CN106651364B - Online payment device with visible light and bar code bidirectional public key system authentication - Google Patents
Online payment device with visible light and bar code bidirectional public key system authentication Download PDFInfo
- Publication number
- CN106651364B CN106651364B CN201710066536.7A CN201710066536A CN106651364B CN 106651364 B CN106651364 B CN 106651364B CN 201710066536 A CN201710066536 A CN 201710066536A CN 106651364 B CN106651364 B CN 106651364B
- Authority
- CN
- China
- Prior art keywords
- consumer
- payment
- electronic wallet
- module
- code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 230000002457 bidirectional effect Effects 0.000 title claims abstract description 6
- 238000012545 processing Methods 0.000 claims abstract description 24
- 238000004891 communication Methods 0.000 claims abstract description 22
- 238000000034 method Methods 0.000 claims description 44
- 230000008569 process Effects 0.000 claims description 42
- 238000012790 confirmation Methods 0.000 claims description 36
- 238000012795 verification Methods 0.000 claims description 20
- 238000013475 authorization Methods 0.000 claims description 18
- 230000000052 comparative effect Effects 0.000 claims description 10
- 230000006855 networking Effects 0.000 claims description 7
- 239000000284 extract Substances 0.000 claims description 5
- 230000003993 interaction Effects 0.000 claims description 3
- 238000012423 maintenance Methods 0.000 claims description 3
- 238000005242 forging Methods 0.000 claims description 2
- 230000008520 organization Effects 0.000 claims description 2
- 238000005516 engineering process Methods 0.000 description 6
- 238000004321 preservation Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
- G06Q20/367—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
- G06Q20/3674—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3274—Short range or proximity payments by means of M-devices using a pictured code, e.g. barcode or QR-code, being displayed on the M-device
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
Abstract
The invention discloses an online payment device with visible light and bar code bidirectional public key system authentication. The device comprises an electronic wallet, a consumer and a server, wherein the electronic wallet comprises a visible light emission module, a bar code scanning module, a control module, an input module, a display module, a password processing module and a data interface; the consumer comprises a visible light receiving module, a bar code display module, a read-write control module, a keyboard module, a display, a password coprocessor and a communication module; the payment implementation of the device is completed by a consumer, an electronic wallet and a server; the electronic wallet sends visible light signals and scans the bar codes of the consumer, the consumer receives the visible light signals and generates display bar codes to scan the electronic wallet, and under the support of the server, the public key cryptosystem is adopted to verify the data information of the two payment parties; the invention provides an effective, safe and non-repudiation online payment device.
Description
Technical Field
The invention belongs to the technical field of optical payment, and particularly relates to an online payment device with visible light and bar code bidirectional public key system authentication.
Background
The visible light communication (Visible Light Communication, VLC for short) technology is a method for realizing wireless communication by using high-frequency flickering lamplight which cannot be perceived by human eyes as an information carrier, carrying signals by using high-frequency flickering of LEDs at a data transmitting end and collecting signals by using a photosensitive element with high-speed response at a receiving end.
The "code scanning" is a popular information acquisition mode at present, and usually, a camera of a smart phone is used for shooting a bar code and identifying information from the bar code.
The code scanning payment is an on-line payment mode means developed on the basis of the code scanning technology, weChat, payment treasures and other technologies. The payment means of the code scanning payment is similar to the traditional cashless transaction means, and belongs to online transaction, and the original magnetic card system is a typical online transaction system.
The public key cryptosystem is an important branch in modern cryptography, is widely applied to the fields of electronic signature, authentication and the like, and is applied to electronic commerce and electronic government.
The invention is inspired by VLC technology, code scanning payment and other modes, and an online payment device is provided by virtue of intelligent equipment such as a smart phone, a tablet personal computer and the like with an LED flash lamp and a camera, and a mutual authentication method of transaction information is carried out in the device by adopting a public key cryptosystem, so that the transaction process of the device is safer.
Disclosure of Invention
The invention aims to provide an online payment device with visible light and bar code bidirectional public key system authentication.
The invention is realized in the following way: an online payment device with visible light and bar code two-way public key system authentication, comprising: electronic wallets, consumer machines, and servers.
An electronic wallet, comprising: the device comprises a visible light emission module, a bar code scanning module, a control module, an input module, a display module, a password processing module and a data interface; the control module is respectively and electrically connected with the visible light emission module, the bar code scanning module, the input module, the display module, the password processing module and the data interface; the visible light emission module is used for generating and sending visible light signals according to the information input by the control module; the bar code scanning module is used for scanning and identifying bar codes and outputting the identification result to the control module; a control module for: 1. processing information to be transmitted, generating a data packet, outputting the data packet to a visible light transmitting module, and driving the visible light transmitting module to transmit a visible light signal; 2. receiving the scanning result output of the bar code scanning module, and verifying the scanning result; 3. performing consumption, recharging, balance inquiry and operation log information reading and writing operations with a server; 4. generating information required to pass through a visible light emission module according to the received information and the generated payment information; 5. the data interaction can be carried out with the server through the data interface; the input module is used for inputting information including payment amount, inquiry password, payment password and operation instruction to the control module; the display module is used for displaying the payment amount, the password input interface, the operation instruction and the prompt information; the password processing module is used for storing a public key ring of the consumer, a private key of the electronic purse, encrypting input information by adopting the public key or the private key according to a password processing unit arranged in the module, and decrypting by adopting the public key or the private key; and outputting the encrypted or decrypted information; the data interface is used for providing networking function of the electronic wallet and providing functions of connecting with the server and carrying out data exchange, data maintenance and upgrading.
A consumer, comprising: the device comprises a visible light receiving module, a bar code display module, a read-write control module, a keyboard module, a display, a password coprocessor and a communication module; the read-write control module is respectively and electrically connected with the visible light receiving module, the bar code display module, the keyboard module, the display, the password coprocessor and the communication module; the visible light receiving module is used for receiving the visible light signals, processing and restoring the visible light signals into corresponding digital signals and restoring the digital signals into data packets; the bar code display module is used for generating and displaying a bar code according to the input information of the read-write control module; the read-write control module is used for: 1. receiving the output of the visible light receiving module and authenticating; 2. processing the information to be sent and outputting the processed information to a bar code display module; 3. performing consumption, recharging, balance inquiry and operation log information reading and writing operations with a server; 4. providing a data interface, and uploading and downloading information with a server through a communication module; the keyboard module is used for inputting transaction amount, transaction password and operation instruction to the read-write control module; the display is used for displaying transaction amount, a password input interface, an operation instruction and prompt information; a cryptographic coprocessor for: 1. storing the public key ring of the electronic wallet, and the private key of the consumer; 2. encrypting the input information by adopting a public key or a private key according to a cipher processing unit arranged in a cipher coprocessor, and decrypting by adopting the public key or the private key; and outputting the encrypted or decrypted information; and the communication module is used for connecting the upper computer or the access network in a wired or wireless mode so as to be connected with the server.
A server for: 1. establishing uploading and downloading data connection with a consumer through a communication module; 2. establishing uploading and downloading data connection with the electronic wallet through a data interface; 3. providing background service support of the online payment device; 4. providing an interface for the entire online payment device to fund flow of the financial system; 5. providing for the issuance or de-authorization of a consumer, electronic wallet, comprising: key update, algorithm update and upgrade, use right adjustment, validity period adjustment, electronic wallet recharging, and consumer payment; 6. the preservation comprises the following steps: information including an authorized user list, a blacklist, an operation log summary and a consumer list; an authorized user list for storing information comprising: the electronic wallet identity which is authorized to pay online, the use authority, the validity period, the identity information of the electronic wallet holder and the public key of each electronic wallet; the system comprises a blacklist, a payment interface, a financial system, a payment server, a financial system and a payment server, wherein the blacklist is used for storing part of user information of a payment transaction refused due to arrearages, loss reporting and improper use records in an authorized user list; the operation log summarization is used for storing information including inquiry of all consumers and electronic wallets, recharging, time of consuming operation, payment amount and payment process data parameters; a consumer manifest for storing instructions comprising: the identity of the consumer machine that has been authorized to conduct the online payment transaction, the rights of use, the expiration date, the public key of the individual consumer machine.
The server is used for issuing rights to the equipment comprising the module of the consumer and the functions thereof, so that the consumer has the function of accepting the payment of the electronic wallet in the device; the server is used for issuing rights to the equipment comprising the module and the functions of the electronic wallet, so that the electronic wallet has the function of paying to a consumer in the device; meanwhile, a server issues an authorization to the user, wherein the authorization mode is to issue an authorization entity hardware device or provide an authorization number for the user of the existing device; and recharging the equipment, and writing the identity information of the electronic wallet holder, the use permission, the validity period, the payment password and the inquiry password of the electronic wallet.
The encryption and decryption in the consumer and the electronic wallet adopt the same public key cryptographic algorithm; the issuance and authorization of consumer and electronic wallets is carried out by an entity, organization or a federation, ensuring that: 1. the public key ring on all authorized consumer machines contains the public keys of all authorized electronic wallets; 2. the public key ring of all authorized electronic wallets contains the public keys of all authorized consumer machines; 3. each consumer has a respective unique private key, and each electronic wallet has a respective unique private key; 4. all authorized electronic wallets and consumers can upgrade or extend the public key on the public key ring when networking; 5. the electronic wallet and the consumer can upgrade or expand own private keys when networking; the electronic wallet can obtain ciphertext M by using the information M encrypted by the private key S according to the encryption algorithm fun () of the public key cryptographic algorithm, and can obtain the information M by using the public key G of the electronic wallet and the decryption algorithm gun () of the public key cryptographic algorithm corresponding to the public key ring by the consumer; but the consumer cannot obtain the ciphertext M of the electronic wallet encrypted with the private key by encrypting the same information M with any one of the public keys on the public key ring or other keys other than the private key of the electronic wallet.
In the online payment device, an authorized electronic wallet is used for paying to an authorized consumer, the payment is initiated by the consumer, and the payment flow process comprises the following steps:
GY1, the consumer sends out payment invitation to the electronic wallet, generates an unencrypted invitation code ZFYQ1, and generates and displays a bar code by a display; the invitation code ZFYQ1 includes: purchase product identification SP1, consumer body identification XID1, and amount to be refunded DFK1.
GY2, the electronic wallet scans the bar code on the display, recognizes the invitation code ZFYQ2, extracts the purchase product identification SP2, the consumer body identification XID2 and the amount to be received DFK2, and displays the result through the display module; the electronic wallet confirms whether to agree to pay this time, if agree, go to GY3, otherwise, exit the payment flow.
GY3, the connection server inquires the balance of the electronic purse, and if the balance is sufficient, GY4 is entered; otherwise, the payment process is exited to prompt insufficient balance.
GY4, the electronic wallet generates a payment random code ZFR4 and generates a payment code ZFM4, the payment code ZFM4 comprises: the payment random code ZFR4, the payment amount ZFK4, the consumer identity mark XID4, the purchase product mark SP4 and the invitation code ZFYQ4 are encrypted by adopting the private key QS of the electronic wallet and the encryption algorithm fun () to obtain a ciphertext dsZFM4; and encrypting the ciphertext dsZFM4 and the electronic wallet identity mark QID4 by using a public key XG and an encryption algorithm fun () of the consumer to obtain the ciphertext xgdsZFMQID4, and sending the ciphertext xgdsZFMQID 4.
GY5, the consumer receives the ciphertext xgdsZFMQID5 and enters GY5.1.
GY5.1, decrypting xgdsZFMQID5 by using a private key XS of a consumer and a decryption algorithm gun (), and if dsZFM5 and an electronic wallet identity QID5 are obtained, successfully decrypting and entering GY5.2; if the decryption cannot be performed, indicating that the decryption fails, exiting the payment flow; therefore, only the consumer machine which sends out payment invitation and is approved by the electronic wallet can enter the following payment flow and can receive the money, and the falsification of the consumer machine or the replacement of the consumer machine by other illegal consumer machines in the payment process is avoided.
GY5.2, then according to the identity mark QID5 of the electronic wallet, the public key QS5 of the electronic wallet is selected to decrypt the ciphertext dsZFM5 by using a decryption algorithm gun (), and a payment random code ZFR5, a payment amount ZFK5, a consumption identity mark XID5, a purchase product mark SP5 and an invitation code ZFYQ5 are extracted from the ciphertext dsZFM5, and go into GY5.3, thereby ensuring that only the electronic wallet with the identity mark QID5 can generate the ciphertext, and carrying out the subsequent payment process, and confirming that the electronic wallet with the identity mark QID5 participates in the payment process.
GY5.3, the following comparative verification was performed:
1) The consumer generated invitation code ZFYQ1 in GY1 is compared with the invitation code ZFYQ5 extracted from the decrypted ciphertext in G5.2.
2) Comparing the payment amount DFK1 generated by the consumer in GY1 with the payment amount ZFK1 extracted from the decrypted ciphertext in G5.2.
3) The consumer body identifier XID1 in GY1 is compared with the consumer body identifier XID5 extracted from the decrypted ciphertext in G5.2.
4) Comparing the consumer generated purchase product identifier SP1 in GY1 with the purchase product identifier SP5 extracted from the decrypted ciphertext in G5.2.
And when the 4 comparisons are consistent, the consumer enters GY5.4, otherwise, prompt for comparison verification and exit the payment flow.
After the consumer completes the verification in GY5.3, GY5.4 generates a collection confirmation code SKQR5, and generates a collection code SKM5, wherein the collection confirmation code SKM5 comprises a payment random code ZFR5, a payment amount ZFK5, a consumer XID5, a purchase product identifier SP5, an invitation code ZFYQ5 and a collection confirmation code SKQR5, the private key XS of the consumer encrypts the SKM5 by using an encryption algorithm fun () to obtain a ciphertext xsSKM5, and the public key QG of the electronic wallet encrypts the xsSKM5 and the consumer identity identifier XID5 to obtain a dgxsSKMXID5, and a bar code is regenerated and displayed on a bar code display module.
GY6, the electronic wallet scans the bar code on the bar code display module, receives the ciphertext dgxsSKMXID6, and enters GY6.1.
GY6.1, decrypting the ciphertext dgxsSKMXID6 by adopting a private key QS of the electronic wallet and a decryption algorithm gun (), and if the decryption can obtain xsSKM6 and a consumer body identifier XID6, successfully decrypting and entering GY6.2; if the decryption cannot be performed, indicating that the decryption fails, exiting the payment flow; therefore, the electronic wallet capable of generating and sending the ciphertext dgxsSKMXID6 can enter the following payment flow, and the electronic wallet is prevented from being forged or replaced by other illegal electronic wallets in the payment process.
GY6.2, then the public key XG6 of the consumer is selected according to the consumer XID6 in the electronic wallet to decrypt the ciphertext xsSKM6, and a payment random code ZFR6, a payment amount ZFK6, the consumer XID6-1, a purchase product identifier SP6, an invitation code ZFYQ6 and a receipt confirmation code SKQR6 are extracted from the ciphertext xsSKM 6.
GY6.3, the following comparative verification was performed:
1) Comparing the payment random code ZFR4 generated by the electronic wallet in GY4 with the payment random code ZFR6 extracted in GY 6.2.
2) The payment amount ZFK4 generated by the e-wallet in GY4 is compared with the payment amount ZFK6 extracted in GY 6.2.
3) Comparing the consumer identity mark XID4 received by the electronic wallet in GY4, the consumer identity mark XID6-1 extracted in GY6.2 and the consumer identity mark XID6 decrypted in GY 6.1.
4) Comparing the purchase product identifier SP4 received by the electronic wallet in GY4 with the purchase product identifier SP6 extracted in GY 6.2.
When the 4 comparisons are consistent, the consumer enters GY6.4, otherwise, the consumer prompts the comparison verification, exits the payment process, and displays prompt information of inconsistent comparison through the display module.
GY6.4, the server updates the wallet balance of the electronic wallet, generates an operation log by using the operation time SJ, the receipt confirmation code SKQR6, the payment amount ZFK6, the consumption identity mark XID6, the purchase product mark SP6, the invitation code ZFYQ6 and the payment random code ZFR6, displays prompt information of successful payment through a display module, and sends a confirmation code QRM6 for completing payment through a visible light transmitting module, wherein the confirmation code QRM6 comprises: an invitation code ZFYQ6 and a receipt confirmation code SKQR6.
GY7, the consumer receives the invitation code ZFYQ7 and the receipt confirmation code SKQR7; and the following comparative verification is performed:
1) Comparing the inviting code ZFYQ1 generated by the consumer in GY1 with the inviting code ZFYQ7 received in GY 9;
2) Comparing the receipt confirmation code SKQR1 generated by the consumer in GY6 with the receipt confirmation code SKQR7 received in GY 7.
When the above 2 comparisons are consistent, the server generates an operation log by using the operation time SSJ of the payment, the electronic wallet identity mark QID5, the payment random code ZFR5, the purchase product mark SP5, the payment amount ZFK5, the invitation code ZFYQ7 and the collection confirmation code SKQR7, and generates an mark that the flow is successfully completed by the consumer, and the mark is displayed on the display.
In the payment process, the data sent by the consumer is received from the electronic wallet, and the data sent by the electronic wallet is received from the consumer, so that the device can unilaterally end the payment process after a set waiting time is overtime for the unidentified data and the unidentified data cannot be received in the payment process.
In the payment process, the data sent from the electronic wallet to the consumer and the data sent from the consumer to the electronic wallet may have risks of losing, tampering and forging in the process of receiving and sending, so in the payment process, the key data received each time is assumed to be different from the data generated or received in the previous step of the payment process, and comparison and verification are required, thereby ensuring the reality and completeness of the received and sent data.
The invention combines the visible light communication technology and the bar code scanning recognition technology, uses the smart phone, the tablet personal computer and other devices as the carrier of the electronic wallet, adopts the public key cryptosystem between the consumer and the electronic wallet to verify the identity and the transaction information, effectively improves the safety of the online payment device and the non-repudiation of the two parties of the transaction. The invention realizes online payment by using a device carried by a person, so that the person can travel more conveniently, and the safety of online payment is improved to a certain extent.
Drawings
Fig. 1 is a schematic structural view of the present invention.
Fig. 2 is a structural diagram of an apparatus in an embodiment of the present invention.
The marks in the figure: 1-an electronic wallet; 2-a consumer; 3-a server; 11-a control module; 12-an input module; 13-a display module; 14-data interface; 15-a bar code scanning module; 17-a visible light emitting module; 18-a cryptographic processing module; 21-a read-write control module; 22-bar code display module; 24-a visible light receiving module; 25-a keyboard module; 26-a display; a 27-communication module; 28-cryptographic coprocessor.
Detailed Description
Examples:
an online payment device with visible light and bar code two-way public key system authentication, comprising: an electronic wallet 1, a consumer 2 and a server 3.
An electronic wallet 1 comprising: the device comprises a control module 11, an input module 12, a display module 13, a data interface 14, a bar code scanning module 15, a visible light emitting module 17 and a password processing module 18; the control module 11 is electrically connected with the input module 12, the display module 13, the data interface 14, the bar code scanning module 15, the visible light emitting module 17 and the password processing module 18 respectively.
The visible light emitting module 17 is configured to generate and transmit a visible light signal according to the information input by the control module 11.
The bar code scanning module 15 is used for scanning the identification bar code and outputting the identification result to the control module 11.
A control module 11 for: 1. the information to be sent is processed to generate a data packet, and the data packet is output to the visible light emission module 17 to drive the visible light emission module 17 to send visible light signals; 2. receiving the scanning result output of the bar code scanning module 15 and verifying the scanning result; 3. the system is connected with a server 3 for consumption, recharging, balance inquiry and operation log information reading and writing; 4. generating information to be transmitted through the visible light emission module 17 according to the received information and the generated payment information; 5. data interaction with the server 3 can take place via the data interface 14.
The input module 12 is configured to input information including a payment amount, a query password, a payment password, and an operation instruction to the control module 11.
The display module 13 is used for displaying payment amount, a password input interface, operation instructions and prompt information.
The cryptographic processing module 18 is used for storing the public key ring of the consumer, the private key of the electronic purse, encrypting the input information by adopting the public key or the private key and decrypting the input information by adopting the public key or the private key according to the cryptographic processing unit built in the module; and outputs the encrypted or decrypted information.
The data interface 14 is used for providing the networking function of the electronic wallet 1, and providing the functions of data exchange, data maintenance and upgrading, which are connected with the server 3.
The electronic wallet 1 is implemented by a smart phone equipped with a flash and a camera.
A consumer 2 comprising: the device comprises a visible light receiving module 24, a bar code display module 22, a read-write control module 21, a keyboard module 25, a display 26, a communication module 27 and a password coprocessor 28; the read-write control module 21 is electrically connected with the visible light receiving module 24, the bar code display module 22, the keyboard module 25, the display 26, the communication module 27 and the password coprocessor 28 respectively.
The visible light receiving module 24 is configured to receive the visible light signal, process and restore the visible light signal to a corresponding digital signal, and restore the digital signal to a data packet.
The bar code display module 22 is configured to generate and display a bar code according to the input information of the read-write control module 21.
A read-write control module 21 for: 1. receiving the output of the visible light receiving module 24 and authenticating; 2. the information to be sent is processed and output to the bar code display module 22; 3. performing read-write operations of information including consumption, recharging, balance inquiry and operation log with the server 3; 4. a communication interface is provided for uploading and downloading information with the server 3 via the communication module 27.
Cashbox module 23 for holding a card comprising: operation log, collection consumption authority, blacklist, balance of collection, operation password, validity period and information of production and release mechanism.
The keyboard module 25 is used for inputting transaction amount, transaction password and operation instruction to the read-write control module 21.
And a display 26 for displaying the transaction amount, the password input interface, the operation instruction and the prompt information.
A cryptographic coprocessor 18 for storing the public key ring of the electronic wallet 1, the private key of the consumer 1 itself, and for encrypting the input information by using the public key or the private key and decrypting by using the public key or the private key according to a cryptographic processing unit built in the cryptographic coprocessor 18; and outputs the encrypted or decrypted information.
The communication module 27 is configured to connect to a host computer or an access network through a wired or wireless manner, so as to connect to a server.
A server 3 for: 1. establishing an uploaded and downloaded data connection with the consumer 2 through the communication module 27; 2. establishing uploading and downloading data connection with the electronic wallet 1 through a data interface 14; 3. providing background service support of the online payment device; 4. providing an interface for the entire online payment device to fund flow of the financial system; 5. providing for the consumer 2, the electronic wallet 1 to issue or cancel authorization includes: key update, algorithm update and upgrade, use right adjustment, validity period adjustment, electronic wallet recharging, and consumer payment; 6. the preservation comprises the following steps: information including authorized user list, blacklist, operation log, and consumer list.
An authorized user list for storing information comprising: the electronic wallet identity which is authorized to make online payment, the use authority, the validity period, the identity information of the electronic wallet holder, and the public key of each electronic wallet.
And the blacklist is used for storing the part of user information of the authorized user list, which is refused to pay the transaction due to arrearages, loss reporting and improper use records.
A payment interface for providing an interface for the entire online payment device to funds flow to the financial system.
The operation log summary is used for storing information including inquiry of all consumers and electronic wallets, recharging, time of operation of consumption, payment amount and payment process data parameters.
A consumer manifest for storing instructions comprising: the identity of the consumer machine that has been authorized to conduct the online payment transaction, the rights of use, the expiration date, the public key of the individual consumer machine.
A complete device, which consists of a group of servers 3, at least one consumer 2 and at least one electronic wallet 1; the server 3 can issue authority to the device with the module of the consumer 2 and the functions thereof described in the invention, so that the device can have the function of accepting payment by the electronic wallet 1 in the device; the server 3 may issue rights to the device having the modules and functions of the electronic wallet 1 of the present invention described in the present invention, so that it may have a function of making payment to the consumer 2 in the device.
The issuing process of the electronic wallet 1 includes: the server 3 issues an authorization to the user, wherein the authorization mode can be to issue an authorization entity hardware device or provide an authorization number for the device provided with the invention existing by the user; and recharging the equipment, and writing the identity information of the electronic wallet holder, the use permission, the validity period, the payment password and the inquiry password of the electronic wallet.
The encryption and decryption in the consumer 2 and the electronic wallet 1 use the same public key cryptographic algorithm.
The issuance and authorization of the consumer 2 and the electronic wallet 1 is carried out by a unit responsible for ensuring that: 1. the public key ring on all authorized consumer machines contains the public keys of all authorized electronic wallets; 2. the public key ring of all authorized electronic wallets contains the public keys of all authorized consumers, 3, each consumer has a unique private key, and each electronic wallet has a unique private key; 5. both the electronic wallet 1 and the consumer 2 may upgrade or extend their own private keys when networked.
Any electronic wallet can obtain ciphertext M by using information M encrypted by a private key S according to an encryption algorithm fun () of a public key cryptographic algorithm, and meanwhile, a consumer can obtain information M by using a public key G of the electronic wallet corresponding to the public key ring and a decryption algorithm gun () of the public key cryptographic algorithm to decrypt the ciphertext M; but the consumer cannot obtain the ciphertext M of the electronic wallet encrypted with the private key by encrypting the same information M with any one of the public keys on the public key ring or other keys other than the private key of the electronic wallet.
In this embodiment, an authorized electronic wallet 1 is used to make a payment to an authorized consumer 2, the payment is initiated by the consumer 2, and the payment process includes the following steps:
GY1, the consumer 2 sends out payment invitation to the electronic wallet 1, generates an unencrypted invitation code ZFYQ1, and generates bar code for display by the display 26; the invitation code ZFYQ1 includes: purchase product identification SP1, consumer body identification XID1, and amount to be refunded DFK1.
GY2, the electronic wallet 1 scans the bar code on the display 26, recognizes the invitation code ZFYQ2, extracts the purchase product identification SP2, the consumer body identification XID2 and the amount to be received DFK2, and displays the result through the display module 13; the electronic wallet 1 confirms whether to agree to make the payment, if so, goes to GY3, otherwise, exits the payment flow.
GY3, the connection server inquires the balance of the electronic purse, and if the balance is sufficient, GY4 is entered; otherwise, the payment process is exited to prompt insufficient balance.
GY4, the electronic wallet 1 generates a payment random code ZFR4 and generates a payment code ZFM4, the payment code ZFM4 comprising: the payment random code ZFR4, the payment amount ZFK4, the consumer identity mark XID4, the purchase product mark SP4 and the invitation code ZFYQ4 are encrypted by adopting the private key QS and the encryption algorithm fun () of the electronic wallet 1 to obtain a ciphertext dsZFM4; and encrypting the ciphertext dsZFM4 and the electronic wallet identity mark QID4 by using the public key XG and the encryption algorithm fun () of the consumer 2 to obtain the ciphertext xgdsZFMQID4, and sending the ciphertext xgdsZFMQID 4.
GY5, the consumer 2 receives the ciphertext xgdsZFMQID5 and enters GY5.1.
GY5.1, decrypting xgdsZFMQID5 by using private key XS of the consumer 2 and a decryption algorithm gun (), and if dsZFM5 and electronic wallet identity QID5 are obtained, successfully decrypting and entering GY5.2; if the decryption cannot be performed, indicating that the decryption fails, exiting the payment flow; it is thereby ensured that only the consumer 2 issuing the payment invitation and authorized by the electronic wallet 1 can enter the following payment process and receive the money, avoiding counterfeiting of the consumer or replacement by other illegal consumers during the payment process.
GY5.2, then according to the identity mark QID5 of the electronic wallet, the public key QS5 of the electronic wallet 1 is selected to decrypt the ciphertext dsZFM5 by using a decryption algorithm gun (), and a payment random code ZFR5, a payment amount ZFK5, a consumption identity mark XID5, a purchase product mark SP5 and an invitation code ZFYQ5 are extracted from the ciphertext dsZFM5, and go into GY5.3, thereby ensuring that only the electronic wallet 1 with the identity mark QID5 can generate the ciphertext, and carrying out the subsequent payment process, and confirming that the electronic wallet 1 with the identity mark QID5 takes part in payment in the payment process.
GY5.3, the following comparative verification was performed:
1) The invitation code ZFYQ1 generated by the consumer 2 in GY1 is compared with the invitation code ZFYQ5 extracted from the decrypted ciphertext in G5.2.
2) And comparing the amount to be received DFK1 generated by the consumer 2 in GY1 with the payment amount ZFK1 extracted from the decrypted ciphertext in G5.2.
3) The consumer body identifier XID1 in GY1 is compared with the consumer body identifier XID5 extracted from the decrypted ciphertext in G5.2.
4) Comparing the purchase product identifier SP1 generated by the consumer 2 in GY1 with the purchase product identifier SP5 extracted from the decrypted ciphertext in G5.2.
When the above 4 comparisons are consistent, the consumer 2 enters GY5.4, otherwise, prompt for comparative verification, and exit the payment process.
After the consumer 2 completes the verification in GY5.3, GY5.4 generates a collection confirmation code SKQR5, and generates a collection code SKM5, wherein the collection confirmation code SKM5 comprises a payment random code ZFR5, a payment amount ZFK5, a consumer XID5, a purchase product identifier SP5, an invitation code ZFYQ5 and a collection confirmation code SKQR5, a private key XS of the consumer 2 is selected to encrypt the SKM5 by using an encryption algorithm fun () to obtain a ciphertext xsSKM5, then the public key QG of the electronic wallet 1 encrypts the xsSKM5 and the consumer body identifier XID5 to obtain a dgxsSKMXID5, and a bar code is generated and displayed on a bar code display module 22.
GY6, the electronic wallet 1 scans the bar code on the bar code display module 22, receives the ciphertext dgxsSKMXID6, and enters GY6.1.
GY6.1, decrypting the ciphertext dgxsSKMXID6 by adopting a private key QS of the electronic wallet 1 and a decryption algorithm gun (), and if the decryption can obtain xsSKM6 and a consumer body identifier XID6, successfully decrypting and entering GY6.2; if the decryption cannot be performed, indicating that the decryption fails, exiting the payment flow; therefore, the electronic wallet 1 which generates and sends the ciphertext dgxsSKMXID6 can enter the following payment flow, and the electronic wallet is prevented from being forged or being replaced by other illegal electronic wallets in the payment process.
GY6.2, the electronic wallet 1 decrypts the ciphertext xsSKM6 according to the public key XG6 of the consumer 2 selected by the consumer XID6, and extracts the payment random code ZFR6, the payment amount ZFK6, the consumer XID6-1, the purchase product identifier SP6, the invitation code ZFYQ6 and the receipt confirmation code SKQR6.
GY6.3, the following comparative verification was performed:
1) The payment random code ZFR4 generated by the electronic wallet 1 in GY4 is compared with the payment random code ZFR6 extracted in GY 6.2.
2) The payment amount ZFK4 generated by the electronic wallet 1 in GY4 is compared with the payment amount ZFK6 extracted in GY 6.2.
3) Comparing the consumer identity XID4 received by the electronic wallet 1 in GY4, the consumer identity XID6-1 extracted in GY6.2 and the consumer identity XID6 decrypted in GY 6.1.
4) The purchase product identifier SP4 received by the electronic wallet 1 in GY4 is compared with the purchase product identifier SP6 extracted in GY 6.2.
When the above 4 comparisons are consistent, the consumer 2 enters GY6.4, otherwise, prompts the comparison verification, exits the payment process, and displays prompt information of inconsistent comparison through the display module 13.
GY6.4, the server 3 updates the balance of the electronic wallet, generates an operation log by using the operation time SJ, the receipt confirmation code SKQR6, the payment amount ZFK6, the consumption identity mark XID6, the purchase product mark SP6, the invitation code ZFYQ6 and the payment random code ZFR6, displays prompt information of successful payment through a display module, and sends a confirmation code QRM6 for completing payment through a visible light transmitting module 17, wherein the confirmation code QRM6 comprises: an invitation code ZFYQ6 and a receipt confirmation code SKQR6.
GY7, the consumer 2 receives the invitation code ZFYQ7 and the receipt confirmation code SKQR7; and the following comparative verification is performed:
1) Comparing the invitation code ZFYQ1 generated by the consumer 2 in GY1 with the invitation code ZFYQ7 received in GY 9.
2) Comparing the receipt confirmation code SKQR1 generated by the consumer 2 in GY6 with the receipt confirmation code SKQR7 received in GY 7.
When the above 2 comparisons are consistent, the consumer 2 connects to the server, generates an operation log by using the operation time SSJ of the present payment, the electronic wallet id QID5, the payment random code ZFR5, the purchase product id SP5, the payment amount ZFK5, the invitation code ZFYQ7 and the collection confirmation code SKQR7, and the consumer 2 generates an identification of successful completion of the flow and displays the identification on the display 26.
Claims (1)
1. An online payment device with visible light and bar code bidirectional public key system authentication is characterized by comprising an electronic wallet, a consumer and a server;
an electronic wallet, comprising: the device comprises a visible light emission module, a bar code scanning module, a control module, an input module, a display module, a password processing module and a data interface; the control module is respectively and electrically connected with the visible light emission module, the bar code scanning module, the input module, the display module, the password processing module and the data interface; the visible light emission module is used for generating and sending visible light signals according to the information input by the control module; the bar code scanning module is used for scanning and identifying bar codes and outputting the identification result to the control module; a control module for: (1) Processing information to be transmitted, generating a data packet, outputting the data packet to a visible light transmitting module, and driving the visible light transmitting module to transmit a visible light signal; (2) Receiving the scanning result output of the bar code scanning module, and verifying the scanning result; (3) Performing consumption, recharging, balance inquiry and operation log information reading and writing operations with a server; (4) Generating information required to pass through a visible light emission module according to the received information and the generated payment information; (5) The data interaction can be carried out with the server through the data interface; the input module is used for inputting information including payment amount, inquiry password, payment password and operation instruction to the control module; the display module is used for displaying the payment amount, the password input interface, the operation instruction and the prompt information; the password processing module is used for storing a public key ring of the consumer, a private key of the electronic purse, encrypting input information by adopting the public key or the private key according to a password processing unit arranged in the password processing module, and decrypting by adopting the public key or the private key; and outputting the encrypted or decrypted information; the data interface is used for providing a networking function of the electronic wallet and providing functions of connecting with a server and carrying out data exchange, data maintenance and upgrading;
A consumer, comprising: the device comprises a visible light receiving module, a bar code display module, a read-write control module, a keyboard module, a display, a password coprocessor and a communication module; the read-write control module is respectively and electrically connected with the visible light receiving module, the bar code display module, the keyboard module, the display, the password coprocessor and the communication module; the visible light receiving module is used for receiving the visible light signals, processing and restoring the visible light signals into corresponding digital signals, and restoring the digital signals into data packets; the bar code display module is used for generating and displaying a bar code according to the input information of the read-write control module; the read-write control module is used for: (1) Receiving the output of the visible light receiving module and authenticating; (2) Processing the information to be sent and outputting the processed information to a bar code display module; (3) Performing consumption, recharging, balance inquiry and operation log information reading and writing operations with a server; (4) Providing a data interface, and uploading and downloading information with a server through a communication module; the keyboard module is used for inputting transaction amount, transaction password and operation instruction to the read-write control module; the display is used for displaying transaction amount, a password input interface, an operation instruction and prompt information; a cryptographic coprocessor for: (1) Storing the public key ring of the electronic wallet, and the private key of the consumer; (2) Encrypting the input information by adopting a public key or a private key according to a cipher processing unit arranged in a cipher coprocessor, and decrypting by adopting the public key or the private key; and outputting the encrypted or decrypted information; the communication module is used for connecting an upper computer or an access network in a wired or wireless mode so as to be connected with the server;
A server for: (1) Establishing uploading and downloading data connection with a consumer through a communication module; (2) Establishing uploading and downloading data connection with the electronic wallet through a data interface; (3) providing background service support for the online payment device; (4) Providing an interface for the entire online payment device to fund flow of the financial system; (5) Providing for the issuance or de-authorization of a consumer, electronic wallet, comprising: key update, algorithm update and upgrade, use right adjustment, validity period adjustment, electronic wallet recharging, and consumer payment; (6) saving includes: information including an authorized user list, a blacklist, an operation log summary and a consumer list; an authorized user list for storing information comprising: the identity of the electronic wallet which is authorized to pay online, the use authority, the validity period, the identity information of the holder of the electronic wallet and the public key of each electronic wallet; the system comprises a blacklist, a payment interface, a financial system, a payment server, a financial system and a payment server, wherein the blacklist is used for storing part of user information of a payment transaction refused due to arrearages, loss reporting and improper use records in an authorized user list; the operation log summarization is used for storing information including inquiry of all consumers and electronic wallets, recharging, time of consuming operation, payment amount and payment process data parameters; a consumer manifest for storing instructions comprising: a consumer identity, usage rights, expiration dates, and public keys of the individual consumers that have been authorized to conduct the online payment transaction;
The server is used for issuing authority to the consumer machine, so that the consumer machine has the function of receiving the electronic wallet in the online payment device with the visible light and bar code two-way public key system authentication for payment; the server is used for issuing authority to the electronic wallet, so that the electronic wallet has the function of paying to a consumer in the online payment device with the visible light and bar code two-way public key system authentication; meanwhile, a server issues an authorization to the user, wherein the authorization mode is to issue an authorization entity hardware device or provide an authorization number for the user of the existing device; the server charges the electronic wallet, writes the electronic wallet identity, the use authority, the validity period, the payment password and the inquiry password of the electronic wallet and the identity information of the electronic wallet holder;
the encryption and decryption in the consumer and the electronic wallet adopt the same public key cryptographic algorithm; the issuance and authorization of consumer and electronic wallets is carried out by an entity, organization or a federation, ensuring that: (1) The public key ring on all authorized consumer machines contains the public keys of all authorized electronic wallets; (2) The public key ring of all authorized electronic wallets contains the public keys of all authorized consumer machines; (3) Each consumer has a respective unique private key, and each electronic wallet has a respective unique private key; (4) All authorized electronic wallets and consumers can upgrade or extend the public key on the public key ring when networking; (5) The electronic wallet and the consumer can upgrade or expand own private keys when networking; the electronic wallet can obtain ciphertext M by using the information M encrypted by the private key S according to the encryption algorithm fun () of the public key cryptographic algorithm, and can obtain the information M by using the public key G of the electronic wallet and the decryption algorithm gun () of the public key cryptographic algorithm corresponding to the public key ring by the consumer; however, the consumer cannot encrypt the same information M by using any one public key on the public key ring or other keys except the private key of the electronic wallet to obtain the ciphertext M obtained by encrypting the electronic wallet by the private key;
In the online payment device, an authorized electronic wallet is used for paying to an authorized consumer, the payment is initiated by the consumer, and the payment flow process comprises the following steps:
GY1, the consumer sends out payment invitation to the electronic wallet, generates an unencrypted invitation code ZFYQ1, and generates and displays a bar code by a display; the invitation code ZFYQ1 includes: purchase product identification SP1, consumer body identification XID1, amount to be paid DFK1;
GY2, the electronic wallet scans the bar code on the display, recognizes the invitation code ZFYQ2, extracts the purchase product identification SP2, the consumer body identification XID2 and the amount to be received DFK2, and displays the result through the display module; the electronic wallet confirms whether to agree to pay this time, if agree, enter GY3, otherwise withdraw from the payment flow;
GY3, the connection server inquires the balance of the electronic purse, and if the balance is sufficient, GY4 is entered; otherwise, the payment process is exited, and insufficient balance is prompted;
GY4, the electronic wallet generates a payment random code ZFR4 and generates a payment code ZFM4, the payment code ZFM4 comprises: the payment random code ZFR4, the payment amount ZFK4, the consumer identity mark XID4, the purchase product mark SP4 and the invitation code ZFYQ4 are encrypted by adopting the private key QS of the electronic wallet and the encryption algorithm fun () to obtain a ciphertext dsZFM4; encrypting the ciphertext dsZFM4 and the electronic wallet identity mark QID4 by using a public key XG of a consumer and an encryption algorithm fun () to obtain the ciphertext xgdsZFMQID4, and sending the ciphertext xgdsZFMQID 4;
GY5, the consumer receives the ciphertext xgdsZFMQID5 and enters GY5.1;
GY5.1, decrypting xgdsZFMQID5 by using a private key XS of a consumer and a decryption algorithm gun (), and if dsZFM5 and an electronic wallet identity QID5 are obtained, successfully decrypting and entering GY5.2; if the decryption cannot be performed, indicating that the decryption fails, exiting the payment flow; therefore, only the consumer machine which sends out payment invitation and is approved by the electronic wallet can enter the following payment flow and can receive the money, so that the counterfeiting of the consumer machine or the replacement of the consumer machine by other illegal consumer machines in the payment process is avoided;
GY5.2, according to the identity mark QID5 of the electronic wallet, select the public key QS5 of the electronic wallet to decrypt the ciphertext dsZFM5 with the decryption algorithm gun (), and extract the payment random code ZFR5, payment amount ZFK5, consumption identity mark XID5, purchase product mark SP5, invitation code ZFYQ5, and go on GY5.3, thus guarantee, only the electronic wallet with identity mark QID5 can possibly generate ciphertext, and carry on the subsequent payment flow, confirm in the payment flow, the electronic wallet with identity mark QID5 takes part in payment;
GY5.3, the following comparative verification was performed:
1) Comparing the inviting code ZFYQ1 generated by the consumer in GY1 with the inviting code ZFYQ5 extracted from the decrypted ciphertext in GY5.2;
2) Comparing the amount to be received DFK1 generated by the consumer in GY1 with the payment amount ZFK5 extracted from the decrypted ciphertext in GY 5.2;
3) Comparing the consumption body identification XID1 in GY1 with the consumption body identification XID5 extracted from the decrypted ciphertext in GY 5.2;
4) Comparing the purchase product identifier SP1 generated by the consumer in GY1 with the purchase product identifier SP5 extracted from the decryption ciphertext in GY 5.2;
when the 4 comparisons are respectively consistent, the consumer enters GY5.4, otherwise, prompt for comparison verification and exit the payment flow;
after GY5.4, the consumer generates a collection confirmation code SKQR5 after finishing verification in GY5.3, and generates a collection code SKM5, wherein the collection confirmation code SKM5 comprises a payment random code ZFR5, a payment amount ZFK5, a consumption identity mark XID5, a purchase product mark SP5, an invitation code ZFYQ5 and a collection confirmation code SKQR5, the private key XS of the consumer encrypts the SKM5 by using an encryption algorithm fun () to obtain a ciphertext xsSKM5, the public key QG of the electronic wallet encrypts the xsSKM5 and the consumption identity mark XID5 to obtain a dgxsSKMXID5, and a bar code is regenerated and displayed on a bar code display module;
GY6, the electronic wallet scans the bar code on the bar code display module, receives the ciphertext dgxsSKMXID6, and enters GY6.1;
GY6.1, decrypting the ciphertext dgxsSKMXID6 by adopting a private key QS of the electronic wallet and a decryption algorithm gun (), and if the decryption can obtain xsSKM6 and a consumer body identifier XID6, successfully decrypting and entering GY6.2; if the decryption cannot be performed, indicating that the decryption fails, exiting the payment flow; therefore, the electronic wallet only generates and sends the ciphertext dgxsSKMXID6 to enter the subsequent payment flow, and the electronic wallet is prevented from being forged or being subjected to other illegal electronic money Bao Tihuan in the payment process;
GY6.2, decrypting the ciphertext xsSKM6 by using a public key XG6 of the consumer selected according to the consumer identity XID6 in the electronic wallet, and extracting a payment random code ZFR6, a payment amount ZFK6, a consumer identity XID6-1, a purchase product identity SP6, an invitation code ZFYQ6 and a receipt confirmation code SKQR6 from the decryption;
GY6.3, the following comparative verification was performed:
1) Comparing the payment random code ZFR4 generated by the electronic wallet in GY4 with the payment random code ZFR6 extracted in GY 6.2;
2) Comparing the payment amount ZFK4 generated by the electronic wallet in GY4 with the payment amount ZFK6 extracted in GY 6.2;
3) Comparing the consumer identity mark XID4 received by the electronic wallet in GY4, the consumer identity mark XID6-1 extracted in GY6.2 and the consumer identity mark XID6 obtained by decryption in GY 6.1;
4) Comparing the purchase product identifier SP4 received by the electronic wallet in GY4 with the purchase product identifier SP6 extracted in GY 6.2;
when the 4 contrasts are consistent respectively, the consumer enters GY6.4, otherwise, prompt contrast verification, exit the payment process and display prompt information of inconsistent contrast through the display module;
GY6.4, the server updates the wallet balance of the electronic wallet, generates an operation log by using the operation time SJ, the receipt confirmation code SKQR6, the payment amount ZFK6, the consumption identity mark XID6, the purchase product mark SP6, the invitation code ZFYQ6 and the payment random code ZFR6, displays prompt information of successful payment through a display module, and sends a confirmation code QRM6 for completing payment through a visible light transmitting module, wherein the confirmation code QRM6 comprises: an invitation code ZFYQ6 and a receipt confirmation code SKQR6;
GY7, the consumer receives the invitation code ZFYQ7 and the receipt confirmation code SKQR7; and the following comparative verification is performed:
1) Comparing the consumer generated invitation code ZFYQ1 in GY1 with the invitation code ZFYQ7 received in GY 7;
2) Comparing the receipt confirmation code SKQR6 extracted from the ciphertext xsSKM6 in GY6.2 with the receipt confirmation code SKQR7 received in GY 7;
when the above 2 comparisons are consistent, the server generates an operation log by using the operation time SSJ of the payment, the electronic wallet identity mark QID5, the payment random code ZFR5, the purchase product mark SP5, the payment amount ZFK5, the invitation code ZFYQ7 and the collection confirmation code SKQR7, and generates an mark of successfully completing the flow by the consumer, and the mark is displayed on a display;
in the payment process, the possibility that the data sent by the consumer is received from the electronic wallet and the possibility that the data sent by the electronic wallet is unidentified in the receiving and transmitting process exists, so that in the payment process, the electronic wallet or the consumer of the online payment device with the visible light and the bar code two-way public key system authentication can finish the payment process unilaterally after a set waiting time is overtime for the unidentified data and the unidentified condition caused by the fact that the data cannot be received;
In the payment process, the data sent from the electronic wallet to the consumer and the data sent from the consumer to the electronic wallet may have risks of losing, tampering and forging in the process of receiving and sending, so in the payment process, the key data received each time is assumed to be different from the data generated or received in the previous step of the payment process, and comparison and verification are required, thereby ensuring the reality and completeness of the received and sent data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710066536.7A CN106651364B (en) | 2017-02-07 | 2017-02-07 | Online payment device with visible light and bar code bidirectional public key system authentication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710066536.7A CN106651364B (en) | 2017-02-07 | 2017-02-07 | Online payment device with visible light and bar code bidirectional public key system authentication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106651364A CN106651364A (en) | 2017-05-10 |
| CN106651364B true CN106651364B (en) | 2023-09-01 |
Family
ID=58844522
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710066536.7A Active CN106651364B (en) | 2017-02-07 | 2017-02-07 | Online payment device with visible light and bar code bidirectional public key system authentication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106651364B (en) |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102117520A (en) * | 2009-12-31 | 2011-07-06 | 亿阳信通股份有限公司 | Integrated circuit (IC) card-based payment method, management device, server and mobile terminal |
| CN103996116A (en) * | 2014-04-21 | 2014-08-20 | 北京邮电大学 | Mobile payment system and method based on visible light communication technology |
| CN104850988A (en) * | 2015-05-08 | 2015-08-19 | 邹骁 | Mobile payment system, method thereof and related equipment |
| CN105117905A (en) * | 2015-07-21 | 2015-12-02 | 北京邮电大学 | Wireless Key payment system based on visible light communications and payment method |
| CN105205889A (en) * | 2015-08-27 | 2015-12-30 | 桂林理工大学 | Visible light-control access control device with hidden channel |
| CN105260886A (en) * | 2014-05-28 | 2016-01-20 | 中兴通讯股份有限公司 | Payment processing method and device, NFC (Near Field Communication) portable terminal and wearable terminal |
| CN105303379A (en) * | 2014-08-09 | 2016-02-03 | 北京互帮国际技术有限公司 | Method supporting offline guidance and confirmation of entity card payment |
| CN105407079A (en) * | 2015-09-25 | 2016-03-16 | 中城智慧科技有限公司 | Novel terminal safety soft secret key management method |
| CN205827555U (en) * | 2016-07-11 | 2016-12-21 | 高峰 | A kind of internet intelligent gathering computer |
Family Cites Families (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9721237B2 (en) * | 2011-06-24 | 2017-08-01 | Paypal, Inc. | Animated two-dimensional barcode checks |
| US20160140566A1 (en) * | 2011-11-13 | 2016-05-19 | Google Inc. | Secure transmission of payment credentials |
| US11507950B2 (en) * | 2012-07-31 | 2022-11-22 | Worldpay, Llc | Systems and methods for secure normative intermediation of payments processing peripherals |
-
2017
- 2017-02-07 CN CN201710066536.7A patent/CN106651364B/en active Active
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102117520A (en) * | 2009-12-31 | 2011-07-06 | 亿阳信通股份有限公司 | Integrated circuit (IC) card-based payment method, management device, server and mobile terminal |
| CN103996116A (en) * | 2014-04-21 | 2014-08-20 | 北京邮电大学 | Mobile payment system and method based on visible light communication technology |
| CN105260886A (en) * | 2014-05-28 | 2016-01-20 | 中兴通讯股份有限公司 | Payment processing method and device, NFC (Near Field Communication) portable terminal and wearable terminal |
| CN105303379A (en) * | 2014-08-09 | 2016-02-03 | 北京互帮国际技术有限公司 | Method supporting offline guidance and confirmation of entity card payment |
| CN104850988A (en) * | 2015-05-08 | 2015-08-19 | 邹骁 | Mobile payment system, method thereof and related equipment |
| CN105117905A (en) * | 2015-07-21 | 2015-12-02 | 北京邮电大学 | Wireless Key payment system based on visible light communications and payment method |
| CN105205889A (en) * | 2015-08-27 | 2015-12-30 | 桂林理工大学 | Visible light-control access control device with hidden channel |
| CN105407079A (en) * | 2015-09-25 | 2016-03-16 | 中城智慧科技有限公司 | Novel terminal safety soft secret key management method |
| CN205827555U (en) * | 2016-07-11 | 2016-12-21 | 高峰 | A kind of internet intelligent gathering computer |
Non-Patent Citations (1)
| Title |
|---|
| 基于无证书公钥密码的HCE移动支付方案;王亚涛;赵波;陶威;;计算机工程与设计(第01期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106651364A (en) | 2017-05-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20230004947A1 (en) | Device enrollment system and method | |
| AU2006348990B2 (en) | Proxy authentication methods and apparatus | |
| US10515362B2 (en) | Methods and apparatus for card transactions | |
| CA2858215C (en) | Cloud-based electronic payment processing | |
| RU2009122578A (en) | FINANCIAL TRANSACTION NUMBER GENERATOR AND FINANCIAL OPERATIONS OPERATED BY IT | |
| CN104662570A (en) | System and method for transmitting data | |
| US20050203856A1 (en) | Method & system for accelerating financial transactions | |
| CN106910068B (en) | Multi-algorithm multi-key optical authentication offline payment method | |
| CN106910059B (en) | Off-line payment method for visible light and bar code bidirectional public key system authentication | |
| CN106651375B (en) | Visible light communication VLC and Barcode public key system dual-medium offline payment device | |
| CN102904720B (en) | Method and system for mobile payment password processing | |
| CN106600274B (en) | Multi-algorithm multi-key optical authentication offline payment device | |
| CN106920096B (en) | Double-medium double-authentication rapid off-line payment method under public key system | |
| US11558741B2 (en) | Hands free interaction system and method | |
| CN106897881B (en) | Online payment method with visible light and bar code bidirectional public key system authentication | |
| CN106651364B (en) | Online payment device with visible light and bar code bidirectional public key system authentication | |
| CN1633664A (en) | Automated digital rights management and payment system with embedded content | |
| TW202038163A (en) | Shared automation equipment cash deposit and withdrawal service system | |
| CN106920095B (en) | Optical authentication offline payment method with hidden message abstract | |
| CN206541336U (en) | A kind of on-line payment device of two-way public key system certification | |
| CN106875180B (en) | Online payment method with visible light and bar code bidirectional authentication | |
| CN207198911U (en) | A kind of double medium offline electronic payment devices | |
| CN106910058B (en) | Optical authentication rapid off-line payment method with hidden channel | |
| CN106920094B (en) | Online payment device with visible light and bar code bidirectional authentication | |
| TW202129534A (en) | Fingerprint capture device and operation method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20170510 Assignee: Guangxi Zhaoyang Technology Co.,Ltd. Assignor: GUILIN University OF TECHNOLOGY Contract record no.: X2023980044580 Denomination of invention: Online payment device with visible light and barcode bidirectional public key system authentication Granted publication date: 20230901 License type: Common License Record date: 20231027 |
|
| EE01 | Entry into force of recordation of patent licensing contract |