CN106056378A - Anti-fake method and system of electronic payment terminal - Google Patents

Anti-fake method and system of electronic payment terminal Download PDF

Info

Publication number
CN106056378A
CN106056378A CN201610355754.8A CN201610355754A CN106056378A CN 106056378 A CN106056378 A CN 106056378A CN 201610355754 A CN201610355754 A CN 201610355754A CN 106056378 A CN106056378 A CN 106056378A
Authority
CN
China
Prior art keywords
false proof
payment terminal
background server
code
mobile terminal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201610355754.8A
Other languages
Chinese (zh)
Other versions
CN106056378B (en
Inventor
彭波涛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Fujian Landi Commercial Equipment Co Ltd
Original Assignee
Fujian Landi Commercial Equipment Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fujian Landi Commercial Equipment Co Ltd filed Critical Fujian Landi Commercial Equipment Co Ltd
Priority to CN201610355754.8A priority Critical patent/CN106056378B/en
Priority to PCT/CN2016/092808 priority patent/WO2017201873A1/en
Publication of CN106056378A publication Critical patent/CN106056378A/en
Application granted granted Critical
Publication of CN106056378B publication Critical patent/CN106056378B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/02Banking, e.g. interest calculation or account maintenance
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/325Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F19/00Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
    • G07F19/20Automatic teller machines [ATMs]
    • G07F19/207Surveillance aspects at ATMs

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Finance (AREA)
  • Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Technology Law (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Telephone Function (AREA)

Abstract

The invention discloses an anti-fake method and system of an electronic payment terminal. The method comprises the following steps: an anti-fake background server and a legal payment terminal receive and store an anti-fake secret key issued by a key distribution center, a mobile terminal logs in the anti-fake background server, the mobile terminal obtains a random gesture password input by a user and sends the random gesture password to the anti-fake background server, the anti-fake background server calls the anti-fake secret key to perform calculation for the random gesture password so that a first response code is obtained, the anti-fake background server sends the first response code to the mobile terminal, the mobile terminal displays the first response code, one payment terminal obtains the random gesture password input by the user, the one payment terminal calls the stored ant-fake secret key to performed calculation for the random gesture password so that a second response code is obtained, and the one payment terminal is judged to be legal if the first response code is consistent with the second response code. The method and system can enable a consumer to easily and conveniently identify authenticity of the electronic payment terminal before consumption, and can prevent cheating by an illegal terminal.

Description

Electronic payment terminal method for anti-counterfeit and system thereof
Technical field
The present invention relates to E-Payment field, particularly relate to a kind of electronic payment terminal method for anti-counterfeit and system thereof.
Background technology
Along with the most universal of bank card and development, the various means of crime currently for bank card also emerge in an endless stream, especially It is that the event that offender uses false POS, false ATM to swindle happens occasionally.The root that these events occur, is common Consumer lacks the ability differentiating the electronic payment terminal true and falses such as POS/ATM, therefore provides the anti-counterfeit recognition of the terminals such as POS/ATM Technology is just particularly important.
In the Chinese patent open file of Publication No. CN104376465A, disclose a kind of safe mobile payment side Method, by scanning Quick Response Code or input, obtains the payment information including price;Select the means of payment;Insertion key carries Body, connects cipher key carrier, and cipher key carrier works;Input payment cipher or scanning payment Quick Response Code, cipher key carrier is to above-mentioned letter Breath is encrypted;Information after transmission encryption is to channel of disbursement;Sign test is passed through, and pays and withholds successfully, and payment completes.Though the program So can do off-line with common handheld terminal or online false proof Jianzhen identifies, but also need to insert cipher key carrier and just can carry out False proof Jianzhen identifies.
Summary of the invention
The technical problem to be solved is: provides a kind of electronic payment terminal method for anti-counterfeit and system thereof, can allow Consumer identifies the true and false of electronic payment terminal simply and easily, reduces the risk that bank card account information is stolen.
In order to solve above-mentioned technical problem, the technical solution used in the present invention is: a kind of electronic payment terminal method for anti-counterfeit, Including:
False proof background server and legal payment terminal receive and store the false proof key that KDC issues;
Mobile terminal logs in false proof background server;
The random gesture password of acquisition for mobile terminal user input, and send it to false proof background server;
False proof background server calls random gesture password described in described false proof double secret key and calculates, and obtains the first response Code;
Described first answerback code is sent to described mobile terminal by false proof background server;Mobile terminal shows described first Answer back code;
One payment terminal obtains the described random gesture password of user's input;
A described payment terminal is called random gesture password described in the false proof double secret key stored and is calculated, and obtains second Answer back code;
If described first answerback code is consistent with described second answerback code, it is determined that a described payment terminal is legal.
The invention still further relates to a kind of electronic payment terminal Antiforge system, including:
Memory module, receives and stores KDC for false proof background server and legal payment terminal and issue False proof key;
Login module, logs in false proof background server for mobile terminal;
First acquisition module, for the random gesture password of acquisition for mobile terminal user input, and sends it to false proof Background server;
First computing module, calls random gesture password described in described false proof double secret key for false proof background server and carries out Calculate, obtain first answerback code;
First sending module, sends described first answerback code to described mobile terminal for false proof background server;
Display module, shows described first answerback code for mobile terminal;
Second acquisition module, obtains the described random gesture password of user's input for a payment terminal;
Second computing module, calls random gesture password described in the false proof double secret key stored for a described payment terminal Calculate, obtain second answerback code;
Determination module, if consistent with described second answerback code for described first answerback code, it is determined that a described payment terminal Legal.
The beneficial effects of the present invention is: by by mobile terminal actively login service device, conventional false proof system can be evaded In system communication interaction often, complex operation, consumer be difficult to the drawbacks such as operation;Meanwhile, have employed choosing at random in cryptography War answer techniques, safety is high;By using random gesture password as challenge code, the random of challenge code both can be realized Property, it is also possible to realize rapidly inputting of challenge code;By contrast answer back code, can allow consumer simply and easily before consumption Identify the true and false of electronic payment terminal, it is to avoid cheated by illegal terminal, reduce the risk that bank card account information is stolen, protect The property safety of card consumer.
Accompanying drawing explanation
Fig. 1 is the flow chart of the present invention a kind of electronic payment terminal method for anti-counterfeit;
Fig. 2 is the method flow diagram of the embodiment of the present invention one;
Fig. 3 is the method flow diagram of the embodiment of the present invention two;
Fig. 4 is the gesture Password Input schematic diagram of the embodiment of the present invention two;
Fig. 5 is the structural representation of the present invention a kind of electronic payment terminal Antiforge system;
Fig. 6 is the system structure schematic diagram of the embodiment of the present invention three.
Label declaration:
1, memory module;2, login module;3, the first acquisition module;4, the first computing module;
5, the first sending module;6, display module;7, the second acquisition module;8, the second computing module;
9, determination module;
41, converting unit;42, unit is filled;43, ciphering unit;44, unit is obtained.
Detailed description of the invention
By describing the technology contents of the present invention in detail, being realized purpose and effect, below in conjunction with embodiment and coordinate attached Figure is explained in detail.
The design of most critical of the present invention is: close in the gesture that false proof background server is consistent with payment terminal input respectively Code, the answer back code that then contrast obtains according to gesture cryptographic calculations, it is judged that the legitimacy of payment terminal.
Refer to Fig. 1, a kind of electronic payment terminal method for anti-counterfeit, including:
False proof background server and legal payment terminal receive and store the false proof key that KDC issues;
Mobile terminal logs in false proof background server;
The random gesture password of acquisition for mobile terminal user input, and send it to false proof background server;
False proof background server calls random gesture password described in described false proof double secret key and calculates, and obtains the first response Code;
Described first answerback code is sent to described mobile terminal by false proof background server;Mobile terminal shows described first Answer back code;
One payment terminal obtains the described random gesture password of user's input;
A described payment terminal is called random gesture password described in the false proof double secret key stored and is calculated, and obtains second Answer back code;
If described first answerback code is consistent with described second answerback code, it is determined that a described payment terminal is legal.
Knowable to foregoing description, the beneficial effects of the present invention is: can allow consumer simply and easily before consumption Identify the true and false of electronic payment terminal, it is to avoid cheated by illegal terminal, reduce the risk that bank card account information is stolen, protect The property safety of card consumer.
Further, described " mobile terminal log in false proof background server " particularly as follows:
Mobile terminal logs in false proof background server by scanning Quick Response Code.
Seen from the above description, by scanning Quick Response Code can quick registration to the website on false proof background server, it is not necessary to The network address that input is complicated.
It is further, described that " false proof background server calls random gesture password described in described false proof double secret key and counts Calculate, obtain first answerback code " particularly as follows:
Described random gesture password is converted to character string by false proof background server;
If the size of described character string is less than the first byte number preset, described character string is filled to described first byte Number, the character string after being filled;
Call the character string after filling described in described false proof double secret key and be encrypted computing, obtain encrypted result;
Intercept the character string of second byte number preset at described encrypted result end, obtain first answerback code.
Further, described cryptographic calculation is the cryptographic calculation of TDES CBC pattern.
Seen from the above description, random gesture password is counted by false proof background server by preset-key and algorithm Calculating, thus obtain answer back code, the most legal payment terminal passes through same key and algorithm to same random cell phone password Calculate, just can obtain same answer back code.
Further, described payment terminal includes POS terminal and ATM terminal.
Refer to Fig. 5, the present invention also proposes a kind of electronic payment terminal Antiforge system, including:
Memory module, receives and stores KDC for false proof background server and legal payment terminal and issue False proof key;
Login module, logs in false proof background server for mobile terminal;
First acquisition module, for the random gesture password of acquisition for mobile terminal user input, and sends it to false proof Background server;
First computing module, calls random gesture password described in described false proof double secret key for false proof background server and carries out Calculate, obtain first answerback code;
First sending module, sends described first answerback code to described mobile terminal for false proof background server;
Display module, shows described first answerback code for mobile terminal;
Second acquisition module, obtains the described random gesture password of user's input for a payment terminal;
Second computing module, calls random gesture password described in the false proof double secret key stored for a described payment terminal Calculate, obtain second answerback code;
Determination module, if consistent with described second answerback code for described first answerback code, it is determined that a described payment terminal Legal.
Further, described login module logs in false proof background service specifically for mobile terminal by scanning Quick Response Code Device.
Further, described first computing module includes:
Converting unit, is converted to character string for false proof background server by described random gesture password;
Fill unit, if the size for described character string is less than the first byte number preset, described character string is filled To described first byte number, the character string after being filled;
Ciphering unit, is encrypted computing for calling the character string after filling described in described false proof double secret key, is added Close result;
Obtain unit, for intercepting the character string of second byte number preset at described encrypted result end, obtain first Answer back code.
Further, described cryptographic calculation is the cryptographic calculation of TDES CBC pattern.
Further, described payment terminal includes POS terminal and ATM terminal.
Embodiment one
Refer to Fig. 1, embodiments of the invention one are: a kind of electronic payment terminal method for anti-counterfeit, and consumer can be allowed to exist Before consumption, first differentiate the legitimacy of electronic payment terminal, be traded the most again, thus avoid being cheated by false terminal;Bag Include following steps:
S1: KDC calls encryption equipment and generates false proof key;It is issued to false proof background server and legal respectively Payment terminal.
S2: false proof background server and legal payment terminal receive and store that KDC issues is false proof close Key;False proof background server is official's server of authority's false-proof mechanism (such as Unionpay), and described legal payment terminal is warp Crossing authority's false-proof mechanism and identify accreditation and the terminal trusted, authority's false-proof mechanism only can be preset false proof for its legal terminal trusted Key.
S3: mobile terminal logs in false proof background server;Preferably, false proof backstage can be signed in by scanning Quick Response Code to take On the website of business device;Described Quick Response Code may be provided in payment terminal, it is also possible to is shown by salesman or service man, only need to ensure even The legitimacy on chain link road.Preferably, website domain name, when signing in on website, is proofreaded, it is ensured that stepped on by consumer Record is legal official website, can be further ensured that safety;Preferably, described mobile terminal can also enter logging in link Row legitimacy verifies;Mobile terminal can pre-set domain name to be put on record query function, before mobile terminal Website login, obtains website Domain name, carries out domain name by acquired website domain name on special domain name puts query web (such as ICP puts on record and inquires about net) on record Inquiry, and judge its verity, if illegal website, stop the most immediately accessing.Preferably, but consumer also oneself carry out legal Property verification, using Unionpay as authority false-proof mechanism as a example by, the website logged in must be the official website of Unionpay, official's net of Unionpay Standing in the most publicity of a lot of channel, consumer any mode such as can solve by Baidu, phone and verify this website domain name Verity, if it find that the network address of the official of domain name Bu Shi Unionpay logged in, stop the most immediately accessing.
The random gesture password of S4: acquisition for mobile terminal user input, and send it to false proof background server.
S5: false proof background server calls random gesture password described in described false proof double secret key and calculates, and obtains first Answer back code.
Described first answerback code is sent to described mobile terminal by S6: false proof background server.
S7: mobile terminal shows described first answerback code.
S8: one payment terminal obtains the described random gesture password of user's input.
S9: a described payment terminal is called random gesture password described in stored double secret key and is calculated, and obtains second Answer back code;It should be noted that the key of the most legal payment terminal storage is only false proof key;Illegal payment terminal is certainly Body also can store the key for encryption and decryption, but the legal false proof key that this key obtains not by legitimate channels.
S10: judge that described first answerback code is the most consistent with described second answerback code, if so, performs step S11, if it is not, Perform step S12.
S11: judge that a described payment terminal is legal.
S12: judge that a described payment terminal is illegal.
Described random cell phone password is counted by the false proof key and the algorithm that are only stored by legal payment terminal The second answerback code obtained, just can be consistent with first answerback code.
Described payment terminal includes POS terminal and ATM terminal.
The present embodiment have employed the random challenge answer techniques in cryptography, and safety is high;By using random gesture Password, as challenge code, both can realize the randomness of challenge code, it is also possible to realizes rapidly inputting of challenge code;Should by contrast Answer code, consumer can be allowed before consumption to identify the true and false of electronic payment terminal simply and easily, it is to avoid by illegal terminal Deception, reduces the risk that bank card account information is stolen, it is ensured that the property safety of consumer.
Embodiment two
Refer to Fig. 3, the present embodiment is a kind of specific implementation of step S5 in embodiment one, comprises the steps:
Described random gesture password is converted to character string by S51: false proof background server.
S52: judge that the size of described character string, whether less than the first byte number preset, if so, performs step S53, if No, perform step S54.Preferably, described first byte number is 8.
S53: described character string is filled to described first byte number, the character string after being filled;Perform step S54. Preferably, it is filled with at character string end with 0.
S54: the character string after calling character string described in described false proof double secret key or filling is encrypted computing, is encrypted Result;If it is to say, full 8 bytes of character string, being directly encrypted computing, if character string is less than 8 bytes, then filling to 8 words Joint is encrypted computing again.
S55: intercept the character string of second byte number preset at described encrypted result end, obtain first answerback code.Excellent Selection of land, described second byte number is 4.
Such as, consumer's input gesture password as shown in Figure 4, false proof background server is converted into character string " 142756389 ", because less than 8 bytes, being therefore filled with, the character string after filling is " 1427563890000000 "; Use the TDES key downloaded in advance, such as 1111111122222222, the character string after filling is carried out TDES CBC pattern Cryptographic calculation, obtain encrypted result " D0A03FDA6C7E57E5B42FB30F1F539462 ";Intercept the word of last 4 bytes Symbol string, i.e. " 1F539462 ", as first answerback code.
If payment terminal is legal, then its key stored is consistent with AES, therefore exists respectively when consumer Inputting identical gesture password in payment terminal and false proof background server, the answer back code calculated should be identical, logical Cross comparison answer back code the most identical, so that it may judge that payment terminal is the most legal.
Embodiment three
Refer to Fig. 6, the present embodiment is a kind of electronic payment terminal Antiforge system of corresponding above-described embodiment, including:
Memory module 1, receives for false proof background server and legal payment terminal and stores under KDC The false proof key sent out;
Login module 2, logs in false proof background server for mobile terminal;
First acquisition module 3, for the random gesture password of acquisition for mobile terminal user input, and sends it to false proof Background server;
First computing module 4, calls random gesture password described in described false proof double secret key for false proof background server and enters Row calculates, and obtains first answerback code;
First sending module 5, sends described first answerback code to described mobile terminal for false proof background server;
Display module 6, shows described first answerback code for mobile terminal;
Second acquisition module 7, obtains the described random gesture password of user's input for a payment terminal;
Second computing module 8, calls random gesture described in the false proof double secret key stored for a described payment terminal close Code calculates, and obtains second answerback code;
Determination module 9, if consistent with described second answerback code for described first answerback code, it is determined that a described payment terminal Legal.
Described login module 2 logs in false proof background server specifically for mobile terminal by scanning Quick Response Code.
Described first computing module 4 includes:
Converting unit 41, is converted to character string for false proof background server by described random gesture password;
Fill unit 42, if the size for described character string is less than the first byte number preset, described character string is filled out It is charged to described first byte number, the character string after being filled;
Ciphering unit 43, is encrypted computing for calling the character string after filling described in described false proof double secret key, obtains Encrypted result;
Obtain unit 44, for intercepting the character string of the second byte number preset at described encrypted result end, obtain the One answer back code.
Described cryptographic calculation is the cryptographic calculation of TDES CBC pattern.
Described payment terminal includes POS terminal and ATM terminal.
In sum, a kind of electronic payment terminal method for anti-counterfeit of present invention offer and system thereof, by by mobile terminal Actively login service device, can evade in conventional false proof system communication interaction often, complex operation, consumer be difficult to operation etc. Drawback;By scanning Quick Response Code can quick registration to the website on false proof background server, it is not necessary to the network address that input is complicated;With Time, have employed the random challenge answer techniques in cryptography, safety is high;By using random gesture password as challenge Code, both can realize the randomness of challenge code, it is also possible to realize rapidly inputting of challenge code;By contrast answer back code, Ke Yi Allow consumer identify the true and false of electronic payment terminal simply and easily before consumption, it is to avoid to be cheated by illegal terminal, reduce silver The risk that row card accounts information is stolen, it is ensured that the property safety of consumer.
The foregoing is only embodiments of the invention, not thereby limit the scope of the claims of the present invention, every utilize this The equivalents that bright description and accompanying drawing content are made, or directly or indirectly it is used in relevant technical field, the most in like manner include In the scope of patent protection of the present invention.

Claims (10)

1. an electronic payment terminal method for anti-counterfeit, it is characterised in that including:
False proof background server and legal payment terminal receive and store the false proof key that KDC issues;
Mobile terminal logs in false proof background server;
The random gesture password of acquisition for mobile terminal user input, and send it to false proof background server;
False proof background server calls random gesture password described in described false proof double secret key and calculates, and obtains first answerback code;
Described first answerback code is sent to described mobile terminal by false proof background server;Mobile terminal shows described first response Code;
One payment terminal obtains the described random gesture password of user's input;
A described payment terminal is called random gesture password described in the false proof double secret key stored and is calculated, and obtains the second response Code;
If described first answerback code is consistent with described second answerback code, it is determined that a described payment terminal is legal.
Electronic payment terminal method for anti-counterfeit the most according to claim 1, it is characterised in that described " mobile terminal logs in anti- Pseudo-background server " particularly as follows:
Mobile terminal logs in false proof background server by scanning Quick Response Code.
Electronic payment terminal method for anti-counterfeit the most according to claim 1, it is characterised in that described " false proof background server Call random gesture password described in described false proof double secret key to calculate, obtain first answerback code " particularly as follows:
Described random gesture password is converted to character string by false proof background server;
If the size of described character string is less than the first byte number preset, described character string is filled to described first byte number, Character string after being filled;
Call the character string after filling described in described false proof double secret key and be encrypted computing, obtain encrypted result;
Intercept the character string of second byte number preset at described encrypted result end, obtain first answerback code.
Electronic payment terminal method for anti-counterfeit the most according to claim 3, it is characterised in that described cryptographic calculation is TDES The cryptographic calculation of CBC pattern.
5. according to the electronic payment terminal method for anti-counterfeit described in any one of claim 1-4, it is characterised in that described payment terminal Including POS terminal and ATM terminal.
6. an electronic payment terminal Antiforge system, it is characterised in that including:
Memory module, receives for false proof background server and legal payment terminal and stores that KDC issues is anti- Pseudo-key;
Login module, logs in false proof background server for mobile terminal;
First acquisition module, for the random gesture password of acquisition for mobile terminal user input, and sends it to false proof backstage Server;
First computing module, based on gesture password random described in false proof background server calls described false proof double secret key is carried out Calculate, obtain first answerback code;
First sending module, sends described first answerback code to described mobile terminal for false proof background server;
Display module, shows described first answerback code for mobile terminal;
Second acquisition module, obtains the described random gesture password of user's input for a payment terminal;
Second computing module, calls random gesture password described in the false proof double secret key stored for a described payment terminal and carries out Calculate, obtain second answerback code;
Determination module, if consistent with described second answerback code for described first answerback code, it is determined that a described payment terminal is legal.
Electronic payment terminal Antiforge system the most according to claim 6, it is characterised in that described login module specifically for Mobile terminal logs in false proof background server by scanning Quick Response Code.
Electronic payment terminal Antiforge system the most according to claim 6, it is characterised in that described first computing module bag Include:
Converting unit, is converted to character string for false proof background server by described random gesture password;
Fill unit, if the size for described character string is less than the first byte number preset, described character string is filled to institute State the first byte number, the character string after being filled;
Ciphering unit, is encrypted computing for calling the character string after filling described in described false proof double secret key, obtains encryption knot Really;
Obtain unit, for intercepting the character string of second byte number preset at described encrypted result end, obtain the first response Code.
Electronic payment terminal Antiforge system the most according to claim 8, it is characterised in that described cryptographic calculation is TDES The cryptographic calculation of CBC pattern.
10. according to the electronic payment terminal Antiforge system described in any one of claim 6-9, it is characterised in that described payment is eventually End includes POS terminal and ATM terminal.
CN201610355754.8A 2016-05-26 2016-05-26 Electronic payment terminal method for anti-counterfeit and its system Active CN106056378B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN201610355754.8A CN106056378B (en) 2016-05-26 2016-05-26 Electronic payment terminal method for anti-counterfeit and its system
PCT/CN2016/092808 WO2017201873A1 (en) 2016-05-26 2016-08-02 Electronic payment terminal anti-counterfeiting method and system thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610355754.8A CN106056378B (en) 2016-05-26 2016-05-26 Electronic payment terminal method for anti-counterfeit and its system

Publications (2)

Publication Number Publication Date
CN106056378A true CN106056378A (en) 2016-10-26
CN106056378B CN106056378B (en) 2019-07-26

Family

ID=57175322

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610355754.8A Active CN106056378B (en) 2016-05-26 2016-05-26 Electronic payment terminal method for anti-counterfeit and its system

Country Status (2)

Country Link
CN (1) CN106056378B (en)
WO (1) WO2017201873A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107622293A (en) * 2017-08-21 2018-01-23 厦门壹码通科技有限责任公司 A kind of safe checking method based on Quick Response Code
CN115564463A (en) * 2021-06-30 2023-01-03 比亚迪股份有限公司 Anti-counterfeiting detection method and system for vehicle electronic parts and server

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101897165A (en) * 2007-10-30 2010-11-24 意大利电信股份公司 Method of authentication of users in data processing systems
CN102185832A (en) * 2011-03-08 2011-09-14 赵晓宇 Interactive anti-counterfeiting authentication method and intelligent anti-counterfeiting label
CN104574060A (en) * 2015-01-09 2015-04-29 艾体威尔电子技术(北京)有限公司 On-line payment method and system based on NFC token

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN100585655C (en) * 2007-09-14 2010-01-27 杭州华三通信技术有限公司 Management method of POS machine and management equipment
US20110142234A1 (en) * 2009-12-15 2011-06-16 Michael Leonard Rogers Multi-Factor Authentication Using a Mobile Phone
CN102411817B (en) * 2011-09-19 2014-01-01 中国工商银行股份有限公司 Method and system for identifying bank self-service machine
CN104463572B (en) * 2013-09-18 2018-07-13 中国电信股份有限公司 A kind of system and method for verification mobile phone POS machine legitimacy
CN105138870B (en) * 2015-10-08 2018-09-07 浪潮(北京)电子信息产业有限公司 A kind of chip validity discrimination method and device

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101897165A (en) * 2007-10-30 2010-11-24 意大利电信股份公司 Method of authentication of users in data processing systems
CN102185832A (en) * 2011-03-08 2011-09-14 赵晓宇 Interactive anti-counterfeiting authentication method and intelligent anti-counterfeiting label
CN104574060A (en) * 2015-01-09 2015-04-29 艾体威尔电子技术(北京)有限公司 On-line payment method and system based on NFC token

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107622293A (en) * 2017-08-21 2018-01-23 厦门壹码通科技有限责任公司 A kind of safe checking method based on Quick Response Code
CN115564463A (en) * 2021-06-30 2023-01-03 比亚迪股份有限公司 Anti-counterfeiting detection method and system for vehicle electronic parts and server

Also Published As

Publication number Publication date
WO2017201873A1 (en) 2017-11-30
CN106056378B (en) 2019-07-26

Similar Documents

Publication Publication Date Title
US9426141B2 (en) Verifiable tokenization
US8608065B2 (en) Authenticating electronic financial transactions
CN1831865B (en) Electronic bank safety authorization system and method based on CPK
CN104573547B (en) Information interaction safety precaution system and operation implementation method thereof
CN108021800A (en) For the method by non-security terminal authentication user
US20080288790A1 (en) Means and Method of Using Cryptographic Device to Combat Online Institution Identity Theft
NZ247734A (en) Securing data transmissions with verifiable digital signatures
CN102238193A (en) Data authentication method and system using same
WO2018133674A1 (en) Method of verifying and feeding back bank payment permission authentication information
WO2015065249A1 (en) Method and system for protecting information against unauthorized use (variants)
CN106411950A (en) Block-chain transaction ID based authentication method, device and system
CN107534668A (en) The method and system of transaction security
CN103345703A (en) Banking transaction authentication method and system based on image authentication
CN104574652B (en) The increase of IC-card blowdown data, the method reduced and IC-card
CN104462949A (en) Method and device for calling plug-in
CN106911722A (en) A kind of intelligent cipher signature identity differentiates mutual authentication method and system
AU2006200653A1 (en) A digital wallet
CN110634072B (en) Block chain transaction system based on multi-signature and hardware encryption
CN106056378A (en) Anti-fake method and system of electronic payment terminal
Nowroozi et al. Cryptocurrency wallets: assessment and security
CN102609842A (en) Payment cipher device based on hardware signature equipment, and application method of payment cipher device
CN110249358A (en) High value material is exported based on 1 evidences of title of ring
CN104268780A (en) Trade order confirmation method and device and server
CN113962695A (en) Data processing method and device and server
CN114742649A (en) Transaction data processing method and device and server

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant