CN104504567B - A kind of recharge method and device of small amount payment card - Google Patents
A kind of recharge method and device of small amount payment card Download PDFInfo
- Publication number
- CN104504567B CN104504567B CN201410817622.3A CN201410817622A CN104504567B CN 104504567 B CN104504567 B CN 104504567B CN 201410817622 A CN201410817622 A CN 201410817622A CN 104504567 B CN104504567 B CN 104504567B
- Authority
- CN
- China
- Prior art keywords
- money
- small amount
- payment card
- supplementing
- amount payment
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/349—Rechargeable cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Computer Networks & Wireless Communication (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
Abstract
The embodiment of the invention discloses the recharge methods and device of a kind of small amount payment card,By to according to transmission key session key according to supplementing with money of getting of the second Predistribution Algorithm after ciphertext is decrypted and is verified,Key session key is supplemented with money to basis to be verified according to the authentication data of supplementing with money that preset cipher mode obtains,It then gets supplement corresponding with authentication data is supplemented with money and responds authentication data and response certificate,Just the holder for realizing small amount payment card can not only carry out payment consumption whenever and wherever possible,It can also be supplemented with money whenever and wherever possible,And the hardware problem of card terminal is tested without consideration,Realize that the verifying of ciphertext is supplemented on backstage with money only by the small amount payment card for supplementing ciphertext with money is built-in with,It solves less due to supplementing site with money in life,Caused user supplements with money very inconvenient,If but site is more supplemented in construction with money,More funds must be put into caused by then,People,The technical issues of material resources.
Description
Technical field
The present invention relates to payment recharging technique field more particularly to a kind of recharge methods and device of small amount payment card.
Background technique
With science and technology high speed development, small amount payment card more and more deeply masses, such as bus IC card, citizen's IC card,
All kinds of CPU smart cards with small amount payment function such as city one-card, this kind of card in the whole nation is possessed at present according to incompletely statistics
Amount alreadys exceed 400,000,000, is mainly used for the payment of the public transport such as public transport, subway, ferry and for newsstand, fast food restaurant, small
The small amount payments such as supermarket, since the extensive use of this kind of small amount payment card has greatly facilitated the life of user.
Small amount payment card, card technique specification and system used at present, define complete set to card balance into
The process and system recharging payment process of row recharging payment, user (holder) supplement sales counter or dedicated self-recharging end with money to artificial
End system can carry out recharging payment, manually supplement with money sales counter or dedicated self-aid system must in real time with supplement with money background system it is online into
The online real-time communication interactive authentication of row could be completed to trade.
However the above-mentioned artificial recharge method referred to, it is less due to supplementing site with money in life, it can do substantially now at any time
Consumption and payment everywhere, but it is less to supplement site with money, causes user to supplement with money very inconvenient, if but construction more supplements site with money,
Result in the technical issues of must putting into more funds, people, material resources.
Summary of the invention
The embodiment of the invention provides the recharge methods and device of a kind of small amount payment card, solve due to filling in life
It is less to be worth site, caused user supplement with money it is very inconvenient, if but construction more supplements site with money, it is caused to put into more
The technical issues of more funds, people, material resources.
A kind of recharge method of small amount payment card provided in an embodiment of the present invention, including:
Acquisition supplements order with money to what small amount payment card was supplemented with money;
It is extracted according to the small amount payment card for close to the transmission key session for supplementing critical data progress computations with money
Key, the session that the transmission key session key includes customized transmission key and derives according to the first Predistribution Algorithm are close
Key;
It is decrypted simultaneously to according to the transmission key session key according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got
Verifying, if being verified, to according to supplement with money key session key according to preset cipher mode obtain supplement with money authentication data into
Row verifying, if being verified, get with it is described supplement with money authentication data it is corresponding supplement with money response authentication data and respond certificate;
Returning indicates that the described of successful recharging supplements response authentication data and the response certificate with money.
Optionally, the order of supplementing with money for supplementing small amount payment card with money is obtained to specifically include:
The recharge instruction that automatic value-charging is carried out to the small amount payment card is obtained, the recharge instruction includes described fills
It is worth ciphertext, time data, terminating machine number;
Demand data of supplementing with money corresponding with the small amount payment card is checked, and supplements demand data with money described in determination
Meet prerequisite;
Wherein, the demand data of supplementing with money includes data retrieval, supplements threshold value, aggregate limit, the frequency and errors number with money.
Optionally, the order of supplementing with money for supplementing small amount payment card with money is obtained to specifically include:
Obtain the recharge instruction of offline automatic value-charging, the recharge instruction include it is described supplement ciphertext with money, time data,
Terminating machine number;
Corresponding credit signing information is extracted according to the small amount payment card, the credit signing information includes automatic
It supplements number accumulation limitation, single recharge cap with money and supplements aggregate limit with money.
Optionally, second Predistribution Algorithm includes:
According to it is described supplement critical data with money mode be fixed fill, and pass through in conjunction with the transmission key session key pre-
It sets and supplements ciphertext with money described in Encryption Algorithm acquisition.
Optionally, first Predistribution Algorithm is to generate the factor according to the session key of definition, and filling algorithm and session are close
Key derives algorithm, obtains the session key in conjunction with the transmission key.
Optionally, get with it is described supplement with money authentication data it is corresponding supplement with money response authentication data and respond certificate specifically wrap
It includes:
It gets according to the old remaining sum of the small amount payment card, recharge amount, terminating machine number, time data and counter
Supplement that authentication data is corresponding described to supplement response authentication data with money and respond certificate with money with described after being calculated.
A kind of recharging device of small amount payment card provided in an embodiment of the present invention, including:
First acquisition unit supplements order with money to what small amount payment card was supplemented with money for obtaining;
Extraction unit, for being extracted according to the small amount payment card for critical data to carry out encryption and data are complete to supplementing with money
The transmission key session key that whole property calculates, the transmission key session key include customized transmission key and according to the
The session key that one Predistribution Algorithm is derived;
First authentication unit, for being filled to according to the transmission key session key according to what the second Predistribution Algorithm was got
Value ciphertext is decrypted and verifies, if being verified, triggers the second authentication unit;
Second authentication unit is supplemented with money for supplementing key session key with money to basis according to what preset cipher mode obtained
Authentication data is verified, if being verified, triggers second acquisition unit;
The second acquisition unit, for get with it is described supplement with money authentication data it is corresponding supplement with money response authentication data and
Respond certificate;
Return unit indicates to supplement response authentication data and the response certificate described in successful recharging with money for returning.
Optionally, the first acquisition unit specifically includes:
First obtains subelement, for obtaining the recharge instruction for carrying out automatic value-charging to the small amount payment card, institute
It states recharge instruction and supplements ciphertext, time data, terminating machine number with money including described;
It checks subelement, for checking demand data of supplementing with money corresponding with the small amount payment card, and determines
The demand data of supplementing with money meets prerequisite;
Wherein, the demand data of supplementing with money includes data retrieval, supplements threshold value, aggregate limit, the frequency and errors number with money;
Or
Second obtains subelement, and for obtaining the recharge instruction of offline automatic value-charging, the recharge instruction includes institute
It states and supplements ciphertext with money, time data, terminating machine number;
Subelement is extracted, for extracting corresponding credit signing information, the credit according to the small amount payment card
Signing information includes automatic value-charging number accumulation limitation, single recharge cap and supplements aggregate limit with money.
Optionally, second Predistribution Algorithm includes supplementing critical data with money according to mode being fixed to fill, and tie
The transmission key session key is closed by supplementing ciphertext with money described in the acquisition of preset Encryption Algorithm.
First Predistribution Algorithm is that the factor is generated according to the session key of definition, and filling algorithm and session key derivation are calculated
Method obtains the session key in conjunction with the transmission key.
Optionally, the second acquisition unit is specifically used for getting the old remaining sum according to the small amount payment card, supplementing with money
The amount of money, terminating machine number, time data and counter calculated after supplement that authentication data is corresponding described to be filled with money with described
Value response authentication data and response certificate.
As can be seen from the above technical solutions, the embodiment of the present invention has the following advantages that:
The recharge method and device of a kind of small amount payment card provided in an embodiment of the present invention, wherein recharge method includes:It obtains
It takes and supplements order with money to what small amount payment card was supplemented with money;It is extracted according to small amount payment card for encrypting to supplementing critical data with money
Transmission key session key, transmission key session key includes customized transmission key and pushes away according to the first Predistribution Algorithm
Derived session key;It is decrypted to according to transmission key session key according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got
And verify, if being verified, key session key is supplemented with money to basis and supplements authentication data with money according to what preset cipher mode obtained
It is verified, if being verified, gets supplement corresponding with authentication data is supplemented with money and respond authentication data and response certificate;It returns
Returning indicates that supplementing with money for successful recharging responds authentication data and response certificate.In the present embodiment, by according to transmission key session
Key is according to supplementing with money of getting of the second Predistribution Algorithm after ciphertext is decrypted and is verified, to according to supplementing key session with money
Key is verified according to the authentication data of supplementing with money that preset cipher mode obtains, then is got corresponding with authentication data is supplemented with money
Supplement response authentication data and response certificate with money, the holder for just realizing small amount payment card can not only prop up whenever and wherever possible
Consumption is paid, can also be supplemented with money whenever and wherever possible, and tests the hardware problem of card terminal without consideration, is supplemented with money only by being built-in with
The small amount payment card of ciphertext realizes that the verifying of ciphertext is supplemented on backstage with money, solve it is less due to supplementing site with money in life, it is caused
User supplement with money it is very inconvenient, if but construction more supplements site with money, it is caused to put into more funds, people, material resources
Technical problem.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments of invention without any creative labor, may be used also for those of ordinary skill in the art
To obtain other attached drawings according to these attached drawings.
Fig. 1 is that a kind of process of one embodiment of the recharge method of the small amount payment card provided in the embodiment of the present invention is shown
It is intended to;
Fig. 2 is a kind of process of another embodiment of the recharge method of the small amount payment card provided in the embodiment of the present invention
Schematic diagram;
Fig. 3 is a kind of process of another embodiment of the recharge method of the small amount payment card provided in the embodiment of the present invention
Schematic diagram;
Fig. 4 is that a kind of structure of one embodiment of the recharging device of the small amount payment card provided in the embodiment of the present invention is shown
It is intended to;
Fig. 5 is a kind of structure of another embodiment of the recharging device of the small amount payment card provided in the embodiment of the present invention
Schematic diagram;
Fig. 6 is the system flow schematic diagram of the realization off-line charging provided in the embodiment of the present invention;
Fig. 7 is the flow diagram of the first Predistribution Algorithm provided in the embodiment of the present invention;
Fig. 8 is the flow diagram of the second Predistribution Algorithm provided in the embodiment of the present invention;
Fig. 9 supplements authentication data implementation process schematic diagram with money for what is provided in the embodiment of the present invention.
Specific embodiment
The embodiment of the invention provides the recharge methods and device of a kind of small amount payment card, solve due to filling in life
It is less to be worth site, caused user supplement with money it is very inconvenient, if but construction more supplements site with money, it is caused to put into more
The technical issues of more funds, people, material resources.
In order to make the invention's purpose, features and advantages of the invention more obvious and easy to understand, below in conjunction with the present invention
Attached drawing in embodiment, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that disclosed below
Embodiment be only a part of the embodiment of the present invention, and not all embodiment.Based on the embodiments of the present invention, this field
Those of ordinary skill's all other embodiment obtained without making creative work, belongs to protection of the present invention
Range.
Referring to Fig. 1, a kind of one embodiment packet of the recharge method of the small amount payment card provided in the embodiment of the present invention
It includes:
101, it obtains and supplements order with money to what small amount payment card was supplemented with money;
In the present embodiment, when Sorry, your ticket has not enough value for small amount payment card, when needing to supplement small amount payment card with money, elder generation is needed
Acquisition supplement order with money to what small amount payment card was supplemented with money, it is to be understood that small amount payment card above-mentioned Sorry, your ticket has not enough value it
Afterwards, the mode for supplementing order with money of acquisition will be described in detail in subsequent embodiment, no longer be described in detail herein.
Small amount payment card above-mentioned can be all kinds of with small amount including bus IC card, citizen's IC card, city one-card etc.
The CPU smart card of payment function can also be applied to such as have in other all kinds of mobile terminals with payment function certainly
The NFC mobile phone etc. of mobile payment function usually has the electronic wallet application for facilitating holder's small amount to consume, the electricity in card
Sub- wallet is supported the transaction such as supplement, consume with money.
102, it is extracted according to small amount payment card for close to the transmission key session for supplementing critical data progress computations with money
Key;
When obtain to small amount payment card supplemented with money after supplementing order with money, need according to small amount payment card extract for pair
Supplement the transmission key session key that critical data is encrypted with money, transmission key session key includes customized transmission key
With the session key derived according to the first Predistribution Algorithm, transmission key above-mentioned is to be exclusively used in carrying out load value data encrypted transmission
The transmission key of purposes, it is above-mentioned supplement with money critical data include random data (Rhost), supplement with money cipher key index number, recharge amount,
Supplement authentication data (MAC1) etc. with money, it is above-mentioned to be extracted according to small amount payment card for supplementing with money after critical data encrypts,
It can also be that carrying out data integrity calculates to obtain transmission key session key.
It should be noted that the first Predistribution Algorithm above-mentioned is to generate the factor according to the session key of definition to generate
Padding filling algorithm and session key derivation algorithm obtain session key in conjunction with transmission key, implement step such as Fig. 7
It is shown, including:
A1:The numerical value for supplementing counter with money is obtained, and is filled according to fixed form;
The numerical value that counter is supplemented in acquisition with money in the present embodiment, which can be, supplements counter with money in card, and carries out according to fixed form
Filling, filling algorithm can be customized algorithm, just repeat no more herein.
A2:The session key of definition is generated into factor combination transmission key and obtains session according to SessionKeyAlg algorithm
Key.
Obtain and supplement the numerical value of counter with money, and after being filled according to fixed form, by the session key of definition generate because
Son combines transmission key to obtain session key according to SessionKeyAlg algorithm, and SessionKeyAlg algorithm above-mentioned can be used
International DES algorithm is also possible to domestic SM1 algorithm etc., herein specifically without limitation.
103, it is decrypted simultaneously to according to transmission key session key according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got
Verifying, if being verified, thens follow the steps 104;
It extracts when according to small amount payment card for the transmission to critical data progress encryption and data integrity calculating is supplemented with money
After key session key, need to according to transmission key session key according to the second Predistribution Algorithm get supplement with money ciphertext into
Row is decrypted and is verified, if being verified, thens follow the steps 104.
It should be noted that the second Predistribution Algorithm above-mentioned is filled according to supplementing critical data with money according to fixed form,
And transmission key session key is combined to supplement ciphertext with money by the acquisition of preset Encryption Algorithm, it can be by carrying out reality as shown in Figure 8
It is existing, it is specific as follows:
B1:It is filled according to supplementing critical data with money mode being fixed, and executes step B2;
Firstly, filling and executing step B2 according to supplementing critical data with money mode being fixed, fixed form filling be can be
8 byte multiples are filled with when by byte length less than 8 byte.
B2:Ciphertext is supplemented with money by the acquisition of preset Encryption Algorithm in conjunction with transmission key session key.
Be fixed after mode fills according to critical data is supplemented with money, will in conjunction with transmission key session key by preset plus
Ciphertext is supplemented in close algorithm acquisition with money.
Preset Encryption Algorithm above-mentioned, which can be, is also possible to domestic SM1 algorithm etc., this reality using international DES algorithm
The transmission key session key in example is applied, to be exclusively used in the key that critical data is supplemented in transmission with money, is mainly used for adding data
Close and data integrity calculates, and is usually written in card when small amount payment card is issued, does not make directly in use
It is worked in the form of transmission key session key with transmission key.
104, key session key is supplemented with money to basis to verify according to the authentication data of supplementing with money that preset cipher mode obtains,
If being verified, 105 are thened follow the steps;
It is decrypted and tests according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got when to according to transmission key session key
After card passes through, key session key is supplemented with money to basis and is verified according to the authentication data of supplementing with money that preset cipher mode obtains,
If being verified, 105 are thened follow the steps.
It should be noted that basis above-mentioned, which supplements key session key with money, supplements identification with money according to what preset cipher mode obtained
The calculation of data (MAC1) can be to be realized as shown in Figure 9, specific as follows:
Being filled algorithm to be retrieved as length to recharge amount, type of transaction etc. is 8 byte multiples, and MAC is combined to calculate
It algorithm and supplements key and session key with money, gets and supplement authentication data with money, it is to be understood that supplement the encryption side of authentication data with money
What formula was known to the skilled person, just no longer excessive narration herein.105, fill corresponding with authentication data is supplemented with money is got
Value response authentication data and response certificate;
After supplementing authentication data with money to what is encrypted according to transmission key session key and being verified, need
It gets supplement corresponding with authentication data is supplemented with money and responds authentication data and response certificate.
106, returning indicates that supplementing with money for successful recharging responds authentication data and response certificate.
Authentication data and response certificate are responded when getting supplement corresponding with authentication data is supplemented with money, returning indicates to supplement with money into
Function supplements response authentication data and response certificate with money, and terminates to supplement with money.
In the present embodiment, by supplementing ciphertext with money according to what the second Predistribution Algorithm was got to according to transmission key session key
After being decrypted and being verified, key session key is supplemented with money to basis and supplements identification number with money according to what preset cipher mode obtained
According to being verified, then gets supplement corresponding with authentication data is supplemented with money and respond authentication data and response certificate, just realize
The holder of small amount payment card can not only carry out payment consumption whenever and wherever possible, can also be supplemented with money whenever and wherever possible, and nothing
The hardware problem that card terminal need to be considered to test realizes that ciphertext is supplemented on backstage with money only by the small amount payment card for supplementing ciphertext with money is built-in with
Verifying, solve it is less due to supplementing site with money in life, caused user supplement with money it is very inconvenient, if but construction more fill
It is worth site, then caused the technical issues of must putting into more funds, people, material resources.
The above is that the detailed process of the recharge method of small amount payment card is described in detail, below will be to small amount payment
After Sorry, your ticket has not enough value, the mode for supplementing order with money of acquisition is described card, and the remaining sum of small amount payment card is not in practical applications
After foot, there are many modes for supplementing order with money of acquisition, is illustrated separately below:
One, automatic value-charging;
Referring to Fig. 2, a kind of another embodiment of the recharge method of the small amount payment card provided in the embodiment of the present invention
Including:
201, the recharge instruction that automatic value-charging is carried out to small amount payment card is obtained;
In the present embodiment, when Sorry, your ticket has not enough value for small amount payment card, when needing to supplement small amount payment card with money, elder generation is needed
The recharge instruction that automatic value-charging is carried out to small amount payment card is obtained, recharge instruction includes supplementing ciphertext with money, and time data, terminating machine is compiled
Number.
Small amount payment card above-mentioned can be all kinds of with small amount including bus IC card, citizen's IC card, city one-card etc.
The CPU smart card of payment function can also be applied to such as have in other all kinds of mobile terminals with payment function certainly
The NFC mobile phone etc. of mobile payment function usually has the electronic wallet application for facilitating holder's small amount to consume, the electricity in card
Sub- wallet is supported the transaction such as supplement, consume with money.
It should be noted that user and the publisher of small amount payment card sign the agreement in the present embodiment, by the credit of user
Account binds with card, and " threshold value " of automatic value-charging is arranged, supplements Flat Amount, limited number of times, limitation total value, mistake with money
Limited number of times etc., user when remaining sum is lower than threshold value, will complete automatic value-charging in use in consumer device;From the background
System, when receiving (generally daily operation at the end of) consumption terminal offline transaction flowing water, by from the house account of binding into
Row auto deduction and obtaining supplements actual funds with money, and automatic value-charging above-mentioned fills small amount payment card automatically firstly the need of obtaining
The recharge instruction of value.
202, it supplements demand data with money to corresponding with small amount payment card and checks, and determine and supplement demand data satisfaction with money
Prerequisite;
After obtaining the recharge instruction to small amount payment card progress automatic value-charging, need to corresponding with small amount payment card
Demand data of supplementing with money checked that and determining and supplementing demand data with money and meet prerequisite, supplementing demand data with money includes data inspection
Rope supplements threshold value, aggregate limit, the frequency and errors number with money.
203, it is extracted according to small amount payment card for the transmission key session key supplementing critical data with money and being encrypted;
Supplement demand data with money when to corresponding with small amount payment card and check, and determine supplement with money demand data meet it is pre-
After setting condition, need to be extracted according to small amount payment card for close to the transmission key session that critical data is encrypted is supplemented with money
Key, transmission key session key include customized transmission key and the session key derived according to the first Predistribution Algorithm,
Transmission key above-mentioned is the transmission key for being exclusively used in carrying out load value data encrypted transmission purposes, above-mentioned to supplement critical packet with money
Include random data (Rhost), supplement cipher key index number, recharge amount with money, supplement authentication data (MAC1) with money etc., it is above-mentioned according to small amount
Payment Card is extracted for can also be that carrying out data integrity calculates to obtain transmission to supplementing with money after critical data encrypts
Key session key.
It should be noted that the first Predistribution Algorithm above-mentioned is to generate the factor according to the session key of definition to generate
Padding filling algorithm and session key derivation algorithm obtain session key in conjunction with transmission key, implement step such as Fig. 7
It is shown, including:
A1:The numerical value for supplementing counter with money is obtained, and is filled according to fixed form;
The numerical value that counter is supplemented in acquisition with money in the present embodiment, which can be, supplements counter with money in card, and carries out according to fixed form
Filling, filling algorithm can be customized algorithm, just repeat no more herein.
A2:The session key of definition is generated into factor combination transmission key and obtains session according to SessionKeyAlg algorithm
Key.
Obtain and supplement the numerical value of counter with money, and after being filled according to fixed form, by the session key of definition generate because
Son combines transmission key to obtain session key according to SessionKeyAlg algorithm, and SessionKeyAlg algorithm above-mentioned can be used
International DES algorithm is also possible to domestic SM1 algorithm etc., herein specifically without limitation.
204, it is decrypted simultaneously to according to transmission key session key according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got
Verifying, if being verified, thens follow the steps 205;
It extracts when according to small amount payment card for the transmission to critical data progress encryption and data integrity calculating is supplemented with money
After key session key, need to according to transmission key session key according to the second Predistribution Algorithm get supplement with money ciphertext into
Row is decrypted and is verified, if being verified, thens follow the steps 205.
It should be noted that the second Predistribution Algorithm above-mentioned is filled according to supplementing critical data with money according to fixed form,
And transmission key session key is combined to supplement ciphertext with money by the acquisition of preset Encryption Algorithm, it can be by carrying out reality as shown in Figure 8
It is existing, it is specific as follows:
B1:It is filled according to supplementing critical data with money mode being fixed, and executes step B2;
Firstly, filling and executing step B2 according to supplementing critical data with money mode being fixed, fixed form filling be can be
8 byte multiples are filled with when by byte length less than 8 byte.
B2:Ciphertext is supplemented with money by the acquisition of preset Encryption Algorithm in conjunction with transmission key session key.
Be fixed after mode fills according to critical data is supplemented with money, will in conjunction with transmission key session key by preset plus
Ciphertext is supplemented in close algorithm acquisition with money.
Preset Encryption Algorithm above-mentioned, which can be, is also possible to domestic SM1 algorithm etc., this reality using international DES algorithm
The transmission key session key in example is applied, to be exclusively used in the key that critical data is supplemented in transmission with money, is mainly used for adding data
Close and data integrity calculates, and is usually written in card when small amount payment card is issued, does not make directly in use
It is worked in the form of transmission key session key with transmission key.
205, key session key is supplemented with money to basis to verify according to the authentication data of supplementing with money that preset cipher mode obtains,
If being verified, 206 are thened follow the steps;
It is decrypted and tests according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got when to according to transmission key session key
After card passes through, key session key is supplemented with money to basis and is verified according to the authentication data of supplementing with money that preset cipher mode obtains,
If being verified, 206 are thened follow the steps.
It should be noted that basis above-mentioned, which supplements key session key with money, supplements identification with money according to what preset cipher mode obtained
The calculation of data (MAC1) can be to be realized as shown in Figure 9, specific as follows:
Being filled algorithm to be retrieved as length to recharge amount, type of transaction etc. is 8 byte multiples, and MAC is combined to calculate
It algorithm and supplements key and session key with money, gets and supplement authentication data with money, it is to be understood that supplement the encryption side of authentication data with money
What formula was known to the skilled person, just no longer excessive narration herein.
206, it gets supplement corresponding with authentication data is supplemented with money and responds authentication data and response certificate;
After supplementing authentication data with money to what is encrypted according to transmission key session key and being verified, need
It gets supplement corresponding with authentication data is supplemented with money and responds authentication data and response certificate, may further get basis
The old remaining sum of small amount payment card, recharge amount, terminating machine number, time data and counter calculated after with supplement mirror with money
Other data are corresponding to supplement response authentication data and response certificate with money, then need to modify remaining sum, counter, transaction record and its
The data such as its risk management parameter.
207, returning indicates that supplementing with money for successful recharging responds authentication data and response certificate.
When get according to the old remaining sum of small amount payment card, recharge amount, terminating machine number, time data and counter into
Row calculate after it is corresponding with authentication data is supplemented with money supplement with money response authentication data and respond certificate, then need to modify remaining sum,
After the data such as counter, transaction record and other risk management parameters, returning indicates that the response of supplementing with money of successful recharging identifies
Data and response certificate, and terminate to supplement with money.
In the present embodiment, by supplementing ciphertext with money according to what the second Predistribution Algorithm was got to according to transmission key session key
After being decrypted and being verified, key session key is supplemented with money to basis and supplements identification number with money according to what preset cipher mode obtained
According to being verified, then gets supplement corresponding with authentication data is supplemented with money and respond authentication data and response certificate, just realize
The holder of small amount payment card can not only carry out payment consumption whenever and wherever possible, can also carry out automatic value-charging whenever and wherever possible,
And it is supplemented with money according to the amount of money corresponding with preset recharge amount, and the hardware problem of card terminal, Jin Jintong are tested without consideration
It crosses and is built-in with the verifying that ciphertext is supplemented on the small amount payment card for supplementing ciphertext with money realization backstage with money, solve due to supplementing site with money in life
It is less, caused user supplement with money it is very inconvenient, if but construction more supplements site with money, it is caused to put into more moneys
The technical issues of gold, people, material resources.
Two, off-line charging;
Referring to Fig. 3, a kind of another embodiment of the recharge method of the small amount payment card provided in the embodiment of the present invention
Including:
301, the recharge instruction of offline automatic value-charging is obtained;
In the present embodiment, when Sorry, your ticket has not enough value for small amount payment card, when needing to supplement small amount payment card with money, elder generation is needed
The recharge instruction of offline automatic value-charging is obtained, recharge instruction includes supplementing ciphertext with money, time data, terminating machine number.
Small amount payment card above-mentioned can be all kinds of with small amount including bus IC card, citizen's IC card, city one-card etc.
The CPU smart card of payment function can also be applied to such as have in other all kinds of mobile terminals with payment function certainly
The NFC mobile phone etc. of mobile payment function usually has the electronic wallet application for facilitating holder's small amount to consume, the electricity in card
Sub- wallet is supported the transaction such as supplement, consume with money.
It should be noted that user has applied for the small amount payment with automatic off-line charging function in the present embodiment
Card, such as bus card, user want to supplement bus card with money nearby again without site is supplemented with money, and user can first send out on Internet
It plays automatic value-charging transaction and goes forward side by side and pay on line, card issuing side's background system obtains on the line of user after payment funding, will produce
Life is supplemented ciphertext token with money and is sent on consumption terminal, and user's consumption terminal in process of consumption will supplement ciphertext token with money and be sent to
Card, which can be completed, supplements with money, or when remaining sum is lower than some threshold value in card, system (terminal system or self-aid system etc.) meeting
It automatically initiates and supplements operation with money, complete to supplement with money automatically the case where holder has no practical any operation bidirectional, without holding
People carries out supplementing operation with money to special charging system or site, and holder totally can not feel this process of supplementing with money, realizes certainly
Dynamic off-line charging is not necessarily to the feeling of " supplementing with money " to holder's one kind, and automatic value-charging above-mentioned is firstly the need of acquisition to small amount payment
Card carries out the recharge instruction of automatic value-charging.
302, corresponding credit signing information is extracted according to small amount payment card;
When obtain to small amount payment card carry out automatic value-charging recharge instruction after, need according to small amount payment card extract with
Corresponding credit signing information, credit signing information includes automatic value-charging number accumulation limitation, single recharge cap and supplements with money
Aggregate limit.
303, it is extracted according to small amount payment card for the transmission key session key supplementing critical data with money and being encrypted;
After extracting corresponding credit signing information according to small amount payment card, need to be extracted according to small amount payment card
For to the transmission key session key supplementing critical data with money and being encrypted, transmission key session key to include customized biography
Defeated key and the session key derived according to the first Predistribution Algorithm, transmission key above-mentioned are to be exclusively used in progress load value data to add
The transmission key of close transmission purposes, critical data above-mentioned of supplementing with money include random data (Rhost), supplement cipher key index number with money, fill
The value amount of money supplements authentication data (MAC1) with money etc., above-mentioned to be extracted according to small amount payment card for adding to supplementing critical data with money
After close, it can also be that carrying out data integrity calculates to obtain transmission key session key.
It should be noted that the first Predistribution Algorithm above-mentioned is to generate the factor according to the session key of definition to generate
Padding filling algorithm and session key derivation algorithm obtain session key in conjunction with transmission key, implement step such as Fig. 7
It is shown, including:
A1:The numerical value for supplementing counter with money is obtained, and is filled according to fixed form;
The numerical value that counter is supplemented in acquisition with money in the present embodiment, which can be, supplements counter with money in card, and carries out according to fixed form
Filling, filling algorithm can be customized algorithm, just repeat no more herein.
A2:The session key of definition is generated into factor combination transmission key and obtains session according to SessionKeyAlg algorithm
Key.
Obtain and supplement the numerical value of counter with money, and after being filled according to fixed form, by the session key of definition generate because
Son combines transmission key to obtain session key according to SessionKeyAlg algorithm, and SessionKeyAlg algorithm above-mentioned can be used
International DES algorithm is also possible to domestic SM1 algorithm etc., herein specifically without limitation.
304, it is decrypted simultaneously to according to transmission key session key according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got
Verifying, if being verified, thens follow the steps 305;
It extracts when according to small amount payment card for the transmission to critical data progress encryption and data integrity calculating is supplemented with money
After key session key, need to according to transmission key session key according to the second Predistribution Algorithm get supplement with money ciphertext into
Row is decrypted and is verified, if being verified, thens follow the steps 305.
It should be noted that the second Predistribution Algorithm above-mentioned is filled according to supplementing critical data with money according to fixed form,
And transmission key session key is combined to supplement ciphertext with money by the acquisition of preset Encryption Algorithm, it can be by carrying out reality as shown in Figure 8
It is existing, it is specific as follows:
B1:It is filled according to supplementing critical data with money mode being fixed, and executes step B2;
Firstly, filling and executing step B2 according to supplementing critical data with money mode being fixed, fixed form filling be can be
8 byte multiples are filled with when by byte length less than 8 byte.
B2:Ciphertext is supplemented with money by the acquisition of preset Encryption Algorithm in conjunction with transmission key session key.
Be fixed after mode fills according to critical data is supplemented with money, will in conjunction with transmission key session key by preset plus
Ciphertext is supplemented in close algorithm acquisition with money.
Preset Encryption Algorithm above-mentioned, which can be, is also possible to domestic SM1 algorithm etc., this reality using international DES algorithm
The transmission key session key in example is applied, to be exclusively used in the key that critical data is supplemented in transmission with money, is mainly used for adding data
Close and data integrity calculates, and is usually written in card when small amount payment card is issued, does not make directly in use
It is worked in the form of transmission key session key with transmission key.
305, key session key is supplemented with money to basis to verify according to the authentication data of supplementing with money that preset cipher mode obtains,
If being verified, 306 are thened follow the steps;
It is decrypted and tests according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got when to according to transmission key session key
After card passes through, key session key is supplemented with money to basis and is verified according to the authentication data of supplementing with money that preset cipher mode obtains,
If being verified, 306 are thened follow the steps.
It should be noted that basis above-mentioned, which supplements key session key with money, supplements identification with money according to what preset cipher mode obtained
The calculation of data (MAC1) can be to be realized as shown in Figure 9, specific as follows:
Being filled algorithm to be retrieved as length to recharge amount, type of transaction etc. is 8 byte multiples, and MAC is combined to calculate
It algorithm and supplements key and session key with money, gets and supplement authentication data with money, it is to be understood that supplement the encryption side of authentication data with money
What formula was known to the skilled person, just no longer excessive narration herein.
306, it gets supplement corresponding with authentication data is supplemented with money and responds authentication data and response certificate;
After supplementing authentication data with money to what is encrypted according to transmission key session key and being verified, need
It gets supplement corresponding with authentication data is supplemented with money and responds authentication data and response certificate, may further get basis
The old remaining sum of small amount payment card, recharge amount, terminating machine number, time data and counter calculated after with supplement mirror with money
Other data are corresponding to supplement response authentication data and response certificate with money, then need to modify remaining sum, counter, transaction record and its
The data such as its risk management parameter.
307, returning indicates that supplementing with money for successful recharging responds authentication data and response certificate.
When get according to the old remaining sum of small amount payment card, recharge amount, terminating machine number, time data and counter into
Row calculate after it is corresponding with authentication data is supplemented with money supplement with money response authentication data and respond certificate, then need to modify remaining sum,
After the data such as counter, transaction record and other risk management parameters, returning indicates that the response of supplementing with money of successful recharging identifies
Data and response certificate, and terminate to supplement with money.
In the present embodiment, by supplementing ciphertext with money according to what the second Predistribution Algorithm was got to according to transmission key session key
After being decrypted and being verified, key session key is supplemented with money to basis and supplements identification number with money according to what preset cipher mode obtained
According to being verified, then gets supplement corresponding with authentication data is supplemented with money and respond authentication data and response certificate, just realize
The holder of small amount payment card can not only carry out payment consumption whenever and wherever possible, can also carry out off-line charging whenever and wherever possible,
And it is supplemented with money according to the amount of money corresponding with preset recharge amount, and the hardware problem of card terminal, Jin Jintong are tested without consideration
It crosses and is built-in with the verifying that ciphertext is supplemented on the small amount payment card for supplementing ciphertext with money realization backstage with money, solve due to supplementing site with money in life
It is less, caused user supplement with money it is very inconvenient, if but construction more supplements site with money, it is caused to put into more moneys
The technical issues of gold, people, material resources.
Referring to Fig. 4, a kind of one embodiment packet of the recharging device of the small amount payment card provided in the embodiment of the present invention
It includes:
First acquisition unit 401 supplements order with money to what small amount payment card was supplemented with money for obtaining;
Extraction unit 402, for being extracted according to small amount payment card for close to the transmission that critical data is encrypted is supplemented with money
Key session key, transmission key session key include customized transmission key and the meeting derived according to the first Predistribution Algorithm
Talk about key;
First authentication unit 403, for being filled to according to transmission key session key according to what the second Predistribution Algorithm was got
Value ciphertext is decrypted and verifies, if being verified, triggers the second authentication unit 404;
Second authentication unit 404 is supplemented with money for supplementing key session key with money to basis according to what preset cipher mode obtained
Authentication data is verified, if being verified, triggers second acquisition unit 405;
Second acquisition unit 405 responds authentication data and response for getting supplement corresponding with authentication data is supplemented with money
Certificate;
Return unit 406 indicates that supplementing with money for successful recharging responds authentication data and response certificate for returning.
In the present embodiment, by 403 pairs of the first authentication unit according to transmission key session key according to the second Predistribution Algorithm
After ciphertext is decrypted and is verified, the second 404 pairs of authentication unit basis supplements key session key with money for supplementing with money of getting
It is verified according to the authentication data of supplementing with money that preset cipher mode obtains, then second acquisition unit 405 gets and supplements with money
Authentication data is corresponding to supplement response authentication data and response certificate with money, and just realizing the holder of small amount payment card not only can be with
When carry out payment consumption everywhere, can also be supplemented with money whenever and wherever possible, and without considering to test the hardware problem of card terminal, Jin Jintong
It crosses and is built-in with the verifying that ciphertext is supplemented on the small amount payment card for supplementing ciphertext with money realization backstage with money, solve due to supplementing site with money in life
It is less, caused user supplement with money it is very inconvenient, if but construction more supplements site with money, it is caused to put into more moneys
The technical issues of gold, people, material resources.
The above is that each unit of the recharging device of small amount payment card is described in detail, and will be obtained below to first single
The subelement of member is described in detail, referring to Fig. 5, a kind of small amount payment card provided in the embodiment of the present invention supplements dress with money
Another embodiment set includes:
First acquisition unit 501 supplements order with money to what small amount payment card was supplemented with money for obtaining;
Wherein, first acquisition unit 501 can further include:
First obtains subelement 5011, for obtaining the recharge instruction for carrying out automatic value-charging to small amount payment card, supplements finger with money
Enabling includes supplementing ciphertext with money, time data, terminating machine number;
It checks subelement 5012, for supplementing demand data with money to corresponding with small amount payment card and checking, and determines
It supplements demand data with money and meets prerequisite;
Wherein, demand data is supplemented with money to include data retrieval, supplement threshold value, aggregate limit, the frequency and errors number with money;
Or
Second obtains subelement 5013, and for obtaining the recharge instruction of offline automatic value-charging, recharge instruction is close including supplementing with money
Text, time data, terminating machine number;
Subelement 5014 is extracted, for extracting corresponding credit signing information, credit signing according to small amount payment card
Information includes automatic value-charging number accumulation limitation, single recharge cap and supplements aggregate limit with money.
Extraction unit 502, for being extracted according to small amount payment card for close to the transmission that critical data is encrypted is supplemented with money
Key session key, transmission key session key include customized transmission key and the meeting derived according to the first Predistribution Algorithm
Talk about key;
First authentication unit 503, for being filled to according to transmission key session key according to what the second Predistribution Algorithm was got
Value ciphertext is decrypted and verifies, if being verified, triggers the second authentication unit 504;
Second authentication unit 504 is supplemented with money for supplementing key session key with money to basis according to what preset cipher mode obtained
Authentication data is verified, if being verified, triggers second acquisition unit 505;
Second acquisition unit 505 responds authentication data and response for getting supplement corresponding with authentication data is supplemented with money
Certificate, second acquisition unit 505 be specifically used for get according to the old remaining sum of small amount payment card, recharge amount, terminating machine number,
Supplement corresponding with authentication data is supplemented with money after time data and counter are calculated responds authentication data and response certificate;
Return unit 506 indicates that supplementing with money for successful recharging responds authentication data and response certificate for returning.
Wherein, the second Predistribution Algorithm include judge whether that needing to be fixed mode fills according to supplementing critical data with money, and
Ciphertext is supplemented with money by the acquisition of preset Encryption Algorithm in conjunction with transmission key session key.
First Predistribution Algorithm is to generate the factor, filling algorithm and session key derivation algorithm according to the session key of definition,
Session key is obtained in conjunction with transmission key.
In the present embodiment, by 503 pairs of the first authentication unit according to transmission key session key according to the second Predistribution Algorithm
After ciphertext is decrypted and is verified, the second 504 pairs of authentication unit basis supplements key session key with money for supplementing with money of getting
It is verified according to the authentication data of supplementing with money that preset cipher mode obtains, then second acquisition unit 505 gets and supplements with money
Authentication data is corresponding to supplement response authentication data and response certificate with money, and just realizing the holder of small amount payment card not only can be with
When carry out payment consumption everywhere, can also carry out automatic value-charging or off-line charging whenever and wherever possible, and according to preset recharge amount
The corresponding amount of money is supplemented with money, and the hardware problem of card terminal is tested without consideration, supplements the small of ciphertext with money only by being built-in with
Volume Payment Card realizes that the verifying of ciphertext is supplemented on backstage with money, solves less due to supplementing site with money in life, and caused user supplements with money
It is very inconvenient, if but construction more supplements site with money, caused the technical issues of must putting into more funds, people, material resources.
A description, such as Fig. 6 will be carried out to the system flow of the realization off-line charging provided in the embodiment of the present invention below
Shown, system embodiment includes:
The recharging device 61 and terminal system 62 of small amount payment card;
For the recharging device 61 of small amount payment card according to the signing of cipher key system combination user credit is supplemented with money, configuration automatic value-charging is secondary
The accumulative limitation of number, single recharge cap supplement the parameters such as aggregate limit with money, define the data encryption of card automatic value-charging and integrity check
Algorithm, the key messages such as unique number of card of management, recharging payment serial number calculate to obtain and supplement ciphertext with money, are sent to module of registering, root
It will supplement ciphertext with money according to the request of registering that management is sent of registering of the terminal of terminal system 62 and be issued to terminal system 62, at this point, terminal
System 62 enters off-line mode, works independently, and terminal system 62 is by reading small amount payment card, it is determined whether remaining sum
Abundance, if it is not, then terminal system 62 carried out automatically with the recharging device 61 of small amount payment card it is online, will be on offline transaction flowing water batch
It send to the backstage of the recharging device 61 of small amount payment card and clears module, send at this point, backstage clearance module determines to criticize as a result, will fill
Value certificate of fair result key response data is updated to preserves management card above-mentioned in the recharging device 61 of small amount payment card
It is updated at the key messages such as unique number of piece, recharging payment serial number.
The recharging device 61 of small amount payment card can include supplementing counter, off-line charging risk with money to it according to card identity number
Parameter management and maintenance;The generation of recharging device 61 of small amount payment card supplements ciphertext token with money, manages and maintains and supplement ciphertext token with money
Group is simultaneously managed and updates to the ciphertext token group of supplementing with money of terminal system 62;The recharging device 61 of small amount payment card is to offline
Recharging payment response data is analyzed and is managed, and card key message library etc. is updated.62 timing of terminal system is to supplementing ciphertext with money
Token pool is managed, safeguards and updates;Timing by off-line charging transaction journal it is online on be sent to small amount payment card supplement dress with money
Set 61.During carrying out arm's length dealing, the judgement for whether meeting card automatic value-charging transaction increased, is initiated if meeting automatic
Recharging payment;
During carrying out recharging payment, terminal system 62 will supplement ciphertext token with money and be sent to inside card, and card is first
Sentenced using the every risk management data (for example supplementing limited number of times, limitation total value, error counter etc. with money) being written in fabrication
Whether disconnected supplement with money can carry out, and then card is written close using predefined various algorithms and rule and in fabrication
Key to token and is supplemented authentication data with money and is verified, and last card is completed all data and updated.
It is apparent to those skilled in the art that for convenience and simplicity of description, the system of foregoing description,
The specific work process of device and unit, can refer to corresponding processes in the foregoing method embodiment, and details are not described herein.
In several embodiments provided herein, it should be understood that disclosed system, device and method can be with
It realizes by another way.For example, the apparatus embodiments described above are merely exemplary, for example, the unit
It divides, only a kind of logical function partition, there may be another division manner in actual implementation, such as multiple units or components
It can be combined or can be integrated into another system, or some features can be ignored or not executed.Another point, it is shown or
The mutual coupling, direct-coupling or communication connection discussed can be through some interfaces, the indirect coupling of device or unit
It closes or communicates to connect, can be electrical property, mechanical or other forms.
The unit as illustrated by the separation member may or may not be physically separated, aobvious as unit
The component shown may or may not be physical unit, it can and it is in one place, or may be distributed over multiple
In network unit.It can select some or all of unit therein according to the actual needs to realize the mesh of this embodiment scheme
's.
It, can also be in addition, the functional units in various embodiments of the present invention may be integrated into one processing unit
It is that each unit physically exists alone, can also be integrated in one unit with two or more units.Above-mentioned integrated list
Member both can take the form of hardware realization, can also realize in the form of software functional units.
If the integrated unit is realized in the form of SFU software functional unit and sells or use as independent product
When, it can store in a computer readable storage medium.Based on this understanding, technical solution of the present invention is substantially
The all or part of the part that contributes to existing technology or the technical solution can be in the form of software products in other words
It embodies, which is stored in a storage medium, including some instructions are used so that a computer
Equipment (can be personal computer, server or the network equipment etc.) executes the complete of each embodiment the method for the present invention
Portion or part steps.And storage medium above-mentioned includes:USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only
Memory), random access memory (RAM, Random Access Memory), magnetic or disk etc. are various can store journey
The medium of sequence code.
The above, the above embodiments are merely illustrative of the technical solutions of the present invention, rather than its limitations;Although referring to before
Stating embodiment, invention is explained in detail, those skilled in the art should understand that:It still can be to preceding
Technical solution documented by each embodiment is stated to modify or equivalent replacement of some of the technical features;And these
It modifies or replaces, the spirit and scope for technical solution of various embodiments of the present invention that it does not separate the essence of the corresponding technical solution.
Claims (10)
1. a kind of recharge method of small amount payment card, which is characterized in that including:
Obtain the recharge instruction supplemented with money to small amount payment card;
It is extracted according to the small amount payment card for the transmission key session key for supplementing critical data progress computations with money, institute
State the session key that transmission key session key includes customized transmission key and derives according to the first Predistribution Algorithm;
It is decrypted and verifies according to the ciphertext of supplementing with money that the second Predistribution Algorithm is got to according to the transmission key session key,
If being verified, key session key is supplemented with money to basis and is tested according to the authentication data of supplementing with money that preset cipher mode obtains
Card, if being verified, get with it is described supplement with money authentication data it is corresponding supplement with money response authentication data and respond certificate;
Returning indicates that the described of successful recharging supplements response authentication data and the response certificate with money.
2. the recharge method of small amount payment card according to claim 1, which is characterized in that obtain and carried out to small amount payment card
The order of supplementing with money supplemented with money specifically includes:
The recharge instruction that automatic value-charging is carried out to the small amount payment card is obtained, the recharge instruction is supplemented with money close including described in
Text, time data, terminating machine number;
Demand data of supplementing with money corresponding with the small amount payment card is checked, and supplements demand data satisfaction described in determination with money
Prerequisite;
Wherein, the demand data of supplementing with money includes data retrieval, supplements threshold value, aggregate limit, the frequency and errors number with money.
3. the recharge method of small amount payment card according to claim 1, which is characterized in that obtain and carried out to small amount payment card
The order of supplementing with money supplemented with money specifically includes:
The recharge instruction of offline automatic value-charging is obtained, the recharge instruction supplements ciphertext, time data, terminal with money including described
Machine number;
Corresponding credit signing information is extracted according to the small amount payment card, the credit signing information includes automatic value-charging
Number accumulates limitation, single recharge cap and supplements aggregate limit with money.
4. the recharge method of small amount payment card as claimed in any of claims 1 to 3, which is characterized in that described
Two Predistribution Algorithms include:
According to it is described supplement critical data with money mode be fixed fill, and in conjunction with the transmission key session key by preset plus
Close algorithm supplements ciphertext with money described in obtaining.
5. the recharge method of small amount payment card as claimed in any of claims 1 to 3, which is characterized in that
First Predistribution Algorithm is to generate the factor, filling algorithm and session key derivation algorithm according to the session key of definition,
The session key is obtained in conjunction with the transmission key.
6. the recharge method of small amount payment card according to claim 1, which is characterized in that get and supplement identification with money with described
Corresponding response authentication data and the response certificate of supplementing with money of data specifically includes:
It gets and is carried out according to the old remaining sum of the small amount payment card, recharge amount, terminating machine number, time data and counter
Supplement that authentication data is corresponding described to supplement response authentication data with money and respond certificate with money with described after calculating.
7. a kind of recharging device of small amount payment card, which is characterized in that including:
First acquisition unit, for obtaining the recharge instruction supplemented with money to small amount payment card;
Extraction unit, for being extracted according to the small amount payment card for close to the transmission for supplementing critical data progress computations with money
Key session key, the transmission key session key include customized transmission key and derive according to the first Predistribution Algorithm
Session key;
First authentication unit, for close according to supplementing with money of getting of the second Predistribution Algorithm according to the transmission key session key
Text is decrypted and verifies, if being verified, triggers the second authentication unit;
Second authentication unit supplements identification with money according to what preset cipher mode obtained for supplementing key session key with money to basis
Data are verified, if being verified, trigger second acquisition unit;
The second acquisition unit supplements that authentication data is corresponding to supplement response authentication data and response with money with money with described for getting
Certificate;
Return unit indicates to supplement response authentication data and the response certificate described in successful recharging with money for returning.
8. the recharging device of small amount payment card according to claim 7, which is characterized in that the first acquisition unit is specific
Including:
First obtains subelement, described to fill for obtaining the recharge instruction for carrying out automatic value-charging to the small amount payment card
Value instruction supplements ciphertext, time data, terminating machine number with money described in including;
Subelement is checked, for checking demand data of supplementing with money corresponding with the small amount payment card, and described in determination
It supplements demand data with money and meets prerequisite;
Wherein, the demand data of supplementing with money includes data retrieval, supplements threshold value, aggregate limit, the frequency and errors number with money;
Or
Second obtains subelement, and for obtaining the recharge instruction of offline automatic value-charging, the recharge instruction includes described fills
It is worth ciphertext, time data, terminating machine number;
Subelement is extracted, for extracting corresponding credit signing information, the credit signing according to the small amount payment card
Information includes automatic value-charging number accumulation limitation, single recharge cap and supplements aggregate limit with money.
9. the recharging device of small amount payment card according to claim 7 or 8, which is characterized in that
Second Predistribution Algorithm include supplement critical data with money according to mode be fixed to fill, and in conjunction with it is described transmit it is close
Key session key is by supplementing ciphertext with money described in the acquisition of preset Encryption Algorithm;
First Predistribution Algorithm is to generate the factor, filling algorithm and session key derivation algorithm according to the session key of definition,
The session key is obtained in conjunction with the transmission key.
10. the recharging device of small amount payment card according to claim 7 or 8, which is characterized in that the second acquisition unit
Specifically for getting according to the old remaining sum of the small amount payment card, recharge amount, terminating machine number, time data and counter
Supplement that authentication data is corresponding described to supplement response authentication data with money and respond certificate with money with described after being calculated.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410817622.3A CN104504567B (en) | 2014-12-23 | 2014-12-23 | A kind of recharge method and device of small amount payment card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410817622.3A CN104504567B (en) | 2014-12-23 | 2014-12-23 | A kind of recharge method and device of small amount payment card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104504567A CN104504567A (en) | 2015-04-08 |
| CN104504567B true CN104504567B (en) | 2018-11-30 |
Family
ID=52945961
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410817622.3A Expired - Fee Related CN104504567B (en) | 2014-12-23 | 2014-12-23 | A kind of recharge method and device of small amount payment card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104504567B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105139543B (en) * | 2015-07-31 | 2021-08-06 | 苏州海博智能系统有限公司 | Self-service charging method for smart card |
| CN105678543B (en) * | 2015-12-31 | 2019-11-29 | 深圳前海微众银行股份有限公司 | Pay cipher key calculation method and apparatus |
| CN106251147B (en) * | 2016-07-29 | 2019-09-17 | 随行付支付有限公司 | A kind of method of payment and device |
| CN106792231A (en) * | 2016-12-28 | 2017-05-31 | 乐蜜科技有限公司 | Live recharge method, device and terminal |
| CN108564370B (en) * | 2018-04-20 | 2021-10-01 | 九江学院 | Multi-key electronic account payment protection method |
| CN109741180B (en) * | 2018-12-26 | 2021-04-27 | 中国工商银行股份有限公司 | Block chain continuous transaction sequence number generation method and device and block chain network node |
| CN113240415B (en) * | 2021-05-12 | 2023-11-03 | 中国联合网络通信集团有限公司 | Stored-value card recharging method, system, equipment and storage medium based on block chain |
| CN114267123B (en) * | 2021-12-15 | 2023-08-04 | 新奥(中国)燃气投资有限公司 | Intelligent NFC card for gas meter and communication processing method thereof |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6807410B1 (en) * | 1999-02-19 | 2004-10-19 | France Telecom | Electronic payment process and system for implementing this process |
| CN101131756A (en) * | 2006-08-24 | 2008-02-27 | 联想(北京)有限公司 | Security authentication system, device and method for electric cash charge of mobile paying device |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020123972A1 (en) * | 2001-02-02 | 2002-09-05 | Hodgson Robert B. | Apparatus for and method of secure ATM debit card and credit card payment transactions via the internet |
-
2014
- 2014-12-23 CN CN201410817622.3A patent/CN104504567B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6807410B1 (en) * | 1999-02-19 | 2004-10-19 | France Telecom | Electronic payment process and system for implementing this process |
| CN101131756A (en) * | 2006-08-24 | 2008-02-27 | 联想(北京)有限公司 | Security authentication system, device and method for electric cash charge of mobile paying device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104504567A (en) | 2015-04-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104504567B (en) | A kind of recharge method and device of small amount payment card | |
| CN110337797A (en) | Method for executing two-factor authentication | |
| CN107578243A (en) | Electricity transaction method and device based on block chain technology | |
| CN103810597B (en) | mobile device, payment transaction system and payment transaction method | |
| CN108012268A (en) | A kind of mobile phone terminal SIM card and the method for safe handling App, medium | |
| CN109003081A (en) | A kind of method of commerce and system based on block chain | |
| CN104794613B (en) | A kind of mobile device authentication method based on point-of-sale terminal | |
| CN107820238A (en) | SIM card, block chain application security module, client and its method for safely carrying out | |
| CN106997545A (en) | Service implementation method and device | |
| CN109416793A (en) | Method of mobile payment and system | |
| CN104022886B (en) | Safety certifying method, relevant apparatus and system applied to parking lot | |
| CN105160776B (en) | City one-card card, business platform, card operation system and implementation method | |
| CN107220824A (en) | A kind of commercial articles vending system and method based on digital cash | |
| CN106980977B (en) | Payment method and system based on Internet of things | |
| CN106815761B (en) | Electronic rechargeable card processing method, device and system | |
| CN106096925A (en) | A kind of smart card, the recharge method of a kind of smart card and system | |
| CN104751364B (en) | A kind of trans-regional direct selling bank federation method of commerce and system by safety certification | |
| CN104484802A (en) | Payment method, payment device and payment system of small payment card | |
| CN110430052B (en) | POS key online filling method and device | |
| CN116823257A (en) | Information processing method, device, equipment and storage medium | |
| CN103839322B (en) | Intelligent card, verification data output method, operation request response method and system | |
| CN103237032A (en) | Consumption management system and method | |
| CN113673974A (en) | Electronic currency off-line transaction method and transaction device | |
| CN106296145A (en) | Transportation card the Internet recharge method and device | |
| CN105915641B (en) | Data transmission method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20181130 Termination date: 20211223 |