CN110555693A - system and method for realizing two-dimensional code security by using SIM card - Google Patents

system and method for realizing two-dimensional code security by using SIM card Download PDF

Info

Publication number
CN110555693A
CN110555693A CN201810564395.6A CN201810564395A CN110555693A CN 110555693 A CN110555693 A CN 110555693A CN 201810564395 A CN201810564395 A CN 201810564395A CN 110555693 A CN110555693 A CN 110555693A
Authority
CN
China
Prior art keywords
sim card
data
address book
cloud server
unit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201810564395.6A
Other languages
Chinese (zh)
Other versions
CN110555693B (en
Inventor
王庆林
邹重人
张福玺
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Purple Light Co Core Microelectronics Co Ltd
Original Assignee
Purple Light Co Core Microelectronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Purple Light Co Core Microelectronics Co Ltd filed Critical Purple Light Co Core Microelectronics Co Ltd
Priority to CN201810564395.6A priority Critical patent/CN110555693B/en
Publication of CN110555693A publication Critical patent/CN110555693A/en
Application granted granted Critical
Publication of CN110555693B publication Critical patent/CN110555693B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3229Use of the SIM of a M-device as secure element
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3274Short range or proximity payments by means of M-devices using a pictured code, e.g. barcode or QR-code, being displayed on the M-device
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/18Processing of user or subscriber data, e.g. subscribed services, user preferences or user profiles; Transfer of user or subscriber data
    • H04W8/183Processing at user equipment or user record carrier

Abstract

The invention provides a system and a method for realizing two-dimension code safety by using an SIM card, wherein the system comprises a mobile device, a cloud server and an electronic terminal, the electronic terminal has a two-dimension code scanning and identifying function, the mobile device comprises the SIM card, an APP unit, a two-dimension code generating unit and a display screen, and the SIM card comprises an ISO7816 interface, an OS system unit and a secret key unit. The invention adopts the physical interface form of ISO7816 of the traditional SIM card, does not change the software interface form of the existing mobile phone operating system, and realizes the method for realizing the two-dimension code safe payment application of the mobile phone.

Description

system and method for realizing two-dimensional code security by using SIM card
Technical Field
The invention relates to the technical field of information security, in particular to a system and a method for realizing two-dimensional code security by using an SIM card.
Background
In recent years, the functions of mobile phones are getting stronger, including third party payments such as WeChat and Paibao, and the APP of each big bank completing the payment function is applied in a large scale, and the two-dimension code payment form of the APP accounts for the most part. As shown in fig. 1, a diagram of an existing mobile device payment system framework; in this mobile device payment system, the mobile device loading has mobile client APP, and the two-dimensional code that mobile client APP generated shows on the display screen of mobile device, when paying, the two-dimensional code on the electronic terminal scanning display screen, then pay. However, because the mobile phone operating system has a huge security problem, there is a huge potential safety hazard when these two-dimensional code payment applications are carried out. Firstly, a mobile client APP responsible for generating a two-dimensional code runs on an unsafe mobile phone operating system, and the safety of the mobile client APP cannot be guaranteed at all; secondly, the two-dimensional code itself does not have security, and can be copied and illegally distributed, and the like, and similar examples have been largely appeared in real life. In order to solve these security problems, a security mechanism is urgently needed to solve the security problem of the mobile phone and the security problem of the two-dimensional code. At present, many schemes for solving the security problem of the mobile phone, such as TEE, SE, HCE and the like, are continuously provided at home and abroad, but the new technologies are not popularized to each mobile phone, especially to the huge mobile phone stock market, and no security measures exist. Therefore, there is no particularly effective solution in the market for the security problem of the two-dimensional code.
Disclosure of Invention
aiming at the defects in the prior art, the invention aims to provide a system and a method for realizing two-dimension code safety by using an SIM card, which realize the safe payment application of the two-dimension code of a mobile phone, add redefinition to an address book data instruction in the design of an OS system unit of the SIM card on the basis of not changing the prior mobile phone operating system to achieve the aim of encrypting sensitive information, and apply the encrypted information to the safe payment field in the form of the two-dimension code.
In order to achieve the technical purpose, the technical scheme adopted by the invention is as follows:
a system for realizing two-dimension code security by using an SIM card comprises a mobile device, a cloud server and an electronic terminal, wherein the electronic terminal has a two-dimension code scanning and identifying function, the mobile device comprises the SIM card, an APP unit, a two-dimension code generating unit and a display screen, the SIM card comprises an ISO7816 interface, an OS system unit and a key unit, the key unit stores a key which is pre-stored and written in the issuing stage of the SIM card and is the same as a key of the cloud server, address book data are stored in a fixed position in the SIM card, the address book data comprise real-time, monotonically increasing counter values, an SIM card serial number, an application identification mark AID and identification codes of the data, and the key which is pre-stored and written in the key unit is used for encrypting the address book data and then storing the address book data;
When the mobile equipment starts two-dimensional code payment, an APP unit in the SIM card transmits the current time to an OS system unit in the SIM card through an update instruction of address book data, the OS system unit encrypts the address book data by using a key pre-stored and written by a key unit and updates ciphertext data to a fixed position of the address book data, the value of a counter is increased by 1 when the update instruction is executed once, then the APP unit reads the fixed position of the address book data by adopting a read instruction of the address book data and records the fixed position of the address book data, so that encrypted data is obtained, the encrypted data is transmitted to a two-dimensional code generating unit, and the two-dimensional code generating unit generates two-dimensional codes from the encrypted data and displays the two-dimensional codes on a display screen;
The electronic terminal scans the two-dimensional code on the display screen of the mobile equipment, analyzes the encrypted data contained in the two-dimensional code and then transmits the encrypted data to the cloud server;
After receiving the encrypted data sent by the electronic terminal, the cloud server decrypts the encrypted data by using a key which is the same as a key unit in the SIM card, so as to obtain the real-time, the serial number of the SIM card, the numerical value of the monotonically increasing counter, the application identification mark AID and the identification code CRC of the data, then verifies the correctness of the identification code CRC and determines whether the decrypted data is correct or not; if the decrypted data is correct, the cloud server verifies whether the difference between the real-time and the current time exceeds 10 minutes, if not, the cloud server verifies whether the value of the monotonically increasing counter is larger than the value of the counter in the SIM card recorded in the cloud server, if the value of the monotonically increasing counter is larger than the value recorded in the cloud server, the decrypted data is finally indicated to be valid, and the transaction is normally carried out.
Preferably, the OS system unit redefines the update instruction to the fixed location of the address book data, the update instruction being relocated to pass the current time of the OS system unit of the mobile device as a parameter to the SIM card.
Preferably, the OS system unit redefines a read instruction for the fixed location of the address book data, where the read instruction is redefined to read out encrypted information of the SIM card in which the address book data exists at the specific location, and the encrypted information is handed to the mobile terminal APP unit as the security data to be processed.
A method for realizing two-dimension code security by using an SIM card is implemented based on a system for realizing two-dimension code security by using the SIM card, and comprises the following specific steps:
The method comprises the following steps: storing address book data in the SIM card and carrying out encryption processing; the method comprises the steps that address book data are stored in a fixed position in an SIM card, the address book data are composed of real-time, a monotonically increasing counter value, an SIM card serial number, an application identification mark AID and an identification code CRC of the data, and a secret key written in by a secret key unit in advance is stored after encryption processing is carried out on the address book data;
step two: forming a two-dimensional code in the SIM card and displaying the two-dimensional code on a display screen; when the mobile equipment starts two-dimensional code payment, an APP unit in the SIM card transmits the current time to an OS system unit in the SIM card through an update instruction of address book data, the OS system unit encrypts the address book data by using a key pre-stored and written by a key unit and updates ciphertext data to a fixed position of the address book data, the numerical value of a counter is increased by 1 every time the update instruction is executed, then the APP unit reads the fixed position of the address book data by using a read instruction of the address book data and records the fixed position of the address book data, so that encrypted data is obtained, the encrypted data is transmitted to a two-dimensional code generating unit, and the two-dimensional code generating unit generates two-dimensional codes from the encrypted data and displays the two-dimensional codes on a display screen;
step three: the electronic terminal completes two-dimensional code analysis and transmits the encrypted data to the cloud server; the method comprises the steps that an electronic terminal scans a two-dimensional code on a display screen of the mobile equipment, analyzes encrypted data contained in the two-dimensional code and then transmits the encrypted data to a cloud server;
step four: the cloud server decrypts the received encrypted data and verifies whether the decrypted data is correct; after receiving the encrypted data sent by the electronic terminal, the cloud server decrypts the encrypted data by using a key which is the same as a key unit in the SIM card, so as to obtain the real-time, the serial number of the SIM card, the numerical value of a monotonically increasing counter, an application identification mark AID and the identification code CRC of the data, then verifies the correctness of the identification code CRC and determines whether the decrypted data is correct;
Step five: the cloud server verifies the real-time and the monotonically increasing counter value and determines whether the decrypted data is valid; if the decrypted data is correct, the cloud server verifies whether the difference between the real-time and the current time exceeds 10 minutes, if not, the cloud server verifies whether the value of the monotonically increasing counter is larger than the value of the counter in the SIM card recorded in the cloud server, if the value of the monotonically increasing counter is larger than the value recorded in the cloud server, the decrypted data is finally effective, and the transaction is normally carried out.
the invention adopts the universal SIM card as the core security unit, and has the advantages that the invention adopts the physical interface form of ISO7816 of the traditional SIM card, does not change the software interface form of the existing mobile phone operating system, and can realize the method for the safe payment application of the two-dimension code of the mobile phone.
the invention is further described with reference to the following figures and detailed description.
drawings
fig. 1 is a block diagram of a conventional mobile device payment system.
Fig. 2 is a system framework diagram for implementing two-dimensional code security using a SIM card according to an embodiment of the present invention.
Figure 3 is a diagram of a SIM card architecture in accordance with an embodiment of the present invention.
fig. 4 is a flowchart of steps of a method for implementing two-dimensional code security using a SIM card according to an embodiment of the present invention.
Detailed Description
referring to fig. 2, a system framework diagram for implementing two-dimensional code security using a SIM card is shown in accordance with an embodiment of the present invention. The invention relates to a system for realizing two-dimension code security by utilizing an SIM card, which comprises a mobile device, a cloud server and an electronic terminal, wherein the electronic terminal has a two-dimension code scanning and identifying function, the mobile device comprises the SIM card, an APP unit, a two-dimension code generating unit and a display screen, the SIM card comprises an ISO7816 interface, an OS system unit and a key unit, the key unit stores a key which is pre-stored and written in the issuing stage of the SIM card and is the same as the key of the cloud server, address book data are stored in a fixed position in the SIM card, the address book data comprise real-time, monotonically increasing counter values, an SIM card serial number, an application identification mark AID and an identification code CRC of the data, and the key which is pre-stored and written in the key unit is used for encrypting the address book data and then storing the address book data; referring to fig. 2, in the embodiment of the present invention, (i) the real-time of the address book data is transmitted to the SIM card by the mobile phone APP through the SIM card address book update instruction, and is accurate to 10 minutes; (ii) the SIM card serial number is a unique global number inherent to the SIM; (iii) the application identification mark AID is used for identifying the application; (iv) the identification code CRC is obtained by performing CRC operation on real time, a monotonically increasing counter, a SIM card serial number and an application identification mark AID in a CCITT16 mode.
Referring to fig. 2, in the embodiment of the present invention, when the mobile device starts two-dimensional code payment, an APP unit in the SIM card transmits current time to an OS system unit in the SIM card through an update instruction of address book data, the OS system unit encrypts the address book data by using a key pre-stored and written by the key unit, and updates ciphertext data to a fixed position of the address book data, and increases a counter value by 1 every time the update instruction is executed, and then, the APP unit reads the fixed position of the address book data by using a read instruction of the address book data and records, thereby obtaining encrypted data, which is transmitted to a two-dimensional code generating unit, and the two-dimensional code generating unit generates the encrypted data into a two-dimensional code and displays the two-dimensional code on a display screen; the electronic terminal scans the two-dimensional code on the display screen of the mobile equipment, analyzes the encrypted data contained in the two-dimensional code and then transmits the encrypted data to the cloud server; referring to fig. 2, in an embodiment of the present invention, the OS system unit redefines an update instruction for the fixed location of the address book data, where the update instruction is relocated to pass the current time of the OS system unit of the mobile device to the SIM card as a parameter; and the OS system unit redefines a reading instruction for the fixed position of the address book data, wherein the reading instruction redefines the encrypted information of the address book data in the SIM card existing in the specific position to be read out and is given to the mobile terminal APP unit for processing as the security data.
referring to fig. 2, in the embodiment of the present invention, after receiving encrypted data sent from an electronic terminal, a cloud server decrypts the encrypted data by using a key that is the same as a key unit in an SIM card, so as to obtain real time, a serial number of the SIM card, a monotonically increasing counter value, an application identification mark AID, and an identification code CRC of the above data, and then verifies the correctness of the identification code CRC to determine whether the decrypted data is correct; if the decrypted data is correct, the cloud server verifies whether the difference between the real-time and the current time exceeds 10 minutes, if not, the cloud server verifies whether the value of the monotonically increasing counter is larger than the value of the counter in the SIM card recorded in the cloud server, if the value of the monotonically increasing counter is larger than the value recorded in the cloud server, the decrypted data is finally indicated to be valid, and the transaction is normally carried out.
Referring to fig. 3, a SIM card architecture diagram of an embodiment of the present invention is shown. The SIM card comprises an ISO7816 interface, an OS system unit and a key unit, wherein the key unit stores a key which is pre-stored and written in the issuing stage of the SIM card and is the same as a key of a cloud server, address book data are stored in a fixed position in the SIM card, the address book data are composed of real-time, a monotonically increasing counter value, an SIM card serial number, an application identification mark AID and an identification code CRC of the data, and the key unit pre-stores the written key to encrypt the address book data and then store the encrypted address book data.
Referring to fig. 4, a method step diagram for implementing two-dimensional code security using a SIM card according to an embodiment of the present invention is shown. A method for realizing two-dimension code security by using an SIM card comprises the following specific steps:
The method comprises the following steps: storing address book data in the SIM card and carrying out encryption processing; the method comprises the steps that address book data are stored in a fixed position in an SIM card, the address book data are composed of real-time, a monotonically increasing counter value, an SIM card serial number, an application identification mark AID and an identification code CRC of the data, and a secret key written in by a secret key unit in advance is stored after encryption processing is carried out on the address book data;
Step two: forming a two-dimensional code in the SIM card and displaying the two-dimensional code on a display screen; when the mobile equipment starts two-dimensional code payment, an APP unit in the SIM card transmits the current time to an OS system unit in the SIM card through an update instruction of address book data, the OS system unit encrypts the address book data by using a key pre-stored and written by a key unit and updates ciphertext data to a fixed position of the address book data, the numerical value of a counter is increased by 1 every time the update instruction is executed, then the APP unit reads the fixed position of the address book data by using a read instruction of the address book data and records the fixed position of the address book data, so that encrypted data is obtained, the encrypted data is transmitted to a two-dimensional code generating unit, and the two-dimensional code generating unit generates two-dimensional codes from the encrypted data and displays the two-dimensional codes on a display screen;
step three: the electronic terminal completes two-dimensional code analysis and transmits the encrypted data to the cloud server; the method comprises the steps that an electronic terminal scans a two-dimensional code on a display screen of the mobile equipment, analyzes encrypted data contained in the two-dimensional code and then transmits the encrypted data to a cloud server;
Step four: the cloud server decrypts the received encrypted data and verifies whether the decrypted data is correct; after receiving the encrypted data sent by the electronic terminal, the cloud server decrypts the encrypted data by using a key which is the same as a key unit in the SIM card, so as to obtain the real-time, the serial number of the SIM card, the numerical value of a monotonically increasing counter, an application identification mark AID and the identification code CRC of the data, then verifies the correctness of the identification code CRC and determines whether the decrypted data is correct;
Step five: the cloud server verifies the real-time and the monotonically increasing counter value, determines whether the decrypted data is valid, and completes the transaction; if the decrypted data is correct, the cloud server verifies whether the difference between the real-time and the current time exceeds 10 minutes, if not, the cloud server verifies whether the value of the monotonically increasing counter is larger than the value of the counter in the SIM card recorded in the cloud server, and if the value of the monotonically increasing counter is larger than the value recorded in the cloud server, the decrypted data is finally indicated to be valid, and the transaction is completed.
The present invention is not limited to the embodiments discussed above, and the above description of specific embodiments is intended to describe and illustrate the technical solutions to which the present invention relates. Obvious modifications or alterations based on the teachings of the present invention should also be considered as falling within the scope of the present invention; the foregoing detailed description is provided to disclose the best mode of practicing the invention, and also to enable a person skilled in the art to utilize the invention in various embodiments and with various alternatives for carrying out the invention.

Claims (4)

1. A system for realizing two-dimension code security by using an SIM card comprises a mobile device, a cloud server and an electronic terminal, wherein the electronic terminal has a two-dimension code scanning and identifying function and is characterized in that the mobile device comprises the SIM card, an APP unit, a two-dimension code generating unit and a display screen, wherein the SIM card comprises an ISO7816 interface, an OS system unit and a key unit, the key unit stores a key which is pre-stored and written in the issuing stage of the SIM card and is the same as a key of the cloud server, address book data are stored in a fixed position in the SIM card and consist of real-time, monotonically increasing counter values, an SIM card serial number, an application identification mark AID and identification codes of the data, and the key unit pre-stores the written key to encrypt the address book data and then store the encrypted data;
When the mobile equipment starts two-dimensional code payment, an APP unit in the SIM card transmits the current time to an OS system unit in the SIM card through an update instruction of address book data, the OS system unit encrypts the address book data by using a key pre-stored and written by a key unit and updates ciphertext data to a fixed position of the address book data, the value of a counter is increased by 1 when the update instruction is executed once, then the APP unit reads the fixed position of the address book data by adopting a read instruction of the address book data and records the fixed position of the address book data, so that encrypted data is obtained, the encrypted data is transmitted to a two-dimensional code generating unit, and the two-dimensional code generating unit generates two-dimensional codes from the encrypted data and displays the two-dimensional codes on a display screen;
the electronic terminal scans the two-dimensional code on the display screen of the mobile equipment, analyzes the encrypted data contained in the two-dimensional code and then transmits the encrypted data to the cloud server;
after receiving the encrypted data sent by the electronic terminal, the cloud server decrypts the encrypted data by using a key which is the same as a key unit in the SIM card, so as to obtain the real-time, the serial number of the SIM card, the numerical value of the monotonically increasing counter, the application identification mark AID and the identification code CRC of the data, then verifies the correctness of the identification code CRC and determines whether the decrypted data is correct or not; if the decrypted data is correct, the cloud server verifies whether the difference between the real-time and the current time exceeds 10 minutes, if not, the cloud server verifies whether the value of the monotonically increasing counter is larger than the value of the counter in the SIM card recorded in the cloud server, and if the value of the monotonically increasing counter is larger than the value recorded in the cloud server, the decrypted data is finally indicated to be valid, and the transaction is completed.
2. The system for implementing two-dimensional code security using a SIM card according to claim 1, wherein the OS system unit redefines an update instruction to a fixed location of the address book data, the update instruction being relocated to transfer a current time of the OS system unit of the mobile device to the SIM card as a parameter.
3. the system for implementing two-dimensional code security by using the SIM card according to claim 1, wherein the OS system unit redefines the reading instruction for the fixed location of the address book data, and the reading instruction redefines to read out the encrypted information of the address book data existing at the specific location in the SIM card and to give the encrypted information as the security data to the mobile terminal APP unit for processing.
4. a method for realizing two-dimension code security by using an SIM card is implemented based on the system for realizing two-dimension code security by using the SIM card of claim 1, and the method comprises the following specific steps:
the method comprises the following steps: storing address book data in the SIM card and carrying out encryption processing; the method comprises the steps that address book data are stored in a fixed position in an SIM card, the address book data are composed of real-time, a monotonically increasing counter value, an SIM card serial number, an application identification mark AID and an identification code CRC of the data, and a secret key written in by a secret key unit in advance is stored after encryption processing is carried out on the address book data;
step two: forming a two-dimensional code in the SIM card and displaying the two-dimensional code on a display screen; when the mobile equipment starts two-dimensional code payment, an APP unit in the SIM card transmits the current time to an OS system unit in the SIM card through an update instruction of address book data, the OS system unit encrypts the address book data by using a key pre-stored and written by a key unit and updates ciphertext data to a fixed position of the address book data, the numerical value of a counter is increased by 1 every time the update instruction is executed, then the APP unit reads the fixed position of the address book data by using a read instruction of the address book data and records the fixed position of the address book data, so that encrypted data is obtained, the encrypted data is transmitted to a two-dimensional code generating unit, and the two-dimensional code generating unit generates two-dimensional codes from the encrypted data and displays the two-dimensional codes on a display screen;
Step three: the electronic terminal completes two-dimensional code analysis and transmits the encrypted data to the cloud server; the method comprises the steps that an electronic terminal scans a two-dimensional code on a display screen of the mobile equipment, analyzes encrypted data contained in the two-dimensional code and then transmits the encrypted data to a cloud server;
Step four: the cloud server decrypts the received encrypted data and verifies whether the decrypted data is correct; after receiving the encrypted data sent by the electronic terminal, the cloud server decrypts the encrypted data by using a key which is the same as a key unit in the SIM card, so as to obtain the real-time, the serial number of the SIM card, the numerical value of a monotonically increasing counter, an application identification mark AID and the identification code CRC of the data, then verifies the correctness of the identification code CRC and determines whether the decrypted data is correct;
Step five: the cloud server verifies the real-time and the monotonically increasing counter value, determines whether the decrypted data is valid, and completes the transaction; if the decrypted data is correct, the cloud server verifies whether the difference between the real-time and the current time exceeds 10 minutes, if not, the cloud server verifies whether the value of the monotonically increasing counter is larger than the value of the counter in the SIM card recorded in the cloud server, and if the value of the monotonically increasing counter is larger than the value recorded in the cloud server, the decrypted data is finally indicated to be valid, and the transaction is completed.
CN201810564395.6A 2018-06-04 2018-06-04 System and method for realizing two-dimension code safety by using SIM card Active CN110555693B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810564395.6A CN110555693B (en) 2018-06-04 2018-06-04 System and method for realizing two-dimension code safety by using SIM card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810564395.6A CN110555693B (en) 2018-06-04 2018-06-04 System and method for realizing two-dimension code safety by using SIM card

Publications (2)

Publication Number Publication Date
CN110555693A true CN110555693A (en) 2019-12-10
CN110555693B CN110555693B (en) 2023-09-12

Family

ID=68735970

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810564395.6A Active CN110555693B (en) 2018-06-04 2018-06-04 System and method for realizing two-dimension code safety by using SIM card

Country Status (1)

Country Link
CN (1) CN110555693B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114897112A (en) * 2022-04-18 2022-08-12 上海美的茵信息技术有限公司 Diagnostic data transmission method and device for diagnostic equipment based on two-dimensional code mode, computer equipment and storage medium

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103489102A (en) * 2013-09-13 2014-01-01 惠州Tcl移动通信有限公司 Method and system for preventing unauthorized credit card swiping through mobile phone based on two-dimensional code
CN103957105A (en) * 2014-04-28 2014-07-30 中国联合网络通信集团有限公司 Use identity authentication method and SIM card
CN104715370A (en) * 2013-12-12 2015-06-17 中国电信股份有限公司 Method and system for carrying out safety payment based on encrypted two-dimension code
WO2016045520A1 (en) * 2014-09-28 2016-03-31 中国银联股份有限公司 Token-based mobile payment method and mobile payment system
US20170208049A1 (en) * 2014-05-30 2017-07-20 Beijing Qihoo Technology Company Limited Key agreement method and device for verification information

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103489102A (en) * 2013-09-13 2014-01-01 惠州Tcl移动通信有限公司 Method and system for preventing unauthorized credit card swiping through mobile phone based on two-dimensional code
CN104715370A (en) * 2013-12-12 2015-06-17 中国电信股份有限公司 Method and system for carrying out safety payment based on encrypted two-dimension code
CN103957105A (en) * 2014-04-28 2014-07-30 中国联合网络通信集团有限公司 Use identity authentication method and SIM card
US20170208049A1 (en) * 2014-05-30 2017-07-20 Beijing Qihoo Technology Company Limited Key agreement method and device for verification information
WO2016045520A1 (en) * 2014-09-28 2016-03-31 中国银联股份有限公司 Token-based mobile payment method and mobile payment system

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114897112A (en) * 2022-04-18 2022-08-12 上海美的茵信息技术有限公司 Diagnostic data transmission method and device for diagnostic equipment based on two-dimensional code mode, computer equipment and storage medium

Also Published As

Publication number Publication date
CN110555693B (en) 2023-09-12

Similar Documents

Publication Publication Date Title
US9280770B2 (en) Secure point of sale presentation of a barcode at an information handling system display
AU2012303620B2 (en) System and method for secure transaction process via mobile device
US10769625B2 (en) Dynamic generation of quick response (QR) codes for secure communication from/to a mobile device
CN112823335A (en) System and method for password authentication of contactless cards
US20140244514A1 (en) Methods and arrangements for smartphone payments and transactions
US20130024372A1 (en) Portable e-wallet and universal card
US20130030997A1 (en) Portable e-wallet and universal card
US20130134216A1 (en) Portable e-wallet and universal card
EP2738722A1 (en) Method and system for providing secure end-to-end authentication and authorization of electronic transactions
KR101389468B1 (en) Method for issuing mobile credit card in portable terminal using credit card and credit card for the same
EP2807600A1 (en) Portable e-wallet and universal card
KR20110084865A (en) Mobile credit card payment method using mobile id and contact and contactless communication and apparatus for the method
CN107005619A (en) A kind of method, corresponding intrument and system for registering mobile sale point terminal POS
CN112889046A (en) System and method for password authentication of contactless cards
US20190026704A1 (en) Method of registering a membership for an electronic payment, system for same, and apparatus and terminal thereof
US20170132618A1 (en) Mobile card service method utilizing hce, and mobile terminal applying same
US11507942B2 (en) Augmented reality card activation experience
KR101699032B1 (en) Service providing system and method for payment using electronic tag
CN104978652A (en) Data transfer method, relevant equipment and data transfer system
CN110555693A (en) system and method for realizing two-dimensional code security by using SIM card
US20200090139A1 (en) Voucher verification auxiliary device, voucher verification auxiliary system, and voucher verification auxiliary method
CN101986684A (en) Processing system and method for rechargeable paying
KR101426223B1 (en) Method for checking confidential information using smartcard and smart terminal, and computer-readable recording medium for the same
US11620646B2 (en) Method for carrying out a transaction, terminal, server and corresponding computer program
KR102261435B1 (en) System, apparatus, and method for handling with insurance according to loss or repair of mobile

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant