CN106651378A - Payment terminal, system and method - Google Patents

Payment terminal, system and method Download PDF

Info

Publication number
CN106651378A
CN106651378A CN201610921902.8A CN201610921902A CN106651378A CN 106651378 A CN106651378 A CN 106651378A CN 201610921902 A CN201610921902 A CN 201610921902A CN 106651378 A CN106651378 A CN 106651378A
Authority
CN
China
Prior art keywords
payment
terminal
identification code
dynamic
password
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201610921902.8A
Other languages
Chinese (zh)
Inventor
陈德权
周昕
纪成明
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Digital Video Payment Technology Co Ltd
Original Assignee
Beijing Digital Video Payment Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Digital Video Payment Technology Co Ltd filed Critical Beijing Digital Video Payment Technology Co Ltd
Priority to CN201610921902.8A priority Critical patent/CN106651378A/en
Publication of CN106651378A publication Critical patent/CN106651378A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4012Verifying personal identification numbers [PIN]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Cash Registers Or Receiving Machines (AREA)

Abstract

The embodiment of the invention provides a payment terminal, system and method. In one embodiment, the payment terminal comprises a dynamic password module and a two-dimensional code generation module. The dynamic password module is used for generating a dynamic authentication password when payment operations of a user are received. The two-dimensional code generation module is used for generating and displaying a payment identification code according to the dynamic authentication password and prestored payment account number information. When receiving the payment identification code, a cashier terminal analyzes the payment identification code, obtains verification data and sends the data to a payment platform, and the data is sent to an authentication server through the payment platform. The authentication server receives and verifies the verification data, and returns a verification result to the payment platform, so that the payment platform returns a corresponding payment result to the payment terminal according to the verification result. The security of payment of the terminal is improved.

Description

Payment terminal, system and method
Technical field
The present invention relates to safety means technical field, in particular to a kind of payment terminal, system and method.
Background technology
With quickly propelling for the rise of development of Mobile Internet technology, the fast development of IT technologies, and ecommerce, barcode scanning Pay easily customer experience so that barcode scanning pays pursuing in mobile payment field has obtained market numerous consumers, into For the main force of mobile payment.But, because Quick Response Code pays the dependence to mobile network, can cause in the situation without network Situation about cannot be paid down, and affect Consumer's Experience.Additionally, carry out paying the transmission of Quick Response Code by mobile network, also The problem that the Quick Response Code hidden danger being stolen can be caused and payment safety is produced.
The content of the invention
In view of this, the purpose of the embodiment of the present invention is to provide a kind of payment terminal, system and method.
The embodiment of the present invention provides a kind of payment terminal, and the payment terminal includes:Dynamic password module and Quick Response Code are generated Module;
The dynamic password module, for after the delivery operation for receiving user, generating dynamic authentication password;
The two-dimensional code generation module, props up for being generated according to the dynamic authentication password and the payment accounts information for prestoring Pay identification code and shown;
Wherein, the cashier terminal is received after the payment identification code from the payment terminal, is parsed described payment and is recognized Code is verified data is activation to payment platform, and by the payment platform certificate server is sent to;The certificate server Receive and the checking data are verified, the result is returned to into the payment platform, make the payment platform according to institute State the result and return corresponding payment result to the payment terminal.
Preferably, the payment terminal is connected by bluetooth with communication of mobile terminal, be provided with the mobile terminal with The application program of the payment terminal association, the payment terminal also includes main control module;
The main control module logins the application program with the payment by the mobile terminal is received by login account Terminal is set up the payment accounts of the payment platform sent after connection and is stored;
The main control module will be sent to the mobile terminal for the user identification code for paying, and the mobile terminal is by institute State user identification code and be sent to the payment platform and stored.
The embodiment of the present invention also provides a kind of payment system, and the payment system includes being in communication with each other the payment end of connection End, cashier terminal and certificate server;
The payment terminal includes:Dynamic password module and two-dimensional code generation module;
The dynamic password module, in the delivery operation of receive user, generating dynamic authentication password;
The two-dimensional code generation module, props up for being generated according to the dynamic authentication password and the payment accounts information for prestoring Pay identification code and shown;
The cashier terminal includes:Identification code acquisition module and checking data transmission blocks;
The identification code acquisition module obtains the payment identification code from the payment terminal;
The checking data transmission blocks, for the checking data is activation that obtains of identification code that pays will to be parsed to paying Platform, by the payment platform certificate server is sent to;
The certificate server includes authentication module;
The authentication module, for verifying to the checking data, by the result the payment platform is returned to, The payment platform is set to return corresponding payment result to the payment terminal according to the result.
Preferably, the application program associated with the payment terminal is installed in the mobile terminal, by near-field communication With payment terminal communication connection;
The mobile terminal includes:Login module and account sending module;
The login module, is connected for being logined the application program and being set up with the payment terminal by login account;
The account sending module, is deposited for the payment accounts information of payment platform to be sent to into the payment terminal Storage;
The payment terminal also includes:Identification code sending module, for institute will to be sent to for the user identification code for paying Mobile terminal is stated, the user identification code is sent to the payment platform and is stored by the mobile terminal.
Preferably, the two-dimensional code generation module is additionally operable to according to the dynamic authentication password, user identification code and described The corresponding account of payment terminal is generated and pays identification code;
The checking data transmission blocks, are additionally operable to for the amount of money to be paid and the parsing payment identification code to obtain dynamic authentication Password, user identification code and login account are sent to the payment platform, make the payment platform verify the user identification code It is whether identical with the user identification code that it prestores, if identical, the dynamic authentication password and user identification code are sent to described Certificate server.
Preferably, it is provided with the clock generator for time counting in the payment terminal, the dynamic password module, It is additionally operable to generate described moving by hash algorithm according to the instant time counting of the clock generator and default key seed State certification password.
Preferably, the checking data include the dynamic authentication password and certification account, and the authentication module is according to institute State user identification code and generate checking dynamic password for checking, then by the dynamic authentication password and the dynamic mouth of the checking Order is compared, if identical, judges the verificating data safety.
Preferably, the dynamic password module generates a dynamic only in response to a delivery operation within a preset time interval Certification password.
Preferably, the authentication module is verified in the following manner to the data safety:Known according to the user Other code generates the first checking dynamic password in the previous specified time period of current time, and is generated according to the user identification code The second checking dynamic password in the latter specified time period of current time;
The comparison unit, is additionally operable to the dynamic authentication password and the checking dynamic password, first checking Dynamic password and the second checking dynamic password are compared respectively, if the dynamic authentication password and the dynamic mouth of the checking Make, any one is identical for the first checking dynamic password and the second checking dynamic password, then judge the checking data Safety.
The embodiment of the present invention also provides a kind of method of payment, is applied to payment system, and the payment system includes phase intercommunication Payment terminal, cashier terminal and certificate server that letter connects, methods described includes:
The payment terminal generates dynamic authentication password in the delivery operation of receive user;
The payment terminal is generated according to the dynamic authentication password and the payment accounts information for prestoring and pays identification code;
The cashier terminal obtains the payment identification code from the payment terminal;
The cashier terminal parses the payment identification code and is verified data is activation to payment platform, by the payment Platform is sent to certificate server;
The certificate server verifies that data are verified to described, and the result is returned to into the payment platform, makes The payment platform returns corresponding payment result to the payment terminal according to the result.
Compared with prior art, payment terminal, system and method for the invention.Recognized by generating dynamic in payment terminal Card password, further according to the payment identification code that the dynamic authentication password generated is used to pay, also can be real in the case of without network Now pay, improve Consumer's Experience.Additionally, generated using the local two-dimensional code generation module of payment terminal in the embodiment of the present invention propping up Pay identification code, it is not necessary to network transmission Quick Response Code, solve safety defect and the dependence to network that existing Quick Response Code pays.
To enable the above objects, features and advantages of the present invention to become apparent, preferred embodiment cited below particularly, and coordinate Appended accompanying drawing, is described in detail below.
Description of the drawings
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, below will be attached to what is used needed for embodiment Figure is briefly described, it will be appreciated that the following drawings illustrate only certain embodiments of the present invention, thus be not construed as it is right The restriction of scope, for those of ordinary skill in the art, on the premise of not paying creative work, can be with according to this A little accompanying drawings obtain other related accompanying drawings.
The schematic diagram that Fig. 1 is interacted for the running environment of each part of payment system that present pre-ferred embodiments are provided.
The block diagram of the payment terminal that Fig. 2 is provided for present pre-ferred embodiments.
Fig. 3 is the functional block diagram of payment system provided in an embodiment of the present invention.
The flow chart of the method for payment that Fig. 4 is provided for present pre-ferred embodiments.
Specific embodiment
Below in conjunction with accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete Ground description, it is clear that described embodiment is only a part of embodiment of the invention, rather than the embodiment of whole.Generally exist Herein the component of the embodiment of the present invention described and illustrated in accompanying drawing can be arranged and designed with a variety of configurations.Cause This, below the detailed description of the embodiments of the invention to providing in the accompanying drawings is not intended to limit claimed invention Scope, but it is merely representative of the selected embodiment of the present invention.Based on embodiments of the invention, those skilled in the art are not doing The every other embodiment obtained on the premise of going out creative work, belongs to the scope of protection of the invention.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi It is defined in individual accompanying drawing, then it need not be further defined and is explained in subsequent accompanying drawing.Meanwhile, the present invention's In description, term " first ", " second " etc. are only used for distinguishing description, and it is not intended that indicating or implying relative importance.
Fig. 1 for the running environment of each part of payment system that present pre-ferred embodiments are provided schematic diagram.Figure includes Interact between payment terminal 100, cashier terminal 200, mobile terminal 300, certificate server 400 and payment platform 500 Schematic diagram.The cashier terminal 200 can be communicatively coupled by network with the certificate server 400 and payment platform 500, To enter row data communication or interaction.The cashier terminal 200 and mobile terminal 300 may be, but not limited to, smart mobile phone, individual People's computer (personal computer, PC), panel computer, personal digital assistant (personal digital Assistant, PDA), mobile internet surfing equipment (mobile Internet device, MID) etc..In the present embodiment, the movement The application program associated with payment terminal 100 is installed in terminal 300.The mobile terminal 300 is by near-field communication (such as indigo plant Tooth, Zibee, NFC etc.) it is connected with the short-distance wireless communication of the payment terminal 100.The cashier terminal 200 is obtained and paid eventually The local payment identification code for generating in end 100, is then sent to payment platform 500, by payment platform 500 by the payment identification code It is transmitted to the certificate server 400 to verify, after being verified, carries out propping up according to the payment accounts that the payment identification code is built-in Pay operation.
As shown in Fig. 2 being the block diagram of payment terminal 100.The payment terminal 100 includes paying button 110, master Control module 111, dynamic password module 112, two-dimensional code generation module 113 and display module 114.
The payment button 110, main control module 111, dynamic password module 112, two-dimensional code generation module 113 and display mould The each element of block 114 is directly or indirectly electrically connected with each other, to realize the transmission or interaction of data.For example, these elements Can realize being electrically connected with by one or more communication bus or holding wire each other.The dynamic password module 112 and two Dimension code generation module 113 can be stored in memorizer or be solidified including at least one in the form of software or firmware (firmware) Software function module in the operating system (operating system, OS) of the payment terminal 100.In addition, paying eventually End 100 can also include processor and memorizer (not shown), and processor is used to perform the executable module stored in memorizer, Software function module or computer program that such as described dynamic password module 112 and two-dimensional code generation module 113 include.
It is described to pay the mechanical key that button 110 is provided on the body of payment terminal 100, it is also possible to be provided in Electric capacity button or Trackpad on display module 114 etc..User can pay button 110 and touch by operation (as pressed or touching) The beginning that payment terminal 100 triggers payment flow is sent out, dynamic password module 112 and two-dimensional code generation module 113 etc. is then performed Function and flow process that various functions module is provided.
The dynamic password module 112 is used for after the delivery operation for receiving user, generates dynamic authentication password.This reality In applying example, in the dynamic password module 112 clock generator is provided with.The dynamic password module 112 can according to it is described when The counting of clock generator and the key seed for prestoring generate the dynamic authentication password by hash algorithm.In a kind of embodiment In, the generating algorithm of dynamic authentication password is:PWotp=HASH (SEED+TickCountM/3600), wherein PWotp represent dynamic State certification password;SEED represents key seed;TickCountM represents the counting of clock generator.Wherein TickCountM/ 3600 is to round 3600 milliseconds of integral multiple, can make the dynamic authentication of acquisition in 3600 milliseconds i.e. 60 second after starting point is specified Password is identical.Wherein, HASH represents hash algorithm, and the binary value of random length is mapped as shorter fixed length by hash algorithm The binary value of degree, this little binary value is referred to as cryptographic Hash.Cryptographic Hash is the unique and extremely compact numerical value of one piece of data Representation.The key seed can be a string irregular character strings.In the payment terminal 100 and certificate server 400 Storage identical key seed.
The two-dimensional code generation module 113, for being given birth to according to the dynamic authentication password and the payment accounts information for prestoring Into payment identification code.The two-dimensional code generation module 113 includes that Quick Response Code generating algorithm or a Quick Response Code plug-in unit (are used What the programming languages such as JAVA, C#, VB were write calls software).The application principle of the two-dimensional code generation module 113 is Quick Response Code life Into software, user or terminal are entered information in two-dimensional code generation module 113, generate corresponding Quick Response Code.
Display module 114 is used to show that the payment identification code is recognized for cashier terminal 200.The display module 114 can An interactive interface (such as user interface) is provided between the payment terminal 100 and user or for display image number According to referring to user.In the present embodiment, the display module 114 can be liquid crystal display or touch control display.If touching Control display, it can be capacitance type touch control screen or resistance type touch control screen of support single-point and multi-point touch operation etc..Support single-point Refer to that touch control display can sense that one or more positions are produced simultaneously on the touch control display with multi-point touch operation Raw touch control operation, and transfer to processor to be calculated and processed the touch control operation for sensing.
Wherein, the cashier terminal 200 parses the payment identification code and is verified after the payment identification code is received Data is activation is sent to certificate server 400 to payment platform 500 by the payment platform 500;The certificate server 400 pairs it is described checking data verify, the result is returned to into the payment platform 500, make the payment platform 500 According to the result corresponding payment result is returned to the payment terminal 100.
In other embodiments, the payment terminal 100 first passes through the binding that mobile terminal 300 implements payment accounts, institute It can be the mobile terminals such as mobile phone, panel computer to state mobile terminal 300.The payment terminal 100 passes through bluetooth, Zigbee, NFC Short haul connection is set up etc. near-field communication module with mobile terminal 300 to be connected.The mobile terminal 300 can be by installing and institute The application program for stating the association of payment terminal 100 realizes the binding of the payment accounts and payment terminal 100.The payment terminal 100 Main control module 111 mobile terminal 300 logined into the application program by login account build with the payment terminal 100 The corresponding payment accounts of payment platform 500 sent after vertical connection are stored, and will be sent out for the user identification code for paying The mobile terminal 300 is given, the user identification code is sent to the payment platform 500 and is carried out by the mobile terminal 300 Storage.The payment platform 500 can be the third parties such as Web bank, Alipay wallet, wechat wallet, Baidu's wallet Payment platform.
Payment terminal 100 in the present embodiment, generates dynamic authentication password, further according to the dynamic authentication mouth by local Order generates the payment identification code for paying, and also can realize paying in the case of without network, improves Consumer's Experience.Additionally, this Generated using the two-dimensional code generation module in payment terminal 100 in inventive embodiments and pay identification code, it is not necessary to network transmission two Dimension code, solves safety defect and the dependence to network that existing Quick Response Code pays.
Fig. 3 is referred to, the embodiment of the present invention also provides a kind of payment system, and the payment system includes being in communication with each other connection Payment terminal 100, cashier terminal 200 and certificate server 400;
The payment terminal 100 includes:Dynamic password module 112, two-dimensional code generation module 113 and display module 114.Institute Dynamic password module 112 is stated, in the delivery operation of receive user, generating dynamic authentication password.The Quick Response Code is generated Module 113, for generating according to the dynamic authentication password and the payment accounts information for prestoring identification code is paid.The display mould Block 114, for showing that the payment identification code is recognized for the cashier terminal.
In an example, arrange in the payment terminal 100 and pay button 110, the payment button 110 can be set Put the mechanical key on the body of payment terminal 100, it is also possible to electric capacity button or Trackpad being arranged on display module etc..Need When paying the bill, user only need to be pressed after the payment button 110, trigger the execution of dynamic password module 112.With regard to payment terminal 100 other details can also further with reference to the embodiment of above-mentioned payment terminal 100 will not be described here.
The cashier terminal 200 includes:Identification code acquisition module 210 and checking data transmission blocks 211.The identification code Acquisition module 210, for obtaining the payment identification code from the payment terminal 100.The checking data transmission blocks 211, For the checking data is activation that obtains of identification code that pays will to be parsed to payment platform 500, by the payment platform 500 Give certificate server 400.
The certificate server 400 includes authentication module 410.The authentication module 410, for entering to the checking data Row checking, by the result the payment platform 500 is returned to, and the payment platform 500 is returned according to the result Corresponding payment result gives the payment terminal 100.In the present embodiment, the certificate server 400 is receiving the checking After data, the checking password to being applied to verify is generated, the checking password is entered with corresponding data in the checking data Row contrast, if identical, judges the verificating data safety.The payment platform 500 receives the certificate server 400 After security certification result, shift the corresponding amount of money from the payment accounts and go in the corresponding account of the cashier terminal 200, and Return to the payment terminal 100 and pay successful result.
Needed first to store in the payment terminal 100 for propping up before payment for goods is paid using the payment terminal 100 The payment accounts paid and password.The payment accounts can be the corresponding account of Third-party payment platform, or bank card Number.
In one embodiment, payment accounts are sent to into payment terminal 100 by mobile terminal 300 to be stored. The application program associated with the payment terminal 100 is installed, by near-field communication and the payment in the mobile terminal 300 Terminal 100 is communicated to connect.The mobile terminal 300 includes:Login module 310 and account sending module 311.The login module 310, it is connected for logining the application program and setting up with the payment terminal 100 by login account.The account sends mould Block 311, is stored for the payment accounts information of payment platform to be sent to into the payment terminal 100.The payment terminal 100 also include:Identification code sending module, for by for the user identification code (UID, User Identification) of payment The mobile terminal 300 is sent to, the user identification code is sent to the payment platform 500 and is entered by the mobile terminal 300 Row storage.The application program is provided for the human-computer interaction interface of receiving user's input information.User can be by keyboard etc. Input equipment is input into corresponding payment accounts, and arranges the corresponding password of the payment accounts.In the present embodiment, the near field leads to Believe it can is bluetooth, Zigbee, NFC, LAN etc..
In other embodiments, the payment terminal 100 can be connected by USB with other-end (for example, computer etc.), from And realize the data transfer with other terminals.The other-end can be used for the payment accounts of receiving user's input and correspondence password And be sent to payment terminal 100 and stored.
The communication link of payment terminal 100 and mobile terminal 300 is realized by using the mode such as near-field communication or USB connections Connect, make the data transfer between payment terminal 100 and mobile terminal 300 have more safety, and need not rely on mobile network Support also more convenient can realize paying connection.
Further, the two-dimensional code generation module 113 be additionally operable to according to the dynamic authentication password, user identification code and The corresponding account of the payment terminal is generated and pays identification code.The checking data transmission blocks 211, are additionally operable to the amount of money to be paid And parse it is described pay identification code dynamic authentication password, user identification code and login account for obtaining etc. and be sent to described pay flat Platform 500, makes the payment platform 500 verify whether the user identification code is identical with the user identification code that it prestores, if identical, The dynamic authentication password and user identification code are sent to into the certificate server 400.The payment platform 500 is first according to pre- The corresponding user identification code of the payment accounts deposited and the user identification code are then forwarded to certification after whether identical judges Server 400 verified, also can further improve the safety of payment.
Further, the clock generator for time counting, the dynamic password are provided with the payment terminal 100 Module, is additionally operable to generate institute by hash algorithm according to the instant time counting of the clock generator and default key seed State dynamic authentication password.In the present embodiment, in the dynamic password module 112 clock generator is provided with.The dynamic password Module 112 generates the dynamic authentication mouth according to the counting of the clock generator and the key seed for prestoring by hash algorithm Order.In one embodiment, PWotp=HASH (SEED+TickCountM/3600), wherein PWotp represent dynamic authentication mouth Order;SEED represents key seed;TickCountM represents the counting of clock generator.Wherein TickCountM/3600 is to round 3600 milliseconds of integral multiple, can make the dynamic authentication password obtained in 3600 milliseconds i.e. 60 second after starting point is specified identical. Wherein, HASH represents hash algorithm, and hash algorithm two enters what the binary value of random length was mapped as shorter regular length Value processed, this little binary value is referred to as cryptographic Hash.Cryptographic Hash is the unique and extremely compact numerical value representation of one piece of data.
The checking data include the dynamic authentication password and certification account, and the authentication module 410 can be according to described User identification code generates the checking dynamic password for checking, then by the dynamic authentication password and the checking dynamic password It is compared, if identical, judges the verificating data safety.
Further, the dynamic password module 112, at the appointed time receives multiple delivery operations of user in section When, the generation operation of a dynamic authentication password is only carried out, it is not responding to other delivery operations, it is to avoid the multiple payment of short time Unsafe factor caused by operation.For example, within 60 second time, for example, 12:00:00-12:00:In 59 times, no matter produce How many times delivery operation, payment terminal 100 only generates a dynamic authentication password.
Further, the authentication module 410 is verified in the following manner to the data safety:According to the use Family identification code generates the first checking dynamic password in the previous specified time period of current time, and according to the user identification code Generate the second checking dynamic password in the latter specified time period of current time.The comparison unit, being additionally operable to will be described dynamic State certification password enters respectively with the checking dynamic password, the first checking dynamic password and the second checking dynamic password Row compares, if the dynamic authentication password is tested with the checking dynamic password, the first checking dynamic password and described second The arbitrary checking password of card dynamic password is identical, then judge the verificating data safety.
In an example, the counting of the clock generator of payment terminal 100 is represented with TickCountM, is used TickCountS represents the time counting of certificate server 400, and with TickValue difference is represented, and with SEED key seed is represented, and uses PWotp1 represents checking dynamic password, and with PWotp0 the first checking dynamic password is represented, and with PWotp2 the second checking dynamic is represented Password.The counting TickCountM and authentication service of the clock generator of payment terminal 100 are recorded in the certificate server 400 Difference TickValue of the time counting TickCountS of device 400, TickValue=TickCountS-TickCountM;Wherein The unit of TickCountM, TickCountS and TickValue is millisecond ms.The certificate server 400 is receiving checking After data, first pass through and be calculated checking dynamic password PWotp1, wherein PWotp1=HASH (SEED+ (TickCountS- TickValue)/3600).In order to evade the mistake between the clock generator of payment terminal 100 and the clock of certificate server 400 Difference, certificate server 400 calculates the dynamic password of first 60 seconds and latter 60 seconds simultaneously, i.e.,:
PWotp0=HASH (SEED+ (TickCountS-TickValue-3600)/3600).
PWotp2=HASH (SEED+ (TickCountS-TickValue+3600)/3600).
Certificate server 400 is dynamic with checking dynamic password PWotp1, the first checking respectively by dynamic authentication password PWotp Password PWotp0 and second checking dynamic password PWotp2 be compared respectively, judge whether it is identical, if state certification password PWotp Certification identical with arbitrarily checking password passes through.
Further, if the dynamic mouth of the checkings of checking dynamic password PWotp0 or second of dynamic authentication password PWotp and first Make PWotp2 identical, then calibrate difference TickValue and replace original difference.In detail, if if PWotp is equal to PWotp0, the TickValue recorded in data base is needed plus 3600;If PWotp is equal to PWotp1, record in data base TickValue does not make an amendment;If PWotp is equal to PWotp2, the TickValue recorded in data base needs to deduct 3600.
System in the present embodiment, by the payment identification code generated without payment terminal under network state 100, by Payment platform 500 is sent to after the acquisition payment identification code of the cashier terminal 200 and certificate server 400 is verified, improve The safety that terminal pays.In addition, also can be paid in the case of without network, the convenience of user is improved.
Fig. 4 is referred to, is the method for payment for being applied to the payment system shown in Fig. 3 that present pre-ferred embodiments are provided Flow chart.The idiographic flow shown in Fig. 4 will be described in detail below.
Step S101, the payment terminal 100 generates dynamic authentication password in the delivery operation of receive user.
Step S102, the payment terminal 100 is generated according to the dynamic authentication password and the payment accounts information for prestoring Pay identification code.
Step S103, the cashier terminal 200 obtains the payment identification code from the payment terminal 100.
Step S104, the cashier terminal 200 parses the payment identification code and is verified data is activation to payment platform 500, certificate server 400 is sent to by the payment platform 500.
Step S105, the checking data of the certificate server 400 pairs are verified, the result returned to described Payment platform 500, makes the payment platform 500 return corresponding payment result to the payment terminal according to the result 100。
Modules in said system can be used to perform each step in the present embodiment, other with regard to the present embodiment Details can further with reference to the embodiment of above-mentioned payment system will not be described here.
Method in the present embodiment, by generating dynamic authentication password in payment terminal, further according to the dynamic Certification password generated is used for the payment identification code for paying, and also can realize paying in the case of without network, improves Consumer's Experience.This Outward, generated using the local two-dimensional code generation module of payment terminal in the embodiment of the present invention and pay identification code, it is not necessary to which network is passed Defeated Quick Response Code, solves safety defect and the dependence to network that existing Quick Response Code pays.
In several embodiments provided herein, it should be understood that disclosed system, terminal and method, also may be used To realize by another way.System embodiment described above is only schematic, for example, the flow chart in accompanying drawing With system, the system in the cards of method and computer program product that block diagram shows multiple embodiments of the invention Framework, function and operation.At this point, each square frame in flow chart or block diagram can represent module, program segment or a generation A part for code a, part for the module, program segment or code is used to realize the logic function of regulation comprising one or more Executable instruction.It should also be noted that at some as in the implementations replaced, the function of being marked in square frame can also be with Order different from being marked in accompanying drawing occurs.For example, two continuous square frames can essentially be performed substantially in parallel, they Sometimes can also perform in the opposite order, this is depending on involved function.It is also noted that block diagram and/or flow chart In each square frame and block diagram and/or the square frame in flow chart combination, can with perform regulation function or action it is special With hardware based system realizing, or can be realized with the combination of computer instruction with specialized hardware.
In addition, each functional module in each embodiment of the invention can integrate to form an independent portion Divide, or modules individualism, it is also possible to which two or more modules are integrated to form an independent part.
If the function is realized and as independent production marketing or when using using in the form of software function module, can be with In being stored in a computer read/write memory medium.Based on such understanding, technical scheme is substantially in other words The part contributed to prior art or the part of the technical scheme can be embodied in the form of software product, the meter Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be individual People's computer, server, or network equipment etc.) perform all or part of step of each embodiment methods described of the invention. And aforesaid storage medium includes:USB flash disk, portable hard drive, read only memory (ROM, Read-Only Memory), random access memory are deposited Reservoir (RAM, Random Access Memory), magnetic disc or CD etc. are various can be with the medium of store program codes.Need Illustrate, herein, such as first and second or the like relational terms be used merely to by an entity or operation with Another entity or operation make a distinction, and not necessarily require or imply these entities or there is any this reality between operating The relation or order on border.And, term " including ", "comprising" or its any other variant are intended to the bag of nonexcludability Contain, so that a series of process, method, article or equipment including key elements is not only including those key elements, but also including Other key elements being not expressly set out, or also include the key element intrinsic for this process, method, article or equipment. In the absence of more restrictions, the key element for being limited by sentence "including a ...", it is not excluded that including the key element Process, method, article or equipment in also there is other identical element.
The preferred embodiments of the present invention are the foregoing is only, the present invention is not limited to, for the skill of this area For art personnel, the present invention can have various modifications and variations.It is all within the spirit and principles in the present invention, made any repair Change, equivalent, improvement etc., should be included within the scope of the present invention.It should be noted that:Similar label and letter exists Similar terms is represented in figure below, therefore, once being defined in a certain Xiang Yi accompanying drawing, then it is not required in subsequent accompanying drawing It is further defined and is explained.
The above, the only specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, any Those familiar with the art the invention discloses technical scope in, change or replacement can be readily occurred in, all should contain Cover within protection scope of the present invention.Therefore, protection scope of the present invention described should be defined by scope of the claims.

Claims (10)

1. a kind of payment terminal, it is characterised in that the payment terminal includes:Dynamic password module and two-dimensional code generation module;
The dynamic password module, for after the delivery operation for receiving user, generating dynamic authentication password;
The two-dimensional code generation module, knows for generating to pay according to the dynamic authentication password and the payment accounts information for prestoring Other code is simultaneously shown;
Wherein, cashier terminal is received after the payment identification code from the payment terminal, is parsed the payment identification code and is tested Card data is activation is sent to certificate server to payment platform by the payment platform;The certificate server is received to institute State checking data to be verified, the result is returned to into the payment platform, make the payment platform according to the checking knot Fruit returns corresponding payment result to the payment terminal.
2. payment terminal as claimed in claim 1, it is characterised in that the payment terminal is by bluetooth and communication of mobile terminal Connection, is provided with the application program associated with the payment terminal in the mobile terminal, the payment terminal also includes master control mould Block;
The main control module logins the application program with the payment terminal by the mobile terminal is received by login account The payment accounts for setting up the payment platform sent after connection are stored;
The main control module will be sent to the mobile terminal for the user identification code for paying, and the mobile terminal is by the use Family identification code is sent to the payment platform and is stored.
3. a kind of payment system, it is characterised in that the payment system includes being in communication with each other payment terminal, the cashier terminal of connection And certificate server;
The payment terminal includes:Dynamic password module and two-dimensional code generation module;
The dynamic password module, in the delivery operation of receive user, generating dynamic authentication password;
The two-dimensional code generation module, knows for generating to pay according to the dynamic authentication password and the payment accounts information for prestoring Other code is simultaneously shown;
The cashier terminal includes:Identification code acquisition module and checking data transmission blocks;
The identification code acquisition module obtains the payment identification code from the payment terminal;
The checking data transmission blocks, the checking data is activation for the parsing payment identification code to be obtained is flat to paying Platform, by the payment platform certificate server is sent to;
The certificate server includes authentication module;
The authentication module, for verifying to the checking data, by the result the payment platform is returned to, and makes institute State payment platform and corresponding payment result is returned to the payment terminal according to the result.
4. payment system as claimed in claim 3, it is characterised in that the system also includes mobile terminal, the mobile terminal In the application program associated with the payment terminal is installed, communicated to connect with the payment terminal by near-field communication;
The mobile terminal includes:Login module and account sending module;
The login module, is connected for being logined the application program and being set up with the payment terminal by login account;
The account sending module, is stored for the payment accounts information of payment platform to be sent to into the payment terminal;
The payment terminal also includes:Identification code sending module, for the shifting will to be sent to for the user identification code for paying The user identification code is sent to the payment platform and is stored by dynamic terminal, the mobile terminal.
5. payment system as claimed in claim 4, it is characterised in that the two-dimensional code generation module is additionally operable to according to described dynamic The corresponding account of state certification password, user identification code and the payment terminal is generated and pays identification code;
The checking data transmission blocks, are additionally operable to for the amount of money to be paid and the parsing payment identification code to obtain dynamic authentication mouth Make, user identification code and login account are sent to the payment platform, make the payment platform verify the user identification code with Whether the user identification code that it prestores is identical, if identical, the dynamic authentication password and user identification code be sent to and described recognized Card server.
6. payment system as claimed in claim 5, it is characterised in that be provided with for time counting in the payment terminal Clock generator, the dynamic password module is additionally operable to according to the instant time counting of the clock generator and default close Key seed generates the dynamic authentication password by hash algorithm.
7. payment system as claimed in claim 5, it is characterised in that the checking data include the dynamic authentication password and Certification account, the authentication module generates the checking dynamic password for checking according to the user identification code, then will be described Dynamic authentication password is compared with the checking dynamic password, if identical, judges the verificating data safety.
8. payment system as claimed in claim 7, it is characterised in that the dynamic password module is within a preset time interval only Delivery operation of response generates a dynamic authentication password.
9. payment system as claimed in claim 8, it is characterised in that the authentication module is in the following manner to the data Safety is verified:
According to the first checking dynamic password in the previous specified time period of user identification code generation current time, and according to The user identification code generates the second checking dynamic password in the latter specified time period of current time;
The dynamic authentication password is dynamic with the checking dynamic password, the first checking dynamic password and second checking State password is compared respectively, if the dynamic authentication password and the checking dynamic password, the first checking dynamic password And the second checking dynamic password any one is identical, then judge the verificating data safety.
10. a kind of method of payment, is applied to payment system, and the payment system includes being in communication with each other the payment terminal of connection, receives Silver-colored terminal and certificate server, it is characterised in that methods described includes:
The payment terminal generates dynamic authentication password in the delivery operation of receive user;
The payment terminal is generated according to the dynamic authentication password and the payment accounts information for prestoring and pays identification code;
The cashier terminal obtains the payment identification code from the payment terminal;
The cashier terminal parses the payment identification code and is verified data is activation to payment platform, by the payment platform It is sent to certificate server;
The certificate server verifies that data are verified to described, and the result is returned to into the payment platform, makes described Payment platform returns corresponding payment result to the payment terminal according to the result.
CN201610921902.8A 2016-10-21 2016-10-21 Payment terminal, system and method Pending CN106651378A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610921902.8A CN106651378A (en) 2016-10-21 2016-10-21 Payment terminal, system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610921902.8A CN106651378A (en) 2016-10-21 2016-10-21 Payment terminal, system and method

Publications (1)

Publication Number Publication Date
CN106651378A true CN106651378A (en) 2017-05-10

Family

ID=58857037

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610921902.8A Pending CN106651378A (en) 2016-10-21 2016-10-21 Payment terminal, system and method

Country Status (1)

Country Link
CN (1) CN106651378A (en)

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108108969A (en) * 2018-01-09 2018-06-01 深圳市海威达科技有限公司 A kind of dynamic password method of payment for applying the high security on shared Self-help car washer
CN108288155A (en) * 2018-02-08 2018-07-17 上海链庄数据技术有限公司 A kind of suspension settlement method of unmanned supermarket
CN110012048A (en) * 2018-11-22 2019-07-12 阿里巴巴集团控股有限公司 Message identification code generation method, device, electronic equipment and computer storage medium
CN110634191A (en) * 2018-06-22 2019-12-31 腾讯科技(深圳)有限公司 Authentication method, apparatus, medium, and device
CN111901283A (en) * 2019-05-05 2020-11-06 腾讯科技(深圳)有限公司 Resource transfer method, device, terminal and storage medium
CN112488694A (en) * 2018-09-13 2021-03-12 创新先进技术有限公司 Code scanning control method, device and system
CN112677925A (en) * 2021-01-22 2021-04-20 深圳市威尔电器有限公司 Safe driving system
CN113159771A (en) * 2021-04-27 2021-07-23 中国工商银行股份有限公司 Safety payment device and method, computer equipment and readable storage medium
CN114978588A (en) * 2022-04-12 2022-08-30 湖北华特信息技术有限公司 Verification method and system based on optical one-way information transmission

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104268746A (en) * 2014-09-17 2015-01-07 江苏爱心消费支付服务有限公司 Card-free payment method
CN104616148A (en) * 2015-01-23 2015-05-13 恒银金融科技有限公司 Payment terminal and paying method of wearable payment terminal
CN204731832U (en) * 2015-03-26 2015-10-28 深圳市亚略特生物识别科技有限公司 Electronic fare payment system
CN204791151U (en) * 2015-07-17 2015-11-18 上海众人网络安全技术有限公司 A intelligent bracelet and intelligent bracelet payment systems for mobile terminal payment
CN204791152U (en) * 2015-07-17 2015-11-18 上海众人网络安全技术有限公司 A bluetooth headset and bluetooth headset payment systems for mobile terminal payment

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104268746A (en) * 2014-09-17 2015-01-07 江苏爱心消费支付服务有限公司 Card-free payment method
CN104616148A (en) * 2015-01-23 2015-05-13 恒银金融科技有限公司 Payment terminal and paying method of wearable payment terminal
CN204731832U (en) * 2015-03-26 2015-10-28 深圳市亚略特生物识别科技有限公司 Electronic fare payment system
CN204791151U (en) * 2015-07-17 2015-11-18 上海众人网络安全技术有限公司 A intelligent bracelet and intelligent bracelet payment systems for mobile terminal payment
CN204791152U (en) * 2015-07-17 2015-11-18 上海众人网络安全技术有限公司 A bluetooth headset and bluetooth headset payment systems for mobile terminal payment

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108108969A (en) * 2018-01-09 2018-06-01 深圳市海威达科技有限公司 A kind of dynamic password method of payment for applying the high security on shared Self-help car washer
CN108288155A (en) * 2018-02-08 2018-07-17 上海链庄数据技术有限公司 A kind of suspension settlement method of unmanned supermarket
CN108288155B (en) * 2018-02-08 2021-11-30 上海链庄数据技术有限公司 Off-line settlement method for unmanned supermarket
CN110634191A (en) * 2018-06-22 2019-12-31 腾讯科技(深圳)有限公司 Authentication method, apparatus, medium, and device
CN112488694A (en) * 2018-09-13 2021-03-12 创新先进技术有限公司 Code scanning control method, device and system
CN110012048A (en) * 2018-11-22 2019-07-12 阿里巴巴集团控股有限公司 Message identification code generation method, device, electronic equipment and computer storage medium
CN111901283A (en) * 2019-05-05 2020-11-06 腾讯科技(深圳)有限公司 Resource transfer method, device, terminal and storage medium
CN112677925A (en) * 2021-01-22 2021-04-20 深圳市威尔电器有限公司 Safe driving system
CN113159771A (en) * 2021-04-27 2021-07-23 中国工商银行股份有限公司 Safety payment device and method, computer equipment and readable storage medium
CN114978588A (en) * 2022-04-12 2022-08-30 湖北华特信息技术有限公司 Verification method and system based on optical one-way information transmission

Similar Documents

Publication Publication Date Title
CN106651378A (en) Payment terminal, system and method
US9430730B2 (en) Anti-skimming payment card
US11720877B2 (en) Conducting a transaction at a mobile POS terminal using a defined structure
US10535066B2 (en) Systems and methods for securing pins during EMV chip and pin payments
CN105933274B (en) A kind of method of payment and device
US20150046336A1 (en) System and method of using a secondary screen on a mobile device as a secure and convenient transacting mechanism
TWI515674B (en) Method for managing prepayment information, prepayment system, and computer-readable storage medium
CN109919586A (en) Multi-level safety move transaction enables platform
JP2013527514A (en) POS equipment, POS equipment card payment system and card payment transaction method
CN204990313U (en) Disposition of equipment mandate device
CN102496112B (en) Three-screen payment system based on intelligent SD card and realization method thereof
CN102158488A (en) Dynamic countersign generation method and device and authentication method and system
CN107134079A (en) A kind of self-help charging devices, systems, and methods
CN110766397B (en) Near field payment method based on data identification model
CN106127467A (en) The method of mobile payment integrating financial card paying and settle accounts
US20130103545A1 (en) Cloud Credit Card Transaction System and Transaction Method Thereof
CN106980977A (en) Payment system and its Payment Card based on Internet of Things
CN107169751B (en) Self-service payment system and method of pay-use equipment based on Internet of things
CN105894270A (en) Payment method and device
CN105027133B (en) It is inputted based on user and shows icon
CN113344572A (en) Offline payment method, device and equipment
KR102154896B1 (en) System and method for generating security code or virtual account
KR20150080658A (en) Method for authenticating goods and Apparatus therefor
CA3050132C (en) Enhanced near field communications attachment
KR20170024724A (en) Service providing apparatus and method for payment using cyber money, system and computer readable medium having computer program recorded therefor

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170510