CN106897881B - Online payment method with visible light and bar code bidirectional public key system authentication - Google Patents
Online payment method with visible light and bar code bidirectional public key system authentication Download PDFInfo
- Publication number
- CN106897881B CN106897881B CN201710066537.1A CN201710066537A CN106897881B CN 106897881 B CN106897881 B CN 106897881B CN 201710066537 A CN201710066537 A CN 201710066537A CN 106897881 B CN106897881 B CN 106897881B
- Authority
- CN
- China
- Prior art keywords
- payment
- consumer
- electronic wallet
- code
- module
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 79
- 230000002457 bidirectional effect Effects 0.000 title claims abstract description 7
- 238000012545 processing Methods 0.000 claims abstract description 27
- 238000004891 communication Methods 0.000 claims abstract description 18
- 230000008569 process Effects 0.000 claims description 60
- 238000012790 confirmation Methods 0.000 claims description 35
- 238000013475 authorization Methods 0.000 claims description 18
- 238000012795 verification Methods 0.000 claims description 14
- 230000000052 comparative effect Effects 0.000 claims description 9
- 238000010200 validation analysis Methods 0.000 claims description 6
- 230000006855 networking Effects 0.000 claims description 5
- 239000000284 extract Substances 0.000 claims description 3
- 230000003993 interaction Effects 0.000 claims description 3
- 238000012423 maintenance Methods 0.000 claims description 3
- 230000008520 organization Effects 0.000 claims description 3
- 238000005111 flow chemistry technique Methods 0.000 claims description 2
- 238000005516 engineering process Methods 0.000 description 6
- 238000010586 diagram Methods 0.000 description 2
- 238000004321 preservation Methods 0.000 description 2
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3274—Short range or proximity payments by means of M-devices using a pictured code, e.g. barcode or QR-code, being displayed on the M-device
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/36—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3829—Payment protocols; Details thereof insuring higher security of transaction involving key management
Abstract
The invention discloses an online payment method with visible light and bar code bidirectional public key system authentication. Establishing a set of consumption device with visible light and bar code mutual authentication, comprising: the electronic wallet comprises a visible light emitting module, a bar code scanning module, a control module, an input module, a display module, a password processing module and a data interface; the consumption machine comprises a visible light receiving module, a bar code display module, a read-write control module, a keyboard module, a display, a password coprocessor and a communication module; the method is implemented by a consumption machine, an electronic wallet and a server; the electronic wallet sends visible light signals and scans bar codes of the consumption machine, the consumption machine receives the visible light signals and generates display bar codes for scanning of the electronic wallet, and under the support of the server, a public key cryptosystem is adopted to verify data information of both payment parties; the method effectively improves the safety of the online payment method and the non-repudiation of both sides of the transaction.
Description
Technical Field
The invention belongs to the technical field of optical payment, and particularly relates to an online payment method with visible light and bar code bidirectional public key system authentication.
Background
Visible Light Communication (VLC) technology is a method for realizing wireless Communication by using flickering Light which is high-frequency and cannot be perceived by human eyes as an information carrier, carrying signals by using high-frequency flickering of an LED at a data sending end, and collecting the signals by using a photosensitive element with high-speed response at a receiving end.
The code scanning is a popular information acquisition mode at present, and a camera of a smart phone is usually adopted to shoot a bar code and identify information from the bar code.
The code scanning payment is an on-line payment method developed on the basis of a code scanning technology and technologies such as WeChat and Paibao. The payment means of 'code scanning payment' is the same as the traditional non-cash transaction means, and belongs to online transaction, and the original magnetic card system is a typical online transaction system.
The public key cryptosystem is an important branch in modern cryptography, is widely applied to the fields of electronic signature, authentication and the like, and is applied to electronic commerce and electronic government affairs.
The invention obtains the inspiration of VLC technology, code scanning payment and other modes, and provides an online payment method by means of intelligent equipment such as smart phones and tablet computers and provided with LED flash lamps and cameras.
Disclosure of Invention
The invention aims to provide an online payment method with visible light and bar code bidirectional public key system authentication.
The method comprises the following specific steps:
(1) establishing a set of consumption device with visible light and bar code mutual authentication, comprising: electronic purses, consumer machines, and servers.
An electronic wallet, comprising: the system comprises a visible light emitting module, a bar code scanning module, a control module, an input module, a display module, a password processing module and a data interface; the visible light emitting module is used for generating and sending visible light signals according to the information input by the control module; the bar code scanning module is used for scanning and identifying bar codes and outputting an identification result to the control module; a control module to: 1. processing information to be sent to generate a data packet, outputting the data packet to a visible light emitting module, and driving the visible light emitting module to send a visible light signal; 2. receiving the scanning result output of the bar code scanning module, and verifying the scanning result; 3. performing consumption, recharging, balance inquiry and reading and writing operation of operation log information with a server; 4. generating information needing to pass through the visible light emitting module according to the received information and the generated payment information; 5. the data interaction can be carried out with the server through the data interface; the input module is used for inputting information including payment amount, inquiry passwords, payment passwords and operation instructions to the control module; the display module is used for displaying payment amount, a password input interface, an operation instruction and prompt information; the password processing module is used for storing a public key ring of the consumer computer, a private key of the electronic wallet and input information, encrypting by adopting a public key or a private key according to a password processing unit built in the password processing module and decrypting by adopting the public key or the private key; and outputting the encrypted or decrypted information; and the data interface is used for providing a networking function of the electronic wallet and providing functions of connecting with the server and performing data exchange, data maintenance and upgrading.
A consumer machine, comprising: the device comprises a visible light receiving module, a bar code display module, a read-write control module, a keyboard module, a display, a password coprocessor and a communication module; the visible light receiving module is used for receiving the visible light signals, processing and restoring the visible light signals into corresponding digital signals and restoring the digital signals into data packets; the bar code display module is used for generating and displaying a bar code according to the input information of the read-write control module; a read-write control module for: 1. receiving the output of the visible light receiving module and authenticating the output; 2. processing information to be sent and outputting the information to a bar code display module; 3. performing consumption, recharging, balance inquiry and reading and writing operation of operation log information with a server; 4. providing a data interface, and uploading and downloading information with a server through a communication module; the keyboard module is used for inputting transaction amount, transaction password and operation instruction to the read-write control module; the display is used for displaying the transaction amount, the password input interface, the operation instruction and the prompt information; a cryptographic coprocessor to: 1. storing a public key ring of the electronic wallet and a private key of the consumer; 2. encrypting the input information by adopting a public key or a private key according to a password processing unit arranged in the password coprocessor, and decrypting the input information by adopting the public key or the private key; and outputting the encrypted or decrypted information; and the communication module is used for connecting the upper computer or the access network in a wired or wireless mode so as to be connected with the server.
A server to: 1. establishing data connection for uploading and downloading with the consumer computer through the communication module; 2. establishing data connection for uploading and downloading with the electronic wallet through a data interface; 3. providing background service support of the online payment method; 4. an interface providing the entire online payment device with the flow of funds of the financial system; 5. providing for issuing or de-authorizing a consumer machine, e-wallet, comprising: key updating, algorithm updating and upgrading, use authority adjustment, validity period adjustment, electronic wallet recharging and consumer machine payment; 6. the preservation comprises the following steps: information including an authorized user list, a blacklist, an operation log summary and a consumer list.
An authorized user list for maintaining a list comprising: the identity of the electronic purse, the use authority, the validity period, the identity information of the electronic purse holder and the public key of each electronic purse which are authorized to carry out online payment; the blacklist is used for storing the part of user information which is refused to pay for the transaction due to arrears, loss report or illegal use records in the authorized user list; a payment interface for providing an interface for the flow of funds throughout the online payment device with the financial system; the operation log summarization is used for storing information including query, recharge, consumption operation time, payment amount and payment process data parameters of all the consumption machines and the electronic wallets; a consumer machine manifest for maintaining a list comprising: the identity, the use authority, the validity period and the public key of each consumer machine of the consumer machine which is authorized to carry out online payment transaction; the server is used for issuing authority to the consumption machine, so that the consumption machine has the function of receiving payment of the electronic wallet in the device; the server is used for issuing authority to the electronic wallet, so that the electronic wallet has the function of paying to a consumption machine in the device; meanwhile, the server issues an authorization to the user, wherein the authorization mode is to issue an authorization entity hardware device or to provide an authorization number for the user of the existing device; and recharging the authorized entity hardware equipment issued by the server or the existing equipment of the user for obtaining the authorized number provided by the server, and writing the electronic wallet identity, the use authority, the validity period, the payment password and the inquiry password of the electronic wallet and the identity information of the electronic wallet holder.
The encryption and decryption in the consumption machine and the electronic wallet adopt the same public key cryptographic algorithm; the issuance and authorization of consumer machines and electronic wallets is handled by an entity, organization or a consortium to ensure that: 1. the public key ring on all authorized consumer machines contains the public keys of all authorized electronic purses; 2. the public key ring of all authorized electronic purses contains the public keys of all authorized consumer machines; 3. each consumer machine has a unique private key, and each electronic wallet has a unique private key; 4. all authorized electronic purses and consumer machines can upgrade or expand public keys on a public key ring when networking; 5. the electronic wallet and the consumer machine can upgrade or expand the private key of the electronic wallet and the consumer machine when the electronic wallet and the consumer machine are connected to the network; the electronic wallet can obtain a ciphertext M by using the information M encrypted by the private key S according to the encryption algorithm fun () of the public key cryptographic algorithm, and meanwhile, the consumer machine can decrypt the ciphertext M by using the public key G of the electronic wallet corresponding to the public key ring and the decryption algorithm gun () of the public key cryptographic algorithm to obtain the information M; but the consumer machine cannot obtain the ciphertext M encrypted by the private key of the e-wallet by encrypting the same information M using any one of the public keys on the public key ring or other keys other than the private key of the e-wallet.
(2) In the consumer device with visible light and barcode mutual authentication established in the step (1), payment is carried out to an authorized consumer machine by using an authorized electronic wallet, the payment is initiated by the consumer machine, and the payment flow processing comprises the following steps:
GY1, the consumer sends payment invitation to the electronic wallet to generate an unencrypted invitation code ZFYQ1, and the display generates a bar code to display; the invitation code ZFYQ1 includes: the product purchasing identifier SP1, the consumer identity identifier XID1 and the amount to be collected DFK 1.
GY2, the electronic wallet scans the bar code on the display, recognizes the invitation code ZFYQ2, extracts the purchased product identification SP2, the consumer identity identification XID2 and the amount to be paid DFK2 and displays the information through the display module; the E-wallet confirms whether the payment is agreed to be made, if yes, GY3 is entered, otherwise, the payment process is exited.
GY3, connecting the server to inquire the balance of the electronic wallet, and if the balance is sufficient, entering GY 4; otherwise, quitting the payment process and prompting that the balance is insufficient.
GY4, the electronic wallet generating a payment random code ZFR4 and generating a payment code ZFM4, the payment code ZFM4 comprising: the payment random code ZFR4, the payment amount ZFK4, the consumer identity XID4, the product purchase identity SP4 and the invitation code ZFYQ4 are used for encrypting the payment code ZFM4 by adopting a private key QS of the electronic wallet and an encryption algorithm fun () to obtain a ciphertext dsZFM 4; and then, encrypting the ciphertext dsZFM4 and the electronic wallet identity QID4 by using the public key XG and the encryption algorithm fun () of the consumer to obtain a ciphertext xgdsZFMMQID 4, and sending the ciphertext xgdsZFMMQID 4.
GY5, the consumer receives the ciphertext xgdsZFMMQID 5, and enters GY 5.1.
GY5.1, decrypting the xgdsZFMQID5 by using the private key XS of the consumer and a decryption algorithm gun (), and if the dsZFM5 and the electronic wallet identity QID5 are obtained, the decryption is successful and GY5.2 is entered; if the decryption cannot be carried out, the decryption is failed, and the payment process is quitted; therefore, the payment can be received only when the consumer machine which sends out the payment invitation and is approved by the electronic wallet enters the following payment process, and the counterfeit of the consumer machine or the replacement of the consumer machine by other illegal consumer machines in the payment process is avoided.
GY5.2, selecting a public key QS5 of the electronic wallet to decrypt a ciphertext dsZFM5 by using a decryption algorithm gun () according to an electronic wallet identity QID5, extracting a payment random code ZFR5, a payment amount ZFK5, a consumer identity XID5, a product purchase identity SP5 and an invitation code ZFYQ5 from the ciphertext, and entering GY5.3; this ensures that, if and only if there is a wallet identified as QID5, it is possible to generate a ciphertext and perform a subsequent payment process, confirming that it is the wallet identified as QID5 that is participating in the payment process.
GY5.3, the following comparative validation was performed:
1) compare the invitation code ZFYQ1 generated by the consumer in GY1 with the invitation code ZFYQ5 extracted from the decrypted ciphertext in G5.2.
2) The amount to be collected DFK1 generated by the consuming machine in GY1 is compared with the payment ZFK5 extracted from the decrypted ciphertext of G5.2.
3) And comparing the consumption machine identity XID1 in GY1 with the consumption machine identity XID5 extracted from the decrypted ciphertext in G5.2.
4) Compare the purchased product identification SP1 generated by the consumer in GY1 with the purchased product identification SP5 extracted from the decrypted ciphertext in G5.2.
And when the 4 contrasts are respectively consistent, the consumer machine enters GY5.4, otherwise, contrast verification is prompted, and the payment process is exited.
GY5.4, after the consumer machine completes the verification in GY5.3, generating a collection confirmation code SKQR5, and generating a collection code SKM5, wherein the collection confirmation code SKM5 comprises a payment random code ZFR5, a payment amount ZFK5, a consumer machine identity XID5, a purchased product identity SP5, an invitation code ZFYQ5 and a collection confirmation code SKQR5, the SKM5 is encrypted by an encryption algorithm fun () through a private key XS of the consumer machine to obtain a ciphertext xsSKM5, the xsSKM5 and the consumer machine identity XID5 are encrypted by a public key QG of the electronic wallet to obtain dgxsSKMXID5, and a bar code is generated and displayed on a bar code display module.
GY6, the electronic wallet scans the bar code on the bar code display module, receives the ciphertext dgxsSKMXID6, and enters GY 6.1.
GY6.1, decrypting the ciphertext dgxsSKMXID6 by using a private key QS and a decryption algorithm gun () of the electronic wallet, and if the decryption can obtain xsSKM6 and a consumer identity XID6, the decryption is successful and GY6.2 is entered; if the decryption cannot be carried out, the decryption is failed, and the payment process is quitted; therefore, the electronic wallet which generates and sends out the ciphertext dgxsSKMXID6 can enter the following payment process, and the counterfeiting of the electronic wallet or the replacement of the electronic wallet by other illegal electronic wallets in the payment process is avoided.
GY6.2, then, decrypting the ciphertext xsSKM6 by using a public key XG6 which is selected by the electronic wallet according to the identity XID6 of the consumer, and extracting a payment random code ZFR6, a payment amount ZFK6, the identity XID6-1 of the consumer, a purchased product identity SP6, an invitation code ZFYQ6 and a payment confirmation code SKQR 6.
GY6.3, the following comparative validation was performed:
1) compare the payment random code ZFR4 generated by the electronic wallet in GY4 with the payment random code ZFR6 extracted in GY 6.2.
2) Compare the payment amount ZFK4 generated by the electronic wallet in GY4 with the payment amount ZFK6 extracted in GY 6.2.
3) Comparing the identity of the consumer with the identity of the consumer XID4 received by the electronic purse in GY4, the identity of the consumer XID6-1 extracted from GY6.2 and the identity of the consumer XID6 decrypted in GY 6.1.
4) Compare the purchased product identification SP4 received by the electronic wallet in GY4 with the purchased product identification SP6 extracted in GY 6.2.
When the 4 contrasts are respectively consistent, the consumer machine enters GY6.4, otherwise, contrast verification is prompted, the payment process is quitted, and prompt information with inconsistent contrasts is displayed through the display module.
GY6.4, the server updates the wallet balance of the electronic wallet, generates an operation log by using the operation time SJ, a collection confirmation code SKQR6, a payment amount ZFK6, a consumer identity XID6, a purchased product identifier SP6, an invitation code ZFYQ6 and a payment random code ZFR6, displays prompt information of payment success through a display module, and sends a confirmation code QRM6 for completing payment through a visible light emitting module, wherein the confirmation code QRM6 comprises: an invitation code ZFYQ6 and a receipt confirmation code SKQR 6.
GY7, the consumer computer receives the invitation code ZFYQ7 and the receipt confirmation code SKQR 7; and the following comparative verification is carried out:
1) compare the consumer generated invitation code ZFYQ1 in GY1 with the invitation code ZFYQ7 received in GY 9;
2) the charge confirmation code SKQR6 generated by the consumer in GY6 is compared with the charge confirmation code SKQR7 received in GY 7.
When the 2 comparisons are respectively consistent, the server generates an operation log by using the operation time SSJ, the electronic wallet identity QID5, the payment random code ZFR5, the purchased product identity SP5, the payment amount ZFK5, the invitation code ZFYQ7 and the collection confirmation code SKQR7 of the current payment, generates an identifier that the flow is successfully completed by the consumer computer, and displays the identifier on the display.
(3) In the payment process, the data sent by the consumer machine is received from the electronic wallet, and the data sent by the electronic wallet is received from the consumer machine, so that the possibility that the data cannot be identified exists in the transceiving process, and therefore, in the payment process, for the situation that the data cannot be identified and cannot be identified due to the fact that the data cannot be received, the electronic wallet or the consumer machine can unilaterally end the payment process after a set waiting time is overtime.
In the payment process, the data sent from the electronic wallet to the consumer machine and the data sent from the consumer machine to the electronic wallet may have risks of data loss, tampering and forgery in the transceiving process, so in the payment process, for each received key data, it is assumed that the currently received data is different from the data generated or received in the previous steps of the payment process, and comparison and verification are required, thereby ensuring the authenticity and integrity of the transceiving data.
The invention combines the visible light communication technology and the bar code scanning identification technology, uses the equipment such as the smart phone, the tablet personal computer and the like as the carrier of the electronic wallet, adopts a public key cryptosystem between the consumption machine and the electronic wallet to verify the identity and the transaction information, effectively improves the safety of the online payment method and the non-repudiation of both parties of the transaction. The invention realizes the online payment by using the equipment carried by people, so that people can go out more conveniently, and the safety of the online payment is improved to a certain degree.
Drawings
FIG. 1 is a schematic diagram of the structure of the process of the present invention.
Fig. 2 is a block diagram of an apparatus in an embodiment of the present invention.
The labels in the figure are: 1-an electronic wallet; 2-a consumer machine; 3-a server; 11-a control module; 12-an input module; 13-a display module; 14-a data interface; 15-a barcode scanning module; 17-a visible light emitting module; 18-a cryptographic processing module; 21-read-write control module; 22-a barcode display module; 24-a visible light receiving module; 25-a keyboard module; 26-a display; 27-a communication module; 28-cryptographic coprocessor.
Detailed Description
Example (b):
the invention relates to an online payment method with visible light and bar code bidirectional public key system authentication, which comprises the following specific implementation steps:
establishing a set of online consumption device with visible light and bar code mutual authentication, comprising: an electronic wallet 1, a consumer machine 2 and a server 3.
And the visible light emitting module 17 is used for generating and sending a visible light signal according to the information input by the control module 11.
And the bar code scanning module 15 is used for scanning and identifying a bar code and outputting an identification result to the control module 11.
A control module 11 for: 1. processing information to be sent to generate a data packet, outputting the data packet to the visible light emitting module 17, and driving the visible light emitting module 17 to send a visible light signal; 2. receiving the scanning result output of the bar code scanning module 15, and verifying the scanning result; 3. the server 3 is connected to perform consumption, recharging, balance inquiry and operation log information reading and writing operations; 4. generating information to be transmitted through the visible light emitting module 17 according to the received information and the generated payment information; 5. data interaction with the server 3 can take place via a data interface 14.
And the input module 12 is used for inputting information including payment amount, inquiry password, payment password and operation instruction to the control module 11.
And the display module 13 is used for displaying payment amount, a password input interface, an operation instruction and prompt information.
The password processing module 18 is used for storing a public key ring of the consumer computer, a private key of the electronic wallet and input information, and encrypting the input information by adopting a public key or a private key and decrypting the input information by adopting the public key or the private key according to a password processing unit arranged in the password processing module 18; and outputs the encrypted or decrypted information.
And the data interface 14 is used for providing networking functions of the electronic wallet 1 and providing functions of connecting with the server 3 and performing data exchange, data maintenance and upgrading.
The electronic wallet 1 is implemented by a smartphone equipped with a flash and a camera.
And the visible light receiving module 24 is configured to receive the visible light signal, process and restore the visible light signal to a corresponding digital signal, and restore the digital signal to a data packet.
And the bar code display module 22 is used for generating and displaying a bar code according to the input information of the read-write control module 21.
A read-write control module 21, configured to: 1. receiving the output of the visible light receiving module 24 and authenticating the output; 2. processing the information to be sent and outputting the information to the bar code display module 22; 3. the read-write operation of the information including consumption, recharging, balance inquiry and operation logs is carried out with the server 3; 4. a communication interface is provided for uploading and downloading information with the server 3 through the communication module 27.
A cash box module 23 for holding including: operation log, collection consumption authority, blacklist, cash balance, operation password, validity period and production and issuing organization.
And the keyboard module 25 is used for inputting the transaction amount, the transaction password and the operation instruction to the read-write control module 21.
And the display 26 is used for displaying the transaction amount, the password input interface, the operation instruction and prompt information.
The password coprocessor 18 is used for storing a public key ring of the electronic wallet 1, a private key of the consumer machine 1, and input information, encrypting by adopting a public key or a private key according to a password processing unit arranged in the password coprocessor 18, and decrypting by adopting the public key or the private key; and outputs the encrypted or decrypted information.
And the communication module 27 is used for connecting the upper computer or the access network in a wired or wireless mode so as to be connected with the server.
A server 3 for: 1. establishing data connection for uploading and downloading with the consumption machine 2 through the communication module 27; 2. establishing data connection for uploading and downloading with the electronic wallet 1 through the data interface 14; 3. providing background service support of the online payment method; 4. an interface providing the entire online payment device with the flow of funds of the financial system; 5. issuing or de-authorizing the consumer machine 2, the electronic wallet 1, the providing comprising: key updating, algorithm updating and upgrading, use authority adjustment, validity period adjustment, electronic wallet recharging and consumer machine payment; 6. the preservation comprises the following steps: information including an authorized user list, a blacklist, an operation log, a list of consumer machines.
An authorized user list for maintaining a list comprising: the identity of the electronic purse that has been authorized to make online payments, usage rights, expiration dates, identity information of the electronic purse holder, public keys of the respective electronic purses.
And the blacklist is used for storing the part of the user information which is refused to pay for the transaction due to arrears, loss reports or illegal use records in the authorized user list.
And the payment interface is used for providing an interface for the fund flow of the whole online payment device and the financial system.
And the operation log collection is used for storing information including inquiry, recharging and consumption operation time, payment amount and payment process data parameters of all the consumption machines and the electronic wallets.
A consumer machine manifest for maintaining a list comprising: the identity of the consumer machine, the usage rights, the validity period, the public key of the respective consumer machine that can make the online payment transaction have been authorized.
A complete device consisting of a group of servers 3, at least one consumer machine 2, at least one electronic purse 1; the server 3 can issue the authority to the consumption machine 2, so that the consumption machine 2 has the function of receiving the payment of the electronic wallet 1 in the device; the server 3 can issue rights to the electronic wallet 1 to enable the electronic wallet 1 to have the function of paying to the consumer machine 2 in the device.
The issuing process of the electronic wallet 1 includes: the server 3 issues an authorization to the user, and the authorization mode can be to issue an authorization entity hardware device, or to provide an authorization number for the existing device equipped with the present invention; and recharge the authorized entity hardware equipment issued by the server 3 or the existing user equipment which obtains the authorization number provided by the server 3, and write the electronic wallet identity, the use authority, the validity period, the payment password and the inquiry password of the electronic wallet and the identity information of the electronic wallet holder.
The encryption and decryption in the consumer machine 2 and the electronic wallet 1 adopt the same public key cryptographic algorithm.
The issuance and authorization of the consumer machine 2 and the electronic purse 1 is carried out by a single entity, ensuring that: 1. the public key ring on all authorized consumer machines contains the public keys of all authorized electronic purses; 2. the public key ring of all authorized electronic purses contains the public keys of all authorized consumer machines; 3. each consumer machine has a unique private key, and each electronic wallet has a unique private key; 4. all authorized electronic purses and consumer machines can upgrade or expand public keys on the public key ring when networking; 5. both the electronic wallet 1 and the consumer machine 2 can upgrade or extend their own private keys when networked.
Any electronic purse can obtain a ciphertext M by using the information M encrypted by the private key S according to the encryption algorithm fun () of the public key cryptographic algorithm, and meanwhile, a consumer machine can decrypt the ciphertext M by using the public key G of the electronic purse and the decryption algorithm gun () of the public key cryptographic algorithm, which correspond to the public key ring, to obtain the information M; but the consumer machine cannot obtain the ciphertext M encrypted by the private key of the e-wallet by encrypting the same information M using any one of the public keys on the public key ring or other keys other than the private key of the e-wallet.
In this embodiment, an authorized electronic wallet 1 is used to pay an authorized consumer machine 2, the payment is initiated by the consumer machine 2, and the payment process includes the following steps:
GY1, the consumer machine 2 sends payment invitation to the electronic wallet 1 to generate an unencrypted invitation code ZFYQ1, and the display 26 generates a bar code to display; the invitation code ZFYQ1 includes: the product purchasing identifier SP1, the consumer identity identifier XID1 and the amount to be collected DFK 1.
GY2, the electronic wallet 1 scans the bar code on the display 26, recognizes the invitation code ZFYQ2, extracts the purchased product identification SP2, the consumer identity identification XID2 and the amount to be paid DFK2 and displays the information through the display module 13; the electronic purse 1 confirms whether the payment is agreed to be made, if yes, GY3 is entered, otherwise, the payment process is exited.
GY3, connecting the server to inquire the balance of the electronic wallet, and if the balance is sufficient, entering GY 4; otherwise, quitting the payment process and prompting that the balance is insufficient.
GY4, the electronic wallet 1 generates a payment random code ZFR4 and generates a payment code ZFM4, the payment code ZFM4 comprising: the payment random code ZFR4, the payment amount ZFK4, the consumer identity XID4, the product purchase identity SP4 and the invitation code ZFYQ4 are used for encrypting the payment code ZFM4 by adopting a private key QS and an encryption algorithm fun () of the electronic wallet 1 to obtain a ciphertext dsZFM 4; and then, the public key XG and the encryption algorithm fun () of the consumer computer 2 are used for encrypting the ciphertext dsZFM4 and the electronic wallet identity QID4 to obtain a ciphertext xgdsZFMMQID 4, and the ciphertext xgdsZFMMQID 4 is sent out.
GY5, consumer machine 2 receives ciphertext xgdsZFMMQID 5, and enters GY 5.1.
GY5.1, decrypting xgdsZFMQID5 by using the private key XS of the consumer machine 2 and a decryption algorithm gun (), and if the dsZFM5 and the electronic wallet identity QID5 are obtained, the decryption is successful and GY5.2 is entered; if the decryption cannot be carried out, the decryption is failed, and the payment process is quitted; therefore, the consumer machine 2 which sends out the payment invitation and is approved by the electronic wallet 1 can enter the following payment process to receive the money, and the counterfeit of the consumer machine or the replacement of the consumer machine by other illegal consumer machines in the payment process is avoided.
GY5.2, selecting a public key QS5 of the electronic wallet 1 to decrypt a ciphertext dsZFM5 by using a decryption algorithm gun () according to an electronic wallet identity QID5, extracting a payment random code ZFR5, a payment amount ZFK5, a consumer identity XID5, a purchased product identity SP5 and an invitation code ZFYQ5 from the ciphertext, and entering GY5.3; this ensures that, if and only the wallet 1 with the identity QID5 is available, it will be possible to generate a ciphertext and perform a subsequent payment process, confirming that the wallet 1 with the identity QID5 is participating in the payment process.
GY5.3, the following comparative validation was performed:
1) compare the invitation code ZFYQ1 generated by the consumer 2 in GY1 with the invitation code ZFYQ5 extracted from the decrypted ciphertext in G5.2.
2) The sum to be collected DFK1 generated by the consuming machine 2 in GY1 is compared with the payment sum ZFK5 extracted from the decrypted ciphertext in G5.2.
3) And comparing the consumption machine identity XID1 in GY1 with the consumption machine identity XID5 extracted from the decrypted ciphertext in G5.2.
4) Compare the purchased product identification SP1 generated by the consumer machine 2 in GY1 with the purchased product identification SP5 extracted from the decrypted ciphertext in G5.2.
When the 4 contrasts are respectively consistent, the consumer machine 2 enters GY5.4, otherwise, contrast verification is prompted, and the payment process is exited.
GY5.4, after the consumer machine 2 completes the verification in GY5.3, a collection confirmation code SKQR5 is generated, and a collection code SKM5 is generated, wherein the collection code SKM5 comprises a payment random code ZFR5, a payment amount ZFK5, a consumer machine identity XID5, a purchased product identity SP5, an invitation code ZFYQ5 and a collection confirmation code SKQR5, the private key XS of the consumer machine 2 is selected, the SKM5 is encrypted by an encryption algorithm fun () to obtain a ciphertext xsSKM5, the public key QG of the electronic wallet 1 is used for encrypting the xsSKM5 and the consumer machine identity XID5 to obtain dgxsSKMXID5, and a bar code is generated and displayed on the bar code display module 22.
GY6, E-wallet 1 scans the barcode on barcode display module 22, receives the ciphertext dgxsSKMXID6, and enters GY 6.1.
GY6.1, decrypting the ciphertext dgxsSKMXID6 by using a private key QS and a decryption algorithm gun () of the electronic wallet 1, and if the decryption can obtain xsSKM6 and a consumer identity XID6, the decryption is successful and the operation enters GY 6.2; if the decryption cannot be carried out, the decryption is failed, and the payment process is quitted; therefore, the electronic wallet 1 which generates and sends out the ciphertext dgxsSKMXID6 can enter the following payment process, and the counterfeiting of the electronic wallet or the replacement of the electronic wallet by other illegal electronic wallets in the payment process is avoided.
GY6.2, selecting the public key XG6 of the consumer machine 2 according to the consumer machine identity XID6 in the electronic wallet 1 to decrypt the ciphertext xsSKM6, and extracting a payment random code ZFR6, a payment amount ZFK6, the consumer machine identity XID6-1, a purchased product identity SP6, an invitation code ZFYQ6 and a payment confirmation code SKQR6 from the ciphertext.
GY6.3, the following comparative validation was performed:
1) compare the payment random code ZFR4 generated by the electronic wallet 1 in GY4 with the payment random code ZFR6 extracted in GY 6.2.
2) The payment amount ZFK4 generated by the electronic wallet 1 in GY4 is compared with the payment amount ZFK6 extracted in GY 6.2.
3) Comparing the consumer identity XID4 received by the electronic wallet 1 in GY4, the consumer identity XID6-1 extracted in GY6.2 and the consumer identity XID6 decrypted in GY 6.1.
4) Compare the purchased product identifier SP4 received by the electronic wallet 1 in GY4 with the purchased product identifier SP6 extracted in GY 6.2.
When the 4 contrasts are respectively consistent, the consumer machine 2 enters GY6.4, otherwise, contrast verification is prompted, the payment process is quitted, and prompt information with inconsistent contrasts is displayed through the display module 13.
GY6.4, the server 3 updates the balance of the electronic wallet, generates an operation log by using the operation time SJ, the collection confirmation code SKQR6, the payment amount ZFK6, the consumer identity XID6, the purchased product identification SP6, the invitation code ZFYQ6 and the payment random code ZFR6, displays the prompt information of successful payment through the display module, and sends a confirmation code QRM6 for completing payment through the visible light emitting module 17, wherein the confirmation code QRM6 comprises: an invitation code ZFYQ6 and a receipt confirmation code SKQR 6.
GY7, the consumer machine 2 receives the invitation code ZFYQ7 and the payment confirmation code SKQR 7; and the following comparative verification is carried out:
1) compare the invitation code ZFYQ1 generated by the consumer 2 in GY1 with the invitation code ZFYQ7 received in GY 9.
2) The receipt confirmation code SKQR6 generated by the consumer machine 2 in GY6 is compared with the receipt confirmation code SKQR7 received in GY 7.
When the 2 comparisons are respectively consistent, the consumer machine 2 connects to the server, generates an operation log by using the operation time SSJ of the current payment, the electronic wallet identity QID5, the payment random code ZFR5, the purchased product identity SP5, the payment amount ZFK5, the invitation code ZFYQ7 and the collection confirmation code SKQR7, and generates an identifier that the flow is successfully completed, and displays the identifier on the display 26.
Claims (1)
1. An online payment method with visible light and bar code bidirectional public key system authentication is characterized by comprising the following specific steps:
(1) establishing a set of consumption device with visible light and bar code mutual authentication, comprising: electronic purses, consumer machines, and servers;
an electronic wallet, comprising: the system comprises a visible light emitting module, a bar code scanning module, a control module, an input module, a display module, a password processing module and a data interface; the visible light emitting module is used for generating and sending visible light signals according to the information input by the control module; the bar code scanning module is used for scanning and identifying bar codes and outputting an identification result to the control module; a control module to: 1. processing information to be sent, generating a data packet, outputting the data packet to a visible light emitting module, driving the visible light emitting module to send a visible light signal, 2, receiving scanning result output of a bar code scanning module, verifying the scanning result, 3, performing consumption, recharging, balance inquiry and operation log information reading and writing operations with a server, 4, generating information needing to pass through the visible light emitting module according to the received information and the generated payment information, and 5, performing data interaction with the server through a data interface; the input module is used for inputting information including payment amount, inquiry passwords, payment passwords and operation instructions to the control module; the display module is used for displaying payment amount, a password input interface, an operation instruction and prompt information; the password processing module is used for storing a public key ring of the consumer computer, a private key of the electronic wallet and input information, encrypting by adopting a public key or a private key according to a password processing unit built in the password processing module and decrypting by adopting the public key or the private key; and outputting the encrypted or decrypted information; the data interface is used for providing a networking function of the electronic wallet and providing functions of connecting with the server and performing data exchange, data maintenance and upgrading;
a consumer machine, comprising: the device comprises a visible light receiving module, a bar code display module, a read-write control module, a keyboard module, a display, a password coprocessor and a communication module; the visible light receiving module is used for receiving the visible light signals, processing and restoring the visible light signals into corresponding digital signals and restoring the digital signals into data packets; the bar code display module is used for generating and displaying a bar code according to the input information of the read-write control module; a read-write control module for: 1. receiving the output of a visible light receiving module and authenticating the output, 2, processing the information to be sent and outputting the information to a bar code display module, 3, performing consumption, recharging, balance inquiry and reading and writing operation of operation log information with a server, 4, providing a data interface, and uploading and downloading the information with the server through a communication module; the keyboard module is used for inputting transaction amount, transaction password and operation instruction to the read-write control module; the display is used for displaying the transaction amount, the password input interface, the operation instruction and the prompt information; a cryptographic coprocessor to: 1. storing a public key ring of the electronic wallet and a private key of the consumer computer, 2, encrypting the input information by adopting a public key or a private key according to a password processing unit arranged in the password coprocessor, decrypting the input information by adopting the public key or the private key, and outputting the encrypted or decrypted information; the communication module is used for connecting the upper computer or the access network in a wired or wireless mode so as to be connected with the server;
a server to: 1. the method comprises the following steps of establishing upload and download data connection with a consumer computer through a communication module, 2 establishing upload and download data connection with an electronic wallet through a data interface, 3 providing background service support of the online payment method, 4 providing an interface for capital flow of the whole online payment device and a financial system, and 5 issuing or canceling authorization for the consumer computer and the electronic wallet, wherein the steps of: the services including key updating, algorithm updating and upgrading, use authority adjustment, validity period adjustment, electronic wallet recharging and consumer machine payment are stored, and 6, the storage comprises the following steps: information including an authorized user list, a blacklist, an operation log summary and a consumer list;
an authorized user list for maintaining a list comprising: the identity of the electronic purse, the use authority, the validity period, the identity information of the electronic purse holder and the public key of each electronic purse which are authorized to carry out online payment; the system comprises a blacklist, a payment interface, a payment processing unit and a payment processing unit, wherein the blacklist is used for storing part of user information which is refused to pay for a transaction due to arrearage, loss report or illegal use record in an authorized user list; the operation log summarization is used for storing information including query, recharge, consumption operation time, payment amount and payment process data parameters of all the consumption machines and the electronic wallets; a consumer machine manifest for maintaining a list comprising: the identity, the use authority, the validity period and the public key of each consumer machine of the consumer machine which is authorized to carry out online payment transaction; the server is used for issuing authority to the consumption machine, so that the consumption machine has the function of receiving payment of the electronic wallet in the device; the server is used for issuing authority to the electronic wallet, so that the electronic wallet has the function of paying to a consumption machine in the device; meanwhile, the server issues an authorization to the user, wherein the authorization mode is to issue an authorization entity hardware device or to provide an authorization number for the user of the existing device; recharging for authorized entity hardware equipment issued by the server or existing user equipment for obtaining an authorization number provided by the server, and writing in an electronic wallet identity, a use authority, a validity period, a payment password and an inquiry password of the electronic wallet and identity information of an electronic wallet holder;
the encryption and decryption in the consumption machine and the electronic wallet adopt the same public key cryptographic algorithm; the issuance and authorization of consumer machines and electronic wallets is handled by an entity, organization or a consortium to ensure that: 1. the public key ring on all the authorized consumer machines comprises the public keys of all the authorized electronic purses, 2, the public key ring of all the authorized electronic purses comprises the public keys of all the authorized consumer machines, 3, each consumer machine has a unique private key, each electronic purse has a unique private key, 4, all the authorized electronic purses and the consumer machines can upgrade or expand the public keys on the public key ring when being networked, and 5, the electronic purses and the consumer machines can upgrade or expand the private keys of the electronic purses when being networked; the electronic wallet can obtain a ciphertext M by using the information M encrypted by the private key S according to the encryption algorithm fun () of the public key cryptographic algorithm, and meanwhile, the consumer machine can decrypt the ciphertext M by using the public key G of the electronic wallet corresponding to the public key ring and the decryption algorithm gun () of the public key cryptographic algorithm to obtain the information M; but the consumer machine can not obtain the ciphertext M obtained by encrypting the private key of the electronic wallet by encrypting the same information M by adopting any public key on the public key ring or other keys except the private key of the electronic wallet;
(2) in the consumer device with visible light and barcode mutual authentication established in the step (1), payment is carried out to an authorized consumer machine by using an authorized electronic wallet, the payment is initiated by the consumer machine, and the payment flow processing comprises the following steps:
GY1, the consumer sends payment invitation to the electronic wallet to generate an unencrypted invitation code ZFYQ1, and the display generates a bar code to display; the invitation code ZFYQ1 includes: the product purchasing identifier SP1, the consumer identity identifier XID1 and the amount to be paid DFK 1;
GY2, the electronic wallet scans the bar code on the display, recognizes the invitation code ZFYQ2, extracts the purchased product identification SP2, the consumer identity identification XID2 and the amount to be paid DFK2 and displays the information through the display module; the electronic purse confirms whether the payment is agreed to be carried out, if yes, GY3 is entered, otherwise, the payment process is exited;
GY3, connecting the server to inquire the balance of the electronic wallet, and if the balance is sufficient, entering GY 4; otherwise, quitting the payment process and prompting that the balance is insufficient;
GY4, the electronic wallet generating a payment random code ZFR4 and generating a payment code ZFM4, the payment code ZFM4 comprising: the payment random code ZFR4, the payment amount ZFK4, the consumer identity XID4, the product purchase identity SP4 and the invitation code ZFYQ4 are used for encrypting the payment code ZFM4 by adopting a private key QS of the electronic wallet and an encryption algorithm fun () to obtain a ciphertext dsZFM 4; encrypting the ciphertext dsZFM4 and the electronic wallet identity QID4 by using a public key XG and an encryption algorithm fun () of the consumer to obtain a ciphertext xgdsZFMMQID 4, and sending the ciphertext xgdsZFMMQID 4;
GY5, the consumer receives the ciphertext xgdsZFMMQID 5 and enters GY 5.1;
GY5.1, decrypting the xgdsZFMQID5 by using the private key XS of the consumer and a decryption algorithm gun (), and if the dsZFM5 and the electronic wallet identity QID5 are obtained, the decryption is successful and GY5.2 is entered; if the decryption cannot be carried out, the decryption is failed, and the payment process is quitted; therefore, the payment can be received only when the consumer machine which sends out the payment invitation and is approved by the electronic wallet enters the following payment process, and the counterfeit of the consumer machine or the replacement of the consumer machine by other illegal consumer machines in the payment process is avoided;
GY5.2, selecting a public key QS5 of the electronic wallet to decrypt a ciphertext dsZFM5 by using a decryption algorithm gun () according to an electronic wallet identity QID5, and extracting a payment random code ZFR5, a payment amount ZFK5, a consumer identity XID5, a product purchase identity SP5 and an invitation code ZFYQ5 from the ciphertext, and entering GY5.3, so as to ensure that the ciphertext can be generated only if the electronic wallet with the identity QID5 exists, and a subsequent payment process is carried out, and the electronic wallet with the identity QID5 is confirmed to participate in the payment process;
GY5.3, the following comparative validation was performed:
1) comparing the invitation code ZFYQ1 generated by the consumer in GY1 with the invitation code ZFYQ5 extracted from the decrypted ciphertext in G5.2;
2) comparing the amount to be collected DFK1 generated by the consuming machine in GY1 with the payment amount ZFK5 extracted from the decrypted ciphertext in G5.2;
3) comparing the consumption machine identity XID1 in GY1 with the consumption machine identity XID5 extracted from the decrypted ciphertext in G5.2;
4) comparing the purchased product identifier SP1 generated by the consumer in GY1 with the purchased product identifier SP5 extracted from the decrypted ciphertext in G5.2;
when the 4 contrasts are respectively consistent, the consumer machine enters GY5.4, otherwise, contrast verification is prompted, and the payment process is exited;
GY5.4, after the consumer machine completes the verification in GY5.3, generating a collection confirmation code SKQR5 and generating a collection code SKM5, wherein the collection confirmation code SKM5 comprises a payment random code ZFR5, a payment amount ZFK5, a consumer identity XID5, a purchased product identity SP5, an invitation code ZFYQ5 and a collection confirmation code SKQR5, the SKM5 is encrypted by an encryption algorithm fun () through a private key XS of the consumer machine to obtain a ciphertext xsSKM5, the xsSKM5 and the consumer identity XID5 are encrypted by a public key QG of the electronic wallet to obtain dgxsSKMXID5, a bar code is generated and displayed on a bar code display module;
GY6, the electronic wallet scans the bar code on the bar code display module, receives the ciphertext dgxsSKMXID6, and enters GY 6.1;
GY6.1, decrypting the ciphertext dgxsSKMXID6 by using a private key QS and a decryption algorithm gun () of the electronic wallet, and if the decryption can obtain xsSKM6 and a consumer identity XID6, the decryption is successful and GY6.2 is entered; if the decryption cannot be carried out, the decryption is failed, and the payment process is quitted; therefore, the electronic wallet which generates and sends out the ciphertext dgxsSKMXID6 can enter the following payment process, and the counterfeiting of the electronic wallet or the replacement of the electronic wallet by other illegal electronic wallets in the payment process is avoided;
GY6.2, then decrypting the ciphertext xsSKM6 by using a public key XG6 which is selected by the electronic wallet according to the identity XID6 of the consumer, and extracting a payment random code ZFR6, a payment amount ZFK6, the identity XID6-1 of the consumer, a purchased product identity SP6, an invitation code ZFYQ6 and a payment confirmation code SKQR 6;
GY6.3, the following comparative validation was performed:
1) comparing a payment random code ZFR4 generated by the electronic wallet in GY4 with the payment random code ZFR6 extracted in GY 6.2;
2) comparing the payment amount ZFK4 generated by the electronic purse in GY4 with the payment amount ZFK6 extracted in GY 6.2;
3) comparing the identity of the consumer with the identity of the consumer XID4 received by the electronic wallet in GY4, the identity of the consumer XID6-1 extracted from GY6.2 and the identity of the consumer XID6 decrypted in GY 6.1;
4) comparing the purchased product identifier SP4 received by the electronic purse in GY4 with the purchased product identifier SP6 extracted in GY 6.2;
when the 4 contrasts are respectively consistent, the consumer machine enters GY6.4, otherwise, contrast verification is prompted, the payment process is quitted, and prompt information with inconsistent contrasts is displayed through the display module;
GY6.4, the server updates the wallet balance of the electronic wallet, generates an operation log by using the operation time SJ, a collection confirmation code SKQR6, a payment amount ZFK6, a consumer identity XID6, a purchased product identifier SP6, an invitation code ZFYQ6 and a payment random code ZFR6, displays prompt information of payment success through a display module, and sends a confirmation code QRM6 for completing payment through a visible light emitting module, wherein the confirmation code QRM6 comprises: an invitation code ZFYQ6 and a receipt confirmation code SKQR 6;
GY7, the consumer computer receives the invitation code ZFYQ7 and the receipt confirmation code SKQR 7; and the following comparative verification is carried out:
1) compare the consumer generated invitation code ZFYQ1 in GY1 with the invitation code ZFYQ7 received in GY 9;
2) comparing a payment confirmation code SKQR6 generated by the consumer in GY6 with a payment confirmation code SKQR7 received in GY 7;
when the 2 comparisons are respectively consistent, the server generates an operation log by using the operation time SSJ, the electronic wallet identity QID5, the payment random code ZFR5, the purchased product identity SP5, the payment amount ZFK5, the invitation code ZFYQ7 and the collection confirmation code SKQR7 of the current payment, generates an identifier for successfully completing the process by the consumer computer, and displays the identifier on the display;
(3) in the payment process, the data sent by the consumer machine is received from the electronic wallet, and the data sent by the electronic wallet is received from the consumer machine, so that the possibility that the data cannot be identified exists in the transceiving process, and therefore, in the payment process, for the situation that the data cannot be identified and cannot be identified due to the fact that the data cannot be received, the electronic wallet or the consumer machine can unilaterally end the payment process after a set waiting time is overtime;
in the payment process, the data sent from the electronic wallet to the consumer machine and the data sent from the consumer machine to the electronic wallet may have risks of data loss, tampering and forgery in the transceiving process, so in the payment process, for each received key data, it is assumed that the currently received data is different from the data generated or received in the previous steps of the payment process, and comparison and verification are required, thereby ensuring the authenticity and integrity of the transceiving data.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710066537.1A CN106897881B (en) | 2017-02-07 | 2017-02-07 | Online payment method with visible light and bar code bidirectional public key system authentication |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710066537.1A CN106897881B (en) | 2017-02-07 | 2017-02-07 | Online payment method with visible light and bar code bidirectional public key system authentication |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106897881A CN106897881A (en) | 2017-06-27 |
| CN106897881B true CN106897881B (en) | 2020-10-09 |
Family
ID=59197946
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710066537.1A Active CN106897881B (en) | 2017-02-07 | 2017-02-07 | Online payment method with visible light and bar code bidirectional public key system authentication |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106897881B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113141258A (en) * | 2021-04-27 | 2021-07-20 | 夏时雨 | Safety identity authentication system based on visible light bidirectional interaction |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101118627A (en) * | 2006-08-01 | 2008-02-06 | 上海融兴网络科技有限公司 | Movable electric commerce payment transaction system and safety identification method thereof |
| CN102118710A (en) * | 2011-03-08 | 2011-07-06 | 上海红松信息技术有限公司 | System and method for transmitting data between mobile terminals |
| CN102932148A (en) * | 2012-10-25 | 2013-02-13 | 成都市易恒信科技有限公司 | System and method for preventing safety two-dimensional code counterfeiting on basis of combination of public key (CPK) authentication |
| WO2014048990A1 (en) * | 2012-09-28 | 2014-04-03 | Bell Identification Bv | Method and apparatus for providing secure services using a mobile device |
| CN105117905A (en) * | 2015-07-21 | 2015-12-02 | 北京邮电大学 | Wireless Key payment system based on visible light communications and payment method |
| CN106204034A (en) * | 2015-04-29 | 2016-12-07 | 中国电信股份有限公司 | The mutual authentication method paid in application and system |
-
2017
- 2017-02-07 CN CN201710066537.1A patent/CN106897881B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101118627A (en) * | 2006-08-01 | 2008-02-06 | 上海融兴网络科技有限公司 | Movable electric commerce payment transaction system and safety identification method thereof |
| CN102118710A (en) * | 2011-03-08 | 2011-07-06 | 上海红松信息技术有限公司 | System and method for transmitting data between mobile terminals |
| WO2014048990A1 (en) * | 2012-09-28 | 2014-04-03 | Bell Identification Bv | Method and apparatus for providing secure services using a mobile device |
| CN102932148A (en) * | 2012-10-25 | 2013-02-13 | 成都市易恒信科技有限公司 | System and method for preventing safety two-dimensional code counterfeiting on basis of combination of public key (CPK) authentication |
| CN106204034A (en) * | 2015-04-29 | 2016-12-07 | 中国电信股份有限公司 | The mutual authentication method paid in application and system |
| CN105117905A (en) * | 2015-07-21 | 2015-12-02 | 北京邮电大学 | Wireless Key payment system based on visible light communications and payment method |
Non-Patent Citations (1)
| Title |
|---|
| 基于公钥密码体制的802.1x双向认证研究;蒋华等;《计算机应用与软件》;20160229;第33卷(第2期);第290-293页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106897881A (en) | 2017-06-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11880815B2 (en) | Device enrollment system and method | |
| US10515362B2 (en) | Methods and apparatus for card transactions | |
| CN107230079B (en) | Method and system for off-line payment by using digital currency chip card | |
| CN107230055B (en) | Method and system for paying digital currency | |
| CN107230068B (en) | Method and system for paying digital currency using a visual digital currency chip card | |
| CN107230050B (en) | Method and system for paying digital currency based on visible digital currency chip card | |
| CN107230053B (en) | Method and system for exchanging digital currency by cash | |
| CN107230049B (en) | Method and system for providing digital currency | |
| CN101573723A (en) | Secure financial transactions | |
| CN107230070B (en) | Digital currency system | |
| CN101211451A (en) | Redepositing system and method based on digital sign | |
| US20230122422A1 (en) | Hands free interaction system and method | |
| CN107230052B (en) | Method and system for paying digital currency using digital currency chip card | |
| CN107230077B (en) | Method for exchanging and paying digital currency and digital currency system | |
| CN104182868B (en) | Method of payment and payment system | |
| CN107230078B (en) | Method and system for paying digital currency using a visual digital currency chip card | |
| CN107230054B (en) | Method and system for depositing digital currency into a deposit account | |
| CN107230071B (en) | Method and system for exchanging digital currency into physical cash | |
| CN106910068B (en) | Multi-algorithm multi-key optical authentication offline payment method | |
| CN106910059B (en) | Off-line payment method for visible light and bar code bidirectional public key system authentication | |
| CN106920096B (en) | Double-medium double-authentication rapid off-line payment method under public key system | |
| CN101447037A (en) | Control system for establishing and using user account by user terminal and method thereof | |
| CN107230072B (en) | Method and system for online payment using digital currency chip card | |
| CN106897881B (en) | Online payment method with visible light and bar code bidirectional public key system authentication | |
| CN106600274B (en) | Multi-algorithm multi-key optical authentication offline payment device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| EE01 | Entry into force of recordation of patent licensing contract | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20170627 Assignee: Guangxi Yuzhi Information Technology Co.,Ltd. Assignor: GUILIN University OF TECHNOLOGY Contract record no.: X2023980044314 Denomination of invention: Online payment method with visible light and barcode bidirectional public key system authentication Granted publication date: 20201009 License type: Common License Record date: 20231023 |
|
| EE01 | Entry into force of recordation of patent licensing contract | ||
| EE01 | Entry into force of recordation of patent licensing contract |
Application publication date: 20170627 Assignee: Guangxi Zhaoyang Technology Co.,Ltd. Assignor: GUILIN University OF TECHNOLOGY Contract record no.: X2023980044580 Denomination of invention: Online payment method with visible light and barcode bidirectional public key system authentication Granted publication date: 20201009 License type: Common License Record date: 20231027 |