CN105761080A - Payment method based on security discrimination of NFC transaction - Google Patents

Abstract

The invention relates to a payment method based on security discrimination of an NFC transaction. An intelligent mobile terminal uses a preset start gesture of a valid owner of the terminal as a start secret key, and a left-right hand pressure database including pressure on different buttons during payment of the valid owner as well as a data model including the relation between the palm surface temperature and humidity and the perspiring amount is established. when an authentication mechanism determines that two parties of the transaction are in the same safe position according to common characters of the same positional environment parameter, a transaction secret key is sent to the two parties of the transaction; when an operator of the terminal is determined to be the valid owner and in a safe transaction environment, the intelligent mobile terminal uses the transaction secret key to complete payment safely; and the intelligent mobile terminal establishes a database of the rotation angle and speed at which the valid owner uses the terminal, so that when the terminal is stolen, face images in front, back, left and right of the terminal are captured and the rotation angle and speed at that time are collected, and when it is determined that the present operator of the terminal is not the valid owner, the present position and face images of the operators are sent to a police system for record in a hidden manner.

Description

Based on the method for payment that NFC transaction security differentiates

Technical field

The present invention relates near field payment technical field, particularly relate to a kind of method of payment differentiated based on NFC transaction security.

Background technology

Mobile payment is also referred to as mobile-phone payment, it is simply that allow user to use its mobile terminal (usually mobile phone) that the commodity consumed or service carry out a kind of method of service of account payment.Unit or individual by mobile equipment, the Internet or closely sensing directly or indirectly send payment instruction to bank finance mechanism and produce currency Zhi Fuyu fund displacement behavior, thus realizing mobile payment function.Mobile payment be broadly divided near field pay and remote payment two kinds, near field pay, it is simply that by mobile phone card-brushing mode by bus, do shopping；Remote payment refers to, by sending payment instruction or the means of payment undertaken by the means of payment.In people's daily life, near field pays and occupies bigger usage ratio in mobile payment.As the Key Implementation form that near field pays, the NFC payment technology based on near-field communication (NearFieldCommunication is called for short NFC) is rapidly growing.Mobile intelligent terminal, after built-in NFC functional module, just can become and realize the NFC terminal paid.

NFC pays while being convenient for people to daily life, also serious information security issue is brought: in the place that the crowd is dense, existing NFC payment yet suffers from leakage of information or malicious third parties waits for an opportunity to spy upon payment information, thus causing serious threat to the economic interests of the lawful owner of mobile intelligent terminal；Once the stolen personnel of mobile intelligent terminal obtain and carry out relating to the operation of payment aspect, threaten also can to mobile intelligent terminal lawful owner's economic interests.

Summary of the invention

The technical problem to be solved is to provide one can either realize mobile intelligent terminal lawful owner for above-mentioned prior art to be safely completed payment process, again can after mobile intelligent terminal be lost, it is prevented that the method for payment differentiated based on NFC transaction security of unauthorized person operation.

This invention address that the technical scheme that above-mentioned technical problem adopts is: the method for payment differentiated based on NFC transaction security, for there is the mobile intelligent terminal of NFC function, there is the payment system of the consumption POS settlement terminal of NFC function, certification authority, bank account management platform and public security system composition, it is characterized in that, in turn include the following steps:

Step 1, mobile intelligent terminal obtains, store face-image and its lawful owner unlatching gesture set in advance of its lawful owner, and sets mobile intelligent terminal and open when obtaining correct unlatching gesture；Otherwise, mobile intelligent terminal is in screen state of going out all the time；

Step 2, when mobile intelligent terminal operates mobile intelligent terminal according to its lawful owner in preset time period, angle that this mobile intelligent terminal rotates through and speed, build pivoting angle data storehouse when mobile intelligent terminal is operated by its lawful owner and speed data storehouse；

Step 3, consumption POS settlement terminal and mobile intelligent terminal send credit visa respectively and ask to certification authority, generated the credit notarial deed set of consumption POS settlement terminal and mobile intelligent terminal by certification authority respectively, and credit notarial deed set is sent respectively to consumption POS settlement terminal and mobile intelligent terminal；Wherein:

Described consumption POS settlement terminal is labeled as POS, and mobile intelligent terminal is labeled as Mobile, and certification authority is labeled as TSM, and the credit notarial deed aggregated label of consumption POS settlement terminal is Cert (TSM_POS), the credit notarial deed of mobile intelligent terminal is labeled as Cert (TSM_Mobile)；Consumption POS settlement terminal credit notarial deed set Cert (TSM_POS) and mobile intelligent terminal credit notarial deed set Cert (TSM_Mobile) represented by equation below respectively:

Cert(TSM_POS)={ Cert¹(TSM_POS),Cert²(TSM_POS),…,Cert^m(TSM_POS)}；

Cert(TSM_Mobile)={ Cert¹(TSM_Mobile),Cert²(TSM_Mobile),…,Cert^m(TSM_Mobile)}；

Wherein, m represent consumption POS settlement terminal and mobile intelligent terminal can credit notarial deed number, m >=3；Consume each credit notarial deed in POS settlement terminal credit notarial deed set and each credit notarial deed in mobile intelligent terminal credit notarial deed set is followed traversal and used rule and all limit use once；

Step 4, consumption POS settlement terminal registers collecting account and account password in bank account management platform, mobile intelligent terminal registers Send only Account and payment cipher in bank account management platform, and by consumption POS settlement terminal and mobile intelligent terminal send respectively finance visa ask to bank account management platform, generated the financial notarial deed set of consumption POS settlement terminal and mobile intelligent terminal by bank account management platform respectively, and finance notarial deed set is sent respectively to consumption POS settlement terminal and mobile intelligent terminal；Wherein:

Described bank account management platform is labeled as BANK, and the financial notarial deed aggregated label of consumption POS settlement terminal is Cert (BANK_POS), the financial notarial deed aggregated label of mobile intelligent terminal is Cert (BANK_Mobile), consume POS settlement terminal finance notarial deed set Cert (BANK_POS) and mobile intelligent terminal credit notarial deed set Cert (TSM_Mobile) represented by equation below respectively:

Cert(BANK_POS)={ Cert¹(BANK_POS),Cert²(BANK_POS),…,Cert^m(BANK_POS)}；

Cert(BANK_Mobile)={ Cert¹(BANK_Mobile),Cert²(BANK_Mobile),…,Cert^m(BANK_Mobile)}；m≥3；Wherein, the credit notarial deed of consumption POS terminal is one-to-one relationship with its finance notarial deed, and the credit notarial deed of mobile intelligent terminal is one-to-one relationship with its finance notarial deed；Each financial notarial deed in consumption POS settlement terminal finance notarial deed set and each financial notarial deed in mobile intelligent terminal finance notarial deed set are followed traversal and are used rule and all limit use once；

Step 5, consumption POS settlement terminal generates anti-the first random number stolen secret information, set the effective time value of the first random number, obtain consumption POS settlement terminal current location noise and current location air humidity, and store the effective time value of this first random number and the first random number, then the payment request information including consumption POS settlement terminal self signature is sent to mobile intelligent terminal, and sends consumption its current location noise of POS computing terminal and current location air humidity to certification authority；Wherein:

Described payment request information includes the first random number R P that consumption POS settlement terminal generates₁, this first random number R P₁Effective time value TP, payment request ReqM, the consumption financial notarial deed Cert that chooses of POS settlement terminal^t(BANK_POS), the consumption credit notarial deed Cert that chooses of POS settlement terminal^t(TSM_POS), consumption POS settlement terminal self signature Sig_POSAnd the private key sk (POS) of consumption POS settlement terminal；Wherein, this payment request information is labeled as Message_P-M, payment request information Message_P-MAs follows by formula labelling:

${\mathrm{Message}}_{P-M}=\left\{\begin{array}{c}POS,Mobile,{\mathrm{RP}}_1,TP,{\mathrm{Cert}}^t\left({\mathrm{BANK}}_{POS}\right),{\mathrm{Cert}}^t\left({\mathrm{TSM}}_{POS}\right),\mathrm{Re}qW,\\ {\mathrm{Sig}}_{POS},sk\left(POS\right)\end{array}\right\};t\∈\[1,m\];$

Step 6, mobile intelligent terminal is before each delivery operation and during delivery operation, its lawful owner of Real-time Collection contacts the palm. surface temperature of mobile intelligent terminal respectively, palm surface humidity and palm surface perspiration output, and build the palm. surface temperature data base before mobile intelligent terminal lawful owner's delivery operation respectively, palm surface humidity data storehouse and palm surface perspiration output data base, and palm. surface temperature data base during mobile intelligent terminal lawful owner's delivery operation, palm surface humidity data storehouse and palm surface perspiration output data base；

Step 7, mobile intelligent terminal according to the palm. surface temperature data base before its lawful owner's delivery operation of gained and during delivery operation, palm surface humidity data storehouse and palm surface perspiration output data base, palm. surface temperature when setting up the palm contacts mobile intelligent terminal of its lawful owner, palm surface humidity and the palm surface relational data model of palm surface perspiration output；

Step 8, mobile intelligent terminal is its lawful owner of Real-time Collection the pressing pressure value and press pressure direction of each button on keyboard in preset time period, building mobile intelligent terminal lawful owner utilizes the left hand that left hand and the right hand are respectively directed to each button to press pressure data storehouse and the right hand presses pressure data storehouse, and calculates each button left hand respectively and press pressure data storehouse and the right hand presses the variance in pressure data storehouse；Wherein:

On described mobile intelligent terminal, i-th key markings is Button_i, for button Button_iThe left hand of constructed mobile intelligent terminal lawful owner is pressed pressure data storehouse and is labeled asThe right hand of mobile intelligent terminal lawful owner is pressed pressure data storehouse and is labeled asN ∈ N, N be left hand press that pressure data storehouse and pressing stores in pressure data storehouse respectively press pressure data number；Represent for button Button_iThe n-th of the mobile intelligent terminal lawful owner's left hand gathered presses pressure data,Represent for button Button_iThe n-th of the mobile intelligent terminal lawful owner's right hand gathered presses pressure data；Described button Button_iThe variance that suffered mobile intelligent terminal lawful owner's left hand presses pressure is labeled asMobile intelligent terminal lawful owner's right hand is pressed the variance of pressure and is labeled asWherein, varianceWithComputing formula respectively as follows:

${\mathrm{\σ}}_{Left}^2\left({\mathrm{Button}}_i\right)=\underset{n=1}{\overset{N}{\Σ}}\frac{{\left(F_{Buttoni}^{Left}\right(n)-\stackrel{\‾}{F_{Buttoni}^{Left}})}^2}{N},\stackrel{\‾}{F_{Buttoni}^{Left}}=\underset{n=1}{\overset{N}{\Σ}}\frac{F_{Buttoni}^{Left}\left(n\right)}{N};$

${\mathrm{\σ}}_{Right}^2\left({\mathrm{Button}}_i\right)=\underset{n=1}{\overset{N}{\Σ}}\frac{{\left(F_{Buttoni}^{Right}\right(n)-\stackrel{\‾}{F_{Buttoni}^{Right}})}^2}{N},\stackrel{\‾}{F_{Buttoni}^{Right}}=\underset{n=1}{\overset{N}{\Σ}}\frac{F_{Buttoni}^{Right}\left(n\right)}{N};$

Step 9, after mobile intelligent terminal receives the payment request information that consumption POS settlement terminal sends, generate anti-the first random number stolen secret information, obtain mobile intelligent terminal current location noise and current location air humidity, and send the certification solicited message and mobile intelligent terminal current location noise and current location air humidity that include consumption POS settlement terminal payment request information to certification authority；Wherein:

The certification solicited message that described mobile intelligent terminal sends includes the payment request information Message of consumption POS settlement terminal_P-M, mobile intelligent terminal generate anti-the first random number R M stolen secret information₁, certification request ReqT, itself and PKI k (Mobile, TSM) of communicating between consumption POS settlement terminal conversation request ReqSession and mobile intelligent terminal with certification authority；Wherein, this certification solicited message of mobile intelligent terminal is designated as Message_M-T, Message_M-TIt is labeled as Message by formula_M-T={ Message_P-M,TSM,RM₁,ReqT,ReqSession,k(Mobile,TSM)}；

Step 10, certification authority's reception, the certification solicited message extracting mobile intelligent terminal transmission and mobile intelligent terminal current location noise and current location air humidity, record receives the time of mobile intelligent terminal certification request, and according to the certification solicited message of the mobile intelligent terminal extracted, mobile intelligent terminal current location noise and air humidity, consumption POS settlement terminal current location noise and air humidity, mobile intelligent terminal is made transaction feedback；Wherein, this step includes step 10-1 to step 10-3 successively:

Step 10-1, when the consumption POS settlement terminal credit notarial deed that certification authority judges in the certification solicited message extracted is present in the credit notarial deed data base that certification authority has stored and certification authority receives the effective time that mobile intelligent terminal certification request time is positioned at the first random number, show that the consumption POS terminal that this credit notarial deed is effective and corresponding is security terminal, certification authority generates the transaction key between mobile intelligent terminal and consumption POS terminal, and performs step 10-2；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Step 10-2, certification authority judge consumption POS settlement terminal and mobile intelligent terminal the difference of NF corresponding respectively be positioned at default difference range, and the space length between consumption POS settlement terminal and mobile intelligent terminal less than default Secure Transaction word space threshold time, then perform step 10-3；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Step 10-3, when certification authority judges that the difference of the corresponding respectively current location air humidity of consumption POS settlement terminal and mobile intelligent terminal institute is positioned at default difference range, then certification authority's transmission confirmation Transaction Information is to mobile intelligent terminal；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；Wherein, the confirmation Transaction Information that described certification authority sends is labeled as Message_T-M-Confirm, the refusal Transaction Information that certification authority sends is labeled as Message_T-M-Reject；Confirm Transaction Information Message_T-M-ConfirmWith refusal Transaction Information Message_T-M-RejectAs follows by formula labelling respectively:

Message_T-M-Confirm={ TSM, Mobile, POS, RP₁,RM₁,TP,Cert^t(TSM_POS),K,k(Mobile,TSM)}；

Message_T-M-Reject={ TSM, Mobile, POS, RP₁,RM₁,RejectP,k(Mobile,TSM)}；

Wherein, K is the transaction key between mobile intelligent terminal and consumption POS terminal；

Step 11, mobile intelligent terminal receives the confirmation Transaction Information that certification authority sends, and the transaction interactive information including mobile intelligent terminal signature is sent to consumption POS settlement terminal；Wherein:

Described transaction interactive information includes the signature Sig of mobile intelligent terminal_Mobile, mobile intelligent terminal generate anti-the first random number R M stolen secret information₁, the financial notarial deed Cert that chooses of the transaction key K between mobile intelligent terminal and consumption POS terminal, mobile intelligent terminal^s(BANK_Mobile), the credit notarial deed Cert that chooses of mobile intelligent terminal^s(TSM_Mobile) and consumption POS settlement terminal credit notarial deed Cert^t(TSM_POS)；Wherein, the transaction interactive information that described mobile intelligent terminal sends is labeled as Message_M-P, conclude the business interactive information Message_M-PAs follows by formula labelling:

${\mathrm{Message}}_{M-P}=\left\{\begin{array}{c}Mobile,POS,TSM,{\mathrm{RM}}_1,{\mathrm{Cert}}^s\left({\mathrm{BANK}}_{Mobile}\right),{\mathrm{Cert}}^s\left({\mathrm{TSM}}_{Mobile}\right),K,\\ {\mathrm{Sig}}_{Mobile},{\mathrm{Cert}}^t\left({\mathrm{TSM}}_{POS}\right)\end{array}\right\};s\∈\[1,m\];$

Step 12, consumption POS settlement terminal receives, extracts the transaction interactive information that mobile intelligent terminal sends, and judges according to the information extracted in transaction interactive information:

When the consumption POS settlement terminal credit notarial deed that consumption POS settlement terminal extracts in interactive information of concluding the business has been stored in the credit notarial deed data base of its storage, then perform step 13；Otherwise, consumption POS settlement terminal refusal carries out payment transaction with mobile intelligent terminal；

Step 13, consumption POS settlement terminal generates the second random number, and send the second random number of including generating, the first random number, mobile intelligent terminal prevent that the payment information of payment data is to mobile intelligent terminal needed for the first random number stolen secret information, mobile intelligent terminal；Wherein, described payment information flag is Message_P-M-Payment, Message_P-M-PaymentAs follows by formula labelling:

Message_P-M-Payment={ POS, Mobile, RP₂,RM₁,RP₁,Payment,K}；

Wherein, RP₂Representing the second random number that consumption POS settlement terminal generates, Payment represents payment needed for mobile intelligent terminal, and K is the transaction key between consumption POS settlement terminal and mobile intelligent terminal；

Step 14, mobile intelligent terminal receives the payment information that consumption POS settlement terminal sends, and generate anti-the second random number stolen secret information, mobile intelligent terminal the payment transaction records information including received payment information and newly-generated second random number is sent to visa mechanism and stores；Wherein, described payment transaction records information flag is S_M-T-Payment, payment transaction records information S_M-T-PaymentAs follows by formula labelling:

S_M-T-Payment={ Mobile, TSM, POS, RM₂,k(Mobile,TSM)}；

Wherein, RM₂Represent anti-the second random number stolen secret information that mobile intelligent terminal generates；

Step 15, mobile intelligent terminal receives the outside palm payment cipher by each key-press input, Real-time Collection operator contacts the palm. surface temperature of mobile intelligent terminal, palm surface humidity and palm perspiration output, by mobile intelligent terminal press suffered by each button pressure direction judge to press press each button as after left hand or the right hand, by respectively press key currently suffered by press pressure and add pressing in pressure data storehouse corresponding to judged result to, recalculate now each button correspondence and press the variance in pressure data storehouse；

Step 16, mobile intelligent terminal according to button gained again each in step 15 press in pressure data storehouse variance and step 8 corresponding to press the difference between the variance of pressure data storehouse, make judging first whether performing delivery operation:

When each button gained difference is respectively less than or is equal to predetermined threshold value, then perform step 17；Otherwise, mobile intelligent terminal refusal performs delivery operation；

Step 17, mobile intelligent terminal gathers its all around image of four direction and the angle of mobile intelligent terminal real time rotation and speed, and capture face-image occurs time, the face-image of its lawful owner stored in this face-image captured and step 1 is done facial match identification by mobile intelligent terminal:

When being respectively positioned on pivoting angle data storehouse when its lawful owner that step 2 builds operates and speed data storehouse when the angle that the face-image captured is consistent with its lawful owner's facial images match and mobile intelligent terminal rotates and speed, then represent that the current operator of mobile intelligent terminal is its lawful owner, then perform step 18；Otherwise, represent current operator its lawful owner non-of mobile intelligent terminal, then perform step 20；

Step 18, obtained palm surface relational data model in the palm. surface temperature gathered in step 15, palm surface humidity and palm perspiration output input step 7 is carried out matching judgment by mobile intelligent terminal, and makes dual payment judgement operation according to matching judgment result:

When the palm. surface temperature of input, palm surface humidity and palm perspiration output meet gained palm surface relational data model, then perform step 19；Otherwise, mobile intelligent terminal performs step 20:

Step 19, mobile intelligent terminal sends the pay warrant including this payment cipher and its finance notarial deed to bank account management platform, when being judged that this payment cipher is consistent with default payment cipher by bank account management platform, the fund of mobile intelligent terminal Send only Account is transferred to consumption POS settlement terminal in the collecting account of bank account management platform；Otherwise, the execution of bank account management platform refusal is transferred accounts operation；

Step 20, mobile intelligent terminal, under screen state of going out, obtains its geographical position being presently in, and the geographical position that is presently in of the face-image captured and acquisition is sent to public security system and is put on record, to provide detection clue.

Compared with prior art, it is an advantage of the current invention that:

First, the unlatching gesture that mobile intelligent terminal is preset using its lawful owner, as opening key, forms the first floor protective measure guaranteeing mobile intelligent terminal information security；

Secondly; this feature of uniqueness according to human body behavior characteristics; it is applied to when mobile intelligent terminal is according to its lawful owner's delivery operation and each button of this intelligent terminal presses pressure condition; build the left hand of each button during its lawful owner's delivery operation and press pressure data storehouse and the right hand presses pressure data storehouse; personnel identity when paying with verification operation mobile intelligent terminal; guarantee that delivery operation only has its lawful owner to initiate, form the protective measure again of protection mobile intelligent terminal information security with this；Mobile intelligent terminal is through judging that its operator is its lawful owner, and its lawful owner is in when not receiving the Secure Transaction environment threatened or coerce, then utilize transaction key to be safely completed payment process；Otherwise, mobile intelligent terminal carries out early warning operation；Simultaneously, palm. surface temperature when mobile intelligent terminal builds its lawful owner's delivery operation, humidity and the relational data model of perspiration output, whether environment residing when assert its lawful owner's delivery operation with this is subject to outside threatening or the unfavorable factor impact such as coerces, and then determines whether the personal safety of its lawful owner receives threat；Then consumption POS clearing and mobile intelligent terminal are respectively after obtaining each self-corresponding credit notarial deed set and finance notarial deed set, consumption POS settlement terminal is using its first random number and effective time value as the condition ensureing transaction security, add in payment request information by only limitting the effective credit notarial deed of single use, to prevent credit notarial deed from being reused by malicious third parties, cause leakage of information；

Again, utilize the feature that the same ambient parameter in same position place is identical, consumption POS settlement terminal and mobile intelligent terminal all send the data comprising its current location, current location noise and air humidity to certification authority, when being judged that consumption POS settlement terminal is in safe same position with mobile intelligent terminal both parties by certification authority, then send transaction key respectively to consumption POS settlement terminal and mobile intelligent terminal；

Finally, mobile intelligent terminal is by gathering the face-image of its lawful owner, and build respectively its legal have use this intelligent terminal's time institute's anglec of rotation and speed data storehouse, with when mobile intelligent terminal is stolen, caught its face-image all around by mobile intelligent terminal and gather the anglec of rotation now and speed, thus judge whether current operator is its lawful owner or thief, and after judging that current operator is as thief, the face-image of current location and operator is sent to public security system by mobile intelligent terminal snugly to be put on record, the position of mobile intelligent terminal and the looks of thief are locked rapidly thus convenient, be conducive to the detection of follow-up larceny case.

Accompanying drawing explanation

Fig. 1 is the structural representation of payment system in the embodiment of the present invention.

Detailed description of the invention

Below in conjunction with accompanying drawing embodiment, the present invention is described in further detail.

The method of payment differentiated based on NFC transaction security in the present embodiment, for having the mobile intelligent terminal of NFC function, having the payment system of the consumption POS settlement terminal of NFC function, certification authority, bank account management platform and public security system composition, this payment system is shown in Figure 1.Wherein, the method for payment differentiated based on NFC transaction security in the present embodiment, in turn include the following steps:

Step 1, mobile intelligent terminal obtains, store face-image and its lawful owner unlatching gesture set in advance of its lawful owner, and sets mobile intelligent terminal and open when obtaining correct unlatching gesture；Otherwise, mobile intelligent terminal is in screen state of going out all the time；Wherein, it can be the track that streaks behind finger contact mobile intelligent terminal surface that the mobile intelligent terminal preset opens gesture, it is also possible to be finger or movement locus that palm streaks at distance certain distance place, mobile intelligent terminal surface；Once the unlatching gesture that operator makes is incorrect, then mobile intelligent terminal will be in screen state of going out all the time, thus the operator entertaining illegal objective can not utilize this mobile intelligent terminal to carry out illegal operation；The face-image of the mobile intelligent terminal lawful owner of storage is on the one hand in order to the reference as follow-up facial images match identification, on the one hand in order to after mobile intelligent terminal is lost, the person of picking up can use the facial situation understanding lawful owner, in order to for follow-up searching with give back the owner of lost property and give a clue；

Step 2, when mobile intelligent terminal operates mobile intelligent terminal according to its lawful owner in preset time period, angle that this mobile intelligent terminal rotates through and speed, build pivoting angle data storehouse when mobile intelligent terminal is operated by its lawful owner and speed data storehouse；

According to everyone use habit to mobile intelligent terminal, angle and speed that mobile intelligent terminal rotates through when being used by its lawful owner are different, than if any user custom gyrate mobile intelligent terminal, some user are then accustomed to gripping mobile intelligent terminal and are remained stationary as；Thus, according to the legal use habit having then of mobile intelligent terminal, building the angle and speed that rotate through when its lawful owner uses, thus setting up the data base characterizing mobile intelligent terminal lawful owner's use habit, with this, its lawful owner being carried out preliminary authentication；Wherein, preset time period can be one week or one month or 1 year, and this time period is more long, then mobile intelligent terminal is more high to the accuracy of the preliminary authentication of its lawful owner；

Step 3, consumption POS settlement terminal and mobile intelligent terminal send credit visa respectively and ask to certification authority, generated the credit notarial deed set of consumption POS settlement terminal and mobile intelligent terminal by certification authority respectively, and credit notarial deed set is sent respectively to consumption POS settlement terminal and mobile intelligent terminal；Credit notarial deed set includes the credit notarial deed of multiple selective use, credit notarial deed is as the trusted identity voucher of consumption POS settlement terminal or mobile intelligent terminal, in order to the legal identity of approved for payment both parties, with the safety of transaction of guaranteeing payment；Consumption POS settlement terminal and mobile intelligent terminal as required, can select credit notarial deed to traversal in each self-corresponding credit notarial deed set；Wherein:

Consumption POS settlement terminal is labeled as POS, and mobile intelligent terminal is labeled as Mobile, and certification authority is labeled as TSM, and the credit notarial deed aggregated label of consumption POS settlement terminal is Cert (TSM_POS), the credit notarial deed of mobile intelligent terminal is labeled as Cert (TSM_Mobile)；Consumption POS settlement terminal credit notarial deed set Cert (TSM_POS) and mobile intelligent terminal credit notarial deed set Cert (TSM_Mobile) represented by equation below respectively:

Cert(TSM_POS)={ Cert¹(TSM_POS),Cert²(TSM_POS),…,Cert^m(TSM_POS)}；

Cert(TSM_Mobile)={ Cert¹(TSM_Mobile),Cert²(TSM_Mobile),…,Cert^m(TSM_Mobile)}；

Wherein, m represent consumption POS settlement terminal and mobile intelligent terminal can credit notarial deed number, m >=3；Consume each credit notarial deed in POS settlement terminal credit notarial deed set and each credit notarial deed in mobile intelligent terminal credit notarial deed set is followed traversal and used rule and all limit use once；

Consumption POS settlement terminal is when needs use credit notarial deed, then at its credit notarial deed set Cert (TSM_POS) m credit notarial deed in successively traversal ground select use, same credit notarial deed will not be reused, prevent malicious third parties after the credit notarial deed that pry to consumption POS settlement terminal has used with this, again this credit notarial deed is used, threaten consumption POS settlement terminal transaction security；Similarly, mobile intelligent terminal is also in compliance with the use rule identical with consumption POS settlement terminal, and traversal selects to use its credit notarial deed set Cert (TSM successively_Mobile) in credit notarial deed, and same credit notarial deed will not be reused, namely each credit notarial deed follow traversal use rule and only restriction use once, credit notarial deed is reused and is calcellation；

Step 4, consumption POS settlement terminal registers collecting account and account password in bank account management platform, mobile intelligent terminal registers Send only Account and payment cipher in bank account management platform, and by consumption POS settlement terminal and mobile intelligent terminal send respectively finance visa ask to bank account management platform, generated the financial notarial deed set of consumption POS settlement terminal and mobile intelligent terminal by bank account management platform respectively, and finance notarial deed set is sent respectively to consumption POS settlement terminal and mobile intelligent terminal；

Finance notarial deed set includes the financial notarial deed of multiple selective use, finance notarial deed is in order to show consumption POS settlement terminal or the mobile intelligent terminal confirmation to payment transaction information, make consumption POS settlement terminal or mobile intelligent terminal to each it has been acknowledged that payment transaction not there is denial, thus being normally carried out of transaction of guaranteeing payment；Each finance notarial deed in finance notarial deed set is also in compliance with the use rule identical with finance notarial deed；Wherein:

Bank account management platform is labeled as BANK, and the financial notarial deed aggregated label of consumption POS settlement terminal is Cert (BANK_POS), the financial notarial deed aggregated label of mobile intelligent terminal is Cert (BANK_Mobile), consume POS settlement terminal finance notarial deed set Cert (BANK_POS) and mobile intelligent terminal credit notarial deed set Cert (TSM_Mobile) represented by equation below respectively:

Cert(BANK_POS)={ Cert¹(BANK_POS),Cert²(BANK_POS),…,Cert^m(BANK_POS)}；

Cert(BANK_Mobile)={ Cert¹(BANK_Mobile),Cert²(BANK_Mobile),…,Cert^m(BANK_Mobile)}；m≥3；

Wherein, the credit notarial deed of consumption POS terminal is one-to-one relationship with its finance notarial deed, and the credit notarial deed of mobile intelligent terminal is one-to-one relationship with its finance notarial deed；Each financial notarial deed in consumption POS settlement terminal finance notarial deed set and each financial notarial deed in mobile intelligent terminal finance notarial deed set are followed traversal and are used rule and all limit use once；It is to say, when consumption POS settlement terminal uses its credit notarial deed set Cert (TSM_POS) in the 3rd credit notarial deed Cert³(TSM_POS) time, use its finance notarial deed set Cert (BANK that consumption POS settlement terminal is then corresponding_POS) in the 3rd financial notarial deed Cert³(BANK_POS)；When mobile intelligent terminal uses its credit notarial deed set Cert (TSM_Mobile) in the 4th credit notarial deed Cert⁴(TSM_Mobile) time, use its finance notarial deed set Cert (BANK that consumption POS settlement terminal is then corresponding_Mobile) in the 4th financial notarial deed Cert⁴(BANK_Mobile)；

Step 5, consumption POS settlement terminal generates anti-the first random number stolen secret information, set the effective time value of the first random number, obtain consumption POS settlement terminal current location, the noise of current location and air humidity, and store the effective time value of this first random number and the first random number, then the payment request information including consumption POS settlement terminal self signature is sent to mobile intelligent terminal, and sends consumption its current location of POS computing terminal, the noise of current location and air humidity data to certification authority；Wherein:

Payment request information includes the first random number R P that consumption POS settlement terminal generates₁, this first random number R P₁Effective time value TP, payment request ReqM, the consumption financial notarial deed Cert that chooses of POS settlement terminal^t(BANK_POS), the consumption credit notarial deed Cert that chooses of POS settlement terminal^t(TSM_POS), consumption POS settlement terminal self signature Sig_POSAnd the private key sk (POS) of consumption POS settlement terminal；This payment request information is labeled as Message_P-M, payment request information Message_P-MAs follows by formula labelling:

${\mathrm{Message}}_{P-M}=\left\{\begin{array}{c}POS,Mobile,{\mathrm{RP}}_1,TP,{\mathrm{Cert}}^t\left({\mathrm{BANK}}_{POS}\right),{\mathrm{Cert}}^t\left({\mathrm{TSM}}_{POS}\right),\mathrm{Re}qW,\\ {\mathrm{Sig}}_{POS},sk\left(POS\right)\end{array}\right\};t\∈\[1,m\];$

Wherein, the data that first random number is stolen secret information as anti-malicious third parties, by arranging the effective time value of the first random number, to limit this random number effective time, it is further ensured that the effective time of consumption POS settlement terminal institute Sending Payments solicited message, such as set the effective time of the first random number as 10s, then the first random number is effective in the 10s that consumption POS settlement terminal Sending Payments solicited message rises, more than 10 seconds, this first random number lost efficacy, then the payment request information that consumption POS settlement terminal sends also lost efficacy therewith；The current location data that consumption POS settlement terminal obtains is the position in current payment transaction place, and current location noise data is then the noise around current payment transaction status, and this noise as required, can be set as the noise in a pre-set space distance；Current location air humidity data, characterize the air ambient situation that consumption POS settlement terminal is presently in environment, air humidity at same position has homogeny, namely in the distance of NFC communication, the current location air humidity data that consumption POS settlement terminal and mobile intelligent terminal obtain are positioned within default range of error, therefore can utilize air humidity can not the property pretended, namely utilize the feature that the same ambient parameter at same position place is identical with mobile intelligent terminal, whether consumption POS settlement terminal is in identical same position and judge；It is of course also possible to consider air odor as the parameter that same position environment is judged；

Step 6, mobile intelligent terminal is before each delivery operation and during delivery operation, its lawful owner of Real-time Collection contacts the palm. surface temperature of mobile intelligent terminal respectively, palm surface humidity and palm surface perspiration output, and build the palm. surface temperature data base before mobile intelligent terminal lawful owner's delivery operation respectively, palm surface humidity data storehouse and palm surface perspiration output data base, and palm. surface temperature data base during mobile intelligent terminal lawful owner's delivery operation, palm surface humidity data storehouse and palm surface perspiration output data base；

Wherein, when people are in safety and do not receive outside threat, the factor such as surprised or terrified interference, the temperature of people's palm surface, the humidity of palm surface and the perspiration output of palm surface, are within respective normal scope of data, and have dependency between three；Once receive the interference of external factor, such as surprised, terrified, scaring or the outside unfavorable factor interference such as threatening, can there is corresponding physiological change in human body self, causes that palm. surface temperature is too low or too high, palm surface humidity is perspired and caused humidity increase etc..Therefore, after gathering a number of palm. surface temperature of mobile intelligent terminal lawful owner, humidity and perspiration output data, can passing through to build palm. surface temperature, humidity and the relation between perspiration output, identity and its residing current environment security situation to mobile intelligent terminal lawful owner judge；

Step 7, mobile intelligent terminal according to the palm. surface temperature data base before its lawful owner's delivery operation of gained and during delivery operation, palm surface humidity data storehouse and palm surface perspiration output data base, palm. surface temperature when setting up the palm contacts mobile intelligent terminal of its lawful owner, palm surface humidity and the palm surface relational data model of palm surface perspiration output；

The palm. surface temperature that this step 7 is set up, humidity and perspiration output relational data model characterize mobile intelligent terminal lawful owner in normal state, palm surface situation during contact mobile intelligent terminal, if the palm. surface temperature that mobile intelligent terminal gathers in preset time period, humidity and perspiration output, meet this relational data model, then illustrate that mobile intelligent terminal lawful owner is in normal condition, it is not subject to outside surprised, the outside unfavorable factor interference such as surprised or threatening, namely mobile intelligent terminal lawful owner is not subject to the threat that unauthorized person is forced to transfer accounts；

Step 8, mobile intelligent terminal is its lawful owner of Real-time Collection the pressing pressure value and press pressure direction of each button on keyboard in preset time period, building mobile intelligent terminal lawful owner utilizes the left hand that left hand and the right hand are respectively directed to each button to press pressure data storehouse and the right hand presses pressure data storehouse, and calculates each button left hand respectively and press pressure data storehouse and the right hand presses the variance in pressure data storehouse；Wherein:

On mobile intelligent terminal, i-th key markings is Button_i, for button Button_iThe left hand of constructed mobile intelligent terminal lawful owner is pressed pressure data storehouse and is labeled asThe right hand of mobile intelligent terminal lawful owner is pressed pressure data storehouse and is labeled asN ∈ N, N be left hand press that pressure data storehouse and pressing stores in pressure data storehouse respectively press pressure data number；Represent for button Button_iThe n-th of the mobile intelligent terminal lawful owner's left hand gathered presses pressure data,Represent for button Button_iThe n-th of the mobile intelligent terminal lawful owner's right hand gathered presses pressure data；Button Button_iThe variance that suffered mobile intelligent terminal lawful owner's left hand presses pressure is labeled asMobile intelligent terminal lawful owner's right hand is pressed the variance of pressure and is labeled asWherein, varianceWithComputing formula respectively as follows:

${\mathrm{\σ}}_{Left}^2\left({\mathrm{Button}}_i\right)=\underset{n=1}{\overset{N}{\Σ}}\frac{{\left(F_{Buttoni}^{Left}\right(n)-\stackrel{\‾}{F_{Buttoni}^{Left}})}^2}{N},\stackrel{\‾}{F_{Buttoni}^{Left}}=\underset{n=1}{\overset{N}{\Σ}}\frac{F_{Buttoni}^{Left}\left(n\right)}{N};$

${\mathrm{\σ}}_{Right}^2\left({\mathrm{Button}}_i\right)=\underset{n=1}{\overset{N}{\Σ}}\frac{{\left(F_{Buttoni}^{Right}\right(n)-\stackrel{\‾}{F_{Buttoni}^{Right}})}^2}{N},\stackrel{\‾}{F_{Buttoni}^{Right}}=\underset{n=1}{\overset{N}{\Σ}}\frac{F_{Buttoni}^{Right}\left(n\right)}{N};$

When utilizing left hand or the right hand to pass through key-press input password on keyboard due to the lawful owner of mobile intelligent terminal every time, what its lawful owner applied on each keyboard press pressure size and direction is different, that presses pressure value and correspondence suffered by therefore can passing through to gather in a period of time on each keyboard presses pressure direction situation, left hand during to build mobile intelligent terminal lawful owner for payment presses pressure data storehouse and the right hand presses pressure data storehouse, such that it is able to the left hand that utilization builds presses pressure data storehouse or the right hand presses pressure data storehouse as the authentication information characterizing mobile intelligent terminal lawful owner, to guarantee the safety of payment transaction；Wherein, on keyboard, the left hand of certain button is pressed and is contained in pressure data storehouse under pay status, and mobile intelligent terminal lawful owner utilizes left hand to press pressing pressure value and pressing pressure direction when pressing this button；Similarly, on keyboard, the right hand of certain button is pressed and is contained when pay status in pressure data storehouse, and the right hand of mobile intelligent terminal lawful owner presses pressing pressure value and pressing pressure direction when pressing this button；

Step 9, after mobile intelligent terminal receives the payment request information that consumption POS settlement terminal sends, generate anti-the first random number stolen secret information, obtain mobile intelligent terminal current location, current location noise and air humidity data, and send the certification solicited message and mobile intelligent terminal current location, current location noise and air humidity data that include consumption POS settlement terminal payment request information to certification authority；Wherein:

The certification solicited message that mobile intelligent terminal sends includes the payment request information Message of consumption POS settlement terminal_P-M, mobile intelligent terminal generate anti-the first random number R M stolen secret information₁, certification request ReqT, itself and PKI k (Mobile, TSM) of communicating between consumption POS settlement terminal conversation request ReqSession and mobile intelligent terminal with certification authority；Wherein, this certification solicited message of mobile intelligent terminal is designated as Message_M-T, Message_M-TIt is labeled as Message by formula_M-T={ Message_P-M,TSM,RM₁,ReqT,ReqSession,k(Mobile,TSM)}；

Step 10, certification authority receives, extracts certification solicited message and mobile intelligent terminal Current ambient noise data that mobile intelligent terminal sends, record receives the time of mobile intelligent terminal certification request, and according to the certification solicited message of the mobile intelligent terminal extracted, mobile intelligent terminal current location and noise and air humidity data, consumption POS settlement terminal current location and noise and air humidity data, mobile intelligent terminal is made transaction feedback；Wherein, this step includes step 10-1 to step 10-3 successively:

Step 10-1, when the consumption POS settlement terminal credit notarial deed that certification authority judges in the certification solicited message extracted is present in the credit notarial deed data base that certification authority has stored and certification authority receives the effective time that mobile intelligent terminal certification request time is positioned at the first random number, show that the consumption POS terminal that this credit notarial deed is effective and corresponding is security terminal, this trading activity is credible, certification authority generates the transaction key between mobile intelligent terminal and consumption POS terminal, and performs step 10-2；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Step 10-2, certification authority is according to the consumption POS settlement terminal Current ambient noise data extracted and mobile intelligent terminal Current ambient noise data, judge consumption POS settlement terminal and mobile intelligent terminal the difference of NF corresponding respectively when being positioned at default difference range, show that consumption POS settlement terminal and mobile intelligent terminal are currently in safe same trading environment, then perform step 10-3；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Step 10-3, when certification authority judge consumption POS settlement terminal and mobile intelligent terminal the difference of current location air humidity corresponding respectively be positioned at default difference range, illustrate that consumption POS settlement terminal is in identical air humidity environment with mobile intelligent terminal, now again with the feature that the same ambient parameter in same position place is identical, utilize identical air humidity value to further demonstrate both and be in same position, then certification authority sends and confirms that Transaction Information is to mobile intelligent terminal；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Wherein, the confirmation Transaction Information that certification authority sends is labeled as Message_T-M-Confirm, the refusal Transaction Information that certification authority sends is labeled as Message_T-M-Reject；Confirm Transaction Information Message_T-M-ConfirmWith refusal Transaction Information Message_T-M-RejectAs follows by formula labelling respectively:

Message_T-M-Confirm={ TSM, Mobile, POS, RP₁,RM₁,TP,Cert^t(TSM_POS),K,k(Mobile,TSM)}；

Message_T-M-Reject={ TSM, Mobile, POS, RP₁,RM₁,RejectP,k(Mobile,TSM)}；

Wherein, K is the transaction key between mobile intelligent terminal and consumption POS terminal；

Step 11, mobile intelligent terminal receives the confirmation Transaction Information that certification authority sends, and the transaction interactive information including mobile intelligent terminal signature is sent to consumption POS settlement terminal；Wherein:

Transaction interactive information includes the signature Sig of mobile intelligent terminal_Mobile, mobile intelligent terminal generate anti-the first random number R M stolen secret information₁, the financial notarial deed Cert that chooses of the transaction key K between mobile intelligent terminal and consumption POS terminal, mobile intelligent terminal^s(BANK_Mobile), the credit notarial deed Cert that chooses of mobile intelligent terminal^s(TSM_Mobile) and consumption POS settlement terminal credit notarial deed Cert^t(TSM_POS)；The transaction interactive information that mobile intelligent terminal sends is labeled as Message_M-P, conclude the business interactive information Message_M-PAs follows by formula labelling:

${\mathrm{Message}}_{M-P}=\left\{\begin{array}{c}Mobile,POS,TSM,{\mathrm{RM}}_1,{\mathrm{Cert}}^s\left({\mathrm{BANK}}_{Mobile}\right),{\mathrm{Cert}}^s\left({\mathrm{TSM}}_{Mobile}\right),K,\\ {\mathrm{Sig}}_{Mobile},{\mathrm{Cert}}^t\left({\mathrm{TSM}}_{POS}\right)\end{array}\right\};s\∈\[1,m\];$

Step 12, consumption POS settlement terminal receives, extracts the transaction interactive information that mobile intelligent terminal sends, and judges according to the information extracted in transaction interactive information:

When the consumption POS settlement terminal credit notarial deed that consumption POS settlement terminal extracts in interactive information of concluding the business has been stored in the credit notarial deed data base of its storage, illustrate that the payment transaction request that consumption POS settlement terminal is initiated has been obtained for the confirmation of mobile intelligent terminal, namely mobile intelligent terminal agrees to this payment transaction behavior that consumption POS settlement terminal is initiated, then perform step 13；Otherwise, it was shown that mobile intelligent terminal disagrees this payment transaction behavior, and consumption POS settlement terminal refusal carries out payment transaction with mobile intelligent terminal；

Step 13, consumption POS settlement terminal generates the second random number, and send the second random number of including generating, the first random number, mobile intelligent terminal prevent that the payment information of payment data is to mobile intelligent terminal needed for the first random number stolen secret information, mobile intelligent terminal；Payment information flag is Message_P-M-Payment, Message_P-M-PaymentAs follows by formula labelling:

Message_P-M-Payment={ POS, Mobile, RP₂,RM₁,RP₁,Payment,K}；

Wherein, RP₂Representing the second random number that consumption POS settlement terminal generates, Payment represents payment needed for mobile intelligent terminal, and K is the transaction key between consumption POS settlement terminal and mobile intelligent terminal；

Step 14, mobile intelligent terminal receives the payment information that consumption POS settlement terminal sends, and generate anti-the second random number stolen secret information, mobile intelligent terminal the payment transaction records information including received payment information and newly-generated second random number is sent to visa mechanism and stores；Payment transaction records information is designated as S_M-T-Payment, payment transaction records information S_M-T-PaymentAs follows by formula labelling:

S_M-T-Payment={ Mobile, TSM, POS, RM₂,k(Mobile,TSM)}；

Wherein, RM₂Represent anti-the second random number stolen secret information that mobile intelligent terminal generates；

Step 15, mobile intelligent terminal receives the outside palm payment cipher by each key-press input, Real-time Collection operator contacts the palm. surface temperature of mobile intelligent terminal, palm surface humidity and palm perspiration output, by mobile intelligent terminal press suffered by each button pressure direction judge to press press each button as after left hand or the right hand, by respectively press key currently suffered by press pressure and add pressing in pressure data storehouse corresponding to judged result to, recalculate now each button correspondence and press the variance in pressure data storehouse；

Such as, mobile intelligent terminal through judge current operation mobile intelligent terminal carry out delivery operation as left hand, then mobile intelligent terminal each button left hand that the palm. surface temperature of Real-time Collection, palm surface humidity and palm perspiration output data have added its lawful owner to original by it is pressed in pressure data storehouse, then the left hand being newly formed is pressed pressure data storehouse and calculate its variance, be newly formed, to calculate in step 16, to understand, the data fluctuations situation that left hand is pressed in pressure data storehouse；

Step 16, mobile intelligent terminal according to button gained again each in step 15 press in pressure data storehouse variance and step 8 corresponding to press the difference between the variance of pressure data storehouse, make judging first whether performing delivery operation:

When each button gained difference is respectively less than or is equal to predetermined threshold value, represent that the data that each button gained again is pressed in pressure data storehouse do not have because newly added data produce big fluctuation, this payment cipher is inputted by mobile intelligent terminal lawful owner, then perform step 17；Otherwise, illustrating that now pressure value of pressing suffered by each button occurs in that bigger fluctuation, represent that this payment cipher is not mobile intelligent terminal lawful owner input, mobile intelligent terminal refusal performs delivery operation；

Step 17, mobile intelligent terminal gathers its all around image of four direction and the angle of mobile intelligent terminal real time rotation and speed, and capture face-image occurs time, the face-image of its lawful owner stored in this face-image captured and step 1 is done facial match identification by mobile intelligent terminal:

When being respectively positioned on pivoting angle data storehouse when its lawful owner that step 2 builds operates and speed data storehouse when the angle that the face-image captured is consistent with its lawful owner's facial images match and mobile intelligent terminal rotates and speed, then represent that the current operator of mobile intelligent terminal is its lawful owner, then perform step 18；Otherwise, represent current operator its lawful owner non-of mobile intelligent terminal, then perform step 20；

When the person of picking up or thief grip other people mobile intelligent terminal first time, ordinary practice is intelligent terminal in rotary moving all around, to understand the basic condition of this mobile intelligent terminal being held, now namely its current face-image gripping personnel is acquired and face match cognization by mobile intelligent terminal, to determine whether the lawful owner of this mobile intelligent terminal

Step 18, obtained palm surface relational data model in the palm. surface temperature gathered in step 15, palm surface humidity and palm perspiration output input step 7 is carried out matching judgment by mobile intelligent terminal, and makes dual payment judgement operation according to matching judgment result:

When the palm. surface temperature of input, palm surface humidity and palm perspiration output, meet gained palm surface relational data model, show that the operator of current mobile intelligent terminal is the lawful owner of mobile intelligent terminal, and this lawful owner is in the Secure Transaction environment of normal condition, then perform step 19；Otherwise, illustrate that the operator of current mobile intelligent terminal is with the lawful owner for mobile intelligent terminal, but this lawful owner is in unsafe trading environment of abnormal condition, it is likely to receive outside threatening or the unfavorable factor such as coerces, have no alternative and carry out delivery operation, needing mobile intelligent terminal to arouse vigilance, mobile intelligent terminal performs step 20:

Step 19, mobile intelligent terminal sends the pay warrant including this payment cipher and its finance notarial deed to bank account management platform, when being judged that this payment cipher is consistent with default payment cipher by bank account management platform, the fund of mobile intelligent terminal Send only Account is transferred to consumption POS settlement terminal in the collecting account of bank account management platform；Otherwise, the execution of bank account management platform refusal is transferred accounts operation；

Step 20, mobile intelligent terminal, under screen state of going out, obtains its geographical position being presently in, and the geographical position that is presently in of the face-image captured and acquisition is sent to public security system and is put on record, to provide detection clue.Wherein, mobile intelligent terminal is now in screen state of going out, the attention of the person of picking up or thief can be reduced, so that enough safety times can be had accurately to obtain its geographical position being presently in for mobile intelligent terminal, thus being conducive to public security system to be accurately positioned the current location of mobile intelligent terminal.

In the present invention, first, the unlatching gesture that mobile intelligent terminal is preset using its lawful owner, as opening key, forms the first floor protective measure guaranteeing mobile intelligent terminal information security；

Secondly; this feature of uniqueness according to human body behavior characteristics; it is applied to when mobile intelligent terminal is according to its lawful owner's delivery operation and each button of this intelligent terminal presses pressure condition; build the left hand of each button during its lawful owner's delivery operation and press pressure data storehouse and the right hand presses pressure data storehouse; personnel identity when paying with verification operation mobile intelligent terminal; guarantee that delivery operation only has its lawful owner to initiate, form the protective measure again of protection mobile intelligent terminal information security with this；Mobile intelligent terminal is through judging that its operator is its lawful owner, and its lawful owner is in when not receiving the Secure Transaction environment threatened or coerce, then utilize transaction key to be safely completed payment process；Otherwise, mobile intelligent terminal carries out early warning operation；

Simultaneously, palm. surface temperature when mobile intelligent terminal builds its lawful owner's delivery operation, humidity and the relational data model of perspiration output, whether environment residing when assert its lawful owner's delivery operation with this is subject to outside threatening or the unfavorable factor impact such as coerces, and then determines whether the personal safety of its lawful owner receives threat；Then consumption POS clearing and mobile intelligent terminal are respectively after obtaining each self-corresponding credit notarial deed set and finance notarial deed set, consumption POS settlement terminal is using its first random number and effective time value as the condition ensureing transaction security, add in payment request information by only limitting the effective credit notarial deed of single use, to prevent credit notarial deed from being reused by malicious third parties, cause leakage of information；

Again, utilize the feature that same position place same ambient parameter value is identical, consumption POS settlement terminal and mobile intelligent terminal all send the data comprising its current location, current location noise and air humidity to certification authority, when being judged that consumption POS settlement terminal is in safe same position with mobile intelligent terminal both parties by certification authority, then send transaction key respectively to consumption POS settlement terminal and mobile intelligent terminal；

Finally, mobile intelligent terminal is by gathering the face-image of its lawful owner, and build respectively its legal have use this intelligent terminal's time institute's anglec of rotation and speed data storehouse, with when mobile intelligent terminal is stolen, caught its face-image all around by mobile intelligent terminal and gather the anglec of rotation now and speed, thus judge whether current operator is its lawful owner or thief, and after judging that current operator is as thief, the face-image of current location and operator is sent to public security system by mobile intelligent terminal snugly to be put on record, the position of mobile intelligent terminal and the looks of thief are locked rapidly thus convenient, be conducive to the detection of follow-up larceny case.

Claims (1)

1. the method for payment differentiated based on NFC transaction security, for there is the mobile intelligent terminal of NFC function, there is the payment system of the consumption POS settlement terminal of NFC function, certification authority, bank account management platform and public security system composition, it is characterized in that, in turn include the following steps:

Step 1, mobile intelligent terminal obtains, store face-image and its lawful owner unlatching gesture set in advance of its lawful owner, and sets mobile intelligent terminal and open when obtaining correct unlatching gesture；Otherwise, mobile intelligent terminal is in screen state of going out all the time；

Step 2, when mobile intelligent terminal operates mobile intelligent terminal according to its lawful owner in preset time period, angle that this mobile intelligent terminal rotates through and speed, build pivoting angle data storehouse when mobile intelligent terminal is operated by its lawful owner and speed data storehouse；

Step 3, consumption POS settlement terminal and mobile intelligent terminal send credit visa respectively and ask to certification authority, generated the credit notarial deed set of consumption POS settlement terminal and mobile intelligent terminal by certification authority respectively, and credit notarial deed set is sent respectively to consumption POS settlement terminal and mobile intelligent terminal；Wherein:

Described consumption POS settlement terminal is labeled as POS, and mobile intelligent terminal is labeled as Mobile, and certification authority is labeled as TSM, and the credit notarial deed aggregated label of consumption POS settlement terminal is Cert (TSM_POS), the credit notarial deed of mobile intelligent terminal is labeled as Cert (TSM_Mobile)；Consumption POS settlement terminal credit notarial deed set Cert (TSM_POS) and mobile intelligent terminal credit notarial deed set Cert (TSM_Mobile) represented by equation below respectively:

Cert(TSM_POS)={ Cert¹(TSM_POS),Cert²(TSM_POS),…,Cert^m(TSM_POS)}；

Cert(TSM_Mobile)={ Cert¹(TSM_Mobile),Cert²(TSM_Mobile),…,Cert^m(TSM_Mobile)}；

Wherein, m represent consumption POS settlement terminal and mobile intelligent terminal can credit notarial deed number, m >=3；Consume each credit notarial deed in POS settlement terminal credit notarial deed set and each credit notarial deed in mobile intelligent terminal credit notarial deed set is followed traversal and used rule and all limit use once；

Step 4, consumption POS settlement terminal registers collecting account and account password in bank account management platform, mobile intelligent terminal registers Send only Account and payment cipher in bank account management platform, and by consumption POS settlement terminal and mobile intelligent terminal send respectively finance visa ask to bank account management platform, generated the financial notarial deed set of consumption POS settlement terminal and mobile intelligent terminal by bank account management platform respectively, and finance notarial deed set is sent respectively to consumption POS settlement terminal and mobile intelligent terminal；Wherein:

Described bank account management platform is labeled as BANK, and the financial notarial deed aggregated label of consumption POS settlement terminal is Cert (BANK_POS), the financial notarial deed aggregated label of mobile intelligent terminal is Cert (BANK_Mobile), consume POS settlement terminal finance notarial deed set Cert (BANK_POS) and mobile intelligent terminal credit notarial deed set Cert (TSM_Mobile) represented by equation below respectively:

Cert(BANK_POS)={ Cert¹(BANK_POS),Cert²(BANK_POS),…,Cert^m(BANK_POS)}；

Cert(BANK_Mobile)={ Cert¹(BANK_Mobile),Cert²(BANK_Mobile),…,Cert^m(BANK_Mobile)}；m≥3；Wherein, the credit notarial deed of consumption POS terminal is one-to-one relationship with its finance notarial deed, and the credit notarial deed of mobile intelligent terminal is one-to-one relationship with its finance notarial deed；Each financial notarial deed in consumption POS settlement terminal finance notarial deed set and each financial notarial deed in mobile intelligent terminal finance notarial deed set are followed traversal and are used rule and all limit use once；

Step 5, consumption POS settlement terminal generates anti-the first random number stolen secret information, set the effective time value of the first random number, obtain consumption POS settlement terminal current location noise and current location air humidity, and store the effective time value of this first random number and the first random number, then the payment request information including consumption POS settlement terminal self signature is sent to mobile intelligent terminal, and sends consumption its current location noise of POS computing terminal and current location air humidity to certification authority；Wherein:

Described payment request information includes the first random number R P that consumption POS settlement terminal generates₁, this first random number R P₁Effective time value TP, payment request ReqM, the consumption financial notarial deed Cert that chooses of POS settlement terminal^t(BANK_POS), the consumption credit notarial deed Cert that chooses of POS settlement terminal^t(TSM_POS), consumption POS settlement terminal self signature Sig_POSAnd the private key sk (POS) of consumption POS settlement terminal；Wherein, this payment request information is labeled as Message_P-M, payment request information Message_P-MAs follows by formula labelling:

${\mathrm{Message}}_{P-M}=\left\{\begin{array}{c}POS,Mobile,{\mathrm{RP}}_1,TP,{\mathrm{Cert}}^t\left({\mathrm{BANK}}_{POS}\right),{\mathrm{Cert}}^t\left({\mathrm{TSM}}_{POS}\right),\mathrm{Re}qM,\\ {\mathrm{Sig}}_{POS},sk\left(POS\right)\end{array}\right\};t\∈\[1,m\];$

Step 6, mobile intelligent terminal is before each delivery operation and during delivery operation, its lawful owner of Real-time Collection contacts the palm. surface temperature of mobile intelligent terminal respectively, palm surface humidity and palm surface perspiration output, and build the palm. surface temperature data base before mobile intelligent terminal lawful owner's delivery operation respectively, palm surface humidity data storehouse and palm surface perspiration output data base, and palm. surface temperature data base during mobile intelligent terminal lawful owner's delivery operation, palm surface humidity data storehouse and palm surface perspiration output data base；

Step 7, mobile intelligent terminal according to the palm. surface temperature data base before its lawful owner's delivery operation of gained and during delivery operation, palm surface humidity data storehouse and palm surface perspiration output data base, palm. surface temperature when setting up the palm contacts mobile intelligent terminal of its lawful owner, palm surface humidity and the palm surface relational data model of palm surface perspiration output；

Step 8, mobile intelligent terminal is its lawful owner of Real-time Collection the pressing pressure value and press pressure direction of each button on keyboard in preset time period, building mobile intelligent terminal lawful owner utilizes the left hand that left hand and the right hand are respectively directed to each button to press pressure data storehouse and the right hand presses pressure data storehouse, and calculates each button left hand respectively and press pressure data storehouse and the right hand presses the variance in pressure data storehouse；Wherein:

On described mobile intelligent terminal, i-th key markings is Buttoni, and the left hand of the mobile intelligent terminal lawful owner constructed by button Buttoni is pressed pressure data storehouse and is labeled asThe right hand of mobile intelligent terminal lawful owner is pressed pressure data storehouse and is labeled asN ∈ N, N be left hand press that pressure data storehouse and pressing stores in pressure data storehouse respectively press pressure data number；Represent that for the button Buttoni mobile intelligent terminal lawful owner's left hand gathered n-th presses pressure data,Represent that for the button Buttoni mobile intelligent terminal lawful owner's right hand gathered n-th presses pressure data；Mobile intelligent terminal lawful owner's left hand suffered by described button Buttoni is pressed the variance of pressure and is labeled asMobile intelligent terminal lawful owner's right hand is pressed the variance of pressure and is labeled asWherein, varianceWithComputing formula respectively as follows:

${\mathrm{\σ}}_{Left}^2\left({\mathrm{Button}}_i\right)=\underset{n=1}{\overset{N}{\mathrm{\Σ}}}\frac{{\left(F_{Buttoni}^{Left}\right(n)-\stackrel{\‾}{F_{Buttoni}^{Left}})}^2}{N},\stackrel{\‾}{F_{Buttoni}^{Left}}=\underset{n=1}{\overset{N}{\mathrm{\Σ}}}\frac{F_{Buttoni}^{Left}\left(n\right)}{N};$

${\mathrm{\σ}}_{Right}^2\left({\mathrm{Button}}_i\right)=\underset{n=1}{\overset{N}{\mathrm{\Σ}}}\frac{{\left(F_{Buttoni}^{Right}\right(n)-\stackrel{\‾}{F_{Buttoni}^{Right}})}^2}{N},\stackrel{\‾}{F_{Buttoni}^{Right}}=\underset{n=1}{\overset{N}{\mathrm{\Σ}}}\frac{F_{Buttoni}^{Right}\left(n\right)}{N};$

Step 9, after mobile intelligent terminal receives the payment request information that consumption POS settlement terminal sends, generate anti-the first random number stolen secret information, obtain mobile intelligent terminal current location noise and current location air humidity, and send the certification solicited message and mobile intelligent terminal current location noise and current location air humidity that include consumption POS settlement terminal payment request information to certification authority；Wherein:

The certification solicited message that described mobile intelligent terminal sends includes the payment request information Message of consumption POS settlement terminal_P-M, mobile intelligent terminal generate anti-the first random number R M stolen secret information₁, certification request ReqT, itself and PKI k (Mobile, TSM) of communicating between consumption POS settlement terminal conversation request ReqSession and mobile intelligent terminal with certification authority；Wherein, this certification solicited message of mobile intelligent terminal is designated as Message_M-T, Message_M-TIt is labeled as Message by formula_M-T={ Message_P-M,TSM,RM₁,ReqT,ReqSession,k(Mobile,TSM)}；

Step 10, certification authority's reception, the certification solicited message extracting mobile intelligent terminal transmission and mobile intelligent terminal current location noise and current location air humidity, record receives the time of mobile intelligent terminal certification request, and according to the certification solicited message of the mobile intelligent terminal extracted, mobile intelligent terminal current location noise and air humidity, consumption POS settlement terminal current location noise and air humidity, mobile intelligent terminal is made transaction feedback；Wherein, this step includes step 10-1 to step 10-3 successively:

Step 10-1, when the consumption POS settlement terminal credit notarial deed that certification authority judges in the certification solicited message extracted is present in the credit notarial deed data base that certification authority has stored and certification authority receives the effective time that mobile intelligent terminal certification request time is positioned at the first random number, show that the consumption POS terminal that this credit notarial deed is effective and corresponding is security terminal, certification authority generates the transaction key between mobile intelligent terminal and consumption POS terminal, and performs step 10-2；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Step 10-2, certification authority judge consumption POS settlement terminal and mobile intelligent terminal the difference of NF corresponding respectively be positioned at default difference range, and the space length between consumption POS settlement terminal and mobile intelligent terminal less than default Secure Transaction word space threshold time, then perform step 10-3；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；

Step 10-3, when certification authority judges that the difference of the corresponding respectively current location air humidity of consumption POS settlement terminal and mobile intelligent terminal institute is positioned at default difference range, then certification authority's transmission confirmation Transaction Information is to mobile intelligent terminal；Otherwise, certification authority sends refusal Transaction Information to mobile intelligent terminal；Wherein, the confirmation Transaction Information that described certification authority sends is labeled as Message_T-M-Confirm, the refusal Transaction Information that certification authority sends is labeled as Message_T-M-Reject；Confirm Transaction Information Message_T-M-ConfirmWith refusal Transaction Information Message_T-M-RejectAs follows by formula labelling respectively:

Message_T-M-Confirm={ TSM, Mobile, POS, RP₁,RM₁,TP,Cert^t(TSM_POS),K,k(Mobile,TSM)}；

Message_T-M-Reject={ TSM, Mobile, POS, RP₁,RM₁,RejectP,k(Mobile,TSM)}；

Wherein, K is the transaction key between mobile intelligent terminal and consumption POS terminal；

Step 11, mobile intelligent terminal receives the confirmation Transaction Information that certification authority sends, and the transaction interactive information including mobile intelligent terminal signature is sent to consumption POS settlement terminal；Wherein:

Described transaction interactive information includes the signature Sig of mobile intelligent terminal_Mobile, mobile intelligent terminal generate anti-the first random number R M stolen secret information₁, the financial notarial deed Cert that chooses of the transaction key K between mobile intelligent terminal and consumption POS terminal, mobile intelligent terminal^s(BANK_Mobile), the credit notarial deed Cert that chooses of mobile intelligent terminal^s(TSM_Mobile) and consumption POS settlement terminal credit notarial deed Cert^t(TSM_POS)；Wherein, the transaction interactive information that described mobile intelligent terminal sends is labeled as Message_M-P, conclude the business interactive information Message_M-PAs follows by formula labelling:

${\mathrm{Message}}_{M-P}=\left\{\begin{array}{c}Mobile,POS,TSM,{\mathrm{RM}}_1,{\mathrm{Cert}}^s\left({\mathrm{BANK}}_{Mobile}\right),{\mathrm{Cert}}^s\left({\mathrm{TSM}}_{Mobile}\right),K,\\ {\mathrm{Sig}}_{Mobile},{\mathrm{Cert}}^t\left({\mathrm{TSM}}_{POS}\right)\end{array}\right\};s\∈\[1,m\];$

Step 12, consumption POS settlement terminal receives, extracts the transaction interactive information that mobile intelligent terminal sends, and judges according to the information extracted in transaction interactive information:

When the consumption POS settlement terminal credit notarial deed that consumption POS settlement terminal extracts in interactive information of concluding the business has been stored in the credit notarial deed data base of its storage, then perform step 13；Otherwise, consumption POS settlement terminal refusal carries out payment transaction with mobile intelligent terminal；

Step 13, consumption POS settlement terminal generates the second random number, and send the second random number of including generating, the first random number, mobile intelligent terminal prevent that the payment information of payment data is to mobile intelligent terminal needed for the first random number stolen secret information, mobile intelligent terminal；Wherein, described payment information flag is Message_P-M-Payment, Message_P-M-PaymentAs follows by formula labelling:

Message_P-M-Payment={ POS, Mobile, RP₂,RM₁,RP₁,Payment,K}；

Wherein, RP₂Representing the second random number that consumption POS settlement terminal generates, Payment represents payment needed for mobile intelligent terminal, and K is the transaction key between consumption POS settlement terminal and mobile intelligent terminal；

Step 14, mobile intelligent terminal receives the payment information that consumption POS settlement terminal sends, and generate anti-the second random number stolen secret information, mobile intelligent terminal the payment transaction records information including received payment information and newly-generated second random number is sent to visa mechanism and stores；Wherein, described payment transaction records information flag is S_M-T-Payment, payment transaction records information S_M-T-PaymentAs follows by formula labelling:

S_M-T-Payment={ Mobile, TSM, POS, RM₂,k(Mobile,TSM)}；

Wherein, RM₂Represent anti-the second random number stolen secret information that mobile intelligent terminal generates；

Step 15, mobile intelligent terminal receives the outside palm payment cipher by each key-press input, Real-time Collection operator contacts the palm. surface temperature of mobile intelligent terminal, palm surface humidity and palm perspiration output, by mobile intelligent terminal press suffered by each button pressure direction judge to press press each button as after left hand or the right hand, by respectively press key currently suffered by press pressure and add pressing in pressure data storehouse corresponding to judged result to, recalculate now each button correspondence and press the variance in pressure data storehouse；

Step 16, mobile intelligent terminal according to button gained again each in step 15 press in pressure data storehouse variance and step 8 corresponding to press the difference between the variance of pressure data storehouse, make judging first whether performing delivery operation:

When each button gained difference is respectively less than or is equal to predetermined threshold value, then perform step 17；Otherwise, mobile intelligent terminal refusal performs delivery operation；

Step 17, mobile intelligent terminal gathers its all around image of four direction and the angle of mobile intelligent terminal real time rotation and speed, and capture face-image occurs time, the face-image of its lawful owner stored in this face-image captured and step 1 is done facial match identification by mobile intelligent terminal:

When being respectively positioned on pivoting angle data storehouse when its lawful owner that step 2 builds operates and speed data storehouse when the angle that the face-image captured is consistent with its lawful owner's facial images match and mobile intelligent terminal rotates and speed, then represent that the current operator of mobile intelligent terminal is its lawful owner, then perform step 18；Otherwise, represent current operator its lawful owner non-of mobile intelligent terminal, then perform step 20；

Step 18, obtained palm surface relational data model in the palm. surface temperature gathered in step 15, palm surface humidity and palm perspiration output input step 7 is carried out matching judgment by mobile intelligent terminal, and makes dual payment judgement operation according to matching judgment result:

When the palm. surface temperature of input, palm surface humidity and palm perspiration output meet gained palm surface relational data model, then perform step 19；Otherwise, mobile intelligent terminal performs step 20:

Step 19, mobile intelligent terminal sends the pay warrant including this payment cipher and its finance notarial deed to bank account management platform, when being judged that this payment cipher is consistent with default payment cipher by bank account management platform, the fund of mobile intelligent terminal Send only Account is transferred to consumption POS settlement terminal in the collecting account of bank account management platform；Otherwise, the execution of bank account management platform refusal is transferred accounts operation；

Step 20, mobile intelligent terminal, under screen state of going out, obtains its geographical position being presently in, and the geographical position that is presently in of the face-image captured and acquisition is sent to public security system and is put on record, to provide detection clue.