CN104732391A - Payment terminal, payment background and payment method using virtual card - Google Patents
Payment terminal, payment background and payment method using virtual card Download PDFInfo
- Publication number
- CN104732391A CN104732391A CN201310719195.0A CN201310719195A CN104732391A CN 104732391 A CN104732391 A CN 104732391A CN 201310719195 A CN201310719195 A CN 201310719195A CN 104732391 A CN104732391 A CN 104732391A
- Authority
- CN
- China
- Prior art keywords
- payment
- card
- virtual
- payment terminal
- backstage
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/08—Payment architectures
- G06Q20/20—Point-of-sale [POS] network systems
Abstract
The invention discloses a payment terminal, payment background and payment method using a virtual card. The payment terminal using the virtual card is characterized in that a virtual secure element is arranged in a trusted operating system of the payment terminal, the virtual card is arranged in the virtual secure element, and the payment terminal is configured to conduct payment through the virtual card.
Description
Technical field
The present invention relates to E-Payment technology, and particularly relate to payment terminal, payment backstage and method of payment.
Background technology
In prior art, such as, in E-Payment technology, payment terminal, such as mobile device, can run two kinds of operating systems, is multimedia OS and trusted operating system respectively.When carrying out relating to safe information mutual (such as, input bank card password), mobile device will be switched to trusted operating system, and enable security procedure to the process of the information of carrying out, after processing, switch back multimedia OS, so can guarantee that information interaction Environmental security is reliable.Such as, TrustZone technology can realize being provided in by hardware itself mechanism switched between safe mode and non-security mode, by hardware for the isolation between multimedia OS and trusted operating system is responsible for (under wherein multimedia OS runs on non-security mode, under trusted operating system runs on safe mode), make program under non-security mode cannot system resource under obtain secure mode access.
But prior art does not provide the scheme realizing remote payment in the secure mode.
Summary of the invention
One or more embodiment according to the present invention discloses following content.
Use a payment terminal for virtual card, virtual secure carrier is arranged in the trusted operating system of described payment terminal, is provided with virtual card in described virtual secure carrier, and described payment terminal is configured to use described virtual card to pay.
Use a payment backstage for virtual card, described void card is arranged in virtual secure carrier, and described virtual secure carrier is arranged in the trusted operating system of payment terminal, and described payment backstage is configured to verify described virtual card, then completes payment.
Use a method for the payment of virtual card, comprising:
Virtual card is used to pay, wherein,
Described void card is arranged in virtual secure carrier, and described virtual secure carrier is arranged in the trusted operating system of payment terminal.
Use a method for the payment of virtual card, comprising:
VSE is created in the trusted operating system of payment terminal,
TA is created in VSE,
Created TA is set,
Use the consumer applications in the multimedia OS of payment terminal to buy commodity, and be switched to described trusted operating system when paying by the communication unit be arranged in multimedia OS,
Payment information input is completed in trusted operating system,
Judge that the TA carrying out paying is real card or empty card, and pay according to judged result, wherein,
When real card, payment information is sent to payment backstage to verify, after being verified, completes payment,
When void card, in payment terminal validation of payment information, after being verified, complete payment.
Above-mentioned open and other embodiment of the present invention comprises following advantage:
For trusted operating system this with traditional mobile terminal multimedia OS under pay environment and have other new environment to provide a kind ofly to pay solution, for mobile payment provides safety guarantee.
In trusted operating system, use virtual SE to pay, compared with use physics SE, because VSE is out virtual in trusted operating system, therefore can reduce the cost that the mechanisms such as bank buy SE; Simultaneously also because virtual SE does not need to carry out interactive access with physics SE, also further increase the treatment effeciency of data during payment.
For the virtual card in the virtual SE under trusted operating system, virtual card of the present invention (empty card and real card), can effectively be combined the payment environment of trusted operating system with the existing multiple modes of payments better.
Accompanying drawing explanation
After having read the specific embodiment of the present invention with reference to accompanying drawing, those skilled in the art will become apparent various aspects of the present invention.One skilled in the art will appreciate that these accompanying drawings only for coordinating embodiment that technical scheme of the present invention is described, and and be not intended to be construed as limiting protection scope of the present invention.
Fig. 1 is the schematic diagram of the payment terminal of use virtual card according to an embodiment of the invention.
Fig. 2 is the schematic diagram on the payment backstage of use virtual card according to an embodiment of the invention.
Fig. 3 is the method schematic diagram of the payment of use virtual card according to an embodiment of the invention.
Embodiment
In the following description, in order to the object explained, state many details to provide the thorough understanding of the one or more aspects to embodiment.But, can it is evident that for those skilled in the art, the less degree of these details can come one or more aspects of practicing various embodiments.Therefore the description below is not regarded as circumscribed, but limits protection domain by claims.
First, the technical term used in the present invention will be explained.
Safety barrier SE(secure element) be a kind of have calculate and the separate hardware unit of memory function, be designed with the safety of many functions in order to protect its institute to store data in it, and provide corresponding security mechanism to serve the equipment use in the confession external world.SE is usually used in the hardware device representing that some provide security service, as SIM card, SD card etc.
Virtual secure carrier VSE(virtual secure element) for safety barrier SE.VSE refers to and carries out virtual rear obtained virtual SE equipment to SE equipment, and it is the same with physics SE equipment, has hardware environment and the chip operating system of emulation, and also can perform related application thereon.
Below with reference to accompanying drawings, the specific embodiment of the present invention is described in further detail.Fig. 1 is the schematic diagram of the payment terminal of use virtual card according to an embodiment of the invention.As shown in Figure 1, payment terminal can run multimedia OS and trusted operating system, passes through hardware isolated between two operating systems.Wherein be provided with virtual secure carrier VSE1 and VSE2 in trusted operating system, and be respectively arranged with virtual card TA1 and TA2 in VSE1 and VSE2, described payment terminal is configured to use described virtual card to pay.Payment terminal can be intelligent terminal, mobile communication terminal.
Because trusted operating system to be directly connected into network (2G, 3G, WIFI etc.), therefore can arrange communication unit in the multimedia OS of described payment terminal provides for trusted operating system the path that is connected into network thus realizes remote payment.Communication unit can be such as the driver again developed, and it is integrated in multimedia OS.
Communication unit can be configured as the data communication channel that multimedia OS and trusted operating system are carried, and monitors the message between multimedia OS and trusted operating system.Payment terminal can also be configured to by described communication unit and payment background communication.Escape way can be set up for VSE, communication unit and payment backstage; such as guarantee data security by carrying out asymmetric encryption protection to data; or trusted operating system can with payment backstage joint consultation authenticate key, and adopt TLS secure connection etc.
Above-mentioned TA1 and TA2 is only example, and trusted operating system can arrange one or more VSE, and one or more TA.Here, described virtual card can be real card or empty card, and wherein real card associates with bank card (such as, debit card and credit card), and empty card is the local finance account be arranged in described payment terminal.Local finance account can be the small amount finance account that amount is less than 1000 yuan.In one example, the information of empty card is directly present in the VSE in trusted operating system, when paying, after locally through virtual card cipher authentication, directly carries out offline transaction.In one example, real card storage area information (as association financial institution, bank card information etc.), when paying, with payment backstage network carry out cipher authentication after just can complete payment.
The example creating empty card is below described.First, user can first by the payment terminal application virtual SE of specific background system at lift-launch trusted operating system.Apply for successfully, this virtual SE creates associated safety application, and creates virtual card TA by specific background system, and type (empty card or real card) and the payment cipher (or virtual card password) of TA are set.
Pay backstage to be configured to verify virtual card, then complete payment.Fig. 2 is the schematic diagram on the payment backstage of use virtual card according to an embodiment of the invention.As shown in the figure, pay backstage and can comprise processing unit and Database Unit.The transaction data that processing unit is mainly used in sending from payment terminal processes.Database Unit can comprise storing virtual card card number, payment cipher, block the virtual secure carrier information storage unit of the bank card information associated with reality, or can also comprise the user information storage unit of storing subscriber information (as name, cell-phone number etc.).
In one example, processing unit comprises authentication unit for verifying virtual card, and such as authentication unit is configured to use virtual secure carrier information storage unit checking virtual card.In one example, authentication unit can also be configured to use user information storage unit checking to use the user of payment terminal.In one example, authentication unit be configured to use virtual secure carrier information storage unit to verify whether virtual SE is the virtual SE of registered mandate.
In other examples, processing unit can also comprise transaction handling unit and be mainly used in carrying out encryption and decryption operation to transaction data and completing the payment flow of this transaction.
In other examples, Database Unit can also comprise transaction record storage unit, and it is mainly used in store transaction logs.
The scene that use is carried out according to other embodiments of the invention paying below is described.
At payment terminal place, payment terminal user creates virtual card in virtual SE, after using consumer application to buy commodity in multimedia OS, multimedia OS can be switched to trusted operating system by communication unit, and uses virtual card TA in virtual SE to complete payment wherein.It should be noted that in handoff procedure, the current state in multimedia OS will be carried out interruption protection by communication unit, now, can ensure the security of the operating environment of code keypad under trusted operating system and screen further.Complete the input of payment related information user after, transaction is blocked if any reality will be carried out, then merchandise news and payment related information will form transaction data by communication unit be sent to pay backstage, if carry out the transaction of void card, be then directly carry out virtual card password authentification and complete virtual card account withholing in payment terminal.
At payment backstage place, for the situation of real card transaction, after transaction data is sent to and pays backstage, by the transaction handling unit in processing unit transaction data be decrypted and obtain concrete transaction data, comprise virtual card number, virtual card payment cipher, dealing money, cell-phone number etc.Then, verified by the legitimacy (whether being such as effective card number or validated user etc.) of the authentication unit in processing unit to transaction data, the data of now comparison are mainly derived from virtual SE information memory cell in Database Unit and user information storage unit.Finally again this transaction record is recorded in transaction record storage unit.So far, this time concluded the business, payment terminal is switched back to multimedia system by communication unit, and interrupts the state of preservation before returning to.
Fig. 3 is the method schematic diagram of the payment of use virtual card according to an embodiment of the invention.As described in Figure, the method roughly comprises the following steps:
VSE is created in the trusted operating system of payment terminal,
TA is created in VSE,
Created TA is set, such as, the payment cipher of TA is set, and the bank card information associated with TA,
Use the consumer applications in the multimedia OS of payment terminal to buy commodity, and be switched to described trusted operating system when paying by the communication unit be arranged in multimedia OS,
In trusted operating system, complete payment information input, payment information can be such as subscriber identity information, payment cipher,
Judge that the TA carrying out paying is real card or empty card, and pay according to judged result,
When real card, payment information is sent to payment backstage to verify, after being verified, completes payment,
When void card, in payment terminal validation of payment information, after being verified, complete payment.
Alternatively, after payment completes, be switched to described multimedia OS by communication unit.
Alternatively, after payment completes, in payment backstage store transaction logs.
Alternatively, complete payment information input in trusted operating system before, in VSE and TA of multiple establishment, the TA that will carry out paying is selected.
By the description of above embodiment, those skilled in the art can understand, and when without departing from the spirit and scope of the present invention, can also do various change and replacement to the specific embodiment of the present invention.These change and replace and all drop in claims of the present invention limited range.
Claims (17)
1. one kind uses the payment terminal of virtual card, it is characterized in that, virtual secure carrier is arranged in the trusted operating system of described payment terminal, is provided with virtual card in described virtual secure carrier, and described payment terminal is configured to use described virtual card to pay.
2. payment terminal as claimed in claim 1, is characterized in that,
Communication unit is provided with in the multimedia OS of described payment terminal,
Described payment terminal is configured to by described communication unit and payment background communication.
3. payment terminal as claimed in claim 2, is characterized in that,
Described payment terminal is configured to use described communication unit to switch between described trusted operating system and described multimedia OS.
4. payment terminal as claimed in claim 1, is characterized in that, described virtual card is real card or empty card, and wherein real card associates with bank card, and empty card is the local finance account be arranged in described payment terminal.
5. payment terminal as claimed in claim 1, it is characterized in that, described local finance account is the small amount finance account that amount is less than 1000 yuan.
6. one kind uses the payment backstage of virtual card, it is characterized in that, described void card is arranged in virtual secure carrier, and described virtual secure carrier is arranged in the trusted operating system of payment terminal, described payment backstage is configured to verify described virtual card, then completes payment.
7. pay backstage as claimed in claim 6, it is characterized in that,
The communication unit that described payment backstage is configured in the multimedia OS by being arranged on described payment terminal communicates with described payment terminal.
8. pay backstage as claimed in claim 6, it is characterized in that, described virtual card is real card or empty card, and wherein real card associates with bank card, and empty card is the local finance account be arranged in described payment terminal.
9. pay backstage as claimed in claim 6, it is characterized in that, this payment backstage comprises storing virtual card card number, payment cipher, blocks the virtual secure carrier information storage unit of the bank card information associated with reality, and described payment backstage is configured to use virtual secure carrier information storage unit checking virtual card.
10. pay backstage as claimed in claim 9, it is characterized in that, this payment backstage comprises the user information storage unit of storing subscriber information, and described payment backstage is configured to use user information storage unit checking to use the user of payment terminal.
11. 1 kinds of methods using the payment of virtual card, is characterized in that, comprising:
Virtual card is used to pay, wherein,
Described void card is arranged in virtual secure carrier, and described virtual secure carrier is arranged in the trusted operating system of payment terminal.
12. methods as claimed in claim 11, also comprise,
Use the communication unit and payment background communication that arrange in the multimedia OS of payment terminal.
13. methods as claimed in claim 11, is characterized in that,
Described virtual card is real card or empty card, and wherein real card associates with bank card, and empty card is the local finance account be arranged in described payment terminal.
14. 1 kinds of methods using the payment of virtual card, is characterized in that, comprising:
VSE is created in the trusted operating system of payment terminal,
TA is created in VSE,
Created TA is set,
Use the consumer applications in the multimedia OS of payment terminal to buy commodity, and be switched to described trusted operating system when paying by the communication unit be arranged in multimedia OS,
Payment information input is completed in trusted operating system,
Judge that the TA carrying out paying is real card or empty card, and pay according to judged result, wherein,
When real card, payment information is sent to payment backstage to verify, after being verified, completes payment,
When void card, in payment terminal validation of payment information, after being verified, complete payment.
15. methods as claimed in claim 14, is characterized in that,
After payment completes, be switched to described multimedia OS by communication unit.
16. methods as claimed in claim 15, is characterized in that,
After payment completes, in payment backstage store transaction logs.
17. methods as claimed in claim 14, is characterized in that,
Complete payment information input in trusted operating system before, in VSE and TA of multiple establishment, select the TA that will carry out paying.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310719195.0A CN104732391A (en) | 2013-12-24 | 2013-12-24 | Payment terminal, payment background and payment method using virtual card |
| PCT/CN2014/094022 WO2015096645A1 (en) | 2013-12-24 | 2014-12-17 | Payment terminal, payment background and method of payment using virtual card |
| HK15112546.7A HK1211728A1 (en) | 2013-12-24 | 2015-12-21 | Payment terminal, payment background and payment method using virtual card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310719195.0A CN104732391A (en) | 2013-12-24 | 2013-12-24 | Payment terminal, payment background and payment method using virtual card |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN104732391A true CN104732391A (en) | 2015-06-24 |
Family
ID=53456264
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310719195.0A Pending CN104732391A (en) | 2013-12-24 | 2013-12-24 | Payment terminal, payment background and payment method using virtual card |
Country Status (3)
| Country | Link |
|---|---|
| CN (1) | CN104732391A (en) |
| HK (1) | HK1211728A1 (en) |
| WO (1) | WO2015096645A1 (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105631655A (en) * | 2015-07-23 | 2016-06-01 | 宇龙计算机通信科技(深圳)有限公司 | HCE-based mobile payment method, device and mobile terminal |
| CN106503990A (en) * | 2016-10-17 | 2017-03-15 | 珠海格力电器股份有限公司 | A kind of transaction processing method and mobile device |
| CN106980972A (en) * | 2016-12-29 | 2017-07-25 | 中国银联股份有限公司 | Offline payment method and its payment system, mobile terminal based on TEE |
| TWI626606B (en) * | 2016-07-28 | 2018-06-11 | Electronic card establishment system and method thereof |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106611310B (en) * | 2015-08-14 | 2020-12-08 | 华为终端有限公司 | Data processing method, wearable electronic device and system |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100013755A (en) * | 2008-08-01 | 2010-02-10 | 주식회사 비즈모델라인 | System and method for settling cash by the balance mirroring in an account and recording medium |
