WO2023197917A1 - Payment security management method and apparatus and payment system - Google Patents

Payment security management method and apparatus and payment system Download PDF

Info

Publication number
WO2023197917A1
WO2023197917A1 PCT/CN2023/086412 CN2023086412W WO2023197917A1 WO 2023197917 A1 WO2023197917 A1 WO 2023197917A1 CN 2023086412 W CN2023086412 W CN 2023086412W WO 2023197917 A1 WO2023197917 A1 WO 2023197917A1
Authority
WO
WIPO (PCT)
Prior art keywords
payment
data
server
internet
request
Prior art date
Application number
PCT/CN2023/086412
Other languages
French (fr)
Chinese (zh)
Inventor
陈雪英
Original Assignee
支付宝(杭州)信息技术有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 支付宝(杭州)信息技术有限公司 filed Critical 支付宝(杭州)信息技术有限公司
Publication of WO2023197917A1 publication Critical patent/WO2023197917A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/42Confirmation, e.g. check or permission by the legal debtor of payment

Definitions

  • the present disclosure relates to the field of blockchain technology, and specifically to a method, device and payment system for payment security management.
  • the present disclosure provides a method, device and payment system for payment security management.
  • a payment security management method is provided, which is applied to a payment system.
  • the payment system includes an Internet of Things machine and a server.
  • the Internet of Things machine is used to send a payment request to the server.
  • the server For responding to the payment request, the method includes: obtaining first payment data, wherein the first payment data is generated according to the clearing data corresponding to the payment request; obtaining second payment data, wherein the second The payment data is generated according to the result page corresponding to the payment request, and the result page is used for the external display of the Internet of Things machine; the first payment data and the second payment data are compared for consistency to obtain a comparison result. .
  • the server includes an Internet of Things machine server and a payment server
  • the clearing data includes the acquisition data of the Internet of Things machine server and/or the settlement data of the payment server.
  • the payment server includes unified payment.
  • the method further includes: when the comparison result is inconsistent, saving the comparison result.
  • the method further includes: intercepting the payment request when the comparison result is inconsistent.
  • the first payment data and the second payment data include information flow data and/or capital flow data corresponding to the payment request.
  • a device for payment security management is provided, which is applied to a payment system.
  • the payment system includes an Internet of Things machine and a server.
  • the Internet of Things machine is used to send a payment request to the server.
  • the server For responding to the payment request, the device includes: a first acquisition unit for acquiring first payment data, wherein the The first payment data is generated according to the settlement data of the payment request; the second acquisition unit is used to obtain the second payment data, wherein the second payment data is generated according to the result page of the payment request, and the result page Used for external display of the Internet of Things equipment; a comparison unit used for consistency comparison of the first payment data and the second payment data to obtain a comparison result.
  • the server includes an Internet of Things machine server and a payment server
  • the clearing data includes the acquisition data of the Internet of Things machine server and/or the settlement data of the payment server.
  • the payment server includes unified payment.
  • the device further includes: a saving unit, configured to save the comparison result after the comparison result is obtained and when the comparison result is inconsistent.
  • the device further includes: an interception unit configured to intercept the payment request when the comparison result is inconsistent after the comparison result is obtained.
  • the first payment data and the second payment data include information flow and/or fund flow corresponding to the payment request.
  • a payment system including: Internet of Things equipment, used to send payment requests to the server; the server, used to process the payment requests and generate payment result data; platform, used to perform the following operations: obtain First payment data, wherein the first payment data is generated based on the settlement data of the payment request; obtaining second payment data, wherein the second payment data is generated based on the result page corresponding to the payment request, and the The result page is used for the external display of the Internet of Things equipment; the first payment data and the second payment data are compared for consistency to obtain a comparison result.
  • a fourth aspect provides a device for payment security management, including: a memory for storing instructions; and a processor for executing instructions stored in the memory to perform the method as described in the first aspect.
  • a fifth aspect provides a computer-readable storage medium on which executable code is stored. When the executable code is executed, the method described in the first aspect can be implemented.
  • a computer program product including executable code.
  • executable code When the executable code is executed, the method as described in the first aspect can be implemented.
  • the payment security management method provided by the embodiment of the present disclosure can automatically monitor the results of each payment displayed on the Internet of Things machine by comparing the settlement results of the payment request with the payment results displayed externally by the Internet of Things machine. page is accurate.
  • Figure 1 is a schematic diagram of the payment process of a payment system in related technologies.
  • Figure 2 is a schematic flowchart of a payment security management method provided by an embodiment of the present disclosure.
  • Figure 3 is a schematic flowchart of a payment security management method provided by yet another embodiment of the present disclosure.
  • Figure 4 is a schematic structural diagram of a payment security management device provided by an embodiment of the present disclosure.
  • Figure 5 is a schematic diagram of a payment system provided by an embodiment of the present disclosure.
  • Figure 6 is a schematic structural diagram of a payment security management device provided by yet another embodiment of the present disclosure.
  • IoT machines and tools relying on IoT technology are developing rapidly.
  • the number of payments made through IoT devices exceeds 10 million every day.
  • Figure 1 is a schematic diagram of the payment process of a payment system in related technologies.
  • the payment system shown in Figure 1 may include an Internet of Things device 110 and a server 120.
  • IoT appliance 110 can be used to provide payment channels. Users can perform payment operations through the payment channel provided by the Internet of Things machine 110 .
  • the Internet of Things machine 110 may also be called an Internet of Things device, an IoT device, a payment device, a device, an IoT machine, a payment machine, a machine, a payment terminal, etc.
  • step S101 the Internet of Things machine 110 sends a payment request to the server 120 .
  • the payment request may refer to a user's payment request, for example.
  • the Internet of Things machine 110 can provide users with payment methods such as facial recognition and QR code scanning. The user can complete the payment operation by scanning facial features or QR code by the Internet of Things machine 110.
  • the Internet of Things machine 110 can send a payment request to the server 120 according to the payment message.
  • step S102 the server 120 processes the payment request. Processing the payment request by the server 120 may include analyzing the payment request. Complete the flow of funds according to the payment request. For example, the server 120 can, according to the payment request, from 10 yuan is deducted from user A’s Alipay account and 10 yuan is added to merchant B’s Alipay account.
  • the account used by the user or merchant can be any account.
  • user A's account can be Yu'ebao provided by Alipay, or it can be a bank card account provided by a bank (such as China Construction Bank).
  • step S103 the server 120 sends a result page to the Internet of Things machine 110 according to the processing result of the payment request.
  • Result pages may also be called result page data.
  • the results page can include data required for IoT machine display.
  • step S104 the IoT appliance 110 may display a result page.
  • the Internet of Things machine 110 can display the result page in a variety of ways, and this disclosure does not limit the specific display method of the result page.
  • the results page can be displayed to the user in the form of a page.
  • the results page may be displayed to the user through voice broadcast.
  • the result page sent by the server 120 may include information related to information flow and capital flow.
  • the result page sent by the server 120 may include user ID, transaction number, payment channel, payment status, payment amount, etc.
  • the Internet of Things machine 110 can obtain the data required for the result page to be displayed in various ways. For example, all data required for the result page to be displayed can be calculated by the server 120 and transmitted to the IoT device 110 .
  • the data required for the result page to be displayed can be generated jointly by the server 120 and the Internet of Things machine 110 .
  • the Internet of Things machine 110 may complete part of the calculation of the data required to generate the result page, and the server 120 may complete the other part of the calculation of the data required to generate the result page.
  • the Internet of Things machine 110 aggregates the data required for display, generates a result page, and displays the result page to the outside.
  • a payment request needs to be processed by at least the Internet of Things machine 110 and the server 120 .
  • the Internet of Things machine 110 and the server 120 are located in different geographical locations and need to transmit information through wired or wireless communication.
  • the transmitted information may deviate from the original information due to various reasons.
  • the data in the result page displayed by the Internet of Things machine 110 may be inconsistent with the data stored on the actual server due to network problems.
  • the information may be tampered with during the transmission process, causing the information on the result page finally displayed to the user to be inconsistent with the actual payment information.
  • the user completed a payment of 20 yuan, and the payment channel was facial recognition payment.
  • the payment result displayed on the Internet of Things device 110 was that the user paid 200 yuan, and the payment channel was to pay by swiping a QR code. That is, after the user pays, the payment channel and amount displayed in the Internet of Things device 110 are inconsistent with what is finally paid.
  • the settlement unit used by the server 120 and the settlement unit used by the IoT machine 110 may be different, resulting in a difference in the final amount displayed by the IoT machine 110 .
  • the merchant issues a 10-cent coupon to the user on the results page that can be used for the next purchase.
  • the 10-cent coupon is displayed in the Internet of Things device 110 as 10 yuan.
  • the payment results displayed by the Internet of Things machine 110 may be different from those issued or stored by the server 120 Payment data is inconsistent.
  • the data provided by the server is reliable. Therefore, you only need to ensure that the data related to the result page displayed on the IoT machine is correct to ensure that the payment results provided by the IoT machine are consistent with the user's actual payment results. That is, it can be guaranteed that what users see is what they get.
  • the payment verification method provided by related technologies usually performs consistency comparison by pulling the data stored in the storage system.
  • a storage system (such as a database) is usually not configured on the IoT machine side.
  • IoT machines without storage systems cannot use universal automated verification methods to check data accuracy. Therefore, payment systems using IoT devices still rely on manual reconciliation to ensure the accuracy of payments.
  • Manual reconciliation can be done in a variety of ways. For example, a merchant takes the initiative to apply for a bill from the provider of IoT equipment, and the merchant manually performs bill verification.
  • IoT machines since there are many merchants using IoT machines, providers of IoT machines usually cooperate with ISV organizations, which provide IoT machines to merchants and manage the merchants using IoT machines. Merchants can apply for reconciliation from the ISV agency, and the ISV agency can collect the merchant's reconciliation information and provide bills to the ISV agency.
  • the present disclosure provides a payment security management method that can efficiently monitor the correctness of each payment, thereby improving the security of the payment system.
  • FIG. 2 is a schematic flowchart of a payment security management method provided by an embodiment of the present disclosure.
  • the payment security management method shown in Figure 2 can be applied to payment systems.
  • Payment system may refer to the system used for payment. Funds can be transferred through the payment system.
  • a user purchases an item worth 10 yuan from a merchant. Users can pay merchants through the payment system. The payment system can process the transaction, deducting $10 from the user's account and adding $10 to the merchant's account.
  • Payment systems can include IoT machines and servers.
  • IoT machines can provide external payment channels.
  • IoT machines can accept payment requests from users.
  • IoT machines can send payment requests to the server.
  • the Internet of Things machine can receive the payment result corresponding to the payment request from the server.
  • the server can refer to the service device used to interact with IoT devices to complete payment processing.
  • the server can be used to respond to payment requests sent by IoT devices. Responding to the payment request sent by the Internet of Things machine may include completing the flow of funds based on the information in the payment request.
  • the server may include a server or computer capable of providing external services.
  • step S210 first payment data is obtained.
  • the first payment data can be generated according to the clearing data corresponding to the payment request.
  • First payment data can be obtained in a variety of ways. For example, you can proactively initiate a request to the server. After receiving the acquisition request, the server provides the first payment data.
  • the first payment data can be obtained directly from the server.
  • Direct acquisition can be achieved, for example, by burying a point on the server. Burying points on the server can be achieved in a variety of ways. For example, this can be achieved by setting up the SDK in the server.
  • the first payment data can be generated according to the clearing data corresponding to the payment request in various ways.
  • the clearing data corresponding to the payment request can be directly used as the first payment data.
  • part of the data in the settlement data of the payment request can be obtained as the first payment data.
  • Part of the data may include, for example, data related to funding elements.
  • Fund elements may include, for example, user ID, payment amount, payment status and other fund-related data.
  • Clearing data can be generated by the server side of the payment system. Clearing data may include information flow data related to payment requests, and/or fund flow data.
  • Information flow can also be called data flow.
  • Information flow data may include, for example, data related to the Internet of Things equipment (such as the sn code, mac code, etc.) of the Internet of Things equipment, the user's payment method (such as facial recognition payment, QR code payment, etc.), etc.
  • Fund flow data may include, for example, user ID, transaction number, payment channel, payment status, payment amount, etc.
  • the server may store clearing data.
  • the server can store clearing data in a variety of ways.
  • the server can store clearing data in the form of documents.
  • the server can be connected to the storage system.
  • Clearing data can be stored in the storage system in the form of documents.
  • the storage system may refer to a database, for example.
  • step S220 second payment data is obtained.
  • the second payment data can be generated according to the result page corresponding to the payment request.
  • the results page is used for external display of IoT machines.
  • Secondary payment data can be obtained in a variety of ways.
  • the second payment data can be obtained directly from the server.
  • the Internet of Things machine can report the second payment data in a proactive manner after receiving the payment result.
  • the second payment data can be intercepted directly from the Internet of Things machine.
  • the interception method can, for example, be embedded in IoT machines.
  • Embedding points in the Internet of Things equipment can be achieved, for example, by setting the corresponding SDK in the Internet of Things equipment.
  • the results page can be used for external display of IoT machines. It should be understood that the use of results page to describe the page that displays the payment results to the user is only to make the description clearer.
  • the result page may refer to data related to the result page, or may refer to a page that can be displayed on the display screen, or display information displayed in other forms (such as voice broadcast information).
  • the result page may refer to a payment result displayed on the display screen of the Internet of Things machine.
  • the result page may also refer to the voice broadcast result of the IoT device.
  • the content displayed on the result page can be set arbitrarily according to actual needs. This disclosure does not limit the specific content displayed on the result page.
  • the results page can show the user the payment amount, user ID, payment status (such as payment success or payment failure), etc.
  • the results page may also include advertisements placed by merchants.
  • Advertisements placed by merchants can include any type of advertisements.
  • advertisements placed by merchants may include shopping mall promotion information, restaurant discount information, etc.
  • advertisements placed by merchants can include vouchers that can be used on the next purchase.
  • the second payment data can be generated according to the result page corresponding to the payment request in various ways.
  • the result page corresponding to the payment request can be directly used as the second payment data.
  • part of the data in the result page corresponding to the payment request can be used as the second payment data.
  • Some of the data in the results page may include, for example, data related to financial elements.
  • Data related to fund elements may include, for example, user ID, payment amount, payment status, etc.
  • step S230 the first payment data and the second payment data are compared for consistency to obtain a comparison result.
  • the first payment data and the second payment data may include the same data.
  • the first payment data and the second payment data may both include fund flow data and/or information flow data.
  • Fund flow data may include, for example, user ID, transaction number, payment channel, payment status, amount, etc.
  • Information flow data may include, for example, data related to the Internet of Things equipment (such as the sn code, mac code, etc.) of the Internet of Things equipment, the user's payment method (such as facial recognition payment, QR code payment, etc.), etc.
  • Consistency comparison may refer to comparing the data items contained in the first payment data and the data items contained in the second payment data one by one to confirm whether the data are exactly the same.
  • the first payment data and the second payment data may include user id, transaction number, payment amount, payment method, payment status, device code of the Internet of Things device and other information.
  • the first payment data and the second payment data are considered to be inconsistent.
  • the comparison between the first payment data and the second payment data is inconsistent, which means that the settlement data stored on the server is inconsistent with the data in the results page displayed by the IoT machine.
  • every payment request in the payment system using IoT devices can be monitored. Furthermore, the method provided by the present disclosure can promptly discover that there are erroneous payment requests in the result page displayed by the Internet of Things machine. Monitor the correctness of every payment in the payment system through automated means.
  • comparison results often indicate a vulnerability in the payment system. Therefore, in order to improve the robustness of the payment system, when the comparison results are inconsistent, the comparison results can be further processed.
  • the inconsistent comparison result can be saved.
  • the comparison results can be presented in the form of logs. Therefore, saving the comparison results can also refer to saving the comparison log generated during the comparison process.
  • the comparison results can be stored in a storage space (such as a hard disk of a computer or server).
  • the comparison results can be printed out.
  • alarm information can be configured for the inconsistent comparison scenario.
  • the alarm information can be sent.
  • the unit used by the IoT machine when displaying the results page is yuan
  • the unit used by the server when saving settlement data is cents. If there is a logic problem in the payment system, it may cause errors in the result page displayed by the IoT machine. For example, 0.1 yuan should be displayed (the unit stored on the server is cents, that is, the data stored on the server is 10 points and should be displayed as 0.1 yuan), but the result is displayed as 10 yuan.
  • Alarm information can be configured for this scenario.
  • the configured alarm message can be triggered.
  • the payment in order to further improve the security of the payment system, can be intercepted when the comparison results are inconsistent. By intercepting erroneous payment requests in real time, the security of users' funds can be ensured.
  • the problematic payment request is intercepted, it is ensured that the result page obtained by the user on the IoT machine is consistent with the actual payment information. That is, ensuring that what users see is what they get.
  • a combination of the above methods may be used.
  • the comparison results are inconsistent
  • the comparison results with inconsistent comparison results can be printed.
  • the scenario corresponding to the inconsistent comparison result is a serious scenario
  • the payment request corresponding to the comparison result will be intercepted.
  • serious scenarios can be set based on actual business needs.
  • serious scenarios may include scenarios where the corresponding payment amount in the payment result data to be displayed on the results page is completely different from the corresponding payment amount in the server-side settlement data.
  • the method provided by this disclosure can automatically compare whether the result page corresponding to the payment request is consistent with the clearing data (such as bill acquiring data) on the server side. If there is any inconsistency, you can alert or intercept the inconsistent payment request. Therefore, the method provided by the present disclosure realizes automatic inspection and second-level alarms.
  • the server may include multiple different servers. Different servers can be provided by different operators. Different servers can be used to handle different operations in the payment process.
  • the server may include an Internet of Things machine server and a payment server. It should be understood that, in addition to the Internet of Things machine server and payment server, the server may also include other servers for providing services. This disclosure does not limit the type and number of servers specifically included in the server.
  • Each server can be implemented in a variety of ways.
  • the server can provide services to the outside world through the server.
  • Each server can contain any number of servers. This disclosure does not limit the specific implementation form of the server or the number of servers included in the server.
  • the payment server can be used to settle payments based on payment requests.
  • the payment server can complete payment settlement and deduction.
  • the payment server can generate settlement documents.
  • the payment server may be connected to the storage system.
  • the storage system may include a database.
  • the payment server can store relevant data in the storage system. Relevant data may include, for example, payment settlement deduction information or settlement documents.
  • the payment settlement deduction information or settlement document may include, for example, the user's account information, payment settlement information, etc.
  • the payment server may include Unified Payments.
  • Unified payment can refer to a payment service system built on payment core software. Unified payment can realize comprehensive business management, user management, accountant management, payer management and other functions. Unified payment can provide a safe and efficient payment support environment for multiple business systems.
  • the purpose of unified payment is to establish a system for payment and recharge for the payer (bank, other payment system) and the accountant (full business operation support system).
  • the IoT machine server can be used to receive the payment request sent by the IoT machine and forward the payment request to the payment server.
  • the Internet of Things machine server can process the payment result and generate a result page for the Internet of Things machine. Users can check the payment results based on the results displayed by the IoT machine. Users can refer to consumers who pay merchants, or merchants who use IoT devices as payment collection tools.
  • the IoT machine server can generate receipt data according to the payment request.
  • the acquiring data can include the user ID, transaction number, payment channel, payment status, etc. corresponding to the payment request.
  • the clearing data may include acquisition data of the Internet of Things machine server and/or settlement data of the payment server.
  • the first payment data can be generated based on the clearing data.
  • the first payment data may include settlement data of the payment server. Since the settlement data on the payment server is usually correct, by comparing the consistency of the second payment data with the settlement data including the payment server, you can quickly confirm whether the payment result data on the result page generated by the user's IoT device is correct. .
  • the first payment data may also include settlement data of the payment server and acquisition data of the Internet of Things machine server.
  • the settlement data on the payment server may be called settlement data
  • the acquiring data on the IoT machine server may be called acquiring data.
  • the first payment data may include settlement data and acquiring data.
  • the consistency comparison between the first payment data and the second payment data may include the consistency comparison between the settlement data and the second payment data, and the consistency comparison between the acquiring data and the settlement data.
  • the method provided by this disclosure can be deployed on any node of the payment system.
  • this solution can be deployed on IoT machines.
  • This solution is deployed on IoT machines and can achieve real-time consistency comparison. When the comparison is inconsistent, inconsistent payment requests can be intercepted in a timely manner to ensure the safety of users' funds.
  • this solution can be deployed on the server side. Specifically, this solution can be deployed on the IoT machine server. By deploying this solution on the server side, data consistency can be ensured from the source.
  • this solution can also be deployed on both the IoT machine side and the server side. This further ensures that the result page finally displayed to the user is consistent with the payment data stored on the server. That is, to further ensure the safety of users’ funds.
  • the solution can also be deployed independently on the verification platform.
  • the payment process is monitored through the verification platform to ensure that what users see is what they get.
  • the verification platform can be independent from the payment system. Therefore, by deploying a verification platform in the payment system, there is no need to invade the payment system, which is simple to implement and easy to maintain.
  • the verification platform can monitor every transaction in real time. In order to improve the processing efficiency of the verification platform, all transactions within the time interval can also be uniformly compared and processed at fixed intervals. This method of processing at fixed intervals can also be called automatic inspection.
  • the inspection interval can be selected as needed. For example, you can choose to inspect every 3 minutes.
  • FIG 3 is a schematic flowchart of a payment security management method provided by yet another embodiment of the present disclosure. As shown in Figure 3, the flow of the payment security management method includes steps S301 to S312.
  • step S301 the user pays through the Internet of Things machine.
  • IoT machines can also be referred to as machines for short.
  • IoT machines can provide various payment channels for users.
  • IoT devices can provide users with a channel to scan their faces or QR codes.
  • Users can pay by swiping their face or QR code.
  • users can submit payment requests to IoT machines by scanning their faces.
  • the payment request may include a payment of 10 yuan to the merchant.
  • step S302 the Internet of Things device is sent to the server for payment processing.
  • IoT machines can communicate with the server through the IoT and send payment requests to the server.
  • the server may process the payment request and generate data required for the result page based on the processing results.
  • the result page is constructed independently by the server.
  • the result page can be built by the server, or by the IoT machine, or by both the IoT machine and the server. This disclosure does not limit the specific construction method of the result page.
  • IoT machines usually use two solutions when building result pages: active polling and unified payment to send messages to the device server.
  • Active polling involves the IoT machine actively requesting the data required to build a result page from the device server. After Unified Payment processes the payment request, it will also actively send data to the IoT machine server. After receiving the data, the IoT machine server will actively send the data to the IoT machine.
  • the data that first reaches the IoT machine end can be obtained by burying points on the IoT machine end.
  • the result page data and obtain the second payment data based on the result page data.
  • step S304 it is determined whether the payment is successful.
  • step S305 is entered, and the server constructs payment failure information.
  • step S306 is entered, and the server constructs information indicating that the payment is successful.
  • step S307 the information flow elements of the order are obtained.
  • step S308 the fund flow elements of unified payment are obtained.
  • the information flow of acquiring orders and the fund flow of unified payment can be provided by the same server, or they can be provided by different servers. Usually, the information flow of acquiring orders and the fund flow of unified payment are provided by different servers. The information flow elements of acquiring orders and the capital flow elements of unified payment can generate the first payment data in a unified manner.
  • step S309 important capital flow/information flow elements are compared.
  • Important data may include, for example, final capital flow elements and information flow elements.
  • Fund flow elements may include, for example, user ID, transaction number, payment channel, payment status, payment amount, etc.
  • Information flow elements may include, for example, payment methods (such as facial recognition payment), device information of Internet of Things equipment (such as device sn code, device mac code, etc.), etc.
  • step S310 the comparison result is confirmed.
  • step S311 is entered for alarm and/or emergency response.
  • Alarms can include configuring alarm information to alert developers the next time the same scenario occurs.
  • Alarms can also include providing alarm information to developers so that developers can conduct troubleshooting based on logs and alarm information to determine and resolve possible security vulnerabilities in the system.
  • step S312 is entered and the process ends.
  • FIG 4 is a schematic structural diagram of a payment security management device provided by an embodiment of the present disclosure.
  • the device 400 can be applied in a payment system.
  • Payment systems can include IoT machines and servers. IoT machines can be used to send payment requests to the server. The server can be used to respond to payment requests.
  • the device 400 may include a first acquisition unit 410, a second acquisition unit 420, and a comparison unit 430.
  • the first obtaining unit 410 may be used to obtain the first payment data.
  • the first payment data may be generated based on the clearing data accompanying the payment request.
  • the second obtaining unit 420 may be used to obtain the second payment data.
  • the second payment data can be generated according to the result page corresponding to the payment request.
  • the results page can be used to generate user IoT tools for external display.
  • the comparison unit 430 may be used to compare the first payment data and the second payment data for consistency.
  • the server may include an Internet of Things machine server and a payment server.
  • the clearing data may include the acquiring data of the Internet of Things machine server and/or the settlement data of the payment server.
  • the payment server may include unified payment.
  • the device 400 may further include a storage unit.
  • the saving unit may be used to save the comparison result after the comparison result is obtained and when the comparison result is inconsistent.
  • the device 400 may further include an interception unit.
  • the interception unit can be used to intercept the payment request when the comparison result is inconsistent after obtaining the comparison result.
  • the first payment data and the second payment data may include information flow and/or fund flow corresponding to the payment request.
  • FIG. 5 is a schematic diagram of a payment system provided by an embodiment of the present disclosure.
  • the payment system may include an Internet of Things device 510, a server 520 and a platform 530.
  • the IoT device 510 can be used to send a payment request to the server.
  • the server 520 can be used to process payment requests and generate payment result data.
  • the platform 530 may be used to perform the following operations: obtain first payment data, wherein the first payment data is generated based on the clearing data corresponding to the payment request; obtain second payment data, wherein the second payment data is generated based on the A result page corresponding to the payment request is generated, and the result page is used for external display of the Internet of Things machine; the first payment data and the second payment data are compared for consistency to obtain a comparison result.
  • the platform 530 may be implemented by hardware or software. This disclosure does not describe the specific implementation of the platform 530. The current form is not limited.
  • the platform 530 can be independent of the IoT machine 510 and the server 520 . In some embodiments, the platform 530 can also be deployed on the IoT machine 510 and/or the server 520 . This disclosure does not limit the deployment location of the platform 530.
  • FIG. 6 is a schematic structural diagram of a payment security management device provided by yet another embodiment of the present disclosure.
  • the device 600 shown in Figure 6 may be a platform capable of executing the payment security management method provided by the present disclosure.
  • the apparatus 600 may be, for example, a computing device with computing functionality.
  • the device 600 may be a mobile terminal or a server.
  • Apparatus 600 may include memory 610 and processor 620.
  • Memory 610 may be used to store executable code.
  • the processor 620 may be configured to execute executable codes stored in the memory 610 to implement steps in each method described above.
  • the apparatus 600 may also include a network interface 630, through which data exchange between the processor 620 and an external device may be implemented.
  • the computer program product includes one or more computer instructions.
  • the computer may be a general-purpose computer, a special-purpose computer, a computer network, or other programmable device.
  • the computer instructions may be stored in or transmitted from one computer-readable storage medium to another, e.g., the computer instructions may be transferred from a website, computer, server, or data center Transmission to another website, computer, server or data center through wired (such as coaxial cable, optical fiber, Digital Subscriber Line (DSL)) or wireless (such as infrared, wireless, microwave, etc.) means.
  • the computer-readable storage medium may be any available medium that can be accessed by a computer or a data storage device such as a server, data center, etc. that contains one or more available media integrated.
  • the available media may be magnetic media (such as floppy disks, hard disks, magnetic tapes), optical media (such as digital video discs (Digital Video Disc, DVD)), or semiconductor media (such as solid state disks (Solid State Disk, SSD)), etc. .
  • the disclosed systems, devices and methods can be implemented in other ways.
  • the device embodiments described above are only illustrative.
  • the division of the units is only a logical function division. In actual implementation, there may be other division methods.
  • multiple units or components may be combined or can be integrated into another system, or some features can be ignored, or not implemented.
  • the coupling or direct coupling or communication connection between each other shown or discussed may be through some interfaces, and the indirect coupling or communication connection of the devices or units may be in electrical, mechanical or other forms.
  • the units described as separate components may or may not be physically separated, and the components shown as units may or may not be physical units, that is, they may be located in one place, or they may be distributed to multiple network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of this embodiment.
  • each functional unit in various embodiments of the present disclosure may be integrated into one processing unit, or each unit may exist physically alone, or two or more units may be integrated into one unit.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Disclosed in the present disclosure are a payment security management method and apparatus, and a payment system. The method is applied to the payment system. The payment system comprises an Internet of Things device and a server; the Internet of Things device is used for sending a payment request to the server; the server is used for responding to the payment request. The method comprises: obtaining first payment data, the first payment data being generated according to clearing data of the payment request; obtaining second payment data, the second payment data being generated according to a result page of the payment request, and the result page being used for external display of the Internet of Things device; and performing consistency comparison on the first payment data and the second payment data to obtain the comparison result.

Description

支付安全管理的方法、装置和支付系统Payment security management method, device and payment system 技术领域Technical field
本公开涉及区块链技术领域,具体涉及一种支付安全管理的方法、装置和支付系统。The present disclosure relates to the field of blockchain technology, and specifically to a method, device and payment system for payment security management.
背景技术Background technique
在使用物联网机具进行支付时,无法得知物联网机具展示的结果页是否准确。When using an IoT machine to make a payment, there is no way to know whether the result page displayed by the IoT machine is accurate.
发明内容Contents of the invention
有鉴于此,本公开提供一种支付安全管理的方法、装置和支付系统。In view of this, the present disclosure provides a method, device and payment system for payment security management.
第一方面,提供一种支付安全管理的方法,应用于支付系统,所述支付系统包括物联网机具和服务端,所述物联网机具用于向所述服务端发送支付请求,所述服务端用于响应所述支付请求,所述方法包括:获取第一支付数据,其中,所述第一支付数据根据所述支付请求对应的清算数据生成;获取第二支付数据,其中,所述第二支付数据根据所述支付请求对应的结果页生成,所述结果页用于所述物联网机具向外展示;对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。In a first aspect, a payment security management method is provided, which is applied to a payment system. The payment system includes an Internet of Things machine and a server. The Internet of Things machine is used to send a payment request to the server. The server For responding to the payment request, the method includes: obtaining first payment data, wherein the first payment data is generated according to the clearing data corresponding to the payment request; obtaining second payment data, wherein the second The payment data is generated according to the result page corresponding to the payment request, and the result page is used for the external display of the Internet of Things machine; the first payment data and the second payment data are compared for consistency to obtain a comparison result. .
可选地,在一些实施例中,所述服务端包括物联网机具服务端和支付服务端,所述清算数据包括所述物联网机具服务端的收单数据和/或所述支付服务端的结算数据。Optionally, in some embodiments, the server includes an Internet of Things machine server and a payment server, and the clearing data includes the acquisition data of the Internet of Things machine server and/or the settlement data of the payment server. .
可选地,在一些实施例中,所述支付服务端包括统一支付。Optionally, in some embodiments, the payment server includes unified payment.
可选地,在一些实施例中,在所述得到对比结果之后,所述方法还包括:当所述对比结果为对比不一致时,保存所述对比结果。Optionally, in some embodiments, after obtaining the comparison result, the method further includes: when the comparison result is inconsistent, saving the comparison result.
可选地,在一些实施例中,在所述得到对比结果之后,所述方法还包括:当所述对比结果为对比不一致时,拦截所述支付请求。Optionally, in some embodiments, after obtaining the comparison result, the method further includes: intercepting the payment request when the comparison result is inconsistent.
可选地,在一些实施例中,所述第一支付数据和所述第二支付数据包括所述支付请求对应的信息流数据和/或资金流数据。Optionally, in some embodiments, the first payment data and the second payment data include information flow data and/or capital flow data corresponding to the payment request.
第二方面,提供一种支付安全管理的装置,应用于支付系统,所述支付系统包括物联网机具和服务端,所述物联网机具用于向所述服务端发送支付请求,所述服务端用于响应所述支付请求,所述装置包括:第一获取单元,用于获取第一支付数据,其中,所 述第一支付数据根据所述支付请求的清算数据生成;第二获取单元,用于获取第二支付数据,其中,所述第二支付数据根据所述支付请求的结果页生成,所述结果页用于所述物联网机具向外展示;对比单元,用于对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。In a second aspect, a device for payment security management is provided, which is applied to a payment system. The payment system includes an Internet of Things machine and a server. The Internet of Things machine is used to send a payment request to the server. The server For responding to the payment request, the device includes: a first acquisition unit for acquiring first payment data, wherein the The first payment data is generated according to the settlement data of the payment request; the second acquisition unit is used to obtain the second payment data, wherein the second payment data is generated according to the result page of the payment request, and the result page Used for external display of the Internet of Things equipment; a comparison unit used for consistency comparison of the first payment data and the second payment data to obtain a comparison result.
可选地,在一些实施例中,所述服务端包括物联网机具服务端和支付服务端,所述清算数据包括所述物联网机具服务端的收单数据和/或所述支付服务端的结算数据。Optionally, in some embodiments, the server includes an Internet of Things machine server and a payment server, and the clearing data includes the acquisition data of the Internet of Things machine server and/or the settlement data of the payment server. .
可选地,在一些实施例中,所述支付服务端包括统一支付。Optionally, in some embodiments, the payment server includes unified payment.
可选地,在一些实施例中,所述装置还包括:保存单元,用于在所述得到对比结果之后,当所述对比结果为对比不一致时,保存所述对比结果。Optionally, in some embodiments, the device further includes: a saving unit, configured to save the comparison result after the comparison result is obtained and when the comparison result is inconsistent.
可选地,在一些实施例中,所述装置还包括:拦截单元,用于在所述得到对比结果之后,当所述对比结果为对比不一致时,拦截所述支付请求。Optionally, in some embodiments, the device further includes: an interception unit configured to intercept the payment request when the comparison result is inconsistent after the comparison result is obtained.
可选地,在一些实施例中,所述第一支付数据和所述第二支付数据包括所述支付请求对应的信息流和/或资金流。Optionally, in some embodiments, the first payment data and the second payment data include information flow and/or fund flow corresponding to the payment request.
第三方面,提供一种支付系统,包括:物联网机具,用于向服务端发送支付请求;服务端,用于处理所述支付请求,生成支付结果数据;平台,用于执行以下操作:获取第一支付数据,其中,所述第一支付数据根据所述支付请求的清算数据生成;获取第二支付数据,其中,所述第二支付数据根据所述支付请求对应的结果页生成,所述结果页用于所述物联网机具向外展示;对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。In the third aspect, a payment system is provided, including: Internet of Things equipment, used to send payment requests to the server; the server, used to process the payment requests and generate payment result data; platform, used to perform the following operations: obtain First payment data, wherein the first payment data is generated based on the settlement data of the payment request; obtaining second payment data, wherein the second payment data is generated based on the result page corresponding to the payment request, and the The result page is used for the external display of the Internet of Things equipment; the first payment data and the second payment data are compared for consistency to obtain a comparison result.
第四方面,提供一种支付安全管理的装置,包括:存储器,用于存储指令;处理器,用于执行所述存储器中存储的指令,以执行如第一方面所述的方法。A fourth aspect provides a device for payment security management, including: a memory for storing instructions; and a processor for executing instructions stored in the memory to perform the method as described in the first aspect.
第五方面,提供一种计算机可读存储介质,其上存储有可执行代码,当所述可执行代码被执行时,能够实现如第一方面所述的方法。A fifth aspect provides a computer-readable storage medium on which executable code is stored. When the executable code is executed, the method described in the first aspect can be implemented.
第六方面,提供一种计算机程序产品,包括可执行代码,当所述可执行代码被执行时,能够实现如第一方面所述的方法。In a sixth aspect, a computer program product is provided, including executable code. When the executable code is executed, the method as described in the first aspect can be implemented.
本公开实施例提供的支付安全管理的方法,通过对支付请求的清算结果和物联网机具用于向外展示的支付结果进行对比,能够自动化地监控每一笔支付在物联网机具端展示的结果页是否准确。 The payment security management method provided by the embodiment of the present disclosure can automatically monitor the results of each payment displayed on the Internet of Things machine by comparing the settlement results of the payment request with the payment results displayed externally by the Internet of Things machine. page is accurate.
附图说明Description of the drawings
图1是相关技术中支付系统的支付流程示意图。Figure 1 is a schematic diagram of the payment process of a payment system in related technologies.
图2是本公开一实施例提供的支付安全管理方法的流程示意图。Figure 2 is a schematic flowchart of a payment security management method provided by an embodiment of the present disclosure.
图3是本公开又一实施例提供的支付安全管理方法的流程示意图。Figure 3 is a schematic flowchart of a payment security management method provided by yet another embodiment of the present disclosure.
图4是本公开一实施例提供的支付安全管理装置的结构示意图。Figure 4 is a schematic structural diagram of a payment security management device provided by an embodiment of the present disclosure.
图5是本公开一实施例提供的支付系统的示意图。Figure 5 is a schematic diagram of a payment system provided by an embodiment of the present disclosure.
图6是本公开又一实施例提供的支付安全管理装置的结构示意图。Figure 6 is a schematic structural diagram of a payment security management device provided by yet another embodiment of the present disclosure.
具体实施方式Detailed ways
下面对本公开实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅是本公开一部分实施例,而不是全部的实施例。The technical solutions in the embodiments of the present disclosure are clearly and completely described below. Obviously, the described embodiments are only some of the embodiments of the present disclosure, rather than all the embodiments.
随着物联网技术的快速发展,依托于物联网技术的物联网机具发展迅猛。通过物联网机具进行支付的笔数日均超千万。With the rapid development of IoT technology, IoT machines and tools relying on IoT technology are developing rapidly. The number of payments made through IoT devices exceeds 10 million every day.
图1是相关技术中支付系统的支付流程示意图。图1所示的支付系统可以包括物联网机具110和服务端120。Figure 1 is a schematic diagram of the payment process of a payment system in related technologies. The payment system shown in Figure 1 may include an Internet of Things device 110 and a server 120.
物联网机具110可以用于提供支付通道。用户可以通过物联网机具110提供的支付通道进行支付操作。物联网机具110也可以称为物联网设备、iot设备、支付设备、设备、iot机具、支付机具、机具、支付终端等。IoT appliance 110 can be used to provide payment channels. Users can perform payment operations through the payment channel provided by the Internet of Things machine 110 . The Internet of Things machine 110 may also be called an Internet of Things device, an IoT device, a payment device, a device, an IoT machine, a payment machine, a machine, a payment terminal, etc.
如图1所示,在步骤S101,物联网机具110向服务端120发送支付请求。该支付请求例如可以指用户的付款请求。As shown in FIG. 1 , in step S101 , the Internet of Things machine 110 sends a payment request to the server 120 . The payment request may refer to a user's payment request, for example.
物联网机具110可以向用户提供刷脸、刷二维码等支付方式。用户可以通过被物联网机具110扫描面部特征或二维码的方式完成支付操作。The Internet of Things machine 110 can provide users with payment methods such as facial recognition and QR code scanning. The user can complete the payment operation by scanning facial features or QR code by the Internet of Things machine 110.
物联网机具110获取用户的支付消息后,可以根据该支付消息向服务端120发送支付请求。After obtaining the user's payment message, the Internet of Things machine 110 can send a payment request to the server 120 according to the payment message.
在步骤S102,服务端120处理支付请求。服务端120处理支付请求可以包括分析该支付请求。根据该支付请求完成资金的流转。例如,服务端120可以根据支付请求,从 用户A的支付宝账户中扣除10元,并在商户B的支付宝账户中增加10元。In step S102, the server 120 processes the payment request. Processing the payment request by the server 120 may include analyzing the payment request. Complete the flow of funds according to the payment request. For example, the server 120 can, according to the payment request, from 10 yuan is deducted from user A’s Alipay account and 10 yuan is added to merchant B’s Alipay account.
应理解,实际中用户或商户使用的账户可以是任意的账户。例如,用户A的账户可以是支付宝提供的余额宝,也可以是银行(例如建行)提供的银行卡账户。It should be understood that in practice, the account used by the user or merchant can be any account. For example, user A's account can be Yu'ebao provided by Alipay, or it can be a bank card account provided by a bank (such as China Construction Bank).
在步骤S103,服务端120根据对支付请求的处理结果,向物联网机具110发送结果页。结果页也可以称为结果页数据。结果页中可以包括物联网机具展示时所需的数据。In step S103, the server 120 sends a result page to the Internet of Things machine 110 according to the processing result of the payment request. Result pages may also be called result page data. The results page can include data required for IoT machine display.
在步骤S104,物联网机具110可以展示结果页。In step S104, the IoT appliance 110 may display a result page.
物联网机具110可以通过多种方式展示结果页,本公开对结果页的具体展示方式不做限定。例如,结果页可以通过一个页面的形式向用户展示。又如,结果页可以指通过语音播报的方式向用户展示。The Internet of Things machine 110 can display the result page in a variety of ways, and this disclosure does not limit the specific display method of the result page. For example, the results page can be displayed to the user in the form of a page. For another example, the results page may be displayed to the user through voice broadcast.
服务端120发送的结果页中可以包括信息流和资金流相关的信息。例如,服务端120发送的结果页中可以包括用户id、交易号、支付渠道、支付状态、支付金额等。The result page sent by the server 120 may include information related to information flow and capital flow. For example, the result page sent by the server 120 may include user ID, transaction number, payment channel, payment status, payment amount, etc.
物联网机具110可以通过多种方式获取待展示的结果页所需要的数据。例如,待展示的结果页所需要的数据可以全部由服务端120计算并传输给物联网机具110。The Internet of Things machine 110 can obtain the data required for the result page to be displayed in various ways. For example, all data required for the result page to be displayed can be calculated by the server 120 and transmitted to the IoT device 110 .
又如,待展示的结果页所需的数据可以由服务端120和物联网机具110共同生成。例如,可以由物联网机具110完成部分生成结果页所需数据的计算,由服务端120完成另外部分生成结果页所需数据的计算。物联网机具110汇总展示所需的数据,生成结果页,并将结果页向外展示。For another example, the data required for the result page to be displayed can be generated jointly by the server 120 and the Internet of Things machine 110 . For example, the Internet of Things machine 110 may complete part of the calculation of the data required to generate the result page, and the server 120 may complete the other part of the calculation of the data required to generate the result page. The Internet of Things machine 110 aggregates the data required for display, generates a result page, and displays the result page to the outside.
根据前文中的流程介绍可知,一次支付请求需要至少经过物联网机具110以及服务端120的处理。通常物联网机具110和服务端120位于不同的地理位置,需要通过有线或无线通信的方式传递信息。According to the process introduction mentioned above, a payment request needs to be processed by at least the Internet of Things machine 110 and the server 120 . Usually the Internet of Things machine 110 and the server 120 are located in different geographical locations and need to transmit information through wired or wireless communication.
在传递信息的过程中可能由于各种原因,导致传递的信息与原信息出现偏差。例如,可能由于网络问题导致物联网机具110展示的结果页中的数据与实际服务端存储的数据不一致。In the process of transmitting information, the transmitted information may deviate from the original information due to various reasons. For example, the data in the result page displayed by the Internet of Things machine 110 may be inconsistent with the data stored on the actual server due to network problems.
又如,信息在传递过程中可能被篡改,导致最终展示给用户的结果页的信息,与实际的支付信息不一致。例如,用户完成了一笔20元钱的付款,付款渠道是刷脸支付。然而,由于支付过程中信息被篡改,导致物联网机具110中显示的支付结果为用户支付200元钱,付款渠道是刷二维码支付。即,用户支付后,物联网机具110中展示的支付渠道和金额和最终所支付的不一致。 For another example, the information may be tampered with during the transmission process, causing the information on the result page finally displayed to the user to be inconsistent with the actual payment information. For example, the user completed a payment of 20 yuan, and the payment channel was facial recognition payment. However, because the information was tampered with during the payment process, the payment result displayed on the Internet of Things device 110 was that the user paid 200 yuan, and the payment channel was to pay by swiping a QR code. That is, after the user pays, the payment channel and amount displayed in the Internet of Things device 110 are inconsistent with what is finally paid.
又如,服务端120使用的结算单位和物联网机具110使用的结算单位可能不同,导致最终物联网机具110显示的金额出现差异。例如,在用户支付后,商家在结果页中向用户发放可供下次消费使用的10分钱的优惠券。然而,在物联网机具110中将10分钱的优惠券展示成了10元钱。For another example, the settlement unit used by the server 120 and the settlement unit used by the IoT machine 110 may be different, resulting in a difference in the final amount displayed by the IoT machine 110 . For example, after the user pays, the merchant issues a 10-cent coupon to the user on the results page that can be used for the next purchase. However, the 10-cent coupon is displayed in the Internet of Things device 110 as 10 yuan.
即,对于支付数量巨大的基于物联网的支付系统(例如,刷脸支付的笔数日均超千万),物联网机具110向外展示的支付结果可能与服务端120下发或存证的支付数据不一致。That is, for a payment system based on the Internet of Things with a huge number of payments (for example, the number of facial recognition payments exceeds 10 million per day), the payment results displayed by the Internet of Things machine 110 may be different from those issued or stored by the server 120 Payment data is inconsistent.
当结果页展示的数据与实际的支付数据不一致时,可能使得用户或商家的资金受损。严重时,可能导致公司名誉受损。When the data displayed on the results page is inconsistent with the actual payment data, the user or merchant's funds may be damaged. In severe cases, the company's reputation may be damaged.
通常,服务端提供的数据具有可靠性。因此,只需保证物联网机具端用于展示的结果页相关的数据正确,即可保证物联网机具提供的支付结果与用户实际的支付结果一致。即,可以保证用户所见即所得。Usually, the data provided by the server is reliable. Therefore, you only need to ensure that the data related to the result page displayed on the IoT machine is correct to ensure that the payment results provided by the IoT machine are consistent with the user's actual payment results. That is, it can be guaranteed that what users see is what they get.
为了保证用户所见即所得,通常需要将物联网机具端的结果页数据与服务端的数据进行对比。如果对比结果存在不一致,则说明该支付请求在执行的过程中存在问题。即,用户所见与最终的支付结果可能不同。In order to ensure that what users see is what they get, it is usually necessary to compare the result page data on the IoT machine side with the data on the server side. If the comparison results are inconsistent, it means there is a problem during the execution of the payment request. That is, what the user sees and the final payment result may be different.
相关技术提供的支付核对的方法,通常通过拉取存储系统中存证的数据的方式进行一致性对比。The payment verification method provided by related technologies usually performs consistency comparison by pulling the data stored in the storage system.
然而,由于物联网机具端的流水(例如支付请求数量)巨大,而且物联网机具端的流水信息没有存证的必要,因此,物联网机具端通常并不配置存储系统(例如数据库)。However, due to the huge transaction volume (such as the number of payment requests) on the IoT machine side, and the fact that there is no need to store the transaction information on the IoT machine side, a storage system (such as a database) is usually not configured on the IoT machine side.
没有存储系统的物联网机具,无法使用通用的自动化核对方式进行数据正确性核对。因此,使用物联网机具的支付系统,目前仍然通过人工对账的方式确保支付的正确性。IoT machines without storage systems cannot use universal automated verification methods to check data accuracy. Therefore, payment systems using IoT devices still rely on manual reconciliation to ensure the accuracy of payments.
人工对账可以通过多种形式完成。例如,商户主动向物联网机具的提供商申请账单,由商户人工进行账单核对。Manual reconciliation can be done in a variety of ways. For example, a merchant takes the initiative to apply for a bill from the provider of IoT equipment, and the merchant manually performs bill verification.
又如,由于使用物联网机具的商户很多,物联网机具的提供商通常与isv机构合作,由isv机构向商户提供物联网机具,并管理使用物联网机具的商户。商户可以向isv机构申请对账,isv机构可以收集商户的对账信息,并向isv机构提供账单。For another example, since there are many merchants using IoT machines, providers of IoT machines usually cooperate with ISV organizations, which provide IoT machines to merchants and manage the merchants using IoT machines. Merchants can apply for reconciliation from the ISV agency, and the ISV agency can collect the merchant's reconciliation information and provide bills to the ISV agency.
上述两种对账方式,本质上都是通过人工完成对账。可以理解,使用人工对账的方式,对账效率低,人工需求量高,成本高。 The above two reconciliation methods are essentially completed manually. It is understandable that the manual reconciliation method has low reconciliation efficiency, high labor requirements, and high costs.
此外,由于物联网支付系统的支付量极大,联网机具的类型众多,覆盖面广。因此,要通过人工的方式监控每一笔通过物联网支付系统的支付请求难以实现。In addition, due to the huge payment volume of the IoT payment system, there are many types of Internet-connected machines and equipment, covering a wide range of areas. Therefore, it is difficult to manually monitor every payment request through the IoT payment system.
综上可知,对于使用物联网机具的支付系统,如何有效地监控每一笔支付的正确性是目前面临的难点。In summary, it can be seen that for payment systems using Internet of Things machines, how to effectively monitor the correctness of each payment is currently a difficulty.
为了解决上述问题,本公开提供了一种支付安全管理的方法,能够高效地监控每一笔支付的正确性,从而提高支付系统的安全性。In order to solve the above problems, the present disclosure provides a payment security management method that can efficiently monitor the correctness of each payment, thereby improving the security of the payment system.
下面结合附图2,对本公开实施例提供的支付安全管理的方法进行详细描述。The payment security management method provided by the embodiment of the present disclosure will be described in detail below with reference to Figure 2.
图2是本公开一实施例提供的支付安全管理方法的流程示意图。图2所示的支付安全管理的方法可以应用于支付系统。支付系统可以指用于支付的系统。资金可以通过支付系统完成流转。Figure 2 is a schematic flowchart of a payment security management method provided by an embodiment of the present disclosure. The payment security management method shown in Figure 2 can be applied to payment systems. Payment system may refer to the system used for payment. Funds can be transferred through the payment system.
例如,用户向商户购买一件价值10元的商品。用户可以通过支付系统向商户付款。支付系统可以处理该笔交易,从用户的账户中扣除10元,并在商户的账户中增加10元。For example, a user purchases an item worth 10 yuan from a merchant. Users can pay merchants through the payment system. The payment system can process the transaction, deducting $10 from the user's account and adding $10 to the merchant's account.
支付系统可以包括物联网机具和服务端。物联网机具可以向外提供支付通道。例如,物联网机具可以接受用户的支付请求。又如,物联网机具可以向服务端发送支付请求。又如,物联网机具可以从服务端接收支付请求对应的支付结果。Payment systems can include IoT machines and servers. IoT machines can provide external payment channels. For example, IoT machines can accept payment requests from users. As another example, IoT machines can send payment requests to the server. For another example, the Internet of Things machine can receive the payment result corresponding to the payment request from the server.
服务端可以指用于与物联网机具交互,以完成支付处理的服务装置。服务端可以用于响应物联网机具发送的支付请求。响应物联网机具发送的支付请求可以包括根据支付请求中的信息,完成资金的流转。The server can refer to the service device used to interact with IoT devices to complete payment processing. The server can be used to respond to payment requests sent by IoT devices. Responding to the payment request sent by the Internet of Things machine may include completing the flow of funds based on the information in the payment request.
本公开对服务端的具体实现形式不做限定。例如,服务端可以包括能够向外提供服务的服务器或计算机。This disclosure does not limit the specific implementation form of the server. For example, the server may include a server or computer capable of providing external services.
参见图2,在步骤S210,获取第一支付数据。第一支付数据可以根据支付请求对应的清算数据生成。Referring to Figure 2, in step S210, first payment data is obtained. The first payment data can be generated according to the clearing data corresponding to the payment request.
可以通过多种方式获取第一支付数据。例如,可以主动向服务端发起获取请求。服务端在接收到该获取请求后,提供第一支付数据。First payment data can be obtained in a variety of ways. For example, you can proactively initiate a request to the server. After receiving the acquisition request, the server provides the first payment data.
又如,可以直接从服务端获取第一支付数据。直接获取例如可以通过在服务端埋点的方式实现。在服务端中埋点可以通过多种方式实现。例如,可以通过在服务端中设置sdk实现。 For another example, the first payment data can be obtained directly from the server. Direct acquisition can be achieved, for example, by burying a point on the server. Burying points on the server can be achieved in a variety of ways. For example, this can be achieved by setting up the SDK in the server.
第一支付数据可以通过多种方式根据支付请求对应的清算数据生成。例如,可以直接将支付请求对应的清算数据作为第一支付数据。The first payment data can be generated according to the clearing data corresponding to the payment request in various ways. For example, the clearing data corresponding to the payment request can be directly used as the first payment data.
又如,可以获取支付请求的清算数据中的部分数据作为第一支付数据。部分数据例如可以包括与资金要素相关的数据。资金要素例如可以包括用户id、支付金额、支付状态等与资金相关的数据。For another example, part of the data in the settlement data of the payment request can be obtained as the first payment data. Part of the data may include, for example, data related to funding elements. Fund elements may include, for example, user ID, payment amount, payment status and other fund-related data.
清算数据可以由支付系统的服务端生成。清算数据可以包括支付请求相关的信息流数据,和/或资金流数据。Clearing data can be generated by the server side of the payment system. Clearing data may include information flow data related to payment requests, and/or fund flow data.
信息流也可以称为数据流。信息流数据例如可以包括物联网机具相关的数据(例如物联网机具的sn码、mac码等)、用户的支付方式(例如刷脸支付、二维码支付等)等。资金流数据例如可以包括用户id、交易号、支付渠道、支付状态、支付金额等。Information flow can also be called data flow. Information flow data may include, for example, data related to the Internet of Things equipment (such as the sn code, mac code, etc.) of the Internet of Things equipment, the user's payment method (such as facial recognition payment, QR code payment, etc.), etc. Fund flow data may include, for example, user ID, transaction number, payment channel, payment status, payment amount, etc.
在一些实施例中,服务端可以存储清算数据。服务端可以通过多种方式存储清算数据。例如,服务端可以将清算数据以单据的形式存储。In some embodiments, the server may store clearing data. The server can store clearing data in a variety of ways. For example, the server can store clearing data in the form of documents.
在一些实施例中,服务端可以与存储系统相连。清算数据可以以单据的形式存储在存储系统中。存储系统例如可以指数据库。In some embodiments, the server can be connected to the storage system. Clearing data can be stored in the storage system in the form of documents. The storage system may refer to a database, for example.
在步骤S220,获取第二支付数据。第二支付数据可以根据支付请求对应的结果页生成。结果页用于物联网机具向外展示。In step S220, second payment data is obtained. The second payment data can be generated according to the result page corresponding to the payment request. The results page is used for external display of IoT machines.
可以通过多种方式获取第二支付数据。例如,可以直接从服务端获取第二支付数据。Secondary payment data can be obtained in a variety of ways. For example, the second payment data can be obtained directly from the server.
又如,可以由物联网机具在接收到支付结果后,以主动上报的方式上报第二支付数据。For another example, the Internet of Things machine can report the second payment data in a proactive manner after receiving the payment result.
又如,可以直接从物联网机具截取第二支付数据。截取方式例如可以在物联网机具中埋点。在物联网机具中埋点例如可以通过在物联网机具中设置相应的sdk实现。For another example, the second payment data can be intercepted directly from the Internet of Things machine. The interception method can, for example, be embedded in IoT machines. Embedding points in the Internet of Things equipment can be achieved, for example, by setting the corresponding SDK in the Internet of Things equipment.
结果页可以用于物联网机具向外展示。应理解,使用结果页描述向用户展示支付结果的页面仅为了使描述更加清楚。结果页例如可以指结果页相关的数据,也可以指一个可以在显示屏上显示的页面,或通过其他形式展示的展示信息(例如语音播报信息)。The results page can be used for external display of IoT machines. It should be understood that the use of results page to describe the page that displays the payment results to the user is only to make the description clearer. For example, the result page may refer to data related to the result page, or may refer to a page that can be displayed on the display screen, or display information displayed in other forms (such as voice broadcast information).
例如,对于具有显示屏的物联网机具(例如蜻蜓机具),结果页可以指展示在物联网机具的显示屏上的支付结果。又如,对于具有放音模块的物联网机具(例如小白盒机具),结果页也可以指物联网机具的语音播报结果。 For example, for an Internet of Things machine with a display screen (such as a Dragonfly machine), the result page may refer to a payment result displayed on the display screen of the Internet of Things machine. For another example, for an IoT device with a sound playback module (such as a small white box device), the result page may also refer to the voice broadcast result of the IoT device.
结果页显示的内容可以根据实际的需求任意设置,本公开对结果页具体显示的内容不做限定。例如,结果页可以向用户展示支付金额、用户id、支付状态(例如支付成功或支付失败)等。The content displayed on the result page can be set arbitrarily according to actual needs. This disclosure does not limit the specific content displayed on the result page. For example, the results page can show the user the payment amount, user ID, payment status (such as payment success or payment failure), etc.
在一些实施例中,结果页中还可以包括商户投放的广告。商户投放的广告可以包括任意类型的广告。例如,商户投放的广告可以包括商场促销信息、餐饮店打折信息等。又如,商户投放的广告可以包括下一次消费时可以使用的代金券。In some embodiments, the results page may also include advertisements placed by merchants. Advertisements placed by merchants can include any type of advertisements. For example, advertisements placed by merchants may include shopping mall promotion information, restaurant discount information, etc. As another example, advertisements placed by merchants can include vouchers that can be used on the next purchase.
可以通过多种方式根据支付请求对应的结果页生成第二支付数据。例如,可以直接将支付请求对应的结果页作为第二支付数据。The second payment data can be generated according to the result page corresponding to the payment request in various ways. For example, the result page corresponding to the payment request can be directly used as the second payment data.
又如,可以将支付请求对应的结果页中的部分数据作为第二支付数据。结果页中的部分数据例如可以包括资金要素相关的数据。资金要素相关的数据例如可以包括用户id、支付金额、支付状态等。For another example, part of the data in the result page corresponding to the payment request can be used as the second payment data. Some of the data in the results page may include, for example, data related to financial elements. Data related to fund elements may include, for example, user ID, payment amount, payment status, etc.
在步骤S230,对第一支付数据和第二支付数据进行一致性对比,得到对比结果。In step S230, the first payment data and the second payment data are compared for consistency to obtain a comparison result.
第一支付数据和第二支付数据可以包括相同的数据。例如,第一支付数据和第二支付数据可以都包括资金流数据和/或信息流数据。The first payment data and the second payment data may include the same data. For example, the first payment data and the second payment data may both include fund flow data and/or information flow data.
资金流数据例如可以包括用户id、交易号、支付渠道、支付状态、金额等。信息流数据例如可以包括物联网机具相关的数据(例如物联网机具的sn码、mac码等)、用户的支付方式(例如刷脸支付、二维码支付等)等。Fund flow data may include, for example, user ID, transaction number, payment channel, payment status, amount, etc. Information flow data may include, for example, data related to the Internet of Things equipment (such as the sn code, mac code, etc.) of the Internet of Things equipment, the user's payment method (such as facial recognition payment, QR code payment, etc.), etc.
一致性对比可以指,对第一支付数据包含的数据项和第二支付数据包含的数据项进行一一对比,确认数据是否完全相同。Consistency comparison may refer to comparing the data items contained in the first payment data and the data items contained in the second payment data one by one to confirm whether the data are exactly the same.
例如,第一支付数据和第二支付数据可以包括用户id、交易号、支付金额、支付方式、支付状态、物联网设备的设备码等信息。For example, the first payment data and the second payment data may include user id, transaction number, payment amount, payment method, payment status, device code of the Internet of Things device and other information.
将第一支付数据和第二支付数据中的上述数据项一一进行对比。例如,对比用户id是相同、交易号是否相同、支付金额是否相同等等。Compare the above data items in the first payment data and the second payment data one by one. For example, compare whether the user ID is the same, whether the transaction number is the same, whether the payment amount is the same, etc.
只要对比的所有数据项中有任何一个数据项不相同,即认为第一支付数据和第二支付数据对比不一致。As long as any one of the compared data items is different, the first payment data and the second payment data are considered to be inconsistent.
第一支付数据和第二支付数据对比不一致,表示服务端存储的清算数据,与物联网机具向外展示的结果页中的数据不一致。 The comparison between the first payment data and the second payment data is inconsistent, which means that the settlement data stored on the server is inconsistent with the data in the results page displayed by the IoT machine.
通过在支付系统中增加数据对比机制,可以监控使用物联网机具的支付系统中的每一笔支付请求。进一步地,本公开提供的方法,可以及时发现物联网机具展示的结果页存在错误的支付请求。通过自动化的方式监控支付系统中每一笔支付的正确性。By adding a data comparison mechanism to the payment system, every payment request in the payment system using IoT devices can be monitored. Furthermore, the method provided by the present disclosure can promptly discover that there are erroneous payment requests in the result page displayed by the Internet of Things machine. Monitor the correctness of every payment in the payment system through automated means.
对比结果不一致,通常表明支付系统存在漏洞。因此,为了提高支付系统的健壮性,可以在对比结果不一致时,对对比结果进行进一步地处理。Inconsistent comparison results often indicate a vulnerability in the payment system. Therefore, in order to improve the robustness of the payment system, when the comparison results are inconsistent, the comparison results can be further processed.
例如,当对比结果为对比不一致时,可以保存该对比不一致的对比结果。对比结果可以以日志的形式呈现。因此,保存对比结果也可以指保存对比过程中生成的对比日志。For example, when the comparison result is inconsistent, the inconsistent comparison result can be saved. The comparison results can be presented in the form of logs. Therefore, saving the comparison results can also refer to saving the comparison log generated during the comparison process.
保存对比结果可以通过多种方式实现。例如,可以将对比结果存储于存储空间(例如计算机或服务器的硬盘)中。又如,可以将对比结果打印出来。Saving comparison results can be achieved in several ways. For example, the comparison results can be stored in a storage space (such as a hard disk of a computer or server). As another example, the comparison results can be printed out.
通过将对比不一致的结果保存的方式,可以帮助软件从业人员(例如软件开发或运维人员)定位系统中存在的问题,提升处理问题的效率。By saving inconsistent comparison results, it can help software practitioners (such as software development or operation and maintenance personnel) locate problems in the system and improve the efficiency of problem solving.
又如,当对比结果不一致时,可以为对比不一致的场景配置告警信息。当某个支付请求对应的场景与配置告警信息的场景一致时,可以发送该告警信息。For another example, when the comparison results are inconsistent, alarm information can be configured for the inconsistent comparison scenario. When the scenario corresponding to a payment request is consistent with the scenario where the alarm information is configured, the alarm information can be sent.
例如,物联网机具展示结果页时使用的单位为元,而服务端保存结算数据时使用的单位为分。如果支付系统存在逻辑问题,可能导致物联网机具展示的结果页存在错误。例如,本应展示0.1元(服务端存储的单位为分,即,服务端存储的数据为10分,应展示为0.1元),结果展示成了10元。For example, the unit used by the IoT machine when displaying the results page is yuan, while the unit used by the server when saving settlement data is cents. If there is a logic problem in the payment system, it may cause errors in the result page displayed by the IoT machine. For example, 0.1 yuan should be displayed (the unit stored on the server is cents, that is, the data stored on the server is 10 points and should be displayed as 0.1 yuan), but the result is displayed as 10 yuan.
可以为该场景配置告警信息。当再次遇到单位换算错误的场景,可以触发配置好的告警信息。Alarm information can be configured for this scenario. When the unit conversion error occurs again, the configured alarm message can be triggered.
软件从业人员可以根据保存的对比结果或配置的告警信息对支付系统进行排查。修复支付系统中存在的漏洞,提高系统的健壮性,提高支付过程的安全性。Software practitioners can troubleshoot the payment system based on the saved comparison results or configured alarm information. Repair loopholes in the payment system, improve the robustness of the system, and improve the security of the payment process.
在一些实施例中,为了进一步提升支付系统的安全性,可以在对比结果不一致时,拦截该支付。通过实时拦截存在错误的支付请求,可以保证用户的资金安全。In some embodiments, in order to further improve the security of the payment system, the payment can be intercepted when the comparison results are inconsistent. By intercepting erroneous payment requests in real time, the security of users' funds can be ensured.
由于存在问题的支付请求被拦截,保证了用户在物联网机具上获得的结果页与实际的支付信息一致。即,保证用户所见即所得。Since the problematic payment request is intercepted, it is ensured that the result page obtained by the user on the IoT machine is consistent with the actual payment information. That is, ensuring that what users see is what they get.
在一些实施例中,可以使用上述方法的结合。例如,可以当对比结果不一致时,对对比结果不一致的对比结果进行打印。当对比结果不一致对应的场景为严重场景时,对该对比结果对应的支付请求进行拦截。当对比结果不一致的场景为不严重的场景时, 可以仅为该结果配置告警信息,不对支付请求进行拦截。In some embodiments, a combination of the above methods may be used. For example, when the comparison results are inconsistent, the comparison results with inconsistent comparison results can be printed. When the scenario corresponding to the inconsistent comparison result is a serious scenario, the payment request corresponding to the comparison result will be intercepted. When the scene with inconsistent comparison results is not serious, You can configure alarm information only for this result and do not intercept the payment request.
场景是否为严重场景可以根据实际的业务需要设置。例如,严重的场景可以包括结果页待展示的支付结果数据中对应的支付金额,与服务端清算数据中对应的支付金额完全不同的场景。Whether the scenario is a serious scenario can be set based on actual business needs. For example, serious scenarios may include scenarios where the corresponding payment amount in the payment result data to be displayed on the results page is completely different from the corresponding payment amount in the server-side settlement data.
本公开提供的方法,可以自动对比支付请求对应的结果页与服务端的清算数据(例如收单数据)是否一致。如出现不一致,可以对出现不一致的支付请求进行报警或拦截。因此,本公开提供的方法实现了自动巡检、秒级告警。The method provided by this disclosure can automatically compare whether the result page corresponding to the payment request is consistent with the clearing data (such as bill acquiring data) on the server side. If there is any inconsistency, you can alert or intercept the inconsistent payment request. Therefore, the method provided by the present disclosure realizes automatic inspection and second-level alarms.
在一些实施例中,服务端可以包括多个不同的服务端。不同的服务端可以由不同的运营商提供。不同的服务端可以用于处理支付过程中不同的操作。In some embodiments, the server may include multiple different servers. Different servers can be provided by different operators. Different servers can be used to handle different operations in the payment process.
在一些实施例中,服务端可以包括物联网机具服务端和支付服务端。应理解,服务端除了物联网机具服务端和支付服务端外,还可以包括其他用于提供服务的服务端。本公开对服务端具体包含的服务端的类型和数量不做限定。In some embodiments, the server may include an Internet of Things machine server and a payment server. It should be understood that, in addition to the Internet of Things machine server and payment server, the server may also include other servers for providing services. This disclosure does not limit the type and number of servers specifically included in the server.
每个服务端可以通过多种方式实现。例如,服务端可以通过服务器向外提供服务。每个服务端可以包括任意数量的服务器。本公开对服务端的具体实现形式或服务端包含的服务器数量不做限定。Each server can be implemented in a variety of ways. For example, the server can provide services to the outside world through the server. Each server can contain any number of servers. This disclosure does not limit the specific implementation form of the server or the number of servers included in the server.
支付服务端可以用于根据支付请求进行结算。例如,支付服务端可以完成支付清算扣款。又如,支付服务端可以生成清算单据。The payment server can be used to settle payments based on payment requests. For example, the payment server can complete payment settlement and deduction. As another example, the payment server can generate settlement documents.
在一些实施例中,支付服务端可以与存储系统相连。存储系统可以包括数据库。支付服务端可以将相关数据存储在存储系统中。相关数据例如可以包括支付清算扣款信息或清算单据。支付清算扣款信息或清算单据例如可以包括用户的账户信息、支付的结算信息等。In some embodiments, the payment server may be connected to the storage system. The storage system may include a database. The payment server can store relevant data in the storage system. Relevant data may include, for example, payment settlement deduction information or settlement documents. The payment settlement deduction information or settlement document may include, for example, the user's account information, payment settlement information, etc.
在一些实施例中,支付服务端可以包括统一支付。统一支付可以指建立在支付核心软件之上的支付服务系统。统一支付可以实现全面的业务管理、用户管理、账务方管理、付费方管理等功能。统一支付可以为多种业务系统提供安全高效的支付支持环境。In some embodiments, the payment server may include Unified Payments. Unified payment can refer to a payment service system built on payment core software. Unified payment can realize comprehensive business management, user management, accountant management, payer management and other functions. Unified payment can provide a safe and efficient payment support environment for multiple business systems.
统一支付的目的是,建立一个支付方(银行、其他支付系统)和账务方(全业务运营支撑系统)的用于支付充值的系统。The purpose of unified payment is to establish a system for payment and recharge for the payer (bank, other payment system) and the accountant (full business operation support system).
物联网机具服务端可以用于接收物联网机具发送的支付请求,并将支付请求向支付服务端转发。 The IoT machine server can be used to receive the payment request sent by the IoT machine and forward the payment request to the payment server.
在接收到支付结果后,物联网机具服务端可以对支付结果进行处理,生成用于物联网机具的结果页。用户可以根据物联网机具展示的结果查看支付结果。用户可以指向商户付款的消费者,也可以指使用物联网机具作为收款工具的商户。After receiving the payment result, the Internet of Things machine server can process the payment result and generate a result page for the Internet of Things machine. Users can check the payment results based on the results displayed by the IoT machine. Users can refer to consumers who pay merchants, or merchants who use IoT devices as payment collection tools.
在一些实施例中,物联网机具服务端可以根据支付请求生成收单数据。收单数据可以包括支付请求对应的用户id、交易号、支付渠道、支付状态等。In some embodiments, the IoT machine server can generate receipt data according to the payment request. The acquiring data can include the user ID, transaction number, payment channel, payment status, etc. corresponding to the payment request.
在一些实施例中,清算数据可以包括物联网机具服务端的收单数据和/或支付服务端的结算数据。第一支付数据可以根据清算数据生成。In some embodiments, the clearing data may include acquisition data of the Internet of Things machine server and/or settlement data of the payment server. The first payment data can be generated based on the clearing data.
第一支付数据可以包括支付服务端的结算数据。由于支付服务端的结算数据通常是正确的,因此通过将第二支付数据与包括支付服务端的结算数据进行一致性对比,可以快速确认用户物联网机具生成向外展示的结果页的支付结果数据是否正确。The first payment data may include settlement data of the payment server. Since the settlement data on the payment server is usually correct, by comparing the consistency of the second payment data with the settlement data including the payment server, you can quickly confirm whether the payment result data on the result page generated by the user's IoT device is correct. .
第一支付数据还可以包括支付服务端的结算数据和物联网机具服务端的收单数据。在一些实施例中,支付服务端的结算数据可以称为结算数据,物联网机具服务端的收单数据可以称收单数据。第一支付数据可以包括结算数据和收单数据。The first payment data may also include settlement data of the payment server and acquisition data of the Internet of Things machine server. In some embodiments, the settlement data on the payment server may be called settlement data, and the acquiring data on the IoT machine server may be called acquiring data. The first payment data may include settlement data and acquiring data.
对第一支付数据和第二支付数据进行一致性对比,可以包括对结算数据和第二支付数据进行一致性对比,以及对收单数据和结算数据进行一致性对比。The consistency comparison between the first payment data and the second payment data may include the consistency comparison between the settlement data and the second payment data, and the consistency comparison between the acquiring data and the settlement data.
通过对多端存储的数据进行一致性对比,可以进一步保证最终的支付结果数据的准确性。By comparing the consistency of data stored at multiple ends, the accuracy of the final payment result data can be further ensured.
由于数据在传输的过程中,可能在任意一个节点出现问题,造成最终的支付结果出现错误。因此,对多端数据进行一致性对比,可以帮助开发人员快速定位出现问题的节点,提升运维效率。During the data transmission process, problems may occur at any node, causing errors in the final payment result. Therefore, consistency comparison of multi-end data can help developers quickly locate problem nodes and improve operation and maintenance efficiency.
本公开提供的方法可以部署在支付系统的任意一个节点上。例如,本方案可以部署在物联网机具上。本方案部署在物联网机具上,可以实现实时的一致性对比。当对比不一致时,可以及时拦截对不一致的支付请求,保障用户的资金安全。The method provided by this disclosure can be deployed on any node of the payment system. For example, this solution can be deployed on IoT machines. This solution is deployed on IoT machines and can achieve real-time consistency comparison. When the comparison is inconsistent, inconsistent payment requests can be intercepted in a timely manner to ensure the safety of users' funds.
又如,本方案可以部署在服务端。具体地,本方案可以部署在物联网机具服务端上。通过将本方案部署在服务端,可以从源头保证数据的一致性。As another example, this solution can be deployed on the server side. Specifically, this solution can be deployed on the IoT machine server. By deploying this solution on the server side, data consistency can be ensured from the source.
在一些实施例中,也可以在物联网机具端和服务端都部署该方案。从而进一步确保最终展现给用户的结果页与服务端存储的支付数据一致。即,进一步确保用户的资金安全。 In some embodiments, this solution can also be deployed on both the IoT machine side and the server side. This further ensures that the result page finally displayed to the user is consistent with the payment data stored on the server. That is, to further ensure the safety of users’ funds.
在一些实施例中,该方案也可以独立地部署在核对平台上。通过核对平台对支付过程进行监控,保证用户所见即所得。In some embodiments, the solution can also be deployed independently on the verification platform. The payment process is monitored through the verification platform to ensure that what users see is what they get.
核对平台可以独立与支付系统。因此,通过在支付系统中部署核对平台的方式,可以不对支付系统进行侵入,实现简单,维护方便。The verification platform can be independent from the payment system. Therefore, by deploying a verification platform in the payment system, there is no need to invade the payment system, which is simple to implement and easy to maintain.
核对平台可以实时地对每一笔交易进行监控。为了提高核对平台的处理效率,也可以每隔固定的时间,对该时间间隔内的所有交易进行统一的比对和处理。这种间隔固定时间进行处理的方式,也可以称为自动巡检。巡检的间隔时间可以根据需要任意选择。例如,可以选择每3分钟巡检一次。The verification platform can monitor every transaction in real time. In order to improve the processing efficiency of the verification platform, all transactions within the time interval can also be uniformly compared and processed at fixed intervals. This method of processing at fixed intervals can also be called automatic inspection. The inspection interval can be selected as needed. For example, you can choose to inspect every 3 minutes.
图3是本公开又一实施例提供的支付安全管理方法的流程示意图。如图3所示,该支付安全管理方法的流程包括步骤S301至步骤S312。Figure 3 is a schematic flowchart of a payment security management method provided by yet another embodiment of the present disclosure. As shown in Figure 3, the flow of the payment security management method includes steps S301 to S312.
在步骤S301,用户通过物联网机具支付。物联网机具也可以简称为机具。In step S301, the user pays through the Internet of Things machine. IoT machines can also be referred to as machines for short.
物联网机具可以提供各种供用户支付的通道。例如,物联网机具可以向用户提供刷脸或刷二维码的通道。IoT machines can provide various payment channels for users. For example, IoT devices can provide users with a channel to scan their faces or QR codes.
用户可以通过刷脸或刷二维码的形式支付。例如,用户可以通过刷脸的方式向物联网机具提交支付请求。支付请求可以包括向商户支付10元。Users can pay by swiping their face or QR code. For example, users can submit payment requests to IoT machines by scanning their faces. The payment request may include a payment of 10 yuan to the merchant.
在步骤S302,物联网机具发送给服务端处理支付。物联网机具可以通过物联网与服务端通信,并将支付请求发送给服务端。In step S302, the Internet of Things device is sent to the server for payment processing. IoT machines can communicate with the server through the IoT and send payment requests to the server.
在步骤S303,服务端可以处理支付请求,并根据处理结果生成结果页所需的数据。在本实施例中,结果页由服务端独立构建。实际中,结果页可以由服务端构建,也可以由物联网机具构建,还可以由物联网机具和服务端共同构建。本公开对结果页的具体构建方式不做限定。In step S303, the server may process the payment request and generate data required for the result page based on the processing results. In this embodiment, the result page is constructed independently by the server. In practice, the result page can be built by the server, or by the IoT machine, or by both the IoT machine and the server. This disclosure does not limit the specific construction method of the result page.
物联网机具在构建结果页时通常使用两套方案:主动轮询和统一支付发送消息给设备服务端。IoT machines usually use two solutions when building result pages: active polling and unified payment to send messages to the device server.
主动轮询包括物联网机具主动向设备服务端索取构建结果页所需的数据。统一支付处理完支付请求后,也会主动向物联网机具服务端发送数据。物联网机具服务端在接收到该数据后,将主动将数据发送给物联网机具。Active polling involves the IoT machine actively requesting the data required to build a result page from the device server. After Unified Payment processes the payment request, it will also actively send data to the IoT machine server. After receiving the data, the IoT machine server will actively send the data to the IoT machine.
在构建结果页时,通常根据上述两套方案中首先达到的消息构建。本实施例在获取结果页数据时,可以通过在物联网机具端埋点的方式,获取首先达到物联网机具端 的结果页数据,并根据结果页数据获取第二支付数据。When building a results page, it's usually based on which message is reached first in the two scenarios above. In this embodiment, when obtaining the result page data, the data that first reaches the IoT machine end can be obtained by burying points on the IoT machine end. The result page data, and obtain the second payment data based on the result page data.
在步骤S304,判断支付是否成功。In step S304, it is determined whether the payment is successful.
当支付失败时,进入步骤S305,服务端构建支付失败的信息。当支付成功时,进入步骤S306,服务端构建支付成功的信息。When the payment fails, step S305 is entered, and the server constructs payment failure information. When the payment is successful, step S306 is entered, and the server constructs information indicating that the payment is successful.
在步骤S307,获取收单的信息流要素。In step S307, the information flow elements of the order are obtained.
在步骤S308,获取统一支付的资金流要素。In step S308, the fund flow elements of unified payment are obtained.
收单的信息流和统一支付的资金流可以由同一个服务端提供,也可以由不同的服务端提供。通常,收单的信息流和统一支付的资金流由不同的服务端提供。收单的信息流要素和统一支付的资金流要素可以统一生成第一支付数据。The information flow of acquiring orders and the fund flow of unified payment can be provided by the same server, or they can be provided by different servers. Usually, the information flow of acquiring orders and the fund flow of unified payment are provided by different servers. The information flow elements of acquiring orders and the capital flow elements of unified payment can generate the first payment data in a unified manner.
在步骤S309,比较重要资金流/信息流要素。In step S309, important capital flow/information flow elements are compared.
由于服务端之间在进行通信的过程中也可能存在问题。例如,服务端之间在进行通信的过程中,支付数据可能被篡改。又如,服务端之间的数据存储或构建逻辑可能存在差异,导致最终存储的数据存在差异。There may also be problems during the communication process between servers. For example, payment data may be tampered with during communication between servers. For another example, there may be differences in data storage or construction logic between servers, resulting in differences in the final stored data.
因此,通过将第一支付数据数据和第二支付数据进行一致性对比,即,将结果页数据、收单的信息流要素以及统一支付的资金流要素进行对比,可以及时发现结果页显示的重要数据是否正确。重要数据例如可以包括终要的资金流要素和信息流要素。Therefore, by comparing the consistency of the first payment data and the second payment data, that is, comparing the results page data, the information flow elements of the receipt, and the capital flow elements of the unified payment, you can promptly discover the important information displayed on the results page. Is the data correct? Important data may include, for example, final capital flow elements and information flow elements.
资金流要素例如可以包括用户id、交易号、支付渠道、支付状态、支付金额等。信息流要素例如可以包括支付方式(例如刷脸支付)、物联网机具的设备信息(例如设备sn码、设备mac码等)等。Fund flow elements may include, for example, user ID, transaction number, payment channel, payment status, payment amount, etc. Information flow elements may include, for example, payment methods (such as facial recognition payment), device information of Internet of Things equipment (such as device sn code, device mac code, etc.), etc.
在步骤S310,确认对比结果。In step S310, the comparison result is confirmed.
当对比失败后,进入步骤S311,告警和/或应急。告警可以包括配置告警信息,以供下次出现相同场景时向开发人员告警。告警还可以包括向开发人员提供告警信息,以供开发人员根据日志以及告警信息进行排查,确定并解决系统中可能存在的安全漏洞。When the comparison fails, step S311 is entered for alarm and/or emergency response. Alarms can include configuring alarm information to alert developers the next time the same scenario occurs. Alarms can also include providing alarm information to developers so that developers can conduct troubleshooting based on logs and alarm information to determine and resolve possible security vulnerabilities in the system.
当对比成功后,进入步骤S312,结束。When the comparison is successful, step S312 is entered and the process ends.
前文结合图1至图3详细介绍了本公开提供的方法实施例。下文结合图4至图6介绍本公开提供的装置实施例。应理解,装置实施例和方法实施例相互对应。因此,装置实施例未详尽介绍之处,请参考方法实施例部分的描述。 The method embodiments provided by the present disclosure are described in detail above with reference to FIGS. 1 to 3 . The following describes device embodiments provided by the present disclosure with reference to FIGS. 4 to 6 . It should be understood that the device embodiments and method embodiments correspond to each other. Therefore, if the device embodiment is not introduced in detail, please refer to the description of the method embodiment.
图4是本公开一实施例提供的支付安全管理装置的结构示意图。装置400可以应用于支付系统。支付系统可以包括物联网机具和服务端。物联网机具可以用于向服务端发送支付请求。服务端可以用于响应支付请求。Figure 4 is a schematic structural diagram of a payment security management device provided by an embodiment of the present disclosure. The device 400 can be applied in a payment system. Payment systems can include IoT machines and servers. IoT machines can be used to send payment requests to the server. The server can be used to respond to payment requests.
装置400可以包括第一获取单元410、第二获取单元420以及对比单元430。The device 400 may include a first acquisition unit 410, a second acquisition unit 420, and a comparison unit 430.
第一获取单元410可以用于获取第一支付数据。第一支付数据可以根据支付请求随影的清算数据生成。The first obtaining unit 410 may be used to obtain the first payment data. The first payment data may be generated based on the clearing data accompanying the payment request.
第二获取单元420可以用于获取第二支付数据。第二支付数据可以根据支付请求对应的结果页生成。结果页可以用于生成用户物联网机具向外展示。The second obtaining unit 420 may be used to obtain the second payment data. The second payment data can be generated according to the result page corresponding to the payment request. The results page can be used to generate user IoT tools for external display.
对比单元430可以用于对第一支付数据和第二支付数据进行一致性对比。The comparison unit 430 may be used to compare the first payment data and the second payment data for consistency.
可选地,在一些实施例中,服务端可以包括物联网机具服务端和支付服务端。清算数据可以包括物联网机具服务端的收单数据和/或支付服务端的结算数据。Optionally, in some embodiments, the server may include an Internet of Things machine server and a payment server. The clearing data may include the acquiring data of the Internet of Things machine server and/or the settlement data of the payment server.
可选地,在一些实施例中,支付服务端可以包括统一支付。Optionally, in some embodiments, the payment server may include unified payment.
可选地,在一些实施例中,装置400还可以包括保存单元。保存单元可以用于在得到对比结果后,当对比结果为对比不一致时,保存对比结果。Optionally, in some embodiments, the device 400 may further include a storage unit. The saving unit may be used to save the comparison result after the comparison result is obtained and when the comparison result is inconsistent.
可选地,在一些实施例中,装置400还可以包括拦截单元。拦截单元可以用于在得到对比结果后,当对比结果为对比不一致时,拦截支付请求。Optionally, in some embodiments, the device 400 may further include an interception unit. The interception unit can be used to intercept the payment request when the comparison result is inconsistent after obtaining the comparison result.
可选地,在一些实施例中,第一支付数据和第二支付数据可以包括支付请求对应的信息流和/或资金流。Optionally, in some embodiments, the first payment data and the second payment data may include information flow and/or fund flow corresponding to the payment request.
图5是本公开一实施例提供的支付系统的示意图。如图5所示,支付系统可以包括物联网机具510、服务端520和平台530。Figure 5 is a schematic diagram of a payment system provided by an embodiment of the present disclosure. As shown in Figure 5, the payment system may include an Internet of Things device 510, a server 520 and a platform 530.
物联网机具510可以用于向服务端发送支付请求。The IoT device 510 can be used to send a payment request to the server.
服务端520可以用于处理支付请求,生成支付结果数据。The server 520 can be used to process payment requests and generate payment result data.
平台530可以用于执行以下操作:获取第一支付数据,其中,所述第一支付数据根据所述支付请求对应的清算数据生成;获取第二支付数据,其中,所述第二支付数据根据所述支付请求对应的结果页生成,所述结果页用于所述物联网机具向外展示;对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。The platform 530 may be used to perform the following operations: obtain first payment data, wherein the first payment data is generated based on the clearing data corresponding to the payment request; obtain second payment data, wherein the second payment data is generated based on the A result page corresponding to the payment request is generated, and the result page is used for external display of the Internet of Things machine; the first payment data and the second payment data are compared for consistency to obtain a comparison result.
平台530可以指由硬件实现,也可以由软件实现,本公开对平台530的具体实 现形式不做限定。The platform 530 may be implemented by hardware or software. This disclosure does not describe the specific implementation of the platform 530. The current form is not limited.
平台530可以独立于物联网机具510和服务端520。在一些实施例中,平台530也可以部署在物联网机具510上和/或服务端520上。本公开对平台530的部署位置不做限定。The platform 530 can be independent of the IoT machine 510 and the server 520 . In some embodiments, the platform 530 can also be deployed on the IoT machine 510 and/or the server 520 . This disclosure does not limit the deployment location of the platform 530.
图6是本公开又一实施例提供的支付安全管理装置的结构示意图。图6所示的装置600可以是能够执行本公开提供的支付安全管理方法的平台。该装置600例如可以是具有计算功能的计算设备。比如,装置600可以是移动终端或者服务器。装置600可以包括存储器610和处理器620。存储器610可用于存储可执行代码。处理器620可用于执行所述存储器610中存储的可执行代码,以实现前文描述的各个方法中的步骤。在一些实施例中,该装置600还可以包括网络接口630,处理器620与外部设备的数据交换可以通过该网络接口630实现。Figure 6 is a schematic structural diagram of a payment security management device provided by yet another embodiment of the present disclosure. The device 600 shown in Figure 6 may be a platform capable of executing the payment security management method provided by the present disclosure. The apparatus 600 may be, for example, a computing device with computing functionality. For example, the device 600 may be a mobile terminal or a server. Apparatus 600 may include memory 610 and processor 620. Memory 610 may be used to store executable code. The processor 620 may be configured to execute executable codes stored in the memory 610 to implement steps in each method described above. In some embodiments, the apparatus 600 may also include a network interface 630, through which data exchange between the processor 620 and an external device may be implemented.
在上述实施例中,可以全部或部分地通过软件、硬件、固件或者其他任意组合来实现。当使用软件实现时,可以全部或部分地以计算机程序产品的形式实现。所述计算机程序产品包括一个或多个计算机指令。在计算机上加载和执行所述计算机程序指令时,全部或部分地产生按照本公开实施例所述的流程或功能。所述计算机可以是通用计算机、专用计算机、计算机网络、或者其他可编程装置。所述计算机指令可以存储在计算机可读存储介质中,或者从一个计算机可读存储介质向另一个计算机可读存储介质传输,例如,所述计算机指令可以从一个网站站点、计算机、服务器或数据中心通过有线(例如同轴电缆、光纤、数字用户线(Digital Subscriber Line,DSL))或无线(例如红外、无线、微波等)方式向另一个网站站点、计算机、服务器或数据中心进行传输。所述计算机可读存储介质可以是计算机能够存取的任何可用介质或者是包含一个或多个可用介质集成的服务器、数据中心等数据存储设备。所述可用介质可以是磁性介质(例如,软盘、硬盘、磁带)、光介质(例如数字视频光盘(Digital Video Disc,DVD))、或者半导体介质(例如固态硬盘(Solid State Disk,SSD))等。In the above embodiments, it may be implemented in whole or in part by software, hardware, firmware, or any other combination. When implemented using software, it may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When the computer program instructions are loaded and executed on a computer, processes or functions described in accordance with embodiments of the present disclosure are generated in whole or in part. The computer may be a general-purpose computer, a special-purpose computer, a computer network, or other programmable device. The computer instructions may be stored in or transmitted from one computer-readable storage medium to another, e.g., the computer instructions may be transferred from a website, computer, server, or data center Transmission to another website, computer, server or data center through wired (such as coaxial cable, optical fiber, Digital Subscriber Line (DSL)) or wireless (such as infrared, wireless, microwave, etc.) means. The computer-readable storage medium may be any available medium that can be accessed by a computer or a data storage device such as a server, data center, etc. that contains one or more available media integrated. The available media may be magnetic media (such as floppy disks, hard disks, magnetic tapes), optical media (such as digital video discs (Digital Video Disc, DVD)), or semiconductor media (such as solid state disks (Solid State Disk, SSD)), etc. .
本领域普通技术人员可以意识到,结合本公开实施例描述的各示例的单元及算法步骤,能够以电子硬件、或者计算机软件和电子硬件的结合来实现。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本公开的范围。 Those of ordinary skill in the art will appreciate that the units and algorithm steps of each example described in connection with the embodiments of the present disclosure can be implemented with electronic hardware, or a combination of computer software and electronic hardware. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the technical solution. Skilled artisans may implement the described functionality using different methods for each specific application, but such implementations should not be considered to be beyond the scope of this disclosure.
在本公开所提供的几个实施例中,应该理解到,所揭露的系统、装置和方法,可以通过其它的方式实现。例如,以上所描述的装置实施例仅仅是示意性的,例如,所述单元的划分,仅仅为一种逻辑功能划分,实际实现时可以有另外的划分方式,例如多个单元或组件可以结合或者可以集成到另一个系统,或一些特征可以忽略,或不执行。另一点,所显示或讨论的相互之间的耦合或直接耦合或通信连接可以是通过一些接口,装置或单元的间接耦合或通信连接,可以是电性,机械或其它的形式。In the several embodiments provided in this disclosure, it should be understood that the disclosed systems, devices and methods can be implemented in other ways. For example, the device embodiments described above are only illustrative. For example, the division of the units is only a logical function division. In actual implementation, there may be other division methods. For example, multiple units or components may be combined or can be integrated into another system, or some features can be ignored, or not implemented. On the other hand, the coupling or direct coupling or communication connection between each other shown or discussed may be through some interfaces, and the indirect coupling or communication connection of the devices or units may be in electrical, mechanical or other forms.
所述作为分离部件说明的单元可以是或者也可以不是物理上分开的,作为单元显示的部件可以是或者也可以不是物理单元,即可以位于一个地方,或者也可以分布到多个网络单元上。可以根据实际的需要选择其中的部分或者全部单元来实现本实施例方案的目的。The units described as separate components may or may not be physically separated, and the components shown as units may or may not be physical units, that is, they may be located in one place, or they may be distributed to multiple network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of this embodiment.
另外,在本公开各个实施例中的各功能单元可以集成在一个处理单元中,也可以是各个单元单独物理存在,也可以两个或两个以上单元集成在一个单元中。In addition, each functional unit in various embodiments of the present disclosure may be integrated into one processing unit, or each unit may exist physically alone, or two or more units may be integrated into one unit.
以上所述,仅为本公开的具体实施方式,但本公开的保护范围并不局限于此,任何熟悉本技术领域的技术人员在本公开揭露的技术范围内,可轻易想到变化或替换,都应涵盖在本公开的保护范围之内。因此,本公开的保护范围应以所述权利要求的保护范围为准。 The above are only specific embodiments of the present disclosure, but the protection scope of the present disclosure is not limited thereto. Any person familiar with the technical field can easily think of changes or substitutions within the technical scope disclosed in the present disclosure. should be covered by the protection scope of this disclosure. Therefore, the protection scope of the present disclosure should be subject to the protection scope of the claims.

Claims (14)

  1. 一种支付安全管理的方法,应用于支付系统,所述支付系统包括物联网机具和服务端,所述物联网机具用于向所述服务端发送支付请求,所述服务端用于响应所述支付请求,所述方法包括:A method of payment security management, applied to a payment system. The payment system includes an Internet of Things machine and a server. The Internet of Things machine is used to send a payment request to the server. The server is used to respond to the Payment request, the methods include:
    获取第一支付数据,其中,所述第一支付数据根据所述支付请求对应的清算数据生成;Obtain first payment data, wherein the first payment data is generated according to the clearing data corresponding to the payment request;
    获取第二支付数据,其中,所述第二支付数据根据所述支付请求对应的结果页生成,所述结果页用于所述物联网机具向外展示;Obtain second payment data, wherein the second payment data is generated according to the result page corresponding to the payment request, and the result page is used for external display of the Internet of Things equipment;
    对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。The first payment data and the second payment data are compared for consistency to obtain a comparison result.
  2. 根据权利要求1所述的方法,所述服务端包括物联网机具服务端和支付服务端,所述清算数据包括所述物联网机具服务端的收单数据和/或所述支付服务端的结算数据。According to the method of claim 1, the server includes an Internet of Things machine server and a payment server, and the settlement data includes the acquisition data of the Internet of Things machine server and/or the settlement data of the payment server.
  3. 根据权利要求2所述的方法,所述支付服务端包括统一支付。According to the method of claim 2, the payment server includes unified payment.
  4. 根据权利要求1所述的方法,在所述得到对比结果之后,所述方法还包括:The method according to claim 1, after obtaining the comparison result, the method further includes:
    当所述对比结果为对比不一致时,保存所述对比结果。When the comparison result is inconsistent, the comparison result is saved.
  5. 根据权利要求1所述的方法,在所述得到对比结果之后,所述方法还包括:The method according to claim 1, after obtaining the comparison result, the method further includes:
    当所述对比结果为对比不一致时,拦截所述支付请求。When the comparison result is inconsistent, the payment request is intercepted.
  6. 根据权利要求1所述的方法,所述第一支付数据和所述第二支付数据包括所述支付请求对应的信息流数据和/或资金流数据。According to the method of claim 1, the first payment data and the second payment data include information flow data and/or capital flow data corresponding to the payment request.
  7. 一种支付安全管理的装置,应用于支付系统,所述支付系统包括物联网机具和服务端,所述物联网机具用于向所述服务端发送支付请求,所述服务端用于响应所述支付请求,所述装置包括:A device for payment security management, applied to a payment system. The payment system includes an Internet of Things machine and a server. The Internet of Things machine is used to send a payment request to the server. The server is used to respond to the Payment request, the device includes:
    第一获取单元,用于获取第一支付数据,其中,所述第一支付数据根据所述支付请求对应的清算数据生成;A first acquisition unit configured to acquire first payment data, wherein the first payment data is generated according to the clearing data corresponding to the payment request;
    第二获取单元,用于获取第二支付数据,其中,所述第二支付数据根据所述支付请求对应的结果页生成,所述结果页用于所述物联网机具向外展示;The second acquisition unit is used to acquire second payment data, wherein the second payment data is generated according to the result page corresponding to the payment request, and the result page is used for external display of the Internet of Things machine;
    对比单元,用于对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。A comparison unit is used to compare the consistency of the first payment data and the second payment data to obtain a comparison result.
  8. 根据权利要求7所述的装置,所述服务端包括物联网机具服务端和支付服务端,所述清算数据包括所述物联网机具服务端的收单数据和/或所述支付服务端的结算数据。The device according to claim 7, the server includes an Internet of Things machine server and a payment server, and the settlement data includes the acquisition data of the Internet of Things machine server and/or the settlement data of the payment server.
  9. 根据权利要求8所述的装置,所述支付服务端包括统一支付。 The device according to claim 8, the payment server includes unified payment.
  10. 根据权利要求7所述的装置,还包括:The device of claim 7, further comprising:
    保存单元,用于在所述得到对比结果之后,当所述对比结果为对比不一致时,保存所述对比结果。A saving unit, configured to save the comparison result after the comparison result is obtained, when the comparison result is inconsistent.
  11. 根据权利要求7所述的装置,还包括:The device of claim 7, further comprising:
    拦截单元,用于在所述得到对比结果之后,当所述对比结果为对比不一致时,拦截所述支付请求。An interception unit, configured to intercept the payment request when the comparison result is inconsistent after the comparison result is obtained.
  12. 根据权利要求7所述的装置,所述第一支付数据和所述第二支付数据包括所述支付请求对应的信息流和/或资金流。The device according to claim 7, wherein the first payment data and the second payment data include information flow and/or capital flow corresponding to the payment request.
  13. 一种支付系统,包括:A payment system that includes:
    物联网机具,用于向服务端发送支付请求;Internet of Things equipment, used to send payment requests to the server;
    服务端,用于处理所述支付请求,生成支付结果数据;The server is used to process the payment request and generate payment result data;
    平台,用于执行以下操作:Platform for performing the following operations:
    获取第一支付数据,其中,所述第一支付数据根据所述支付请求对应的清算数据生成;Obtain first payment data, wherein the first payment data is generated according to the clearing data corresponding to the payment request;
    获取第二支付数据,其中,所述第二支付数据根据所述支付请求对应的结果页生成,所述结果页用于所述物联网机具向外展示;Obtain second payment data, wherein the second payment data is generated according to the result page corresponding to the payment request, and the result page is used for external display of the Internet of Things equipment;
    对所述第一支付数据和所述第二支付数据进行一致性对比,得到对比结果。The first payment data and the second payment data are compared for consistency to obtain a comparison result.
  14. 一种支付安全管理的装置,包括:A device for payment security management, including:
    存储器,用于存储指令;Memory, used to store instructions;
    处理器,用于执行所述存储器中存储的指令,以执行如权利要求1-6中任一项所述的方法。 A processor, configured to execute instructions stored in the memory to perform the method according to any one of claims 1-6.
PCT/CN2023/086412 2022-04-12 2023-04-06 Payment security management method and apparatus and payment system WO2023197917A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN202210379907.8 2022-04-12
CN202210379907.8A CN114707995A (en) 2022-04-12 2022-04-12 Payment security management method and device and payment system

Publications (1)

Publication Number Publication Date
WO2023197917A1 true WO2023197917A1 (en) 2023-10-19

Family

ID=82173716

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2023/086412 WO2023197917A1 (en) 2022-04-12 2023-04-06 Payment security management method and apparatus and payment system

Country Status (2)

Country Link
CN (1) CN114707995A (en)
WO (1) WO2023197917A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114707995A (en) * 2022-04-12 2022-07-05 支付宝(杭州)信息技术有限公司 Payment security management method and device and payment system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104123647A (en) * 2014-08-13 2014-10-29 广州市易票联支付技术有限公司 Payment method and system
CN111784345A (en) * 2020-07-21 2020-10-16 支付宝(杭州)信息技术有限公司 Payment processing method, device, equipment and system
US11030620B1 (en) * 2017-08-01 2021-06-08 Wells Fargo Bank, N.A. Cash reconciliation bots systems
CN114707995A (en) * 2022-04-12 2022-07-05 支付宝(杭州)信息技术有限公司 Payment security management method and device and payment system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104123647A (en) * 2014-08-13 2014-10-29 广州市易票联支付技术有限公司 Payment method and system
US11030620B1 (en) * 2017-08-01 2021-06-08 Wells Fargo Bank, N.A. Cash reconciliation bots systems
CN111784345A (en) * 2020-07-21 2020-10-16 支付宝(杭州)信息技术有限公司 Payment processing method, device, equipment and system
CN114707995A (en) * 2022-04-12 2022-07-05 支付宝(杭州)信息技术有限公司 Payment security management method and device and payment system

Also Published As

Publication number Publication date
CN114707995A (en) 2022-07-05

Similar Documents

Publication Publication Date Title
US20190373061A1 (en) Device specific remote disabling of applications
CN108229926B (en) Service settlement method and related device
CN109801051B (en) Resource transfer method, system, server and computer readable storage medium
US8612348B1 (en) Systems and methods for interfacing merchants with third-party service providers
CN110377522B (en) Transaction scene testing method, device, computing equipment and medium
TWI778314B (en) An electronic payment method, device, system and storage medium
US20200007647A1 (en) Real-time Event Orchestrator
CN110874742B (en) Payment method and device based on block chain and intelligent contract
CN112163946A (en) Accounting processing method and device based on distributed transaction system
WO2023197917A1 (en) Payment security management method and apparatus and payment system
CN112288577B (en) Transaction processing method, device, electronic equipment and medium for distributed service
US20230103746A1 (en) Systems and methods for providing split control of multiple execution environments
US8914903B1 (en) System, method, and computer program for validating receipt of digital content by a client device
CN110889682A (en) Payment information processing method, device, medium and equipment based on block chain
CN109583873B (en) Transaction communication method, server, POS machine and electronic equipment
CN111105224A (en) Payment feedback information processing method and device, electronic equipment and storage medium
CN111401891B (en) Data management method and device applied to blockchain
WO2023273832A1 (en) Data verification method and apparatus
CN107209885A (en) The payment serviced for consumer remote and the system of communication connection
CN115619552A (en) Asynchronous processing method and device of transaction bill, electronic equipment and medium
KR102107454B1 (en) System for multiplication of financial payment networks, method for financial services using the same and computer program for the same
CN115689570A (en) Business information risk identification method, device, equipment and medium
CN112215592B (en) Data processing method and system
CN114372792A (en) Transaction processing method, apparatus, device and medium applied to distributed system
CN115544052A (en) Data processing method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 23787562

Country of ref document: EP

Kind code of ref document: A1