CN103942678A - Mobile payment system and method based on trusted execution environment - Google Patents
Mobile payment system and method based on trusted execution environment Download PDFInfo
- Publication number
- CN103942678A CN103942678A CN201410128901.9A CN201410128901A CN103942678A CN 103942678 A CN103942678 A CN 103942678A CN 201410128901 A CN201410128901 A CN 201410128901A CN 103942678 A CN103942678 A CN 103942678A
- Authority
- CN
- China
- Prior art keywords
- module
- application module
- client application
- trusted
- mobile
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/20—Point-of-sale [POS] network systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3823—Payment protocols; Details thereof insuring higher security of transaction combining multiple encryption tools for a transaction
Landscapes
- Business, Economics & Management (AREA)
- Accounting & Taxation (AREA)
- Engineering & Computer Science (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Cash Registers Or Receiving Machines (AREA)
Abstract
The invention discloses a mobile payment system and method based on a trusted execution environment, and relates to the technical field of mobile payment. According to the mobile payment system, a hardware environment module, a client terminal application module and a trusted application module are connected in a pairwise mode. The mobile payment method includes the steps that a virtual card number of the client terminal application module is transmitted to the trusted application module to be processed, then the virtual card number is returned to the client terminal application module, and afterwards the virtual card number is transmitted to a POS front end for conducting verification and consumption. The mobile payment system and method based on the trusted execution environment are suitable for near field mobile payment equipment, and the security is high.
Description
Technical field
The present invention relates to mobile payment technical field, specifically relate to a kind of mobile-payment system and method based on credible execution environment (TEE, Trusted Execution Environment).
Background technology
Along with mobile Internet and mobile financial fast development, mobile payment scheme emerges in an endless stream, there are near field payment, remote payment, Quick Response Code payment etc., some mobile payment schemes need to be bound bank card, some mobile payment schemes are by SE(Security Element), the safety chip such as SIM, SD completes, what have is completed by mobile phone.For the mobile payment being realized by mobile phone completely at present, such as Mobile banking, be not limited to the restriction of operator or payment carrier, an application program of mobile phone only need to be installed and can realize conveniently payment, but the Malwares such as mobile phone wooden horse, malicious plugins and popular mobile phone A pp are tampered and the phenomenon pretended is day by day serious, mobile phone terminal hardware lacks security protection on the one hand, there are security breaches in system, the integrality of proving program not when general-purpose operating system working procedure, to such an extent as to the program of illegally being distorted can be carried out; System vulnerability makes it easily under attack on the other hand, illegal program can utilize leak to obtain special access right, make program code and data can not get security protection, attacker can prize procedure data update routine flow process, in a word, current mobile payment device lacks a kind of credible execution environment, is difficult to guarantee fund and transaction security, and therefore mobile-phone payment security is lower.
Summary of the invention
For the defect existing in prior art, the object of the present invention is to provide a kind of mobile-payment system and method based on credible execution environment, it is applicable in the mobile payment device of near field, safe.
For reaching above object, the technical scheme that the present invention takes is: a kind of mobile-payment system based on credible execution environment, carry out data transmission by radio-frequency front-end and POS terminal, described mobile-payment system comprises: hardware environment module, for hardware support and data monitoring, transmission are provided; Client application module, for the treatment of paying the non-core transaction data of application; Trusted application module, for the treatment of paying application core transaction data, comprise encrypting module and signature blocks, described encrypting module is used for paying application core encrypted transaction data, and signature blocks is for processing that the payment application core transaction data after encrypting is signed; Wherein, described hardware environment module, client application module, trusted application module connect respectively between two.
On the basis of technique scheme, described client application module, trusted application module are all carried out data transmission with hardware environment module by the Message trigger mechanism in hardware environment module, between described client application module and trusted application module, adopt internal memory sharing mode to carry out data transmission.
On the basis of technique scheme, between described client application module and hardware environment module, be provided with client end AP I module, between described trusted application module and hardware environment module, be provided with inner API module.
On the basis of technique scheme, described client application module is also connected with common UI module, and described trusted application module is also connected with trusted UI module, and described common UI module and trusted UI module are used for providing man-machine interface, show payment transaction information.
Based on a method of mobile payment for credible execution environment, comprise the steps:
S1: user applies for virtual card number, writes in client application module, transfers accounts or supplements with money, and consumption data deposits client application module in;
S2:POS terminal transmission apply names is to client application module;
S3: when the apply names of receiving when client application module mates with the apply names of self, response POS terminal;
S4:POS terminal is sent the instruction of obtaining virtual card number to client application module;
S5: virtual card number is passed to trusted application module by client application module;
S6: the encrypting module of trusted application module is encrypted formation ciphertext to virtual card number, signature blocks, to the processing of signing of described ciphertext, is back to client application module by ciphertext after treatment;
S7: the ciphertext after signature is back to POS terminal by client application module;
S8:POS terminal carries out, after signature verification, ciphertext being decrypted and being reduced into virtual card number, verifies virtual card number, and when virtual card number meets the requirements, POS terminal is sent payment request instruction to client application module;
S9: receive and pay after request instruction, consumption data is reduced, and will reduce result and be back to POS terminal, complete mobile payment process.
On the basis of technique scheme, before described step S3 carries out, mobile-payment system is placed in the field intensity with the POS terminal of consumer applications module, there is the client application module of supporting that near field pays in POS terminal checking mobile-payment system.
On the basis of technique scheme, in described step S5, client application module, by the Message trigger mechanism being provided with in hardware environment module, transfers to trusted application module by virtual card number; Wherein, described client application module triggers the Message in hardware environment module by a client end AP I module, and then this Message is passed to trusted application module by an inner API module.
On the basis of technique scheme, in described step S6, trusted application module is directly passed to client application module by the virtual card number after finishing dealing with by internal memory sharing mode.
On the basis of technique scheme, described trusted application module also connects trusted UI module, client application module also connects common UI module, in the time that trusted application module need to point out user input password or show sensitive information, drive described trusted UI module, in the time that client application module need to point out user input password or show sensitive information, drive described common UI module.
Beneficial effect of the present invention is:
1, the mobile-payment system that the present invention is based on TEE is realized convenient, fast, safe paying without blocking (or claiming virtual card to pay) by client application module and trusted application module, be not limited to the restriction of operator or payment carrier, allow user use and be without fear of an attack from the rear, also accelerate publisher's distribution flow process.
2, the present invention is based in the method for mobile payment of TEE, user writes client application module according to requirement virtual card number of application before each consumption of publisher, after consumption, virtual card number ceases to be in force automatically, before consumption, apply for again next time, guarantee that payment flow cannot copy, allow hacker have no exploits, improve the security paying.
Brief description of the drawings
Fig. 1 the present invention is based on the mobile-payment system of TEE and the schematic diagram of POS terminal interaction;
Fig. 2 is the process flow diagram that the present invention is based on the method for mobile payment of TEE;
Fig. 3 is the distribution process flow diagram that the present invention is based on the mobile payment of TEE.
Reference numeral: hardware environment module 1, client end AP I module 2, client application module 3, common UI module 4, inner API module 5, trusted application module 6, encrypting module 61, signature blocks 62, trusted UI module 7.
Embodiment
Below in conjunction with drawings and Examples, the present invention is described in further detail.
As shown in Figure 1, a kind of mobile-payment system based on credible execution environment, carry out data transmission by radio-frequency front-end and POS terminal, described radio-frequency front-end is the data transmission interface (carrying out the transmission of transaction data by contactless agreement) of mobile-payment system and POS terminal, belong to the hardware components of mobile payment device, described mobile payment device comprises mobile-payment system and radio-frequency front-end.Described mobile-payment system comprises hardware environment module 1, client end AP I module 2, inner API module 5, client application module 3, trusted application module 6, common UI module 4, trusted UI module 7, and described trusted application module 6 also comprises encrypting module 61, signature blocks 62.Described hardware environment module 1 is for providing hardware support and data monitoring, transmission; Described client application module 3 is the entrances that pay application, for the treatment of paying the non-core transaction data of application; Described trusted application module 6, for the treatment of paying application core transaction data, guarantees to pay the safety of application, and in the present embodiment, paying application core transaction data is virtual card number; Described encrypting module 61 is for paying the encryption of application core transaction data; Described signature blocks 62 is for the signature processing of the payment application core transaction data to after encrypting; Described client end AP I module 2 is the processors based between client application module 3 and hardware environment module 1, and described inner API module 5 is the processors based between trusted application module 6 and hardware environment module 1; Described common UI module 4 and trusted UI module 7 are for providing man-machine interface, demonstration payment transaction information and user's input and output.Between described client application module 3 and hardware environment module 1, connect client end AP I module 2, between described trusted application module 6 and hardware environment module 1, connect inner API module 5, between described client application module 3, trusted application module 6 and hardware environment module 1, carry out data transmission by 1 Message trigger mechanism in hardware environment module.Between described client application module 3 and trusted application module 6, carry out data transmission by internal memory sharing mode.Described client application module 3 is also connected with common UI module 4, and described trusted application module 6 is also connected with trusted UI module 7.
Described mobile-payment system divides four layers from the bottom to top, ground floor is hardware environment module 1, the second layer is common OS(Operate System, operating system) and safe OS, deposit respectively client end AP I module 2 and inner API module 5, the 3rd layer is that 6, the four layers of client application module 3 and trusted application modules are common UI module 4 and trusted UI module 7.Described ground floor and the second layer are hardware and the OS providing for supporting upper two layers, and the method treatment scheme that realizes mobile payment concentrates on the 3rd layer.Client end AP I module 2, client application module 3 and common UI module 4 form common execution environment, inner API module 5, trusted application module 6 and trusted UI module 7 form credible execution environment, common execution environment is used for depositing client application, and credible execution environment is used for depositing trusted application.
As shown in Figure 2, a kind of method of mobile payment based on credible execution environment, comprises the steps:
S1: user installation client application and trusted application, apply for virtual card number, and write in client application module 3; Utilize the channel that publisher provides transfer accounts or supplement with money, consumption data deposits client application module 3 in, and client application module 3 possesses consuming capacity, and described virtual card number is whether successfully to consume foundation.
S2: find consumer applications, user is placed in mobile-payment system in the field intensity with the POS terminal of consumer applications, in POS terminal check mobile-payment system, there is the client application module 3 of supporting that near field pays, radio-frequency front-end connects mobile payment and moves the terminal with POS, and the consumer applications module transmission apply names of POS terminal is to client application module 3.
S3: in the time that client application module 3 matches the apply names of receiving and the apply names of self, response POS terminal.
S4:POS terminal is sent the instruction of obtaining virtual card number to client application module 3.
S5: virtual card number is passed to trusted application module 6 by client application module 3, request is encrypted and signature, client application module 3 is the visible exercisable application programs of user, trusted application module 6 is by client application module 3 indirect calls, whether described client application module 3 is associated with trusted application module 6, depend on whether client application module 3 needs to trigger Message mechanism, if without the common application of considering security, client application module 3 can not trigger Message mechanism, can not call trusted application module 6; If there is the application of security consideration, client application module 3 passes to trusted application module 6 by the Message trigger mechanism being provided with in hardware environment module 1 by virtual card number, wherein, first client application module 3 triggers the Message message in hardware environment module 1 by a client end AP I module 2, and then this Message is passed to trusted application module 7 by an inner API module 5.
S6: the encrypting module 61 of trusted application module 6 is encrypted formation ciphertext to virtual card number, the signature blocks 62 of trusted application module 6 is to the processing of signing of described ciphertext, ciphertext after treatment is directly transferred to client application module 3 by internal memory sharing mode, response cyphertext and signature, wherein, the cryptographic algorithm of described encrypting module 61 and signature blocks 62 can, according to different suitable Cipher Strength and the signature intensity selected of application, not only be confined to existing symmetry algorithm and asymmetric arithmetic with signature scheme.
S7: the ciphertext after signature is returned to POS terminal by client application module 3, responds virtual card number.
S8:POS terminal is carried out after sign test signature the identical algorithm of the algorithm of encrypted signature adopting with signature blocks 62, ciphertext is decrypted and is reduced into virtual card number, verify virtual card number, when virtual card number meets the requirements, POS terminal is sent payment request instruction, requesting consumption to client application module 3.
S9: client application module 3 is received and paid after request instruction, reduces the consumption data in client application module 3, and will reduce result and return to POS terminal, consumes successfully, completes mobile payment process.
In described step, whether need to use according to specific method of payment demand definable the common UI module 4 that connects client application module 3, with the trusted UI module 7 that is connected trusted application module 6,7 of described trusted UI modules derive from the driving of trusted application module 6, in the time that trusted application module 6 need to point out user input password or show sensitive information, do not intercepted and captured by cell phone system in order to ensure the password of input and the information of demonstration, drive trusted UI module 7.In like manner, 4 of described common UI modules derive from the driving of client application module 3, in the time that client application module 3 need to point out user input password or show sensitive information, do not intercepted and captured by cell phone system in order to ensure the password of input and the information of demonstration, drive common UI module 4.
As shown in Figure 3, the typical distribution process that the present invention is based on the method for mobile payment of credible execution environment comprises publisher and user, publisher needs defining virtual card number coding rule, definition cryptographic algorithm and signature algorithm, exploitation client application and trusted application are finally to lay POS terminal in conjunction with paying application.User uses mobile-payment system, and client application and trusted application need to be installed, and simultaneously applies for virtual card number to publisher, becomes legal user, in the POS terminal that can lay publisher after applying for successfully, carries out mobile payment consumption.
The present invention is not limited to above-mentioned embodiment, for those skilled in the art, under the premise without departing from the principles of the invention, can also make some improvements and modifications, within these improvements and modifications are also considered as protection scope of the present invention.The content not being described in detail in this instructions belongs to the known prior art of professional and technical personnel in the field.
Claims (9)
1. the mobile-payment system based on credible execution environment, carries out data transmission by radio-frequency front-end and POS terminal, it is characterized in that, described mobile-payment system comprises:
Hardware environment module, for providing hardware support and data monitoring, transmission;
Client application module, for the treatment of paying the non-core transaction data of application;
Trusted application module, for the treatment of paying application core transaction data, comprise encrypting module and signature blocks, described encrypting module is used for paying application core encrypted transaction data, and signature blocks is for processing that the payment application core transaction data after encrypting is signed;
Wherein, described hardware environment module, client application module, trusted application module connect respectively between two.
2. the mobile-payment system based on credible execution environment as claimed in claim 1, it is characterized in that: described client application module, trusted application module are all carried out data transmission with hardware environment module by the Message trigger mechanism in hardware environment module, between described client application module and trusted application module, adopt internal memory sharing mode to carry out data transmission.
3. the mobile-payment system based on credible execution environment as claimed in claim 1, it is characterized in that: between described client application module and hardware environment module, be provided with client end AP I module, between described trusted application module and hardware environment module, be provided with inner API module.
4. the mobile-payment system based on credible execution environment as claimed in claim 1, it is characterized in that: described client application module is also connected with common UI module, described trusted application module is also connected with trusted UI module, and described common UI module and trusted UI module are used for providing man-machine interface, show payment transaction information.
5. based on the method for mobile payment based on credible execution environment claimed in claim 1, it is characterized in that, comprise the steps:
S1: user applies for virtual card number, writes in client application module, transfers accounts or supplements with money, and consumption data deposits client application module in;
S2:POS terminal transmission apply names is to client application module;
S3: when the apply names of receiving when client application module mates with the apply names of self, response POS terminal;
S4:POS terminal is sent the instruction of obtaining virtual card number to client application module;
S5: virtual card number is passed to trusted application module by client application module;
S6: the encrypting module of trusted application module is encrypted formation ciphertext to virtual card number, signature blocks, to the processing of signing of described ciphertext, is back to client application module by ciphertext after treatment;
S7: the ciphertext after signature is back to POS terminal by client application module;
S8:POS terminal carries out, after signature verification, ciphertext being decrypted and being reduced into virtual card number, verifies virtual card number, and when virtual card number meets the requirements, POS terminal is sent payment request instruction to client application module;
S9: receive and pay after request instruction, consumption data is reduced, and will reduce result and be back to POS terminal, complete mobile payment process.
6. the method for mobile payment based on credible execution environment as claimed in claim 5, it is characterized in that: before described step S3 carries out, mobile-payment system is placed in the field intensity with the POS terminal of consumer applications module, there is the client application module of supporting that near field pays in POS terminal checking mobile-payment system.
7. the method for mobile payment based on credible execution environment as claimed in claim 5, is characterized in that: in described step S5, client application module, by the Message trigger mechanism being provided with in hardware environment module, transfers to trusted application module by virtual card number; Wherein, described client application module triggers the Message in hardware environment module by a client end AP I module, and then this Message is passed to trusted application module by an inner API module.
8. the method for mobile payment based on credible execution environment as claimed in claim 5, is characterized in that: in described step S6, trusted application module is directly passed to client application module by the virtual card number after finishing dealing with by internal memory sharing mode.
9. the method for mobile payment based on credible execution environment as claimed in claim 5, it is characterized in that: described trusted application module also connects trusted UI module, client application module also connects common UI module, in the time that trusted application module need to point out user input password or show sensitive information, drive described trusted UI module, in the time that client application module need to point out user input password or show sensitive information, drive described common UI module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410128901.9A CN103942678A (en) | 2014-04-01 | 2014-04-01 | Mobile payment system and method based on trusted execution environment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410128901.9A CN103942678A (en) | 2014-04-01 | 2014-04-01 | Mobile payment system and method based on trusted execution environment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN103942678A true CN103942678A (en) | 2014-07-23 |
Family
ID=51190338
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410128901.9A Pending CN103942678A (en) | 2014-04-01 | 2014-04-01 | Mobile payment system and method based on trusted execution environment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN103942678A (en) |
Cited By (20)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104537537A (en) * | 2014-12-24 | 2015-04-22 | 深圳市小兵智能科技有限公司 | Safety payment method based on Android system |
| CN104636917A (en) * | 2015-02-03 | 2015-05-20 | 武汉天喻信息产业股份有限公司 | Mobile payment system and method with secure payment function |
| CN104700268A (en) * | 2015-03-30 | 2015-06-10 | 中科创达软件股份有限公司 | Mobile payment method and mobile device |
| CN105590201A (en) * | 2015-04-23 | 2016-05-18 | 中国银联股份有限公司 | Mobile payment device and mobile payment system |
| CN105591791A (en) * | 2015-04-10 | 2016-05-18 | 中国银联股份有限公司 | Equipment for exchanging security information |
| CN105812332A (en) * | 2014-12-31 | 2016-07-27 | 北京握奇智能科技有限公司 | Data protection method |
| CN105991287A (en) * | 2015-02-26 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Signature data generation and fingerprint authentication request method and device |
| CN106534047A (en) * | 2015-09-10 | 2017-03-22 | 阿里巴巴集团控股有限公司 | Information transmitting method and apparatus based on Trust application |
| CN106548346A (en) * | 2015-09-16 | 2017-03-29 | 深圳市中兴微电子技术有限公司 | A kind of user authentication method of E-Payment, secure payment client and controller |
| CN106547633A (en) * | 2016-10-19 | 2017-03-29 | 沈阳微可信科技有限公司 | Multi-channel communication systems and electronic equipment |
| CN107197025A (en) * | 2017-06-09 | 2017-09-22 | 武汉果核科技有限公司 | A kind of intelligent POS long-distance management system and method |
| CN107408254A (en) * | 2015-02-27 | 2017-11-28 | 三星电子株式会社 | The electronic installation and its operating method of electronic payment function are provided |
| CN108022097A (en) * | 2016-11-03 | 2018-05-11 | 中国移动通信有限公司研究院 | A kind of method of payment and device based on credible performing environment |
| CN108154361A (en) * | 2017-12-22 | 2018-06-12 | 恒宝股份有限公司 | A kind of mobile terminal embeds the access method and mobile terminal of U-shield |
| WO2018121366A1 (en) * | 2016-12-29 | 2018-07-05 | 中国银联股份有限公司 | Tee-based offline payment method, payment system thereof and mobile terminal |
| CN108781211A (en) * | 2016-03-01 | 2018-11-09 | 高通股份有限公司 | The user interface that TEE for device is executed |
| CN109952751A (en) * | 2016-11-15 | 2019-06-28 | 华为技术有限公司 | A kind of safe processor chips and terminal device |
| US11107047B2 (en) | 2015-02-27 | 2021-08-31 | Samsung Electronics Co., Ltd. | Electronic device providing electronic payment function and operating method thereof |
| US11182769B2 (en) | 2015-02-12 | 2021-11-23 | Samsung Electronics Co., Ltd. | Payment processing method and electronic device supporting the same |
| US11494511B2 (en) * | 2020-09-15 | 2022-11-08 | Alipay (Hangzhou) Information Technology Co., Ltd. | Data processing methods, apparatuses, and devices |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101615236A (en) * | 2009-07-24 | 2009-12-30 | 北京工业大学 | A kind of based on the trusted application environment construction method of forcing access control technology |
| CN101827101A (en) * | 2010-04-20 | 2010-09-08 | 中国人民解放军理工大学指挥自动化学院 | Information asset protection method based on credible isolated operating environment |
| CN103139221A (en) * | 2013-03-07 | 2013-06-05 | 中国科学院软件研究所 | Dependable virtual platform and construction method thereof, data migration method among platforms |
| CN103268550A (en) * | 2013-05-17 | 2013-08-28 | 苏州通付盾信息技术有限公司 | Virtual account convenient application system based on mobile terminal and achieving method thereof |
| US20130346222A1 (en) * | 2012-06-20 | 2013-12-26 | Intuit Inc. | Mobile payment system |
| WO2014043056A1 (en) * | 2012-09-12 | 2014-03-20 | Intel Corporation | Mobile platform with sensor data security |
-
2014
- 2014-04-01 CN CN201410128901.9A patent/CN103942678A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101615236A (en) * | 2009-07-24 | 2009-12-30 | 北京工业大学 | A kind of based on the trusted application environment construction method of forcing access control technology |
| CN101827101A (en) * | 2010-04-20 | 2010-09-08 | 中国人民解放军理工大学指挥自动化学院 | Information asset protection method based on credible isolated operating environment |
| US20130346222A1 (en) * | 2012-06-20 | 2013-12-26 | Intuit Inc. | Mobile payment system |
| WO2014043056A1 (en) * | 2012-09-12 | 2014-03-20 | Intel Corporation | Mobile platform with sensor data security |
| CN103139221A (en) * | 2013-03-07 | 2013-06-05 | 中国科学院软件研究所 | Dependable virtual platform and construction method thereof, data migration method among platforms |
| CN103268550A (en) * | 2013-05-17 | 2013-08-28 | 苏州通付盾信息技术有限公司 | Virtual account convenient application system based on mobile terminal and achieving method thereof |
Non-Patent Citations (1)
| Title |
|---|
| 王熙友: "ARMTrustZone安全隔离技术研究与应用"", 《中国优秀硕士学位论文全文数据库 信息科技辑》 * |
Cited By (34)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104537537A (en) * | 2014-12-24 | 2015-04-22 | 深圳市小兵智能科技有限公司 | Safety payment method based on Android system |
| CN105812332A (en) * | 2014-12-31 | 2016-07-27 | 北京握奇智能科技有限公司 | Data protection method |
| CN104636917A (en) * | 2015-02-03 | 2015-05-20 | 武汉天喻信息产业股份有限公司 | Mobile payment system and method with secure payment function |
| US11182769B2 (en) | 2015-02-12 | 2021-11-23 | Samsung Electronics Co., Ltd. | Payment processing method and electronic device supporting the same |
| CN105991287B (en) * | 2015-02-26 | 2019-07-12 | 阿里巴巴集团控股有限公司 | A kind of generation of signed data and finger print identifying requesting method and device |
| CN105991287A (en) * | 2015-02-26 | 2016-10-05 | 阿里巴巴集团控股有限公司 | Signature data generation and fingerprint authentication request method and device |
| CN107408254B (en) * | 2015-02-27 | 2021-09-28 | 三星电子株式会社 | Electronic device providing electronic payment function and method of operating the same |
| US11129018B2 (en) | 2015-02-27 | 2021-09-21 | Samsung Electronics Co., Ltd. | Payment means operation supporting method and electronic device for supporting the same |
| US11107047B2 (en) | 2015-02-27 | 2021-08-31 | Samsung Electronics Co., Ltd. | Electronic device providing electronic payment function and operating method thereof |
| CN107408254A (en) * | 2015-02-27 | 2017-11-28 | 三星电子株式会社 | The electronic installation and its operating method of electronic payment function are provided |
| CN104700268A (en) * | 2015-03-30 | 2015-06-10 | 中科创达软件股份有限公司 | Mobile payment method and mobile device |
| CN104700268B (en) * | 2015-03-30 | 2018-10-16 | 中科创达软件股份有限公司 | A kind of method of mobile payment and mobile device |
| CN105591791A (en) * | 2015-04-10 | 2016-05-18 | 中国银联股份有限公司 | Equipment for exchanging security information |
| WO2016161968A1 (en) * | 2015-04-10 | 2016-10-13 | 中国银联股份有限公司 | Equipment for security information interaction |
| CN105591791B (en) * | 2015-04-10 | 2019-06-18 | 中国银联股份有限公司 | Equipment for safety information interaction |
| TWI662491B (en) * | 2015-04-10 | 2019-06-11 | 大陸商中國銀聯股份有限公司 | Device for security information interaction |
| WO2016169430A1 (en) * | 2015-04-23 | 2016-10-27 | 中国银联股份有限公司 | Mobile payment device and mobile payment system |
| CN105590201B (en) * | 2015-04-23 | 2019-05-10 | 中国银联股份有限公司 | Mobile payment device and mobile-payment system |
| CN105590201A (en) * | 2015-04-23 | 2016-05-18 | 中国银联股份有限公司 | Mobile payment device and mobile payment system |
| CN106534047A (en) * | 2015-09-10 | 2017-03-22 | 阿里巴巴集团控股有限公司 | Information transmitting method and apparatus based on Trust application |
| CN106534047B (en) * | 2015-09-10 | 2019-06-21 | 阿里巴巴集团控股有限公司 | A kind of information transferring method and device based on Trust application |
| CN106548346A (en) * | 2015-09-16 | 2017-03-29 | 深圳市中兴微电子技术有限公司 | A kind of user authentication method of E-Payment, secure payment client and controller |
| US10929526B2 (en) | 2016-03-01 | 2021-02-23 | Qualcomm Incorporated | User interface for tee execution of a device |
| CN108781211A (en) * | 2016-03-01 | 2018-11-09 | 高通股份有限公司 | The user interface that TEE for device is executed |
| CN106547633B (en) * | 2016-10-19 | 2019-12-31 | 沈阳微可信科技有限公司 | Multi-channel communication system and electronic device |
| CN106547633A (en) * | 2016-10-19 | 2017-03-29 | 沈阳微可信科技有限公司 | Multi-channel communication systems and electronic equipment |
| CN108022097A (en) * | 2016-11-03 | 2018-05-11 | 中国移动通信有限公司研究院 | A kind of method of payment and device based on credible performing environment |
| CN109952751B (en) * | 2016-11-15 | 2020-11-17 | 华为技术有限公司 | Safe processor chip and terminal equipment |
| CN109952751A (en) * | 2016-11-15 | 2019-06-28 | 华为技术有限公司 | A kind of safe processor chips and terminal device |
| US11126753B2 (en) | 2016-11-15 | 2021-09-21 | Huawei Technologies Co., Ltd. | Secure processor chip and terminal device |
| WO2018121366A1 (en) * | 2016-12-29 | 2018-07-05 | 中国银联股份有限公司 | Tee-based offline payment method, payment system thereof and mobile terminal |
| CN107197025A (en) * | 2017-06-09 | 2017-09-22 | 武汉果核科技有限公司 | A kind of intelligent POS long-distance management system and method |
| CN108154361A (en) * | 2017-12-22 | 2018-06-12 | 恒宝股份有限公司 | A kind of mobile terminal embeds the access method and mobile terminal of U-shield |
| US11494511B2 (en) * | 2020-09-15 | 2022-11-08 | Alipay (Hangzhou) Information Technology Co., Ltd. | Data processing methods, apparatuses, and devices |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103942678A (en) | Mobile payment system and method based on trusted execution environment | |
| US11157912B2 (en) | Method and system for enhancing the security of a transaction | |
| KR102325361B1 (en) | Method and system for secure transmission of remote notification service messages to mobile devices without secure elements | |
| US9961081B2 (en) | System for transaction authentication | |
| CN111213171A (en) | Method and apparatus for secure offline payment | |
| CN104050567A (en) | Data interaction method under off-line mode, terminal and server | |
| CN104899741B (en) | A kind of on-line payment method and on-line payment system based on IC bank card | |
| CN104462949A (en) | Method and device for calling plug-in | |
| CN101221641A (en) | On-line trading method and its safety affirmation equipment | |
| CN106254323A (en) | The exchange method of a kind of TA and SE, TA, SE and TSM platform | |
| CN101739622A (en) | Trusted payment computer system | |
| CN103761806B (en) | Financial security system used for mobile terminal | |
| CN104636917A (en) | Mobile payment system and method with secure payment function | |
| WO2015096645A1 (en) | Payment terminal, payment background and method of payment using virtual card | |
| Zhang et al. | Trusttokenf: A generic security framework for mobile two-factor authentication using trustzone | |
| CN103236011A (en) | Electronic currency transaction monitoring method | |
| EP3841731B1 (en) | Securing sensitive user data across hardware and software components having unbalanced trust levels | |
| CN104103132A (en) | Mobile uKey [USB (universal serial bus) Key] and card-less cash withdrawal System and mobile uKey and card-less cash withdrawal method | |
| CN104102934A (en) | Portable IC card read-write device, system and method | |
| CN110401526A (en) | Customer information safety interacting method, terminal and server based on small routine | |
| CN102609842A (en) | Payment cipher device based on hardware signature equipment, and application method of payment cipher device | |
| CN105635103A (en) | Network authentication method using card device | |
| US20140143147A1 (en) | Transaction fee negotiation for currency remittance | |
| CN106534047A (en) | Information transmitting method and apparatus based on Trust application | |
| Mehr Nezhad et al. | Security Analysis of Mobile Point-of-Sale Terminals |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20140723 |