CN108133366A - The method of payment and payment system and mobile terminal of a kind of fiscard - Google Patents
The method of payment and payment system and mobile terminal of a kind of fiscard Download PDFInfo
- Publication number
- CN108133366A CN108133366A CN201711404519.6A CN201711404519A CN108133366A CN 108133366 A CN108133366 A CN 108133366A CN 201711404519 A CN201711404519 A CN 201711404519A CN 108133366 A CN108133366 A CN 108133366A
- Authority
- CN
- China
- Prior art keywords
- data
- apdu
- platform
- mobile terminal
- returned
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
- G06Q20/3221—Access to banking information through M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/352—Contactless payments by cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Physics & Mathematics (AREA)
- Strategic Management (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Microelectronics & Electronic Packaging (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
This application discloses the method for payment and payment system and mobile terminal of a kind of fiscard, method includes:Mobile terminal sends the first APDU data to the first platform;First platform validation mobile terminal;First platform is decrypted and the first APDU data of parsing, forms the 2nd APDU Data Concurrents and gives prefabricated card-inserting device;Prefabricated card-inserting device verifies the first platform;The APDU that prefabricated card-inserting device is extracted in the 2nd APDU data is instructed and is sent to fiscard;The APDU handling results instructed are sent to prefabricated card-inserting device by fiscard;Prefabricated card-inserting device forms the first returned data and is sent to the first platform;First platform validation prefabricated card-inserting device;First platform is decrypted and the first returned data of parsing, forms the second returned data and is sent to mobile terminal;Mobile terminal verifies the first platform;Mobile terminal is decrypted and parses the second returned data and be sent to payment medium, realizes payment transaction.Fiscard need not be installed in the application mobile terminal just can realize payment transaction.When mobile terminal is lost, economic loss will not be caused.
Description
Technical field
This application involves method of payment and payment system and the movements of communication payment technical field more particularly to a kind of fiscard
Terminal.
Background technology
Common mobile payment mode is normally based on what embedded SE modes were paid currently on the market, this mode
Using mobile phones as carrier, contactless SE chip applications are incorporated into mobile phone, all sensitive informations are stored in SE chips,
Just a variety of applications such as payment, authentication and information exchange can be realized.Under normal conditions, it is only necessary to mobile equipment and payment terminal
It communicates, although payment speed is fast, safety during data transmission can not but be protected, and reduce the peace of payment
Quan Xing.
And it usually needs together with mobile equipment and SE chip bondings, although largely facilitating our work
Make and live, but when mobile device losses, SE cards will also be lost, and be easy to cause economic loss.
Invention content
A kind of method of payment of fiscard, includes the following steps:Mobile terminal sends encrypted first to the first platform
APDU data, the first APDU data include APDU instructions, mobile terminal device information;First platform tests mobile terminal
Card;If being verified, the first platform is decrypted and parses to the first APDU data, and the first platform ID is added in the first APDU
Data form the 2nd APDU data, the 2nd APDU data then are sent to prefabricated card-inserting device after reorganization;Prefabricated card-inserting device is to
One platform carries out authentication;If being verified, the APDU that prefabricated card-inserting device is extracted in the 2nd APDU data is instructed and is sent to
Fiscard corresponding with account information;Fiscard handles, and handling result is sent to prefabricated card-inserting device APDU instructions;It inserts
Prefabricated card-inserting device ID is added in handling result by card device, is reorganized and is formed the first returned data, and be sent to first after encrypting
Platform;First platform carries out authentication to prefabricated card-inserting device;If being verified, the first platform solves the first returned data
First platform ID is added to the first returned data by close and parsing, reorganize and encryption after form the second returned data, by the
Two returned datas are sent to mobile terminal;Mobile terminal carries out authentication to the first platform;If being verified, mobile terminal
Second returned data is decrypted and parsed;Mobile terminal extracts the second returned data, and is sent to payment medium;Payment is situated between
Matter and bank's background system realize payment transaction into row data communication.
As above, wherein, when realizing cCredit card payment under line, payment medium is non-contact terminal;First APDU data are also wrapped
Include fiscard account information and/or individual subscriber identity information;Method of payment further includes:Non-contact terminal is sent to mobile terminal
3rd APDU data;The 3rd APDU data are encrypted in mobile terminal, and reorganize the 3rd APDU data, form first
APDU data.
As above, it wherein, realizes that payment medium is payment platform on line when being paid on line, pays medium and bank backstage
System carries out data communications packets and includes:Payment platform carries out authentication to mobile terminal on line, if being verified, receives second
Returned data;Payment platform receives the second returned data on line, and sends it to bank's background system.
As above, wherein, mobile terminal includes NFC controller and APP clients;Wherein, NFC controller receives third
APDU data, and the 3rd APDU data are sent to APP clients;APP clients receive the 3rd APDU data and reorganize
The first APDU data are formed with encryption, are sent to the first platform;APP clients receive the second returned data, and number is returned to second
According to being decrypted and parsing, extract the second returned data and be sent to NFC controller;NFC controller sends out the second returned data
Give non-contact terminal.
As above, wherein, when realizing cCredit card payment under line, the first APDU data include APDU instructions, user through non-contact
PIN code, the mobile terminal device information of terminal input.
A kind of payment system, including mobile terminal, the first platform, prefabricated card-inserting device, fiscard;Mobile terminal and the first platform
Communication connection for the first APDU data of reception and sends the first APDU data to the first platform and is returned to the second of reception
Return data be decrypted for the first platform into row data communication;First platform is communicated to connect with prefabricated card-inserting device, for receiving
First APDU data are simultaneously decrypted and parse, send the 2nd APDU data to prefabricated card-inserting device;Prefabricated card-inserting device is connect with fiscard,
For receiving the 2nd APDU data, extraction APDU instructions are sent to fiscard and the handling result of reception is encrypted concurrently
Give the first platform;Fiscard instructs for receiving and handling APDU, and the handling result of APDU instructions is sent to prefabricated card-inserting device.
As above, wherein, payment platform on non-contact terminal and line is further included;Non-contact terminal is used for and backstage system of bank
System communicates, and APDU data, the second returned data for receiving mobile terminal transmission are sent to mobile terminal;Payment platform on line
For decrypting and parsing the second returned data, and with bank's background system into row data communication.
A kind of mobile terminal returns to number including the first APDU data transmission blocks, the first platform identity authentication module, second
Mould is sent according to receiving module, the second returned data decryption parsing module, the second returned data extraction module, the second returned data
Block;First APDU data transmission blocks are used to the first APDU data being sent to the first platform;First platform identity authentication module
For carrying out the verification of identity to the first platform;Second returned data receiving module is for the second returned data of reception;Second returns
It returns data deciphering parsing module to connect with the second returned data receiving module, then the second returned data is carried out for being verified
Decryption and parsing;Second returned data extraction module is connect with the second returned data decryption parsing module, is returned for extracting second
Return data;Second returned data sending module is connect with the second returned data extraction module, for the second returned data to be sent
Give payment medium.
As above, wherein, mobile terminal further include the 3rd APDU data reception modules, the 3rd APDU data encryption modules,
3rd APDU data reorganize module;3rd APDU data reception modules are used to receive the third that non-contact terminal is sent
APDU data;3rd APDU data encryption modules are connect with the 3rd APDU data reception modules, for encrypting the 3rd APDU instructions;
3rd APDU data reorganize module and are connect with the 3rd APDU data encryption modules, for reorganizing encrypted third
APDU data form the first APDU data.
As above, wherein, mobile terminal includes NFC controller and APP clients;NFC controller includes the 3rd APDU numbers
According to receiving module, the 3rd APDU data transmission blocks, third returned data receiving module, the second returned data sending module;APP
Client includes the 4th APDU data reception modules, the first APDU data form module, the first APDU data transmission blocks, first
Platform identity authentication module, the second returned data receiving module, the second returned data decryption parsing module, the second returned data carry
Modulus block, the 4th returned data sending module, the 5th returned data sending module;3rd APDU data reception modules are used to receive
The 3rd APDU data that non-contact terminal is sent;3rd APDU data transmission blocks are connect with the 3rd APDU data reception modules,
For sending the 3rd APDU data to APP clients;Third returned data receiving module is used to receive what APP clients were sent
Second returned data;4th APDU data reception modules are connect with the 3rd APDU data transmission blocks, for receiving NFC controller
The 3rd APDU data sent;First APDU data form module and are connect with the 4th APDU data reception modules, for that will connect
The 3rd APDU data received reorganize to form the first APDU data;4th returned data sending module returns to number with second respectively
It is connected according to extraction module with third returned data receiving module, for sending the second returned data to NFC controller;5th returns
Data transmission blocks are connect with the second returned data extraction module, are returned for second after the payment platform transmission extraction on line
Data.
The technique effect of embodiments herein is as follows:
(1) in mobile terminal without installation for payment transaction fiscard, only need to by fiscard place at home or
Under the environment of other safety, payment transaction just can be realized without carrying.
(2) there be not sensitive information of the fiscard for payment transaction in mobile terminal, it, will not when mobile terminal is lost
Cause the economic loss of finance account.
(3) due to being remote transaction in payment transaction, so hardware safe unit is depended in data transmission procedure,
It is safer, even if payment platform is by attack on the first platform or line, it is only necessary to which fiscard and prefabricated card-inserting device are detached from, and just can be kept away
Exempt from financial loss.
Description of the drawings
In order to illustrate the technical solutions in the embodiments of the present application or in the prior art more clearly, to embodiment or it will show below
There is attached drawing needed in technology description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments described in application, for those of ordinary skill in the art, can also be obtained according to these attached drawings other
Attached drawing.
Fig. 1 is the internal structure schematic diagram of payment system that the application provides;
Fig. 2 is payment transaction flow chart under the line that the application provides;
Payment transaction flow chart on the line that Fig. 3 is provided for the application;
Fig. 4 is the internal structure schematic diagram of mobile terminal that the application provides;
Fig. 5 is the internal structure schematic diagram of NFC controller that the application provides;
Fig. 6 is the internal structure schematic diagram of APP clients that the application provides;
Specific embodiment
With reference to the attached drawing in the embodiment of the present invention, the technical solution in the embodiment of the present invention is carried out clear, complete
Ground describes, it is clear that described embodiment is part of the embodiment of the present invention, instead of all the embodiments.Based on the present invention
In embodiment, those skilled in the art's all other embodiments obtained without making creative work, all
Belong to the scope of protection of the invention.
Present applicant proposes a kind of payment system of fiscard, it can be achieved that payment transaction under payment transaction and line on line.Such as
Shown in Fig. 1, which includes mobile terminal 101, the first platform 102, prefabricated card-inserting device 103, fiscard 104, payment medium
105。
Mobile terminal 101 is communicated to connect with the first platform 102, for the first platform into row data communication.
First platform 102 is communicated to connect with prefabricated card-inserting device 103, for prefabricated card-inserting device into row data communication.
Prefabricated card-inserting device 103 is connect with fiscard 104, for fiscard into row data communication.
Fiscard 104 instructs for receiving and handling APDU, and the handling result of APDU instructions is sent to prefabricated card-inserting device.
Payment medium 105 is communicated to connect with mobile terminal 101, for, into row data communication, being completed with bank's background system
Payment transaction.
Preferably, mobile terminal 101 includes NFC controller and APP clients.
Embodiment one
Payment transaction flow under a kind of line is present embodiments provided, as shown in Figure 1, its specific steps includes:
Step S210:Non-contact terminal receives the payment transaction instruction of trade company's input, is instructed according to payment transaction to movement
Terminal sends the 3rd APDU data.
Illustratively, non-contact terminal carries out data by contactless communications protocol TYPE A or TYPE B and mobile terminal
Communication.
As one embodiment, the 3rd APDU data are instructed including the first APDU, and the content of the first APDU instructions is according to branch
The type for paying trading instruction is determined.
Illustratively, the first APDU instructions can be the select for financial transaction of non-contact terminal inner tissue
The instructions such as AID, GPO, READ RECORD, internal authentication, GAC instructions;Can also be non-contact terminal and bank's background system friendship
Mutually when according to the bank's background system received send data organization into APDU instruct (outside in such as financial transaction is recognized
Card, directive script etc.).
As another embodiment, when cCredit card payment needs PIN code under line, the first APDU data refer to including the first APDU
It enables, the PIN code that user inputs through non-contact terminal, mobile terminal device information.
Illustratively, mobile terminal device information is cell-phone number used by a user.
Preferably, the first APDU data can also include fiscard account information and/or individual subscriber identity information.
Specifically, individual subscriber identity information is the information such as the identification card number of user and address name.
Step S220:Mobile terminal receives the 3rd APDU data, and reorganizes and form the first APDU data after encrypting,
And it is sent to the first platform.
Specifically, NFC controller receives the 3rd APDU data, and the 3rd APDU data are sent to APP clients, APP
Client receives the 3rd APDU data, reorganizes and the first APDU Data Concurrents are formed after encrypting and give the first platform.
As one embodiment, mobile terminal is using the private key SK of asymmetric arithmetic RSA or ECC to the first APDU data
It is encrypted.
Illustratively, account of the first APDU data including the first APDU instructions, mobile terminal device information, fiscard is believed
Breath and/or individual subscriber identity information.
Specifically, personally identifiable information includes address name and user identity card number.
Step S230::First platform receives the first APDU data and carries out authentication to mobile terminal.
Specifically, the first platform internal memory has mobile terminal device information, when the mobile terminal device information for detecting reception
When consistent with the mobile terminal device information of storage inside, then it is verified.
If verification does not pass through, the first platform returns to error message.
If being verified, step S240 is performed:First platform is decrypted and parses to the first APDU data, by first
Platform ID adds in the first APDU data, and the 2nd APDU data are formed after reorganization, are then sent to the 2nd APDU data slotting
Card device.
As one embodiment, the first platform is using the public key PK of asymmetric arithmetic RSA or ECC to the first APDU data
It is decrypted.
Step S250:Prefabricated card-inserting device carries out authentication to the first platform.
Specifically, multiple platform ID are prestored in prefabricated card-inserting device, when the ID for verifying the first platform is in multiple platform ID
It one, is then verified.
If verification does not pass through, prefabricated card-inserting device returns to error message.
If being verified, step S260 is performed:Prefabricated card-inserting device receives the 2nd APDU data, extraction the first APDU therein
It instructs and is sent to fiscard corresponding with account information.
As one embodiment, prefabricated card-inserting device is sticked by T=0 the T=1 agreements of ISO/IEC 7816-3 with finance
Row data communication.
Step S270:Fiscard handles, and the first handling result is sent to prefabricated card-inserting device the first APDU instructions.
Step S280:Prefabricated card-inserting device receives the first handling result, and prefabricated card-inserting device ID is added in the first handling result, again
The first returned data is formed after tissue and encryption, is sent to the first platform.
Step S290:First platform carries out authentication to prefabricated card-inserting device.
Specifically, the first platform has the ID of prefabricated card-inserting device in advance, as the prefabricated card-inserting device ID that verification receives and is stored in this
When the prefabricated card-inserting device ID on ground is consistent, then it is verified.
If verification does not pass through, the first platform returns to error message.
If being verified, step S2100 is performed:First platform is decrypted and parses to the first returned data, by
One platform ID is added to the first returned data, reorganizes and forms the second returned data after encrypting, the second returned data is sent out
Give mobile terminal.
Step S2110:Mobile terminal carries out authentication to the first platform.
Specifically, mobile terminal has the ID of the first platform in advance, as the first platform ID that verification receives and is stored in this
When the ID on ground is consistent, then it is verified.
If verification does not pass through, mobile terminal returns to error message.
If being verified, step S2120 is performed:Mobile terminal receives the second returned data and it is decrypted reconciliation
Analysis.
Specifically, the APP clients in mobile terminal are decrypted and parse to the second returned data.
Step S2130:Mobile terminal extracts the second returned data, and is sent to non-contact terminal.
Specifically, the APP clients in mobile terminal extract the second returned data and are sent to NFC controller, NFC controls
Second returned data is sent to non-contact terminal by device.
Step S2140:Non-contact terminal and bank's background system realize payment transaction into row data communication.
Embodiment two
Payment transaction flow on line is present embodiments provided, specifically includes following steps as shown in Figure 3:
Step S310:Mobile terminal sends out payment instruction, the 4th APDU data of tissue and encryption, and it is flat to be sent to first
Platform.
Specifically, the 4th APDU data of APP clients tissue and encryption, and it is sent to the first platform.
As one embodiment, the 4th APDU data include the 2nd APDU instructions, the account information of fiscard and user
People's identity information, the 2nd APDU instructions are determined according to payment instruction type.
Illustratively, if payment instruction type is load, the 2nd APDU instructions can be select AID, GPO, READ
RECORD, GAC, internal authentication, directive script putdata.
Step S320:First platform receives the 4th APDU data and mobile terminal is verified.
Specifically, the first platform internal memory has mobile terminal device information, when the mobile terminal device information for detecting reception
When consistent with the mobile terminal device information of storage inside, then it is verified.
If verification does not pass through, the first platform returns to wrong data.
If being verified, step S330 is performed:First platform is decrypted and parses to the 4th APDU data, by first
Platform ID adds in the 4th APDU data, and the 5th APDU data are formed after reorganization, are then sent to the 5th APDU data slotting
Card device.
Step S340:Prefabricated card-inserting device carries out authentication to the first platform;
Specifically, pre-selection has multiple platform ID in prefabricated card-inserting device, when the ID for verifying the first platform is in multiple platform ID
One, then be verified.
If verification does not pass through, prefabricated card-inserting device returns to error message.
If being verified, step S350 is performed:Prefabricated card-inserting device receives the 5th APDU data, extraction the 2nd APDU therein
It instructs and is sent to fiscard corresponding with account information;
Step S360:Fiscard handles, and second processing result is sent to prefabricated card-inserting device the 2nd APDU instructions;
Step S370:Prefabricated card-inserting device receives second processing as a result, and prefabricated card-inserting device ID is added in second processing as a result, again
Third returned data is formed after tissue and encryption, is sent to the first platform;
Step S380:First platform carries out authentication to prefabricated card-inserting device;
Specifically, the first platform has the ID of prefabricated card-inserting device in advance, as the prefabricated card-inserting device ID that verification receives and is stored in this
When the prefabricated card-inserting device ID on ground is consistent, then it is verified.
If verification does not pass through, the first platform returns to error message.
If being verified, step S390 is performed:First platform is decrypted and parses to third returned data, by first
Platform ID is added to third returned data, reorganizes and forms the 4th returned data after encrypting, the 4th returned data is sent
To mobile terminal.
Step S3100:Mobile terminal carries out authentication to the first platform.
Specifically, mobile terminal has the ID of the first platform in advance, when the first platform ID that verification receives is with being stored in
When local ID is consistent, then it is verified.
If verification does not pass through, mobile terminal returns to error message.
If being verified, step S3110 is performed:Mobile terminal receives the 4th returned data and it is decrypted reconciliation
Analysis.
Specifically, the APP clients in mobile terminal are decrypted and parse to the 4th returned data.
Step S3120::Mobile terminal extracts the 4th returned data, and is sent to payment platform on line.
Specifically, the APP clients in mobile terminal extract the 4th returned data and are sent to payment platform on line.
Step S3130:Payment platform carries out authentication to mobile terminal on line.
Specifically, there is the personally identifiable information of mobile terminal on line in payment platform, when the person for detecting reception
When part information is consistent with the personally identifiable information of storage inside, then it is verified.
If verification does not pass through, then payment platform returns to error message on line.
If being verified, step S3140 is performed:After payment platform receives the 4th returned data and is sent to bank on line
Platform system realizes payment transaction.
As shown in figure 4, mobile terminal includes NFC controller 401 and APP clients 402.
NFC controller 401 is used for transmission the data between non-contact terminal and APP clients.
APP clients 402 are used for the instruction transmitted the instruction of non-contact terminal to the first platform or transmit oneself tissue, and
The returned data of first platform is sent to payment medium, payment medium is made to be interacted with bank background system, completes transaction.
As shown in figure 5, NFC controller 401 includes the 3rd APDU data reception modules 501, the 3rd APDU data send mould
Block 502, third returned data receiving module 503, the second returned data sending module 504.
3rd APDU data reception modules 501 are used to receive the 3rd APDU data that non-contact terminal is sent.
3rd APDU data transmission blocks 502 are connect with the 3rd APDU data reception modules 501, for APP clients
Send the 3rd APDU data.
Third returned data receiving module 503 is used to receive the second returned data that APP clients are sent.
Second returned data sending module 504 is connect with the second returned data receiving module 503, for non-contact terminal
The second returned data transmitted and received.
As shown in fig. 6, APP clients include the 4th APDU data reception modules 601, the first APDU data form module
602nd, the first APDU data transmission blocks 603, the first platform identity authentication module 604, the second returned data receiving module 605,
Second returned data decryption parsing module 606, the second returned data extraction module 607, the 4th returned data sending module 608,
5th returned data sending module 609.
4th APDU data reception modules 601 are used to receive the 3rd APDU data that NFC controller is sent.
First APDU data form module 602 and are connect with the 4th APDU data reception modules 601, for by the third received
APDU data reorganize and encryption forms the first APDU data.
First APDU data transmission blocks 603 connect 602 with the first APDU data formation module and connect, for being sent out to the first platform
Send encrypted first APDU data or the 4th APDU data.
First platform identity authentication module 604 is used to verify the identity of the first platform.
Second returned data receiving module 605 is connect with the first platform identity authentication module 604, if for the first platform body
Part is verified, then receives the second returned data or the 4th returned data that the first platform is sent.
Second returned data decryption parsing module 606 is connect with the second returned data receiving module 605, for reception
Second returned data or the 4th returned data are decrypted and parse.
Second returned data extraction module 607 is connect with the second returned data deciphering module 606, for extracting decryption parsing
The second returned data or the 4th returned data afterwards.
4th returned data sending module 608 is connect with the second returned data extraction module 607, for NFC controller
Send the second returned data after extraction.
5th returned data sending module 609 is connect with the second returned data extraction module 607, flat for being paid on line
Platform sends the 4th returned data after extraction.
The technique effect of embodiments herein is as follows:
(1) in mobile terminal without installation for payment transaction fiscard, only need to by fiscard place at home or
Under the environment of other safety, payment transaction just can be realized without carrying.
(2) there be not sensitive information of the fiscard for payment transaction in mobile terminal, it, will not when mobile terminal is lost
Cause the economic loss of finance account.
(3) due to being remote transaction in payment transaction, so hardware safe unit is depended in data transmission procedure,
It is safer, even if payment platform is by attack on the first platform or line, it is only necessary to which fiscard and prefabricated card-inserting device are detached from, and just can be kept away
Exempt from financial loss.
Although the preferred embodiment of the application has been described, those skilled in the art once know basic creation
Property concept, then additional changes and modifications may be made to these embodiments.So appended claims be intended to be construed to include it is excellent
It selects embodiment and falls into all change and modification of the application range.Obviously, those skilled in the art can be to the application
Various modification and variations are carried out without departing from spirit and scope.If in this way, these modifications and variations of the application
Belong within the scope of the application claim and its equivalent technologies, then the application is also intended to exist comprising these modification and variations
It is interior.
Claims (10)
1. a kind of method of payment of fiscard, which is characterized in that include the following steps:
Mobile terminal sends encrypted first APDU data to the first platform, and the first APDU data include APDU instructions, move
Dynamic terminal device information;
First platform verifies the mobile terminal;
If being verified, first platform is decrypted and parses to the first APDU data, and the first platform ID is added
Enter the first APDU data, the 2nd APDU data are formed after reorganization, are then sent to the 2nd APDU data slotting
Card device;
The prefabricated card-inserting device carries out authentication to first platform;
If being verified, the APDU that the prefabricated card-inserting device extracts in the 2nd APDU data is instructed and is sent to be believed with account
Cease corresponding fiscard;
The fiscard handles, and handling result is sent to the prefabricated card-inserting device APDU instructions;
Prefabricated card-inserting device ID is added in the handling result by the prefabricated card-inserting device, reorganizes and the first return number is formed after encrypting
According to, and it is sent to first platform;
First platform carries out authentication to the prefabricated card-inserting device;
If being verified, first platform is decrypted and parses to first returned data, by first platform
ID is added to first returned data, reorganizes and forms the second returned data after encrypting, by second returned data
It is sent to the mobile terminal;
The mobile terminal carries out authentication to first platform;
If being verified, the mobile terminal is decrypted and parses to second returned data;
The mobile terminal extracts second returned data, and is sent to payment medium;
The payment medium and bank's background system realize payment transaction into row data communication.
2. the method for payment of fiscard as described in claim 1, which is characterized in that when realizing cCredit card payment under line, the branch
It is non-contact terminal to pay medium;The first APDU data further include fiscard account information and/or individual subscriber identity information;
The method of payment further includes:
The non-contact terminal sends the 3rd APDU data to the mobile terminal;
The 3rd APDU data are encrypted in the mobile terminal, and reorganize the 3rd APDU data, form institute
State the first APDU data.
3. the method for payment of fiscard as described in claim 1, which is characterized in that realize that the payment is situated between when being paid on line
Matter is payment platform on line, and the payment medium and bank's background system carry out data communications packets and include:
Payment platform carries out authentication to the mobile terminal on the line, if being verified, receives described second and returns
Data;
Payment platform receives second returned data on the line, and sends it to bank's background system.
4. the method for payment of fiscard as claimed in claim 2, which is characterized in that the mobile terminal includes NFC controller
With APP clients;
Wherein, the NFC controller receives the 3rd APDU data, and the 3rd APDU data are sent to the APP
Client;The APP clients receive the 3rd APDU data and reorganization and encryption form the first APDU data,
It is sent to first platform;
The APP clients receive second returned data, and second returned data is decrypted and parsed, and extract institute
It states the second returned data and is sent to the NFC controller;Second returned data is sent to described by the NFC controller
Non-contact terminal.
5. the method for payment of fiscard as claimed in claim 2, which is characterized in that when realizing cCredit card payment under line, described the
One APDU data include APDU instructions, user PIN code and the mobile terminal device information through the non-contact terminal input.
6. a kind of payment system, which is characterized in that including mobile terminal, the first platform, prefabricated card-inserting device, fiscard;
The mobile terminal is connect with first Platform communication, for receiving the first APDU data and to first platform
It sends the first APDU data and the second returned data of reception is decrypted;
First platform is communicated to connect with the prefabricated card-inserting device, for receiving the first APDU data and reconciliation being decrypted
Analysis sends the 2nd APDU data to the prefabricated card-inserting device;
The prefabricated card-inserting device is connect with the fiscard, and for receiving the 2nd APDU data, extraction APDU instructions are sent to
The fiscard is simultaneously encrypted the handling result of reception and is sent to first platform;
The fiscard instructs for receiving and handling APDU, and the handling result of APDU instructions is sent to the prefabricated card-inserting device.
7. payment system as claimed in claim 6, which is characterized in that further include payment platform on non-contact terminal and line;
The non-contact terminal is used to communicate with bank background system, sends APDU data to the mobile terminal, receives
Second returned data that the mobile terminal is sent;
Payment platform is for decrypting and parsing second returned data on the line, and with bank's background system into line number
According to communication.
8. a kind of mobile terminal, which is characterized in that the mobile terminal includes the first APDU data transmission blocks, the first platform body
Part authentication module, the second returned data receiving module, the second returned data decryption parsing module, the second returned data extraction mould
Block, the second returned data sending module;
The first APDU data transmission blocks are used to the first APDU data being sent to the first platform;
The first platform identity authentication module is used to carry out the first platform the verification of identity;
The second returned data receiving module is for the second returned data of reception;
The second returned data decryption parsing module is connect with the second returned data receiving module, for being verified then
Second returned data is decrypted and parsed;
The second returned data extraction module and second returned data decryption parsing module are connect, for extracting described the
Two returned datas;
The second returned data sending module is connect with the second returned data extraction module, for described second to be returned
Data are sent to payment medium.
9. mobile terminal as claimed in claim 8, which is characterized in that the mobile terminal further includes the 3rd APDU data receivers
Module, the 3rd APDU data encryption modules, the 3rd APDU data reorganize module;
The 3rd APDU data reception modules are used to receive the 3rd APDU data that the non-contact terminal is sent;
The 3rd APDU data encryption modules are connect with the 3rd APDU data reception modules, for encrypting the third
APDU is instructed;
The 3rd APDU data reorganize module and are connect with the 3rd APDU data encryption modules, add for reorganizing
The 3rd APDU data after close form the first APDU data.
10. mobile terminal as claimed in claim 8, which is characterized in that the mobile terminal includes NFC controller and APP visitors
Family end;The NFC controller includes the 3rd APDU data reception modules, the 3rd APDU data transmission blocks, third returned data
Receiving module, the second returned data sending module;The APP clients include the 4th APDU data reception modules, first
APDU data formation module, the first APDU data transmission blocks, the first platform identity authentication module, described second return
Return data reception module, second returned data decryption parsing module, the second returned data extraction module, the 4th return
Data transmission blocks, the 5th returned data sending module;
The 3rd APDU data reception modules are used to receive the 3rd APDU data that the non-contact terminal is sent;
The 3rd APDU data transmission blocks are connect with the 3rd APDU data reception modules, for the APP client
End sends the 3rd APDU data;
The third returned data receiving module is used to receive second returned data that the APP clients are sent;
The 4th APDU data reception modules are connect with the 3rd APDU data transmission blocks, for receiving the NFC controls
The 3rd APDU data that device processed is sent;
The first APDU data form module and are connect with the 4th APDU data reception modules, for will receive described the
Three APDU data reorganize to form the first APDU data;
The 4th returned data sending module receives respectively with the second returned data extraction module and third returned data
Module connects, for sending second returned data to the NFC controller;The 5th returned data sending module and institute
The connection of the second returned data extraction module is stated, for the second returned data after the payment platform transmission extraction on line.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711404519.6A CN108133366B (en) | 2017-12-22 | 2017-12-22 | payment method and payment system of financial card and mobile terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201711404519.6A CN108133366B (en) | 2017-12-22 | 2017-12-22 | payment method and payment system of financial card and mobile terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108133366A true CN108133366A (en) | 2018-06-08 |
| CN108133366B CN108133366B (en) | 2019-12-17 |
Family
ID=62391437
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201711404519.6A Active CN108133366B (en) | 2017-12-22 | 2017-12-22 | payment method and payment system of financial card and mobile terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108133366B (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102480725A (en) * | 2010-11-30 | 2012-05-30 | 中国银联股份有限公司 | Remote payment method |
| US20140138435A1 (en) * | 2012-11-20 | 2014-05-22 | Cellco Partnership D/B/A Verizon Wireless | Payment or other transaction through mobile device using nfc to access a contactless transaction card |
| CN105844817A (en) * | 2016-03-23 | 2016-08-10 | 上海易码信息科技有限公司 | Remote offline financial card payment method used in NFC POC terminals |
| CN106251323A (en) * | 2015-12-22 | 2016-12-21 | 深圳超多维光电子有限公司 | Method, device and the electronic equipment of a kind of bore hole three-dimensional tracking |
-
2017
- 2017-12-22 CN CN201711404519.6A patent/CN108133366B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102480725A (en) * | 2010-11-30 | 2012-05-30 | 中国银联股份有限公司 | Remote payment method |
| US20140138435A1 (en) * | 2012-11-20 | 2014-05-22 | Cellco Partnership D/B/A Verizon Wireless | Payment or other transaction through mobile device using nfc to access a contactless transaction card |
| CN106251323A (en) * | 2015-12-22 | 2016-12-21 | 深圳超多维光电子有限公司 | Method, device and the electronic equipment of a kind of bore hole three-dimensional tracking |
| CN105844817A (en) * | 2016-03-23 | 2016-08-10 | 上海易码信息科技有限公司 | Remote offline financial card payment method used in NFC POC terminals |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108133366B (en) | 2019-12-17 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10440575B2 (en) | Protection of a security element coupled to an NFC circuit | |
| US10931712B2 (en) | Protection against rerouting a communication channel of a telecommunication device having an NFC circuit and a secure data circuit | |
| US11743721B2 (en) | Protection of a communication channel between a security module and an NFC circuit | |
| JP6092415B2 (en) | Fingerprint authentication system and fingerprint authentication method based on NFC | |
| US11963004B2 (en) | Detection of a rerouting of a communication channel of a telecommunication device connected to an NFC circuit | |
| US10716007B2 (en) | Protection of a security module in a telecommunication device coupled to an NFC circuit | |
| US9219745B2 (en) | Assessing the resistance of a security module against attacks by communication pipe diversion | |
| US9185561B2 (en) | Protection against rerouting in an NFC circuit communication channel | |
| CN104765999A (en) | User resource information processing method, terminal and server | |
| US9179301B2 (en) | Protection of a communication channel of a telecommunication device coupled to an NFC circuit against misrouting | |
| CN103905194B (en) | Identity traceability authentication method and system | |
| CN104778579A (en) | Induction payment method and device based on electronic identity recognition carrier | |
| CN101957958A (en) | Method and mobile phone terminal for realizing network payment | |
| CN109146468A (en) | A kind of backup and restoration methods of the logical card of number | |
| CN106779672A (en) | The method and device that mobile terminal safety pays | |
| CN104135458A (en) | Establishment of communication connection between mobile equipment and secure carrier | |
| EP3157280A1 (en) | Method and device for achieving remote payment | |
| CN108133366A (en) | The method of payment and payment system and mobile terminal of a kind of fiscard | |
| CA2940465C (en) | Device and method for securing commands exchanged between a terminal and an integrated circuit | |
| KR101330961B1 (en) | Method for processign issue of mobile cerdit card | |
| Lerner | Mobile Technology and Security | |
| CN102111733A (en) | Short message communication method and system | |
| TW201337773A (en) | Mobile communication device, signal processing unit and information processing method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |