CN105989498A

CN105989498A - Payment method and system

Info

Publication number: CN105989498A
Application number: CN201610158224.4A
Authority: CN
Inventors: 李明
Original assignee: Individual
Current assignee: Individual
Priority date: 2016-03-18
Filing date: 2016-03-18
Publication date: 2016-10-05

Abstract

The invention provides a payment method and system. The method comprises the steps that receiving side equipment establishes human body communication connection with payment side equipment through a biological limb after the biological limb enters the preset range of the receiving side equipment; the receiving side equipment transmits matching information to the payment side equipment through human body communication connection and establishes first wireless communication connection by utilizing the matching information; the payment side equipment transmits first authentication information to the receiving side equipment through first wireless communication connection, wherein the first authentication information includes digital authentication information; the receiving side equipment receives the first authentication information transmitted by the payment side equipment through first wireless communication connection; the receiving side equipment acquires biological characteristic information of the biological limb during the time when the biological limb enters the preset range of the receiving side equipment; the receiving side equipment acquires an authentication result of authentication of the digital authentication information and the biological characteristic information; and the receiving side equipment performs payment transaction under the condition that the authentication result indicates passing of authentication.

Description

A kind of method of payment and system

Technical field

The present invention relates to a kind of electronic technology field, particularly relate to a kind of method of payment and system.

Background technology

E-Payment is compared and is paid in cash, and the advantage such as has safely, quickly, reliable.POS is as a kind of payment terminal, quilt In applying to widely pay by mails.Existing POS has plenty of the holder's magnetic strip information being read bank card by card reader, Being inputted dealing money by POS operator, holder is brush bank card in POS, inputs password, POS the most again These information are uploaded to bank backstage, complete on-line transaction.As can be seen here, in existing E-Payment flow process, Yong Huxu Performing twice operation, be put in POS by bank card for the first time and be connected with POS foundation, user needs input for the second time Password, operating process is complicated.

Summary of the invention

Present invention seek to address that one of the problems referred to above.

A kind of method of payment of offer is provided.

Another object of the present invention is to provide a kind of payment system.

For reaching above-mentioned purpose, technical scheme is specifically achieved in that

Scheme 1, a kind of method of payment, including: after biological limbs enter the preset range of beneficiary equipment, described beneficiary Equipment is set up human body communication with payer equipment by described biological limbs and is connected；Described beneficiary equipment and described payer equipment Connect transmission match information by described human body communication, and utilize described match information to set up the first radio communication connection；Described Pay method, apparatus and the first authentication information is sent to described beneficiary equipment by described first radio communication connection, wherein, described the One authentication information includes: digital certificate information；Described beneficiary equipment connects the described payment of reception by described first radio communication Described first authentication information of method, apparatus transmission；The duration of the preset range of described beneficiary equipment is entered at described biological limbs Between, described beneficiary equipment gathers the biological information of described biological limbs；Described beneficiary equipment obtains to be recognized described numeral The authentication result that card information and described biological information are authenticated；Described beneficiary equipment is certification in described authentication result Payment transaction is performed in the case of by.

Scheme 2, according to the method described in scheme 1, described match information at least includes: the MAC Address of described beneficiary equipment, And the second authentication information of described beneficiary equipment, the second authentication information of described beneficiary equipment at least includes: described gathering The information to be verified of method, apparatus；Described beneficiary equipment is connected transmission coupling letter with described payer equipment by described human body communication Breath, and utilize described match information to set up the first radio communication connection, including: described beneficiary equipment passes through described human body communication Connect and described match information is sent to described payer equipment；Described payer equipment is received by described human body communication After the described match information of described beneficiary device transmission, initiate to set up institute to described beneficiary equipment according to described MAC Address Stating the connection request that the first radio communication connects, carry information to be certified in described connection request, described information to be certified includes: Described second authentication information or to the described calculated check value of information to be verified；Described beneficiary equipment receives described connection After request, described information to be certified is authenticated, after certification is passed through, sets up described first wireless with described payer equipment Communication connection.

Scheme 3, according to the method described in scheme 2, described second authentication information also includes: described beneficiary equipment generate with Machine identifies.

Scheme 4, according to the method described in scheme 2 or 3, in the case of described information to be certified includes described information to be verified, Described information to be verified includes: for logging in the login key of WIFI；Include described letter to be verified in described information to be certified In the case of ceasing calculated check value, described information to be verified includes: Bluetooth pairing information, magnetic flux certification key or RFID label tag.

Scheme 5, according to the method described in scheme 1, described match information at least includes: the MAC Address of described payer equipment And the identity of described payer equipment；Described beneficiary equipment is connected by described human body communication with described payer equipment Transmission match information, and utilize described match information to set up the first radio communication connection, including: described payer equipment passes through institute State human body communication and connect the extremely described beneficiary equipment that described match information sent；Described beneficiary equipment passes through described human body communication After receiving described match information, connected according to described MAC Address to described payer equipment by described human body communication Initiate to set up the connection request that described first radio communication connects；Described payer equipment is received by described human body communication After described connection request, set up described first radio communication with described beneficiary equipment and be connected.

Scheme 6, according to the method described in scheme 5, described beneficiary equipment is connected according to described MAC by described human body communication Address initiates to set up the connection request that described first radio communication connects to described payer equipment, including: described beneficiary equipment Identity locally stored with described beneficiary equipment for described identity being mated, if mating unsuccessful, then passing through Described human body communication connects initiates to set up described connection request to described payer equipment according to described MAC Address, and stores institute State match information.

Scheme 7, according to the method described in scheme 5 or 6, described first radio communication connects and includes: bluetooth connects, WIFI even Connect, magnetic flux connects or RFID connects.

Scheme 8, according to the method described in any one of scheme 5 to 7, perform after payment transaction terminates at described beneficiary equipment, Described method also includes: described beneficiary equipment disconnects and being connected with the first radio communication of described payer equipment.

Scheme 9, according to the method described in scheme 8, disconnect wireless with the first of described payer equipment at described beneficiary equipment After communication connection, described method also includes: judge whether described biological limbs are not on the default model of described beneficiary equipment Enclose, and/or, it is judged that whether current time reaches predetermined threshold value apart from the duration of described closing the transaction, if it is, delete described Match information.

Scheme 10, according to the method described in any one of scheme 1 to 9, at described payer equipment by authentication information by described the Before one radio communication connects and is sent to described beneficiary equipment, described method also includes: described beneficiary equipment is by described the One radio communication connects to described payer equipment transmission Transaction Information；Described payer equipment receives described Transaction Information；Described Payer equipment extracts key message from described Transaction Information；Key message described in described payer device prompts, and etc. stand-by Family confirms；After described payer equipment receives the confirmation instruction of user, perform described payer equipment by authentication information by described First radio communication connects the step being sent to described beneficiary equipment.

Scheme 11, according to the method described in any one of scheme 1 to 10, described biological information includes: finger print information and/or Venous information；The biological information of the described biological limbs of described collection includes: at described biological limbs and described beneficiary equipment In the case of contact, gather the described biological information of described biological limbs and the contact site of described beneficiary equipment.

Scheme 12, according to the method described in any one of scheme 1 to 11, described digital certificate information includes at least one of: Electronic signature information, utilize the calculated cipher-text information of symmetric key and dynamic password.

Scheme 13, a kind of payment system, including: beneficiary equipment and payer equipment, wherein: described beneficiary equipment and institute State payer equipment, after the preset range entering described beneficiary equipment at biological limbs, set up by described biological limbs Human body communication connects；Connect transmission match information by described human body communication, and utilize described match information to set up the first channel radio Letter connects；Described payer equipment, is additionally operable to be connected the first authentication information by described first radio communication be sent to described receipts Money method, apparatus, wherein, described first authentication information includes: digital certificate information；Described beneficiary equipment, is additionally operable to by institute State the first radio communication and connect described first authentication information receiving described payer device transmission；Institute is entered at described biological limbs State beneficiary equipment preset range duration, gather the biological information of described biological limbs；Obtain described numeral The authentication result that authentication information and described biological information are authenticated；It is in the case of certification is passed through in described authentication result Perform payment transaction.

Scheme 14, according to the system described in scheme 13, described match information at least includes: the MAC of described beneficiary equipment ground Location and the second authentication information of described beneficiary equipment, the second authentication information of described beneficiary equipment at least includes: described The information to be verified of beneficiary equipment；Described beneficiary equipment and described payer equipment, for connecting by described human body communication Transmission match information, and utilize described match information to set up the first radio communication connection, including: described beneficiary equipment, it is used for Connected by described human body communication and described match information is sent to described payer equipment；Described payer equipment, is used for passing through After described human body communication receives the described match information of described beneficiary device transmission, according to described MAC Address to institute State beneficiary equipment to initiate to set up the connection request that described first radio communication connects, described connection request carries letter to be certified Breath, described information to be certified includes: described second authentication information or to the described calculated check value of information to be verified；Described Beneficiary equipment, after being additionally operable to receive described connection request, is authenticated described information to be certified, after certification is passed through, Set up described first radio communication with described payer equipment to be connected.

Scheme 15, according to the system described in scheme 14, described second authentication information also includes: described beneficiary equipment generate Random identification.

Scheme 16, according to the system described in scheme 14 or 15, include the situation of described information to be verified in described information to be certified Under, described information to be verified includes: for logging in the login key of WIFI；Include described to be verified in described information to be certified In the case of the calculated check value of information, described information to be verified includes: Bluetooth pairing information, magnetic flux certification key or Person's RFID label tag.

Scheme 17, according to the system described in scheme 13, described match information at least includes: the MAC of described payer equipment ground Location and the identity of described payer equipment；Described beneficiary equipment and described payer equipment, for by described human body Communication connection transmission match information, and utilize described match information to set up the first radio communication connection, including: described payer sets Standby, for being connected by described human body communication, described match information is sent to described beneficiary equipment；Described beneficiary equipment, After receiving described match information by described human body communication, connected according to described MAC by described human body communication Address initiates to set up the connection request that described first radio communication connects to described payer equipment；Described payer equipment, also uses After receiving described connection request by described human body communication, set up described first radio communication with described beneficiary equipment Connect.

Scheme 18, according to the system described in scheme 17, described beneficiary equipment, for connecting basis by described human body communication Described MAC Address initiates to set up the connection request that described first radio communication connects to described payer equipment, including: described Beneficiary equipment, for identity locally stored with described beneficiary equipment for described identity is mated, if Join unsuccessful, then connected by described human body communication and initiate to set up described company to described payer equipment according to described MAC Address Connect request, and store described identity.

Scheme 19, according to the system described in scheme 17 or 18, described first radio communication connects and includes: bluetooth connects, WIFI Connect, magnetic flux connects or RFID connects.

Scheme 20, according to the system described in any one of scheme 17 to 19, described beneficiary equipment, be additionally operable to perform pay hand over After easily terminating, disconnect and being connected with the first radio communication of described payer equipment.

Scheme 21, according to the system described in scheme 20, described beneficiary equipment, be additionally operable to disconnect with described payer equipment The first radio communication connect after, it is judged that whether described biological limbs are not on the preset range of described beneficiary equipment, and/ Or, it is judged that whether current time reaches predetermined threshold value apart from the duration of described closing the transaction, if it is, delete described coupling letter Breath.

Scheme 22, according to the system described in any one of scheme 13 to 21, described payer equipment, be additionally operable to by described first Before authentication information is sent to described beneficiary equipment by described first radio communication connection, by described first radio communication even Receive the Transaction Information that described beneficiary equipment sends；Key message is extracted from described Transaction Information；Point out described key Information, and wait that user confirms；After the confirmation instruction receiving user, perform described first authentication information by described first Radio communication connects the operation being sent to described beneficiary equipment.

Scheme 23, according to the system described in any one of scheme 13 to 22, described biological information includes: finger print information and/ Or venous information；Described beneficiary equipment, the biological information being additionally operable to gather described biological limbs includes: described beneficiary Equipment, in the case of described biological limbs contact with described beneficiary equipment, gathers described biological limbs and described beneficiary equipment The described biological information of contact site.

Scheme 24, according to the system described in any one of scheme 13 to 23, described digital certificate information includes at least one of: Electronic signature information, utilize the calculated cipher-text information of symmetric key and dynamic password.

As seen from the above technical solution provided by the invention, the invention provides a kind of method of payment and system, utilize human body Communications match information, sets up the such as radio communication such as WIFI, bluetooth by match information, it is not necessary to user gets involved, and sets up this The process that a little radio communications connect is the shortest, improves Consumer's Experience.And owing to needing to be led to by human body from the match information of equipment Letter transmission, only just can be acquired from the match information of equipment under conditions of meeting human body communication, and then evade existing wireless The potential safety hazard that the match information of equipment is obtained easily.Additionally, connect transmission Transaction Information by these radio communications and treat The information of certification, its transfer rate significantly larger than utilizes human body communication to be transmitted, and, in the certification to information to be certified Complete after by pay, thus carry bank card without user and just can complete to pay, disposably obtain digital certificate information simultaneously And biological information, efficient and convenient, and by the double authentication to digital certificate information and biological information, Ke Yigeng Safe and reliable, and reduce the identified failed probability of the most legal user, improve Consumer's Experience.

Accompanying drawing explanation

In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, the required accompanying drawing used in embodiment being described below It is briefly described, it should be apparent that, the accompanying drawing in describing below is only some embodiments of the present invention, for this area From the point of view of those of ordinary skill, on the premise of not paying creative work, it is also possible to obtain other accompanying drawings according to these accompanying drawings.

The flow chart of the method for payment that Fig. 1 provides for the embodiment of the present invention 1；

The structural representation of the payment system that Fig. 2 provides for the embodiment of the present invention 2.

Detailed description of the invention

Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, Obviously, described embodiment is only a part of embodiment of the present invention rather than whole embodiments.Reality based on the present invention Execute example, the every other embodiment that those of ordinary skill in the art are obtained under not making creative work premise, broadly fall into Protection scope of the present invention.

In describing the invention, it is to be understood that term " " center ", " longitudinally ", " laterally ", " on ", D score, " front ", Orientation or the position relationship of the instruction such as " afterwards ", "left", "right", " vertically ", " level ", " top ", " end ", " interior ", " outward " are base In orientation shown in the drawings or position relationship, it is for only for ease of the description present invention and simplifies description rather than instruction or hint institute The device that refers to or element must have specific orientation, with specific azimuth configuration and operation, therefore it is not intended that to the present invention Restriction.Additionally, term " first ", " second " are only used for describing purpose, and it is not intended that instruction or hint relative importance Or quantity or position.

In describing the invention, it should be noted that unless otherwise clearly defined and limited, term " install ", " being connected ", " connect " and should be interpreted broadly, connect for example, it may be fixing, it is also possible to be to removably connect, or be integrally connected；Permissible It is to be mechanically connected, it is also possible to be electrical connection；Can be to be joined directly together, it is also possible to be indirectly connected to by intermediary, can be two The connection of individual element internal.For the ordinary skill in the art, can understand that above-mentioned term is in the present invention with concrete condition In concrete meaning.

Below in conjunction with accompanying drawing, the embodiment of the present invention is described in further detail.

Embodiment 1

Human body communication is an emerging short-range communication technique of rising in recent years, mainly in order to solve the body territory with human body as carrier The communication issue of net.It utilizes human body as the transmission medium of the signal of telecommunication, it is achieved body surface, internal and human peripheral's (3～5 meters) The information of medical health equipment is mutual.Due to during human body communication signal through human body transmission, thus electromagnetic noise on its affect The least, there is the advantages such as low-power consumption, high security and lower human body infringement.Additionally due to there is not many people communication efficiency rate The problem reduced, it is possible to exempt the line puzzlement of wire communication mode redundancy.Based on this, the present invention proposes a kind of method of payment, Utilize human body communication to transmit match information, set up the such as radio communication such as WIFI, bluetooth by match information, it is not necessary to user gets involved, The process setting up the connection of these radio communications is the shortest, improves Consumer's Experience.And owing to needing to pass through from the match information of equipment Human body communication transmits, and only just can be acquired from the match information of equipment under conditions of meeting human body communication, and then has evaded existing There is the potential safety hazard that the match information of wireless device is obtained easily.Additionally, connect transmission Transaction Information by these radio communications And information to be certified, its transfer rate significantly larger than utilizes human body communication to be transmitted, and, to information to be certified Certification completes after passing through to pay, and has the most only carried out once-through operation, and the most disposable numeral that obtains of beneficiary equipment is recognized Card information and biological information, efficient and convenient, and by the double authentication to digital certificate information and biological information, With safety and reliability, and the identified failed probability of the most legal user can be reduced, improve Consumer's Experience.

Present embodiments provide a kind of method of payment, as it is shown in figure 1, this method of payment comprises the following steps S100～S110:

S100: after biological limbs enter the preset range of beneficiary equipment, beneficiary equipment is set with payer by biological limbs Standby human body communication of setting up connects；

In the present embodiment, biological limbs refer generally to human body, and these biology limbs carry or built-in payer equipment, and beneficiary sets Standby can be that the barcode scanning terminal such as POS, Alipay application, mobile terminal, PDA, desktop computer, notebook etc. can be with backstages The payment terminal of networking, payer equipment can be that implantation human body is interior, is worn on human body or is positioned in the medicated clothing of dress Device, implanting the device in human body can be such as the blood flow transducer in implantation human body, pulse transducer, body temperature trans Deng sensor, being worn on the device with human body can be such as that bracelet, watch, necklace, ring, belt etc. may be worn on use Electronic equipment with family.If being worn on the device with human body, although it the most directly contacts with human body surface, but with The distance of human body surface (such as skin) not can exceed that predeterminable range, the most several millimeters, in order to pass through human body in this predeterminable range Communicate, it is ensured that communication quality.Owing to body area network (Body Area Network is called for short BAN) is exactly centered by human body, By the network element relevant with human body (include personal terminal, be distributed on the person, on medicated clothing, human peripheral's certain distance model Enclose such as the sensor in 3～5 meters, within the even person, networking equipment) etc. the communication network of composition, therefore, only and people The network element that body is relevant enters in this preset range of beneficiary equipment, and the human body communication that could set up body area network connects.

As the optional embodiment of the one in the present embodiment, beneficiary equipment is communicated with the foundation of payer equipment by biological limbs Connection can pass through wired mode and wireless mode, specifically, at least can be realized by one of following two mode:

Wired mode:

Beneficiary equipment and payer equipment are equipped with electrode, beneficiary equipment with implant human body in or with being worn on human body Payer equipment biological limbs (human body) contact (such as, finger is contacted POS by the user wearing watch) time, Human body is formed the path in human body, the communication connection of the most so-called wired mode as conductor, the electrode connection of both sides.At this In mode, beneficiary equipment needs and the human contact wearing payer equipment.

Wireless mode:

In wireless mode, it is right that beneficiary equipment and payer equipment (such as POS and watch) all can detect whether to receive The signal of side, if the other side enters in the range of human body communication permission, just can detect the signal that the other side sends, set up with the other side Communication connection.In this approach, beneficiary equipment need not and wear the human contact of payer equipment.

Aforesaid way utilizes human body as the transmission medium of the signal of telecommunication, it is achieved body surface, internal and the setting of human peripheral (3～5 meters) Standby information is mutual.Owing to during human body communication, information is through human body transmission, thus electromagnetic noise is the least on its impact, has The advantages such as low-power consumption, high security and lower human body infringement.Additionally due to there is not the problem that many people communication efficiency rate reduces, Also the line puzzlement of wire communication mode redundancy can be exempted.

S102: beneficiary equipment is connected transmission match information with payer equipment by human body communication, and utilizes match information to set up First radio communication connects；

In step s 102, as the optional embodiment of the one in the present embodiment, beneficiary equipment can be set to broadcast Joining information, payer equipment is set to reception state, and payer equipment is receiving beneficiary equipment by human body communication connection biography After defeated match information, just can initiate to set up the flow process that the first radio communication connects, in this optional embodiment, step S102 May include that

S102a: beneficiary equipment is connected the match information transmission of beneficiary equipment to payer equipment by human body communication；

Compared in prior art by the way of broadcast or scanning Quick Response Code etc. obtain match information, in the present embodiment, utilize Human body communication connects transmission match information, due to the particularity of human body communication, only carries or be built-in with the human body of payer equipment When meeting the condition in the default communication range contacting or entering beneficiary equipment with beneficiary equipment, payer equipment could receive To the match information of beneficiary device broadcasts, and then the potential safety hazard that the match information having evaded existing wireless device is obtained easily. It is additionally, since human body communication and there is the advantages such as low-power consumption, high security and lower human body infringement, thus improve coupling letter The safety that breath obtains.

In the present embodiment, the match information that beneficiary equipment sends at least includes: the MAC Address of beneficiary equipment, Yi Jishou Second authentication information of money method, apparatus, alternatively, the second authentication information of beneficiary equipment at least may include that The information to be verified of beneficiary equipment；Wherein, by the MAC Address of beneficiary equipment, payer equipment may determine that initiation First radio communication connect object, in order to beneficiary equipment initiate set up first radio communication connect connection request, first Radio communication connection includes but not limited to one below: bluetooth connects, WIFI connects, magnetic flux connects or RFID connects. Additionally, information to be verified can include but not limited to: for logging in the login key of WIFI, Bluetooth pairing information, magnetic flux are recognized Card key or RFID label tag, payer equipment is by the information to be verified of beneficiary equipment or treats check information and calculates To check value send to beneficiary equipment so that beneficiary equipment completes certification, thus set up the first radio communication and connect.

After S102b: payer equipment receives the match information of beneficiary device transmission by human body communication, according to MAC Address initiates to set up the connection request that the first radio communication connects to beneficiary equipment, carries information to be certified in connection request, Information to be certified includes: above-mentioned second authentication information or to the calculated verification of information to be verified in above-mentioned second authentication information Value；

In the present embodiment, in the case of information to be certified includes information to be verified, information to be verified includes: be used for logging in The login key of WIFI, thus after beneficiary device authentication passes through, set up WIFI and connect；

In the case of information to be certified includes treating the calculated check value of check information, information to be verified includes: bluetooth is joined To information, magnetic flux information to be verified or RFID label tag, correspondingly, after beneficiary device authentication passes through, bluetooth connection, Magnetic flux connects or RFID connects.

S102c: after beneficiary equipment receives connection request, treats authentication information and is authenticated, after certification is passed through, with payment Method, apparatus is set up the first radio communication and is connected.

In the present embodiment, beneficiary equipment is treated the certification of authentication information and is included treating check information and treating check information calculating The certification of the check value obtained.For the former, if information to be certified is (the most to be verified for logging in the login key of WIFI Information), then beneficiary equipment is treated authentication information and is authenticated including: beneficiary equipment judge for the login key of WIFI be No correctly, if correctly, then allow payer equipment to set up WIFI with payer equipment and be connected；For the latter, with bluetooth even As a example by connecing, if information to be certified is check value calculated to Bluetooth pairing information, then beneficiary equipment treats authentication information It is authenticated including: local Bluetooth pairing information is used same algorithm to be calculated value to be verified by beneficiary equipment, compares The value to be verified that the check value that the information to be certified that payer equipment sends includes is from a locally generated, if unanimously, then allows to pay Method, apparatus is set up bluetooth with payer equipment and is connected；Similarly, for the check value that magnetic flux certification cipher key calculation is obtained and right The certification of the calculated check value of RFID label tag, is also to adopt in the same way, and the value to be verified i.e. calculating this locality is compared, Here repeat no more.

Thus, after beneficiary equipment is by treating the certification of authentication information, just allows payer equipment and oneself set up above-mentioned first Radio communication connects.

Additionally, due to the particularity of human body communication, the human body carrying or being built-in with payer equipment needs to contact with payer equipment Or enter in the default communication range of payer equipment, so, only initiate the payer equipment of connection request to beneficiary equipment A few (wireless connections) in one (wired connection, the situation of contact) or default communication range, beneficiary equipment can Match information is sent, to build with the payer equipment of a few users in some user or default communication range definitely Vertical first radio communication connects.In the present embodiment, ask to set up, with beneficiary equipment, the payer equipment being connected to distinguish, As the optional embodiment of one, the second authentication information also includes: the random identification that beneficiary equipment generates.This random identification Can be such as random number, for each payer equipment, the mark that beneficiary equipment meeting stochastic generation is different, in order to Wei Yibiao Know a payer equipment, and associate storage, thus, at the same time with information to be verified and the MAC Address of beneficiary equipment Having multiple payer equipment when beneficiary equipment initiates connection request, beneficiary equipment can determine payment according to this random identification The identity of method, apparatus, additionally, the information to be verified that beneficiary equipment can also utilize this random identification to inquire association carries out step Certification in S102c, and, as the optional embodiment of one, in step S102c, beneficiary equipment can also be by Receive, from payer equipment, the random identification that the random identification that information to be certified includes is from a locally generated to compare, it is also possible to as one Planting and treat the authentication mode that authentication information is authenticated, if unanimously, then certification is passed through.

Need display to the user that connection list and need user to input even compared to the wireless connections such as bluetooth, WIFI in prior art Connecing the mode of setting up of key, in the present embodiment, payer equipment connects the coupling letter getting beneficiary equipment by human body communication Breath, it is no longer necessary to the participation of user, user is without inputting any information, and beneficiary equipment just can be done directly access authentication, Directly setting up above-mentioned first radio communication to connect, the process setting up the first radio communication connection is the shortest, improves Consumer's Experience； Additionally, due to the particularity of human body communication, only carry or be built-in with the human body of payer equipment and meet and contact with beneficiary equipment Or enter beneficiary equipment default communication range in condition time, payer equipment just can receive beneficiary device broadcasts Join information, and then the potential safety hazard that the match information having evaded existing wireless device is obtained easily.It is additionally, since human body communication There is the advantages such as low-power consumption, high security and lower human body infringement, thus improve the safety that match information obtains.

In step s 102, as the optional embodiment of the another kind in the present embodiment, payer equipment can be set to broadcast Match information, beneficiary equipment is set to reception state, and beneficiary equipment is connected by human body communication receiving payer equipment After the match information of transmission, just can initiate to set up the flow process that the first radio communication connects, specifically, step S102 includes:

S102a ': payer equipment is connected the match information transmission of payer equipment to beneficiary equipment by human body communication；

Wherein, the match information of payer equipment at least includes: the MAC Address of payer equipment and the body of payer equipment Part mark；Wherein, may determine that what initiation the first radio communication connected by the MAC Address payer equipment of payer equipment Object, in order to initiate the first radio communication to payer equipment and connect, the first radio communication connects and includes but not limited to one below: Bluetooth connects, WIFI connects, magnetic flux connects or RFID connects.Additionally, it is permissible by the identity of payer equipment Make beneficiary equipment be capable of identify that the identity of payer equipment, thus determine whether that payer equipment sets up first with oneself Radio communication connects.

Compared in prior art by the way of broadcast or scanning Quick Response Code etc. obtain match information, in the present embodiment, utilize Human body communication connects transmission match information, due to the particularity of human body communication, only carries or be built-in with the human body of payer equipment When meeting the condition in the default communication range contacting or entering beneficiary equipment with beneficiary equipment, beneficiary equipment could receive To the match information of payer equipment, and then the potential safety hazard that the match information having evaded existing wireless device is obtained easily.And And, there is due to human body communication the advantages such as low-power consumption, high security and lower human body infringement, thus improve match information The safety obtained.

After S102b ': beneficiary equipment receives match information by human body communication, connected according to MAC by human body communication Address initiates to set up the connection request that the first radio communication connects to payer equipment；

In the specific implementation, beneficiary equipment is after completing delivery operation, and payer equipment is it is also possible to be in beneficiary equipment Presetting in communication range, beneficiary equipment meeting one directly receives the match information of the payer device broadcasts being complete payment transaction, Also it is ready for the payer equipment of first payment transaction in receiving the first default communication range entering beneficiary equipment simultaneously The match information of broadcast, initiates to connect to ensure beneficiary equipment will not repeat to the payer equipment being complete payment transaction Request, as the optional embodiment of one, in this step S102b ', beneficiary equipment is connected according to MAC by human body communication Address initiates to set up the connection request that the first radio communication connects to payer equipment, specifically includes: beneficiary equipment will receive The identity match information locally stored with beneficiary equipment in identity mate, if mating unsuccessful, then Connected by human body communication and initiate to set up connection request according to MAC Address to payer equipment, and store the coupling letter received Breath.

In this optional embodiment, at beneficiary equipment after payer equipment initiates connection request, payer will be stored and set Standby match information, this match information at least includes: the identity of payer equipment, and this identity can include but not limit In: the device identification of payer equipment, user name etc. can uniquely identify the mark of payer equipment identities.Alternatively, gathering Method, apparatus can set up match information list in this locality, had requested that the MAC of the payer equipment of payment transaction for storage Address and identity, by entering the identity received from payer equipment with the identity in identity identification list Row coupling, i.e. inquire-receive to identity whether be present in this identity identification list, if it is present the match is successful, The most unsuccessful, if the match is successful, although then explanation payer equipment is in the default communication range of beneficiary equipment, but It is complete payment transaction, then beneficiary equipment will not initiate connection request to this payer equipment again；If mating unsuccessful, Then explanation payer equipment is ready for first payment transaction in entering the default communication range of beneficiary equipment for the first time, then gathering Method, apparatus can initiate connection request to this payer equipment carrying out first payment transaction, and thus, beneficiary equipment may determine that and props up Pay method, apparatus be complete payment or carry out payment transaction for the first time, thus ensure that beneficiary equipment will not repeat to being complete The payer equipment paying transaction initiates connection request.

In the specific implementation, after beneficiary equipment execution payment transaction terminates, the method that the present embodiment provides also includes: gathering Method, apparatus disconnects and being connected with the first radio communication of payer equipment, thus the payer equipment for waiting in line below to pay provides Set up the chance that the first radio communication connects.

Additionally, when reality is implemented, there is also and be complete the payer equipment of payment transaction and really need to initiate again to pay friendship Easy situation, in order to avoid beneficiary equipment refusal initiates connection request to this payer equipment, beneficiary equipment can be certain Under the conditions of delete the match information of storage.In the present embodiment in a kind of optional embodiment, disconnect at beneficiary equipment and prop up After paying the first radio communication connection of method, apparatus, the method that the present embodiment provides also includes: judge whether above-mentioned biological limbs do not have Have the preset range being in beneficiary equipment, and/or, it is judged that the closing the transaction of current time distance and above-mentioned payer equipment time Whether length reaches predetermined threshold value, if it is, delete the match information that this payer equipment is corresponding.Wherein, it is judged that carry or interior Put the biological limbs of payer equipment whether to be not on the preset range of beneficiary equipment and refer to if beneficiary equipment cannot connect again Receive the signal that this payer equipment is sent by biological limbs, then explanation carry or this payer equipment built-in biological limbs Preset range through communicating beyond beneficiary equipment；Additionally, the present embodiment sets the payer being complete payment transaction Equipment can set up the time interval (i.e. predetermined threshold value) that the first radio communication is connected after closing the trade again with beneficiary equipment, Such as payer equipment again can be set up the first radio communication with beneficiary equipment after closing the transaction 10s and be connected.The present embodiment Can be by the distance of payer equipment and the dual judgement of time that are complete payment be deleted match information.Once should The match information of payer equipment is deleted, even if this payer equipment is in the default communication range of beneficiary equipment, and beneficiary Equipment also can initiate connection request to this payer equipment again, thus the payer equipment solving to be complete payment transaction needs really Initiate payment transaction again, but the problem refused by beneficiary equipment.

After S102c ': payer equipment receives connection request by human body communication, to set up first wireless with beneficiary equipment Communication connection.

Thus, payer equipment can utilize the first radio communication to be connected with beneficiary equipment to carry out data transmission, compared to directly Transmitting data with human body communication, (such as WIFI connection, bluetooth connects, magnetic flux connects, RFID to utilize the first radio communication to connect Connecting) transmission data can be greatly improved transfer rate, and the payment process of user faster, improves Consumer's Experience, pays behaviour That makees is in hgher efficiency.

First authentication information is sent to beneficiary equipment by the first radio communication connection by S104: payer equipment；

In the present embodiment, the first authentication information includes: digital certificate information；Digital certificate information includes at least one of: electricity Sub-signing messages, cipher-text information and dynamic password.Wherein, electronic signature information is that the private key of payer equipment utilization self is treated The signed data that signed data signature obtains, data to be signed may include that single authentication data and certification identification information etc., When this electronic signature information is authenticated, obtain the PKI of this payer equipment, utilize this PKI that electronic signature information is entered Row sign test, if sign test is passed through, then certification is passed through, and this is asymmetric authentication mode；Cipher-text information be payer equipment utilization with The symmetric key consulted with beneficiary equipment treats the MAC value that computing with encrypted data obtains, and is being authenticated this cipher-text information Time, treat computing with encrypted data also with this symmetric key and be verified MAC value, compare cipher-text information and checking MAC value, If consistent, then certification is passed through, and this is symmetrical authentication mode；Dynamic password is that E-token dynamic password card (OTP) is based on seed key The ciphertext generated, when being authenticated this dynamic password, is calculated validation value also with this seed key, the most dynamically Password and validation value, if unanimously, then certification is passed through, and this is token authentication mode.In the present embodiment, can be by above-mentioned Any one in 3 kinds of modes realizes the certification to digital certificate information, with the legitimacy of method, apparatus of guaranteeing payment.

In a kind of optional embodiment of the present embodiment, above-mentioned first authentication information can also include: certification identification information；Should Certification identification information for example, the device identification of payer equipment, ID etc. can uniquely identify the information of user identity, Payer user recognizing for certification digital certificate information and biological information can be uniquely associated to by certification identification information The card factor, in order to utilize this certification factor pair digital certificate information and biological information to carry out double authentication, thus, double Re-authentication is assured that after passing through that biological information and digital certificate information both are from same user, it is ensured that the conjunction of user Method.

In the specific implementation, in the case of small amount payment, as long as no exceeding the upper limit that payer equipment is arranged, payer sets Standby just can connection by the first radio communication by the first authentication information is sent to beneficiary equipment, is recognizing the first authentication information Card, by rear, just can complete payment transaction.

In the specific implementation, in the case of wholesale pays, in order to ensure transaction security, payer equipment is needed to prompt the user with Transaction Information, after by the confirmation of user, just allows follow-up delivery operation, specifically, before step S104, and this reality The method that executing example provides also includes:

S103a: beneficiary equipment is connected to payer equipment transmission Transaction Information by the first radio communication；

In the present embodiment, Transaction Information may include that dealing money, beneficiary accounts information and payer account information, When there is block trade, Transaction Information must be sent to payer equipment by beneficiary equipment, in order to prompting user, user After confirmation, follow-up certification and payment flow could be performed.The present embodiment is by such as WIFI, bluetooth, magnetic flux, RFID etc. First radio communication connects transmission Transaction Information, and transfer rate faster, thus improves payment speed, improves Consumer's Experience.

Additionally, when reality is implemented, payer equipment can be equipment, such as a watch, it is also possible to be two equipment, example Such as watch and electronic signature equipment (such as U-shield, agricultural bank Key treasured or the smart card with signature function).

S103b: payer equipment receives Transaction Information, and payer equipment extracts key message from Transaction Information；

In the present embodiment, payer equipment can extract key message from Transaction Information, such as dealing money, or, beneficiary Title, the title etc. of payer, and without being pointed out by the full content of Transaction Information, specifically, display screen can be passed through The modes such as display or speech play are pointed out, and especially, can meet the mini-plant with small display screen, such as watch Display screen the least, it is impossible to display Transaction Information full content, but as long as display key content, just can play prompting user Effect.

S103c: payer device prompts key message, and wait that user confirms, the confirmation instruction of user is received at payer equipment After, perform step S104；

In the present embodiment, increase the step that user confirms, to improve the safety of transaction, only confirm user, press really After recognizing key, follow-up operation could be performed.Especially, if payer equipment is two equipment, then when pointing out to user, Can point out on any one equipment wherein, certainly, preferably point out in electronic signature equipment.

Thus, ensure that, by the confirmation of user, the transaction security that wholesale pays.

S106: beneficiary equipment connects the first authentication information receiving payer device transmission by the first radio communication；At biology Limbs enter the preset range of beneficiary equipment duration, beneficiary equipment gathers the biological information of biological limbs；

Wherein, biological information includes at least one of: finger print information, iris information, face information and venous information. In the present embodiment, beneficiary equipment acquires the biological special of human body while receiving the first authentication information that payer equipment sends Reference ceases, such as, within the of short duration time touching parts that user's finger touches POS (such as 3 seconds), and POS and use The watch that family is worn by human body set up communication connection, and by this human body communication connect transmission Bluetooth pairing information, POS with The watch that user wears is set up bluetooth and is connected, and connects transmission the first authentication information by bluetooth, and the touch parts of POS are adopted simultaneously Collection finger print information, the most such as, at the watch of user, (this payment terminal has camera function, Ke Yiyong with Alipay payment terminal In gathering face information) set up the period that human body communication connects, gather face information by payment terminal, thus, beneficiary sets For just the most just can be obtained the first authentication information and biological information by user operation simultaneously, convenient to operation.

In the present embodiment, as long as enter the duration interior collection biological characteristic letter of the preset range of beneficiary equipment at biological limbs Ceasing, biological information can be before communication connection be set up, it is also possible to when communication connection is set up or gather afterwards.

In this step, especially, needing human body limb to contact just to collect the feelings of biological information with beneficiary equipment Condition, as the optional embodiment of one, biological information includes: finger print information and/or venous information；Gather biological limbs Biological information include: in the case of biological limbs contacts with beneficiary equipment, gather biology limbs and beneficiary equipment The biological information of contact site.

Adding the mode of PIN code compared to inputting fingerprint in POS in prior art, POS first points out user to input finger print information, Gathering fingerprint, reresent user and input PIN code, user needs with POS by just completing fingerprint and PIN code alternately twice Input, cumbersome, and in the present invention for a user, as long as an action just can disposably complete the first certification The input of information and the collection of biological information, convenient and swift.

S108: beneficiary equipment obtains the authentication result being authenticated digital certificate information and biological information；

In the present embodiment, the authentication result being authenticated digital certificate information and biological information is according to certification mark letter Breath obtains the certification factor and biological characteristic validation information, and utilizes certification factor pair digital certificate information be authenticated and utilize life The authentication result that biological information is authenticated by thing signature verification information, the certification factor mainly includes testing digital certificate information The checking information of card, this certification factor and biological characteristic validation information and certification identification information unique association, therefore according to certification mark Knowledge information can be with the certification factor corresponding to unique queries to this user and biological characteristic validation information, in order to digital certificate information with And after the double authentication of biological information is passed through, it is ensured that the legitimacy of user.

In this step, the certification of certification factor pair digital certificate information is utilized at least to include one of following several ways:

Mode one: asymmetric authentication mode.In this approach, digital certificate information includes: electronic signature information；The certification factor Including the PKI that electronic signature information is carried out sign test；Or,

Mode two: symmetrical authentication mode.In this approach, digital certificate information includes: utilize symmetric key calculated close Literary composition information；The certification factor includes symmetric key；Or,

Mode three: token authentication mode.In this approach, digital certificate information includes: dynamic password；It is right that the certification factor includes Dynamic password carries out the seed key verified.

Describing three kinds of authentication modes of digital certificate information in step S104, here is omitted.

Above-mentioned utilize certification factor pair digital certificate information and utilize biological characteristic validation information that biological information is recognized Card, including: utilize certification factor pair digital certificate information to be authenticated, and judge that biological characteristic validation information is believed with biological characteristic The matching rate of breath whether more than the first preset value, to digital certificate information certification by and biological characteristic validation information special with biology When the matching rate of reference breath is more than the first preset value, confirm the certification of digital certificate information and biological information is passed through.

Wherein, the first preset value is less than the second preset value, and the second preset value is same biology for two biological informations of instruction The matching rate of characteristic information；When reality is implemented, the second preset value can be that two biological informations mate want completely in theory The similarity reached, such as 99%, and the first preset value can be less than the second preset value, thus by reducing matching rate, drop The identified failed probability of user the most legal in low biological information authentication techniques.

The identified failed probability of the most legal user and illegal is there is in the biological information authentication techniques of prior art User is identified successful probability, and as a example by fingerprint recognition, many times, the fingerprint of user is real, but certification device Identifying mistake, missing the fingerprint recognition of this user is false fingerprint, thus can not pass through certification, it is impossible to realize payment transaction；And have When, the fingerprint of disabled user is obviously false, but the also certification of certification device is passed through, and causes economically to validated user Loss, these situations occur probability be all the highest.And the present embodiment is by digital certificate information and biological information Double authentication can evade the situation of " illegal user is identified successfully ", and the most legal user can be reduced and known The situation that failure does not occurs.First, by above-mentioned 3 kinds of certifications to digital certificate information, it may be determined that this user is legal use Family, if disabled user then cannot be by this digital authenticating, then the operation to false finger print identifying would not occurs, thus advise Keep away the situation of " illegal user is identified successfully "；Secondly, in the case of ensureing that user is validated user, certification device The similarity of two biometric information matches can be reduced, to reduce the identified failed probability of the most legal user, example As, two biological informations to mate completely in theory, and its similarity at least to reach 99% (the second preset value), and if Certification device finds when its similarity is only 90%, will be identified as not mating, and certification is not passed through, and occurs knowing genuine fingerprint It is not the situation of false fingerprint, in the present invention, owing to digital authenticating has ensured that user is validated user, so, can be by complete The similarity of full coupling is reduced to 80% (the first preset value), say, that as long as similarity reaches 80% (the first preset value) It is considered as coupling, therefore, when the similarity of two biological informations is 90%, it is also possible to by certification, thus, the most not There will be the identified failed situation of the most legal user, thus reduce in biological information authentication techniques the most legal The identified failed probability of user.

S110: beneficiary equipment is execution payment transaction in the case of certification is passed through in authentication result.

The present embodiment provide method of payment, utilize human body communication transmit match information, by match information set up such as WIFI, The radio communications such as bluetooth, it is not necessary to user gets involved, the process setting up the connection of these radio communications is the shortest, improves Consumer's Experience. And owing to needing to be transmitted by human body communication from the match information of equipment, only under conditions of meeting human body communication from equipment Join information just can be acquired, and then the potential safety hazard that the match information having evaded existing wireless device is obtained easily.Additionally, it is logical Crossing these radio communications and connect transmission Transaction Information and information to be certified, its transfer rate significantly larger than utilizes human body communication to enter Row transmission, and, complete to pay after the certification of information to be certified is passed through, thus it is the most permissible to carry bank card without user Complete to pay, the most disposable digital certificate information and the biological information of obtaining, efficient and convenient, and by digital authenticating Information and the double authentication of biological information, with safety and reliability, and can reduce the most legal user and be identified unsuccessfully Probability, improve Consumer's Experience.

Embodiment 2

Present embodiments provide a kind of payment system, as in figure 2 it is shown, this payment system includes: beneficiary equipment 10 and payer Equipment 20, wherein:

Beneficiary equipment 10 and payer equipment 20 are after the preset range entering beneficiary equipment 10 at biological limbs, logical Cross biological limbs and set up human body communication connection；Connect transmission match information by human body communication, and utilize match information to set up first Radio communication connects；Payer equipment 20, is additionally operable to be connected the first authentication information by the first radio communication be sent to beneficiary Equipment 10, wherein, the first authentication information includes: digital certificate information；Beneficiary equipment 10, is additionally operable to by the first channel radio Letter connects the first authentication information receiving payer equipment 20 transmission；The preset range of beneficiary equipment 10 is entered at biological limbs Duration, gather the biological information of biological limbs；Obtain and digital certificate information and biological information are recognized The authentication result of card；It is execution payment transaction in the case of certification is passed through in authentication result.

The payment system provided by the present embodiment, is utilized human body communication to transmit match information, is set up such as by match information The radio communication such as WIFI, bluetooth, it is not necessary to user gets involved, the process setting up the connection of these radio communications is the shortest, improves user Experience.And owing to needing to be transmitted by human body communication from the match information of equipment, only from setting under conditions of meeting human body communication Standby match information just can be acquired, and then the potential safety hazard that the match information having evaded existing wireless device is obtained easily.This Outward, connecting transmission Transaction Information and information to be certified by these radio communications, its transfer rate significantly larger than utilizes human body Communication is transmitted, and, complete to pay after authentification of message to be certified is passed through, the most only carried out once Operation, beneficiary equipment just can the most disposably obtain digital certificate information and biological information, efficient and convenient, Er Qietong Cross the double authentication to digital certificate information and biological information, with safety and reliability, and the most legal use can be reduced The identified failed probability in family, improves Consumer's Experience.

In the present embodiment, biological limbs refer generally to human body, and these biology limbs carry or built-in payer equipment, and beneficiary sets Standby 10 can be that the barcode scanning terminal such as POS, Alipay application, mobile terminal, PDA, desktop computer, notebook etc. can be with The payment terminal of backstage networking, payer equipment 20 can be that implantation human body is interior, is worn on human body or is positioned over dress Device in medicated clothing, the device in implantation human body can be such as the blood flow transducer in implantation human body, pulse transducer, body temperature The sensors such as sensor, being worn on the device with human body can be such as that bracelet, watch, necklace, ring, belt etc. can be worn It is worn over the electronic equipment with user.If being worn on the device with human body, although it the most directly contacts with human body surface, But not can exceed that predeterminable range with the distance of human body surface (such as skin), the most several millimeters, in order to pass through in this predeterminable range Human body communicates, it is ensured that communication quality.Owing to body area network (Body Area Network is called for short BAN) is exactly to be with human body Center, by the network element relevant with human body (include personal terminal, be distributed on the person, on medicated clothing, human peripheral certain Distance range as in 3～5 meters, even the sensor person within, networking equipment) etc. the communication network of composition, therefore, There is the network element relevant with human body to enter in this preset range of beneficiary equipment 10, the human body communication of body area network could be set up Connect.

As the optional embodiment of the one in the present embodiment, beneficiary equipment 10 is built with payer equipment 20 by biological limbs Vertical communication connection can pass through wired mode and wireless mode, specifically, at least can be realized by one of following two mode:

Wired mode:

Beneficiary equipment 10 and payer equipment 20 are equipped with electrode, in beneficiary equipment 10 with implantation human body or be worn on (finger is contacted by the user such as, wearing watch in biological limbs (human body) contact of the payer equipment 20 with human body POS) time, human body is formed the path in human body as conductor, the electrode connection of both sides, leading to of the most so-called wired mode Letter connects.In this approach, beneficiary equipment 10 needs and the human contact wearing payer equipment 20.

Wireless mode:

In wireless mode, beneficiary equipment 10 and payer equipment 20 (such as POS and watch) all can detect whether to connect Receive the signal of the other side, if the other side enters in the range of human body communication permission, the signal that the other side sends just can be detected, with right Fang Jianli communicates to connect.In this approach, beneficiary equipment 10 need not and wear the human contact of payer equipment 20.

As the optional embodiment of the one in the present embodiment, can be set to beneficiary equipment 10 broadcast match information, pay Method, apparatus 20 is set to reception state, and payer equipment 20 is receiving beneficiary equipment 10 by human body communication connection transmission After match information, just can initiate to set up the flow process that the first radio communication connects, in this optional embodiment, beneficiary equipment 10 with payer equipment 20, for being connected the match information of transmission beneficiary equipment by human body communication, and utilize beneficiary equipment Match information set up first radio communication connect, including:

Beneficiary equipment 10, is sent the match information of beneficiary equipment to payer equipment 20 for being connected by human body communication； Payer equipment 20, after the match information being received beneficiary equipment 10 transmission by human body communication, according to MAC Address initiates to set up the connection request that the first radio communication connects to beneficiary equipment 10, carries letter to be certified in connection request Breath, information to be certified includes: the second authentication information or to the calculated check value of information to be verified in the second authentication information； Beneficiary equipment 10, after being additionally operable to receive connection request, treats authentication information and is authenticated, after certification is passed through, with payment Method, apparatus 20 is set up the first radio communication and is connected.

In this optional embodiment, the match information that beneficiary equipment sends at least includes: the MAC ground of beneficiary equipment 10 Location and above-mentioned second authentication information of beneficiary equipment 10, alternatively, described the of beneficiary equipment 10 Two authentication informations at least may include that the information to be verified of beneficiary equipment 10；Wherein, by the MAC of beneficiary equipment 10 Address, payer equipment 20 may determine that initiates the object that the first radio communication connects, in order to initiate to build to beneficiary equipment 10 The connection request that vertical first radio communication connects, the first radio communication connection includes but not limited to one below: bluetooth connects, WIFI Connect, magnetic flux connects or RFID connects.Additionally, information to be verified can include but not limited to: for logging in WIFI's Logging in key, Bluetooth pairing information, magnetic flux certification key or RFID label tag, payer equipment 20 is by beneficiary equipment 10 Information to be verified or treat the calculated check value of check information and send to beneficiary equipment 10 so that beneficiary equipment 10 Complete certification, thus set up the first radio communication and connect.

Compared in prior art by the way of broadcast or scanning Quick Response Code etc. obtain match information, in the present embodiment, utilize Human body communication connects transmission match information, due to the particularity of human body communication, only carries or be built-in with the people of payer equipment 20 When body meets the condition in the default communication range contacting or entering beneficiary equipment 10 with beneficiary equipment 10, payer equipment 20 match information that just can receive beneficiary equipment 10 broadcast, and then evaded the match information of existing wireless device by easily The potential safety hazard obtained.It is additionally, since human body communication and there is the advantages such as low-power consumption, high security and lower human body infringement, Thus improve the safety that match information obtains.

In this optional embodiment, in the case of information to be certified includes information to be verified, information to be verified includes: be used for Log in the login key of WIFI, thus after beneficiary equipment 10 certification is passed through, set up WIFI and connect；In information to be certified In the case for the treatment of the calculated check value of check information, information to be verified includes: Bluetooth pairing information, magnetic flux treat school Test information or RFID label tag, correspondingly, after beneficiary equipment 10 certification is passed through, bluetooth connect, magnetic flux connect or Person RFID connects.

In this optional embodiment, beneficiary equipment 10 is treated the certification of authentication information and is included treating check information or to be verified The certification of the calculated check value of information.For the former, if information to be certified be the login key for logging in WIFI (i.e. Information to be verified), then beneficiary equipment 10 is treated authentication information and is authenticated including: beneficiary equipment 10 judges to be used for logging in The login key of WIFI is the most correct, if correctly, then allows payer equipment 20 and payer equipment 20 to set up WIFI even Connect；For the latter, as a example by bluetooth connects, if information to be certified is check value calculated to Bluetooth pairing information, then Beneficiary equipment 10 is treated authentication information and is authenticated including: local Bluetooth pairing information is used same by beneficiary equipment 10 Algorithm be calculated value to be verified, compare what the check value that includes of information to be certified that payer equipment 20 sends was from a locally generated Value to be verified, if unanimously, then allows payer equipment 20 to set up bluetooth with payer equipment 20 and is connected；Similarly, for The check value obtaining magnetic flux certification cipher key calculation and the certification of check value calculated to RFID label tag, be also that employing is same The mode of sample, the value to be verified i.e. calculating this locality is compared, and repeats no more here.

Thus, after beneficiary equipment 10 is by treating the certification of authentication information, payer equipment 20 and oneself is just allowed to set up State the first radio communication to connect.

Additionally, due to the particularity of human body communication, the human body carrying or being built-in with payer equipment 20 needs and payer equipment In the default communication range of 20 contacts or entrance payer equipment 20, so, initiate propping up of connection request to beneficiary equipment 10 Pay a few (wireless connections) in method, apparatus 20 only one of which (wired connection, the situation of contact) or default communication range, Beneficiary equipment 10 may determine that the payer equipment 20 of a few users in some user or default communication range Send match information, to set up the first radio communication connection.In the present embodiment, ask to build with beneficiary equipment 10 to distinguish The vertical payer equipment 20 connected, as the optional embodiment of one, above-mentioned second authentication information also includes: beneficiary equipment 10 random identification generated.This random identification can be such as random number, for each payer equipment 20, beneficiary equipment 10 can the different mark of stochastic generation, in order to one payer equipment 20 of unique mark, and to be verified with beneficiary equipment 10 Information and MAC Address association storage, thus, have multiple payer equipment 20 to initiate even to beneficiary equipment 10 at the same time When connecing request, beneficiary equipment 10 can determine the identity of payer equipment 20 according to this random identification, additionally, beneficiary sets Standby 10 information to be verified that this random identification can also be utilized to inquire association carry out treating the certification of authentication information, and, as A kind of optional embodiment, beneficiary equipment 10, it is additionally operable to receive what information to be certified included from payer equipment 20 The random identification that random identification is from a locally generated compares, it is also possible to treat, as a kind of, the authentication mode that authentication information is authenticated, If consistent, then certification is passed through.

Need display to the user that connection list and need user to input even compared to the wireless connections such as bluetooth, WIFI in prior art Connecing the mode of setting up of key, in the present embodiment, payer equipment 20 gets beneficiary equipment 10 by human body communication connection Match information, it is no longer necessary to the participation of user, user is without inputting any information, and beneficiary equipment 10 just can be done directly and connect Entering certification, directly set up above-mentioned first radio communication and connect, the process setting up the first radio communication connection is the shortest, improves use Family is experienced；Additionally, due to the particularity of human body communication, the human body only carrying or being built-in with payer equipment 20 meets and gathering When method, apparatus 10 contacts or enter the condition in the default communication range of beneficiary equipment 10, payer equipment 20 just can receive The match information of beneficiary equipment 10 broadcast, and then the safety that the match information having evaded existing wireless device is obtained easily is hidden Suffer from.It is additionally, since human body communication and there is the advantages such as low-power consumption, high security and lower human body infringement, thus improve Join the safety of acquisition of information.

As the optional embodiment of the another kind in the present embodiment, can be set to payer equipment 20 broadcast match information, receive Money method, apparatus 10 is set to reception state, and beneficiary equipment 10 is receiving payer equipment 20 by human body communication connection transmission Match information after, just can initiate to set up the flow process that the first radio communication connects, specifically, beneficiary equipment 10 and payer Equipment 20, for connecting transmission match information by human body communication, and utilizes match information to set up the first radio communication connection, bag Include: payer equipment 20, for being connected by human body communication, the match information of payer equipment is sent to beneficiary equipment 10； Beneficiary equipment 10, after the match information being received payer equipment by human body communication, is connected by human body communication Initiate to set up the connection request that the first radio communication connects to payer equipment 20 according to MAC Address；Payer equipment 20, After being additionally operable to receive connection request by human body communication, set up the first radio communication with beneficiary equipment 10 and be connected.Thus, Payer equipment 20 can utilize the first radio communication to be connected with beneficiary equipment 10 to carry out data transmission, compared to direct employment Body communication transmission data, (such as WIFI connection, bluetooth connects, magnetic flux connects, RFID connects to utilize the first radio communication to connect Deng) transmission data can be greatly improved transfer rate, the payment process of user faster, improves Consumer's Experience, delivery operation In hgher efficiency.

In this optional embodiment, the match information of payer equipment at least includes: the MAC Address of payer equipment 20 with And the identity of payer equipment 20；Wherein, can be true by the MAC Address payer equipment 20 of payer equipment 20 Surely the object that the first radio communication connects is initiated, in order to initiate the first radio communication to payer equipment 20 and connect, the first channel radio Letter connection includes but not limited to one below: bluetooth connects, WIFI connects, magnetic flux connects or RFID connects.Additionally, By the identity of payer equipment 20 so that beneficiary equipment 10 is capable of identify that the identity of payer equipment 20, thus Determine whether that payer equipment 20 is set up the first radio communication and is connected with oneself.

Compared in prior art by the way of broadcast or scanning Quick Response Code etc. obtain match information, in the present embodiment, utilize Human body communication connects transmission match information, due to the particularity of human body communication, only carries or be built-in with the people of payer equipment 20 When body meets the condition in the default communication range contacting or entering beneficiary equipment 10 with beneficiary equipment 10, beneficiary equipment 10 match information that just can receive payer equipment 20, and then the match information having evaded existing wireless device obtained easily Potential safety hazard.It is additionally, since human body communication and there is the advantages such as low-power consumption, high security and lower human body infringement, thus Improve the safety that match information obtains.

In the specific implementation, beneficiary equipment 10 is after completing delivery operation, and payer equipment 20 is it is also possible to be in beneficiary In the default communication range of equipment 10, beneficiary equipment 10 meeting one directly receives the payer equipment 20 being complete payment transaction The match information of broadcast, is ready for first simultaneously in also receiving the first default communication range entering beneficiary equipment 10 Pay the match information of payer equipment 20 broadcast of transaction, in order to ensure that beneficiary equipment 10 will not repeat to being complete payment The payer equipment 20 of transaction initiates connection request, as the optional embodiment of one, beneficiary equipment 10, is used for passing through Human body communication connects initiates to set up, to payer equipment 20, the connection request that the first radio communication connects according to MAC Address, specifically Including beneficiary equipment 10, in the match information that identity for receiving is with beneficiary equipment 10 locally stored Identity is mated, if mating unsuccessful, is then connected according to MAC Address to payer equipment 20 by human body communication Connection request is set up in initiation, and stores the match information received.

In this optional embodiment, at beneficiary equipment 10 after payer equipment 20 initiates connection request, will store and prop up Paying the match information of method, apparatus 20, this match information at least includes: the identity of payer equipment 20, and this identity can To include but not limited to: the device identification of payer equipment 20, user name etc. can uniquely identify payer equipment 20 identity Mark.Alternatively, beneficiary equipment 10 can set up match information list in this locality, had requested that payment transaction for storage The MAC Address of payer equipment 20 and identity, by the identity that will receive from payer equipment 20 with Identity in identity identification list is mated, i.e. inquire-receive to identity whether be present in this identity identification list In, if it is present the match is successful, the most unsuccessful, if the match is successful, although then explanation payer equipment 20 is in receipts In the default communication range of money method, apparatus 10, but it is complete payment transaction, then beneficiary equipment 10 will not be again to this payment Method, apparatus 20 initiates connection request；If mating unsuccessful, then explanation payer equipment 20 enters beneficiary equipment 10 for the first time It is ready for first payment transaction, then beneficiary equipment 10 meeting carries out the payment of first payment transaction to this in presetting communication range Method, apparatus 20 initiates connection request, and thus, beneficiary equipment 10 may determine that payer equipment 20 is complete and pays or first The secondary payment transaction that carries out, thus ensure that beneficiary equipment 10 will not repeat to the payer equipment 20 being complete payment transaction Play connection request.

In the specific implementation, beneficiary equipment 10, it is additionally operable to, after execution payment transaction terminates, disconnect and payer equipment 20 First radio communication connect, thus for wait in line below pay payer equipment 20 provide set up first radio communication connect Chance.

Additionally, when reality is implemented, there is also and be complete the payer equipment 20 of payment transaction and really need to initiate again to pay The situation of transaction, in order to avoid beneficiary equipment 10 is refused to initiate connection request, beneficiary equipment 10 to this payer equipment 20 The match information of storage can be deleted under certain conditions.In the present embodiment in a kind of optional embodiment, beneficiary equipment 10, it is additionally operable to after disconnection is connected with the first radio communication of payer equipment 20, it is judged that above-mentioned biological limbs are not the most located In the preset range of beneficiary equipment 10, and/or, it is judged that the closing the transaction of current time distance and above-mentioned payer equipment time Whether length reaches predetermined threshold value, if it is, delete the match information that this payer equipment is corresponding.Wherein, it is judged that carry or interior Put the biological limbs of payer equipment whether to be not on the preset range of beneficiary equipment 10 and refer to if beneficiary equipment 10 nothing Method receives the signal that payer equipment 20 is sent by biological limbs again, then explanation is carried or the biological limb of built-in payment method, apparatus Body has exceeded the preset range that beneficiary equipment 10 can communicate；Additionally, the present embodiment sets is complete payment transaction Payer equipment 20 can set up time interval that the first radio communication is connected (i.e. after closing the trade again with beneficiary equipment 10 Predetermined threshold value), such as payer equipment 20 can set up the first channel radio with beneficiary equipment 10 after closing the transaction 10s again Letter connects.The present embodiment can be by deleting the distance of payer equipment 20 and the dual judgement of time that are complete payment Except match information.Once the match information of this payer equipment 20 is deleted, even if this payer equipment 20 is in beneficiary equipment In the default communication range of 10, beneficiary equipment 10 also can initiate connection request to this payer equipment 20 again, thus solves Really need to initiate payment transaction again through completing the payer equipment 20 of payment transaction, but by asking that beneficiary equipment 10 is refused Topic.

In the specific implementation, in the case of small amount payment, as long as no exceeding the upper limit that payer equipment 20 is arranged, payer First authentication information just can be sent to beneficiary equipment 10, to the first certification by the first radio communication connection by equipment 20 After the certification of information is passed through, just can complete payment transaction.

In the specific implementation, in the case of wholesale pays, in order to ensure transaction security, payer equipment 20 is needed to carry to user Show Transaction Information, after by the confirmation of user, just allow follow-up delivery operation, specifically, payer equipment 20, also use In before the first authentication information is sent to beneficiary equipment 10 by the first radio communication connection, connected by the first radio communication Receive the Transaction Information that beneficiary equipment 10 sends；Key message is extracted from Transaction Information；Prompting key message, and etc. Treat that user confirms；After the confirmation instruction receiving user, perform to be connected the first authentication information by the first radio communication to be sent to The operation of beneficiary equipment 10.

In the present embodiment, Transaction Information may include that dealing money, beneficiary accounts information and payer account information, When there is block trade, Transaction Information must be sent to payer equipment 20 by beneficiary equipment 10, in order to prompting user, After user confirms, follow-up certification and payment flow could be performed.Additionally, when reality is implemented, payer equipment 20 can Think equipment, such as a watch, it is also possible to be that two equipment, such as watch and electronic signature equipment are (such as U-shield, agricultural bank Key is precious or has the smart card of signature function).

In the present embodiment, payer equipment 20 can extract key message from Transaction Information, such as dealing money, or, gathering The title of side, the title etc. of payer, and without the full content of Transaction Information is pointed out, specifically, can be by display The modes such as screen display or speech play are pointed out, and especially, can meet the mini-plant with small display screen, such as wrist The display screen of table is the least, it is impossible to the full content of display Transaction Information, but as long as display key content, just can play prompting and use The effect at family.

In the present embodiment, payer equipment 20 is additionally operable to point out key message, increases the step that user confirms, to improve transaction Safety, only user confirm, after pressing acknowledgement key, follow-up operation could be performed.Especially, if payer sets Standby 20 is two equipment, then, when pointing out to user, can point out, certainly, preferably at electricity on any one equipment wherein Point out on sub-signature device.

In the present embodiment, above-mentioned first authentication information includes: digital certificate information；Digital certificate information includes at least one of: Electronic signature information, cipher-text information and dynamic password.Wherein, electronic signature information is the private key that payer equipment 20 utilizes self The signed data that data to be signed signature is obtained, data to be signed include: single authentication data and certification identification information etc., When this electronic signature information is authenticated, obtain the PKI of this payer equipment 20, utilize this PKI to electronic signature information Carrying out sign test, if sign test is passed through, then certification is passed through, and this is asymmetric authentication mode；Cipher-text information is payer equipment 20 profit Treat, with the symmetric key consulted with beneficiary equipment 10, the MAC value that computing with encrypted data obtains, this cipher-text information is being entered During row certification, treat computing with encrypted data also with this symmetric key and be verified MAC value, compare cipher-text information and checking MAC value, if unanimously, then certification is passed through, and this is symmetrical authentication mode；Dynamic password is that E-token dynamic password card (OTP) is to kind The ciphertext that sub-key generates, when being authenticated this dynamic password, is calculated validation value also with this seed key, than Relatively dynamic password and validation value, if unanimously, then certification is passed through, and this is token authentication mode.In the present embodiment, Ke Yitong Cross any one in above-mentioned 3 kinds of modes and realize the certification to digital certificate information, with the legitimacy of method, apparatus 20 of guaranteeing payment.

In the present embodiment, as the optional embodiment of one, above-mentioned first authentication information can also include: certification identification information； This certification identification information for example, the device identification of payer equipment 20, ID etc. can uniquely identify user identity Information, can be uniquely associated to payer user by certification identification information and believe for certification digital certificate information and biological characteristic The certification factor of breath, in order to utilize this certification factor pair digital certificate information and biological information to carry out double authentication, thus, After double authentication is passed through, it is assured that biological information and digital certificate information both are from same user, it is ensured that user Legitimacy.

In the present embodiment, beneficiary equipment 10 is additionally operable to enter the continuing of preset range of beneficiary equipment 10 at biological limbs Period, gather the biological information of biological limbs；Wherein, biological information includes at least one of: finger print information, Iris information, face information and venous information.In the present embodiment, beneficiary equipment 10 is receiving what payer equipment 20 sent Acquire the biological information of human body while first authentication information, such as, touch the touch parts of POS at user's finger The of short duration time in (such as 3 seconds), the watch that POS and user wear is set up by human body and is communicated to connect, and by this human body Communication connection transmission Bluetooth pairing information, the watch that POS is worn with user sets up bluetooth and is connected, by bluetooth connection transmission the One authentication information, the touch parts of POS gather finger print information simultaneously, and the most such as, the watch user pays eventually with Alipay End (this payment terminal has camera function, may be used for gathering face information) sets up the period that human body communication connects, by propping up Paying terminal and gather face information, thus, beneficiary equipment 10 just the most just can be obtained the first certification letter by user operation simultaneously Breath and biological information, convenient to operation.

In the present embodiment, as long as enter the duration interior collection biological characteristic of the preset range of beneficiary equipment 10 at biological limbs Information, can be before communication connection be set up, it is also possible to when communication connection is set up or gather afterwards.

Especially, the situation of biological information can just be collected with beneficiary equipment 10 needing human body limb to contact, as one Planting optional embodiment, biological information includes: finger print information and/or venous information；Beneficiary equipment 10 is additionally operable to adopt The biological information of the biological limbs of collection includes: in the case of biological limbs contact with beneficiary equipment 10, beneficiary equipment 10 biological informations gathering biological limbs and the contact site of beneficiary equipment 10.

In the present embodiment, the authentication result being authenticated digital certificate information and biological information is according to certification mark letter Breath obtains the certification factor, and utilizes the authentication result that certification factor pair digital certificate information and biological information be authenticated, The certification factor mainly include biological characteristic validation information and to digital certificate information checking checking information, this certification factor with recognize Card identification information unique association, therefore can be with the certification factor corresponding to unique queries to this user according to certification identification information, in order to After the double authentication utilizing digital certificate information and biological information is passed through, it is ensured that the legitimacy of user.

In the optional embodiment of one in the present embodiment, utilize the certification of certification factor pair digital certificate information at least include with One of lower several ways:

The most describing three kinds of authentication modes of digital certificate information, here is omitted.

As the optional embodiment of one, above-mentioned utilize certification factor pair digital certificate information to be authenticated and utilize biological special Levy checking information biological information is authenticated, including: utilize certification factor pair digital certificate information to be authenticated, and sentence Whether disconnected biological characteristic validation information is more than the first preset value, to digital certificate information certification with the matching rate of biological information By and the matching rate of biological characteristic validation information and biological information more than the first preset value time, confirm digital certificate information Certification with biological information is passed through.As the optional embodiment of another kind, utilize certification factor pair digital certificate information with And biological information is authenticated, including: utilize certification factor pair digital certificate information to be authenticated, after certification is passed through again Judge that whether the biological characteristic validation information matching rate with biological information is more than the first preset value；In biological characteristic validation information When being more than the first preset value with the matching rate of biological information, confirm that the certification to digital certificate information and biological information is led to Cross.

Wherein, the first preset value is less than the second preset value, and the second preset value is same biology for two biological informations of instruction The matching rate of characteristic information；When reality is implemented, the second preset value can be that two biological informations mate want completely in theory The similarity reached, such as 99%, and the first preset value can be less than the second preset value, such that it is able to reduce biological information The identified failed probability of user the most legal in authentication techniques.

The identified failed probability of the most legal user and illegal is there is in the biological information authentication techniques of prior art User is identified successful probability, and as a example by fingerprint recognition, many times, the fingerprint of user is real, but certification device Identifying mistake, missing the fingerprint recognition of this user is false fingerprint, thus can not pass through certification, it is impossible to realize payment transaction；And have When, the fingerprint of disabled user is obviously false, but the also certification of certification device is passed through, and causes economically to validated user Loss, these situations occur probability be all the highest.And the present embodiment is by digital certificate information and biological information Double authentication can evade the situation of " illegal user is identified successfully ", and the most legal user can be reduced and known The situation that failure does not occurs.First, by above-mentioned 3 kinds of certifications to digital certificate information, it may be determined that this user is legal use Family, if disabled user then cannot be by this digital authenticating, then the operation to false finger print identifying would not occurs, thus advise Keep away the situation of " illegal user is identified successfully "；Secondly, in the case of ensureing that user is validated user, certification device The similarity of two biometric information matches can be reduced, to reduce the identified failed probability of the most legal user, example As, two biological informations to mate completely in theory, and its similarity at least to reach 99% (the second preset value), and if Certification device finds when its similarity is only 90%, will be identified as not mating, and certification is not passed through, and occurs knowing genuine fingerprint It is not the situation of false fingerprint, in the present invention, owing to digital authenticating has ensured that user is validated user, so, can be by complete The similarity of full coupling is reduced to 80% (the first preset value), say, that as long as similarity reaches 80% (the first preset value) It is considered as coupling, therefore, when the similarity of two biological informations is 90%, it is also possible to by certification, thus, the most not User that can be the most legal is identified failed situation, thus reduces use the most legal in biological information authentication techniques The identified failed probability in family.

Any process described otherwise above or method describe and are construed as in flow chart or at this, represent include one or The module of code, fragment or the part of the executable instruction of the more steps for realizing specific logical function or process, and The scope of the preferred embodiment of the present invention includes other realization, wherein can not be by order that is shown or that discuss, including root According to involved function by basic mode simultaneously or in the opposite order, performing function, this should be by embodiments of the invention institute Belong to those skilled in the art to be understood.

Should be appreciated that each several part of the present invention can realize by hardware, software, firmware or combinations thereof.In above-mentioned enforcement In mode, multiple steps or method can be with storing the software or firmware that in memory and be performed by suitable instruction execution system Realize.Such as, if realized with hardware, with the most the same, available following technology well known in the art In any one or their combination realize: have and patrol for the discrete of logic gates that data signal is realized logic function Collect circuit, there is the special IC of suitable combination logic gate circuit, programmable gate array (PGA), field programmable gate Array (FPGA) etc..

Those skilled in the art are appreciated that it is permissible for realizing all or part of step that above-described embodiment method carries Instruct relevant hardware by program to complete, program can be stored in a kind of computer-readable recording medium, this program exists During execution, including one or a combination set of the step of embodiment of the method.

Additionally, each functional unit in each embodiment of the present invention can be integrated in a processing module, it is also possible to be each Unit is individually physically present, it is also possible to two or more unit are integrated in a module.Above-mentioned integrated module is the most permissible The form using hardware realizes, it would however also be possible to employ the form of software function module realizes.If integrated module is with software function mould The form of block realizes and as independent production marketing or when using, it is also possible to be stored in a computer read/write memory medium.

Storage medium mentioned above can be read only memory, disk or CD etc..

In the description of this specification, reference term " embodiment ", " some embodiments ", " example ", " concrete example ", Or specific features, structure, material or the feature that the description of " some examples " etc. means to combine this embodiment or example describes comprises In at least one embodiment or example of the present invention.In this manual, the schematic representation to above-mentioned term not necessarily refers to It is identical embodiment or example.And, the specific features of description, structure, material or feature can at any one or Multiple embodiments or example combine in an appropriate manner.

Although above it has been shown and described that embodiments of the invention, it is to be understood that above-described embodiment is exemplary, Being not considered as limiting the invention, those of ordinary skill in the art is in the case of without departing from the principle of the present invention and objective Above-described embodiment can be changed within the scope of the invention, revise, replace and modification.The scope of the present invention is by appended power Profit requires and equivalent limits.

Claims

1. a method of payment, it is characterised in that including:

After biological limbs enter the preset range of beneficiary equipment, described beneficiary equipment and payer equipment are by described biology Limbs are set up human body communication and are connected；

Described beneficiary equipment is connected transmission match information with described payer equipment by described human body communication, and utilizes described Join information and set up the first radio communication connection；

First authentication information is sent to described beneficiary equipment by described first radio communication connection by described payer equipment, its In, described first authentication information includes: digital certificate information；

Described beneficiary equipment connects the described first certification letter receiving described payer device transmission by described first radio communication Breath；

Enter at described biological limbs described beneficiary equipment preset range duration, described beneficiary equipment gathers described The biological information of biological limbs；

Described beneficiary equipment obtains the authentication result being authenticated described digital certificate information and described biological information；

Described beneficiary equipment is execution payment transaction in the case of certification is passed through in described authentication result.

Method the most according to claim 1, it is characterised in that

Described match information at least includes: the MAC Address of described beneficiary equipment and the second of described beneficiary equipment are recognized Card information, the second authentication information of described beneficiary equipment at least includes: the information to be verified of described beneficiary equipment；

Described beneficiary equipment is connected transmission match information with described payer equipment by described human body communication, and utilizes described Join information and set up the first radio communication connection, including:

Described beneficiary equipment connects, by described human body communication, the extremely described payer equipment that described match information sent；

After described payer equipment receives the described match information of described beneficiary device transmission by described human body communication, Initiate to set up the connection request that described first radio communication connects, described company to described beneficiary equipment according to described MAC Address Connecing and carry information to be certified in request, described information to be certified includes: described second authentication information or to described information to be verified Calculated check value；

After described beneficiary equipment receives described connection request, described information to be certified is authenticated, after certification is passed through, Set up described first radio communication with described payer equipment to be connected.

Method the most according to claim 1, it is characterised in that

Described match information at least includes: the MAC Address of described payer equipment and the identity of described payer equipment；

Described payer equipment connects, by described human body communication, the extremely described beneficiary equipment that described match information sent；

After described beneficiary equipment receives described match information by described human body communication, connected by described human body communication Initiate to set up the connection request that described first radio communication connects to described payer equipment according to described MAC Address；

After described payer equipment receives described connection request by described human body communication, set up with described beneficiary equipment Described first radio communication connects.

Method the most according to claim 3, it is characterised in that

Described beneficiary equipment is connected by described human body communication initiates to set up to described payer equipment according to described MAC Address The connection request that described first radio communication connects, including:

Identity locally stored with described beneficiary equipment for described identity is mated by described beneficiary equipment, if Mate unsuccessful, then connected by described human body communication and initiate described in foundation to described payer equipment according to described MAC Address Connection request, and store described match information.

5. according to the method described in any one of Claims 1-4, it is characterised in that at described payer equipment by authentication information Being connected by described first radio communication before being sent to described beneficiary equipment, described method also includes:

Described beneficiary equipment is connected to described payer equipment transmission Transaction Information by described first radio communication；

Described payer equipment receives described Transaction Information；

Described payer equipment extracts key message from described Transaction Information；

Key message described in described payer device prompts, and wait that user confirms；

After described payer equipment receives the confirmation instruction of user, perform described payer equipment by authentication information by described first Radio communication connects the step being sent to described beneficiary equipment.

6. a payment system, it is characterised in that including: beneficiary equipment and payer equipment, wherein:

Described beneficiary equipment and described payer equipment, after the preset range entering described beneficiary equipment at biological limbs, Set up human body communication by described biological limbs to connect；Connect transmission match information by described human body communication, and utilize described Join information and set up the first radio communication connection；

Described payer equipment, is additionally operable to be connected the first authentication information by described first radio communication be sent to described beneficiary Equipment, wherein, described first authentication information includes: digital certificate information；

Described beneficiary equipment, is additionally operable to be connected by described first radio communication receive described the of described payer device transmission One authentication information；Enter at described biological limbs described beneficiary equipment preset range duration, gather described biological limb The biological information of body；Obtain the authentication result that described digital certificate information and described biological information are authenticated； It is execution payment transaction in the case of certification is passed through in described authentication result.

System the most according to claim 6, it is characterised in that

Described beneficiary equipment and described payer equipment, for connecting transmission match information by described human body communication, and utilize Described match information is set up the first radio communication and is connected, including:

Described beneficiary equipment, is sent described match information to described payer equipment for being connected by described human body communication；

Described payer equipment, for receiving the described coupling letter of described beneficiary device transmission by described human body communication After breath, initiate to set up the connection request that described first radio communication connects to described beneficiary equipment according to described MAC Address, Carrying information to be certified in described connection request, described information to be certified includes: described second authentication information or treat school to described The calculated check value of information of testing；

Described beneficiary equipment, after being additionally operable to receive described connection request, is authenticated, in certification described information to be certified By rear, set up described first radio communication with described payer equipment and be connected.

System the most according to claim 6, it is characterised in that

Described payer equipment, is sent described match information to described beneficiary equipment for being connected by described human body communication；

Described beneficiary equipment, after receiving described match information by described human body communication, is led to by described human body Letter connects initiates to set up the connection request that described first radio communication connects to described payer equipment according to described MAC Address；

Described payer equipment, after being additionally operable to receive described connection request by described human body communication, with described beneficiary Equipment is set up described first radio communication and is connected.

System the most according to claim 8, it is characterised in that

Described beneficiary equipment, is sent out to described payer equipment according to described MAC Address for being connected by described human body communication Rise and set up the connection request that described first radio communication connects, including:

Described beneficiary equipment, for identity locally stored with described beneficiary equipment for described identity is mated, If mating unsuccessful, then connected by described human body communication and initiate to set up to described payer equipment according to described MAC Address Described connection request, and store described identity.

10. according to the system described in any one of claim 6 to 9, it is characterised in that

Described payer equipment, is additionally operable to be sent to described by described first authentication information by described first radio communication connection Before beneficiary equipment, receive, by described first radio communication, the Transaction Information that described beneficiary equipment sends；From institute State extraction key message in Transaction Information；Point out described key message, and wait that user confirms；Receiving the confirmation instruction of user After, perform described first authentication information is connected the operation being sent to described beneficiary equipment by described first radio communication.