息中的所述第一认证标识更新为第二认证标识;其中,所述第二认证标识表征所述安全认证通过。The first authentication identifier in the first record information is updated to a second authentication identifier; wherein, the second authentication identifier indicates that the safety authentication is passed.
  5. 根据权利要求4所述的方法,所述将所述账户标识信息发送给所述第二服务端 之后,还包括:The method according to claim 4, after the sending the account identification information to the second server, further comprising:
    记录所述账户标识信息的发送时间;Record the sending time of the account identification information;
    所述确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,包括:The determining that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition includes:
    若确定所述目标用户成功登录所述第一客户端、且根据登录信息中的联系方式查询到的所述第一记录信息中的认证标识为所述第一认证标识,则确定查询到的所述第一记录信息中的身份信息所关联的账户标识信息的数量是否未超过预设数量;以及,If it is determined that the target user successfully logs in to the first client, and the authentication identifier in the first record information queried according to the contact information in the login information is the first authentication identifier, then it is determined that all queried Whether the number of account identification information associated with the identity information in the first record information does not exceed the preset number; and,
    获取当前时间,根据所述发送时间和所述当前时间确定所述第一记录信息所对应的所述支付账户与所述存储账户的绑定时长;Acquiring the current time, and determining the binding duration of the payment account and the storage account corresponding to the first record information according to the sending time and the current time;
    确定所述绑定时长是否超过预设时长;Determine whether the binding duration exceeds a preset duration;
    若确定所述身份信息所关联的账户标识信息的数量未超过所述预设数量、且所述绑定时长未超过所述预设时长,则确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件。If it is determined that the number of account identification information associated with the identity information does not exceed the preset number, and the binding duration does not exceed the preset duration, it is determined that the target user is in the first position of the payment application. The operation processing on the client meets the preset security authentication conditions.
  6. 根据权利要求5所述的方法,所述确定所述目标用户成功登录所述一客户端,包括:The method according to claim 5, wherein the determining that the target user successfully logs in to the client includes:
    接收所述第一客户端发送的登录请求;Receiving a login request sent by the first client;
    向所述登录请求包括的联系方式中发送第二验证信息,以使所述第一客户端将获取的所述目标用户输入的待验证的第二验证信息发送给所述第一服务端;Sending second verification information to the contact information included in the login request, so that the first client sends the acquired second verification information entered by the target user to be verified to the first server;
    接收所述第一客户端发送的所述待验证的第二验证信息;Receiving the second verification information to be verified sent by the first client;
    若对所述待验证的第二验证信息验证通过,则确定所述目标用户成功登录所述第一客户端。If the verification of the second verification information to be verified is passed, it is determined that the target user successfully logs in to the first client.
  7. 根据权利要求1所述的方法,所述通过所述第一客户端对所述目标用户进行安全认证处理,包括:The method according to claim 1, wherein said performing security authentication processing on said target user through said first client terminal comprises:
    向所述第一客户端发送安全认证信息的获取请求,以使所述第一客户端获取所在终端设备的设备信息,并基于所述设备信息生成设备指纹,将所述设备指纹发送给所述第一服务端;Send a request for obtaining security authentication information to the first client, so that the first client obtains the device information of the terminal device where it is located, generates a device fingerprint based on the device information, and sends the device fingerprint to the First server
    接收所述第一客户端发送的所述设备指纹,若确定根据所述设备指纹进行风险评估通过,则确定对所述目标用户的安全认证通过。Receive the device fingerprint sent by the first client, and if it is determined that the risk assessment is passed according to the device fingerprint, then it is determined that the security authentication of the target user is passed.
  8. 根据权利要求2所述的方法,所述支付账户查询请求还包括:所述存储账户的第一账户信息;所述方法还包括:The method according to claim 2, wherein the payment account query request further comprises: first account information of the storage account; the method further comprises:
    若根据所述身份信息查询到关联的所述账户标识信息,则将查询到的所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;以及,If the associated account identification information is queried based on the identity information, the queried account identification information is sent to the second server, so that the second server can perform operations based on the account identification information Binding processing; and,
    将所述第一账户信息与查询到的所述账户标识信息进行关联记录,得到第二记录信息;其中,所述第二记录信息表征查询到的所述账户标识信息所对应的支付账户与所述存储账户绑定成功。The first account information and the queried account identification information are associated and recorded to obtain second record information; wherein, the second record information represents the payment account corresponding to the queried account identification information and the The storage account is successfully bound.
  9. 根据权利要求8所述的方法,所述账户查询请求还包括:地址信息;The method according to claim 8, wherein the account query request further includes: address information;
    所述将查询到的所述账户标识信息发送给所述第二服务端,包括:The sending the queried account identification information to the second server includes:
    确定查询到的所述账户标识信息的数量是否为一;Determine whether the number of queried account identification information is one;
    若是,则将查询到的所述账户标识信息发送给所述第二服务端;If yes, send the queried account identification information to the second server;
    若否,则在所述第二客户端中所述地址信息所对应的展示界面展示查询到的多个账户标识信息所对应的支付账户的第二账户信息,获取所述目标用户基于所述展示界面所选择的目标第二账户信息;If not, display the second account information of the payment account corresponding to the multiple queried account identification information on the display interface corresponding to the address information in the second client, and obtain the target user based on the display Target second account information selected on the interface;
    将所述目标第二账户信息所对应的账户标识信息发送给所述第二服务端。Sending the account identification information corresponding to the target second account information to the second server.
  10. 根据权利要求1-9任一项所述的方法,所述第二客户端包括:所述资源存储机构的资源管理应用程序或所述资源存储机构的自助操作机。The method according to any one of claims 1-9, the second client includes: a resource management application of the resource storage organization or a self-service operation machine of the resource storage organization.
  11. 一种绑定处理方法,应用于资源存储机构的第二服务端,包括:A binding processing method, applied to the second server of a resource storage mechanism, includes:
    接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;Receiving a binding request sent by a second client of the resource storage mechanism; wherein the binding request is sent based on a binding operation of a target user, and the binding request is used to request that the target user be placed in the The storage account of the resource storage institution is bound to the payment account of the payment application of the target user to grant the payment account the right to pay based on the storage account; the binding request includes the storage account’s First account information;
    若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first The server performs payment account registration processing to obtain the account identification information of the target user, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, it passes all The first client performs security authentication processing on the target user;
    接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。Receiving the account identification information sent by the first server, performing binding processing according to the account identification information and the first account information, and sending binding result information to the second client.
  12. 根据权利要求11所述的方法,所述确定所述目标用户未注册所述支付应用的支付账户,包括:The method according to claim 11, the determining that the target user has not registered a payment account of the payment application comprises:
    根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的身份信息;Obtaining the associated identity information of the target user from a designated database according to the first account information;
    根据所述身份信息和所述第一账户信息,向所述第二服务端发送账户查询请求,以使所述第二服务端根据所述身份信息查询关联的账户标识信息;Sending an account query request to the second server according to the identity information and the first account information, so that the second server queries the associated account identification information according to the identity information;
    若接收到所述第二服务端发送的表征未查询到所述账户标识信息的查询结果,则确定所述目标用户未注册所述支付应用的支付账户。If a query result sent by the second server indicating that the account identification information has not been queried is received, it is determined that the target user has not registered a payment account of the payment application.
  13. 根据权利要求11所述的方法,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,包括:The method according to claim 11, wherein the sending the account registration request of the target user to the first server of the payment application according to the first account information comprises:
    根据所述第一账户信息,从指定的数据库中获取关联的所述目标用户的联系方式;Obtaining the associated contact information of the target user from a designated database according to the first account information;
    根据所述联系方式,向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理时,向所述联系方式发送第一验证信息。According to the contact information, send the account registration request of the target user to the first server of the payment application, so that when the first server performs payment account registration processing, the first server sends the first verify message.
  14. 根据权利要求13所述的方法,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求之后,还包括:The method according to claim 13, after the sending the account registration request of the target user to the first server of the payment application according to the first account information, the method further comprises:
    向所述第二客户端发送验证信息获取请求,以使所述第二客户端展示输入界面并获取所述目标用户基于所述输入界面输入的待验证的第一验证信息;Sending a verification information acquisition request to the second client, so that the second client displays an input interface and acquires the first verification information to be verified input by the target user based on the input interface;
    接收所述第二客户端发送的所述待验证的第一验证信息;Receiving the first verification information to be verified sent by the second client;
    将所述待验证的第一验证信息发送给所述第一服务端,以使所述第一服务端在对所述第一验证信息验证通过时,进行支付账户的注册处理。The first verification information to be verified is sent to the first server, so that the first server performs payment account registration processing when the first verification information is successfully verified.
  15. 根据权利要求11所述的方法,所述根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,包括:The method according to claim 11, wherein the sending the account registration request of the target user to the first server of the payment application according to the first account information comprises:
    若确定获取到所述目标用户签署预设绑定协议的签署信息,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求。If it is determined that the signature information for the target user to sign the preset binding agreement is acquired, the account registration request of the target user is sent to the first server of the payment application according to the first account information.
  16. 根据权利要求11-15任一项所述的方法,所述根据所述账户标识信息进行绑定处理,包括:The method according to any one of claims 11-15, wherein the binding processing according to the account identification information comprises:
    将所述账户标识信息与所述第一账户信息进行关联记录,得到第三记录信息;其中,所述第三记录信息表征所述账户标识信息对应的支付账户与所述第一账户信息对应的存储账户绑定成功。The account identification information and the first account information are associated and recorded to obtain third record information; wherein, the third record information indicates that the payment account corresponding to the account identification information corresponds to the first account information The storage account is successfully bound.
  17. 一种绑定处理方法,应用于支付应用的第一客户端,包括:A binding processing method, applied to the first client of a payment application, includes:
    接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;Receive a security authentication information acquisition request sent by the first server of the payment application; wherein the acquisition request is a target user account registration request sent by the first server on the second server based on the resource storage mechanism After the account registration process is performed, it is sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is sent by the second server based on the target user The binding request sent by the second client using the resource storage mechanism is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be registered in The storage account of the resource storage institution is bound with the payment account of the payment application to be registered by the target user, so as to grant the payment account the right to pay based on the storage account;
    获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;Acquiring device information of the terminal device where it is located, and generating a device fingerprint of the terminal device according to the device information;
    将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The device fingerprint is sent to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  18. 根据权利要求17所述的方法,所述接收所述支付应用的第一服务端发送的安全认证信息的获取请求之前,还包括:The method according to claim 17, before receiving the request for obtaining security authentication information sent by the first server of the payment application, the method further comprises:
    响应于所述目标用户基于登录界面的登录操作,向所述第一服务端发送登录请求;其中,所述登录请求包括所述存储账户关联的所述目标用户的联系方式,以使所述第一服务端向所述联系方式发送第二验证信息;In response to the login operation of the target user based on the login interface, a login request is sent to the first server; wherein the login request includes the contact information of the target user associated with the storage account, so that the first A server sends second verification information to the contact method;
    获取所述目标用户在所述登录界面中输入的待验证的第二验证信息;Acquiring the second verification information to be verified input by the target user in the login interface;
    将所述待验证的第二验证信息发送给所述第一服务端,以使所述第一服务端对所述待验证的第二验证信息进行验证;Sending the second verification information to be verified to the first server, so that the first server verifies the second verification information to be verified;
    接收所述第一服务端发送的登录结果信息。Receiving the login result information sent by the first server.
  19. 一种绑定处理方法,应用于资源存储机构的第二客户端,包括:A binding processing method, applied to a second client of a resource storage mechanism, includes:
    响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;In response to the binding operation of the target user, a binding request is sent to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the payment application of the target user be registered with the target user The storage account of the resource storage institution is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second 2. The server performs binding processing according to the first account information;
    接收所述第二服务端发送的绑定结果信息。Receiving the binding result information sent by the second server.
  20. 根据权利要求19所述的方法,所述向资源存储机构的第二服务端发送绑定请求之后,还包括:The method according to claim 19, after the sending the binding request to the second server of the resource storage mechanism, the method further comprises:
    接收所述第二服务端发送的验证信息获取请求;其中,所述验证信息获取请求基于向所述支付应用的第一服务端发送的所述目标用户的账户注册请求所发送;Receiving a verification information acquisition request sent by the second server; wherein the verification information acquisition request is sent based on an account registration request of the target user sent to the first server of the payment application;
    根据所述验证信息获取请求,展示输入界面;According to the verification information acquisition request, an input interface is displayed;
    获取所述目标用户在所述输入界面中输入的待验证的第一验证信息;Acquiring the first verification information to be verified input by the target user in the input interface;
    将所述待验证的第一验证信息发送给所述第二服务端,以使所述第二服务端将所述待验证的第一验证信息发送给所述第一服务端,使所述第一服务端在对所述待验证的第一验证信息验证通过时,进行支付账户的注册处理。Send the first verification information to be verified to the second server, so that the second server sends the first verification information to be verified to the first server, so that the first A server performs registration processing of the payment account when the verification of the first verification information to be verified is passed.
  21. 根据权利要求19或20所述的方法,所述接收所述第二服务端发送的绑定结果信息之前,还包括:The method according to claim 19 or 20, before the receiving the binding result information sent by the second server, further comprising:
    获取所述目标用户签署预设绑定协议的签署信息,将所述签署信息发送给所述第二服务端,以使所述第二服务端基于所述签署信息进行相关处理。Obtain signature information for the target user to sign the preset binding agreement, and send the signature information to the second server, so that the second server performs related processing based on the signature information.
  22. 一种绑定处理装置,应用于支付应用的第一服务端,包括:A binding processing device applied to the first server of a payment application, including:
    接收模块,其接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;A receiving module, which receives an account registration request of a target user sent by a second server of a resource storage institution; wherein, the account registration request is an account registration request of the target user after the second server receives the target user’s use of the resource storage institution The binding request sent by the second client is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be stored in the resource storage institution Account, which is bound to the payment account of the payment application to be registered by the target user to grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the registration of the target user information;
    注册模块,其根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;A registration module, which performs payment account registration processing according to the registration information, and obtains the account identification information of the target user;
    发送模块,其将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;A sending module, which sends the account identification information to the second server, so that the second server performs binding processing according to the account identification information;
    认证模块,其若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。The authentication module, if it is determined that the operation processing of the target user on the first client of the payment application satisfies a preset security authentication condition, then the target user is subjected to security authentication processing through the first client.
  23. 一种绑定处理装置,应用于资源存储机构的第二服务端,包括:A binding processing device, applied to the second server of a resource storage mechanism, includes:
    接收模块,其接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;A receiving module, which receives a binding request sent by a second client of the resource storage mechanism; wherein the binding request is sent based on the binding operation of the target user, and the binding request is used to request that the target The user’s storage account in the resource storage institution is bound with the payment account of the target user’s payment application to grant the payment account the right to pay based on the storage account; the binding request includes all The first account information of the storage account;
    确定模块,其若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;The determining module, which, if it is determined that the target user has not registered the payment account of the payment application, sends the account registration request of the target user to the first server of the payment application according to the first account information, so that The first server performs payment account registration processing to obtain the account identification information of the target user, and determines that the operation processing of the target user on the first client terminal of the payment application satisfies preset security authentication conditions When, performing security authentication processing on the target user through the first client;
    绑定模块,其接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理;A binding module, which receives the account identification information sent by the first server, and performs binding processing according to the account identification information and the first account information;
    发送模块,其向所述第二客户端发送绑定结果信息。A sending module, which sends binding result information to the second client.
  24. 一种绑定处理装置,应用于支付应用的第一客户端,包括:A binding processing device applied to a first client of a payment application, including:
    接收模块,其接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述 目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;A receiving module, which receives a request for obtaining security authentication information sent by the first server of the payment application; wherein the request for obtaining is a target user sent by the first server on the second server based on the resource storage mechanism The account registration request is sent when it is determined that the operation processing of the target user on the first client meets the preset security authentication conditions after the account registration processing is performed; the account registration request is sent by the second server based on The binding request sent by the target user using the second client of the resource storage mechanism is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request the Binding the storage account of the target user in the resource storage institution with the payment account of the payment application to be registered by the target user, so as to grant the payment account the right to pay based on the storage account;
    获取模块,其获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;An obtaining module, which obtains the device information of the terminal device where it is located, and generates the device fingerprint of the terminal device according to the device information;
    发送模块,其将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。A sending module, which sends the device fingerprint to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  25. 一种绑定处理装置,应用于资源存储机构的第二客户端,包括:A binding processing device, applied to a second client of a resource storage mechanism, includes:
    发送模块,其响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;The sending module, in response to the binding operation of the target user, sends a binding request to the second server of the resource storage institution; wherein the binding request is used to request the payment account of the payment application of the target user to be The target user binds to the storage account of the resource storage institution to grant the payment account the right to pay based on the storage account; the binding request includes the first account information of the storage account to Enabling the second server to perform binding processing according to the first account information;
    接收模块,其接收所述第二服务端发送的绑定结果信息。The receiving module receives the binding result information sent by the second server.
  26. 一种绑定处理设备,包括:A binding processing device, including:
    处理器;以及,Processor; and,
    被安排成存储计算机可执行指令的存储器,所述计算机可执行指令在被执行时使所述处理器:A memory arranged to store computer-executable instructions which, when executed, cause the processor to:
    接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;Receive a target user’s account registration request sent by the second server of the resource storage institution; wherein, the account registration request is when the second server receives the target user’s use of the resource storage institution’s second client The binding request is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be in the storage account of the resource storage institution with all Binding the payment account of the payment application to be registered by the target user to grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the registration information of the target user;
    根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;Perform payment account registration processing according to the registration information to obtain the account identification information of the target user;
    将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标识信息进行绑定处理;Sending the account identification information to the second server, so that the second server performs binding processing according to the account identification information;
    若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。If it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition, then the target user is subjected to security authentication processing through the first client terminal.
  27. 一种绑定处理设备,包括:A binding processing device, including:
    处理器;以及,Processor; and,
    被安排成存储计算机可执行指令的存储器,所述计算机可执行指令在被执行时使所述处理器:A memory arranged to store computer-executable instructions which, when executed, cause the processor to:
    接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;Receiving a binding request sent by a second client of the resource storage mechanism; wherein the binding request is sent based on a binding operation of a target user, and the binding request is used to request that the target user be placed in the The storage account of the resource storage institution is bound to the payment account of the payment application of the target user to grant the payment account the right to pay based on the storage account; the binding request includes the storage account’s First account information;
    若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进 行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first The server performs payment account registration processing to obtain the account identification information of the target user, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, it passes all The first client performs security authentication processing on the target user;
    接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。Receiving the account identification information sent by the first server, performing binding processing according to the account identification information and the first account information, and sending binding result information to the second client.
  28. 一种绑定处理设备,包括:A binding processing device, including:
    处理器;以及,Processor; and,
    被安排成存储计算机可执行指令的存储器,所述计算机可执行指令在被执行时使所述处理器:A memory arranged to store computer-executable instructions which, when executed, cause the processor to:
    接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;Receive a security authentication information acquisition request sent by the first server of the payment application; wherein the acquisition request is a target user account registration request sent by the first server on the second server based on the resource storage mechanism After the account registration process is performed, it is sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is sent by the second server based on the target user The binding request sent by the second client using the resource storage mechanism is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be registered in The storage account of the resource storage institution is bound with the payment account of the payment application to be registered by the target user, so as to grant the payment account the right to pay based on the storage account;
    获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;Acquiring device information of the terminal device where it is located, and generating a device fingerprint of the terminal device according to the device information;
    将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The device fingerprint is sent to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  29. 一种绑定处理设备,包括:A binding processing device, including:
    处理器;以及,Processor; and,
    被安排成存储计算机可执行指令的存储器,所述计算机可执行指令在被执行时使所述处理器:A memory arranged to store computer-executable instructions which, when executed, cause the processor to:
    响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;In response to the binding operation of the target user, a binding request is sent to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the payment application of the target user be registered with the target user The storage account of the resource storage institution is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second 2. The server performs binding processing according to the first account information;
    接收所述第二服务端发送的绑定结果信息。Receiving the binding result information sent by the second server.
  30. 一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:A storage medium used to store computer-executable instructions that, when executed, implement the following processes:
    接收资源存储机构的第二服务端发送的目标用户的账户注册请求;其中,所述账户注册请求为所述第二服务端在接收到所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求、且确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述账户注册请求包括所述目标用户的注册信息;Receive a target user’s account registration request sent by the second server of the resource storage institution; wherein, the account registration request is when the second server receives the target user’s use of the resource storage institution’s second client The binding request is sent when it is determined that the target user is not registered with the payment account of the payment application; the binding request is used to request that the target user be in the storage account of the resource storage institution with all Binding the payment account of the payment application to be registered by the target user to grant the payment account the payment authority to make payments based on the storage account; the account registration request includes the registration information of the target user;
    根据所述注册信息进行支付账户的注册处理,得到所述目标用户的账户标识信息;Perform payment account registration processing according to the registration information to obtain the account identification information of the target user;
    将所述账户标识信息发送给所述第二服务端,以使所述第二服务端根据所述账户标 识信息进行绑定处理;Sending the account identification information to the second server, so that the second server performs binding processing according to the account identification information;
    若确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件,则通过所述第一客户端对所述目标用户进行安全认证处理。If it is determined that the operation processing of the target user on the first client terminal of the payment application satisfies a preset security authentication condition, then the target user is subjected to security authentication processing through the first client terminal.
  31. 一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:A storage medium used to store computer-executable instructions that, when executed, implement the following processes:
    接收所述资源存储机构的第二客户端发送的绑定请求;其中,所述绑定请求基于目标用户的绑定操作所发送,所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户的支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息;Receiving a binding request sent by a second client of the resource storage mechanism; wherein the binding request is sent based on a binding operation of a target user, and the binding request is used to request that the target user be placed in the The storage account of the resource storage institution is bound to the payment account of the payment application of the target user to grant the payment account the right to pay based on the storage account; the binding request includes the storage account’s First account information;
    若确定所述目标用户未注册所述支付应用的支付账户,则根据所述第一账户信息向所述支付应用的第一服务端发送所述目标用户的账户注册请求,以使所述第一服务端进行支付账户的注册处理得到所述目标用户的账户标识信息,并在确定所述目标用户在所述支付应用的第一客户端上的操作处理满足预设的安全认证条件时,通过所述第一客户端对所述目标用户进行安全认证处理;If it is determined that the target user has not registered the payment account of the payment application, send the account registration request of the target user to the first server of the payment application according to the first account information, so that the first The server performs payment account registration processing to obtain the account identification information of the target user, and when it is determined that the operation processing of the target user on the first client of the payment application meets the preset security authentication conditions, it passes all The first client performs security authentication processing on the target user;
    接收所述第一服务端发送的所述账户标识信息,根据所述账户标识信息和所述第一账户信息进行绑定处理,向所述第二客户端发送绑定结果信息。Receiving the account identification information sent by the first server, performing binding processing according to the account identification information and the first account information, and sending binding result information to the second client.
  32. 一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:A storage medium used to store computer-executable instructions that, when executed, implement the following processes:
    接收所述支付应用的第一服务端发送的安全认证信息的获取请求;其中,所述获取请求为所述第一服务端在基于资源存储机构的第二服务端发送的目标用户的账户注册请求进行账户注册处理之后,确定所述目标用户在所述第一客户端上的操作处理满足预设的安全认证条件时所发送;所述账户注册请求为所述第二服务端基于所述目标用户使用所述资源存储机构的第二客户端发送的绑定请求,在确定所述目标用户未注册所述支付应用的支付账户时所发送;所述绑定请求用于请求将所述目标用户在所述资源存储机构的存储账户,与所述目标用户待注册的所述支付应用的支付账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;Receive a security authentication information acquisition request sent by the first server of the payment application; wherein the acquisition request is a target user account registration request sent by the first server on the second server based on the resource storage mechanism After the account registration process is performed, it is sent when it is determined that the operation processing of the target user on the first client meets preset security authentication conditions; the account registration request is sent by the second server based on the target user The binding request sent by the second client using the resource storage mechanism is sent when it is determined that the target user has not registered the payment account of the payment application; the binding request is used to request that the target user be registered in The storage account of the resource storage institution is bound with the payment account of the payment application to be registered by the target user, so as to grant the payment account the right to pay based on the storage account;
    获取所在终端设备的设备信息,根据所述设备信息生成所述终端设备的设备指纹;Acquiring device information of the terminal device where it is located, and generating a device fingerprint of the terminal device according to the device information;
    将所述设备指纹发送给所述第一服务端,以使所述第一服务端根据所述设备指纹进行安全认证处理。The device fingerprint is sent to the first server, so that the first server performs security authentication processing according to the device fingerprint.
  33. 一种存储介质,用于存储计算机可执行指令,所述计算机可执行指令在被执行时实现以下流程:A storage medium used to store computer-executable instructions that, when executed, implement the following processes:
    响应于目标用户的绑定操作,向资源存储机构的第二服务端发送绑定请求;其中,所述绑定请求用于请求将所述目标用户的支付应用的支付账户与所述目标用户在所述资源存储机构的存储账户进行绑定,以授予所述支付账户基于所述存储账户进行支付的支付权限;所述绑定请求包括所述存储账户的第一账户信息,以使所述第二服务端根据所述第一账户信息进行绑定处理;In response to the binding operation of the target user, a binding request is sent to the second server of the resource storage institution; wherein the binding request is used to request that the payment account of the payment application of the target user be registered with the target user The storage account of the resource storage institution is bound to grant the payment account the payment authority to make payments based on the storage account; the binding request includes the first account information of the storage account, so that the second 2. The server performs binding processing according to the first account information;
    接收所述第二服务端发送的绑定结果信息。Receiving the binding result information sent by the second server.
PCT/CN2021/092234 2020-05-09 2021-05-07 Binding processing WO2021227966A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202010387135.3 2020-05-09
CN202010387135.3A CN111311251B (en) 2020-05-09 2020-05-09 Binding processing method, device and equipment

Publications (1)

Publication Number Publication Date
WO2021227966A1 true WO2021227966A1 (en) 2021-11-18

Family

ID=71162788

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2021/092234 WO2021227966A1 (en) 2020-05-09 2021-05-07 Binding processing

Country Status (2)

Country Link
CN (2) CN111311251B (en)
WO (1) WO2021227966A1 (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111311251B (en) * 2020-05-09 2020-08-21 支付宝(杭州)信息技术有限公司 Binding processing method, device and equipment
CN111784550B (en) * 2020-07-15 2022-08-12 支付宝(杭州)信息技术有限公司 Method, device and equipment for processing inherited service
CN111784345B (en) * 2020-07-21 2022-06-14 支付宝(杭州)信息技术有限公司 Payment processing method, device, equipment and system
CN113205331B (en) * 2020-11-24 2023-04-07 支付宝(杭州)信息技术有限公司 Payment method and device, electronic equipment and storage medium
CN112953905A (en) * 2021-01-27 2021-06-11 湖南快乐阳光互动娱乐传媒有限公司 Data transmission method, system and server equipment
CN112968866B (en) * 2021-01-28 2021-10-01 北京芯盾时代科技有限公司 Method, device and system for binding user account information and user identity information
CN112801655B (en) 2021-02-05 2024-02-23 中国银联股份有限公司 Payment card migration method, device, electronic equipment, server and medium
CN113807856A (en) * 2021-09-17 2021-12-17 支付宝(杭州)信息技术有限公司 Resource transfer method, device and equipment
CN114338191A (en) * 2021-12-30 2022-04-12 北京百度网讯科技有限公司 Risk verification method, device, equipment and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120124676A1 (en) * 2010-11-11 2012-05-17 Kent Griffin Quick payment using mobile device binding
CN105306490A (en) * 2015-11-23 2016-02-03 小米科技有限责任公司 System, method and device for payment verification
CN109993513A (en) * 2019-03-22 2019-07-09 北京三快在线科技有限公司 The methods, devices and systems of payment account binding bank card
CN110689332A (en) * 2019-09-11 2020-01-14 腾讯科技(深圳)有限公司 Resource account binding method, storage medium and electronic device
CN111311251A (en) * 2020-05-09 2020-06-19 支付宝(杭州)信息技术有限公司 Binding processing method, device and equipment

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20130262275A1 (en) * 2010-08-24 2013-10-03 Chris Outwater System and Method for providing Internet-based vehicle registration and transactions
CN104065639B (en) * 2013-11-06 2015-07-29 腾讯科技(深圳)有限公司 The binding method of bank card and system
CN104954322B (en) * 2014-03-25 2019-10-22 腾讯科技(深圳)有限公司 A kind of binding processing method of account, apparatus and system
CN107204957B (en) * 2016-03-16 2020-04-28 阿里巴巴集团控股有限公司 Account binding and service processing method and device
CN107886320A (en) * 2017-10-13 2018-04-06 上海连尚网络科技有限公司 It is a kind of to handle the method, equipment and computer-readable storage medium for tying up card
CN112258178B (en) * 2018-01-23 2024-01-26 创新先进技术有限公司 Binding method of payment card, trust evaluation method, device and electronic equipment
CN109801053B (en) * 2018-12-28 2023-05-19 易票联支付有限公司 System and method for uniformly binding bank cards
CN110175833B (en) * 2019-05-30 2023-08-15 中移电子商务有限公司 Computer device, method, system and medium for binding bank card information

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20120124676A1 (en) * 2010-11-11 2012-05-17 Kent Griffin Quick payment using mobile device binding
CN105306490A (en) * 2015-11-23 2016-02-03 小米科技有限责任公司 System, method and device for payment verification
CN109993513A (en) * 2019-03-22 2019-07-09 北京三快在线科技有限公司 The methods, devices and systems of payment account binding bank card
CN110689332A (en) * 2019-09-11 2020-01-14 腾讯科技(深圳)有限公司 Resource account binding method, storage medium and electronic device
CN111311251A (en) * 2020-05-09 2020-06-19 支付宝(杭州)信息技术有限公司 Binding processing method, device and equipment

Also Published As

Publication number Publication date
CN111311251B (en) 2020-08-21
CN112053161A (en) 2020-12-08
CN112053161B (en) 2022-11-11
CN111311251A (en) 2020-06-19

Similar Documents

Publication Publication Date Title
WO2021227966A1 (en) Binding processing
WO2021068636A1 (en) Block chain-based creation method, apparatus, device and system for verifiable claim
JP7225413B2 (en) Secure autofill of forms with on-demand application to generate virtual numbers for contactless cards
TWI728678B (en) Block chain-based enterprise certification and certification tracing method, device and equipment
CN110493007B (en) Block chain based information verification method, device, equipment and storage medium
KR102141836B1 (en) Two factor authentication
WO2021239104A1 (en) Blockchain-based service processing
US11386191B2 (en) Trusted hardware-based identity management methods, apparatuses, and devices
JP2023062065A (en) Using contactless card to securely share personal data stored in blockchain
WO2021174968A1 (en) Payment method, apparatus and device
CN107005619B (en) Method, corresponding device and system for registering mobile point of sale (POS)
CN111931154B (en) Service processing method, device and equipment based on digital certificate
US20180293580A1 (en) Systems and methods for processing an access request
WO2021175057A1 (en) Service processing system, method, apparatus and device
US20200250672A1 (en) Tap card to securely generate card data to copy to clipboard
TW202038164A (en) User verification method and device based on bank card quick pay subscription
TW201937425A (en) Transaction processing method, server, client, and system
US20150317635A1 (en) Electronic gesture-based signatures
WO2024046121A1 (en) Service processing method and apparatus
US20150324796A1 (en) Device-based payment authorization
KR102211064B1 (en) Systems and methods for providing services for identifying foreigners' identity

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 21803865

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 21803865

Country of ref document: EP

Kind code of ref document: A1