CN106651364A - Online payment device for authentication through visible light and barcode two-way public-key system - Google Patents
Online payment device for authentication through visible light and barcode two-way public-key system Download PDFInfo
- Publication number
- CN106651364A CN106651364A CN201710066536.7A CN201710066536A CN106651364A CN 106651364 A CN106651364 A CN 106651364A CN 201710066536 A CN201710066536 A CN 201710066536A CN 106651364 A CN106651364 A CN 106651364A
- Authority
- CN
- China
- Prior art keywords
- stored value
- payment
- value card
- charge machine
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000004891 communication Methods 0.000 claims abstract description 22
- 238000012795 verification Methods 0.000 claims abstract description 18
- 238000012545 processing Methods 0.000 claims abstract description 9
- 239000000047 product Substances 0.000 claims description 36
- 238000012790 confirmation Methods 0.000 claims description 33
- 238000000034 method Methods 0.000 claims description 33
- 230000008569 process Effects 0.000 claims description 24
- 230000003287 optical effect Effects 0.000 claims description 13
- 239000000284 extract Substances 0.000 claims description 12
- 239000013589 supplement Substances 0.000 claims description 7
- 230000006855 networking Effects 0.000 claims description 6
- 238000009826 distribution Methods 0.000 claims description 4
- 230000005611 electricity Effects 0.000 claims description 3
- 230000003993 interaction Effects 0.000 claims description 3
- 238000012423 maintenance Methods 0.000 claims description 3
- 238000000682 scanning probe acoustic microscopy Methods 0.000 claims description 3
- 230000005540 biological transmission Effects 0.000 claims description 2
- 230000008859 change Effects 0.000 claims description 2
- 238000005242 forging Methods 0.000 claims description 2
- PCHJSUWPFVWCPO-UHFFFAOYSA-N gold Chemical compound [Au] PCHJSUWPFVWCPO-UHFFFAOYSA-N 0.000 claims description 2
- 239000010931 gold Substances 0.000 claims description 2
- 229910052737 gold Inorganic materials 0.000 claims description 2
- 235000013399 edible fruits Nutrition 0.000 claims 2
- 241000208340 Araliaceae Species 0.000 claims 1
- 235000005035 Panax pseudoginseng ssp. pseudoginseng Nutrition 0.000 claims 1
- 235000003140 Panax quinquefolius Nutrition 0.000 claims 1
- 235000008434 ginseng Nutrition 0.000 claims 1
- 238000005516 engineering process Methods 0.000 description 8
- 238000013475 authorization Methods 0.000 description 2
- 238000000465 moulding Methods 0.000 description 2
- 238000004321 preservation Methods 0.000 description 2
- 230000004397 blinking Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
- 230000001502 supplementing effect Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/367—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
- G06Q20/3674—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3274—Short range or proximity payments by means of M-devices using a pictured code, e.g. barcode or QR-code, being displayed on the M-device
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
Abstract
The invention discloses an online payment device for authentication through a visible light and barcode two-way public-key system. The device comprises an electronic wallet, a consumption machine and a server; the electronic wallet comprises a visible light emitting module, a barcode scanning module, a control module, an input module, a display module, a password processing module and a data interface; the consumption machine comprises a visible light receiving module, a barcode display module, a read-write control module, a keyboard module, a display, a password co-processor and a communication module; payment of the device is completed through the consumption machine, the electronic wallet and the server; the electronic wallet sends a visible light signal, scans the barcode of the consumption machine; the consumption machine receives the visible light signal, and generates a display barcode to be scanned by the electronic wallet; under the support of the server, mutual verification of the data information of both two payment sides is carried out through the public-key password system; and thus, the online payment device provided by the invention is effective and safe, and has non-repudiation.
Description
Technical field
It is more particularly to a kind of with visible ray and the two-way public key system certification of bar code the invention belongs to light payment technology field
On-line payment device.
Background technology
Visible light communication(Visible Light Communication, abbreviation VLC)Technology be using high frequency and human eye without
The blinking light that method is perceived carries signal, in receiving terminal in data sending terminal as information carrier with the high frequency flicker of LED
Signal, the method so as to realize radio communication are gathered with the photo-sensitive cell of high-speed response.
" barcode scanning " is information acquiring pattern popular at present, and the camera for being typically with smart mobile phone shoots bar shaped
Code, and therefrom identify information.
" barcode scanning payment " is propped up on the line grown up on the basis of the technology such as " barcode scanning " technology and wechat, Alipay
Pay mode means.The means of payment of " barcode scanning payment ", it is the same just as traditional non-cash transaction means, belong to online friendship
Easily, original magnetic card system is exactly typical online trading system.
Public-key cryptosystem is an important branch in contemporary cryptology, is widely used in the fields such as electronic signature, certification,
Application practice is obtained in ecommerce, E-Government.
The present invention obtains the inspiration of the mode such as VLC technologies, " barcode scanning payment ", and by smart mobile phone, panel computer is this kind of has
The smart machine of LED flash and camera, it is proposed that the device of an on-line payment, is entered in device using public-key cryptosystem
The mutual authentication method of Transaction Information is gone so that the device process of exchange of the present invention is safer.
The content of the invention
It is an object of the invention to provide a kind of on-line payment device with visible ray Yu the two-way public key system certification of bar code.
What the present invention was realized in:A kind of on-line payment device with visible ray Yu the two-way public key system certification of bar code,
Including:Stored value card, charge machine and server.
Stored value card, including:VISIBLE LIGHT EMISSION module, bar code scan module, control module, input module, display module,
Cryptographic handling module and data-interface;Control module respectively with VISIBLE LIGHT EMISSION module, bar code scan module, input module, aobvious
Show the electrical connection of module, cryptographic handling module and data-interface;VISIBLE LIGHT EMISSION module, for the letter being input into according to control module
Breath, generates and sends visible light signal;Bar code scan module, for scanning recognition bar code, and the result of identification is exported to control
Molding block;Control module, is used for:1st, information to be sent is processed, is generated packet, and exported and give VISIBLE LIGHT EMISSION mould
Block, drives VISIBLE LIGHT EMISSION module to send visible light signal;2nd, the scanning result output of bar code scan module is received, and to scanning
As a result verified;3 and server consumed, supplemented with money, inquiry into balance, the read-write operation of Operation Log information;4th, according to receipts
The information for arriving and the payment information for generating, generation needs the information by VISIBLE LIGHT EMISSION module;5th, data-interface can be passed through
Data interaction is carried out with server;Input module, for including payment, password for inquiry, paying close to control module input
Code, operational order are in interior information;Display module, for showing payment, interface for password input, operational order and prompting
Information;Cryptographic handling module, for preserving the public key ring of charge machine, the private cipher key of stored value card itself, and to input
Information, according to the built-in cryptography processing units of module, is encrypted using public-key cryptography or private cipher key, and using open
Key or private cipher key are decrypted;And the information after exporting encryption or decrypting;Data-interface, for providing stored value card
Network savvy, there is provided be connected and carry out the function of data exchange, data maintenance and upgrading with server.
Charge machine, including:Thus it is clear that Optical Receivers, bar code display module, Read-write Catrol module, Keysheet module, display,
Password coprocessor and communication module;Read-write Catrol module respectively with visible Optical Receivers, bar code display module, keyboard mould
The electrical connection of block, display, password coprocessor and communication module;It can be seen that Optical Receivers, for receiving visible light signal, and locates
Reason is reduced into corresponding data signal, is reduced into packet;Bar code display module, for being believed according to the input of Read-write Catrol module
Breath, generates and shows bar code;Read-write Catrol module, is used for:1st, the output of visible Optical Receivers is received, and gives certification;
2nd, information to be sent is processed, exports and give bar code display module;3 and server consumed, supplemented with money, inquiry into balance,
The read-write operation of Operation Log information;The 4th, data-interface is provided, by communication module and server enter row information upload and under
Carry;Keysheet module, for Read-write Catrol module input dealing money, trading password, operational order;Display, for showing
Dealing money, interface for password input, operational order and information;Password coprocessor, is used for:1st, stored value card is preserved
Public key ring, the private cipher key of charge machine itself;2nd, to the information being input into, according to the built-in Cipher Processing list of password coprocessor
Unit, is encrypted using public-key cryptography or private cipher key, and is decrypted using public-key cryptography or private cipher key;And it is defeated
Information after going out encryption or decrypting;Communication module, for by wired or wirelessly, connection host computer or access
Network, so as to be connected with server.
Server, is used for:1 and charge machine by communication module set up upload, download data cube computation;2 and electronic money
Wrap and the data cube computation for uploading, downloading is set up by data-interface;3rd, the background service for providing this on-line payment device is supported;4th, carry
For whole on-line payment device and the interface of the Capital Flow of financial sector;5th, be charge machine, stored value card granting or cancellation award
Power, there is provided include:Key updating, algorithm update and upgrade, access right is adjusted, the term of validity is adjusted, stored value card is supplemented with money, consumed
Machine is paid in interior service;6th, preserving includes:Authorized user's inventory, blacklist, Operation Log collect, charge machine inventory is interior
Information;Authorized user's inventory, includes for preserving:The authorized stored value card identity that can carry out on-line payment, make
With authority, the term of validity, the identity information of stored value card holder, each stored value card public-key cryptography;Blacklist, for preserving
In authorized user's inventory, because arrearage, report the loss, have improper usage record be rejected the part user profile of payment transaction;
Payment interface, for providing the interface of whole on-line payment device and the Capital Flow of financial sector;Operation Log collects, and is used for
Time, payment, the payment process data of operation that preservation includes all charge machines, the inquiry of stored value card, supplements with money, consumes
Parameter is in interior information;Charge machine inventory, includes for preserving:The authorized consumption fuselage that can carry out on-line payment transaction
Part mark, access right, the term of validity, the public-key cryptography of each charge machine.
Server is used for being included the module of above-mentioned charge machine and its equipment issued rights of function so as to possess acceptance dress
The function that stored value card in putting is paid;Server is used for being included the module of above-mentioned stored value card and the equipment of function
Issued rights so as to possess the function of being paid to the charge machine in device;Provide one to user by server simultaneously to award
Power, authorization is to provide an authorized entity hardware device, or provides a grant number for the user of existing device;And
Supplement with money for equipment, write stored value card identity, access right, the term of validity, the payment cipher of stored value card and password for inquiry,
The identity information of stored value card holder.
Encrypting and decrypting in charge machine and stored value card adopts same public key algorithm;Charge machine and stored value card
Distribution and mandate, are responsible for enforcement, so as to ensure by a unit, tissue or a joint institution:1st, it is all to pass through what is authorized
Public-key cryptography of the public key ring on charge machine comprising all stored value cards through authorizing;2nd, all stored value cards through authorizing
Public key ring comprising it is all through mandate charge machines public-key cryptography;3rd, each charge machine has each unique privately owned close
Key, each stored value card has each unique private cipher key;4th, all stored value cards and charge machine through authorizing can
Public-key cryptography in networking, in upgrading or extension public key ring;5th, stored value card and charge machine can be in networkings, upgrading
Or the private cipher key of extension itself;Stored value card, can be privately owned with its according to AES fun () of public key algorithm
Ciphertext M that information m of key S encryptions is obtained, while can be by charge machine using the corresponding stored value card on public key ring
Public-key cryptography G and public key algorithm decipherment algorithm gun (), decrypting ciphertext M obtains information m;But charge machine can not pass through
Using any one public-key cryptography on public key ring or other other keys in addition to the private cipher key of stored value card to same
One information m is encrypted and obtains ciphertext M that stored value card private key encryption is obtained.
In the on-line payment device, paid to the charge machine of a mandate with the stored value card of a mandate,
Pay and initiated by charge machine, payment flow process includes as follows:
GY1, charge machine sends payment and invites to stored value card, generates unencrypted invitation code ZFYQ1, and is given birth to by display
Show into bar code;Invitation code ZFYQ1 includes:Buy product identification SP1, charge machine identity XID1, treat collection amount
DFK1。
GY2, the bar code on stored value card scanning display, identifies invitation code ZFYQ2, and extracts purchase product identification
SP2, charge machine identity XID2, collection amount DFK2 is treated, and shown by display module;Stored value card is confirmed whether
Agreement carries out this payment, if agreed to, into GY3, otherwise just exits payment flow.
GY3, connection server inquires about the remaining sum of stored value card, if remaining sum is sufficient, into GY4;Otherwise, payment is exited
Flow process, balance amount prompting is not enough.
GY4, stored value card generates payment random code ZFR4, and generates payment code ZFM4, payment code ZFM4 bag
Include:Pay random code ZFR4, payment ZFK4, charge machine identity XID4, purchase product identification SP4, invitation code
ZFYQ4, is encrypted to payment code ZFM4 and is obtained ciphertext using the private cipher key QS and AES fun () of stored value card
dsZFM4;Again with the public-key cryptography XG and AES fun () of charge machine to ciphertext dsZFM4 and stored value card identity
QID4 is encrypted and obtains ciphertext xgdsZFMQID4, and ciphertext xgdsZFMQID4 is sent.
GY5, charge machine receives ciphertext xgdsZFMQID5, into GY5.1.
GY5.1, decrypts xgdsZFMQID5, if obtained with the private cipher key XS and decipherment algorithm gun () of charge machine
DsZFM5 and stored value card identity QID5, then successful decryption, into GY5.2;If decryption cannot be carried out, represent that decryption is lost
Lose, then exit payment flow;Thereby guarantee that have and only send to pay and invite and obtain the charge machine that stored value card is approved,
Payment flow below can be entered, could received payment, it is to avoid the forgery of charge machine or in payment process, it is illegal by other
Charge machine is replaced.
GY5.2, further according to stored value card identity QID5, the Public Key QS5 for selecting the stored value card is calculated with decryption
Method gun () decrypting ciphertext dsZFM5, and therefrom extract payment random code ZFR5, payment ZFK5, charge machine identity
XID5, purchase product identification SP5, invitation code ZFYQ5, go forward side by side and are advanced into GY5.3;Thereby guarantee that have and only identity is
The stored value card of QID5, is only possible to generate ciphertext, and carries out follow-up payment flow, confirms in payment flow, to participate in propping up
What is paid is the stored value card that identity is QID5.
GY5.3, carries out following contrast verification:
1) invitation code ZFYQ1 that charge machine is generated in GY1 and invitation code ZFYQ5 extracted in decrypting ciphertext from G5.2 are contrasted.
2) contrast GY1 in charge machine generate treat collection amount DFK1 and from G5.2 in decrypting ciphertext extract payment gold
Volume ZFK1.
3) charge machine identity XID1 and decrypting ciphertext is extracted from G5.2 charge machine identity in GY1 is contrasted
XID5。
4) the purchase product identification SP1 that charge machine is generated in GY1 and the purchase extracted in decrypting ciphertext from G5.2 are contrasted
Product identification SP5.
When 4 contrasts all distinguish consistent more than, charge machine enters GY5.4, otherwise points out contrast verification, and exits payment
Flow process.
GY5.4, charge machine is completed after the checking in GY5.3, generates gathering confirmation code SKQR5, and generates gathering code
SKM5 includes:Pay random code ZFR5, payment ZFK5, charge machine XID5, purchase product identification SP5, invitation code ZFYQ5
With gathering confirmation code SKQR5, ciphertext is obtained by private cipher key XS AESs fun () the encryption SKM5 of the charge machine
XsSKM5, then xsSKM5 and charge machine identity XID5 is encrypted by the public-key cryptography QG of the stored value card, obtain
DgxsSKMXID5, regenerates a bar code, is displayed on bar code display module.
GY6, the bar code on stored value card scanning barcode display module, receives ciphertext dgxsSKMXID6, into GY6.1.
GY6.1, is solved using the private cipher key QS and decipherment algorithm gun () of stored value card to ciphertext dgxsSKMXID6
It is close, if decryption can obtain xsSKM6 and charge machine identity XID6, successful decryption, into GY6.2;If decryption nothing
Method is carried out, and represents decryption failure, then exit payment flow;Thereby guarantee that there is and only generates and send ciphertext dgxsSKMXID6
Stored value card, payment flow below could be entered, it is to avoid the forgery of stored value card or in payment process, it is non-by other
The stored value card of method is replaced.
GY6.2, then the public-key cryptography XG6 of the charge machine is selected to ciphertext according to charge machine XID6 with stored value card
XsSKM6 is decrypted, and therefrom extracts payment random code ZFR6, payment ZFK6, charge machine XID6-1, purchase product
Mark SP6, invitation code ZFYQ6 and gathering confirmation code SKQR6.
GY6.3, carries out following contrast verification:
1) payment random code ZFR4 that stored value card is generated in GY4 and payment random code ZFR6 extracted in GY6.2 are contrasted.
2) payment ZFK4 that stored value card is generated in GY4 and payment ZFK6 extracted in GY6.2 are contrasted.
3) the charge machine identity XID4 that stored value card is received in GY4, the consumption identity extracted in GY6.2 are contrasted
Identify XID6-1 and the charge machine identity XID6 for obtaining is decrypted in GY6.1.
4) the purchase product identification SP4 that stored value card is received in GY4 and the purchase product identification extracted in GY6.2 are contrasted
SP6。
When 4 contrasts all distinguish consistent more than, charge machine enters GY6.4, otherwise points out contrast verification, and exits payment
Flow process, and by the inconsistent information of display module display comparison.
GY6.4, the wallet balances of server update stored value card with operating time SJ, gathering confirmation code SKQR6, pay
Amount of money ZFK6, charge machine identity XID6, purchase product identification SP6, invitation code ZFYQ6, payment random code ZFR6 generate behaviour
Make daily record, and the information of successful payment shown by display module, then one is sent by VISIBLE LIGHT EMISSION module to complete
Confirmation code QRM6 of payment, confirmation code QRM6 includes:Invitation code ZFYQ6 and gathering confirmation code SKQR6.
GY7, charge machine receives invitation code ZFYQ7 and gathering confirmation code SKQR7;And carry out following contrast verification:
1) invitation code ZFYQ1 that charge machine is generated in GY1 and invitation code ZFYQ7 received in GY9 are contrasted;
2) gathering confirmation code SKQR1 that charge machine is generated in GY6 and gathering confirmation code SKQR7 received in GY7 are contrasted.
When 2 contrasts all distinguish consistent more than, operating time SSJ, stored value card identity that server is paid with this
Mark QID5, payment random code ZFR5, purchase product identification SP5, payment ZFK5, invitation code ZFYQ7 and gathering confirmation code
SKQR7 generates Operation Log, and generates the mark that a flow process is successfully completed by charge machine, shows over the display.
In payment flow, the data that charge machine sends are received from stored value card, and stored value card is received from charge machine
The data of transmission, the possibility that all may there is None- identified during transmitting-receiving, so in payment flow, for cannot know
Other data, and because cannot receiving data and lead to not recognize situation, device all can one setting wait when
Between time-out after, unilaterally terminate payment flow.
In payment flow, the data sent from stored value card to charge machine, and send from charge machine to stored value card
Data, the loss that may there are data during transmitting-receiving, the risk for being tampered, forging, therefore in payment flow are right
The critical data for receiving every time is generating the step of all assume before the data being currently received and payment flow or receive
Data it is different, need contrast verification, thereby guarantee that the true, complete of transceiving data.
The present invention is combined using both visible light communication technology and bar code scan technology of identification, smart mobile phone, is put down
Plate apparatus such as computer, as the carrier of stored value card, body is carried out between charge machine and stored value card using public-key cryptosystem
Part and the mutual checking of Transaction Information, effectively raise the security of the on-line payment device, and both parties' can not
The property denied.The equipment that the present invention is carried with a people realizes on-line payment, makes people's trip convenient, while
To a certain degree improve the security of on-line payment.
Description of the drawings
Fig. 1 is the structural representation of the present invention.
Fig. 2 is the structure chart of device in embodiments of the invention.
Mark in figure:1- stored value cards;2- charge machines;3- servers;11- control modules;12- input modules;13- shows
Module;14- data-interfaces;15- bar code scan modules;17- VISIBLE LIGHT EMISSION modules;18- cryptographic handling modules;21- read-write controls
Molding block;22- bar code display modules;The visible Optical Receivers of 24-;25- Keysheet modules;26- displays;27- communication modules;
28- password coprocessors.
Specific embodiment
Embodiment:
A kind of on-line payment device with visible ray Yu the two-way public key system certification of bar code, including:Stored value card 1, charge machine 2,
Server 3.
Stored value card 1, including:Control module 11, input module 12, display module 13, data-interface 14, bar code scan mould
Block 15, VISIBLE LIGHT EMISSION module 17, cryptographic handling module 18;Control module 11 respectively with input module 12, display module 13, number
Electrically connect according to interface 14, bar code scan module 15, VISIBLE LIGHT EMISSION module 17, cryptographic handling module 18.
VISIBLE LIGHT EMISSION module 17, for the information being input into according to control module 11, generates and sends visible light signal.
Bar code scan module 15, for scanning recognition bar code, and the result of identification is exported to control module 11.
Control module 11, is used for:1st, information to be sent is processed, is generated packet, and exported to visible ray
Module 17 is penetrated, drives VISIBLE LIGHT EMISSION module 17 to send visible light signal;2nd, the scanning result for receiving bar code scan module 15 is defeated
Go out, and scanning result is verified;3 and server 3 connect, consumed, supplemented with money, inquiry into balance, Operation Log information
Read-write operation;4th, according to the payment information of the information and generation for receiving, generation needs what is sent by VISIBLE LIGHT EMISSION module 17
Information;5th, data interaction can be carried out by data-interface 14 and server 3.
Input module 12, for including that payment, password for inquiry, payment cipher, operation refer to the input of control module 11
Order is in interior information.
Display module 13, for showing payment, interface for password input, operational order and information.
Cryptographic handling module 18, for preserving the public key ring of charge machine, the private cipher key of stored value card itself, and to defeated
The information for entering, according to the built-in cryptography processing units of module, is encrypted using public-key cryptography or private cipher key, and is adopted
Public-key cryptography or private cipher key are decrypted;And the information after exporting encryption or decrypting.
Data-interface 14, for providing the network savvy of stored value card 1, there is provided be connected and carry out data friendship with server 3
Change, the function of data maintenance and upgrading.
Stored value card 1 is realized using the smart mobile phone for being configured with flash lamp and camera.
Charge machine 2, including:It can be seen that Optical Receivers 24, bar code display module 22, Read-write Catrol module 21, Keysheet module
25th, display 26, communication module 27, password coprocessor 28;Read-write Catrol module 21 respectively with visible Optical Receivers 24, bar
Code display module 22, Keysheet module 25, display 26, communication module 27, password coprocessor 28 are electrically connected.
It can be seen that Optical Receivers 24, for receiving visible light signal, and processing corresponding data signal is reduced into, it is reduced into
Packet.
Bar code display module 22, for according to the input information of Read-write Catrol module 21, generating and showing bar code.
Read-write Catrol module 21, is used for:1st, the output of visible Optical Receivers 24 is received, and gives certification;2nd, will be pending
The information sent is processed, and is exported to bar code display module 22;3 and server 3 carry out including consuming, supplement with money, inquiry into balance,
Read-write operation of the Operation Log in interior information;4th, communication interface is provided, row information is entered by communication module 27 and server 3
Upload and download.
Cash register tank module 23, includes for preserving:Operation Log, gathering consumption rights, blacklist, cash register remaining sum, operation
Password, the term of validity, production issuer are in interior information.
Keysheet module 25, for the input dealing money of Read-write Catrol module 21, trading password, operational order.
Display 26, for showing dealing money, interface for password input, operational order and information.
Password coprocessor 18, for preserving the public key ring of stored value card 1, charge machine 1 private cipher key of itself, and it is right
The information of input, according to the built-in cryptography processing units of password coprocessor 18, is carried out using public-key cryptography or private cipher key
Encryption, and be decrypted using public-key cryptography or private cipher key;And the information after exporting encryption or decrypting.
Communication module 27, for by wired or wirelessly, connection host computer or access network, so as to clothes
Business device is connected.
Server 3, is used for:1 and charge machine 2 by communication module 27 set up upload, download data cube computation;2 and electricity
Sub- wallet 1 sets up the data cube computation for uploading, downloading by data-interface 14;The 3rd, the background service of this on-line payment device is provided
Hold;The 4th, the interface of the Capital Flow of whole on-line payment device and financial sector is provided;5th, it is charge machine 2, stored value card 1 provides
Or cancellation is authorized, there is provided include:Key updating, algorithm update and upgrade, access right is adjusted, the term of validity is adjusted, stored value card
Supplement with money, charge machine is paid in interior service;6th, preserving includes:Authorized user's inventory, blacklist, Operation Log, charge machine inventory
In interior information.
Authorized user's inventory, includes for preserving:The authorized stored value card identity that can carry out on-line payment,
Access right, the term of validity, the identity information of stored value card holder, the public-key cryptography of each stored value card.
Blacklist, for preserving authorized user's inventory in, because of arrearage, report the loss, have improper usage record and be rejected
Pay the part user profile of transaction.
Payment interface, for providing the interface of whole on-line payment device and the Capital Flow of financial sector.
Operation Log collects, the operation for include all charge machines, the inquiry of stored value card for preservation, supplementing, consuming with money
Time, payment, payment process data parameters are in interior information.
Charge machine inventory, includes for preserving:The authorized charge machine identity that can carry out on-line payment transaction,
Access right, the term of validity, the public-key cryptography of each charge machine.
One complete device, by one group of server 3, no less than a charge machine 2, no less than 1 group of a stored value card
Into;Server 3 can be possessed the module of charge machine 2 described in the invention and its equipment issued rights of function so as to can
With the function that the stored value card 1 possessed in receiving device is paid;Server 3 can be possessed the present invention described in the invention
The module of middle stored value card 1 and the equipment issued rights of function so as to can possess and be paid to the charge machine 2 in device
Function.
The distribution process of stored value card 1 includes:A mandate is provided to user by server 3, authorization can be sent out
Put an authorized entity hardware device, it is also possible to be to provide a grant number for the existing equipment for being equipped with the present invention of user;And
Supplement with money for equipment, write stored value card identity, access right, the term of validity, the payment cipher of stored value card and password for inquiry,
The identity information of stored value card holder.
Encrypting and decrypting in charge machine 2 and stored value card 1 adopts same public key algorithm.
The distribution and mandate of charge machine 2 and stored value card 1, is responsible for enforcement, so as to ensure by a unit:1st, all processes
Public-key cryptography of the public key ring on the charge machine of mandate comprising all stored value cards through authorizing;2nd, all electricity through authorizing
Public-key cryptography of the public key ring of sub- wallet comprising all charge machines through authorizing;3rd, each charge machine has each unique private
There is key, each stored value card has each unique private cipher key;4th, it is all through mandate stored value cards and charge machine all
Can upgrade or extend the public-key cryptography on public key ring in networking;5th, stored value card 1 and charge machine 2 can be in networkings
When, the private cipher key of upgrading or extension itself.
Any one stored value card can be added according to AES fun () of public key algorithm with its private cipher key S
Ciphertext M that close information m is obtained, while can be close using disclosing for the corresponding stored value card on public key ring by charge machine
Decipherment algorithm gun () of key G and public key algorithm, decrypting ciphertext M obtains information m;But charge machine can not be by adopting public key
Any one public-key cryptography or other other keys in addition to the private cipher key of stored value card on ring is to same information m
Encrypt and obtain ciphertext M that stored value card private key encryption is obtained.
In the present embodiment, with one mandate stored value card 1 to one mandate charge machine 2 paid, pay by
Charge machine 2 is initiated, and payment flow process includes as follows:
GY1, charge machine 2 sends payment and invites to stored value card 1, generates unencrypted invitation code ZFYQ1, and by display
26 generation bar codes show;Invitation code ZFYQ1 includes:Buy product identification SP1, charge machine identity XID1, wait to collect money
Amount of money DFK1.
GY2, the bar code on the scanning display 26 of stored value card 1, identifies invitation code ZFYQ2, and extracts purchase product
Identify SP2, charge machine identity XID2, treat collection amount DFK2, and shown by display module 13;Stored value card 1
It is confirmed whether that agreement carries out this payment, if agreed to, into GY3, otherwise just exits payment flow.
GY3, connection server inquires about the remaining sum of stored value card, if remaining sum is sufficient, into GY4;Otherwise, payment is exited
Flow process, balance amount prompting is not enough.
GY4, stored value card 1 generates payment random code ZFR4, and generates payment code ZFM4, payment code ZFM4 bag
Include:Pay random code ZFR4, payment ZFK4, charge machine identity XID4, purchase product identification SP4, invitation code
ZFYQ4, is encrypted to payment code ZFM4 and is obtained ciphertext using the private cipher key QS and AES fun () of stored value card 1
dsZFM4;Again with the public-key cryptography XG and AES fun () of charge machine 2 to ciphertext dsZFM4 and stored value card identity
QID4 is encrypted and obtains ciphertext xgdsZFMQID4, and ciphertext xgdsZFMQID4 is sent.
GY5, charge machine 2 receives ciphertext xgdsZFMQID5, into GY5.1.
GY5.1, decrypts xgdsZFMQID5, if obtained with the private cipher key XS and decipherment algorithm gun () of charge machine 2
DsZFM5 and stored value card identity QID5, then successful decryption, into GY5.2;If decryption cannot be carried out, decryption is represented
Failure, then exit payment flow;Thereby guarantee that have and only send to pay and invite and obtain the charge machine that stored value card 1 is approved
2, payment flow below could be entered, ability received payment avoids the forgery of charge machine or in payment process, non-by other
The charge machine of method is replaced.
GY5.2, further according to stored value card identity QID5, the Public Key QS5 for selecting the stored value card 1 is calculated with decryption
Method gun () decrypting ciphertext dsZFM5, and therefrom extract payment random code ZFR5, payment ZFK5, charge machine identity
XID5, purchase product identification SP5, invitation code ZFYQ5, go forward side by side and are advanced into GY5.3;Thereby guarantee that have and only identity is
The stored value card 1 of QID5, is only possible to generate ciphertext, and carries out follow-up payment flow, confirms in payment flow, to participate in propping up
What is paid is the stored value card 1 that identity is QID5.
GY5.3, carries out following contrast verification:
1) invitation code ZFYQ1 that charge machine 2 is generated in GY1 and invitation code ZFYQ5 extracted in decrypting ciphertext from G5.2 are contrasted.
2) contrast GY1 in charge machine 2 generate treat collection amount DFK1 and from G5.2 in decrypting ciphertext extract payment
Amount of money ZFK1.
3) charge machine identity XID1 and decrypting ciphertext is extracted from G5.2 charge machine identity in GY1 is contrasted
XID5。
4) the purchase product identification SP1 that charge machine 2 is generated in GY1 and the purchase extracted in decrypting ciphertext from G5.2 are contrasted
Product identification SP5.
When 4 contrasts all distinguish consistent more than, charge machine 2 enters GY5.4, otherwise points out contrast verification, and exits
Pay flow process.
GY5.4, charge machine 2 is completed after the checking in GY5.3, generates gathering confirmation code SKQR5, and generates gathering code
SKM5 includes:Pay random code ZFR5, payment ZFK5, charge machine XID5, purchase product identification SP5, invitation code ZFYQ5
With gathering confirmation code SKQR5, select the charge machine 2 private cipher key XS AESs fun () encrypt SKM5 obtain ciphertext
XsSKM5, then xsSKM5 and charge machine identity XID5 is encrypted by the public-key cryptography QG of the stored value card 1, obtain
DgxsSKMXID5, regenerates a bar code, is displayed on bar code display module 22.
GY6, the bar code on the scanning barcode display module 22 of stored value card 1, receives ciphertext dgxsSKMXID6, enters
GY6.1。
GY6.1, is solved using the private cipher key QS and decipherment algorithm gun () of stored value card 1 to ciphertext dgxsSKMXID6
It is close, if decryption can obtain xsSKM6 and charge machine identity XID6, successful decryption, into GY6.2;If decryption nothing
Method is carried out, and represents decryption failure, then exit payment flow;Thereby guarantee that there is and only generates and send ciphertext dgxsSKMXID6
Stored value card 1, payment flow below could be entered, it is to avoid the forgery of stored value card or in payment process, by other
Illegal stored value card is replaced.
GY6.2, the public-key cryptography XG6 of the charge machine 2 is selected to ciphertext in stored value card 1 according to charge machine XID6
XsSKM6 is decrypted, and therefrom extracts payment random code ZFR6, payment ZFK6, charge machine XID6-1, purchase product
Mark SP6, invitation code ZFYQ6 and gathering confirmation code SKQR6.
GY6.3, carries out following contrast verification:
1) payment random code ZFR4 that stored value card 1 is generated in GY4 and payment random code ZFR6 extracted in GY6.2 are contrasted.
2) payment ZFK4 that stored value card 1 is generated in GY4 and payment ZFK6 extracted in GY6.2 are contrasted.
3) the charge machine identity XID4 that stored value card 1 is received in GY4, the consumption fuselage extracted in GY6.2 are contrasted
Part identifies XID6-1 and the charge machine identity XID6 for obtaining is decrypted in GY6.1.
4) the purchase product identification SP4 that stored value card 1 is received in GY4 and the purchase product mark extracted in GY6.2 are contrasted
Know SP6.
When 4 contrasts all distinguish consistent more than, charge machine 2 enters GY6.4, otherwise points out contrast verification, and exits
Flow process is paid, and by the inconsistent information of the display comparison of display module 13.
GY6.4, server 3 updates the remaining sum of stored value card, with operating time SJ, gathering confirmation code SKQR6, payment
ZFK6, charge machine identity XID6, purchase product identification SP6, invitation code ZFYQ6, payment random code ZFR6 generate operation day
Will, and the information of successful payment is shown by display module, then send one by VISIBLE LIGHT EMISSION module 17 and complete
Confirmation code QRM6 paid, confirmation code QRM6 includes:Invitation code ZFYQ6 and gathering confirmation code SKQR6.
GY7, charge machine 2 receives invitation code ZFYQ7 and gathering confirmation code SKQR7;And carry out following contrast verification:
1) invitation code ZFYQ1 that charge machine 2 is generated in GY1 and invitation code ZFYQ7 received in GY9 are contrasted.
2) gathering confirmation code SKQR1 that charge machine 2 is generated in GY6 and the gathering confirmation code received in GY7 are contrasted
SKQR7。
When 2 contrasts all distinguish consistent more than, the connection server of charge machine 2, the operating time SSJ paid with this,
Stored value card identity QID5, payment random code ZFR5, purchase product identification SP5, payment ZFK5, invitation code ZFYQ7
Operation Log is generated with gathering confirmation code SKQR7, charge machine 2 generates the mark that a flow process is successfully completed, is displayed in display
On 26.
Claims (1)
1. a kind of on-line payment device with visible ray Yu the two-way public key system certification of bar code, it is characterised in that on-line payment dress
Put including stored value card, charge machine and server;
Stored value card, including:VISIBLE LIGHT EMISSION module, bar code scan module, control module, input module, display module, password
Processing module and data-interface;Control module respectively with VISIBLE LIGHT EMISSION module, bar code scan module, input module, show mould
The electrical connection of block, cryptographic handling module and data-interface;VISIBLE LIGHT EMISSION module, it is raw for the information being input into according to control module
Into and send visible light signal;Bar code scan module, for scanning recognition bar code, and by the result of identification export mould to control
Block;Control module, is used for:1st, information to be sent is processed, is generated packet, and exported and give VISIBLE LIGHT EMISSION module,
VISIBLE LIGHT EMISSION module is driven to send visible light signal;2nd, the scanning result output of bar code scan module is received, and to scanning knot
Fruit is verified;3 and server consumed, supplemented with money, inquiry into balance, the read-write operation of Operation Log information;4th, basis is received
Information and the payment information that generates, the information that generation needs by VISIBLE LIGHT EMISSION module;5th, can by data-interface with
Server carries out data interaction;Input module, for control module input include payment, password for inquiry, payment cipher,
Operational order is in interior information;Display module, for showing payment, interface for password input, operational order and prompting letter
Breath;Cryptographic handling module, for preserving the public key ring of charge machine, the private cipher key of stored value card itself, and the letter to being input into
Breath, according to the built-in cryptography processing units of module, is encrypted using public-key cryptography or private cipher key, and close using disclosing
Key or private cipher key are decrypted;And the information after exporting encryption or decrypting;Data-interface, for providing stored value card
Network savvy, there is provided be connected and carry out the function of data exchange, data maintenance and upgrading with server;
Charge machine, including:It can be seen that Optical Receivers, bar code display module, Read-write Catrol module, Keysheet module, display, password
Coprocessor and communication module;Read-write Catrol module respectively with visible Optical Receivers, bar code display module, Keysheet module, aobvious
Show the electrical connection of device, password coprocessor and communication module;It can be seen that Optical Receivers, for receiving visible light signal, and is processed also
Original is reduced into packet into corresponding data signal;Bar code display module, for according to the input information of Read-write Catrol module,
Generate and show bar code;Read-write Catrol module, is used for:1st, the output of visible Optical Receivers is received, and gives certification;2nd, will
Information to be sent is processed, and is exported and is given bar code display module;3 and server consumed, supplemented with money, inquiry into balance, operation
The read-write operation of log information;4th, data-interface is provided, the upload and download of row information is entered by communication module and server;Key
Disk module, for Read-write Catrol module input dealing money, trading password, operational order;Display, for showing trade gold
Volume, interface for password input, operational order and information;Password coprocessor, is used for:1st, the public key of stored value card is preserved
Ring, the private cipher key of charge machine itself;2nd, to the information being input into, according to the built-in cryptography processing units of password coprocessor, adopt
It is encrypted with public-key cryptography or private cipher key, and is decrypted using public-key cryptography or private cipher key;And output adds
Information after close or decryption;Communication module, for by wired or wirelessly, connection host computer or access network
Network, so as to be connected with server;
Server, is used for:1 and charge machine by communication module set up upload, download data cube computation;2 and stored value card it is logical
Cross data-interface and set up the data cube computation for uploading, downloading;3rd, the background service for providing this on-line payment device is supported;4th, provide whole
The interface of the Capital Flow of individual on-line payment device and financial sector;5th, be charge machine, stored value card granting or cancel authorize, carry
For including:Key updating, algorithm update and upgrade, access right is adjusted, the term of validity is adjusted, stored value card is supplemented with money, charge machine is paid
Money is in interior service;6th, preserving includes:Authorized user's inventory, blacklist, Operation Log collect, charge machine inventory is in interior letter
Breath;Authorized user's inventory, includes for preserving:The authorized stored value card identity that can carry out on-line payment, use
Authority, the term of validity, the identity information of stored value card holder, the public-key cryptography of each stored value card;Blacklist, awards for preserving
In power user's inventory, because of arrearage, report the loss, have the part user profile that payment transaction is rejected improper usage record;
Interface is paid, for providing the interface of whole on-line payment device and the Capital Flow of financial sector;Operation Log collects, for protecting
Time of operation, payment, payment process data ginseng that bag deposit includes all charge machines, the inquiry of stored value card, supplements with money, consumes
Number is in interior information;Charge machine inventory, includes for preserving:The authorized consumption identity that can carry out on-line payment transaction
Mark, access right, the term of validity, the public-key cryptography of each charge machine;
Server is used for being included the module of above-mentioned charge machine and its equipment issued rights of function so as to possess in receiving device
The function that paid of stored value card;Server is used for being included the module of above-mentioned stored value card and the equipment granting of function
Authority so as to possess the function of being paid to the charge machine in device;Simultaneously a mandate is provided to user by server, awarded
Power mode is to provide an authorized entity hardware device, or provides a grant number for the user of existing device;And to set
It is standby to supplement with money, write stored value card identity, access right, the term of validity, the payment cipher of stored value card and password for inquiry, electronics
The identity information of wallet holder;
Encrypting and decrypting in charge machine and stored value card adopts same public key algorithm;The distribution of charge machine and stored value card
And mandate, enforcement is responsible for by a unit, tissue or a joint institution, so as to ensure:1st, all consumption through authorizing
Public-key cryptography of the public key ring on machine comprising all stored value cards through authorizing;2nd, the public affairs of all stored value cards through authorizing
Public-key cryptography of the key ring comprising all charge machines through authorizing;3rd, each charge machine has each unique private cipher key, often
Individual stored value card has each unique private cipher key;4th, all stored value cards and charge machine through authorizing can be in networking
When, the public-key cryptography in upgrading or extension public key ring;5th, stored value card and charge machine can upgrade or expand in networking
The private cipher key of exhibition itself;Stored value card can be added according to AES fun () of public key algorithm with its private cipher key S
Ciphertext M that close information m is obtained, while can be close using disclosing for the corresponding stored value card on public key ring by charge machine
Decipherment algorithm gun () of key G and public key algorithm, decrypting ciphertext M obtains information m;But charge machine can not be by adopting public key
Any one public-key cryptography or other other keys in addition to the private cipher key of stored value card on ring is to same information m
Encrypt and obtain ciphertext M that stored value card private key encryption is obtained;
In the on-line payment device, with one mandate stored value card to one mandate charge machine paid, pay by
Charge machine is initiated, and payment flow process includes as follows:
GY1, charge machine sends payment and invites to stored value card, generates unencrypted invitation code ZFYQ1, and is given birth to by display
Show into bar code;Invitation code ZFYQ1 includes:Buy product identification SP1, charge machine identity XID1, treat collection amount
DFK1;
GY2, the bar code on stored value card scanning display, identifies invitation code ZFYQ2, and extract purchase product identification SP2,
Charge machine identity XID2, collection amount DFK2 is treated, and shown by display module;Stored value card is confirmed whether to agree to
This payment is carried out, if agreed to, into GY3, payment flow is otherwise just exited;
GY3, connection server inquires about the remaining sum of stored value card, if remaining sum is sufficient, into GY4;Otherwise, flow of payments is exited
Journey, balance amount prompting is not enough;
GY4, stored value card generates payment random code ZFR4, and generates payment code ZFM4, and payment code ZFM4 includes:
Random code ZFR4, payment ZFK4, charge machine identity XID4, purchase product identification SP4, invitation code ZFYQ4 are paid, is adopted
The private cipher key QS and AES fun () of stored value card is encrypted to payment code ZFM4 and obtains ciphertext dsZFM4;Again with disappearing
The public-key cryptography XG and AES fun () of expense machine is encrypted to ciphertext dsZFM4 and stored value card identity QID4
To ciphertext xgdsZFMQID4, and ciphertext xgdsZFMQID4 is sent;
GY5, charge machine receives ciphertext xgdsZFMQID5, into GY5.1;
GY5.1, with the private cipher key XS of charge machine and decipherment algorithm gun () xgdsZFMQID5 is decrypted, if obtain dsZFM5 and
Stored value card identity QID5, then successful decryption, into GY5.2;If decryption cannot be carried out, decryption failure is represented, then moved back
Go out payment flow;Thereby guarantee that have and only send to pay and invite and obtain the charge machine that stored value card is approved, after could entering
The payment flow in face, could received payment, it is to avoid the forgery of charge machine or in payment process, is replaced by other illegal charge machines
Change;
GY5.2, further according to stored value card identity QID5, selects the Public Key QS5 decipherment algorithm gun of the stored value card
() decrypting ciphertext dsZFM5, and therefrom extract payment random code ZFR5, payment ZFK5, charge machine identity XID5,
Purchase product identification SP5, invitation code ZFYQ5, go forward side by side and are advanced into GY5.3;Thereby guarantee that have and only identity is for QID5's
Stored value card, is only possible to generate ciphertext, and carries out follow-up payment flow, confirms in payment flow, and participate in payment is
Identity is the stored value card of QID5;
GY5.3, carries out following contrast verification:
1) invitation code ZFYQ1 that charge machine is generated in GY1 and invitation code ZFYQ5 extracted in decrypting ciphertext from G5.2 are contrasted;
2) contrast GY1 in charge machine generate treat collection amount DFK1 and from G5.2 in decrypting ciphertext extract payment
ZFK1;
3) charge machine identity XID1 and decrypting ciphertext is extracted from G5.2 charge machine identity in GY1 is contrasted
XID5;
4) the purchase product identification SP1 that charge machine is generated in GY1 and the purchase product extracted in decrypting ciphertext from G5.2 are contrasted
Mark SP5;
When 4 contrasts all distinguish consistent more than, charge machine enters GY5.4, otherwise points out contrast verification, and exits flow of payments
Journey;
GY5.4, charge machine is completed after the checking in GY5.3, generates gathering confirmation code SKQR5, and generates gathering code SKM5
Including:Pay random code ZFR5, payment ZFK5, charge machine XID5, purchase product identification SP5, invitation code ZFYQ5 and receipts
Money confirmation code SKQR5, by private cipher key XS AESs fun () the encryption SKM5 of the charge machine ciphertext xsSKM5 is obtained, then
XsSKM5 and charge machine identity XID5 is encrypted by the public-key cryptography QG of the stored value card, dgxsSKMXID5 is obtained, is regenerated
One bar code, is displayed on bar code display module;
GY6, the bar code on stored value card scanning barcode display module, receives ciphertext dgxsSKMXID6, into GY6.1;
GY6.1, is decrypted, such as using the private cipher key QS and decipherment algorithm gun () of stored value card to ciphertext dgxsSKMXID6
Fruit decryption can obtain xsSKM6 and charge machine identity XID6, then successful decryption, into GY6.2;If decryption cannot enter
OK, decryption failure is represented, then exits payment flow;Thereby guarantee that there is and only generates and send the electricity of ciphertext dgxsSKMXID6
Sub- wallet, could enter payment flow below, it is to avoid the forgery of stored value card or in payment process, illegal by other
Stored value card is replaced;
GY6.2, then the public-key cryptography XG6 of the charge machine is selected to ciphertext xsSKM6 according to charge machine XID6 with stored value card
It is decrypted, and therefrom extracts payment random code ZFR6, payment ZFK6, charge machine XID6-1, purchase product identification
SP6, invitation code ZFYQ6 and gathering confirmation code SKQR6;
GY6.3, carries out following contrast verification:
1) payment random code ZFR4 that stored value card is generated in GY4 and payment random code ZFR6 extracted in GY6.2 are contrasted;
2) payment ZFK4 that stored value card is generated in GY4 and payment ZFK6 extracted in GY6.2 are contrasted;
3) the charge machine identity XID4 that stored value card is received in GY4, the charge machine identity extracted in GY6.2 are contrasted
XID6-1 and the charge machine identity XID6 for obtaining is decrypted in GY6.1;
4) the purchase product identification SP4 that stored value card is received in the GY4 and purchase product identification SP6 extracted in GY6.2 is contrasted;
When 4 contrasts all distinguish consistent more than, charge machine enters GY6.4, otherwise points out contrast verification, and exits flow of payments
Journey, and by the inconsistent information of display module display comparison;
GY6.4, the wallet balances of server update stored value card, with operating time SJ, gathering confirmation code SKQR6, payment
ZFK6, charge machine identity XID6, purchase product identification SP6, invitation code ZFYQ6, payment random code ZFR6 generate operation day
Will, and by display module show successful payment information, then by VISIBLE LIGHT EMISSION module send one complete pay
Confirmation code QRM6, confirmation code QRM6 includes:Invitation code ZFYQ6 and gathering confirmation code SKQR6;
GY7, charge machine receives invitation code ZFYQ7 and gathering confirmation code SKQR7;And carry out following contrast verification:
1) invitation code ZFYQ1 that charge machine is generated in GY1 and invitation code ZFYQ7 received in GY9 are contrasted;
2) gathering confirmation code SKQR1 that charge machine is generated in GY6 and gathering confirmation code SKQR7 received in GY7 are contrasted;
When 2 contrasts all distinguish consistent more than, operating time SSJ, stored value card identity that server is paid with this
QID5, payment random code ZFR5, purchase product identification SP5, payment ZFK5, invitation code ZFYQ7 and gathering confirmation code SKQR7
Operation Log is generated, and the mark that a flow process is successfully completed is generated by charge machine, shown over the display;
In payment flow, the data that charge machine sends are received from stored value card, and stored value card transmission is received from charge machine
Data, all may there is the possibility of None- identified during transmitting-receiving, so in payment flow, for None- identified
Data, and because cannot receiving data and lead to not recognize situation, device all can one setting stand-by period surpass
Shi Hou, unilaterally terminates payment flow;
In payment flow, the data sent from stored value card to charge machine, and the number sent from charge machine to stored value card
According to, the loss that may there are data during transmitting-receiving, the risk for being tampered, forging, therefore in payment flow, to each
The critical data for receiving, number generating the step of all assume before the data being currently received and payment flow or receiving
According to different, contrast verification is needed, thereby guarantee that the true, complete of transceiving data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710066536.7A CN106651364B (en) | 2017-02-07 | 2017-02-07 | Online payment device with visible light and bar code bidirectional public key system authentication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710066536.7A CN106651364B (en) | 2017-02-07 | 2017-02-07 | Online payment device with visible light and bar code bidirectional public key system authentication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106651364A true CN106651364A (en) | 2017-05-10 |
| CN106651364B CN106651364B (en) | 2023-09-01 |
Family
ID=58844522
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710066536.7A Active CN106651364B (en) | 2017-02-07 | 2017-02-07 | Online payment device with visible light and bar code bidirectional public key system authentication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106651364B (en) |
Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102117520A (en) * | 2009-12-31 | 2011-07-06 | 亿阳信通股份有限公司 | Integrated circuit (IC) card-based payment method, management device, server and mobile terminal |
| US20120330845A1 (en) * | 2011-06-24 | 2012-12-27 | Ebay, Inc. | Animated two-dimensional barcode checks |
| CN103996116A (en) * | 2014-04-21 | 2014-08-20 | 北京邮电大学 | Mobile payment system and method based on visible light communication technology |
| US20150081462A1 (en) * | 2012-07-31 | 2015-03-19 | Matthew D. Ozvat | Systems and methods for secure normative intermediation of payments processing peripherals |
| CN104850988A (en) * | 2015-05-08 | 2015-08-19 | 邹骁 | Mobile payment system, method thereof and related equipment |
| CN105117905A (en) * | 2015-07-21 | 2015-12-02 | 北京邮电大学 | Wireless Key payment system based on visible light communications and payment method |
| CN105205889A (en) * | 2015-08-27 | 2015-12-30 | 桂林理工大学 | Visible light-control access control device with hidden channel |
| CN105260886A (en) * | 2014-05-28 | 2016-01-20 | 中兴通讯股份有限公司 | Payment processing method and device, NFC (Near Field Communication) portable terminal and wearable terminal |
| CN105303379A (en) * | 2014-08-09 | 2016-02-03 | 北京互帮国际技术有限公司 | Method supporting offline guidance and confirmation of entity card payment |
| CN105407079A (en) * | 2015-09-25 | 2016-03-16 | 中城智慧科技有限公司 | Novel terminal safety soft secret key management method |
| US20160140566A1 (en) * | 2011-11-13 | 2016-05-19 | Google Inc. | Secure transmission of payment credentials |
| CN205827555U (en) * | 2016-07-11 | 2016-12-21 | 高峰 | A kind of internet intelligent gathering computer |
-
2017
- 2017-02-07 CN CN201710066536.7A patent/CN106651364B/en active Active
Patent Citations (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102117520A (en) * | 2009-12-31 | 2011-07-06 | 亿阳信通股份有限公司 | Integrated circuit (IC) card-based payment method, management device, server and mobile terminal |
| US20120330845A1 (en) * | 2011-06-24 | 2012-12-27 | Ebay, Inc. | Animated two-dimensional barcode checks |
| US20160140566A1 (en) * | 2011-11-13 | 2016-05-19 | Google Inc. | Secure transmission of payment credentials |
| US20150081462A1 (en) * | 2012-07-31 | 2015-03-19 | Matthew D. Ozvat | Systems and methods for secure normative intermediation of payments processing peripherals |
| CN103996116A (en) * | 2014-04-21 | 2014-08-20 | 北京邮电大学 | Mobile payment system and method based on visible light communication technology |
| CN105260886A (en) * | 2014-05-28 | 2016-01-20 | 中兴通讯股份有限公司 | Payment processing method and device, NFC (Near Field Communication) portable terminal and wearable terminal |
| CN105303379A (en) * | 2014-08-09 | 2016-02-03 | 北京互帮国际技术有限公司 | Method supporting offline guidance and confirmation of entity card payment |
| CN104850988A (en) * | 2015-05-08 | 2015-08-19 | 邹骁 | Mobile payment system, method thereof and related equipment |
| CN105117905A (en) * | 2015-07-21 | 2015-12-02 | 北京邮电大学 | Wireless Key payment system based on visible light communications and payment method |
| CN105205889A (en) * | 2015-08-27 | 2015-12-30 | 桂林理工大学 | Visible light-control access control device with hidden channel |
| CN105407079A (en) * | 2015-09-25 | 2016-03-16 | 中城智慧科技有限公司 | Novel terminal safety soft secret key management method |
| CN205827555U (en) * | 2016-07-11 | 2016-12-21 | 高峰 | A kind of internet intelligent gathering computer |
Non-Patent Citations (2)
| Title |
|---|
| 戈泉月,车力军: "基于多因素认证的网络安全支付模式研究", 《技术研究》, no. 12 * |
| 王亚涛;赵波;陶威;: "基于无证书公钥密码的HCE移动支付方案", 计算机工程与设计, no. 01 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106651364B (en) | 2023-09-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10515362B2 (en) | Methods and apparatus for card transactions | |
| WO2020072424A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| EP3861506A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| AU2019355834B2 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| CN104662570A (en) | System and method for transmitting data | |
| WO2020072340A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| WO2020072670A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| US20220239494A1 (en) | Systems and methods for inventory management using cryptographic authentication of contactless cards | |
| EP3861511A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| CN107230078B (en) | Method and system for paying digital currency using a visual digital currency chip card | |
| AU2019351906A1 (en) | Systems and methods for cryptographic authentication of contactless cards | |
| CN106910068B (en) | Multi-algorithm multi-key optical authentication offline payment method | |
| CN106910059A (en) | Visible ray and the offline electronic payment method of the two-way public key system certification of bar code | |
| CN106651375A (en) | Double-medium offline payment device having VLC and Barcode public-key system | |
| CN106920096A (en) | Double media quick offline electronic payment method of double certifications under public key system | |
| CN106600274B (en) | Multi-algorithm multi-key optical authentication offline payment device | |
| CN106897881A (en) | On-line payment method with visible ray Yu the two-way public key system certification of bar code | |
| CN206541336U (en) | A kind of on-line payment device of two-way public key system certification | |
| CN106651364A (en) | Online payment device for authentication through visible light and barcode two-way public-key system | |
| CN207198911U (en) | A kind of double medium offline electronic payment devices | |
| CN106920095A (en) | Band hides the light certification offline electronic payment method of eap-message digest | |
| CN101425151B (en) | Novel integrated circuit card with card reading device and relevant trading method | |
| CN106910058A (en) | The quick offline electronic payment method of light certification with hidden channel | |
| CN106920094A (en) | On-line payment device with visible ray Yu bar code two-way authentication |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20170510 Assignee: Guangxi Zhaoyang Technology Co.,Ltd. Assignor: GUILIN University OF TECHNOLOGY Contract record no.: X2023980044580 Denomination of invention: Online payment device with visible light and barcode bidirectional public key system authentication Granted publication date: 20230901 License type: Common License Record date: 20231027 |
|
| EE01 | Entry into force of recordation of patent licensing contract |