CN103034942B - For the method and system of network payment - Google Patents
For the method and system of network payment Download PDFInfo
- Publication number
- CN103034942B CN103034942B CN201210518202.6A CN201210518202A CN103034942B CN 103034942 B CN103034942 B CN 103034942B CN 201210518202 A CN201210518202 A CN 201210518202A CN 103034942 B CN103034942 B CN 103034942B
- Authority
- CN
- China
- Prior art keywords
- user
- payment
- check value
- target object
- object information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
- 238000000034 method Methods 0.000 title claims abstract description 36
- 239000013589 supplement Substances 0.000 claims abstract description 20
- 230000002452 interceptive effect Effects 0.000 claims abstract description 19
- 238000012795 verification Methods 0.000 claims abstract description 12
- 230000000875 corresponding effect Effects 0.000 description 17
- 230000001502 supplementing effect Effects 0.000 description 8
- 230000008569 process Effects 0.000 description 5
- 230000008901 benefit Effects 0.000 description 3
- 238000013461 design Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 3
- 230000006870 function Effects 0.000 description 3
- 238000013475 authorization Methods 0.000 description 2
- 238000004590 computer program Methods 0.000 description 2
- 238000012423 maintenance Methods 0.000 description 2
- 238000012958 reprocessing Methods 0.000 description 2
- 230000004913 activation Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 150000001875 compounds Chemical class 0.000 description 1
- 230000002596 correlated effect Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000009897 systematic effect Effects 0.000 description 1
Abstract
The invention discloses a kind of method and system for network payment, this system comprises: memory; Interactive interface; First validator; Second validator; Described interactive interface is also suitable for receiving the second payment request sent from described client, comprises user profile, target object information, the first check value and payment in described second payment request; Described second validator is also suitable for being verified the described user profile comprised in described second payment request and target object information by described default checking algorithm, obtains the second check value; Relatively the second check value and described first check value, when determining that the second check value is identical with described first check value, being then verified, allowing to supplement with money with described payment.Adopt technical scheme of the present invention before payment, relevance verification can be carried out, to avoid paying unsuccessfully to the target object information in the first payment request of user's input and user profile.
Description
Technical field
The present invention relates to network payment field, be specifically related to a kind of method and system for network payment.
Background technology
At present, along with the fast development of computer technology, network payment obtains to be applied more and more widely.Such as, for the network application of online game and so on, it is some Premium Features (as value-added service) defrayment in online game that user can select by network payment.
In current payment process, if user wishes for a certain game value-added service defrayment, before payment, the game needing user to select this corresponding to game value-added service and the game server at this game place, i.e. Game Zone clothes.Under normal circumstances, user is generally for the account number of oneself is carried out supplementing with money and do not consider the problems such as Game Zone clothes, and only have the account number as user oneself to have registered when corresponding game and district take can successfully to supplement with money, if the game that the game account number that user have selected oneself is not registered or district's clothes, then cannot successfully for the account number of oneself be supplemented with money.
But, due to (such as hundreds and thousands of money) of a great variety of current online game, the substantial amounts of Game Zone clothes, cause user when selecting game and district to take, need from numerous candidate item, select the content oneself needed, just be easy in an unguarded moment select mistake, and once there be an option to select mistake, user will be caused to supplement with money unsuccessfully, finally can only apply for a refund or contact official to compensate, for user causes unnecessary puzzlement.
Summary of the invention
In view of the above problems, the present invention is proposed to provide a kind of method and system for network payment overcoming the problems referred to above or solve the problem at least in part.
According to one aspect of the present invention, provide a kind of method for network payment, comprise: receive and pay request from first of client, first payment request comprises target object information and user profile, destination object is suitable for being undertaken operating by user and being suitable for providing on one or more server, and target object information comprises the server info providing this destination object; And according to the subscriber association information prestored, verify the first payment request, and determine whether to allow to carry out network payment according to the result; Wherein, the user profile that subscriber association information comprises user and the server list be associated with this user, and pay request to first and verify and comprise in the server list be associated with this user that whether server info determined in target object information be included in subscriber association information; When passing through the first payment requests verification, by the checking algorithm preset, user profile and target object information being verified, obtaining the first check value, and user profile, target object information and the first check value are sent to client; Receive the second payment request sent from client, user profile, target object information, the first check value and payment is comprised in second payment request, by the checking algorithm preset, the user profile comprised in the second payment request and target object information are verified, obtain the second check value; Relatively the second check value and the first check value, when determining that the second check value is identical with the first check value, being then verified, allowing to supplement with money with payment.
Alternatively, the method also comprises: when determining that the second check value and the first check value are not identical, return miscue information to client.
Alternatively, the checking algorithm preset comprises: md5 algorithm and Digital Signature Algorithm.
Alternatively, user has corresponding user identity in each server be associated, and subscriber association information also comprises the user identity of user on each server be associated, and payment comprises for user identity is supplemented with money.
According to a further aspect in the invention, provide a kind of system for network payment, comprising: memory, be suitable for prestoring subscriber association information, the user profile that subscriber association information comprises user and the server list be associated with this user; Interactive interface, be suitable for receiving and pay request from first of client, first payment request comprises target object information and user profile, destination object is suitable for being undertaken operating by user and being suitable for providing on one or more server, and target object information comprises the server info providing this destination object; First validator, be suitable for the subscriber association information according to memory stores, first payment request is verified, and determine whether to allow to carry out network payment according to the result, wherein, the first validator pays request to first and verifies and comprise in the server list be associated with this user that whether server info determined in target object information be included in subscriber association information; Second validator, be suitable for when the first validator passes through the first payment requests verification, by the checking algorithm preset, user profile and target object information are verified, obtain the first check value, and user profile, target object information and the first check value are sent to client by interactive interface; Interactive interface is also suitable for receiving the second payment request sent from client, comprises user profile, target object information, the first check value and payment in the second payment request; The checking algorithm that second validator is also suitable for by presetting verifies the user profile comprised in the second payment request and target object information, obtains the second check value; Relatively the second check value and the first check value, when determining that the second check value is identical with the first check value, being then verified, allowing to supplement with money with payment.
Alternatively, the second validator is further adapted for: when determining that the second check value and the first check value are not identical, return miscue information by interactive interface to client.
Alternatively, the checking algorithm preset comprises: md5 algorithm and Digital Signature Algorithm.
Alternatively, user has corresponding user identity in each server be associated, and the subscriber association information stored in memory also comprises the user identity of user on each server be associated, and payment comprises for user identity is supplemented with money.
According to the method and system for network payment of the present invention, by prestoring subscriber association information, and whether the server info in determining the target object information that the first payment request comprises is included in the server list be associated with this user in subscriber association information, determine whether target object information in the first payment request and user profile are correlated with thus, solve thus and cause paying failed problem because of target object information uncorrelated with user profile (account number of such as playing does not register corresponding game and district's clothes), achieve and before payment, relevance verification can be carried out to the target object information in the first payment request of user's input and user profile, to avoid paying failed beneficial effect.
In addition, according to the method and system for network payment of the present invention, after being previously determined the first payment request and being appropriate, utilize and in the information returning to client, embed authorization information and whether unanimously determined whether the first originally authenticated relevant information paid in request has been tampered according to authorization information before paying, thus the fail safe of payment can be guaranteed further.
Above-mentioned explanation is only the general introduction of technical solution of the present invention, in order to technological means of the present invention can be better understood, and can be implemented according to the content of specification, and can become apparent, below especially exemplified by the specific embodiment of the present invention to allow above and other objects of the present invention, feature and advantage.
Accompanying drawing explanation
By reading hereafter detailed description of the preferred embodiment, various other advantage and benefit will become cheer and bright for those of ordinary skill in the art.Accompanying drawing only for illustrating the object of preferred implementation, and does not think limitation of the present invention.And in whole accompanying drawing, represent identical parts by identical reference symbol.In the accompanying drawings:
Fig. 1 shows according to an embodiment of the invention for the method flow diagram of the method for network payment;
Fig. 2 show according in one embodiment of the invention when the interface schematic diagram determining the prompt window that the target object information comprised in the first payment request shows when not being included in the server list be associated with this user;
Fig. 3 shows the interface schematic diagram of supplementing interface with money according to showing when determining that the second check value is identical with the first check value in one embodiment of the invention; And
Fig. 4 shows according to an embodiment of the invention for the structural representation of the system of network payment.
Embodiment
Below with reference to accompanying drawings exemplary embodiment of the present disclosure is described in more detail.Although show exemplary embodiment of the present disclosure in accompanying drawing, however should be appreciated that can realize the disclosure in a variety of manners and not should limit by the embodiment set forth here.On the contrary, provide these embodiments to be in order to more thoroughly the disclosure can be understood, and complete for the scope of the present disclosure can be conveyed to those skilled in the art.
Fig. 1 shows the flow chart of the method for network payment that the embodiment of the present invention provides.As shown in Figure 1, the method starts from step S110, and in step s 110, receive and pay request from first of client, this first payment request comprises target object information and user profile.Wherein, destination object is suitable for being undertaken operating by user and being suitable for providing on one or more server, and target object information comprises the server info providing this destination object.
In this embodiment, take destination object as online game for example is described.Such as, pay in request first, the destination object that supplement with money is the game that user will play, and represents with GKEY, and target object information comprises the server info providing this destination object, and the district's clothes namely corresponding to this game, represent with SKEY.Except target object information, also comprise user profile in the first payment request, this user profile mainly refers to the game account number of user, is also game ID, represents with QID.That is, in the first payment request received by step S110, GKEY, SKEY and QID tri-parameters are comprised.
First pays request sends by various ways, such as, can be logged in the official website at destination object place by user, official website be selected the mode of supplementing interface accordingly with money send.Or, also can be sent like a URL of following form by user's access classes, this URL shape as http://pay.wan.360.cn/order.html gkey=player the game name & skey=player that plays thus district take the QID of & sqid=player.After receiving this URL, above-mentioned target object information (gkey, skey) and user profile (sqid) can be obtained by following code:
$gkey=FilterParam::htmlSpecil($request->get(“gkey”));
$skey=FilterParam::htmlSpecil($request->get(“skey”));
$gqid=FilterParam::htmlSpecil($request->get(“sqid”))。
After getting above-mentioned target object information and user profile, in the step s 120, according to the subscriber association information prestored, the first payment request is verified, and determine whether to allow to carry out network payment according to the result.The user profile that subscriber association information comprises user and the server list be associated with this user.Particularly, pay request to first to verify and comprise in the server list be associated with this user that whether server info determined in target object information be included in this subscriber association information.
Before introducing the concrete proof procedure in step S120, first introduce the particular content of the subscriber association information prestored.
Be still online game with destination object for example is described.In field of network game, generally unique game ID(and QID can be distributed for each user), owing to there is relation one to one between game ID and user, therefore, just a user can be identified uniquely by game ID.Generally, a user may like playing the game of many moneys, whenever user is before a new game of object for appreciation, all needs first to be registered this game by the game ID of this user.
Such as, when a user is by self game ID(such as QID=1) have registered a " celestial sword feelings " game (i.e. GKEY=SJQ) after, game provider can distribute a station server (such as server C) as Game Zone clothes (i.e. SKEY=C), for this user provides this celestial sword feelings game.After this user completes above-mentioned registration process, this user is just provided with corresponding user identity in this Game Zone clothes (i.e. server C), and this user identity can be the character etc. in the game of celestial sword feelings.The method for network payment that user can be provided by the embodiment of the present invention is supplemented with money for this user identity, to enjoy more function in this game.
In like manner, when this user is by self game ID(such as QID=1) have registered another money " angle road " game (i.e. GKEY=SXD) after, game provider can distribute a station server (such as server D) as Game Zone clothes (i.e. SKEY=D), for this user provides this angle road to play.After this user completes above-mentioned registration process, this user is just provided with corresponding user identity in this Game Zone clothes (i.e. server D), this user identity can be the character etc. in the game of angle road, and the method for network payment that user can be provided by the embodiment of the present invention is supplemented with money for this user identity.
When user by the method for network payment that the embodiment of the present invention provides be user identity supplement with money time, only have when the user identity that user will supplement with money has record in corresponding Game Zone clothes, could successful recharging when namely user have registered this game.Such as, suppose that the user of above-described QID=1 have registered only above-mentioned " celestial sword feelings " and " angle road " two and plays, namely only in the Game Zone clothes that this two game is corresponding, there is corresponding user identity, therefore, if user have selected when supplementing with money other game or district clothes, due to user does not have corresponding user identity in this game then cannot successful recharging.
Cause supplementing with money the situation of failure in order to avoid above-mentioned because user selects wrong game or district to take, need to store subscriber association information in advance.The server list that this subscriber association information comprises user profile and is associated with this user.Such as, in above-mentioned situation, the user profile in the content that subscriber association information stores is QID=1, and the server list be associated with the user of this QID=1 is server C and server D.
In the step s 120, according to the subscriber association information prestored, when the first payment request is verified, mainly determine whether the server info in target object information is included in the server list be associated with this user in this subscriber association information.
Particularly, in conjunction with above-mentioned example, suppose QID=1, GKEY=SJQ of comprising in the first payment request received in step S110, SKEY=C, find by searching subscriber association information, the server list be associated with the user profile of QID=1 is server C(SKEY=C) and server D(SKEY=D).Therefore, the target object information (SKEY=C) comprised in the first payment request has been included in the server list be associated with this user.Wherein, when searching subscriber association information, the is_active interface pre-set is called by code " $ results=GPayClient::ins ()->is_active ($ gkey; $ skey; $ qid; $ otherparmas) ", search subscriber association information by this interface, thus judge whether the target object information (SKEY=C) comprised in the first payment request has been included in the server list be associated with this user according to the result results returned.
When determining that the target object information comprised in the first payment request has been included in the server list be associated with this user, show that the user profile that comprises in the first payment request and target object information are relevant.Wherein, user profile is relevant with target object information shows the corresponding game of the game account registration of user and district's clothes.Therefore, can allow to carry out network payment.
When determining that the target object information comprised in the first payment request is not included in the server list be associated with this user, show that the user profile that comprises in the first payment request and target object information are incoherent.Wherein, the game account number of user profile show user uncorrelated with target object information does not register corresponding game and district's clothes.Therefore, do not allow to carry out network payment, at this moment, user can be pointed out to supplement with money by the mode of the prompt window ejecting authentication failed to user, such as, for user shows the suggestion content shown in Fig. 2.
In addition, alternatively, in the subscriber association information prestored, except the user profile that comprises user and the server list be associated with this user, the destination object be associated with this user can also be comprised further, the i.e. game information registered of this user, such as, above-mentioned GKEY=XJQ and GKEY=SXD information.Correspondingly, when in the step s 120 the first payment request being verified, whether be included in except the server info verifying in the target object information in the first payment request except in the server list be associated with this user in subscriber association information, whether the destination object also needing checking first to pay in request is included in the destination object be associated with this user in subscriber association information, when server info and destination object are included in subscriber association information, just allow to pay, thus improve the accuracy paid further, to avoid because server is identical, the payment error that destination object difference causes.And subscriber association information can also comprise the user identity of user on each server be associated, correspondingly, this payment comprises for this user identity is supplemented with money.
Wherein, when allowing to carry out network payment, can be paid by the following two kinds mode:
The first means of payment is, directly pays in request first and comprises payment further, so that pay according to this payment.
The second means of payment is, when passing through the first payment requests verification, the second payment received further from this client is asked, in this second payment request, comprise payment, so that pay according to this payment.
Above-mentioned first kind of way is simple and easy to do, but, in a practical situation, for many-sided considerations such as structure of web page designs, often adopt the second way to pay.When adopting the second way to pay, due to needs reception twice payment request, generally, after client input first pays request, can there is redirect in webpage shown in client, then the page of user after redirect inputs second and pay request.In order to prevent information to be maliciously tampered when page jump time, alternatively, the method can further include following step S130-S170.
In step s 130, which, after the first payment requests verification is passed through, by the checking algorithm preset, user profile and target object information are verified, obtain the first check value, and user profile, target object information and the first check value are sent to client.
With above-mentioned example, the first user profile paid in request is QID, and destination object is GKEY, and target object information is SKEY.The checking algorithm preset can be md5 algorithm, Digital Signature Algorithm or other enciphering and deciphering algorithms.When adopting md5 algorithm as checking algorithm, by md5 algorithm, MD5 computing being carried out to the private key that these three parameters of QID, GKEY and SKEY and system retain in step s 130, which, obtaining the first check value SIGN1.Such as, encrypted by code " $ xcontext->gsign=md5 ($ gkey. $ skey. $ qid. $ key) ".Then, these four parameters of QID, GKEY, SKEY and SIGN1 are sent to client.
Then, in step S140, receive the second payment request sent from client, user profile, target object information, the first check value and payment is comprised in this second payment request, by the checking algorithm preset, as md5 algorithm, the user profile comprised and target object information are verified, obtain the second check value in this second payment request.
Here, in the second payment request that client sends except comprising the payment of user's input, these four parameters of QID, GKEY, SKEY and SIGN1 received in step S130 are also comprised.At this moment, the second private key paying these three parameters of QID, GKEY and SKEY and the system reservation comprised in request is encrypted, obtains the second check value SIGN2.
Then, in step S150, whether comparing the second check value SIGN2 and second obtained, to pay the first check value SIGN1 in asking identical.Such as, verify that whether the second check value is identical with the first check value by the validate_token function in following code segment:
If($sign)
Whether { // detect is enabled signature scheme and is checked whether that permission player supplements with money
$results=GPayClient::ins()->validate_token($gkey,$skey,$qid,$sign,$plat);
}
Else
{ // by player role activation interface checks whether and allows player to supplement with money
$results=GPayClient::ins()->is_active($gkey,$skey,$qid,$otherparmas);
}。
If the second check value is identical with the first check value, then perform step S160; If the second check value is not identical with the first check value, then perform step S170.
When determining that the second check value is identical with the first check value, expression is verified, and performs step S160, allowing to supplement with money with this payment, at this moment, can supplement with money by the mode of the page shown in page jump to Fig. 3 having been pointed out.When determining that the second check value and the first check value are not identical, representing that checking is not passed through, performing step S170, return miscue information to client.
The principle of above-mentioned verification mode is, under normal circumstances, if first pays the QID comprised in request, GKEY, SKEY parameter information is not tampered, so second pay the QID comprised in request, GKEY, the parameter value of SKEY should with first pay ask in the parameter value that comprises identical, therefore, the first check value produced after adopting identical cryptographic algorithm md5 algorithm for encryption and the second check value should be equal, if unequal, then represent that the information comprised in the second payment request has been tampered, therefore, in order to avoid mistake, to not carry out paying and returning miscue information to client.
By the verification operation in step S130-S170, the safety of network payment can be guaranteed further, prevent the situation of supplementing mistake with money because the reason such as network failure or assault causes.
In the present embodiment, take destination object as online game for example is described, target object information mainly refers to as this online game provides the server info of service, i.e. Game Zone clothes.Wherein, in an online game, for a certain user provide the Game Zone of service take may not only one, at this moment need to take all Game Zones be associated with this user in subscriber association information all to store.
The method for network payment that the embodiment of the present invention provides, can verify destination object before carrying out network payment, to guarantee that destination object and user profile are associated, thus avoid the situation of the payment failure caused because user's input error causes destination object not associate with user profile.Therefore, adopt the method for network payment that the embodiment of the present invention provides, user need not worry to cause because selecting wrong game information to supplement with money less than account or the situation of filling the errors of account number again, both the vital interests of user had been maintained, alleviate again the cost of system maintenance, contact staff is without a large amount of failed order of reprocessing.
In addition, in the present embodiment, be mainly online game with destination object for example is described, those skilled in the art it is understood that, except online game, other various network applications, such as: pay TV, forum score, Taobao's shopping etc., the method for network payment provided by the invention can be adopted to pay, as long as prestore the subscriber association information about this network application.
Fig. 4 shows the structure chart of the system for network payment that the embodiment of the present invention provides.As shown in Figure 4, this system 400 being used for network payment comprises: interactive interface 41, first validator 42 and memory 43.The interactive interface 41 that one or more client 200 is used in the system 400 of network payment by various wired or wireless connected mode and this is connected.
Interactive interface 41 receives and pays request from first of client 200, this the first payment request comprises target object information and user profile, destination object is suitable for being undertaken operating by user and being suitable for providing on one or more server, and described target object information comprises the server info providing this destination object.
In this embodiment, take destination object as online game for example is described.Such as, pay in request first, the destination object that supplement with money is the game that user will play, and represents with GKEY, and target object information comprises the server info providing this destination object, and the district's clothes namely corresponding to this game, represent with SKEY.Except target object information, also comprise user profile in the first payment request, this user profile mainly refers to the game account number of user, is also game ID, represents with QID.That is, first received by interactive interface 41 pays in request and comprises GKEY, SKEY and QID tri-parameters.
Wherein, first pays request sends by various ways, such as, can be logged in the official website at destination object place by user, official website be selected the mode of supplementing interface accordingly with money send.Or, also can be sent like a URL of following form by user's access classes, this URL shape as http://pay.wan.360.cn/order.html gkey=player the game name & skey=player that plays thus district take the QID of & sqid=player.After receiving this URL, above-mentioned target object information (gkey, skey) and user profile (sqid) can be obtained by following code:
$gkey=FilterParam::htmlSpecil($request->get(“gkey”));
$skey=FilterParam::htmlSpecil($request->get(“skey”));
$gqid=FilterParam::htmlSpecil($request->get(“sqid”))。
First validator 42, according to the subscriber association information that memory 43 prestores, is verified the first payment request, and determines whether to allow to carry out network payment according to the result.The user profile that subscriber association information comprises user and the server list be associated with this user.Particularly, the first validator 42 pays request to first and verifies and comprise in the server list be associated with this user that whether server info determined in target object information be included in this subscriber association information.
Wherein, the subscriber association information prestored is stored in memory 43, and the particular content about subscriber association information can refer to the description of embodiment of the method appropriate section, repeats no more herein.
First validator 42, according to the subscriber association information prestored, when verifying the first payment request, mainly determines whether the server info in target object information is included in the server list be associated with this user in this subscriber association information.
Particularly, in conjunction with above-mentioned example, suppose QID=1, GKEY=SJQ of comprising in the first payment request that interactive interface 41 receives, SKEY=C, find by searching subscriber association information, the server list be associated with the user profile of QID=1 is server C(SKEY=C) and server D(SKEY=D).Therefore, the target object information (SKEY=C) comprised in the first payment request has been included in the server list be associated with this user.Wherein, when searching subscriber association information, the is_active interface pre-set is called by code " $ results=GPayClient::ins ()->is_active ($ gkey; $ skey; $ qid; $ otherparmas) ", search subscriber association information by this interface, thus judge that the target object information (SKEY=C) comprised in the first payment request has been included in the server list be associated with this user according to the result results returned.
When the first validator 42 determines that the target object information comprised in the first payment request has been included in the server list be associated with this user, show that the user profile that comprises in the first payment request and target object information are relevant.User profile is relevant with target object information shows the corresponding game of the game account registration of user and district's clothes.Therefore, can allow to carry out network payment.
When the first validator 42 determines that the target object information comprised in the first payment request is not included in the server list be associated with this user, show that the user profile that comprises in the first payment request and target object information are incoherent.Wherein, the game account number of user profile show user uncorrelated with target object information does not register corresponding game and district's clothes.Therefore, do not allow to carry out network payment, at this moment, user can be pointed out to supplement with money by the mode of the prompt window ejecting authentication failed to user, such as, for user shows the suggestion content shown in Fig. 2.
In addition, alternatively, in the subscriber association information prestored, except the user profile that comprises user and the server list be associated with this user, the destination object be associated with this user can also be comprised further, the i.e. game information registered of this user, such as, above-mentioned GKEY=XJQ and GKEY=SXD information.Correspondingly, when the first validator 42 is verified the first payment request, whether be included in except the server info verifying in the target object information in the first payment request except in the server list be associated with this user in subscriber association information, whether the destination object also needing checking first to pay in request is included in the destination object be associated with this user in subscriber association information, when server info and destination object are included in subscriber association information, just allow to pay, thus improve the accuracy paid further, to avoid because server is identical, the payment error that destination object difference causes.
Wherein, when the first validator 42 allows to carry out network payment, can be paid by the following two kinds mode:
The first means of payment is, directly pays in request first and comprises payment further, so that pay according to this payment.
The second means of payment is, when passing through the first payment requests verification, the second payment received further from this client is asked, in this second payment request, comprise payment, so that pay according to this payment.
Above-mentioned first kind of way is simple and easy to do, but, in a practical situation, for many-sided considerations such as structure of web page designs, often adopt the second way to pay.When adopting the second way to pay, due to needs reception twice payment request, generally, after client input first pays request, can there is redirect in webpage shown in client, then the page of user after redirect inputs second and pay request.In order to prevent information to be maliciously tampered when page jump time, alternatively, this system can further include the second validator 44.
After the first validator 42 passes through the first payment requests verification, second validator 44 is verified user profile and target object information by the checking algorithm preset, obtain the first check value, and user profile, target object information and the first check value are sent to client 200 by interactive interface 41.
With above-mentioned example, the first user profile paid in request is QID, and destination object is GKEY, and target object information is SKEY.The checking algorithm preset can be md5 algorithm, Digital Signature Algorithm or other enciphering and deciphering algorithms.When adopting md5 algorithm as checking algorithm, the second validator 44 carries out MD5 computing by md5 algorithm to the private key that these three parameters of QID, GKEY and SKEY and system retain, and obtains the first check value SIGN1.Such as, encrypted by code " $ xcontext->gsign=md5 ($ gkey. $ skey. $ qid. $ key) ".Then, by interactive interface 41, these four parameters of QID, GKEY, SKEY and SIGN1 are sent to client 200.
Then, interactive interface 41 receives the second payment request sent from client, user profile, target object information, the first check value and payment is comprised in this second payment request, the checking algorithm of the second validator 44 by presetting, as md5 algorithm, the user profile comprised in this second payment request and target object information are verified, obtains the second check value.
Here, in the second payment request that client 200 sends except comprising the payment of user's input, these four parameters of QID, GKEY, SKEY and SIGN1 that client 200 receives also are comprised.At this moment, the second validator 44 carries out MD5 computing to the private key that second pays these three parameters of QID, GKEY and SKEY and the system reservation comprised in request, obtains the second check value SIGN2.
Then, the second validator 44 compares the second check value SIGN2 and second obtained whether pay the first check value SIGN1 in asking identical.If the second check value is identical with the first check value, be then verified, allow to supplement with money with this payment.When the second validator 44 determines that the second check value and the first check value are not identical, represent that checking is not passed through, return miscue information by interactive interface 41 to client.
By the second validator 44, the safety of network payment can be guaranteed further, prevent the situation of supplementing mistake with money because the reason such as network failure or assault causes.
In the present embodiment, take destination object as online game for example is described, target object information mainly refers to as this online game provides the server info of service, i.e. Game Zone clothes.Wherein, in an online game, for a certain user provide the Game Zone of service take may not only one, at this moment need to take all Game Zones be associated with this user in subscriber association information all to store.
The system for network payment that the embodiment of the present invention provides, can verify destination object before carrying out network payment, to guarantee that destination object and user profile are associated, thus avoid the situation of the payment failure caused because user's input error causes destination object not associate with user profile.Therefore, adopt the method for network payment that the embodiment of the present invention provides, user need not worry to cause because selecting wrong game information to supplement with money less than account or the situation of filling the errors of account number again, both the vital interests of user had been maintained, alleviate again the cost of system maintenance, contact staff is without a large amount of failed order of reprocessing.
In addition, in the present embodiment, be mainly online game with destination object for example is described, those skilled in the art it is understood that, except online game, other various network applications, such as: pay TV, forum score, Taobao's shopping etc., the system for network payment provided by the invention can be adopted to pay, as long as prestore the subscriber association information about this network application.
Intrinsic not relevant to any certain computer, virtual system or miscellaneous equipment with display at this algorithm provided.Various general-purpose system also can with use based on together with this teaching.According to description above, the structure constructed required by this type systematic is apparent.In addition, the present invention is not also for any certain programmed language.It should be understood that and various programming language can be utilized to realize content of the present invention described here, and the description done language-specific is above to disclose preferred forms of the present invention.
In specification provided herein, describe a large amount of detail.But can understand, embodiments of the invention can be put into practice when not having these details.In some instances, be not shown specifically known method, structure and technology, so that not fuzzy understanding of this description.
Similarly, be to be understood that, in order to simplify the disclosure and to help to understand in each inventive aspect one or more, in the description above to exemplary embodiment of the present invention, each feature of the present invention is grouped together in single embodiment, figure or the description to it sometimes.But, the method for the disclosure should be construed to the following intention of reflection: namely the present invention for required protection requires feature more more than the feature clearly recorded in each claim.Or rather, as claims below reflect, all features of disclosed single embodiment before inventive aspect is to be less than.Therefore, the claims following embodiment are incorporated to this embodiment thus clearly, and wherein each claim itself is as independent embodiment of the present invention.
Those skilled in the art are appreciated that and adaptively can change the module in the equipment in embodiment and they are arranged in one or more equipment different from this embodiment.Module in embodiment or unit or assembly can be combined into a module or unit or assembly, and multiple submodule or subelement or sub-component can be put them in addition.Except at least some in such feature and/or process or unit be mutually repel except, any combination can be adopted to combine all processes of all features disclosed in this specification (comprising adjoint claim, summary and accompanying drawing) and so disclosed any method or equipment or unit.Unless expressly stated otherwise, each feature disclosed in this specification (comprising adjoint claim, summary and accompanying drawing) can by providing identical, alternative features that is equivalent or similar object replaces.
In addition, those skilled in the art can understand, although embodiments more described herein to comprise in other embodiment some included feature instead of further feature, the combination of the feature of different embodiment means and to be within scope of the present invention and to form different embodiments.Such as, in the following claims, the one of any of embodiment required for protection can use with arbitrary compound mode.
All parts embodiment of the present invention with hardware implementing, or can realize with the software module run on one or more processor, or realizes with their combination.It will be understood by those of skill in the art that the some or all functions for the some or all parts in the system of network payment that microprocessor or digital signal processor (DSP) can be used in practice to realize according to the embodiment of the present invention.The present invention can also be embodied as part or all equipment for performing method as described herein or device program (such as, computer program and computer program).Realizing program of the present invention and can store on a computer-readable medium like this, or the form of one or more signal can be had.Such signal can be downloaded from internet website and obtain, or provides on carrier signal, or provides with any other form.
The present invention will be described instead of limit the invention to it should be noted above-described embodiment, and those skilled in the art can design alternative embodiment when not departing from the scope of claims.In the claims, any reference symbol between bracket should be configured to limitations on claims.Word " comprises " not to be got rid of existence and does not arrange element in the claims or step.Word "a" or "an" before being positioned at element is not got rid of and be there is multiple such element.The present invention can by means of including the hardware of some different elements and realizing by means of the computer of suitably programming.In the unit claim listing some devices, several in these devices can be carry out imbody by same hardware branch.Word first, second and third-class use do not represent any order.Can be title by these word explanations.
Claims (8)
1., for a method for network payment, comprising:
Receive and pay request from first of client, described first payment request comprises target object information and user profile, described destination object is suitable for being undertaken operating by user and being suitable for providing on one or more server, and described target object information comprises the server info providing this destination object; And
According to the subscriber association information prestored, the first payment request is verified, and determine whether to allow to carry out network payment according to the result;
Wherein, the user profile that described subscriber association information comprises user and the server list be associated with this user,
And pay request to first and verify and comprise in the server list be associated with this user that whether server info determined in described target object information be included in described subscriber association information;
When passing through the first payment requests verification, by the checking algorithm preset, described user profile and target object information are verified, obtain the first check value, and described user profile, target object information and the first check value are sent to described client;
Receive the second payment request sent from described client, user profile, target object information, the first check value and payment is comprised in described second payment request, by described default checking algorithm, the described user profile comprised in described second payment request and target object information are verified, obtain the second check value;
Relatively the second check value and described first check value, when determining that the second check value is identical with described first check value, being then verified, allowing to supplement with money with described payment.
2. the method for claim 1, also comprises:
When determining that the second check value and the first check value are not identical, return miscue information to described client.
3. method as claimed in claim 1 or 2, described default checking algorithm comprises: md5 algorithm and Digital Signature Algorithm.
4. method as claimed in claim 1 or 2, described user has corresponding user identity in each server be associated, described subscriber association information also comprises the user identity of user on each server be associated, and described payment comprises for described user identity is supplemented with money.
5., for a system for network payment, comprising:
Memory, is suitable for prestoring subscriber association information, the user profile that described subscriber association information comprises user and the server list be associated with this user;
Interactive interface, be suitable for receiving and pay request from first of client, described first payment request comprises target object information and user profile, described destination object is suitable for being undertaken operating by user and being suitable for providing on one or more server, and described target object information comprises the server info providing this destination object;
First validator, be suitable for the subscriber association information according to described memory stores, first payment request is verified, and determine whether to allow to carry out network payment according to the result, wherein, the first validator pays request to first and verifies and comprise in the server list be associated with this user that whether server info determined in described target object information be included in described subscriber association information;
Second validator, be suitable for when described first validator passes through the first payment requests verification, by the checking algorithm preset, described user profile and target object information are verified, obtain the first check value, and described user profile, target object information and the first check value are sent to described client by described interactive interface;
Described interactive interface is also suitable for receiving the second payment request sent from described client, comprises user profile, target object information, the first check value and payment in described second payment request;
Described second validator is also suitable for being verified the described user profile comprised in described second payment request and target object information by described default checking algorithm, obtains the second check value; Relatively the second check value and described first check value, when determining that the second check value is identical with described first check value, being then verified, allowing to supplement with money with described payment.
6. system as claimed in claim 5, described second validator is further adapted for: when determining that the second check value and the first check value are not identical, return miscue information by described interactive interface to described client.
7. the system as described in claim 5 or 6, described default checking algorithm comprises: md5 algorithm and Digital Signature Algorithm.
8. the system as described in claim 5 or 6, described user has corresponding user identity in each server be associated, the subscriber association information stored in described memory also comprises the user identity of user on each server be associated, and described payment comprises for described user identity is supplemented with money.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210518202.6A CN103034942B (en) | 2012-12-05 | 2012-12-05 | For the method and system of network payment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210518202.6A CN103034942B (en) | 2012-12-05 | 2012-12-05 | For the method and system of network payment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN103034942A CN103034942A (en) | 2013-04-10 |
| CN103034942B true CN103034942B (en) | 2015-12-02 |
Family
ID=48021813
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210518202.6A Expired - Fee Related CN103034942B (en) | 2012-12-05 | 2012-12-05 | For the method and system of network payment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103034942B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103034941B (en) * | 2012-12-05 | 2016-08-10 | 北京奇虎科技有限公司 | Method of network payment and system |
| CN105719130B (en) * | 2014-12-02 | 2020-07-31 | 南京中兴软件有限责任公司 | Payment verification method, device and system |
| CN105631659A (en) * | 2015-04-02 | 2016-06-01 | 深圳酷派技术有限公司 | Payment request processing method, payment request processing device and terminal |
| CN106161550A (en) * | 2015-04-15 | 2016-11-23 | 阿里巴巴集团控股有限公司 | A kind of data processing method and platform |
| CN110163764B (en) * | 2019-05-17 | 2021-08-10 | 泰康保险集团股份有限公司 | Premium payment processing method, device and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2002032693A (en) * | 2000-04-28 | 2002-01-31 | Fuji Ginkou:Kk | System/method for settling charge using communication network and computer system to be used in this system |
| CN1818958A (en) * | 2005-12-01 | 2006-08-16 | 厦门好旺角信息技术开发有限公司 | On-line payment method and system for network game virtual property trade |
| CN101044502A (en) * | 2005-10-26 | 2007-09-26 | 皮昌锡 | PC-cafe direct payment system, and a method for the same |
| CN102073953A (en) * | 2009-11-24 | 2011-05-25 | 阿里巴巴集团控股有限公司 | On-line payment method and system |
| CN102487427A (en) * | 2010-12-06 | 2012-06-06 | 中国移动通信集团公司 | Recharging method, unit and system |
-
2012
- 2012-12-05 CN CN201210518202.6A patent/CN103034942B/en not_active Expired - Fee Related
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| JP2002032693A (en) * | 2000-04-28 | 2002-01-31 | Fuji Ginkou:Kk | System/method for settling charge using communication network and computer system to be used in this system |
| CN101044502A (en) * | 2005-10-26 | 2007-09-26 | 皮昌锡 | PC-cafe direct payment system, and a method for the same |
| CN1818958A (en) * | 2005-12-01 | 2006-08-16 | 厦门好旺角信息技术开发有限公司 | On-line payment method and system for network game virtual property trade |
| CN102073953A (en) * | 2009-11-24 | 2011-05-25 | 阿里巴巴集团控股有限公司 | On-line payment method and system |
| CN102487427A (en) * | 2010-12-06 | 2012-06-06 | 中国移动通信集团公司 | Recharging method, unit and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN103034942A (en) | 2013-04-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108369615B (en) | Dynamically updating CAPTCHA challenges | |
| KR101370020B1 (en) | Systems and methods for using a domain-specific security sandbox to facilitate secure transactions | |
| JP6771565B2 (en) | Securing web pages, web apps, and applications | |
| AU2005318933B2 (en) | Authentication device and/or method | |
| US9740843B2 (en) | Method, system, license server for providing a license to a user for accessing a protected content on a user device and software module | |
| CN103034942B (en) | For the method and system of network payment | |
| US8667294B2 (en) | Apparatus and method for preventing falsification of client screen | |
| CN108183907A (en) | A kind of authentication method, server and Verification System | |
| US20130144755A1 (en) | Application licensing authentication | |
| US20090259839A1 (en) | Security authentication system and method | |
| US20160232335A1 (en) | Mechanism for enforcing user-specific and device-specific security constraints in an isolated execution environment on a device | |
| KR20130084671A (en) | Application usage policy enforcement | |
| CN110535807B (en) | Service authentication method, device and medium | |
| JP2007072608A (en) | Device information transmission program, service control program, device information transmission apparatus, service control device, and method for transmitting device information | |
| CN104023032A (en) | Application limited unloading method based on dependable execution environment technology, server and terminal | |
| CN106331042B (en) | Single sign-on method and device for heterogeneous user system | |
| US20150347723A1 (en) | Software application license roaming | |
| CN111865889B (en) | Login request processing method, system, device, electronic equipment and storage medium | |
| CN105939491A (en) | Video playing method and device | |
| US20180349576A1 (en) | Cryptographic mechanisms for software setup using token-based two-factor authentication | |
| CN111342964B (en) | Single sign-on method, device and system | |
| CN110447033A (en) | The certification of limitation is accessed based on client | |
| CN103034941B (en) | Method of network payment and system | |
| US20240039731A1 (en) | Authenticated Modification of Blockchain-Based Data | |
| US20220083630A1 (en) | Protecting an item of software |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20151202 Termination date: 20211205 |