CN104899741B - A kind of on-line payment method and on-line payment system based on IC bank card - Google Patents
A kind of on-line payment method and on-line payment system based on IC bank card Download PDFInfo
- Publication number
- CN104899741B CN104899741B CN201410077818.3A CN201410077818A CN104899741B CN 104899741 B CN104899741 B CN 104899741B CN 201410077818 A CN201410077818 A CN 201410077818A CN 104899741 B CN104899741 B CN 104899741B
- Authority
- CN
- China
- Prior art keywords
- payment
- dynamic token
- application
- bank card
- request
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention relates to on-line payment methods and on-line payment system based on IC bank card.On-line payment method based on IC bank card of the invention includes:Open binding step;And payment step, wherein the payment step includes again:Payment application generates the first sub-step of request to accepting using initiation dynamic token;It accepts application verification dynamic token and generates the second sub-step whether request initiates dynamic token acquisition request effectively and in the case where verifying effective situation to IC bank card;IC bank card generates dynamic token summary data according to dynamic token acquisition request and return accepts the third sub-step of application;It accepts using the 4th sub-step for generating dynamic token according to the dynamic token summary data of acquisition and being applied back to payment;Payment application sends the payment request comprising the dynamic token to the 5th sub-step of payment system;Payment system carries out certification to payment request and completes the 6th sub-step of payment in the case of successful certification.
Description
Technical field
The present invention relates to on-line payment fields, more particularly to on-line payment method and online branch based on IC bank card
The system of paying.
Background technique
With the continuous propulsion of domestic IC bank card migrating processes, more and more banks all have begun distribution IC bank
Card.By 2015, out-of-print magnetic stripe card was issued IC bank card by domestic all banks.Currently, user uses IC bank
Card is paid more and more common.
With popularizing for domestic IC bank card, more and more mobile terminal manufacturers set NFC card reading module as movement
Standby standard configuration technology, such as three magnitudes.Externally publication has embedded NFC card-reading function module to PC industry giant Intel simultaneously
PC chip, and combine notebook OEM vendor and be pushed outwardly the laptop for having IC card card-reading function.
On the other hand, with the development of intelligent terminal technology and Internet technology, malicious virus is continued to bring out, and gives internet
Safety of payment brings very big threat.The development of mobile payment service seriously is hindered, reduces the payment experience of user.
Currently a popular internet on-line payment mode has:
(1)Certification payment
The means of payment is for convenience of the payment services for the increase verifying element that holder carries out online payment and designs.Mesh
Mobile phone verifying is only supported in preceding bank card payment, i.e. holder inputs bank card information without opening Internetbank, in the payment page(Block
Number, password, CVN2 etc.)And phone number, by issuing bank's verification information and complete the means of payment of payment transaction.
(2)Quick payment
Refer to that third party's account and bank card are associated by holder, bank card information is substituted by third party's account information
It is paid.It is supplied to the more convenient payment flow experience of registration user.
Above two method has its disadvantage:
(1)Certification payment
It is substantially and the identity legitimacy of user is authenticated by the way of mobile phone identifying code, which is comparatively
Compare safety.But with the development of mobile technology, more and more hackers by planting trojan horse on the mobile phone of user, or
Person builds communications relay system, to steal the note data of user, and cooperates the user's bank card information stolen, to steal use
Family debt;
(2)Quick payment
The quick payment mode and process defined above that the company of third party's on-line payment at present uses are consistent, and are used
Third party's account and password are paid.Although the means of payment eliminates the step of user inputs bank card information, its
Third party's account and password equally face the risk being stolen.And be once stolen, it is equivalent to steal background account institute
The bank card of binding, and then steal the debt of user.
From the description of the above currently a popular internet payment mode it is found that safety of payment and it is convenient be opposite.
Summary of the invention
In view of the above problems, the present invention is intended to provide a kind of peace that can be realized both payment safety and convenience balance
Complete easily on-line payment method and on-line payment system.
On-line payment method based on IC bank card of the invention, which is characterized in that including:
Binding step is opened, user will accept application and download to terminal device, and will accept application and the realization of IC bank card
Binding;And
Payment step, including:
Payment application generates the first sub-step of request to accepting using initiation dynamic token;
Whether effectively and silver-colored to IC in the case where verifying effective situation accept the generation of dynamic token described in application verification request
Row card initiates the second sub-step of dynamic token acquisition request;
IC bank card generates dynamic token summary data according to dynamic token acquisition request and return accepts the third of application
Sub-step;
After accepting using generating dynamic token according to the dynamic token summary data of acquisition and being encrypted to dynamic token
Back to the 4th sub-step of payment application;
Payment application sends the payment request comprising the dynamic token to the 5th sub-step of payment system;
Payment system is decrypted payment request, authenticates and completes the 6th son of payment in the case of successful certification
Step.
Preferably, it is opened in binding step described, by realize accepting application using input security information to accepting
With the binding of IC bank card.
Preferably, the security information includes for that will accept using the application numbers bound with payment account, use
In to access authenticated access password, the sensitive information encryption key for being encrypted to sensitive information, for establishing
The public private key certificate of the application of secure transmission tunnel between payment application and payment system.
Preferably, in first sub-step, payment application to accept using initiate dynamic token generate request, in institute
Stating dynamic token and generating includes the access password, order information, payment account in request.
Preferably, second sub-step includes:
Accept using whether correctly whether effective to verify the dynamic token generation request by authentication-access password;
In the case where verifying effective situation, payment application initiates dynamic token acquisition request to IC bank card, in the dynamic token
It include order information in acquisition request, wherein the order information includes at least transaction amount, O/No., trade company number.
Preferably, in the third sub-step, IC bank card generates request rule life according to the rules according to dynamic token
Application is accepted at dynamic token summary data and return.
Preferably, the 4th sub-step includes:
The input using the dynamic token summary data that will be obtained as dynamic token generating algorithm is accepted, dynamic is generated and enables
Board;
The dynamic token of generation is encrypted using the sensitive information encryption key;And
Encrypted dynamic token is applied back to payment.
Preferably, in the 5th sub-step, payment application will include the dynamic token, order information, payment account
The payment request of information is sent to payment system.
Preferably, the 6th sub-step includes:
The dynamic token encrypted in the payment request received is decrypted in payment system;
According to accepting application numbers and payment account information, to payment account and accepts the binding between application and recognize
Card;And
In the case of successful certification, data are reorganized and dynamic token is authenticated.
On-line payment system based on IC bank card of the invention, which is characterized in that
Including:IC bank card accepts application, payment application, payment system, wherein described accept is applied and IC bank card
Binding,
Payment application is for generating request using initiating dynamic token to accepting, and for from accepting using receiving
The dynamic token of generation, and by comprising being sent to payment system using the payment request of dynamic token returned from accepting,
Described accept carries out verifying and logical using for generating request to the dynamic token from the payment application
It crosses and initiates dynamic token acquisition request to IC bank card in the case where verifying, and for receiving return from the IC bank card
Dynamic token summary data and according to dynamic token summary data generate dynamic token,
The IC bank card is for raw according to the rule of regulation in the case where receiving the dynamic token acquisition request
At dynamic token summary data and returns to and accepts application,
The payment system is used to authenticate simultaneously payment request in the case where receiving payment request from payment application
And payment is completed in the case of successful certification.
Preferably, it is described accept using with the binding between IC bank card by accept come using input security information it is real
It is existing.
Preferably, the security information includes for that will accept using the application numbers bound with payment account, use
In to access authenticated access password, the sensitive information encryption key for being encrypted to sensitive information, for establishing
The public private key certificate of the application of secure transmission tunnel between payment application and payment system.
Preferably, described to accept using for raw using dynamic token summary data as the input of dynamic token generating algorithm
The dynamic token of generation is encrypted at dynamic token, and using the sensitive information encryption key, and described is accepted
Using be also used to by encrypted dynamic token and accept application numbers return to payment application.
Preferably, payment application is for from accepting using receiving encrypted dynamic token and accept using compiling
In the case where number, encrypted dynamic token, order information, payment account information are sent to payment system to initiate payment and ask
It asks.
Preferably, the payment system is in the case where receiving payment request for the encryption data received to be decrypted
And according to accepting application numbers and payment account information to accepting using being authenticated with the binding relationship of IC bank card and again
New group organization data authenticates dynamic token.
It, can according to the on-line payment cashing method of aforementioned present invention and the on-line payment cash collecting system of aforementioned present invention
With following beneficial technical effects:
Due to accepting using secure access password is provided with, only by the entity of certification, can just initiate to generate dynamic
The request of token, thereby it is ensured that the safety of payment;
Certificate information needed for being used to establish SSL end-by-end security transmission channel with payment system built in is accepted,
Thereby it is ensured that data are transferred to the safety of payment system;
It accepts using also built-in sensitive information encryption key, sensitive information, such as dynamic token is encrypted, by
This, can guarantee during being transferred to payment system, will not be stolen, and further increase the safety of payment;
The data as needed for generating dynamic token are generated using IC bank card, i.e., raw by credit card issuer cipher key calculation
At the dynamic token of generation only has credit card issuer that can just verify its true and false, therefore, can further increase the safety of payment;
It accepts and is bound using by application numbers and bank card account, so that its bank account supported is limited, in this way,
Token payment authentication just can be used in bank card only by binding, therefore, can further increase the safety of payment;
After paying application and receiving dynamic token, branch is sent together as payment request by dynamic token and order information
Pay system, dynamic token and order information are bound in this way, can prevent dynamic token be re-used carry out playback attack
The risk hit further improves the safety of payment;
Using on-line payment cashing method of the invention, when being paid, as long as user selects the branch bound in it to pay a bill
Family, and corresponding IC bank card is taken out, non-connect closely accepts using that can be easily accomplished payment, without carrying out input bank
The operation bidirectional of card card number etc..Therefore, on-line payment cashing method of the invention property easy to use with higher.
As described above, being capable of providing a kind of peace that can be realized both payment safety and convenience balance according to the present invention
Complete easily on-line payment method and on-line payment system.
Detailed description of the invention
Fig. 1 is the structural block diagram of the on-line payment system of the invention based on IC bank card.
Fig. 2 is the one of the on-line payment method for indicating that the on-line payment system using of the invention based on IC bank card is realized
The step order relation figure of a embodiment.
Specific embodiment
What is be described below is some in multiple embodiments of the invention, it is desirable to provide to basic understanding of the invention.And
It is not intended to and confirms crucial or conclusive element of the invention or limit scope of the claimed.
Fig. 1 is the structural block diagram of the on-line payment system of the invention based on IC bank card.
It is illustrated referring to summary of the Fig. 1 for the on-line payment system of the invention based on IC bank card.
As shown in Figure 1, the on-line payment system of the invention based on IC bank card includes:IC bank card 100 accepts application
200,300, payment system 400 are applied in payment.
Wherein, IC bank card 100, which refers to, meets the IC bank card that PBOC application standardizes and is mounted with PBOC payment application.This
IC bank card 100 in invention can at least be supported non-to connect the means of payment.On the other hand, as a kind of optional mode, this hair
IC bank card further 100 in bright can also support the contact means of payment.
It accepts and is built-in with IC bank card dynamic token generating algorithm and logic using 200, and be provided with access password.Root
The request that 300 are applied according to following payments, can interact with IC bank card 100, obtain token summary data, and according to built-in
Algorithm generates dynamic token.
300 built-in payment business processing logics are applied in payment, are connected with payment system 400, can be sent out to payment system 400
Payment request is played, while paying and being also connected using 200 with accepting using 300, to accepting using 200 application acquisition dynamic tokens.
Payment system 400 is for authenticating payment information and completing to pay.On the other hand, pass through following " users
Registration " step, payment system 400 record following application numbers accepted using 200(That is ID)Binding with user account is closed
System).
It IC bank card 100 and accepts and can connect mode by non-using 200(Or contact mode)Communication connection.By ought to
It is applied between 300 with 200 and payment and payment applies and is able to communication connection between 300 and payment system 400.
It can be realized using the on-line payment system based on IC bank card of aforementioned present invention of the invention based on IC bank
The on-line payment method of card.On-line payment method based on IC bank card of the invention is segmented into two big key steps first:
(One)Open binding step and(Two)Payment step.
Below for(One)Open binding step and(Two)Payment step is specifically described.
(One)Open binding step
It accepts and has over-network registration using 200 and open function.It accepts and, is needing to open when first used registration using 200.
Specifically, opening binding step includes following sub-steps:
(1)User's registration
IC bank card on-line payment requires user to register in advance.By registration, can be convenient subsequent for user's customization
It pays the personal data of application and carries out payment account binding.
(2)It accepts using downloading sub-step
User's downloading is accepted using 200 to terminal device(Such as laptop, plate, smart phone etc.)Safety deposit
Storage area domain.For example, payment application can be embedded in the safety chip of laptop, may be implemented to build with payment system
Vertical end-by-end security transmission channel, is highly safe.
(3)It accepts using personal subslep
At least need to be written application numbers, access password accepting in using 200(By there is user accepting using individualized
When be configured), the certificate informations such as sensitive information encryption key and Application Certificate, and need by these information securities to be written
It is applied in 200 to accepting.
Wherein, application numbers are the unique ID accepted using 200 for binding with payment account.Access password is used for
Implement certification using the access carried out to accepting.Sensitive information encryption key is used for all kinds of sensitive datas, such as pays close
Code, following dynamic tokens etc..It is logical with the transmission of the end-by-end security of payment system 400 for establishing using public private key certificate
Road.
(4)Account binds sub-step
It is bound by above-mentioned unique application numbers with IC bank card account, to limit the bank of acceptable use
Account.The means of payment of the invention based on token authentication just can be used in IC bank card only by binding.Thereby, it is possible to
Improve the safety of payment.
In addition, accept using being one-to-many relationship between 200 and user's bank account, i.e., one accept can be with using 200
Corresponding multiple user's bank accounts a, however, bank account can only once be tied to an application numbers.
(Two)Payment step
It is illustrated below for the above-mentioned payment step carried out after binding step of opening has been completed.
Fig. 2 is the one of the on-line payment method for indicating that the on-line payment system using of the invention based on IC bank card is realized
The step order relation figure of a embodiment.Here, description payment application receives the reality of a typical quick payment after pay invoice
Apply example.Hereinafter, being illustrated referring to specific step sequence of the Fig. 2 for the embodiment.
Walk sequence 1:From payment application to the request accepted using initiation generation dynamic token.Wherein, request content includes such as
Lower information:
(1)Access password;
(2)Order information, such as the order amount of money, O/No. and trade company number;
(3)Payment account can be Third-party payment account according to demand.
Walk sequence 2:Whether the request for accepting application verification generation dynamic token is effective.Specifically, application verification request is accepted
Validity, in the present embodiment, by authentication-access password whether correctly come verify generate dynamic token request whether have
Effect.
Walk sequence 3:After being verified, asking for acquisition dynamic token generation data is initiated using to IC bank card to accepting
It asks.It may include order information, such as transaction amount, O/No., trade company number in the request.
Walk sequence 4:IC bank card generates dynamic token summary data according to the rule of regulation, and returns to and accept application.
Here, an embodiment as defined rule, can be using the online friendship of multiplexing debt-credit note PBOC application
Mutual process generates the ciphertexts data such as AAC, is exemplified below:
Refuse application cryptogram by GENERATE AC command request(AAC), the data needed for GENERATE AC order press
Arrange default settings according to algorithm, such as:
| Data element | About definite value |
| Authorize the amount of money | Full 0 or transaction amount |
| Unpredictable number | 8 or credit card issuer challenge code after full 0 or card number |
| Terminal country code | 0156 |
| Terminal authentication result | Full 0 |
| ...... | ...... |
The data such as response data ACC, ATC and IAD to GENERATE AC order according to the algorithm of agreement handled from
And dynamic token is generated, such as:
By ATC(2 bytes)By generating ATC ' with 2 byte exclusive or before ACC(2 bytes), by AAC(Preceding 4 byte)Pass through surprise
Even position, which exchanges, generates AAC '(2 bytes), by IAC(Preceding 2 byte)It is exchanged by parity bit and generates IAC '(2 bytes), generate in this way
Include the generation dynamic token of ATC ', AAC ', IAC '.
Walk sequence 5:It accepts using using the dynamic token summary data received from IC bank card as dynamic token generating algorithm
Input, generate dynamic token further encrypted using dynamic token of the sensitive information encryption key to generation.
Walk sequence 6:It accepts and returns to payment application using by encrypted dynamic token.Here, in addition to dynamic token, may be used also
It can include other data, such as accept application numbers etc..
Walk sequence 7:Payment application initiates payment request to payment system.Wherein, solicited message includes following content:
(1)Dynamic token;
(2)Order information;
(3)Payment account information(It can be Third-party payment account according to demand).
Walk sequence 8:After payment system receives payment request, it is decrypted, is authenticated.It specifically mainly include following sub-steps
Suddenly:
(1)To the solicited message received from payment application(It is referred to as payment message)Secure decryption certification is carried out, and
Extract related data, such as dynamic token;
(2)Accept application numbers and payment account information according to include in above-mentioned solicited message, to its binding relationship into
Row certification;
(3)Data are reorganized, dynamic token is authenticated, that is, according to the reversible algorithm of above-mentioned defined rule, from
The data such as ATC and application cryptogram AAC are extracted in solicited message, according to above-mentioned agreement data element numerical generation application cryptogram AAC '
Etc. data, whether consistent, be achieved in dynamic token if comparing the data such as the AAC data recovered and the AAC ' regenerated
Certification;
Either step authentication failed in above-mentioned steps all returns and pays unsuccessful result notice.Otherwise, branch is returned
Pay successful result notice.
Walk sequence 9:Payment system returns to the result notice of payment to payment application.
In the following, being carried out again furtherly for the on-line payment cash collecting system for completing on-line payment cashing method of the invention
It is bright.
On-line payment system based on IC bank card of the invention includes as described above:IC bank card 100 accepts application
200,300, payment system 400 are applied in payment, wherein described accept is applied and IC bank card binding.
The payment using 300 for initiating dynamic tokens using 200 and generating request to accepting, and for from by ought to
The dynamic token generated is received with 200, and will be comprising being sent to from the payment request for accepting the dynamic token returned using 200
Payment system 400.
It is described to accept using 200 for being verified simultaneously to from the payment using 300 dynamic token generation request
And dynamic token acquisition request is initiated to IC bank card 100 through verifying, and be used for from the IC bank card
100 receive the dynamic token summary data returned and generate dynamic token according to dynamic token summary data.
The IC bank card 100 is used in the case where receiving the dynamic token acquisition request according to the rule of regulation
It generates dynamic token summary data and returns to and accept using 200.
The payment system 400 is used to carry out payment request in the case where receiving payment request using 300 from payment
It authenticates and completes payment in the case of successful certification.
Preferably, it is described accept using the binding between 200 and IC bank card 100 by accept using 200 input pacify
Full information is realized.
Preferably, the security information includes for that will accept using the application numbers bound with payment account, use
In to access authenticated access password, the sensitive information encryption key for being encrypted to sensitive information, for establishing
The public private key certificate of the application of secure transmission tunnel between payment application and payment system.
Wherein, described accept is also used to using 200 using dynamic token summary data as the defeated of dynamic token generating algorithm
Enter and generate dynamic token, and the dynamic token of generation is encrypted using the sensitive information encryption key, and described
It accepts and is also used to encrypted dynamic token using 200 and accepts application numbers and return to payment using 300.
Wherein, the payment is also used to receiving encrypted dynamic token using 200 and accept from accepting using 300
In the case where application numbers, by encrypted dynamic token, order information, payment account information be sent to payment system 400 with
Initiate payment request.
Wherein, the payment system 400 is in the case where receiving payment request for solving to the encryption data received
It is close and recognized using 200 and the binding relationship of IC bank card 100 according to application numbers and payment account information is accepted to accepting
It demonstrate,proves and reorganizes data and dynamic token is authenticated.
It, can according to the on-line payment cashing method of aforementioned present invention and the on-line payment cash collecting system of aforementioned present invention
With following beneficial technical effects:
(1)Due to accepting using secure access password is provided with, only by the entity of certification, can just initiate to generate dynamic
The request of state token, thereby it is ensured that the safety of payment;
(2)It accepts and believes using built-in for certificate needed for establishing SSL end-by-end security transmission channel with payment system
Breath, thereby it is ensured that data are transferred to the safety of payment system;
(3)?(2)On the basis of, it accepts using also built-in sensitive information encryption key, to sensitive information, such as dynamic token
It encrypts, thereby, it is possible to guarantee during being transferred to payment system, will not be stolen, further increase payment
Safety;
(4)The data as needed for generating dynamic token are generated using IC bank card, that is, pass through credit card issuer cipher key calculation
It generates, the dynamic token of generation only has credit card issuer that can just verify its true and false, therefore, can further increase the safety of payment
Property;
(5)It accepts and is bound using by application numbers and bank card account, so that its bank account supported is limited, this
Token payment authentication just can be used in sample, the only bank card by binding, therefore, can further increase the safety of payment
Property;
(6)After paying application and receiving dynamic token, dynamic token and order information are sent together as payment request
To payment system, dynamic token and order information are bound in this way, dynamic token can be prevented to be re-used and carry out weight
The risk for putting attack further improves the safety of payment;
(7)Using on-line payment cashing method of the invention, when being paid, as long as user selects the payment bound in it
Account, and corresponding IC bank card is taken out, non-connect closely accepts using that can be easily accomplished payment, without carrying out input silver
The operation bidirectional of row card card number etc..Therefore, on-line payment cashing method of the invention property easy to use with higher.
Example above primarily illustrates on-line payment cash collecting system and on-line payment cashing method of the invention.Although only
Some of a specific embodiment of the invention are described, but those of ordinary skill in the art are it is to be appreciated that this hair
It is bright to implement without departing from its spirit in range in many other form.Therefore, the example and embodiment shown
It is considered as illustrative and not restrictive, not departing from the spirit and scope of the present invention as defined in appended claims
In the case of, the present invention may cover various modification and replacement.
Claims (13)
1. a kind of on-line payment method based on IC bank card, which is characterized in that including:
Binding step is opened, user will accept application and download to terminal device, and will accept application and the realization binding of IC bank card;
And
Payment step, including:
Payment application generates the first sub-step of request to accepting using initiation dynamic token;
Accept dynamic token described in application verification generate request whether effectively and in the case where verifying effective situation to IC bank card
Initiate the second sub-step of dynamic token acquisition request;
IC bank card generates dynamic token summary data according to dynamic token acquisition request and return accepts the third sub-step of application
Suddenly;
It accepts and is returned using according to the dynamic token summary data of acquisition generation dynamic token and after being encrypted to dynamic token
To the 4th sub-step of payment application;
Payment application sends the payment request comprising the dynamic token to the 5th sub-step of payment system;
Payment system is decrypted payment request, authenticates and completes the 6th sub-step of payment in the case of successful certification
Wherein, the 4th sub-step includes:
The input using the dynamic token summary data that will be obtained as dynamic token generating algorithm is accepted, dynamic token is generated;
The dynamic token of generation is encrypted using sensitive information encryption key;And
Encrypted dynamic token is applied back to payment.
2. as described in claim 1 based on the on-line payment method of IC bank card, which is characterized in that
It is described open binding step in, by accept using input security information come realize accept using and IC bank card
Binding.
3. as claimed in claim 2 based on the on-line payment method of IC bank card, which is characterized in that
The security information includes for accepting using the application numbers bound with payment account, being used to carry out access
The access password of certification, pays application for foundation and props up the sensitive information encryption key for being encrypted to sensitive information
The public private key certificate of the application of secure transmission tunnel between the system of paying.
4. as claimed in claim 3 based on the on-line payment method of IC bank card, which is characterized in that
In first sub-step, payment application to accept using initiate dynamic token generate request, in the dynamic token
It generates and includes at least the access password, order information, payment account in request.
5. as claimed in claim 3 based on the on-line payment method of IC bank card, which is characterized in that
Second sub-step includes:
Accept using whether correctly whether effective to verify the dynamic token generation request by authentication-access password;
In the case where verifying effective situation, payment application initiates dynamic token acquisition request to IC bank card, obtains in the dynamic token
It include order information in request, wherein the order information includes at least transaction amount, O/No., trade company number.
6. as claimed in claim 3 based on the on-line payment method of IC bank card, which is characterized in that
In the third sub-step, IC bank card according to dynamic token generation request, pluck according to the rules by rule generation dynamic token
It wants data and returns to accept application.
7. as claimed in claim 3 based on the on-line payment method of IC bank card, which is characterized in that
In the 5th sub-step, the payment comprising the dynamic token, order information, payment account information is asked in payment application
It asks and is sent to payment system.
8. as claimed in claim 3 based on the on-line payment method of IC bank card, which is characterized in that
6th sub-step includes:
The dynamic token encrypted in the payment request received is decrypted in payment system;
According to accepting application numbers and payment account information, to payment account and accepts the binding between application and authenticate;With
And
In the case of successful certification, data are reorganized and dynamic token is authenticated.
9. a kind of on-line payment system based on IC bank card, which is characterized in that
Including:IC bank card accepts application, payment application, payment system, wherein and it is described to accept application and IC bank card binding,
Payment application is for generating request using initiating dynamic token to accepting, and for generating using receiving from accepting
Dynamic token, and by comprising being sent to payment system using the payment request of dynamic token returned from accepting,
Described accept carries out verifying and by testing using for generating request to the dynamic token from the payment application
Dynamic token acquisition request is initiated to IC bank card in the case where card, and for receiving the dynamic returned from the IC bank card
Token summary data and according to dynamic token summary data generate dynamic token,
The IC bank card generates dynamic for the rule in the case where receiving the dynamic token acquisition request according to regulation
State token summary data simultaneously returns to and accepts application,
The payment system be used for from payment application receive payment request in the case where to payment request carry out certification and
It authenticates and completes payment in successful situation,
Wherein, described to accept using for generating dynamic for dynamic token summary data as the input of dynamic token generating algorithm
Token, and being encrypted using dynamic token of the sensitive information encryption key to generation, and described accept using being also used to
By encrypted dynamic token and accept application numbers return to payment application.
10. the on-line payment system as claimed in claim 9 based on IC bank card, which is characterized in that
It is described to accept application with the binding between IC bank card by realizing to application input security information is accepted.
11. the on-line payment system as claimed in claim 10 based on IC bank card, which is characterized in that
The security information includes for accepting using the application numbers bound with payment account, being used to carry out access
The access password of certification, pays application for foundation and props up the sensitive information encryption key for being encrypted to sensitive information
The public private key certificate of the application of secure transmission tunnel between the system of paying.
12. the on-line payment system as claimed in claim 9 based on IC bank card, which is characterized in that
Payment application for from accepting using receiving encrypted dynamic token and accepting application numbers,
Encrypted dynamic token, order information, payment account information are sent to payment system to initiate payment request.
13. the on-line payment system as claimed in claim 12 based on IC bank card, which is characterized in that
The payment system is in the case where receiving payment request for the encryption data received to be decrypted and according to accepting
Application numbers and payment account information are authenticated using the binding relationship with IC bank card and reorganize data to accepting
Dynamic token is authenticated.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410077818.3A CN104899741B (en) | 2014-03-05 | 2014-03-05 | A kind of on-line payment method and on-line payment system based on IC bank card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410077818.3A CN104899741B (en) | 2014-03-05 | 2014-03-05 | A kind of on-line payment method and on-line payment system based on IC bank card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104899741A CN104899741A (en) | 2015-09-09 |
| CN104899741B true CN104899741B (en) | 2018-11-27 |
Family
ID=54032393
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410077818.3A Active CN104899741B (en) | 2014-03-05 | 2014-03-05 | A kind of on-line payment method and on-line payment system based on IC bank card |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104899741B (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105488679B (en) | 2015-11-23 | 2019-12-03 | 北京小米支付技术有限公司 | Mobile payment device, method and apparatus based on biological identification technology |
| CN106251148B (en) * | 2016-08-12 | 2021-09-10 | 闻进 | Safe payment method for interactively acquiring acceptance terminal information and associating payment card information |
| CN106339873A (en) * | 2016-08-30 | 2017-01-18 | 中国银联股份有限公司 | Token based payment method and system |
| CN109150528A (en) * | 2018-11-07 | 2019-01-04 | 杭州海兴电力科技股份有限公司 | A kind of ammeter data access method, device, equipment and readable storage medium storing program for executing |
| CN111626739B (en) * | 2020-05-14 | 2023-09-01 | 网银在线(北京)科技有限公司 | Payment method, device, equipment and computer readable storage medium |
| CN111861457B (en) * | 2020-06-28 | 2023-02-21 | 中国银联股份有限公司 | Payment token application method, device, system and server |
| CN112215592B (en) * | 2020-09-21 | 2023-06-30 | 建信金融科技有限责任公司 | Data processing method and system |
| CN115689539A (en) * | 2021-05-11 | 2023-02-03 | 支付宝(中国)网络技术有限公司 | Payment method, device and equipment |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101401111A (en) * | 2006-03-10 | 2009-04-01 | 日本电气株式会社 | Mobile terminal, ic card module, information processing method, and program |
| CN101727704A (en) * | 2008-10-27 | 2010-06-09 | 李慧 | Handheld equipment specially used for mobile bank terminal |
| CN102118250A (en) * | 2011-01-10 | 2011-07-06 | 上海众人网络安全技术有限公司 | System and method for indentifying dynamic password based on double-interface intelligent card |
| CN102509394A (en) * | 2011-11-01 | 2012-06-20 | 卢清伟 | Multi-account management system based on IC (identification card) and identification password combined login |
| EP2595106A1 (en) * | 2011-10-28 | 2013-05-22 | LG CNS Co., Ltd. | Unified transportation payment system |
| CN103136881A (en) * | 2011-11-22 | 2013-06-05 | 中国银联股份有限公司 | Payment method and payment system |
-
2014
- 2014-03-05 CN CN201410077818.3A patent/CN104899741B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101401111A (en) * | 2006-03-10 | 2009-04-01 | 日本电气株式会社 | Mobile terminal, ic card module, information processing method, and program |
| CN101727704A (en) * | 2008-10-27 | 2010-06-09 | 李慧 | Handheld equipment specially used for mobile bank terminal |
| CN102118250A (en) * | 2011-01-10 | 2011-07-06 | 上海众人网络安全技术有限公司 | System and method for indentifying dynamic password based on double-interface intelligent card |
| EP2595106A1 (en) * | 2011-10-28 | 2013-05-22 | LG CNS Co., Ltd. | Unified transportation payment system |
| CN102509394A (en) * | 2011-11-01 | 2012-06-20 | 卢清伟 | Multi-account management system based on IC (identification card) and identification password combined login |
| CN103136881A (en) * | 2011-11-22 | 2013-06-05 | 中国银联股份有限公司 | Payment method and payment system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104899741A (en) | 2015-09-09 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104899741B (en) | A kind of on-line payment method and on-line payment system based on IC bank card | |
| KR102044748B1 (en) | System for providing blockchain electronic wallet capable of managing authentication information and storing personal information | |
| US20200286088A1 (en) | Method, device, and system for securing payment data for transmission over open communication networks | |
| US10515362B2 (en) | Methods and apparatus for card transactions | |
| JP4846154B2 (en) | Method and system for secure authentication settlement in a computer network | |
| US9704160B2 (en) | Trusted execution environment for transport layer security key pair associated with electronic commerce and card not present transactions | |
| CN107230068B (en) | Method and system for paying digital currency using a visual digital currency chip card | |
| CN107230050B (en) | Method and system for paying digital currency based on visible digital currency chip card | |
| CN104915832B (en) | Mobile payment, verification method and its device and system | |
| CN107230053B (en) | Method and system for exchanging digital currency by cash | |
| CN107230049B (en) | Method and system for providing digital currency | |
| CN102202300A (en) | System and method for dynamic password authentication based on dual channels | |
| US20120254041A1 (en) | One-time credit card numbers | |
| CN108122112A (en) | Electronic ID card based on authentication device signs and issues certification and safety payment system | |
| KR100939725B1 (en) | Certification method for a mobile phone | |
| El Madhoun et al. | An online security protocol for NFC payment: Formally analyzed by the scyther tool | |
| CN107240010B (en) | Method and system for transferring digital currency to digital currency chip card | |
| Yu et al. | Security issues of in-store mobile payment | |
| CN107230078B (en) | Method and system for paying digital currency using a visual digital currency chip card | |
| CN106330888A (en) | Method and device for ensuring security of Internet online payment | |
| CN101593325A (en) | Secure processing method for financial transaction data, payment platform, portable terminal and system | |
| CN107230073B (en) | Method and system for paying digital currency between visible digital currency chip cards | |
| CN107230074B (en) | Method and system for depositing digital currency into digital currency chip card | |
| CN107230076B (en) | Method and system for online payment of digital currency | |
| CN107230067B (en) | Conversion and payment method based on digital currency chip card and digital currency system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |