CN105427106B - Authorization processing method and payment processing method of electronic cash data and virtual card - Google Patents
Authorization processing method and payment processing method of electronic cash data and virtual card Download PDFInfo
- Publication number
- CN105427106B CN105427106B CN201410474519.3A CN201410474519A CN105427106B CN 105427106 B CN105427106 B CN 105427106B CN 201410474519 A CN201410474519 A CN 201410474519A CN 105427106 B CN105427106 B CN 105427106B
- Authority
- CN
- China
- Prior art keywords
- data
- card
- authorization
- virtual card
- entity
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q30/00—Commerce
Abstract
The invention relates to an authorization processing method, a payment processing method and a virtual card of electronic cash data, wherein the authorization processing method comprises the following steps: establishing a communication channel between the virtual card and the entity card; sending authorization application information to the entity card, wherein the authorization application information carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and application limit data; receiving authorization data sent by the entity card, wherein the authorization data comprises authorization amount data, and sending entity card related data application information to the entity card; and receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period. Therefore, after the authorization processing method is adopted, the electronic cash data can be authorized to other users under the condition of keeping the entity card, so that the other users can carry out off-line transaction after the electronic cash data is authorized.
Description
Technical Field
The invention relates to the technical field of communication, in particular to an authorization processing method, a payment processing method and a virtual card of electronic cash data.
Background
Currently, with the advanced development of information technology, people are gradually used to use a bank card to perform card swiping consumption, the balance of Electronic Cash (EC) can be recorded in the bank card, and a user can use the EC stored in the bank card to perform consumption, wherein the EC is Cash simulated in an Electronic form and is generally applied to micropayment, and the user does not need to input a password when consuming the EC. The EC exists in the form of digital information, and the electronic cash data may be recorded in an Integrated Circuit (IC) Card, for example, an IC Card issued by a bank currently has an electronic cash function, and the IC Card issued by the bank is simply referred to as a bank Card for convenience of description.
In the prior art, a bank card exists in the form of a physical card, an IC card recorded with electronic cash data can be collectively referred to as a physical card, according to PBOC specification and QPBOC specification, the electronic cash data can only be recorded in the physical card, and when a user performs an offline transaction, information interaction is performed with a card reader through the physical card, so that consumption is realized, the offline transaction refers to a transaction that can be completed without connecting to a network, wherein the card reader is not networked with other terminals. If the user wants to authorize the electronic cash data recorded in the bank card to other users, the bank card can only be delivered to other users.
By adopting the authorization processing method of the electronic cash data in the prior art, the electronic cash data cannot be authorized to other users under the condition of keeping the entity card, so that the other users can carry out off-line transaction after the electronic cash data is authorized.
Disclosure of Invention
The invention provides an authorization processing method of electronic cash data, a payment processing method and a virtual card, and aims to solve the problem that the electronic cash data cannot be authorized to other users under the condition of keeping a physical card, so that the other users can carry out off-line transaction after the electronic cash data is authorized.
To achieve the above object, in a first aspect, the present invention provides an authorization processing method for electronic cash data, the method including: establishing a communication channel between the virtual card and the entity card; sending authorization application information to the entity card through the communication channel, wherein the authorization application information carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and application limit data; the entity card authenticates the verification code, if the verification code passes the authentication, the authorization is legal, and a virtual card number is generated; generating authorized amount data and transaction limit data according to the application amount data, encrypting the first virtual card carrier unique identification code, the authorized amount data, the virtual card validity period and the transaction limit data by using an authorization key to obtain ciphertext data, digitally signing by using the virtual card number, the entity card number, the first virtual card carrier unique identification code, the authorized amount data, the virtual card validity period, the transaction limit data and the ciphertext data to obtain authorized data, and sending the authorized data to the virtual card; receiving the authorization data sent by the entity card, and sending entity card related data application information to the entity card; and receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period.
In a second aspect, the present invention provides a method of payment processing for electronic cash data, the method comprising: establishing a communication channel between the virtual card and the card reader; sending authorization data and an entity card validity period to the card reader through the communication channel; the authorization data is obtained by carrying out digital signature on the entity card by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorization amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data; the card reader obtains a first virtual card carrier unique identification code, authorized amount data, virtual card validity period, transaction limit data and ciphertext data through the authorization data; decrypting the ciphertext data by adopting an authorization key to obtain a second virtual card carrier unique identification code, and confirming that the authorization is real when the second virtual card carrier unique identification code is the same as the first virtual card carrier unique identification code; judging whether the payment is valid according to the authorization amount data, the transaction limit data, the virtual card validity period and the entity card validity period, and when the judgment result is that the payment is valid, performing electronic cash data payment according to the virtual card number and the entity card number and sending payment amount data to the virtual card; and receiving payment amount data sent by the card reader, updating balance data according to the payment amount data, and adding transaction record information, wherein the transaction record information comprises transaction time data, transaction place data and transaction amount data.
In a third aspect, the present invention provides a virtual card comprising: an electronic cash authorization module and an electronic cash payment module; the electronic cash authorization module comprises: the first channel establishing unit is used for establishing a communication channel with the entity card; the authorization application information sending unit is used for sending authorization application information to the entity card through the communication channel established by the first channel establishing unit, wherein the authorization application information carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and application limit data; an authorization data receiving unit for receiving the authorization data sent by the entity card, wherein the authorization data is the authentication of the entity card to the verification code sent by the authorization application information sending unit, and the authorization is confirmed to be legal after the authentication is passed, so as to generate a virtual card number, generating authorized amount data and transaction limit data according to the application amount data sent by the authorized application information sending unit, encrypting the unique identification code of the first virtual card carrier, the authorized amount data, the virtual card validity period and the transaction limit data sent by the authorized application information sending unit by using an authorization key to obtain ciphertext data, and digitally signing the obtained authorization data by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorized amount data, the virtual card validity period, the transaction limit data and the ciphertext data; the entity card related data application information sending unit is used for sending entity card related data application information to the entity card; the entity card related data reply information receiving unit is used for receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period; the electronic cash payment module includes: the second channel establishing unit is used for establishing a communication channel with the card reader; the sending unit is used for sending authorization data and the validity period of the entity card to the card reader through the communication channel established by the second channel establishing unit; the authorization data is obtained by carrying out digital signature on the entity card by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorization amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data; the card reader obtains a first virtual card carrier unique identification code, authorized amount data, virtual card validity period, transaction limit data and ciphertext data through the authorization data; decrypting the ciphertext data by adopting an authorization key to obtain a second virtual card carrier unique identification code, and confirming that the authorization is real when the second virtual card carrier unique identification code is the same as the first virtual card carrier unique identification code; judging whether the payment is valid according to the authorization amount data, the transaction limit data, the virtual card validity period and the entity card validity period, and when the judgment result is that the payment is valid, performing electronic cash data payment according to the virtual card number and the entity card number and sending payment amount data to the virtual card; the receiving unit is used for receiving the payment amount data sent by the card reader; the updating unit is used for updating balance data according to the payment amount data received by the receiving unit; and the transaction record adding unit is used for adding transaction record information, and the transaction record information comprises transaction time data, transaction place data and transaction amount data.
The invention relates to an authorization processing method of electronic cash data, which comprises the steps of establishing a communication channel between a virtual card and an entity card, sending authorization application information to the entity card, wherein the authorization application information carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and application amount data, authenticating the verification code by the entity card, generating a virtual card number if the authentication is passed, generating authorization amount data and transaction limit data according to the application amount data, encrypting the first virtual card carrier unique identification code, the authorization amount data, the virtual card validity period and the transaction limit data by using an authorization key to obtain ciphertext data, and digitally signing the virtual card number, the entity card number, the first virtual card carrier unique identification code, the authorization amount data, the virtual card validity period, the transaction limit data and the ciphertext data to obtain authorization data, and sending the authorization data to the virtual card, receiving the authorization data sent by the entity card by the virtual card, sending entity card related data application information to the entity card, and receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period. Therefore, after the method for processing the electronic cash data by authorization is adopted, the electronic cash data can be authorized to the virtual card under the condition of keeping the physical card, which is equivalent to the electronic cash data authorized to other users holding the virtual card carrier, so that other users can perform off-line transaction through the virtual card carrier after the electronic cash data is authorized.
Drawings
FIG. 1 is a diagram of a physical card configuration in accordance with an embodiment of the present invention;
FIG. 2 is a flow chart of a method of authorizing processing of electronic cash data in one embodiment of the invention;
FIG. 3 is a flow chart of a method of payment processing of electronic cash data in one embodiment of the invention;
FIG. 4 is a diagram illustrating a virtual card structure according to an embodiment of the invention.
Detailed Description
The technical solution of the present invention is further described in detail by the accompanying drawings and embodiments.
Fig. 1 is a schematic diagram of a physical card structure according to an embodiment of the present invention. The entity card is internally provided with a microprocessor Chip 101 and a memory 102, wherein a Chip Operating System (COS) runs in the microprocessor Chip 101, the main function of the COS is to control information exchange between the entity card and the outside, manage the memory 102 in the entity card and complete processing of various commands in the entity card, electronic cash data is recorded in the memory 102 of the entity card, and the entity card can be a bank card, a bus card, a meal card and the like according to the application field of the entity card, which is not limited in the invention.
Preferably, the entity card may further include a Communication module 103 in addition to the microprocessor chip 101 and the memory 102, so that the entity card may communicate with a card reader or other terminal devices through the Communication module 103, and the Communication module 103 may specifically be a bluetooth Communication module or a Near Field Communication (NFC) Communication module.
Fig. 2 is a flowchart of an authorization processing method for electronic cash data according to an embodiment of the present invention, the method including:
step 201, the virtual card and the physical card establish a communication channel.
The virtual card is to be attached to a certain carrier to be implemented, the virtual card carrier may be an intelligent terminal device, such as a mobile phone, a tablet computer, or an entity card, and the virtual card carrier should support at least one of a bluetooth communication mode and an NFC communication mode.
In the embodiment of the present invention, an operating system running on the smartphone is not specifically limited, that is, the virtual card may run on the smartphone with an Android operating system or on the smartphone with an operating system such as WP or iOS. The virtual card can be a program and a file of a specific type which run on a virtual card carrier, the program can be an APP (application), a service and the like, when the virtual card carrier is a smart phone, a physical card needs to be simulated during programming, a virtual card user interface, a virtual card COS (chip operating system) and an authorization control logic are established, and the file of the specific type in the virtual card is mainly used for storing data required when a transaction occurs.
In this embodiment of the present invention, the entity card may have a structure shown in fig. 1 and has a bluetooth communication module or an NFC communication module, so that the virtual card may establish a communication channel with the entity card through the virtual card carrier in a bluetooth communication manner or an NFC communication manner.
The establishing of the communication channel between the virtual card and the entity card may specifically include: the virtual card establishes a communication channel with the entity card by adopting an NFC mode or a Bluetooth communication mode.
In the embodiment of the invention, the virtual card and the entity card are represented as card reading equipment when communicating.
Step 202, the virtual card sends authorization application information to the entity card through the communication channel established in step 201, wherein the authorization application information carries the verification code, the unique identification code of the first virtual card carrier, the validity period of the virtual card and the application limit data.
The verification code may be a combination of numbers preset by a user and stored in the physical card, such as 000000; also combinations of letters are possible, such as AA; but also a combination of letters and numbers, such as a1, and those skilled in the art can recognize that the above-mentioned verification code has many possible forms, and the present invention is not limited thereto.
The first virtual card carrier unique identification code may be a serial number of a mobile phone or a Subscriber Identity Module (SIM) card number, or other encoded information capable of uniquely identifying the virtual card carrier.
The virtual card validity period may be a time period for which the virtual card is valid, which is set by the user through the virtual card carrier, for example, the virtual card validity period is set to 2014 year 8 month 1 day to 2014 year 9 month 1 day, or the virtual card validity period is set to 2014 year 8 month 1 day to 2014 year 8 month 2 day, or the virtual card validity period is set to 2014 year 8 month 1 day 10 hour 00 minute 00 second to 2014 year 8 month 1 day 10 hour 30 minute 00 second, and specific setting forms may be various, which is not limited by the present invention. The virtual card is enabled to be time-efficient by setting the validity period of the virtual card.
The credit application data is the data of the amount of the authorized electronic cash applied to the physical card by the virtual card, for example, 100 yuan.
In step 203, the entity card authenticates the verification code.
In step 204, if the authentication in step 203 is passed, the authorization is legal, and a virtual card number is generated.
In the embodiment of the invention, after the authorization is finished, if the user also wants to transfer the electronic cash data on the virtual card to the entity card, the entity card can verify the electronic cash data through the virtual card number, and the electronic cash data is transferred after the verification is legal.
In step 205, the entity card generates authorization amount data and transaction limit data according to the application limit data.
The entity card can judge whether the application amount data exceeds the balance of the electronic cash in the card, if not, the entity card generates authorization amount data equal to the application amount data, and if the application amount data exceeds the balance of the electronic cash in the card, the entity card sends authorization refusing information.
In the embodiment of the invention, when the application limit data does not exceed the balance of the electronic cash in the card, the authorization amount data can be generated in a mode that the authorization amount data can be equal to the application limit data or smaller or larger than the application limit data according to the preset rule. Specifically, the authorized amount data may be generated according to the application amount data and the validity period of the virtual card, for example, the correspondence between the application amount data, the validity period of the virtual card, and the authorized amount data may be as shown in table one.
Watch 1
As can be seen from the table I, if the data of the applied amount is 30 yuan and the validity period of the virtual card is 1 month, the data of the authorized amount is 50 yuan; if the data of the applied amount is 200 yuan and the validity period of the virtual card is 3 months, the data of the authorized amount is 500 yuan.
In step 206, the entity card encrypts the unique identifier of the first virtual card carrier, the authorized amount data, the validity period of the virtual card and the transaction limit data by using the authorization key to obtain ciphertext data.
And step 207, the entity card carries out digital signature by utilizing the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorized amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data to obtain authorized data.
And step 208, the entity card sends the authorization data to the virtual card, and the virtual card receives the authorization data sent by the entity card.
After receiving the authorization data sent by the entity card, the virtual card may store the authorization data.
Step 209, the virtual card sends the data application information related to the physical card.
Step 210, the virtual card receives entity card related data reply information returned by the entity card, wherein the entity card related data reply information includes an entity card validity period.
After receiving the entity card related data reply information returned by the entity card, the virtual card can store the entity card validity period included in the entity card related data reply information.
As can be seen from the above process, in the method for authorized processing of electronic cash data according to the embodiment of the present invention, a communication channel is established between a virtual card and an entity card, an authorization request message is sent to the entity card, the authorization request message carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and a request amount data, the entity card authenticates the verification code, if the authentication is successful, the authorization is legal, a virtual card number is generated, an authorization amount data and a transaction limit data are generated according to the request amount data, the first virtual card carrier unique identification code, the authorization amount data, the virtual card validity period and the transaction limit data are encrypted by an authorization key to obtain encrypted data, the virtual card number, the entity card number, the first virtual card carrier unique identification code, the authorization amount data, the virtual card validity period, the transaction limit data and the encrypted data are digitally signed to obtain authorization data, and sending the authorization data to the virtual card, receiving the authorization data sent by the entity card by the virtual card, sending entity card related data application information to the entity card, and receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period. As can be seen from the above, after the method for processing electronic cash data by authorization of the present invention is adopted, on one hand, the electronic cash data can be authorized to the virtual card while the physical card is retained, which is equivalent to the electronic cash data being authorized to other users holding the virtual card carrier; on the other hand, in the authorization process, the authorization data sent by the physical card to the virtual card contains authorization amount data, and the authorization amount data can be part of the electronic cash data of the physical card, so that the authorization of the part of the electronic cash data in the physical card to other users can be realized.
Fig. 3 is a flowchart of a payment processing method of electronic cash data according to an embodiment of the present invention, the method including:
step 301, the virtual card establishes a communication channel with the card reader.
Wherein, the virtual card establishes a communication channel with the card reader, and specifically may include: the virtual card establishes a communication channel with the card reader in an NFC mode or a Bluetooth communication mode.
In the embodiment of the invention, the virtual card is represented as a physical card when communicating with the card reader.
Step 302, the virtual card sends authorization data and the validity period of the entity card to the card reader through the communication channel established in step 301, wherein the authorization data is obtained by digitally signing the entity card by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorization amount data, the validity period of the virtual card and the ciphertext data.
Wherein the transaction limit data is used to define a maximum payment amount for each transaction of the virtual card.
In embodiments of the invention, when an anomalous transaction is generated and "arbitration" is required, the digital signature may provide evidence, but not participate in the consumption process.
And step 303, the card reader obtains the unique identification code of the first virtual card carrier, the authorized amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data through the authorization data. The card reader decrypts the ciphertext data by adopting the authorization key to obtain the unique identification code of the second virtual card carrier, and when the unique identification code of the second virtual card carrier is the same as the unique identification code of the first virtual card carrier, the authenticity of authorization is confirmed.
In the embodiment of the invention, the card reader can identify the legality and the authenticity of the virtual card in an off-line manner.
And step 304, the card reader judges whether the payment is effective according to the authorized amount data, the transaction limit data, the virtual card validity period and the entity card validity period, and when the judgment result shows that the payment is effective, electronic cash data payment is carried out according to the virtual card number and the entity card number.
In the embodiment of the invention, the card reader can identify the validity of the virtual card offline.
Step 305, the card reader sends payment amount data to the virtual card.
And step 306, the virtual card receives the payment amount data sent by the card reader, and the balance data is updated according to the payment amount data.
And 307, adding transaction record information, wherein the transaction record information comprises transaction time data, transaction place data and transaction amount data.
Fig. 4 is a schematic diagram of a virtual card structure in an embodiment of the present invention, where the virtual card includes: an electronic cash authorization module 401 and an electronic cash payment module 402;
the electronic cash authorization module 401 includes:
a first channel establishing unit 4011, configured to establish a communication channel with an entity card;
the authorization application information sending unit 4012 is configured to send authorization application information to the entity card through the communication channel established by the first channel establishing unit 4011, where the authorization application information carries an authentication code, a first virtual card carrier unique identification code, a virtual card validity period, and application limit data;
the authorization data receiving unit 4013 is configured to receive the authorization data sent by the entity card, where the authorization data is obtained by authenticating the verification code sent by the authorization application information sending unit 4012 by the entity card, and after the authentication is passed, the authorization is determined to be legal, and a virtual card number is generated, generating authorized amount data and transaction limit data according to the application amount data sent by the authorized application information sending unit 4012, encrypting the unique identification code of the first virtual card carrier, the authorized amount data, the validity period of the virtual card and the transaction limit data sent by the authorized application information sending unit 4012 by using an authorization key to obtain ciphertext data, and digitally signing the obtained authorization data by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorized amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data;
an authorization data storage unit 4014 configured to store the authorization data received by the authorization data receiving unit 4013;
the entity card related data application information sending unit 4015 is configured to send entity card related data application information to the entity card;
the entity card related data reply information receiving unit 4016 is configured to receive entity card related data reply information returned by the entity card, where the entity card related data reply information includes an entity card validity period;
wherein the authorization data storage unit 4014 is an optional unit, the electronic cash authorization module 401 may not include the authorization data storage unit 4014.
The electronic cash payment module 402 includes:
a second channel establishing unit 4021, configured to establish a communication channel with the card reader;
a sending unit 4022, configured to send authorization data and an expiration date of an entity card to the card reader through the communication channel established by the second channel establishing unit 4021; the authorization data is obtained by carrying out digital signature on the entity card by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorization amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data;
the card reader obtains a first virtual card carrier unique identification code, authorized amount data, virtual card validity period, transaction limit data and ciphertext data through the authorization data; decrypting the ciphertext data by adopting an authorization key to obtain a second virtual card carrier unique identification code, and confirming that the authorization is real when the second virtual card carrier unique identification code is the same as the first virtual card carrier unique identification code; judging whether the payment is valid according to the authorization amount data, the transaction limit data, the virtual card validity period and the entity card validity period, and when the judgment result is that the payment is valid, performing electronic cash data payment according to the virtual card number and the entity card number and sending payment amount data to the virtual card;
a receiving unit 4023, configured to receive payment amount data sent by the card reader;
an updating unit 4024, configured to update the balance data according to the payment amount data received by the receiving unit 4023.
The transaction record adding unit 4025 is configured to add transaction record information, where the transaction record information includes transaction time data, transaction location data, and transaction amount data.
Those of skill would further appreciate that the various illustrative components and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, computer software, or combinations of both, and that the various illustrative components and steps have been described above generally in terms of their functionality in order to clearly illustrate this interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
The steps of a method or algorithm described in connection with the embodiments disclosed herein may be embodied in hardware, a software module executed by a processor, or a combination of the two. A software module may reside in Random Access Memory (RAM), memory, Read Only Memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, a removable disk, a CD-ROM, or any other form of storage medium known in the art.
The above-mentioned embodiments are intended to illustrate the objects, technical solutions and advantages of the present invention in further detail, and it should be understood that the above-mentioned embodiments are merely exemplary embodiments of the present invention, and are not intended to limit the scope of the present invention, and any modifications, equivalent substitutions, improvements and the like made within the spirit and principle of the present invention should be included in the scope of the present invention.
Claims (5)
1. A method of authorized processing of electronic cash data, the method comprising:
establishing a communication channel between the virtual card and the entity card;
sending authorization application information to the entity card through the communication channel, wherein the authorization application information carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and application limit data;
the entity card authenticates the verification code, if the verification code passes the authentication, the authorization is legal, and a virtual card number is generated; generating authorized amount data and transaction limit data according to the application amount data, encrypting the first virtual card carrier unique identification code, the authorized amount data, the virtual card validity period and the transaction limit data by using an authorization key to obtain ciphertext data, digitally signing by using the virtual card number, the entity card number, the first virtual card carrier unique identification code, the authorized amount data, the virtual card validity period, the transaction limit data and the ciphertext data to obtain authorized data, and sending the authorized data to the virtual card;
receiving the authorization data sent by the entity card, and sending entity card related data application information to the entity card;
and receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period.
2. The method of claim 1, wherein the establishing of the communication channel between the virtual card and the physical card specifically comprises: the virtual card establishes a communication channel with the entity card in a Near Field Communication (NFC) mode or a Bluetooth communication mode.
3. A payment processing method of electronic cash data, the method comprising:
establishing a communication channel between the virtual card and the card reader;
sending authorization data and an entity card validity period to the card reader through the communication channel; the authorization data is obtained by carrying out digital signature on the entity card by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorization amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data;
the card reader obtains a first virtual card carrier unique identification code, authorized amount data, virtual card validity period, transaction limit data and ciphertext data through the authorization data; decrypting the ciphertext data by adopting an authorization key to obtain a second virtual card carrier unique identification code, and confirming that the authorization is real when the second virtual card carrier unique identification code is the same as the first virtual card carrier unique identification code; judging whether the payment is valid according to the authorization amount data, the transaction limit data, the virtual card validity period and the entity card validity period, and when the judgment result is that the payment is valid, performing electronic cash data payment according to the virtual card number and the entity card number and sending payment amount data to the virtual card;
and receiving payment amount data sent by the card reader, updating balance data according to the payment amount data, and adding transaction record information, wherein the transaction record information comprises transaction time data, transaction place data and transaction amount data.
4. The method of claim 3, wherein the virtual card establishing a communication channel with a card reader specifically comprises: the virtual card establishes a communication channel with the card reader in a Near Field Communication (NFC) mode or a Bluetooth communication mode.
5. A virtual card, characterized in that the virtual card comprises: an electronic cash authorization module and an electronic cash payment module;
the electronic cash authorization module comprises:
the first channel establishing unit is used for establishing a communication channel with the entity card;
the authorization application information sending unit is used for sending authorization application information to the entity card through the communication channel established by the first channel establishing unit, wherein the authorization application information carries a verification code, a first virtual card carrier unique identification code, a virtual card validity period and application limit data;
an authorization data receiving unit for receiving the authorization data sent by the entity card, wherein the authorization data is the authentication of the entity card to the verification code sent by the authorization application information sending unit, and the authorization is confirmed to be legal after the authentication is passed, so as to generate a virtual card number, generating authorized amount data and transaction limit data according to the application amount data sent by the authorized application information sending unit, encrypting the unique identification code of the first virtual card carrier, the authorized amount data, the virtual card validity period and the transaction limit data sent by the authorized application information sending unit by using an authorization key to obtain ciphertext data, and digitally signing the obtained authorization data by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorized amount data, the virtual card validity period, the transaction limit data and the ciphertext data;
the entity card related data application information sending unit is used for sending entity card related data application information to the entity card;
the entity card related data reply information receiving unit is used for receiving entity card related data reply information returned by the entity card, wherein the entity card related data reply information comprises an entity card validity period;
the electronic cash payment module includes:
the second channel establishing unit is used for establishing a communication channel with the card reader;
the sending unit is used for sending authorization data and the validity period of the entity card to the card reader through the communication channel established by the second channel establishing unit; the authorization data is obtained by carrying out digital signature on the entity card by using the virtual card number, the entity card number, the unique identification code of the first virtual card carrier, the authorization amount data, the validity period of the virtual card, the transaction limit data and the ciphertext data;
the card reader obtains a first virtual card carrier unique identification code, authorized amount data, virtual card validity period, transaction limit data and ciphertext data through the authorization data; decrypting the ciphertext data by adopting an authorization key to obtain a second virtual card carrier unique identification code, and confirming that the authorization is real when the second virtual card carrier unique identification code is the same as the first virtual card carrier unique identification code; judging whether the payment is valid according to the authorization amount data, the transaction limit data, the virtual card validity period and the entity card validity period, and when the judgment result is that the payment is valid, performing electronic cash data payment according to the virtual card number and the entity card number and sending payment amount data to the virtual card;
the receiving unit is used for receiving the payment amount data sent by the card reader;
the updating unit is used for updating balance data according to the payment amount data received by the receiving unit;
and the transaction record adding unit is used for adding transaction record information, and the transaction record information comprises transaction time data, transaction place data and transaction amount data.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410474519.3A CN105427106B (en) | 2014-09-17 | 2014-09-17 | Authorization processing method and payment processing method of electronic cash data and virtual card |
| PCT/CN2014/089284 WO2016041235A1 (en) | 2014-09-17 | 2014-10-23 | Electronic cash data authorization method, payment method and virtual card |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410474519.3A CN105427106B (en) | 2014-09-17 | 2014-09-17 | Authorization processing method and payment processing method of electronic cash data and virtual card |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105427106A CN105427106A (en) | 2016-03-23 |
| CN105427106B true CN105427106B (en) | 2021-07-20 |
Family
ID=55505294
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410474519.3A Active CN105427106B (en) | 2014-09-17 | 2014-09-17 | Authorization processing method and payment processing method of electronic cash data and virtual card |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN105427106B (en) |
| WO (1) | WO2016041235A1 (en) |
Families Citing this family (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN108156594A (en) * | 2017-12-26 | 2018-06-12 | 上海展扬通信技术有限公司 | A kind of method and terminal for realizing virtual card |
| CN112241879A (en) * | 2019-07-17 | 2021-01-19 | 天地融科技股份有限公司 | Off-line transaction method and system based on electronic cash |
| CN112241880A (en) * | 2019-07-17 | 2021-01-19 | 天地融科技股份有限公司 | Off-line transaction method and system based on electronic cash |
| CN110619225B (en) * | 2019-09-04 | 2023-04-14 | 无锡市公安局 | Electronic identity card generation method suitable for public security dynamic management and control of employees |
| CN111178896B (en) * | 2019-12-05 | 2021-09-21 | 腾讯科技(深圳)有限公司 | Bus taking payment method, device and storage medium |
| CN112837054A (en) * | 2021-03-26 | 2021-05-25 | 中国工商银行股份有限公司 | Online payment method and device |
| CN113205642B (en) * | 2021-04-25 | 2023-04-14 | 多点(深圳)数字科技有限公司 | Anti-embezzlement method based on entity prepaid card |
| CN113766429A (en) * | 2021-09-09 | 2021-12-07 | 深圳市雪球科技有限公司 | Device positioning method, device, wallet and storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1758291A (en) * | 2004-07-02 | 2006-04-12 | 招商银行股份有限公司 | Bank card temporary authorizing system and its processing method |
| CN101414370A (en) * | 2008-12-15 | 2009-04-22 | 阿里巴巴集团控股有限公司 | Payment method, system and payment platform capable of improving payment safety by virtual card |
| CN103297436A (en) * | 2013-06-14 | 2013-09-11 | 大连三通科技发展有限公司 | Electronic authorization method and system |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9437073B2 (en) * | 2004-10-01 | 2016-09-06 | Everi Payments Inc. | System and method for integrated multiple source player cash access |
| US20070156606A1 (en) * | 2005-12-29 | 2007-07-05 | Larry Kane | Method of securing a check transaction |
| KR100681929B1 (en) * | 2005-12-30 | 2007-02-12 | (주)한창시스템 | External device for mobile communication terminal and near field communication method using the same |
| CN101918964A (en) * | 2007-12-11 | 2010-12-15 | Xs创新控股有限公司 | System and method for sending money to a recipient |
| US9286561B2 (en) * | 2012-05-29 | 2016-03-15 | Stratos Technologies, Inc. | Payment card and methods |
| CN102883047A (en) * | 2012-08-31 | 2013-01-16 | 惠州Tcl移动通信有限公司 | Method and system for realizing data security of intelligent mobile terminals |
| US10147086B2 (en) * | 2012-12-19 | 2018-12-04 | Nxp B.V. | Digital wallet device for virtual wallet |
-
2014
- 2014-09-17 CN CN201410474519.3A patent/CN105427106B/en active Active
- 2014-10-23 WO PCT/CN2014/089284 patent/WO2016041235A1/en active Application Filing
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1758291A (en) * | 2004-07-02 | 2006-04-12 | 招商银行股份有限公司 | Bank card temporary authorizing system and its processing method |
| CN101414370A (en) * | 2008-12-15 | 2009-04-22 | 阿里巴巴集团控股有限公司 | Payment method, system and payment platform capable of improving payment safety by virtual card |
| CN103297436A (en) * | 2013-06-14 | 2013-09-11 | 大连三通科技发展有限公司 | Electronic authorization method and system |
Non-Patent Citations (2)
| Title |
|---|
| Virtual Credit Cards on Mobile for M-Commerce Payment;Narongrit Waraporn 等;《2009 IEEE International Conference on e-Business Engineering》;20091001;第241-246页 * |
| 基于虚拟卡的电子商务安全支付;李桂;《中国信用卡》;20070831(第16期);第58-59页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| WO2016041235A1 (en) | 2016-03-24 |
| CN105427106A (en) | 2016-03-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105427106B (en) | Authorization processing method and payment processing method of electronic cash data and virtual card | |
| KR102242218B1 (en) | User authentication method and apparatus, and wearable device registration method and apparatus | |
| CN103873244B (en) | Identity authentication method and system in mobile payment based on fingerprint identification | |
| CN112823335A (en) | System and method for password authentication of contactless cards | |
| CN107820238B (en) | SIM card, blockchain application security module, client and security operation method thereof | |
| TWI775820B (en) | Mobile payment subauthorization method and payment system realized by the method | |
| JP2017537421A (en) | How to secure payment tokens | |
| US20150142669A1 (en) | Virtual payment chipcard service | |
| US20150142667A1 (en) | Payment authorization system | |
| CN112889046A (en) | System and method for password authentication of contactless cards | |
| CN113168631A (en) | System and method for password authentication of contactless cards | |
| CN104574653A (en) | Method and system for realizing online recharging of electronic purse IC (Integrated Circuit) card based on OBU (on board unit) | |
| JP2015138545A (en) | Electronic payment system and electronic payment method | |
| KR20130008125A (en) | Payment by using payment identification number dynamic mapped user's payment tool | |
| CN105119933A (en) | Processing method of online transaction with multiple mobile terminals | |
| KR101710950B1 (en) | Method for distributing encrypt key, card reader and system for distributing encrypt key thereof | |
| KR20130008124A (en) | Payment by using payment identification number dynamic mapped individual financial institution | |
| US11620646B2 (en) | Method for carrying out a transaction, terminal, server and corresponding computer program | |
| KR20130011198A (en) | One time code created by random number medium | |
| EP2991014A1 (en) | Distributing tokens for token-based transactions | |
| KR20160139073A (en) | Method for Authenticating Interlocked Transaction by using One Time Code | |
| KR101663697B1 (en) | Method for Providing OTP by using User’s Medium | |
| KR20140015744A (en) | Cloud type operating method for certificate | |
| KR20150144361A (en) | Method for Processing Payment by using 2-channel Authentication Coupled End-To-End Medium Ownership Authentication and One Time Code Authentication | |
| KR20150144362A (en) | Method for Processing Payment at Affiliate by using End-To-End Medium Ownership Authentication and One Time Code Authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |