CN104504565A - Mobile payment system and method based on bank virtual card number - Google Patents

Mobile payment system and method based on bank virtual card number Download PDF

Info

Publication number
CN104504565A
CN104504565A CN201510022992.2A CN201510022992A CN104504565A CN 104504565 A CN104504565 A CN 104504565A CN 201510022992 A CN201510022992 A CN 201510022992A CN 104504565 A CN104504565 A CN 104504565A
Authority
CN
China
Prior art keywords
server
payment
bank
card number
request
Prior art date
Application number
CN201510022992.2A
Other languages
Chinese (zh)
Inventor
许逸宁
欧如锋
胡炜
Original Assignee
上海浩恺信息科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 上海浩恺信息科技有限公司 filed Critical 上海浩恺信息科技有限公司
Priority to CN201510022992.2A priority Critical patent/CN104504565A/en
Publication of CN104504565A publication Critical patent/CN104504565A/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • G06Q20/202Interconnection or interaction of plural electronic cash registers [ECR] or to host computer, e.g. network details, transfer of information from host to ECR or from ECR to ECR
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3221Access to banking information through M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction

Abstract

The invention relates to a mobile payment system based on a bank virtual card number. The mobile payment system based on the bank virtual card number comprises a payment device, a card issuing bank server, a third party payment server, a POS (machine point of sale machine), an acquiring bank server, a card organization server, a commercial tenant server and a BVA SP server, wherein the payment device generates the bank virtual card number used as a primary account number of a payment request or a transfer request, a payment request is sent to the card issuing bank server through transfer transmission of the POS, the acquiring bank server and the card organization server or a transfer request is sent to the card issuing bank server through transfer transmission of the BVA SP server, the card issuing bank server completes transfer or payment, and when the payment device uses a third party payment server for the payment, the card issuing bank server is communicated with the third party payment server through the transfer transmission of the BVA SP server, and completes the payment or the transfer after the payment request or the transfer request is verified. Compared with the prior art, the mobile payment system based on the bank virtual card number has the advantages of improving mobile payment safety, being strong in compatibility, facilitating operation of a user and the like.

Description

A kind of mobile-payment system based on the virtual card number of bank and method

Technical field

The present invention relates to a kind of system and method for mobile payment, especially relate to a kind of mobile-payment system based on the virtual card number of bank and method.

Background technology

Existing method of mobile payment is divided into remote payment and short range to pay from payment scene, the account balance that the more remote payment of the current use of user mainly contains Alipay, Unionpay and other Third-party payment companies to be provided pays or the modes of payments such as bank's card number payment, short range pays and mainly contains the point-of-sale terminal (Point Of Sale, POS) of Unionpay contact is swiped the card, (Quick Pass) is paid in contactless sudden strain of a muscle, the barcode scanning of Alipay is paid and sound wave such as to pay at the modes of payments.

Compare and develop comparatively stable remote payment, mobile payment development in current near field is very fast, and the Apple Pay function that especially in September, 2014, apple was issued, has only issued 2 wheat harvesting period numbers of users and just breached 3,000,000.And in China, the clear ahead status occupying short range payment technical field is paid in the contactless sudden strain of a muscle of Unionpay, dodge through transformation support the POS paid and exceeded 3,600,000.Apple Pay and sudden strain of a muscle are paid and are all belonged to near-field communication (Near FieldCommunication, NFC) technology, also known as wireless near field communication, be a kind of short-range high frequency wireless communication technology, allow between electronic equipment, to carry out contactless Point-to-Point Data Transmission and exchange data.This technology is by contact-free formula radio-frequency (RF) identification (Radio Frequency Identification, RFID) develop, jointly developed by Philips Semiconductors (existing grace intelligence Pu semiconductor), Nokia and Sony, its basis is RFID and interconnection technique.Compared with using more Bluetooth technology at present with us, NFC uses convenient, and cost is lower, and energy consumption is lower, and the speed connected is also faster, only needs for 0.1 second, is therefore also widely used gradually in mobile phone, gate inhibition, all-purpose card, bank card field.

But prevailing along with hacker and fishing website, existing remote payment and short range pay all exists larger potential safety hazard, the particularly leakage of bank's card number and Third-party payment account, bring great security risk can to user's fund.

And no matter be that the user's identification marking all only supporting own standard is paid in Apple Pay or sudden strain of a muscle, the 16-19 position bank card number only supporting to meet Unionpay's requirement is paid as dodged, cannot the Third-party payment account of compatible non-banking system, thus cause Third-party payment account can usable range very narrow and small, cannot use short range payment technical field is universal.

Summary of the invention

Object of the present invention is exactly security in order to solve mobile payment and compatibility issue, and provides a kind of mobile-payment system based on the virtual card number of bank and method, compatible non-banking system Third-party payment account can carry out the mobile payment operation of high security.

Object of the present invention can be achieved through the following technical solutions:

A kind of mobile-payment system based on the virtual card number of bank, comprise payment devices, issuers server, Third-party payment server, POS, receive single file server, card organization server, merchant server and BVA SP (BankVirtual Account Service Provider, the virtual account service provider of bank) server, described payment devices connects POS respectively, issuers server, merchant server and BVA SP server, described POS connects receipts single file server, described receipts single file server Connection Card organization server, described card organization server connects issuers server, described issuers server connects BVA SP server, described BVA SP server connects Third-party payment server and merchant server respectively,

Payment devices directly accepts the payment request that POS short range is initiated, or the payment request of the long-range initiation of merchant server is accepted through BVA SP server, or directly request deposited by long-range circle of initiating to BVA SP server, payment devices generates and is used for as paying primary account number (the Primary Account Number asking or enclose request of depositing, PAN) the virtual card number of bank, POS is passed through in payment request, receive single file server, the request of depositing of the transfer transmission of card organization server or circle sends to issuers server by the transfer transmission of BVA SP server, payment devices is fed back to after issuers server process, complete to pay or enclose and deposit,

When payment devices use Third-party payment account carry out paying or enclose deposit time, issuers server passes through transfer transmission and the Third-party payment server communication of BVASP server, after request is deposited in validation of payment request or circle, feed back to payment devices, complete to pay or enclose and deposit.

Described payment devices comprises:

For controlling the CPU of other modules and computation key;

For the NFC module communicated with POS;

For the embedded-type security element of storage key data;

For the wireless communication module with BVA SP server radio communication.

Described issuers server comprises:

For controlling the CPU of other modules and computation key;

For the key database of storage key data;

For storing the payment data storehouse of payment data;

For the communication module communicated with BVA SP server and card organization server by network special line;

Described Third-party payment server comprises:

For controlling the CPU of other modules;

For storing the payment data storehouse of payment data;

For the communication module by network special line and BVA SP server communication.

Described BVA SP server, POS, receipts single file server, card organization server and merchant server include:

For controlling the CPU of other modules;

For storing the interim data storehouse of interim data;

For setting up the communication module of network special line communication;

Described POS also comprises the NFC module for communicating with payment devices.

Realize the method for mobile payment based on the virtual card number of bank according to above-mentioned system, comprise the following steps:

Step S1: payment devices binds the true card number of at least one Zhang Yinhang, and obtain the key based on the true card number of this bank by this mode that bank's cabinet dough figurine work stores or download online stores, continue other Third-party payment accounts of binding according to the certification binding flow process of Third-party payment server simultaneously, when binding completes, generate the sequence number of binding card number or account in order, sequence number is for identifying this binding card number or account;

Step S2: payment devices directly accepts the payment request that POS short range is initiated, or the payment request of the long-range initiation of merchant server is accepted through BVA SP server, or directly request deposited by long-range circle of initiating to BVA SP server, payment devices is encrypted the true card number of bank, the virtual card number of bank that this payment of stochastic generation or circle are deposited, and to be sent to issuers server by the short range modes of payments or remote payment mode virtual for this bank card number is deposited request as the payment request of primary account number or circle, wherein, the short range modes of payments comprises short range on-line payment mode and short range offline electronic payment mode, remote payment mode comprises the remote online modes of payments and electronic cash payment mode deposited by long-range circle,

Step S3: issuers server accepts to pay request or enclose to deposit request, the true card number of rear acquisition bank is decrypted to the virtual card number of bank, judge that this pays or circle deposits whether use the true card number of the bank of this issuers server, if not, perform step S4, if so, issuers server generates to pay or enclose and deposits requests verification result, performs step S5;

Step S4: issuers server will pay request forward to corresponding Third-party payment server by BVA SP server, Third-party payment server generates to pay or enclose deposits requests verification result, and through BVA SP server forwards to issuers server;

Step S5: payment or circle are deposited requests verification result feedback to payment devices by issuers server, completes this payment or circle is deposited.

Described short range on-line payment mode comprises the following steps:

101:POS initiates to pay request, and payment devices generates this virtual card number of bank paid, and responded the payment request of POS initiation using the virtual card number of this bank as primary account number by short-haul connections mode, short-haul connections mode includes but not limited to NFC;

102:POS will pay request forward to receiving single file server by network special line;

103: receive single file server and will pay request forward to card organization server by network special line;

104: card organization server will pay request forward to corresponding issuers server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 105, if, then issuers server carries out validation verification to payment request, and performs step 109;

105: issuers server by paying request, the user ID of binding with the true card number of this bank and sequence number be transmitted to BVA SP server;

106:BVA SP server will pay request forward to corresponding Third-party payment server according to user ID and sequence number;

107: Third-party payment server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server;

108:BVA SP server will pay requests verification result feedback to issuers server;

109: issuers server will pay requests verification result feedback to card organization server;

110: card organization server will pay requests verification result feedback to receiving single file server;

111: receive single file server and will pay requests verification result feedback to POS;

112:POS will pay requests verification result feedback to payment devices, complete this and pay.

Described short range offline electronic payment mode comprises the following steps:

201:POS initiates to pay request, and payment devices generates this virtual card number of bank paid, and is responded the payment request of POS initiation using the virtual card number of this bank as primary account number by short-haul connections mode, and short-haul connections mode includes but not limited to NFC;

202:POS will pay requests verification result feedback to payment devices, complete this and pay;

All payment request batches in Offtime section are transmitted to receipts single file server by network special line is asynchronous by 203:POS;

204: receive single file server by special line asynchronous by the payment request forward of batch to card organization server;

205: card organization server will pay request forward to corresponding issuers server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 206, if, then issuers server carries out validation verification to payment request, and performs step 210;

206: issuers server by paying request, the user ID of binding with the true card number of this bank and sequence number be transmitted to BVA SP server;

207:BVA SP server will pay request forward to corresponding Third-party payment server according to user ID and sequence number;

208: Third-party payment server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server;

209:BVA SP server will pay requests verification result feedback to issuers server;

210: issuers server will pay requests verification result feedback to card organization server;

211: card organization server will pay requests verification result feedback to receiving single file server;

212: receive single file server and will pay requests verification result feedback to POS.

Described long-range circle is deposited electronic cash payment mode and is comprised the following steps:

301: payment devices generates this virtual card number of bank paid, and deposit request by communication using the virtual card number of this bank as primary account number to BVA SP server initiation circle;

Circle is deposited request forward to corresponding credit card issuer according to the BIN in the virtual card number of bank by 302:BVA SP server, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 303, if, then issuers server carries out validation verification to the circle request of depositing, and performs step 307;

303: the user ID of binding with this bank true card number and sequence number are transmitted to BVASP server by issuers server;

Circle is deposited request forward to corresponding Third-party payment server according to user ID and sequence number by 304:BVA SP server;

305: Third-party payment server carries out validation verification to the circle request of depositing, and circle is deposited requests verification result feedback to BVA SP server;

Circle is deposited requests verification result feedback to issuers server by 306:BVA SP server;

307: circle is deposited requests verification result feedback to payment devices by issuers server, complete this circle and deposit.

The described remote online modes of payments comprises the following steps:

401: user initiates to pay request to BVA SP server at the payment platform of merchant server;

402:BVP SP server is sent to payment devices by communication;

403: payment devices generates this virtual card number of bank paid, and is responded the payment request initiated by merchant server to BVA SP server using the virtual card number of this bank as primary account number by communication;

404:BVA SP server will pay request forward to corresponding issuers server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 405, if, then issuers server carries out validation verification to payment request, and performs step 409;

405: the user ID of binding with this bank true card number and sequence number are transmitted to BVASP server by issuers server;

406:BVA SP server will pay request forward to corresponding Third-party payment server according to user ID and sequence number;

407: Third-party payment server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server;

408:BVA SP server will pay requests verification result feedback to issuers server;

409: issuers server will pay requests verification result feedback to merchant server;

410: merchant server will pay requests verification result feedback to payment devices, complete this and pay.

The true card number of described bank is 16, is designated as A 1a 2a 3a 4a 5a 6a 7a 8a 9a 10a 11a 12a 13a 14a 15a 16, wherein:

A 1a 2a 3a 4a 5a 6be the BIN field of 6, be designated as B;

A 7be the identification code field of 1, be designated as S;

A 8be the fixed value of 1, be designated as G;

A 9a 10a 11a 12a 13a 14a 15be client's serial number field of 7, be designated as L;

A 16for being calculated the check code field of 1 by Luhn algorithm by the card number of 15 before this by Unionpay's standard, be designated as J;

The virtual card number of described bank is 19, is designated as C 1c 2c 3c 4c 5c 6c 7c 8c 9c 10c 11c 12c 13c 14c 15c 16c 17c 18c 19, wherein:

C 1c 2c 3c 4c 5c 6be the BIN field of 6, be designated as B;

C 7be the identification code field of 1, be designated as S;

C 8c 9c 10c 11c 12c 13c 14c 15c 16c 17c 18be the encryption client serial number field of 11, be designated as H;

C 19be the check code field of 1, be designated as J';

Described payment devices and issuers server are equipped with the key for encrypting, deciphering, and key comprises private key T 1with PKI T 2, T 1comprise the unduplicated n of stochastic generation 1individual private key value P 1, 0<n 1<10000, to n 1individual private key value P 1carry out order label, obtain private key index sequence number Z, PKI T 2comprise 1 public-key cryptographic keys value P 2with by n 2the public key verifications code P of individual 2 3, 0<n 2<99, to n 2individual public key verifications code P 3carry out order label, obtain PKI index sequence number W;

The step of described payment devices encryption comprises:

A: each payment or circle are deposited, payment devices generates the value of R and X that this uses, the value of R is 2 bit digital random numbers, 0<R<99, the value of X is for indicating the sequence number of 2 that this bank's card number used or Third-party payment account are bound in payment devices, 0<X<99;

B:W gets the identical numerical value of R, from T 2the corresponding order of middle acquisition is the P of W 3, by P 3, X order arrangement, obtain the private key index sequence number Z of 4;

C: according to Z from T 1the corresponding order of middle acquisition is the P of Z 1, first judge this P 1whether be labeled as and used, if so, then returned steps A and again get R value, if not, then use P 1l is encrypted, obtains the L' of 7, simultaneously by P that in payment devices, this uses 1be labeled as and use;

D: according to P 2w+X+L' is encrypted, obtains the encryption client serial number H of 11;

E: obtain J' after being calculated by B+S+H by Luhn algorithm, obtain the virtual card number of bank of 19 being used for this, i.e. B+S+H+J', completes encryption;

The step of described issuers server deciphering comprises:

A: after issuers server receives the virtual card number of bank, whether first legal by Luhn algorithm verification J', if so, then perform step b, if not, then feedback pays request failure information;

B: use P 2deciphering H, thus obtain W, X and L';

C: from T 2the corresponding order of middle acquisition is the P of W 3, by P 3, X order arrangement, obtain the private key index sequence number Z of 4;

D: according to Z from T 1the corresponding order of middle acquisition is the P of Z 1, and to P 1legitimacy verify, namely judge P 1no being marked as uses, if not, then uses P 1l' is decrypted, obtains 7 bit digital L, with this P of tense marker 1for using, if so, then feedback pays request failure information;

E:G is the self-defined fixed value of issuers server, and obtain J after being calculated by B+S+G+L by Luhn algorithm, obtain the true card number of bank of 16 being used for this, i.e. B+S+G+L+J, completes deciphering.

Compared with prior art, the present invention has the following advantages:

1) by using asymmetric double re-encryption mode all to generate the virtual card number of unduplicated bank in each transaction, thus avoiding the risk of bank's card number and the leakage of Third-party payment account, significantly improve the security of mobile payment.The virtual card number of bank, in ciphering process, uses P 1after being encrypted L, by payment devices, this pays the P used 1be labeled as and use, simultaneously in decrypting process, to P 1legitimacy verify, if legal, by corresponding for issuers server P after deciphering 1be labeled as and use, thus realize generating the virtual card number of unduplicated bank.

2) generate meet the virtual card number of bank of Unionpay's specification by paying request for the short range of Third-party payment account, thus make Third-party payment account can pay function by the sudden strain of a muscle of POS to carry out mobile payment.Under the prerequisite not transforming POS, greatly improve the compatibility of dodging and paying non-banking system Third-party payment account.

3) by depositing the support of request to the long-range circle of Third-party payment account, make the Third-party payment account of user can carry out all kinds of quick payment under off-line state, improve the experience of user and add the payment scene of Third-party payment account.

4) multiple bank cards and multiple Third-party payment account can be bound by a payment devices, solve the problem that user need carry with multiple bank cards and multiple payment devices, improve the convenience of user.

5) the virtual account service provider server of bank is added in mobile payment link, the situation not using the true card number of the bank of this issuers server is deposited for payment or circle, establish Third-party payment company to communicate with between issuers server, can transmit and virtual for this bank card number is deposited request as the payment request of primary account number or circle, achieve the function of Third-party payment in mobile payment.

Accompanying drawing explanation

Fig. 1 is the structured flowchart of present system;

Fig. 2 is the process flow diagram of the inventive method;

Fig. 3 is the schematic diagram of short range on-line payment mode in the present embodiment;

Fig. 4 is the schematic diagram of short range offline electronic payment mode in the present embodiment;

Fig. 5 is the schematic diagram that electronic cash payment mode deposited by the present embodiment medium-long range circle;

Fig. 6 is the schematic diagram of the present embodiment medium-long range on-line payment mode.

In figure: 1, payment devices, 2, issuers server, 3, Third-party payment server, 4, POS, 5, receive single file server, 6, card organization server, 7, merchant server, 8, BVA SP server, 9, NFC module, 10, embedded-type security element, 11, communication module, 12, interim data storehouse, 13, key database, 14, payment data storehouse, 15, CPU.

Embodiment

Below in conjunction with the drawings and specific embodiments, the present invention is described in detail.The present embodiment is implemented premised on technical solution of the present invention, give detailed embodiment and concrete operating process, but protection scope of the present invention is not limited to following embodiment.

As shown in Figure 1, a kind of mobile-payment system based on the virtual card number of bank comprises payment devices 1, issuers server 2, Third-party payment server 3, POS4, receive single file server 5, card organization server 6, merchant server 7 and BVA SP server 8, payment devices 1 connects POS4 respectively, issuers server 2, merchant server 7 and BVA SP server 8, POS4 connects receipts single file server 5, receive single file server 5 Connection Card organization server 6, card organization server 6 connects issuers server 2, issuers server 2 connects BVA SP server 8, BVA SP server 8 connects Third-party payment server 3 and merchant server 7 respectively.Wherein, payment devices 1 includes but not limited to mobile phone, the portable electronic equipment such as panel computer and intelligent watch, issuers server 2 comprises industrial and commercial bank, the commercial bank such as Construction Bank and Bank of Communications, Third-party payment server 3 comprises the Third-party payment company with relevant payment licence plate, as Alipay, logical and the Yi Bao of finance etc., receive single file server 5 and comprise industrial and commercial bank, the commercial bank such as Construction Bank and Bank of Communications, and it is easily precious, pay to that it is inferior has the Third-party payment company of receiving single qualification, card tissue and clearing organization, as China Unionpay, VISA and MASTER etc., merchant server 7 refers to as Taobao, take the merchant server 7 that there are on-line payment demand in journey and U.S. group etc.

Payment devices 1 directly accepts the payment request that POS4 is initiated by short-haul connections mode (including but not limited to NFC), or the payment request of the long-range initiation of merchant server 7 is accepted through BVA SP server 8, or directly long-rangely initiate circle to BVA SP server 8 and deposit request, payment devices 1 generates and is used for as paying request or enclosing the virtual card number of bank depositing the primary account number of request, POS4 is passed through in payment request, receive single file server 5, the request of depositing of the transfer transmission of card organization server 6 or circle sends to issuers server 2 by the transfer transmission of BVA SP server 8, issuers server 2 feeds back to payment devices 1 after processing, complete to pay or enclose and deposit,

When payment devices 1 use Third-party payment account (comprising the true card number of other banks of non-credit card issuer and the payment accounts of non-banking system Third-party payment company) carry out paying or enclose deposit time, then issuers server 2 is communicated with Third-party payment server 3 by the transfer transmission of BVA SP server 8, after request is deposited in validation of payment request or circle, feed back to payment devices 1, complete to pay or enclose and deposit.

Payment devices 1 can be the terminal device that mobile phone, flat board, intelligent watch and Intelligent bracelet etc. support mobile payment, as the user's link in mobile-payment system, mainly comprises with lower module:

For controlling the CPU15 of other modules and computation key;

For the NFC module 9 communicated with POS4;

For the embedded-type security element 10 (Embedded Secure Equipment, eSE) of storage key data;

For the wireless communication module 11 with BVA SP server 8 radio communication.

Issuers server 2, as the encryption and decryption in mobile-payment system and payment (circle is deposited) requests verification link, comprising:

For controlling the CPU15 of other modules and computation key;

For the key database 13 of storage key data;

For storing the payment data storehouse 14 of payment data;

For the communication module 11 communicated with BVA SP server 8 and card organization server 6 by network special line;

Third-party payment server 3, as payment (circle is deposited) requests verification link, comprising:

For controlling the CPU15 of other modules;

For storing the payment data storehouse 14 of payment data;

For the communication module 11 communicated with BVA SP server 8 by network special line.

BVA SP server 8, POS4, receipts single file server 5 and card organization server 6 are as swivel link in mobile-payment system, and it includes:

For controlling the CPU15 of other modules;

For storing the interim data storehouse 12 of interim data;

For setting up the communication module 11 of network special line communication.

POS4 also comprises the NFC module 9 for communicating with payment devices 1.

For the mobile-payment system that NFC mobile phone (i.e. payment devices 1), China Merchants Bank's server (i.e. issuers server 2), Alipay server (i.e. Third-party payment server 3), POS4, industrial and commercial bank's server (namely receiving single file server 5), Unionpay's server (i.e. card organization server 6), Taobao's server (i.e. merchant server 7) and BVA SP server 8 are formed, as shown in Figure 2, the method for mobile payment realized in the present embodiment system based on the virtual card number of bank comprises the following steps:

The true card number of at least one Zhang Yinhang of step S1:NFC handset binding, and obtain the key based on the true card number of this bank by this mode that bank's cabinet dough figurine work stores or download online stores, simultaneously according to the certification binding flow process binding Alipay account of Alipay server, when binding completes, generate the sequence number of binding card number or account in order, in order to identify this binding card number or account;

Step S2:NFC mobile phone directly accepts the payment request that POS4 is initiated by short-haul connections mode (including but not limited to NFC), or the payment request of Taobao's Server remote initiation is accepted through BVA SP server 8, or directly long-rangely initiate circle to BVA SP server 8 and deposit request, NFC mobile phone is encrypted the true card number of bank, the virtual card number of bank that this payment of stochastic generation or circle are deposited, and to be sent to China Merchants Bank's server by the short range modes of payments or remote payment mode virtual for this bank card number is deposited request as the payment request of primary account number or circle, wherein, the short range modes of payments comprises short range on-line payment mode and short range offline electronic payment mode, remote payment mode comprises long-range circle and deposits electronic cash payment mode and the remote online modes of payments,

Step S3: China Merchants Bank's server accepts to pay request or enclose to deposit request, the true card number of rear acquisition bank is decrypted to the virtual card number of bank, judge that this pays or circle deposits whether use the true card number of the bank of this China Merchants Bank's server, if not, perform step S4, if so, China Merchants Bank's server generates to pay or enclose and deposits requests verification result, performs step S5;

Step S4: China Merchants Bank's server will pay request forward to corresponding Alipay server by BVA SP server 8, Alipay server generates to pay or enclose deposits requests verification result, and is transmitted to China Merchants Bank's server through BVA SP server 8;

Step S5: payment or circle are deposited requests verification result feedback to NFC mobile phone by China Merchants Bank's server, completes this payment or circle is deposited.

Wherein, 16 true card numbers of bank are 6226099112345670, wherein:

622609 is the BIN field of 6, is designated as B;

9 is the identification code field of 1, is designated as S;

1 is the fixed value of 1, is designated as G;

1234567 is client's serial number field of 7, is designated as L;

0, for passing through by the card number of 15 before this check code field that Luhn algorithm (Luhn algorithm) calculates 1 by Unionpay's standard, is designated as J;

The virtual card number of bank is 19, is designated as C 1c 2c 3c 4c 5c 6c 7c 8c 9c 10c 11c 12c 13c 14c 15c 16c 17c 18c 19, wherein:

C 1c 2c 3c 4c 5c 6be the BIN field of 6, be designated as B;

C 7be the identification code field of 1, be designated as S;

C 8c 9c 10c 11c 12c 13c 14c 15c 16c 17c 18be the encryption client serial number field of 11, be designated as H;

C 19be the check code field of 1, be designated as J';

NFC mobile phone and China Merchants Bank's server are equipped with the key for encrypting, deciphering, and key comprises private key T 1with PKI T 2, T 1comprise the unduplicated n of stochastic generation 1individual private key value P 1, 0<n 1<10000, to n 1individual private key value P 1carry out order label, obtain private key index sequence number Z, PKI T 2comprise 1 public-key cryptographic keys value P 2with by n 2the public key verifications code P of individual 2 3, 0<n 2<99, to n 2individual public key verifications code P 3carry out order label, obtain PKI index sequence number W;

The step of NFC mobile phone encryption comprises:

A: each payment or circle are deposited, NFC mobile phone generates this and pays or enclose the value of depositing used R and X, example, and R is 16, X is 02;

It is 16 that B:W gets the identical numerical value of R, from T 2the corresponding order of middle acquisition is the P of the 16th 3, P 3be 57, by P 3, the arrangement of X order, obtain the private key index sequence number Z of 4, namely 5702;

C: according to 5702 from T 1the middle P obtaining correspondence 1, first judge this P 1whether be labeled as and used, if so, then returned steps A and again get R value, if not, then use P 1be encrypted L, obtain the L' of 7, by NFC mobile phone, this pays the P used simultaneously 1be labeled as and use, routine L' is 7654321;

D: according to P 2be encrypted W+X+L', obtain the encryption client serial number H of 11, routine H is 12345654321;

E: obtain J', namely 1 after being calculated by B+S+H by Luhn algorithm, thus complete acquisition is used for the virtual card number of the bank (B+S+H+J') of 19 that this pays, namely 622609+9+12345654321+1 completes encryption;

The step of China Merchants Bank's server deciphering comprises:

A: after China Merchants Bank's server receives the virtual card number of bank (6226099123456543211), whether first legal by Luhn algorithm verification J', if so, then perform step b, if not, then feedback pays request failure information;

B: use P 2deciphering H, thus obtain W, X and L', be respectively 16,02 and 7654321;

C: from T 2the corresponding order of middle acquisition is the P of W 3, by P 3, the arrangement of X order, obtain the private key index sequence number Z of 4, namely 5702;

D: according to Z from T 1the corresponding order of middle acquisition is the P of Z 1, and to P 1legitimacy verify, namely judge P 1no being marked as uses, if not, then uses P 1l' is decrypted, thus obtains 7 bit digital L, namely 1234567, with this P of tense marker 1for using, if so, then feedback pays request failure information;

E:G is the self-defined fixed value of China Merchants Bank's server, obtain J, namely 0 after being calculated by B+S+G+L by Luhn algorithm, thus obtain the true card number of the bank (B+S+G+L+J) of 16 being used for this and paying, namely 6226099112345670, so far complete deciphering.

Below four kinds of modes of payments are specifically described:

When user use NFC mobile phone pass through short-haul connections mode (including but not limited to NFC) pay at POS4 place of trade company time, if when electronic cash balances is not enough or this trade company's mandatory requirement networking online verification pays legitimacy, then the mode of online verification (namely POS4 needs networking certification) must be used to carry out meeting the mobile payment of Unionpay's specification.As shown in Figure 3, short range on-line payment mode comprises the following steps (step that the dotted line in Fig. 3 represents the just needs execution when account publisher is Third-party payment company):

101:POS4 initiates to pay request, NFC mobile phone generates this virtual card number of bank paid, responded the payment request of POS4 initiation using the virtual card number of this bank as primary account number by short-haul connections mode (including but not limited to NFC), wherein need to change the primary account number that is transferred to POS4 and the 2nd, primary account number information in 3 magnetic tracks, pay in request and comprise the data messages such as primary account number, the card term of validity, card sequence number, the 2nd track data and the 3rd track data;

102:POS4 will pay request forward to industrial and commercial bank's server by network special line;

103: industrial and commercial bank's server will pay request forward to Unionpay's server by network special line;

104: according to the BIN in the virtual card number of bank, (card tissue distributes to 6 bit digital BIN fields of credit card issuer to Unionpay's server, for identifying different credit card issuers) request forward will be paid to corresponding China Merchants Bank server, credit card issuer is according to identification code (1 bit digital identification code field of credit card issuer self-defining after 6 BIN, for identifying that this account uses the bank virtual card number modes of payments) be judged as the virtual card number of bank after, it is decrypted, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of China Merchants Bank's server, if not, perform step 105, if, then China Merchants Bank's server carries out validation verification to payment request, and perform step 109,

105: by the user ID paying request, bind with this bank true card number, (user ID refers to the mobile device world identification code of payment devices 1 to China Merchants Bank's server, International Mobile Equipment Identity, IMEI) and sequence number be transmitted to BVA SP server 8;

106:BVA SP server 8 will pay request forward to corresponding Alipay server according to user ID and sequence number;

107: Alipay server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server 8;

108:BVA SP server 8 will pay requests verification result feedback to China Merchants Bank's server;

109: China Merchants Bank's server will pay requests verification result feedback to Unionpay's server;

110: Unionpay's server will pay requests verification result feedback to industrial and commercial bank's server;

111: industrial and commercial bank's server will pay requests verification result feedback to POS4;

112:POS4 will pay requests verification result feedback to NFC mobile phone, complete this and pay.

When user use NFC mobile phone pass through short-haul connections mode (including but not limited to NFC) pay at POS4 place of trade company time, if enough and this trade company of electronic cash balances when mandatory requirement networking online verification does not pay legitimacy, then can use the mode of off-line verification (namely POS4 is without the need to networking certification) to carry out meeting the mobile payment of card organizational norms.As shown in Figure 4, short range offline electronic payment mode comprises the following steps (in Fig. 4, represented by dotted arrows just needs the step performed when account publisher is Third-party payment company, and dotted line represents the step of asynchronous execution):

201:POS4 initiates to pay request, NFC mobile phone generates this virtual card number of bank paid, and respond by short-haul connections mode (including but not limited to NFC) the payment request that POS4 initiates using the virtual card number of this bank as primary account number, namely change the primary account number being transferred to POS4 and the 2nd, primary account number information in 3 magnetic tracks;

202:POS4 will pay requests verification result feedback to NFC mobile phone, complete this and pay;

All payment request batches in Offtime section are transmitted to industrial and commercial bank's server by network special line is asynchronous by 203:POS4;

204: industrial and commercial bank's server by special line asynchronous by batch payment request forward to Unionpay's server;

205: Unionpay's server will pay request forward to corresponding China Merchants Bank server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of server identification bank of China Merchants Bank, obtain the true card number of bank, judge whether this payment uses the true card number of the bank of China Merchants Bank's server, if not, perform step 206, if, then China Merchants Bank's server carries out validation verification to payment request, and performs step 210;

206: China Merchants Bank's server by paying request, the user ID of binding with the true card number of this bank and sequence number be transmitted to BVA SP server 8;

207:BVA SP server 8 will pay request forward to the precious server of respective pay according to user ID and sequence number;

208: Alipay server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server 8;

209:BVA SP server 8 will pay requests verification result feedback to China Merchants Bank's server;

210: China Merchants Bank's server will pay requests verification result feedback to Unionpay's server;

211: Unionpay's server will pay requests verification result feedback to industrial and commercial bank's server;

212: industrial and commercial bank's server will pay requests verification result feedback to POS4.

When user use remote payment mode in NFC mobile phone to certain account of having bound carry out electronic cash circle deposit time, then must complete electronic cash circle by BVA SP direct connection credit card issuer to deposit, if account deposited by circle is Third-party payment company, then also must connect Third-party payment company.As shown in Figure 5, long-range circle is deposited electronic cash payment mode and is comprised the following steps (in Fig. 5 the same Fig. 3 of dotted line implication):

301:NFC mobile phone generates this virtual card number of bank paid, and initiates circle using the virtual card number of this bank as primary account number to BVA SP server 8 by communication and deposit request;

Circle is deposited request forward to corresponding credit card issuer according to the BIN in the virtual card number of bank by 302:BVA SP server 8, the laggard row deciphering of the virtual card number of server identification bank of China Merchants Bank, obtain the true card number of bank, judge whether this payment uses the true card number of the bank of China Merchants Bank's server, if not, perform step 303, if, then China Merchants Bank's server carries out validation verification to the circle request of depositing, and performs step 307;

303: the user ID of binding with this bank true card number and sequence number are transmitted to BVASP server 8 by China Merchants Bank's server;

Circle is deposited request forward to corresponding Alipay server according to user ID and sequence number by 304:BVA SP server 8;

305: Alipay server carries out validation verification to the circle request of depositing, and circle is deposited requests verification result feedback to BVA SP server 8;

Circle is deposited requests verification result feedback to China Merchants Bank's server by 306:BVA SP server 8;

307: circle is deposited requests verification result feedback to NFC mobile phone by China Merchants Bank's server, complete this circle and deposit.

When user uses remote payment mode to carry out on-line payment in NFC mobile phone, then must complete on-line payment by BVA SP direct connection credit card issuer, if the account used is Third-party payment company, then also must connect Third-party payment company.As shown in Figure 6, the remote online modes of payments comprises the following steps (in Fig. 6 the same Fig. 3 of dotted line implication):

401: user initiates to pay request to BVA SP server 8 at the payment platform of Taobao's server;

402:BVP SP server is sent to NFC mobile phone by communication;

403:NFC mobile phone generates this virtual card number of bank paid, and is responded the payment request initiated by Taobao's server to BVA SP server 8 using the virtual card number of this bank as primary account number by communication;

404:BVA SP server 8 will pay request forward to corresponding China Merchants Bank server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of server identification bank of China Merchants Bank, obtain the true card number of bank, judge whether this payment uses the true card number of the bank of China Merchants Bank's server, if not, perform step 405, if, then China Merchants Bank's server carries out validation verification to payment request, and performs step 409;

405: the user ID of binding with this bank true card number and sequence number are transmitted to BVASP server 8 by China Merchants Bank's server;

406:BVA SP server 8 will pay request forward to corresponding Alipay server according to user ID and sequence number;

407: Alipay server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server 8;

408:BVA SP server 8 will pay requests verification result feedback to China Merchants Bank's server;

409: China Merchants Bank's server will pay requests verification result feedback to Taobao's server;

410: Taobao's server will pay requests verification result feedback to NFC mobile phone, complete this and pay.

To sum up, key element of the present invention is the role by introducing BVA SP in mobile payment link, and effect comprises:

1) payment platform of the payment devices 1 held of user or the remote-operated merchant server 7 of user carries out communication with BVA SP server 8 by the pattern of communication module Wireless Networking respectively, has come submission and the transfer work of the requests such as binding, inquiry and payment.

2) pattern that BVA SP server 8 and issuers server 2 are networked by communication module special line carries out communication, has come transfer and the feedback operation of the requests such as binding, inquiry and payment.

3) pattern that BVA SP server 8 and Third-party payment server 3 are networked by communication module special line carries out communication, has come transfer and the feedback operation of the requests such as binding, inquiry and payment.

When user carries out mobile payment, on the basis that it has been bound to 16 true card numbers of bank on payment devices 1, the account (comprising the true card number of bank and Third-party payment account) used by this payment transaction and 16 true card numbers of bank successively carry out double-encryption by private key and PKI to be obscured process and generates 19 the virtual card numbers of bank meeting card organizational requirements afterwards, and then complete payment flow, thus significantly improve the security of mobile payment and compatibility.

Claims (10)

1. the mobile-payment system based on the virtual card number of bank, it is characterized in that, comprise payment devices, issuers server, Third-party payment server, POS, receive single file server, card organization server, merchant server and BVA SP server, described payment devices connects POS respectively, issuers server, merchant server and BVA SP server, described POS connects receipts single file server, described receipts single file server Connection Card organization server, described card organization server connects issuers server, described issuers server connects BVA SP server, described BVA SP server connects Third-party payment server and merchant server respectively,
Payment devices directly accepts the payment request that POS short range is initiated, or the payment request of the long-range initiation of merchant server is accepted through BVA SP server, or directly request deposited by long-range circle of initiating to BVA SP server, payment devices generates and is used for as paying request or enclosing the virtual card number of bank depositing the primary account number of request, POS is passed through in payment request, receive single file server, the request of depositing of the transfer transmission of card organization server or circle sends to issuers server by the transfer transmission of BVA SP server, payment devices is fed back to after issuers server process, complete to pay or enclose and deposit,
When payment devices use Third-party payment account carry out paying or enclose deposit time, issuers server passes through transfer transmission and the Third-party payment server communication of BVASP server, after request is deposited in validation of payment request or circle, feed back to payment devices, complete to pay or enclose and deposit.
2. a kind of mobile-payment system based on the virtual card number of bank according to claim 1, it is characterized in that, described payment devices comprises:
For controlling the CPU of other modules and computation key;
For the NFC module communicated with POS;
For the embedded-type security element of storage key data;
For the wireless communication module with BVA SP server radio communication.
3. a kind of mobile-payment system based on the virtual card number of bank according to claim 1, it is characterized in that, described issuers server comprises:
For controlling the CPU of other modules and computation key;
For the key database of storage key data;
For storing the payment data storehouse of payment data;
For the communication module communicated with BVA SP server and card organization server by network special line;
Described Third-party payment server comprises:
For controlling the CPU of other modules;
For storing the payment data storehouse of payment data;
For the communication module by network special line and BVA SP server communication.
4. a kind of mobile-payment system based on the virtual card number of bank according to claim 1, is characterized in that, described BVA SP server, POS, receipts single file server, card organization server and merchant server include:
For controlling the CPU of other modules;
For storing the interim data storehouse of interim data;
For setting up the communication module of network special line communication;
Described POS also comprises the NFC module for communicating with payment devices.
5. system according to claim 1 realizes the method for mobile payment based on the virtual card number of bank, it is characterized in that, comprises the following steps:
Step S1: payment devices binds the true card number of at least one Zhang Yinhang, and obtain the key based on the true card number of this bank by this mode that bank's cabinet dough figurine work stores or download online stores, continue other Third-party payment accounts of binding according to the certification binding flow process of Third-party payment server simultaneously, when binding completes, generate the sequence number of binding card number or account in order, sequence number identifies this binding card number or account;
Step S2: payment devices directly accepts the payment request that POS short range is initiated, or the payment request of the long-range initiation of merchant server is accepted through BVA SP server, or directly request deposited by long-range circle of initiating to BVA SP server, payment devices is encrypted the true card number of bank, the virtual card number of bank that this payment of stochastic generation or circle are deposited, and to be sent to issuers server by the short range modes of payments or remote payment mode virtual for this bank card number is deposited request as the payment request of primary account number or circle, wherein, the short range modes of payments comprises short range on-line payment mode and short range offline electronic payment mode, remote payment mode comprises the remote online modes of payments and electronic cash payment mode deposited by long-range circle,
Step S3: issuers server accepts to pay request or enclose to deposit request, the true card number of rear acquisition bank is decrypted to the virtual card number of bank, judge that this pays or circle deposits whether use the true card number of the bank of this issuers server, if not, perform step S4, if so, issuers server generates to pay or enclose and deposits requests verification result, performs step S5;
Step S4: issuers server will pay request forward to corresponding Third-party payment server by BVA SP server, Third-party payment server generates to pay or enclose deposits requests verification result, and through BVA SP server forwards to issuers server;
Step S5: payment or circle are deposited requests verification result feedback to payment devices by issuers server, completes this payment or circle is deposited.
6. a kind of mobile-payment system based on the virtual card number of bank according to claim 5, is characterized in that, described short range on-line payment mode comprises the following steps:
101:POS initiates to pay request, and payment devices generates this virtual card number of bank paid, and responded the payment request of POS initiation using the virtual card number of this bank as primary account number by short-haul connections mode, short-haul connections mode includes but not limited to NFC;
102:POS will pay request forward to receiving single file server by network special line;
103: receive single file server and will pay request forward to card organization server by network special line;
104: card organization server will pay request forward to corresponding issuers server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 105, if, then issuers server carries out validation verification to payment request, and performs step 109;
105: issuers server by paying request, the user ID of binding with the true card number of this bank and sequence number be transmitted to BVA SP server;
106:BVA SP server will pay request forward to corresponding Third-party payment server according to user ID and sequence number;
107: Third-party payment server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server;
108:BVA SP server will pay requests verification result feedback to issuers server;
109: issuers server will pay requests verification result feedback to card organization server;
110: card organization server will pay requests verification result feedback to receiving single file server;
111: receive single file server and will pay requests verification result feedback to POS;
112:POS will pay requests verification result feedback to payment devices, complete this and pay.
7. a kind of mobile-payment system based on the virtual card number of bank according to claim 5, is characterized in that, described short range offline electronic payment mode comprises the following steps:
201:POS initiates to pay request, and payment devices generates this virtual card number of bank paid, and is responded the payment request of POS initiation using the virtual card number of this bank as primary account number by short-haul connections mode, and short-haul connections mode includes but not limited to NFC;
202:POS will pay requests verification result feedback to payment devices, complete this and pay;
All payment request batches in Offtime section are transmitted to receipts single file server by network special line is asynchronous by 203:POS;
204: receive single file server by special line asynchronous by the payment request forward of batch to card organization server;
205: card organization server will pay request forward to corresponding issuers server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 206, if, then issuers server carries out validation verification to payment request, and performs step 210;
206: issuers server by paying request, the user ID of binding with the true card number of this bank and sequence number be transmitted to BVA SP server;
207:BVA SP server will pay request forward to corresponding Third-party payment server according to user ID and sequence number;
208: Third-party payment server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server;
209:BVA SP server will pay requests verification result feedback to issuers server;
210: issuers server will pay requests verification result feedback to card organization server;
211: card organization server will pay requests verification result feedback to receiving single file server;
212: receive single file server and will pay requests verification result feedback to POS.
8. a kind of mobile-payment system based on the virtual card number of bank according to claim 5, is characterized in that, described long-range circle is deposited electronic cash payment mode and comprised the following steps:
301: payment devices generates this virtual card number of bank paid, and deposit request by communication using the virtual card number of this bank as primary account number to BVA SP server initiation circle;
Circle is deposited request forward to corresponding credit card issuer according to the BIN in the virtual card number of bank by 302:BVA SP server, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 303, if, then issuers server carries out validation verification to the circle request of depositing, and performs step 307;
303: the user ID of binding with this bank true card number and sequence number are transmitted to BVASP server by issuers server;
Circle is deposited request forward to corresponding Third-party payment server according to user ID and sequence number by 304:BVA SP server;
305: Third-party payment server carries out validation verification to the circle request of depositing, and circle is deposited requests verification result feedback to BVA SP server;
Circle is deposited requests verification result feedback to issuers server by 306:BVA SP server;
307: circle is deposited requests verification result feedback to payment devices by issuers server, complete this circle and deposit.
9. a kind of mobile-payment system based on the virtual card number of bank according to claim 5, is characterized in that, the described remote online modes of payments comprises the following steps:
401: user initiates to pay request to BVA SP server at the payment platform of merchant server;
402:BVP SP server is sent to payment devices by communication;
403: payment devices generates this virtual card number of bank paid, and is responded the payment request initiated by merchant server to BVA SP server using the virtual card number of this bank as primary account number by communication;
404:BVA SP server will pay request forward to corresponding issuers server according to the BIN in the virtual card number of bank, the laggard row deciphering of the virtual card number of issuers server identification bank, obtain the true card number of bank and sequence number, judge whether this payment uses the true card number of the bank of this issuers server, if not, perform step 405, if, then issuers server carries out validation verification to payment request, and performs step 409;
405: the user ID of binding with this bank true card number and sequence number are transmitted to BVASP server by issuers server;
406:BVA SP server will pay request forward to corresponding Third-party payment server according to user ID and sequence number;
407: Third-party payment server carries out validation verification to payment request, and requests verification result feedback will be paid to BVA SP server;
408:BVA SP server will pay requests verification result feedback to issuers server;
409: issuers server will pay requests verification result feedback to merchant server;
410: merchant server will pay requests verification result feedback to payment devices, complete this and pay.
10. a kind of mobile-payment system based on the virtual card number of bank according to claim 5, is characterized in that, the true card number of described bank is 16, is designated as A 1a 2a 3a 4a 5a 6a 7a 8a 9a 10a 11a 12a 13a 14a 15a 16, wherein:
A 1a 2a 3a 4a 5a 6be the BIN field of 6, be designated as B;
A 7be the identification code field of 1, be designated as S;
A 8be the fixed value of 1, be designated as G;
A 9a 10a 11a 12a 13a 14a 15be client's serial number field of 7, be designated as L;
A 16for being calculated the check code field of 1 by Luhn algorithm by the card number of 15 before this by Unionpay's standard, be designated as J;
The virtual card number of described bank is 19, is designated as C 1c 2c 3c 4c 5c 6c 7c 8c 9c 10c 11c 12c 13c 14c 15c 16c 17c 18c 19, wherein:
C 1c 2c 3c 4c 5c 6be the BIN field of 6, be designated as B;
C 7be the identification code field of 1, be designated as S;
C 8c 9c 10c 11c 12c 13c 14c 15c 16c 17c 18be the encryption client serial number field of 11, be designated as H;
C 19be the check code field of 1, be designated as J';
Described payment devices and issuers server are equipped with the key for encrypting, deciphering, and key comprises private key T 1with PKI T 2, T 1comprise the unduplicated n of stochastic generation 1individual private key value P 1, 0<n 1<10000, to n 1individual private key value P 1carry out order label, obtain private key index sequence number Z, PKI T 2comprise 1 public-key cryptographic keys value P 2with by n 2the public key verifications code P of individual 2 3, 0<n 2<99, to n 2individual public key verifications code P 3carry out order label, obtain PKI index sequence number W;
The step of described payment devices encryption comprises:
A: each payment or circle are deposited, payment devices generates the value of R and X that this uses, the value of R is 2 bit digital random numbers, 0<R<99, the value of X is for indicating the sequence number of 2 that this bank's card number used or Third-party payment account are bound in payment devices, 0<X<99;
B:W gets the identical numerical value of R, from T 2the corresponding order of middle acquisition is the P of W 3, by P 3, X order arrangement, obtain the private key index sequence number Z of 4;
C: according to Z from T 1the corresponding order of middle acquisition is the P of Z 1, first judge this P 1whether be labeled as and used, if so, then returned steps A and again get R value, if not, then use P 1l is encrypted, obtains the L' of 7, simultaneously by P that in payment devices, this uses 1be labeled as and use;
D: according to P 2w+X+L' is encrypted, obtains the encryption client serial number H of 11;
E: obtain J' after being calculated by B+S+H by Luhn algorithm, obtain the virtual card number of bank of 19 being used for this, i.e. B+S+H+J', completes encryption;
The step of described issuers server deciphering comprises:
A: after issuers server receives the virtual card number of bank, whether first legal by Luhn algorithm verification J', if so, then perform step b, if not, then feedback pays request failure information;
B: use P 2deciphering H, thus obtain W, X and L';
C: from T 2the corresponding order of middle acquisition is the P of W 3, by P 3, X order arrangement, obtain the private key index sequence number Z of 4;
D: according to Z from T 1the corresponding order of middle acquisition is the P of Z 1, and to P 1legitimacy verify, namely judge P 1no being marked as uses, if not, then uses P 1l' is decrypted, obtains 7 bit digital L, with this P of tense marker 1for using, if so, then feedback pays request failure information;
E:G is the self-defined fixed value of issuers server, and obtain J after being calculated by B+S+G+L by Luhn algorithm, obtain the true card number of bank of 16 being used for this, i.e. B+S+G+L+J, completes deciphering.
CN201510022992.2A 2015-01-16 2015-01-16 Mobile payment system and method based on bank virtual card number CN104504565A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510022992.2A CN104504565A (en) 2015-01-16 2015-01-16 Mobile payment system and method based on bank virtual card number

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510022992.2A CN104504565A (en) 2015-01-16 2015-01-16 Mobile payment system and method based on bank virtual card number
CN201510130816.0A CN104700267B (en) 2015-01-16 2015-03-24 A kind of mobile-payment system and method based on the virtual card number of bank

Publications (1)

Publication Number Publication Date
CN104504565A true CN104504565A (en) 2015-04-08

Family

ID=52945959

Family Applications (2)

Application Number Title Priority Date Filing Date
CN201510022992.2A CN104504565A (en) 2015-01-16 2015-01-16 Mobile payment system and method based on bank virtual card number
CN201510130816.0A CN104700267B (en) 2015-01-16 2015-03-24 A kind of mobile-payment system and method based on the virtual card number of bank

Family Applications After (1)

Application Number Title Priority Date Filing Date
CN201510130816.0A CN104700267B (en) 2015-01-16 2015-03-24 A kind of mobile-payment system and method based on the virtual card number of bank

Country Status (1)

Country Link
CN (2) CN104504565A (en)

Cited By (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104951937A (en) * 2015-04-27 2015-09-30 上海浩恺信息科技有限公司 Authentication method and authentication system among mobile devices
CN104992331A (en) * 2015-07-17 2015-10-21 上海众人网络安全技术有限公司 Mobile terminal virtual offline payment system and payment method
CN105590202A (en) * 2015-08-28 2016-05-18 中国银联股份有限公司 Method and device for carrying out payment by using mobile terminal
CN106157013A (en) * 2015-04-13 2016-11-23 中国电信股份有限公司 Payment terminal, facility, server, system and payment processing method
CN107016537A (en) * 2017-04-12 2017-08-04 杭州纳戒科技有限公司 Stored value card management method and device
CN107038560A (en) * 2017-01-06 2017-08-11 阿里巴巴集团控股有限公司 A kind of system, the method and device of payment transaction execution
CN109842605A (en) * 2017-11-29 2019-06-04 华为技术有限公司 Tie up chucking method and terminal
WO2019210759A1 (en) * 2018-05-04 2019-11-07 中国银联股份有限公司 Virtual card generating method, user terminal, and token server

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104933563A (en) * 2015-06-23 2015-09-23 上海卓易科技股份有限公司 Method and device for bank card payment
CN105931035A (en) * 2015-08-18 2016-09-07 中国银联股份有限公司 Payment mark generation method and device
CN107204957A (en) * 2016-03-16 2017-09-26 阿里巴巴集团控股有限公司 A kind of account binding and the method and device of business processing
CN107274168A (en) * 2017-06-15 2017-10-20 中国银行股份有限公司 A kind of method of payment, system, Novel POS machine and payment core system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101414370A (en) * 2008-12-15 2009-04-22 阿里巴巴集团控股有限公司 Payment method, system and payment platform capable of improving payment safety by virtual card
CN103870957A (en) * 2012-12-13 2014-06-18 陈文原 Transaction system applying virtual account balance to entity shopping, and method thereof
CN103886458A (en) * 2014-03-26 2014-06-25 陆文清 Bank card or non-bank stored-value card mobile payment resolving method based on network
CN104268745A (en) * 2014-09-29 2015-01-07 余震辉 On-line and off-line safety payment method

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106157013A (en) * 2015-04-13 2016-11-23 中国电信股份有限公司 Payment terminal, facility, server, system and payment processing method
CN106157013B (en) * 2015-04-13 2019-08-30 中国电信股份有限公司 Payment terminal, equipment, server, system and payment processing method
CN104951937A (en) * 2015-04-27 2015-09-30 上海浩恺信息科技有限公司 Authentication method and authentication system among mobile devices
CN104951937B (en) * 2015-04-27 2018-05-01 上海摩镶数据科技有限公司 Method for authenticating and right discriminating system between a kind of mobile equipment
CN104992331A (en) * 2015-07-17 2015-10-21 上海众人网络安全技术有限公司 Mobile terminal virtual offline payment system and payment method
CN105590202A (en) * 2015-08-28 2016-05-18 中国银联股份有限公司 Method and device for carrying out payment by using mobile terminal
WO2017036249A1 (en) * 2015-08-28 2017-03-09 中国银联股份有限公司 Method and device using mobile terminal to make payment
CN107038560A (en) * 2017-01-06 2017-08-11 阿里巴巴集团控股有限公司 A kind of system, the method and device of payment transaction execution
WO2018126923A1 (en) * 2017-01-06 2018-07-12 阿里巴巴集团控股有限公司 Payment service execution system, method, and device
CN107016537A (en) * 2017-04-12 2017-08-04 杭州纳戒科技有限公司 Stored value card management method and device
CN109842605A (en) * 2017-11-29 2019-06-04 华为技术有限公司 Tie up chucking method and terminal
WO2019210759A1 (en) * 2018-05-04 2019-11-07 中国银联股份有限公司 Virtual card generating method, user terminal, and token server

Also Published As

Publication number Publication date
CN104700267A (en) 2015-06-10
CN104700267B (en) 2018-02-16

Similar Documents

Publication Publication Date Title
US10142348B2 (en) Enhanced data interface for contactless communications
RU2648944C2 (en) Methods, devices, and systems for secure provisioning, transmission and authentication of payment data
US10366387B2 (en) Digital wallet system and method
US20190066069A1 (en) Device including encrypted data for expiration date and verification value creation
RU2702085C2 (en) Return by payment channel providing restricted use dynamic value authority
US9372971B2 (en) Integration of verification tokens with portable computing devices
AU2013204110B2 (en) Processing payment transactions without a secure element
US10049357B2 (en) System and method of processing PIN-based payment transactions via mobile devices
US20190019176A1 (en) Over the air update of payment transaction data stored in secure memory
JP5519754B2 (en) System and method for secure account number in proximity device
CA2846462C (en) Systems and methods for authorizing a transaction with an unexpected cryptogram
RU2645593C2 (en) Verification of portable consumer devices
US20150371224A1 (en) Cryptocurrency infrastructure system
CN104603809B (en) Promote the system and method for transaction using virtual card on the mobile apparatus
US9672508B2 (en) Over the air update of payment transaction data stored in secure memory
CN102982441B (en) A kind of method and electronic payment devices of processing information
CN104838399B (en) Remote transaction is authenticated using mobile device
CN104951937B (en) Method for authenticating and right discriminating system between a kind of mobile equipment
US20150199679A1 (en) Multiple token provisioning
US8793192B2 (en) Device enrollment system and method
AU2017200988B2 (en) Payment device with integrated chip
US20160253663A1 (en) Transaction signing utilizing asymmetric cryptography
EP3038034B1 (en) Secure mobile payment system
EP2526514B1 (en) Method, device and system for securing payment data for transmission over open communication networks
CN102034323B (en) Public traffic one-card service system and implementation method, service platform and point of sale (POS) machine thereof

Legal Events

Date Code Title Description
PB01 Publication
C06 Publication
SE01 Entry into force of request for substantive examination
C10 Entry into substantive examination
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20150408

C02 Deemed withdrawal of patent application after publication (patent law 2001)