| KR20100135025A (en) * | 2009-06-16 | 2010-12-24 | 에스케이 텔레콤주식회사 | Payment system and payment method for shopping purchase money using electronic money |
| CN102402820A (en) * | 2010-09-13 | 2012-04-04 | 中国移动通信有限公司 | Electronic transaction method and terminal equipment |
| CN102982449A (en) * | 2011-09-07 | 2013-03-20 | 中兴通讯股份有限公司 | Mobile terminal and transaction system and method |
| CN102999841A (en) * | 2011-09-08 | 2013-03-27 | 深圳市移卡科技有限公司 | Mobile payment system |
-
2013
- 2013-12-24 CN CN201310719195.0A patent/CN104732391A/en active Pending
-
2014
- 2014-12-17 WO PCT/CN2014/094022 patent/WO2015096645A1/en active Application Filing
-
2015
- 2015-12-21 HK HK15112546.7A patent/HK1211728A1/en unknown
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR20100013755A (en) * | 2008-08-01 | 2010-02-10 | 주식회사 비즈모델라인 | System and method for settling cash by the balance mirroring in an account and recording medium |
| KR20100135025A (en) * | 2009-06-16 | 2010-12-24 | 에스케이 텔레콤주식회사 | Payment system and payment method for shopping purchase money using electronic money |
| CN102402820A (en) * | 2010-09-13 | 2012-04-04 | 中国移动通信有限公司 | Electronic transaction method and terminal equipment |
| CN102982449A (en) * | 2011-09-07 | 2013-03-20 | 中兴通讯股份有限公司 | Mobile terminal and transaction system and method |
| CN102999841A (en) * | 2011-09-08 | 2013-03-27 | 深圳市移卡科技有限公司 | Mobile payment system |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105631655A (en) * | 2015-07-23 | 2016-06-01 | 宇龙计算机通信科技(深圳)有限公司 | HCE-based mobile payment method, device and mobile terminal |
| TWI626606B (en) * | 2016-07-28 | 2018-06-11 | Electronic card establishment system and method thereof | |
| CN106503990A (en) * | 2016-10-17 | 2017-03-15 | 珠海格力电器股份有限公司 | A kind of transaction processing method and mobile device |
| CN106980972A (en) * | 2016-12-29 | 2017-07-25 | 中国银联股份有限公司 | Offline payment method and its payment system, mobile terminal based on TEE |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2015096645A1 (en) | 2015-07-02 |
| HK1211728A1 (en) | 2016-05-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104778794B (en) | mobile payment device and method | |
| CN113475035A (en) | Flick to copy data to clipboard through NFC | |
| CN103793815A (en) | Mobile intelligent terminal acquirer system and method suitable for bank cards and business cards | |
| JP2015525389A (en) | System and method for enabling secure transactions with mobile devices | |
| CN112789643A (en) | System and method for password authentication of contactless cards | |
| CN102333072B (en) | Network banking trusted transaction system and method based on intelligent terminal | |
| CN105550866B (en) | Safety control method and device | |
| CN104838398A (en) | System and method for secure remote access and remote payment using a mobile device and a powered display card | |
| US20130117573A1 (en) | Method for verifying a password | |
| CN104732391A (en) | Payment terminal, payment background and payment method using virtual card | |
| US20220284417A1 (en) | Server-side contactless card activation | |
| CN102496112A (en) | Three-screen payment system based on intelligent SD card and realization method thereof | |
| CN103401277B (en) | A kind of intelligent power and utilize this intelligent power to realize the method for mobile payment | |
| CN104299134A (en) | Payment method, device and terminal | |
| CN103268436A (en) | Method and system for touch-screen based graphical password authentication in mobile payment | |
| CN102509217B (en) | A kind of Mobile long-distance payment system | |
| KR20190083360A (en) | Cryptographic system management | |
| CN104835038A (en) | Networking payment device and networking payment method | |
| CN111404706A (en) | Application downloading method, secure element, client device and service management device | |
| CN105871840B (en) | A kind of certificate management method and system | |
| US20180181947A1 (en) | Cryptographic system management | |
| EP3157280B1 (en) | Method and device for achieving remote payment | |
| CN105635103A (en) | Network authentication method using card device | |
| KR20240024112A (en) | System and method for contactless card communication and multi-device key pair cryptographic authentication | |
| CN105592033B (en) | trusted service management system and method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: DE Ref document number: 1211728 Country of ref document: HK |
|
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20150624 |
|
| REG | Reference to a national code |
Ref country code: HK Ref legal event code: WD Ref document number: 1211728 Country of ref document: HK |