CN106651378A - Payment terminal, system and method - Google Patents
Payment terminal, system and method Download PDFInfo
- Publication number
- CN106651378A CN106651378A CN201610921902.8A CN201610921902A CN106651378A CN 106651378 A CN106651378 A CN 106651378A CN 201610921902 A CN201610921902 A CN 201610921902A CN 106651378 A CN106651378 A CN 106651378A
- Authority
- CN
- China
- Prior art keywords
- payment
- terminal
- identification code
- dynamic
- password
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4012—Verifying personal identification numbers [PIN]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Cash Registers Or Receiving Machines (AREA)
Abstract
The embodiment of the invention provides a payment terminal, system and method. In one embodiment, the payment terminal comprises a dynamic password module and a two-dimensional code generation module. The dynamic password module is used for generating a dynamic authentication password when payment operations of a user are received. The two-dimensional code generation module is used for generating and displaying a payment identification code according to the dynamic authentication password and prestored payment account number information. When receiving the payment identification code, a cashier terminal analyzes the payment identification code, obtains verification data and sends the data to a payment platform, and the data is sent to an authentication server through the payment platform. The authentication server receives and verifies the verification data, and returns a verification result to the payment platform, so that the payment platform returns a corresponding payment result to the payment terminal according to the verification result. The security of payment of the terminal is improved.
Description
Technical field
The present invention relates to safety means technical field, in particular to a kind of payment terminal, system and method.
Background technology
With quickly propelling for the rise of development of Mobile Internet technology, the fast development of IT technologies, and ecommerce, barcode scanning
Pay easily customer experience so that barcode scanning pays pursuing in mobile payment field has obtained market numerous consumers, into
For the main force of mobile payment.But, because Quick Response Code pays the dependence to mobile network, can cause in the situation without network
Situation about cannot be paid down, and affect Consumer's Experience.Additionally, carry out paying the transmission of Quick Response Code by mobile network, also
The problem that the Quick Response Code hidden danger being stolen can be caused and payment safety is produced.
The content of the invention
In view of this, the purpose of the embodiment of the present invention is to provide a kind of payment terminal, system and method.
The embodiment of the present invention provides a kind of payment terminal, and the payment terminal includes:Dynamic password module and Quick Response Code are generated
Module;
The dynamic password module, for after the delivery operation for receiving user, generating dynamic authentication password;
The two-dimensional code generation module, props up for being generated according to the dynamic authentication password and the payment accounts information for prestoring
Pay identification code and shown;
Wherein, the cashier terminal is received after the payment identification code from the payment terminal, is parsed described payment and is recognized
Code is verified data is activation to payment platform, and by the payment platform certificate server is sent to;The certificate server
Receive and the checking data are verified, the result is returned to into the payment platform, make the payment platform according to institute
State the result and return corresponding payment result to the payment terminal.
Preferably, the payment terminal is connected by bluetooth with communication of mobile terminal, be provided with the mobile terminal with
The application program of the payment terminal association, the payment terminal also includes main control module;
The main control module logins the application program with the payment by the mobile terminal is received by login account
Terminal is set up the payment accounts of the payment platform sent after connection and is stored;
The main control module will be sent to the mobile terminal for the user identification code for paying, and the mobile terminal is by institute
State user identification code and be sent to the payment platform and stored.
The embodiment of the present invention also provides a kind of payment system, and the payment system includes being in communication with each other the payment end of connection
End, cashier terminal and certificate server;
The payment terminal includes:Dynamic password module and two-dimensional code generation module;
The dynamic password module, in the delivery operation of receive user, generating dynamic authentication password;
The two-dimensional code generation module, props up for being generated according to the dynamic authentication password and the payment accounts information for prestoring
Pay identification code and shown;
The cashier terminal includes:Identification code acquisition module and checking data transmission blocks;
The identification code acquisition module obtains the payment identification code from the payment terminal;
The checking data transmission blocks, for the checking data is activation that obtains of identification code that pays will to be parsed to paying
Platform, by the payment platform certificate server is sent to;
The certificate server includes authentication module;
The authentication module, for verifying to the checking data, by the result the payment platform is returned to,
The payment platform is set to return corresponding payment result to the payment terminal according to the result.
Preferably, the application program associated with the payment terminal is installed in the mobile terminal, by near-field communication
With payment terminal communication connection;
The mobile terminal includes:Login module and account sending module;
The login module, is connected for being logined the application program and being set up with the payment terminal by login account;
The account sending module, is deposited for the payment accounts information of payment platform to be sent to into the payment terminal
Storage;
The payment terminal also includes:Identification code sending module, for institute will to be sent to for the user identification code for paying
Mobile terminal is stated, the user identification code is sent to the payment platform and is stored by the mobile terminal.
Preferably, the two-dimensional code generation module is additionally operable to according to the dynamic authentication password, user identification code and described
The corresponding account of payment terminal is generated and pays identification code;
The checking data transmission blocks, are additionally operable to for the amount of money to be paid and the parsing payment identification code to obtain dynamic authentication
Password, user identification code and login account are sent to the payment platform, make the payment platform verify the user identification code
It is whether identical with the user identification code that it prestores, if identical, the dynamic authentication password and user identification code are sent to described
Certificate server.
Preferably, it is provided with the clock generator for time counting in the payment terminal, the dynamic password module,
It is additionally operable to generate described moving by hash algorithm according to the instant time counting of the clock generator and default key seed
State certification password.
Preferably, the checking data include the dynamic authentication password and certification account, and the authentication module is according to institute
State user identification code and generate checking dynamic password for checking, then by the dynamic authentication password and the dynamic mouth of the checking
Order is compared, if identical, judges the verificating data safety.
Preferably, the dynamic password module generates a dynamic only in response to a delivery operation within a preset time interval
Certification password.
Preferably, the authentication module is verified in the following manner to the data safety:Known according to the user
Other code generates the first checking dynamic password in the previous specified time period of current time, and is generated according to the user identification code
The second checking dynamic password in the latter specified time period of current time;
The comparison unit, is additionally operable to the dynamic authentication password and the checking dynamic password, first checking
Dynamic password and the second checking dynamic password are compared respectively, if the dynamic authentication password and the dynamic mouth of the checking
Make, any one is identical for the first checking dynamic password and the second checking dynamic password, then judge the checking data
Safety.
The embodiment of the present invention also provides a kind of method of payment, is applied to payment system, and the payment system includes phase intercommunication
Payment terminal, cashier terminal and certificate server that letter connects, methods described includes:
The payment terminal generates dynamic authentication password in the delivery operation of receive user;
The payment terminal is generated according to the dynamic authentication password and the payment accounts information for prestoring and pays identification code;
The cashier terminal obtains the payment identification code from the payment terminal;
The cashier terminal parses the payment identification code and is verified data is activation to payment platform, by the payment
Platform is sent to certificate server;
The certificate server verifies that data are verified to described, and the result is returned to into the payment platform, makes
The payment platform returns corresponding payment result to the payment terminal according to the result.
Compared with prior art, payment terminal, system and method for the invention.Recognized by generating dynamic in payment terminal
Card password, further according to the payment identification code that the dynamic authentication password generated is used to pay, also can be real in the case of without network
Now pay, improve Consumer's Experience.Additionally, generated using the local two-dimensional code generation module of payment terminal in the embodiment of the present invention propping up
Pay identification code, it is not necessary to network transmission Quick Response Code, solve safety defect and the dependence to network that existing Quick Response Code pays.
To enable the above objects, features and advantages of the present invention to become apparent, preferred embodiment cited below particularly, and coordinate
Appended accompanying drawing, is described in detail below.
Description of the drawings
In order to be illustrated more clearly that the technical scheme of the embodiment of the present invention, below will be attached to what is used needed for embodiment
Figure is briefly described, it will be appreciated that the following drawings illustrate only certain embodiments of the present invention, thus be not construed as it is right
The restriction of scope, for those of ordinary skill in the art, on the premise of not paying creative work, can be with according to this
A little accompanying drawings obtain other related accompanying drawings.
The schematic diagram that Fig. 1 is interacted for the running environment of each part of payment system that present pre-ferred embodiments are provided.
The block diagram of the payment terminal that Fig. 2 is provided for present pre-ferred embodiments.
Fig. 3 is the functional block diagram of payment system provided in an embodiment of the present invention.
The flow chart of the method for payment that Fig. 4 is provided for present pre-ferred embodiments.
Specific embodiment
Below in conjunction with accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Ground description, it is clear that described embodiment is only a part of embodiment of the invention, rather than the embodiment of whole.Generally exist
Herein the component of the embodiment of the present invention described and illustrated in accompanying drawing can be arranged and designed with a variety of configurations.Cause
This, below the detailed description of the embodiments of the invention to providing in the accompanying drawings is not intended to limit claimed invention
Scope, but it is merely representative of the selected embodiment of the present invention.Based on embodiments of the invention, those skilled in the art are not doing
The every other embodiment obtained on the premise of going out creative work, belongs to the scope of protection of the invention.
It should be noted that:Similar label and letter represents similar terms in following accompanying drawing, therefore, once a certain Xiang Yi
It is defined in individual accompanying drawing, then it need not be further defined and is explained in subsequent accompanying drawing.Meanwhile, the present invention's
In description, term " first ", " second " etc. are only used for distinguishing description, and it is not intended that indicating or implying relative importance.
Fig. 1 for the running environment of each part of payment system that present pre-ferred embodiments are provided schematic diagram.Figure includes
Interact between payment terminal 100, cashier terminal 200, mobile terminal 300, certificate server 400 and payment platform 500
Schematic diagram.The cashier terminal 200 can be communicatively coupled by network with the certificate server 400 and payment platform 500,
To enter row data communication or interaction.The cashier terminal 200 and mobile terminal 300 may be, but not limited to, smart mobile phone, individual
People's computer (personal computer, PC), panel computer, personal digital assistant (personal digital
Assistant, PDA), mobile internet surfing equipment (mobile Internet device, MID) etc..In the present embodiment, the movement
The application program associated with payment terminal 100 is installed in terminal 300.The mobile terminal 300 is by near-field communication (such as indigo plant
Tooth, Zibee, NFC etc.) it is connected with the short-distance wireless communication of the payment terminal 100.The cashier terminal 200 is obtained and paid eventually
The local payment identification code for generating in end 100, is then sent to payment platform 500, by payment platform 500 by the payment identification code
It is transmitted to the certificate server 400 to verify, after being verified, carries out propping up according to the payment accounts that the payment identification code is built-in
Pay operation.
As shown in Fig. 2 being the block diagram of payment terminal 100.The payment terminal 100 includes paying button 110, master
Control module 111, dynamic password module 112, two-dimensional code generation module 113 and display module 114.
The payment button 110, main control module 111, dynamic password module 112, two-dimensional code generation module 113 and display mould
The each element of block 114 is directly or indirectly electrically connected with each other, to realize the transmission or interaction of data.For example, these elements
Can realize being electrically connected with by one or more communication bus or holding wire each other.The dynamic password module 112 and two
Dimension code generation module 113 can be stored in memorizer or be solidified including at least one in the form of software or firmware (firmware)
Software function module in the operating system (operating system, OS) of the payment terminal 100.In addition, paying eventually
End 100 can also include processor and memorizer (not shown), and processor is used to perform the executable module stored in memorizer,
Software function module or computer program that such as described dynamic password module 112 and two-dimensional code generation module 113 include.
It is described to pay the mechanical key that button 110 is provided on the body of payment terminal 100, it is also possible to be provided in
Electric capacity button or Trackpad on display module 114 etc..User can pay button 110 and touch by operation (as pressed or touching)
The beginning that payment terminal 100 triggers payment flow is sent out, dynamic password module 112 and two-dimensional code generation module 113 etc. is then performed
Function and flow process that various functions module is provided.
The dynamic password module 112 is used for after the delivery operation for receiving user, generates dynamic authentication password.This reality
In applying example, in the dynamic password module 112 clock generator is provided with.The dynamic password module 112 can according to it is described when
The counting of clock generator and the key seed for prestoring generate the dynamic authentication password by hash algorithm.In a kind of embodiment
In, the generating algorithm of dynamic authentication password is:PWotp=HASH (SEED+TickCountM/3600), wherein PWotp represent dynamic
State certification password;SEED represents key seed;TickCountM represents the counting of clock generator.Wherein TickCountM/
3600 is to round 3600 milliseconds of integral multiple, can make the dynamic authentication of acquisition in 3600 milliseconds i.e. 60 second after starting point is specified
Password is identical.Wherein, HASH represents hash algorithm, and the binary value of random length is mapped as shorter fixed length by hash algorithm
The binary value of degree, this little binary value is referred to as cryptographic Hash.Cryptographic Hash is the unique and extremely compact numerical value of one piece of data
Representation.The key seed can be a string irregular character strings.In the payment terminal 100 and certificate server 400
Storage identical key seed.
The two-dimensional code generation module 113, for being given birth to according to the dynamic authentication password and the payment accounts information for prestoring
Into payment identification code.The two-dimensional code generation module 113 includes that Quick Response Code generating algorithm or a Quick Response Code plug-in unit (are used
What the programming languages such as JAVA, C#, VB were write calls software).The application principle of the two-dimensional code generation module 113 is Quick Response Code life
Into software, user or terminal are entered information in two-dimensional code generation module 113, generate corresponding Quick Response Code.
Display module 114 is used to show that the payment identification code is recognized for cashier terminal 200.The display module 114 can
An interactive interface (such as user interface) is provided between the payment terminal 100 and user or for display image number
According to referring to user.In the present embodiment, the display module 114 can be liquid crystal display or touch control display.If touching
Control display, it can be capacitance type touch control screen or resistance type touch control screen of support single-point and multi-point touch operation etc..Support single-point
Refer to that touch control display can sense that one or more positions are produced simultaneously on the touch control display with multi-point touch operation
Raw touch control operation, and transfer to processor to be calculated and processed the touch control operation for sensing.
Wherein, the cashier terminal 200 parses the payment identification code and is verified after the payment identification code is received
Data is activation is sent to certificate server 400 to payment platform 500 by the payment platform 500;The certificate server
400 pairs it is described checking data verify, the result is returned to into the payment platform 500, make the payment platform 500
According to the result corresponding payment result is returned to the payment terminal 100.
In other embodiments, the payment terminal 100 first passes through the binding that mobile terminal 300 implements payment accounts, institute
It can be the mobile terminals such as mobile phone, panel computer to state mobile terminal 300.The payment terminal 100 passes through bluetooth, Zigbee, NFC
Short haul connection is set up etc. near-field communication module with mobile terminal 300 to be connected.The mobile terminal 300 can be by installing and institute
The application program for stating the association of payment terminal 100 realizes the binding of the payment accounts and payment terminal 100.The payment terminal 100
Main control module 111 mobile terminal 300 logined into the application program by login account build with the payment terminal 100
The corresponding payment accounts of payment platform 500 sent after vertical connection are stored, and will be sent out for the user identification code for paying
The mobile terminal 300 is given, the user identification code is sent to the payment platform 500 and is carried out by the mobile terminal 300
Storage.The payment platform 500 can be the third parties such as Web bank, Alipay wallet, wechat wallet, Baidu's wallet
Payment platform.
Payment terminal 100 in the present embodiment, generates dynamic authentication password, further according to the dynamic authentication mouth by local
Order generates the payment identification code for paying, and also can realize paying in the case of without network, improves Consumer's Experience.Additionally, this
Generated using the two-dimensional code generation module in payment terminal 100 in inventive embodiments and pay identification code, it is not necessary to network transmission two
Dimension code, solves safety defect and the dependence to network that existing Quick Response Code pays.
Fig. 3 is referred to, the embodiment of the present invention also provides a kind of payment system, and the payment system includes being in communication with each other connection
Payment terminal 100, cashier terminal 200 and certificate server 400;
The payment terminal 100 includes:Dynamic password module 112, two-dimensional code generation module 113 and display module 114.Institute
Dynamic password module 112 is stated, in the delivery operation of receive user, generating dynamic authentication password.The Quick Response Code is generated
Module 113, for generating according to the dynamic authentication password and the payment accounts information for prestoring identification code is paid.The display mould
Block 114, for showing that the payment identification code is recognized for the cashier terminal.
In an example, arrange in the payment terminal 100 and pay button 110, the payment button 110 can be set
Put the mechanical key on the body of payment terminal 100, it is also possible to electric capacity button or Trackpad being arranged on display module etc..Need
When paying the bill, user only need to be pressed after the payment button 110, trigger the execution of dynamic password module 112.With regard to payment terminal
100 other details can also further with reference to the embodiment of above-mentioned payment terminal 100 will not be described here.
The cashier terminal 200 includes:Identification code acquisition module 210 and checking data transmission blocks 211.The identification code
Acquisition module 210, for obtaining the payment identification code from the payment terminal 100.The checking data transmission blocks 211,
For the checking data is activation that obtains of identification code that pays will to be parsed to payment platform 500, by the payment platform 500
Give certificate server 400.
The certificate server 400 includes authentication module 410.The authentication module 410, for entering to the checking data
Row checking, by the result the payment platform 500 is returned to, and the payment platform 500 is returned according to the result
Corresponding payment result gives the payment terminal 100.In the present embodiment, the certificate server 400 is receiving the checking
After data, the checking password to being applied to verify is generated, the checking password is entered with corresponding data in the checking data
Row contrast, if identical, judges the verificating data safety.The payment platform 500 receives the certificate server 400
After security certification result, shift the corresponding amount of money from the payment accounts and go in the corresponding account of the cashier terminal 200, and
Return to the payment terminal 100 and pay successful result.
Needed first to store in the payment terminal 100 for propping up before payment for goods is paid using the payment terminal 100
The payment accounts paid and password.The payment accounts can be the corresponding account of Third-party payment platform, or bank card
Number.
In one embodiment, payment accounts are sent to into payment terminal 100 by mobile terminal 300 to be stored.
The application program associated with the payment terminal 100 is installed, by near-field communication and the payment in the mobile terminal 300
Terminal 100 is communicated to connect.The mobile terminal 300 includes:Login module 310 and account sending module 311.The login module
310, it is connected for logining the application program and setting up with the payment terminal 100 by login account.The account sends mould
Block 311, is stored for the payment accounts information of payment platform to be sent to into the payment terminal 100.The payment terminal
100 also include:Identification code sending module, for by for the user identification code (UID, User Identification) of payment
The mobile terminal 300 is sent to, the user identification code is sent to the payment platform 500 and is entered by the mobile terminal 300
Row storage.The application program is provided for the human-computer interaction interface of receiving user's input information.User can be by keyboard etc.
Input equipment is input into corresponding payment accounts, and arranges the corresponding password of the payment accounts.In the present embodiment, the near field leads to
Believe it can is bluetooth, Zigbee, NFC, LAN etc..
In other embodiments, the payment terminal 100 can be connected by USB with other-end (for example, computer etc.), from
And realize the data transfer with other terminals.The other-end can be used for the payment accounts of receiving user's input and correspondence password
And be sent to payment terminal 100 and stored.
The communication link of payment terminal 100 and mobile terminal 300 is realized by using the mode such as near-field communication or USB connections
Connect, make the data transfer between payment terminal 100 and mobile terminal 300 have more safety, and need not rely on mobile network
Support also more convenient can realize paying connection.
Further, the two-dimensional code generation module 113 be additionally operable to according to the dynamic authentication password, user identification code and
The corresponding account of the payment terminal is generated and pays identification code.The checking data transmission blocks 211, are additionally operable to the amount of money to be paid
And parse it is described pay identification code dynamic authentication password, user identification code and login account for obtaining etc. and be sent to described pay flat
Platform 500, makes the payment platform 500 verify whether the user identification code is identical with the user identification code that it prestores, if identical,
The dynamic authentication password and user identification code are sent to into the certificate server 400.The payment platform 500 is first according to pre-
The corresponding user identification code of the payment accounts deposited and the user identification code are then forwarded to certification after whether identical judges
Server 400 verified, also can further improve the safety of payment.
Further, the clock generator for time counting, the dynamic password are provided with the payment terminal 100
Module, is additionally operable to generate institute by hash algorithm according to the instant time counting of the clock generator and default key seed
State dynamic authentication password.In the present embodiment, in the dynamic password module 112 clock generator is provided with.The dynamic password
Module 112 generates the dynamic authentication mouth according to the counting of the clock generator and the key seed for prestoring by hash algorithm
Order.In one embodiment, PWotp=HASH (SEED+TickCountM/3600), wherein PWotp represent dynamic authentication mouth
Order;SEED represents key seed;TickCountM represents the counting of clock generator.Wherein TickCountM/3600 is to round
3600 milliseconds of integral multiple, can make the dynamic authentication password obtained in 3600 milliseconds i.e. 60 second after starting point is specified identical.
Wherein, HASH represents hash algorithm, and hash algorithm two enters what the binary value of random length was mapped as shorter regular length
Value processed, this little binary value is referred to as cryptographic Hash.Cryptographic Hash is the unique and extremely compact numerical value representation of one piece of data.
The checking data include the dynamic authentication password and certification account, and the authentication module 410 can be according to described
User identification code generates the checking dynamic password for checking, then by the dynamic authentication password and the checking dynamic password
It is compared, if identical, judges the verificating data safety.
Further, the dynamic password module 112, at the appointed time receives multiple delivery operations of user in section
When, the generation operation of a dynamic authentication password is only carried out, it is not responding to other delivery operations, it is to avoid the multiple payment of short time
Unsafe factor caused by operation.For example, within 60 second time, for example, 12:00:00-12:00:In 59 times, no matter produce
How many times delivery operation, payment terminal 100 only generates a dynamic authentication password.
Further, the authentication module 410 is verified in the following manner to the data safety:According to the use
Family identification code generates the first checking dynamic password in the previous specified time period of current time, and according to the user identification code
Generate the second checking dynamic password in the latter specified time period of current time.The comparison unit, being additionally operable to will be described dynamic
State certification password enters respectively with the checking dynamic password, the first checking dynamic password and the second checking dynamic password
Row compares, if the dynamic authentication password is tested with the checking dynamic password, the first checking dynamic password and described second
The arbitrary checking password of card dynamic password is identical, then judge the verificating data safety.
In an example, the counting of the clock generator of payment terminal 100 is represented with TickCountM, is used
TickCountS represents the time counting of certificate server 400, and with TickValue difference is represented, and with SEED key seed is represented, and uses
PWotp1 represents checking dynamic password, and with PWotp0 the first checking dynamic password is represented, and with PWotp2 the second checking dynamic is represented
Password.The counting TickCountM and authentication service of the clock generator of payment terminal 100 are recorded in the certificate server 400
Difference TickValue of the time counting TickCountS of device 400, TickValue=TickCountS-TickCountM;Wherein
The unit of TickCountM, TickCountS and TickValue is millisecond ms.The certificate server 400 is receiving checking
After data, first pass through and be calculated checking dynamic password PWotp1, wherein PWotp1=HASH (SEED+ (TickCountS-
TickValue)/3600).In order to evade the mistake between the clock generator of payment terminal 100 and the clock of certificate server 400
Difference, certificate server 400 calculates the dynamic password of first 60 seconds and latter 60 seconds simultaneously, i.e.,:
PWotp0=HASH (SEED+ (TickCountS-TickValue-3600)/3600).
PWotp2=HASH (SEED+ (TickCountS-TickValue+3600)/3600).
Certificate server 400 is dynamic with checking dynamic password PWotp1, the first checking respectively by dynamic authentication password PWotp
Password PWotp0 and second checking dynamic password PWotp2 be compared respectively, judge whether it is identical, if state certification password PWotp
Certification identical with arbitrarily checking password passes through.
Further, if the dynamic mouth of the checkings of checking dynamic password PWotp0 or second of dynamic authentication password PWotp and first
Make PWotp2 identical, then calibrate difference TickValue and replace original difference.In detail, if if PWotp is equal to
PWotp0, the TickValue recorded in data base is needed plus 3600;If PWotp is equal to PWotp1, record in data base
TickValue does not make an amendment;If PWotp is equal to PWotp2, the TickValue recorded in data base needs to deduct 3600.
System in the present embodiment, by the payment identification code generated without payment terminal under network state 100, by
Payment platform 500 is sent to after the acquisition payment identification code of the cashier terminal 200 and certificate server 400 is verified, improve
The safety that terminal pays.In addition, also can be paid in the case of without network, the convenience of user is improved.
Fig. 4 is referred to, is the method for payment for being applied to the payment system shown in Fig. 3 that present pre-ferred embodiments are provided
Flow chart.The idiographic flow shown in Fig. 4 will be described in detail below.
Step S101, the payment terminal 100 generates dynamic authentication password in the delivery operation of receive user.
Step S102, the payment terminal 100 is generated according to the dynamic authentication password and the payment accounts information for prestoring
Pay identification code.
Step S103, the cashier terminal 200 obtains the payment identification code from the payment terminal 100.
Step S104, the cashier terminal 200 parses the payment identification code and is verified data is activation to payment platform
500, certificate server 400 is sent to by the payment platform 500.
Step S105, the checking data of the certificate server 400 pairs are verified, the result returned to described
Payment platform 500, makes the payment platform 500 return corresponding payment result to the payment terminal according to the result
100。
Modules in said system can be used to perform each step in the present embodiment, other with regard to the present embodiment
Details can further with reference to the embodiment of above-mentioned payment system will not be described here.
Method in the present embodiment, by generating dynamic authentication password in payment terminal, further according to the dynamic
Certification password generated is used for the payment identification code for paying, and also can realize paying in the case of without network, improves Consumer's Experience.This
Outward, generated using the local two-dimensional code generation module of payment terminal in the embodiment of the present invention and pay identification code, it is not necessary to which network is passed
Defeated Quick Response Code, solves safety defect and the dependence to network that existing Quick Response Code pays.
In several embodiments provided herein, it should be understood that disclosed system, terminal and method, also may be used
To realize by another way.System embodiment described above is only schematic, for example, the flow chart in accompanying drawing
With system, the system in the cards of method and computer program product that block diagram shows multiple embodiments of the invention
Framework, function and operation.At this point, each square frame in flow chart or block diagram can represent module, program segment or a generation
A part for code a, part for the module, program segment or code is used to realize the logic function of regulation comprising one or more
Executable instruction.It should also be noted that at some as in the implementations replaced, the function of being marked in square frame can also be with
Order different from being marked in accompanying drawing occurs.For example, two continuous square frames can essentially be performed substantially in parallel, they
Sometimes can also perform in the opposite order, this is depending on involved function.It is also noted that block diagram and/or flow chart
In each square frame and block diagram and/or the square frame in flow chart combination, can with perform regulation function or action it is special
With hardware based system realizing, or can be realized with the combination of computer instruction with specialized hardware.
In addition, each functional module in each embodiment of the invention can integrate to form an independent portion
Divide, or modules individualism, it is also possible to which two or more modules are integrated to form an independent part.
If the function is realized and as independent production marketing or when using using in the form of software function module, can be with
In being stored in a computer read/write memory medium.Based on such understanding, technical scheme is substantially in other words
The part contributed to prior art or the part of the technical scheme can be embodied in the form of software product, the meter
Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be individual
People's computer, server, or network equipment etc.) perform all or part of step of each embodiment methods described of the invention.
And aforesaid storage medium includes:USB flash disk, portable hard drive, read only memory (ROM, Read-Only Memory), random access memory are deposited
Reservoir (RAM, Random Access Memory), magnetic disc or CD etc. are various can be with the medium of store program codes.Need
Illustrate, herein, such as first and second or the like relational terms be used merely to by an entity or operation with
Another entity or operation make a distinction, and not necessarily require or imply these entities or there is any this reality between operating
The relation or order on border.And, term " including ", "comprising" or its any other variant are intended to the bag of nonexcludability
Contain, so that a series of process, method, article or equipment including key elements is not only including those key elements, but also including
Other key elements being not expressly set out, or also include the key element intrinsic for this process, method, article or equipment.
In the absence of more restrictions, the key element for being limited by sentence "including a ...", it is not excluded that including the key element
Process, method, article or equipment in also there is other identical element.
The preferred embodiments of the present invention are the foregoing is only, the present invention is not limited to, for the skill of this area
For art personnel, the present invention can have various modifications and variations.It is all within the spirit and principles in the present invention, made any repair
Change, equivalent, improvement etc., should be included within the scope of the present invention.It should be noted that:Similar label and letter exists
Similar terms is represented in figure below, therefore, once being defined in a certain Xiang Yi accompanying drawing, then it is not required in subsequent accompanying drawing
It is further defined and is explained.
The above, the only specific embodiment of the present invention, but protection scope of the present invention is not limited thereto, any
Those familiar with the art the invention discloses technical scope in, change or replacement can be readily occurred in, all should contain
Cover within protection scope of the present invention.Therefore, protection scope of the present invention described should be defined by scope of the claims.
Claims (10)
1. a kind of payment terminal, it is characterised in that the payment terminal includes:Dynamic password module and two-dimensional code generation module;
The dynamic password module, for after the delivery operation for receiving user, generating dynamic authentication password;
The two-dimensional code generation module, knows for generating to pay according to the dynamic authentication password and the payment accounts information for prestoring
Other code is simultaneously shown;
Wherein, cashier terminal is received after the payment identification code from the payment terminal, is parsed the payment identification code and is tested
Card data is activation is sent to certificate server to payment platform by the payment platform;The certificate server is received to institute
State checking data to be verified, the result is returned to into the payment platform, make the payment platform according to the checking knot
Fruit returns corresponding payment result to the payment terminal.
2. payment terminal as claimed in claim 1, it is characterised in that the payment terminal is by bluetooth and communication of mobile terminal
Connection, is provided with the application program associated with the payment terminal in the mobile terminal, the payment terminal also includes master control mould
Block;
The main control module logins the application program with the payment terminal by the mobile terminal is received by login account
The payment accounts for setting up the payment platform sent after connection are stored;
The main control module will be sent to the mobile terminal for the user identification code for paying, and the mobile terminal is by the use
Family identification code is sent to the payment platform and is stored.
3. a kind of payment system, it is characterised in that the payment system includes being in communication with each other payment terminal, the cashier terminal of connection
And certificate server;
The payment terminal includes:Dynamic password module and two-dimensional code generation module;
The dynamic password module, in the delivery operation of receive user, generating dynamic authentication password;
The two-dimensional code generation module, knows for generating to pay according to the dynamic authentication password and the payment accounts information for prestoring
Other code is simultaneously shown;
The cashier terminal includes:Identification code acquisition module and checking data transmission blocks;
The identification code acquisition module obtains the payment identification code from the payment terminal;
The checking data transmission blocks, the checking data is activation for the parsing payment identification code to be obtained is flat to paying
Platform, by the payment platform certificate server is sent to;
The certificate server includes authentication module;
The authentication module, for verifying to the checking data, by the result the payment platform is returned to, and makes institute
State payment platform and corresponding payment result is returned to the payment terminal according to the result.
4. payment system as claimed in claim 3, it is characterised in that the system also includes mobile terminal, the mobile terminal
In the application program associated with the payment terminal is installed, communicated to connect with the payment terminal by near-field communication;
The mobile terminal includes:Login module and account sending module;
The login module, is connected for being logined the application program and being set up with the payment terminal by login account;
The account sending module, is stored for the payment accounts information of payment platform to be sent to into the payment terminal;
The payment terminal also includes:Identification code sending module, for the shifting will to be sent to for the user identification code for paying
The user identification code is sent to the payment platform and is stored by dynamic terminal, the mobile terminal.
5. payment system as claimed in claim 4, it is characterised in that the two-dimensional code generation module is additionally operable to according to described dynamic
The corresponding account of state certification password, user identification code and the payment terminal is generated and pays identification code;
The checking data transmission blocks, are additionally operable to for the amount of money to be paid and the parsing payment identification code to obtain dynamic authentication mouth
Make, user identification code and login account are sent to the payment platform, make the payment platform verify the user identification code with
Whether the user identification code that it prestores is identical, if identical, the dynamic authentication password and user identification code be sent to and described recognized
Card server.
6. payment system as claimed in claim 5, it is characterised in that be provided with for time counting in the payment terminal
Clock generator, the dynamic password module is additionally operable to according to the instant time counting of the clock generator and default close
Key seed generates the dynamic authentication password by hash algorithm.
7. payment system as claimed in claim 5, it is characterised in that the checking data include the dynamic authentication password and
Certification account, the authentication module generates the checking dynamic password for checking according to the user identification code, then will be described
Dynamic authentication password is compared with the checking dynamic password, if identical, judges the verificating data safety.
8. payment system as claimed in claim 7, it is characterised in that the dynamic password module is within a preset time interval only
Delivery operation of response generates a dynamic authentication password.
9. payment system as claimed in claim 8, it is characterised in that the authentication module is in the following manner to the data
Safety is verified:
According to the first checking dynamic password in the previous specified time period of user identification code generation current time, and according to
The user identification code generates the second checking dynamic password in the latter specified time period of current time;
The dynamic authentication password is dynamic with the checking dynamic password, the first checking dynamic password and second checking
State password is compared respectively, if the dynamic authentication password and the checking dynamic password, the first checking dynamic password
And the second checking dynamic password any one is identical, then judge the verificating data safety.
10. a kind of method of payment, is applied to payment system, and the payment system includes being in communication with each other the payment terminal of connection, receives
Silver-colored terminal and certificate server, it is characterised in that methods described includes:
The payment terminal generates dynamic authentication password in the delivery operation of receive user;
The payment terminal is generated according to the dynamic authentication password and the payment accounts information for prestoring and pays identification code;
The cashier terminal obtains the payment identification code from the payment terminal;
The cashier terminal parses the payment identification code and is verified data is activation to payment platform, by the payment platform
It is sent to certificate server;
The certificate server verifies that data are verified to described, and the result is returned to into the payment platform, makes described
Payment platform returns corresponding payment result to the payment terminal according to the result.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610921902.8A CN106651378A (en) | 2016-10-21 | 2016-10-21 | Payment terminal, system and method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610921902.8A CN106651378A (en) | 2016-10-21 | 2016-10-21 | Payment terminal, system and method |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106651378A true CN106651378A (en) | 2017-05-10 |
Family
ID=58857037
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610921902.8A Pending CN106651378A (en) | 2016-10-21 | 2016-10-21 | Payment terminal, system and method |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106651378A (en) |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108108969A (en) * | 2018-01-09 | 2018-06-01 | 深圳市海威达科技有限公司 | A kind of dynamic password method of payment for applying the high security on shared Self-help car washer |
CN108288155A (en) * | 2018-02-08 | 2018-07-17 | 上海链庄数据技术有限公司 | A kind of suspension settlement method of unmanned supermarket |
CN110012048A (en) * | 2018-11-22 | 2019-07-12 | 阿里巴巴集团控股有限公司 | Message identification code generation method, device, electronic equipment and computer storage medium |
CN110634191A (en) * | 2018-06-22 | 2019-12-31 | 腾讯科技(深圳)有限公司 | Authentication method, apparatus, medium, and device |
CN111901283A (en) * | 2019-05-05 | 2020-11-06 | 腾讯科技(深圳)有限公司 | Resource transfer method, device, terminal and storage medium |
CN112488694A (en) * | 2018-09-13 | 2021-03-12 | 创新先进技术有限公司 | Code scanning control method, device and system |
CN112677925A (en) * | 2021-01-22 | 2021-04-20 | 深圳市威尔电器有限公司 | Safe driving system |
CN113159771A (en) * | 2021-04-27 | 2021-07-23 | 中国工商银行股份有限公司 | Safety payment device and method, computer equipment and readable storage medium |
CN114978588A (en) * | 2022-04-12 | 2022-08-30 | 湖北华特信息技术有限公司 | Verification method and system based on optical one-way information transmission |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104268746A (en) * | 2014-09-17 | 2015-01-07 | 江苏爱心消费支付服务有限公司 | Card-free payment method |
CN104616148A (en) * | 2015-01-23 | 2015-05-13 | 恒银金融科技有限公司 | Payment terminal and paying method of wearable payment terminal |
CN204731832U (en) * | 2015-03-26 | 2015-10-28 | 深圳市亚略特生物识别科技有限公司 | Electronic fare payment system |
CN204791151U (en) * | 2015-07-17 | 2015-11-18 | 上海众人网络安全技术有限公司 | A intelligent bracelet and intelligent bracelet payment systems for mobile terminal payment |
CN204791152U (en) * | 2015-07-17 | 2015-11-18 | 上海众人网络安全技术有限公司 | A bluetooth headset and bluetooth headset payment systems for mobile terminal payment |
-
2016
- 2016-10-21 CN CN201610921902.8A patent/CN106651378A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104268746A (en) * | 2014-09-17 | 2015-01-07 | 江苏爱心消费支付服务有限公司 | Card-free payment method |
CN104616148A (en) * | 2015-01-23 | 2015-05-13 | 恒银金融科技有限公司 | Payment terminal and paying method of wearable payment terminal |
CN204731832U (en) * | 2015-03-26 | 2015-10-28 | 深圳市亚略特生物识别科技有限公司 | Electronic fare payment system |
CN204791151U (en) * | 2015-07-17 | 2015-11-18 | 上海众人网络安全技术有限公司 | A intelligent bracelet and intelligent bracelet payment systems for mobile terminal payment |
CN204791152U (en) * | 2015-07-17 | 2015-11-18 | 上海众人网络安全技术有限公司 | A bluetooth headset and bluetooth headset payment systems for mobile terminal payment |
Cited By (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108108969A (en) * | 2018-01-09 | 2018-06-01 | 深圳市海威达科技有限公司 | A kind of dynamic password method of payment for applying the high security on shared Self-help car washer |
CN108288155A (en) * | 2018-02-08 | 2018-07-17 | 上海链庄数据技术有限公司 | A kind of suspension settlement method of unmanned supermarket |
CN108288155B (en) * | 2018-02-08 | 2021-11-30 | 上海链庄数据技术有限公司 | Off-line settlement method for unmanned supermarket |
CN110634191A (en) * | 2018-06-22 | 2019-12-31 | 腾讯科技(深圳)有限公司 | Authentication method, apparatus, medium, and device |
CN112488694A (en) * | 2018-09-13 | 2021-03-12 | 创新先进技术有限公司 | Code scanning control method, device and system |
CN110012048A (en) * | 2018-11-22 | 2019-07-12 | 阿里巴巴集团控股有限公司 | Message identification code generation method, device, electronic equipment and computer storage medium |
CN111901283A (en) * | 2019-05-05 | 2020-11-06 | 腾讯科技(深圳)有限公司 | Resource transfer method, device, terminal and storage medium |
CN112677925A (en) * | 2021-01-22 | 2021-04-20 | 深圳市威尔电器有限公司 | Safe driving system |
CN113159771A (en) * | 2021-04-27 | 2021-07-23 | 中国工商银行股份有限公司 | Safety payment device and method, computer equipment and readable storage medium |
CN114978588A (en) * | 2022-04-12 | 2022-08-30 | 湖北华特信息技术有限公司 | Verification method and system based on optical one-way information transmission |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106651378A (en) | Payment terminal, system and method | |
US9430730B2 (en) | Anti-skimming payment card | |
US11720877B2 (en) | Conducting a transaction at a mobile POS terminal using a defined structure | |
US10535066B2 (en) | Systems and methods for securing pins during EMV chip and pin payments | |
CN105933274B (en) | A kind of method of payment and device | |
US20150046336A1 (en) | System and method of using a secondary screen on a mobile device as a secure and convenient transacting mechanism | |
TWI515674B (en) | Method for managing prepayment information, prepayment system, and computer-readable storage medium | |
CN109919586A (en) | Multi-level safety move transaction enables platform | |
JP2013527514A (en) | POS equipment, POS equipment card payment system and card payment transaction method | |
CN204990313U (en) | Disposition of equipment mandate device | |
CN102496112B (en) | Three-screen payment system based on intelligent SD card and realization method thereof | |
CN102158488A (en) | Dynamic countersign generation method and device and authentication method and system | |
CN107134079A (en) | A kind of self-help charging devices, systems, and methods | |
CN110766397B (en) | Near field payment method based on data identification model | |
CN106127467A (en) | The method of mobile payment integrating financial card paying and settle accounts | |
US20130103545A1 (en) | Cloud Credit Card Transaction System and Transaction Method Thereof | |
CN106980977A (en) | Payment system and its Payment Card based on Internet of Things | |
CN107169751B (en) | Self-service payment system and method of pay-use equipment based on Internet of things | |
CN105894270A (en) | Payment method and device | |
CN105027133B (en) | It is inputted based on user and shows icon | |
CN113344572A (en) | Offline payment method, device and equipment | |
KR102154896B1 (en) | System and method for generating security code or virtual account | |
KR20150080658A (en) | Method for authenticating goods and Apparatus therefor | |
CA3050132C (en) | Enhanced near field communications attachment | |
KR20170024724A (en) | Service providing apparatus and method for payment using cyber money, system and computer readable medium having computer program recorded therefor |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170510 |