CN106973032B - Information authentication method, server, terminal equipment and system - Google Patents
Information authentication method, server, terminal equipment and system Download PDFInfo
- Publication number
- CN106973032B CN106973032B CN201610023589.6A CN201610023589A CN106973032B CN 106973032 B CN106973032 B CN 106973032B CN 201610023589 A CN201610023589 A CN 201610023589A CN 106973032 B CN106973032 B CN 106973032B
- Authority
- CN
- China
- Prior art keywords
- authentication
- password
- payment
- request
- authenticated
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
- H04L63/0838—Network architectures or network communication protocols for network security for authentication of entities using passwords using one-time-passwords
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/325—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
- G06Q20/3415—Cards acting autonomously as pay-media
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3226—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
- H04L9/3228—One-time or temporary data, i.e. information which is sent for every authentication or authorization, e.g. one-time-password, one-time-token or one-time-key
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Accounting & Taxation (AREA)
- General Physics & Mathematics (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Theoretical Computer Science (AREA)
- Signal Processing (AREA)
- General Engineering & Computer Science (AREA)
- Computing Systems (AREA)
- Computer Hardware Design (AREA)
- Finance (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The invention discloses an information authentication method, a server, terminal equipment and a system, wherein the method comprises the following steps: detecting a payment operation of a credit card, generating a payment request based on the payment operation of the credit card, and sending the payment request to a server so that the server generates an authentication password based on the payment request; wherein the payment request includes at least user information of the credit card; receiving an authentication password sent by a server; detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated; and authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result.
Description
Technical Field
The present invention relates to information security management technologies in the field of communications, and in particular, to an information authentication method, a server, a terminal device, and a system.
Background
At present, when a credit card is used, for example, a user a loses a credit card, or another person counterfeits a certain credit card of the user a by using information of a magnetic strip of the credit card, the other person takes a certain shop to swipe the card, the user a may receive a short message notification after payment is completed, and then calls the credit card company to pay operation which is not executed by the user, so that the loss of the user is already caused; or, in order to ensure that the user avoids the loss, the credit card company may need to wait for manual short message authentication, which may further cause inconvenience to the user.
Disclosure of Invention
In view of the above, the present invention provides an information authentication method, a server, a terminal device and a system, which can solve at least the above problems in the prior art.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
the embodiment of the invention provides an information authentication method, which is applied to first terminal equipment and comprises the following steps:
detecting a payment operation of a credit card, generating a payment request based on the payment operation of the credit card, and sending the payment request to a server so that the server generates an authentication password based on the payment request; wherein the payment request includes at least user information of the credit card;
receiving an authentication password sent by a server;
detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated;
and authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result.
The embodiment of the invention provides an information authentication method, which is applied to second terminal equipment and comprises the following steps:
receiving a password to be authenticated aiming at the credit card payment operation of a user from a server; the second terminal equipment and the credit card at least have the same user information;
generating an authentication request based on the password to be authenticated;
sending the authentication request to first terminal equipment, so that the first terminal equipment authenticates the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by a server and processes the payment operation based on an authentication result; wherein the first terminal device is a terminal device that detects a payment operation of the credit card.
The embodiment of the invention provides an information authentication method, which is applied to a server and comprises the following steps:
receiving a payment request aiming at payment operation sent by a first terminal device, wherein the payment request of a credit card at least comprises user information of the credit card, and the first terminal device is the terminal device which detects the payment operation of the credit card;
generating an authentication password and a password to be authenticated based on the payment request;
and determining second terminal equipment associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal equipment, and sending the authentication password to the first terminal equipment, so that the first terminal equipment authenticates the authentication request containing the password to be authenticated, which is sent by the second terminal equipment, based on the authentication password, and processes the payment operation based on the authentication result.
An embodiment of the present invention provides a terminal device, including:
the system comprises a detection unit, a server and a payment processing unit, wherein the detection unit is used for detecting the payment operation of a credit card, generating a payment request based on the payment operation of the credit card and sending the payment request to the server; wherein the payment request includes at least user information of the credit card;
the first communication unit is used for receiving an authentication password sent by the server;
the second communication unit is used for detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated;
and the authentication unit is used for authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server and processing based on an authentication result.
An embodiment of the present invention provides a terminal device, including:
the third communication unit is used for receiving a password to be authenticated aiming at the credit card payment operation of the user from the server; the second terminal equipment and the credit card at least have the same user information;
the processing unit is used for generating an authentication request based on the password to be authenticated;
and the second communication unit is used for sending the authentication request to the first terminal equipment.
An embodiment of the present invention provides a server, including:
a communication unit, configured to receive a payment request for a payment operation sent by a first terminal device, where the payment request for a credit card at least includes user information of the credit card, and the first terminal device is a terminal device that detects the payment operation of the credit card; determining a second terminal device associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal device, and sending the authentication password to the first terminal device;
and the password generating unit is used for generating an authentication password and a password to be authenticated based on the payment request.
An embodiment of the present invention provides an information authentication system, including:
the system comprises a first terminal device, a server and a second terminal device, wherein the first terminal device is used for detecting the payment operation of a credit card, generating a payment request based on the payment operation of the credit card and sending the payment request to the server; wherein the payment request includes at least user information of the credit card; receiving an authentication password sent by a server; detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated; authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result;
the second terminal equipment at least has the same user information with the credit card and is used for receiving a password to be authenticated, which is sent by the server and aims at the credit card payment operation of the user; generating an authentication request based on the password to be authenticated; sending the authentication request to the first terminal equipment;
the server is used for receiving a payment request sent by the first terminal device for payment operation; generating an authentication password and a password to be authenticated based on the payment request; determining a second terminal device associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal device, and sending the authentication password to the first terminal device;
the embodiment of the invention provides an information authentication method, a server, terminal equipment and a system. Therefore, the first terminal device can automatically complete the authentication processing aiming at the authentication request of the second terminal device based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, the manual operation or waiting time of a user is reduced, and the payment safety of the credit card can be ensured based on the authentication password corresponding to the payment operation.
Drawings
FIG. 1 is a first flowchart illustrating an information authentication method according to an embodiment of the present invention;
FIG. 2 is a flowchart illustrating a second method for authenticating information according to an embodiment of the present invention;
FIG. 3 is a third schematic flow chart illustrating an information authentication method according to an embodiment of the present invention;
fig. 4 is a schematic view of a terminal device according to an embodiment of the present invention;
fig. 5 is a schematic diagram of a composition structure of a terminal device according to an embodiment of the present invention;
FIG. 6 is a diagram illustrating a server structure according to an embodiment of the present invention;
FIG. 7 is a schematic diagram of a system configuration according to an embodiment of the present invention;
fig. 8 is a schematic diagram of a system composition scenario according to an embodiment of the present invention.
Detailed Description
The present invention will be described in further detail with reference to the accompanying drawings and specific embodiments.
The first embodiment,
An embodiment of the present invention provides an information authentication method, which is applied to a first terminal device, and as shown in fig. 1, the information authentication method includes:
step 101: detecting a payment operation of a credit card, generating a payment request based on the payment operation of the credit card, and sending the payment request to a server so that the server generates an authentication password based on the payment request; wherein the payment request includes at least user information of the credit card;
step 102: receiving an authentication password sent by a server;
step 103: detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated;
step 104: and authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result.
In this embodiment, the first terminal device may be a card swiping device of a credit card arranged at a cash register.
The operation of detecting payment of the credit card may be an operation of detecting card swiping of a user by the card swiping device. Further, after detecting the user's card swiping operation, the card swiping device of the credit card may obtain information of the user of the credit card, as well as the card number of the credit card, the amount of the credit card, the current consumption amount of the credit card, and the like, which is not described herein again.
The generating the payment request may be: generating a payment request by using information acquired through payment operation, and sending the payment request to a server side set by a bank corresponding to the credit card;
correspondingly, the server can acquire the mobile phone number left by the user when the user registers the bank card according to the user information in the payment request, generate an authentication password based on the payment request, generate a password to be authenticated to be sent to the mobile phone of the user, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
Preferably, the receiving of the authentication password sent by the server includes: receiving an authentication password sent by a server based on the first communication connection; wherein the first communication connection may be a wired network connection or may be a wffi communication connection.
The detecting of the authentication request sent by the second terminal device includes: detecting information received in a second communication connection, and detecting an authentication request sent by the second terminal equipment based on the second communication connection; wherein the first communication function is different from the second communication function. The second communication connection may be a bluetooth communication connection. Specifically, the detection of the authentication request sent by the second terminal device may be: after the payment request is sent out, a second communication connection, namely a Bluetooth communication connection, is opened; and then listen in real time to the information received in the second communication connection.
After the sending the payment request to the server, the method further comprises: starting a timer;
correspondingly, after the authentication request sent by the second terminal device is detected, the method further includes:
acquiring the timing duration of the timer;
judging whether the timing duration is smaller than a preset threshold value, and if so, performing authentication processing on the authentication request; and if the authentication request is not smaller than the preset threshold value, the authentication request is not processed.
The preset threshold value may be 5 seconds, after receiving the authentication request sent by the second terminal device, the preset threshold value may determine whether the time duration of the intermediate interval exceeds 5 seconds, and if the time duration of the intermediate interval exceeds 5 seconds, the processing may be refused, and further, the payment request may be resent to the server, so that the server side may regenerate the authentication password and the password to be authenticated, thereby ensuring security.
It should be noted that, in this embodiment, the authentication may be: and judging whether the authentication password and the password to be authenticated are the same, if so, determining that the payment operation authentication is passed, otherwise, determining that the payment operation authentication is not passed.
When the authentication is passed, the first terminal device may perform a payment process, for example, may include sending a deduction process to the server so that the server side operates on consumption of the credit card.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
Example II,
An embodiment of the present invention provides an information authentication method, which is applied to a second terminal device, and as shown in fig. 2, the method includes:
step 201: receiving a password to be authenticated aiming at the credit card payment operation of a user from a server; the second terminal equipment and the credit card at least have the same user information;
step 202: generating an authentication request based on the password to be authenticated;
step 203: sending the authentication request to first terminal equipment, so that the first terminal equipment authenticates the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by a server and processes the payment operation based on an authentication result; wherein the first terminal device is a terminal device that detects a payment operation of the credit card.
In this embodiment, the first terminal device may be a card swiping device of a credit card arranged at a cash register. The second terminal device may be a mobile terminal to which the user is bound for a credit card at the server side.
The server can acquire a mobile phone number left by the user when the user registers the bank card according to user information in a payment request of the first terminal device, and can generate an authentication password to be sent to the mobile phone of the user while generating the authentication password based on the payment request, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
Preferably, the sending the authentication request to the first terminal device includes:
establishing a second communication connection with the first terminal equipment;
sending the authentication request to the first terminal device based on the second communication connection. The second communication connection may be a bluetooth communication connection. Specifically, the detection of the authentication request sent by the second terminal device may be: after the payment request is sent out, a second communication connection, namely a Bluetooth communication connection, is opened; and then listen in real time to the information received in the second communication connection.
It should be noted that, in this embodiment, the password to be authenticated, which is sent by the server and is received for the credit card payment operation of the user, may be received based on a third communication connection, and the third communication connection may be the same as or different from the first communication connection in the first embodiment, for example, the third communication connection may be a mobile communication connection, that is, the manner of receiving the password to be authenticated in step 201 in this embodiment may be a short message.
Further, in this embodiment, after receiving the password to be authenticated, the second terminal device may not display the password to be authenticated, but only use the password to be authenticated to generate the authentication request. So, can also further guarantee the security of authentication operation, because in second terminal equipment one side, can not direct demonstration treat the authentication password, reduced the possibility that the password was revealed to, and, can also avoid like seeing among the prior art after the password, the user carries out the error rate that manual operation brought in POS machine one side of cashier's desk manually.
When the authentication is passed, the first terminal device may perform a payment process, for example, may include sending a deduction process to the server so that the server side operates on consumption of the credit card.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
Example III,
The embodiment provides an information authentication method, which is applied to a server and as shown in fig. 3, and includes:
step 301: receiving a payment request aiming at payment operation sent by a first terminal device, wherein the payment request of a credit card at least comprises user information of the credit card, and the first terminal device is the terminal device which detects the payment operation of the credit card;
step 302: generating an authentication password and a password to be authenticated based on the payment request;
step 303: and determining second terminal equipment associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal equipment, and sending the authentication password to the first terminal equipment, so that the first terminal equipment authenticates the authentication request containing the password to be authenticated, which is sent by the second terminal equipment, based on the authentication password, and processes the payment operation based on the authentication result.
In this embodiment, the first terminal device may be a card swiping device of a credit card arranged at a cash register. The second terminal device may be a mobile terminal to which the user is bound for a credit card at the server side.
The operation of detecting payment of the credit card may be an operation of detecting card swiping of a user by the card swiping device. Further, after detecting the user's card swiping operation, the card swiping device of the credit card may obtain information of the user of the credit card, as well as the card number of the credit card, the amount of the credit card, the current consumption amount of the credit card, and the like, which is not described herein again.
The generating the payment request may be: generating a payment request by using information acquired through payment operation, and sending the payment request to a server side set by a bank corresponding to the credit card;
correspondingly, the server can acquire the mobile phone number left by the user when the user registers the bank card according to the user information in the payment request, generate an authentication password based on the payment request, generate a password to be authenticated to be sent to the mobile phone of the user, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
And generating an authentication password and a password to be authenticated based on the payment request, wherein the two passwords can be the same and are only respectively sent to different devices.
In addition, the sending of the password to be authenticated to the second terminal device and the sending of the authentication password to the first terminal device may be different, for example, the sending of the authentication password may be through the first communication connection, and the sending of the password to be authenticated may be through the third communication connection. The first communication connection may be a wired network connection, or may be a WIFI communication connection. The third communication connection may be the same as or different from the first communication connection in the first embodiment, for example, the third communication connection may be a mobile communication connection.
The server can acquire a mobile phone number left by the user when the user registers the bank card according to user information in a payment request of the first terminal device, and can generate an authentication password to be sent to the mobile phone of the user while generating the authentication password based on the payment request, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
Further, this embodiment may further include: after the authentication is passed, the payment request received in the payment operation can be stored, and the authentication password and the password to be authenticated in the payment operation can be stored.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
Example four,
An embodiment of the present invention provides a terminal device, as shown in fig. 4, including:
a detection unit 41 for detecting a payment operation of a credit card, generating a payment request based on the payment operation of the credit card, and transmitting the payment request to a server; wherein the payment request includes at least user information of the credit card;
a first communication unit 42, configured to receive an authentication password sent by the server;
a second communication unit 43, configured to detect an authentication request sent by a second terminal device, where the second terminal device is a terminal device associated with user information of the credit card, and the authentication request includes at least a password to be authenticated;
and an authentication unit 44, configured to authenticate the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and perform processing based on an authentication result.
In this embodiment, the first terminal device may be a card swiping device of a credit card arranged at a cash register.
The operation of detecting payment of the credit card may be an operation of detecting card swiping of a user by the card swiping device. Further, after detecting the user's card swiping operation, the card swiping device of the credit card may obtain information of the user of the credit card, as well as the card number of the credit card, the amount of the credit card, the current consumption amount of the credit card, and the like, which is not described herein again.
The generating the payment request may be: generating a payment request by using information acquired through payment operation, and sending the payment request to a server side set by a bank corresponding to the credit card;
correspondingly, the server can acquire the mobile phone number left by the user when the user registers the bank card according to the user information in the payment request, generate an authentication password based on the payment request, generate a password to be authenticated to be sent to the mobile phone of the user, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
Preferably, the receiving of the authentication password sent by the server includes: receiving an authentication password sent by a server based on the first communication connection; the first communication connection of the first communication unit may be a wired network connection, or may be a WIFI communication connection.
The detecting of the authentication request sent by the second terminal device includes: detecting information received in a second communication connection, and detecting an authentication request sent by the second terminal equipment based on the second communication connection; wherein the first communication function is different from the second communication function. The second communication unit may be a bluetooth communication connection. Specifically, the detection of the authentication request sent by the second terminal device may be: after the payment request is sent out, opening a second communication connection of the second communication unit, namely a Bluetooth communication connection; and then listen in real time to the information received in the second communication connection.
After the payment request is sent to the server, the authentication unit is used for starting a timer after the payment request is sent to the server; correspondingly, after the authentication request sent by the second terminal device is detected, the timing duration of the timer is obtained; judging whether the timing duration is smaller than a preset threshold value, and if so, performing authentication processing on the authentication request; and if the authentication request is not smaller than the preset threshold value, the authentication request is not processed.
The preset threshold value may be 5 seconds, after receiving the authentication request sent by the second terminal device, the preset threshold value may determine whether the time duration of the intermediate interval exceeds 5 seconds, and if the time duration of the intermediate interval exceeds 5 seconds, the processing may be refused, and further, the payment request may be resent to the server, so that the server side may regenerate the authentication password and the password to be authenticated, thereby ensuring security.
It should be noted that, in this embodiment, the authentication may be: and the processing unit is used for judging whether the authentication password and the password to be authenticated are the same or not, if so, determining that the payment operation authentication is passed, and otherwise, determining that the payment operation authentication is not passed.
When the authentication is passed, the first terminal device may perform a payment process, for example, may include sending a deduction process to the server so that the server side operates on consumption of the credit card.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
Example V,
An embodiment of the present invention provides a terminal device, as shown in fig. 5, including:
a third communication unit 51 for receiving a password to be authenticated for a credit card payment operation of a user from the server; the second terminal equipment and the credit card at least have the same user information;
a processing unit 52, configured to generate an authentication request based on the password to be authenticated;
a second communication unit 53, configured to send the authentication request to the first terminal device.
In this embodiment, the first terminal device may be a card swiping device of a credit card arranged at a cash register. The second terminal device may be a mobile terminal to which the user is bound for a credit card at the server side.
The server can acquire a mobile phone number left by the user when the user registers the bank card according to user information in a payment request of the first terminal device, and can generate an authentication password to be sent to the mobile phone of the user while generating the authentication password based on the payment request, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
Preferably, the second communication unit is configured to establish a second communication connection with the first terminal device; sending the authentication request to the first terminal device based on the second communication connection. The second communication connection may be a bluetooth communication connection. Specifically, the detection of the authentication request sent by the second terminal device may be: after the payment request is sent out, a second communication connection, namely a Bluetooth communication connection, is opened; and then listen in real time to the information received in the second communication connection.
It should be noted that, in this embodiment, the password to be authenticated, which is sent by the server and is received for the credit card payment operation of the user, may be received based on a third communication connection, and the third communication connection may be the same as or different from the first communication connection in the first embodiment, for example, the third communication connection may be a mobile communication connection, that is, the manner of receiving the password to be authenticated may be a short message.
Further, in this embodiment, after receiving the password to be authenticated, the second terminal device may not display the password to be authenticated, but only use the password to be authenticated to generate the authentication request. So, can also further guarantee the security of authentication operation, because in second terminal equipment one side, can not direct demonstration treat the authentication password, reduced the possibility that the password was revealed to, and, can also avoid like seeing among the prior art after the password, the user carries out the error rate that manual operation brought in POS machine one side of cashier's desk manually.
When the authentication is passed, the first terminal device may perform a payment process, for example, may include sending a deduction process to the server so that the server side operates on consumption of the credit card.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
Example six,
The present embodiment provides a server, as shown in fig. 6, including:
a communication unit 61, configured to receive a payment request for a payment operation sent by a first terminal device, where the payment request for a credit card at least includes user information of the credit card, and the first terminal device is a terminal device that detects the payment operation of the credit card; determining a second terminal device associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal device, and sending the authentication password to the first terminal device;
and a password generating unit 62 configured to generate an authentication password and a password to be authenticated based on the payment request.
In this embodiment, the first terminal device may be a card swiping device of a credit card arranged at a cash register. The second terminal device may be a mobile terminal to which the user is bound for a credit card at the server side.
The operation of detecting payment of the credit card may be an operation of detecting card swiping of a user by the card swiping device. Further, after detecting the user's card swiping operation, the card swiping device of the credit card may obtain information of the user of the credit card, as well as the card number of the credit card, the amount of the credit card, the current consumption amount of the credit card, and the like, which is not described herein again.
The generating the payment request may be: generating a payment request by using information acquired through payment operation, and sending the payment request to a server side set by a bank corresponding to the credit card;
correspondingly, the server can acquire the mobile phone number left by the user when the user registers the bank card according to the user information in the payment request, generate an authentication password based on the payment request, generate a password to be authenticated to be sent to the mobile phone of the user, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
And generating an authentication password and a password to be authenticated based on the payment request, wherein the two passwords can be the same and are only respectively sent to different devices.
In addition, the sending of the password to be authenticated to the second terminal device and the sending of the authentication password to the first terminal device may be different, for example, the sending of the authentication password may be through the first communication connection, and the sending of the password to be authenticated may be through the third communication connection. The first communication connection may be a wired network connection, or may be a WIFI communication connection. The third communication connection may be the same as or different from the first communication connection in the first embodiment, for example, the third communication connection may be a mobile communication connection.
The server can acquire a mobile phone number left by the user when the user registers the bank card according to user information in a payment request of the first terminal device, and can generate an authentication password to be sent to the mobile phone of the user while generating the authentication password based on the payment request, send the authentication password to the first terminal device, and send the password to be authenticated to the mobile terminal.
Further, the server further includes: and an information saving unit 63, configured to save the payment request received in the payment operation of this time, and save the authentication password and the password to be authenticated in the payment operation of this time.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
Example seven,
An embodiment of the present invention provides an information authentication system, as shown in fig. 7, including:
a first terminal device 71 configured to detect a payment operation by a credit card, generate a payment request based on the payment operation by the credit card, and send the payment request to a server; wherein the payment request includes at least user information of the credit card; receiving an authentication password sent by a server; detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated; authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result;
a second terminal device 72, having at least the same user information as the credit card, for receiving a password to be authenticated for the user's credit card payment operation from the server; generating an authentication request based on the password to be authenticated; sending the authentication request to the first terminal equipment;
a server 73, configured to receive a payment request for a payment operation sent by a first terminal device; generating an authentication password and a password to be authenticated based on the payment request; and determining a second terminal device associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal device, and sending the authentication password to the first terminal device.
In the following, with reference to fig. 8, a payment scenario based on a credit card is described, wherein the scenario includes a card swiping machine 81 at a cash register, i.e. a first terminal device, a server 82 of a credit card company, and a mobile phone 83 of a user using the credit card, i.e. a second terminal device, specifically as follows:
when the credit card is swiped at the cashier desk, the credit card company server receives the payment request and sends a short message and a one-time temporary password to the mobile phone; meanwhile, the temporary password is sent to an authentication software module of a cashier desk, and the cashier desk can listen to a Bluetooth channel at the same time and wait for authentication from a nearby mobile phone; a corresponding application of the mobile phone sends the temporary password of the short message by using a Bluetooth network after receiving the temporary password of the short message; the checkout counter receives each nearby authentication code and compares the received code with the currently received code sent by the credit card company. The current transaction is passed once there is a corresponding password within 5 seconds. Meanwhile, the corresponding communication record is reserved for the later comparison and verification.
Therefore, by adopting the scheme, when the credit card executes payment operation, the first terminal equipment initiates a payment request to the server side, receives the authentication password fed back by the server, authenticates the authentication request sent by the second terminal equipment based on the authentication password, and performs subsequent processing based on the authentication result. Therefore, the first terminal equipment can automatically complete the authentication processing aiming at the authentication request of the second terminal equipment based on the authentication password sent by the server, so that the automatic operation aiming at the payment operation is ensured, and the payment safety of the credit card can also be ensured based on the authentication password corresponding to the payment operation.
The integrated module according to the embodiment of the present invention may also be stored in a computer-readable storage medium if it is implemented in the form of a software functional module and sold or used as an independent product. Based on such understanding, the technical solutions of the embodiments of the present invention may be essentially implemented or a part contributing to the prior art may be embodied in the form of a software product, which is stored in a storage medium and includes several instructions for enabling a computer device (which may be a personal computer, a base station, or a network device) to execute all or part of the methods described in the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes. Thus, embodiments of the invention are not limited to any specific combination of hardware and software.
The above description is only a preferred embodiment of the present invention, and is not intended to limit the scope of the present invention.
Claims (14)
1. An information authentication method is applied to a first terminal device, and is characterized by comprising the following steps:
the method comprises the steps of detecting payment operation of a credit card, generating a payment request based on the payment operation, sending the payment request to a server, enabling the server to generate an authentication password and a password to be authenticated based on the payment request, sending the password to be authenticated to a second terminal device, and sending the authentication password to a first terminal device; wherein the payment request includes at least user information of the credit card;
receiving an authentication password sent by a server;
detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises the password to be authenticated;
authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result;
wherein the authenticating the payment operation comprises: and judging whether the authentication password and the password to be authenticated are the same, if so, determining that the payment operation authentication is passed, otherwise, determining that the payment operation authentication is not passed.
2. The method of claim 1, wherein the receiving of the authentication password from the server comprises: receiving an authentication password sent by a server based on the first communication connection;
the detecting of the authentication request sent by the second terminal device includes: detecting information received in a second communication connection, and detecting an authentication request sent by the second terminal equipment based on the second communication connection;
wherein the first communication connection is different from the second communication connection.
3. The method of claim 1, wherein after sending the payment request to a server, the method further comprises:
starting a timer;
correspondingly, after the authentication request sent by the second terminal device is detected, the method further includes:
acquiring the timing duration of the timer;
judging whether the timing duration is smaller than a preset threshold value, and if so, performing authentication processing on the authentication request; and if the authentication request is not smaller than the preset threshold value, the authentication request is not processed.
4. An information authentication method is applied to a second terminal device, and is characterized by comprising the following steps:
receiving a password to be authenticated aiming at the credit card payment operation of a user from a server; the second terminal equipment and the credit card at least have the same user information;
generating an authentication request based on the password to be authenticated;
sending the authentication request to first terminal equipment, so that the first terminal equipment authenticates the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by a server and processes the payment operation based on an authentication result; the first terminal device is a terminal device which detects the payment operation;
the authenticating the payment operation includes: and judging whether the authentication password and the password to be authenticated are the same, if so, determining that the payment operation authentication is passed, otherwise, determining that the payment operation authentication is not passed.
5. The method of claim 4, wherein sending the authentication request to the first terminal device comprises:
establishing a second communication connection with the first terminal equipment;
sending the authentication request to the first terminal device based on the second communication connection.
6. An information authentication method applied to a server is characterized by comprising the following steps:
receiving a payment request aiming at payment operation sent by a first terminal device, wherein the payment request at least comprises user information of a credit card, and the first terminal device is the terminal device which detects the payment operation of the credit card;
generating an authentication password and a password to be authenticated based on the payment request;
determining second terminal equipment associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal equipment, and sending the authentication password to the first terminal equipment, so that the first terminal equipment authenticates the authentication request containing the password to be authenticated, which is sent by the second terminal equipment, based on the authentication password, and processes the payment operation based on the authentication result;
the authentication of the first terminal device based on the authentication password to the authentication request containing the password to be authenticated, which is sent by the second terminal device, includes: and judging whether the authentication password and the password to be authenticated are the same, if so, determining that the payment operation authentication is passed, otherwise, determining that the payment operation authentication is not passed.
7. The method of claim 6, further comprising:
and storing the payment request received in the payment operation, and storing the authentication password and the password to be authenticated in the payment operation.
8. A terminal device, comprising:
the system comprises a detection unit, a payment processing unit and a verification unit, wherein the detection unit is used for detecting the payment operation of a credit card, generating a payment request based on the payment operation, sending the payment request to a server, enabling the server to generate an authentication password and a password to be authenticated based on the payment request, sending the password to be authenticated to a second terminal device, and sending the authentication password to the terminal device; wherein the payment request includes at least user information of the credit card;
the first communication unit is used for receiving an authentication password sent by the server;
the second communication unit is used for detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment related to user information of the credit card, and the authentication request at least comprises the password to be authenticated;
the authentication unit is used for authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server and processing based on an authentication result;
the authentication unit is specifically configured to determine whether the authentication password and the password to be authenticated are the same, determine that the payment operation authentication passes if the authentication password and the password to be authenticated are the same, and otherwise, determine that the payment operation authentication does not pass.
9. The terminal device according to claim 8, wherein the authentication unit is configured to start a timer after sending the payment request to the server; correspondingly, after the authentication request sent by the second terminal device is detected, the timing duration of the timer is obtained; judging whether the timing duration is smaller than a preset threshold value, and if so, performing authentication processing on the authentication request; and if the authentication request is not smaller than the preset threshold value, the authentication request is not processed.
10. A terminal device, comprising:
the third communication unit is used for receiving a password to be authenticated aiming at the credit card payment operation of the user from the server; the terminal equipment and the credit card at least have the same user information;
the processing unit is used for generating an authentication request based on the password to be authenticated;
the second communication unit is used for sending the authentication request to the first terminal equipment so that the first terminal equipment judges whether the received authentication password sent by the server and the password to be authenticated are the same or not, if yes, the payment operation authentication is determined to be passed, and if not, the payment operation authentication is not passed; wherein the first terminal device is a terminal device that detects a payment operation of the credit card.
11. The terminal device according to claim 10, wherein the second communication unit is configured to establish a second communication connection with the first terminal device; sending the authentication request to the first terminal device based on the second communication connection.
12. A server, comprising:
the payment processing device comprises a communication unit, a payment processing unit and a payment processing unit, wherein the communication unit is used for receiving a payment request aiming at payment operation sent by a first terminal device, the payment request at least comprises user information of a credit card, and the first terminal device is the terminal device which detects the payment operation of the credit card; determining second terminal equipment associated with a user of the credit card based on user information in the payment request, sending a password to be authenticated to the second terminal equipment, and sending an authentication password to the first terminal equipment, so that the first terminal equipment judges whether the authentication password and the password to be authenticated contained in the authentication request sent by the second terminal equipment are the same, if so, determining that payment operation authentication is passed, otherwise, not passing the payment operation authentication;
and the password generating unit is used for generating the authentication password and the password to be authenticated based on the payment request.
13. The server according to claim 12, wherein the server further comprises:
and the information storage unit is used for storing the payment request received in the payment operation and storing the authentication password and the password to be authenticated in the payment operation.
14. An information authentication system, comprising:
the system comprises a first terminal device, a server and a second terminal device, wherein the first terminal device is used for detecting the payment operation of a credit card, generating a payment request based on the payment operation of the credit card and sending the payment request to the server; wherein the payment request includes at least user information of the credit card; receiving an authentication password sent by a server; detecting an authentication request sent by second terminal equipment, wherein the second terminal equipment is terminal equipment associated with user information of the credit card, and the authentication request at least comprises a password to be authenticated; authenticating the payment operation based on the password to be authenticated in the authentication request and the authentication password sent by the server, and processing based on an authentication result;
the first terminal device is specifically configured to determine whether the authentication password and the password to be authenticated are the same, determine that the payment operation authentication passes if the authentication password and the password to be authenticated are the same, and otherwise, determine that the payment operation authentication does not pass;
the second terminal equipment at least has the same user information with the credit card and is used for receiving a password to be authenticated, which is sent by the server and aims at the credit card payment operation of the user; generating an authentication request based on the password to be authenticated; sending the authentication request to the first terminal equipment;
the server is used for receiving a payment request sent by the first terminal device for payment operation; generating an authentication password and a password to be authenticated based on the payment request; and determining a second terminal device associated with the user of the credit card based on the user information in the payment request, sending the password to be authenticated to the second terminal device, and sending the authentication password to the first terminal device.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610023589.6A CN106973032B (en) | 2016-01-14 | 2016-01-14 | Information authentication method, server, terminal equipment and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610023589.6A CN106973032B (en) | 2016-01-14 | 2016-01-14 | Information authentication method, server, terminal equipment and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106973032A CN106973032A (en) | 2017-07-21 |
| CN106973032B true CN106973032B (en) | 2020-09-04 |
Family
ID=59334899
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610023589.6A Active CN106973032B (en) | 2016-01-14 | 2016-01-14 | Information authentication method, server, terminal equipment and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106973032B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109670431A (en) * | 2018-12-11 | 2019-04-23 | 北京小马智行科技有限公司 | A kind of behavioral value method and device |
| CN110210854B (en) * | 2019-05-31 | 2021-07-13 | 中国银联股份有限公司 | Payment information processing method, device, equipment and computer readable storage medium |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1916979A (en) * | 2005-08-16 | 2007-02-21 | 袁雷鸣 | Method and system for carrying out safety authentication by using communication terminal |
| CN103078862A (en) * | 2013-01-06 | 2013-05-01 | 广州市建乔自动化科技有限公司 | Two-dimensional code dual-factor authentication system and method, terminal equipment and server |
| CN104639331A (en) * | 2015-02-04 | 2015-05-20 | 北京信安世纪科技有限公司 | Method for authenticating network identity |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1801228A (en) * | 2005-12-16 | 2006-07-12 | 北京邮电大学 | Method for real-time authorization of bank card transaction based on interactive voice response |
| GB2455235A (en) * | 2006-07-20 | 2009-06-10 | Kamfu Wong | Method and system for online payment and identity confirmation with setting authentication formula |
| US7909243B2 (en) * | 2007-08-28 | 2011-03-22 | American Express Travel Related Services Company, Inc. | System and method for completing a secure financial transaction using a wireless communications device |
| CN101140672A (en) * | 2007-10-23 | 2008-03-12 | 张师祝 | Method for indentifying true identification of bank card owner |
| CN101894424A (en) * | 2009-05-21 | 2010-11-24 | 北京西阁万投资咨询有限公司 | Trading card processing system and method for improving safety |
| CN102930435A (en) * | 2012-09-19 | 2013-02-13 | 中国联合网络通信集团有限公司 | Authentication method and system for mobile payment |
| CN104732388A (en) * | 2015-03-26 | 2015-06-24 | 深圳市亚略特生物识别科技有限公司 | Electronic payment method and system |
-
2016
- 2016-01-14 CN CN201610023589.6A patent/CN106973032B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1916979A (en) * | 2005-08-16 | 2007-02-21 | 袁雷鸣 | Method and system for carrying out safety authentication by using communication terminal |
| CN103078862A (en) * | 2013-01-06 | 2013-05-01 | 广州市建乔自动化科技有限公司 | Two-dimensional code dual-factor authentication system and method, terminal equipment and server |
| CN104639331A (en) * | 2015-02-04 | 2015-05-20 | 北京信安世纪科技有限公司 | Method for authenticating network identity |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106973032A (en) | 2017-07-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20220398594A1 (en) | Pro-active identity verification for authentication of transaction initiated via non-voice channel | |
| EP2989601B1 (en) | Secure voice transactions | |
| US20150058220A1 (en) | Payment pre-authorization | |
| US10552815B2 (en) | Secure contactless payment systems and methods | |
| WO2012139350A1 (en) | Method and system for verifying transactor identity on atm | |
| CN105989485B (en) | Service management method and device | |
| CN103258270A (en) | Bank paying method and device | |
| WO2013086857A1 (en) | Method and system for verifying financial transaction | |
| WO2012158262A1 (en) | Method for authorizing the activation of a spending card | |
| WO2012155620A1 (en) | Method and mobile communication terminal for protecting near field communication security | |
| KR101260698B1 (en) | Method and system for call authentication using terminal information | |
| CN105868975B (en) | Management method, management system and the mobile terminal of electronic banking account | |
| KR101607935B1 (en) | System for paying mobile using finger scan and method therefor | |
| CN108431843B (en) | Transaction processing method and device | |
| CN106973032B (en) | Information authentication method, server, terminal equipment and system | |
| CN105719130B (en) | Payment verification method, device and system | |
| JP7223753B2 (en) | payment processing | |
| CN109699015B (en) | Machine-card binding relationship authentication method and device and communication system | |
| CN105580046A (en) | System and method for providing bank transactions with a remote bank device | |
| KR20200024903A (en) | Payment processing | |
| AU2016277629B2 (en) | Authentication using application authentication element | |
| CN106204025A (en) | A kind of method of payment based on SIM and device | |
| CN110956464A (en) | Transaction operation processing method, device and system | |
| CN106600263B (en) | Payment account number protection method, terminal and server | |
| KR101595009B1 (en) | Mobile cash refund system and method thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |