CN111489148B - Risk control method and device, electronic equipment and storage medium - Google Patents

Risk control method and device, electronic equipment and storage medium Download PDF

Info

Publication number
CN111489148B
CN111489148B CN201910081369.2A CN201910081369A CN111489148B CN 111489148 B CN111489148 B CN 111489148B CN 201910081369 A CN201910081369 A CN 201910081369A CN 111489148 B CN111489148 B CN 111489148B
Authority
CN
China
Prior art keywords
terminal
risk
nfc
determining
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201910081369.2A
Other languages
Chinese (zh)
Other versions
CN111489148A (en
Inventor
葛欣
刘婧雯
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Mobile Communications Group Co Ltd
China Mobile Communications Ltd Research Institute
Original Assignee
China Mobile Communications Group Co Ltd
China Mobile Communications Ltd Research Institute
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Mobile Communications Group Co Ltd, China Mobile Communications Ltd Research Institute filed Critical China Mobile Communications Group Co Ltd
Priority to CN201910081369.2A priority Critical patent/CN111489148B/en
Publication of CN111489148A publication Critical patent/CN111489148A/en
Application granted granted Critical
Publication of CN111489148B publication Critical patent/CN111489148B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3224Transactions dependent on location of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3229Use of the SIM of a M-device as secure element
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction

Abstract

The embodiment of the invention provides a risk control method and device, electronic equipment and a storage medium. The method comprises the following steps: positioning the current position of the terminal; acquiring a risk control strategy generated based on a risk level corresponding to the current position; and controlling the electronic payment of the terminal by using the NFC according to the risk control strategy.

Description

Risk control method and device, electronic equipment and storage medium
Technical Field
The present invention relates to the field of information technologies, and in particular, to a risk control method and apparatus, an electronic device, and a storage medium.
Background
With development and application of technology, electronic payment is becoming more common, and the electronic payment is classified into online payment and offline payment according to whether information interaction is performed with a network side in a payment process. However, in the prior art, the problems of high-proportion stolen swipe, disclosure of payment account numbers and the like still exist in electronic payment. How to control the risk of electronic payment is a technical problem that needs to be further solved.
Disclosure of Invention
In view of this, embodiments of the present invention desirably provide a risk control method and apparatus, an electronic device, and a storage medium.
The technical scheme of the invention is realized as follows:
the risk control method is applied to the terminal and comprises the following steps:
positioning the current position of the terminal;
acquiring a risk control strategy generated based on a risk level corresponding to the current position;
and controlling the electronic payment of the terminal by using the NFC according to the risk control strategy.
Based on the above solution, the controlling, according to the risk control policy, the electronic payment of the terminal using near field communication NFC includes:
and determining a first type of application which allows electronic payment to be performed by using NFC and/or a second type of application which prohibits electronic payment to be performed by using NFC in the terminal according to the risk control strategy.
Based on the above scheme, the determining, according to the risk control policy, a first type of application in the terminal that allows electronic payment using NFC includes at least one of the following:
determining the first type of application allowing the security chip on the NFC-SIM card to perform payment information security control according to the risk control strategy;
determining the first type of application allowing the security control of payment information by an embedded security chip eSE located on a host in the terminal according to the risk control strategy;
Determining the first type of application allowing the security control of payment information by a security control HCE service in an operating system of the terminal according to the risk control policy;
based on the above scheme, the determining, according to the risk control policy, the second type of application in the terminal that prohibits electronic payment using NFC includes at least one of the following:
determining the second type of application which prohibits the security control of the payment information by the security chip using NFC according to the risk control policy;
determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC;
and determining the second type of application which prohibits the security control of the payment information by the HCE service using NFC according to the risk control strategy.
Based on the above scheme, the acquiring a risk control policy generated based on a risk level corresponding to the current location includes:
reporting the current position to a wind control platform;
receiving the risk control strategy provided by the wind control platform, wherein the risk control strategy is as follows: and the wind control platform is determined based on the risk level corresponding to the current position.
Based on the above scheme, the method further comprises:
reporting first equipment fingerprint information to the wind control platform, wherein the first equipment fingerprint information comprises at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2;
the receiving the risk control policy provided by the wind control platform further includes:
and if the first equipment fingerprint information is failed to be matched with the second equipment fingerprint information determined by the wind control platform, receiving a risk control strategy for prohibiting the terminal from carrying out electronic payment from the wind control platform.
Based on the above scheme, the method further comprises:
reporting the position change rate of the terminal to the wind control platform; the position change rate and the current position are used together for the wind control platform to determine the risk control strategy.
Based on the scheme, the method comprises the following steps:
positioning the position of the terminal for multiple times to obtain alternative positions;
and determining the current position according to the alternative position.
A risk control method is applied to a wind control platform and comprises the following steps:
Acquiring the current position of a terminal;
determining the risk level of the terminal according to the current position;
determining a risk control strategy according to the risk level;
and sending the risk control strategy to the terminal, wherein the risk control strategy is used for controlling the terminal to use near field communication NFC to carry out safety control of electronic payment.
Based on the above scheme, the determining the risk level of the terminal according to the current position includes:
determining whether the current position is a common position of the terminal, and obtaining a confirmation result;
determining the risk level of the current position of the terminal according to the confirmation result;
and determining the risk control strategy according to the risk level and the wind control configuration information.
Based on the above scheme, the method further comprises:
determining a position change rate of the terminal according to the current position, or receiving the position change rate from the terminal;
and determining the risk level of the current position of the terminal according to the confirmation result, wherein the determination comprises the following steps:
and determining the risk level by combining the determination result and the position change rate.
Based on the above scheme, the method further comprises:
Receiving first equipment fingerprint information sent by the terminal, wherein the first equipment fingerprint information comprises at least one of the following information provided by the terminal: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2
Determining second device fingerprint information according to the locally stored data, wherein the second device fingerprint information wind control platform determines at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information;
matching the first device fingerprint information and the second device fingerprint information;
and when the first equipment fingerprint information and the second equipment fingerprint information fail to be matched, a risk control strategy for prohibiting the terminal from performing NFC-based electronic payment is sent to the terminal.
A risk control device is applied to a terminal and comprises:
the positioning module is used for positioning the current position of the terminal;
the first acquisition module is used for acquiring a risk control strategy generated based on the risk level corresponding to the current position;
And the control module is used for controlling the electronic payment of the terminal by using the near field communication NFC according to the risk control strategy.
A risk control method is applied to a wind control platform and comprises the following steps:
the second acquisition module is used for acquiring the current position of the terminal;
the first determining module is used for determining the risk level of the terminal according to the current position;
the second determining module is used for determining a risk control strategy according to the risk level;
and the sending module is used for sending the risk control strategy to the terminal, wherein the risk control strategy is used for controlling the terminal to use near field communication NFC to carry out safety control of electronic payment.
An electronic device, comprising:
transceiver with a plurality of transceivers
The memory device is used for storing the data,
and a processor, respectively connected to the memory and the transceiver, for controlling the operation of the transceiver and the memory by executing computer executable instructions stored on the memory, and the risk control method provided by one or more embodiments.
A computer storage medium having stored thereon computer executable instructions; the computer-executable instructions, when executed by a processor, enable the risk control method provided by one or more of the embodiments described above.
According to the technical scheme provided by the embodiment of the invention, the terminal can report the current position of the terminal to the wind control platform, then the wind control platform obtains the current risk level of the terminal according to the current position of the terminal, so that a risk control strategy is obtained based on the risk level, and finally the terminal performs risk control based on NFC electronic payment based on the determined risk control strategy; compared with the NFC electronic payment function which is started only by starting the NFC electronic payment function, the NFC electronic payment function of all applications is started, or the NFC electronic payment function of all applications is closed by closing the NFC electronic payment function, the control of NFC electronic payment with smaller granularity can be realized, the risk control can be realized through a risk control strategy, and the safety of NFC electronic payment is ensured.
Drawings
Fig. 1 is a schematic flow chart of a first risk control method according to an embodiment of the present invention;
fig. 2 is a schematic flow chart of a second risk control method according to an embodiment of the present invention;
fig. 3 is a schematic flow chart of a third risk control method according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a risk control device according to an embodiment of the present invention;
fig. 5 is a schematic structural diagram of another risk control device according to an embodiment of the present invention;
Fig. 6 is a schematic diagram of a payment system based on NFC provided in an embodiment of the present invention;
fig. 7 is a schematic structural diagram of a mobile terminal and an air control platform according to an embodiment of the present invention;
fig. 8 is a flowchart of a fourth risk control method according to an embodiment of the present invention.
Detailed Description
The technical scheme of the invention is further elaborated below by referring to the drawings in the specification and the specific embodiments.
As shown in fig. 1, this embodiment provides a risk control method, which is applied to a terminal, and includes:
step S110: positioning the current position of the terminal;
step S120: acquiring a risk control strategy generated based on a risk level corresponding to the current position;
step S130: and controlling the electronic payment of the terminal by using the NFC according to the risk control strategy.
The method provided by the embodiment can be applied to various terminals, such as mobile phones, flat computers or wearable equipment. The terminal may be a mobile terminal. The mobile terminal may include an NFC chip with which electronic payment may be made.
In this embodiment, in order to improve the security of electronic payment using NFC, the current location of the terminal is located in real time in step S110, for example, the longitude and latitude of the terminal are located through a Global Positioning System (GPS) chip. For another example, the positioning module included in the terminal is utilized to position the terminal based on the Beidou system, so that the current position of the terminal is obtained.
After obtaining the current location, the current location can be known to determine the current risk level of the terminal, which may include: the risk level of the terminal application, which may be, in some embodiments, the risk level of the terminal making an electronic payment.
In this embodiment, if the risk level is high, a risk control policy with a high security level is obtained, and if the risk is low, a risk control level with a low risk level is obtained.
The risk control policy may be self-generated by the terminal or may be received by the terminal from a wind control platform.
After the risk control policy is obtained, the terminal is controlled to use NFC to carry out electronic payment based on the risk control policy, instead of directly prohibiting all electronic payment using NFC, or opening all electronic payment using NFC, so that risk control is too strict or too loose, and the risk control accuracy is low.
In some embodiments, the step S130 may include:
and determining a first type of application which allows electronic payment to be performed by using NFC and/or a second type of application which prohibits electronic payment to be performed by using NFC in the terminal according to the risk control strategy.
In the present embodiment, a plurality of applications for electronic payment using NFC are provided in the terminal, and these applications include, but are not limited to: a banking application, a social application (e.g., weChat or QQ) with a payment function, etc., a shopping application such as a supermarket shopping application that uses NFC to make an automatic checkout.
In this embodiment, the terminal may allow some applications to use NFC for electronic payment according to the risk control policy, and prohibit some applications from using NFC for electronic payment. For example, some applications may still use NFC for electronic payment even if the payment environment where the terminal is currently located is not secure, but for some applications with a low security level and a low security level, the security control of the application depends on the security control of the terminal, and at this time, if the payment environment where the terminal is currently located is not secure, the application is continuously allowed to make electronic payment using NFC, many security problems may occur.
In this way, when electronic payment using NFC is performed based on the risk control policy, the terminal in this embodiment does not have to prohibit all applications from using NFC to perform electronic payment, or allows all applications to use NFC to perform electronic payment.
In some embodiments, the determining, according to the risk control policy, a first type of application within the terminal that allows electronic payment using NFC includes at least one of:
determining the first type of application allowing the security chip on the NFC-SIM card to perform payment information security control according to the risk control strategy;
determining the first type of application allowing the security control of payment information by an embedded security chip eSE located on a host in the terminal according to the risk control strategy;
and determining the first type of application allowing the security control of the payment information by the security control HCE service in the operating system of the terminal according to the risk control strategy.
In other embodiments, the determining, according to the risk control policy, a second type of application in the terminal that prohibits electronic payment using NFC includes at least one of:
determining the second type of application which prohibits the security control of the payment information by the security chip using NFC according to the risk control policy;
determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC;
And determining the second type of application which prohibits the security control of the payment information by the HCE service using NFC according to the risk control strategy.
The security module for performing security control on the payment information of the application in the terminal according to the embodiment of the present invention may include one or more security modules, for example, may include: a security chip located on the NFC-SIM card, a security chip (eSE) located in the host within the terminal device, and a security controlled HCE service provided by the operating system of the host. If the HCE service performs software-based security control, the security control is substantially equivalent to the security control performed by the host itself of the terminal.
The safety control algorithms of different safety modules can be different, the effect generated by the safety control is different, or the calculated amount or delay generated by the safety control is different.
Because the security control effects of different security modules are different, in this embodiment, the risk control policy determined according to the risk level may limit which applications are security controlled by each security module through the risk control policy. If one application is forbidden to use the security module for security control by all the security modules, the method is equivalent to prohibiting the application from using NFC for electronic payment in the current scene.
In some embodiments, as shown in fig. 2, the step S120 may include:
step S121: reporting the current position to a wind control platform;
step S122: receiving the risk control strategy provided by the wind control platform, wherein the risk control strategy is as follows: and the wind control platform is determined based on the risk level corresponding to the current position.
In this embodiment, the terminal reports the current position information to the wind control platform, the wind control platform determines a risk level based on the current position information, and then the wind control platform obtains a risk control policy currently used by the terminal based on the risk level; in this way, the terminal also receives the risk control strategy sent by the wind control platform.
In some embodiments, the method further comprises:
reporting first equipment fingerprint information to the wind control platform, wherein the first equipment fingerprint information comprises at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2;
the step S120 includes:
and if the first equipment fingerprint information is failed to be matched with the second equipment fingerprint information determined by the wind control platform, receiving a risk control strategy for prohibiting the terminal from carrying out electronic payment from the wind control platform.
In this embodiment, if the matching of the first device fingerprint information provided by the terminal fails on the wind control platform, a phenomenon that the terminal is stolen and brushed may occur, and in order to improve security, a risk control policy that the wind control platform issues a promotion terminal to perform electronic payment is received. The risk control policy for prohibiting electronic payment by the electronic device is generated based on a failure to match the device fingerprint information.
In some embodiments, the step S120 may include:
if the first equipment fingerprint information is successfully matched with the second equipment fingerprint information determined by the wind control platform, a risk control strategy which at least allows part of applications of the electronic equipment to carry out electronic payment is received from the wind control platform; or receiving a risk control strategy issued according to the risk level corresponding to the current position from the wind control platform.
In some embodiments, the method further comprises:
reporting the position change rate of the terminal to the wind control platform; the position change rate and the current position are used together for the wind control platform to determine the risk control strategy.
In this embodiment, a speed sensor or the like may be further provided in the terminal, and may automatically detect the moving speed of the terminal as the position change rate.
In other embodiments, a positioning module is disposed in the terminal, and the rate of change of the position is obtained based on the position information obtained by positioning the positioning module. For example, the first time terminal is at position a and the second time terminal is at position B; and calculating the distance between the position A and the position B, calculating the time difference between the first moment and the second moment, and then comparing the distance with the time difference to obtain the position change rate.
Generally, the moving range of the user is relatively fixed, so that the moving range of the terminal carried by the user is relatively fixed, and if the current position change rate is found to be too fast, it may be that the user carries the terminal into a brand new environment, the security of the environment may not be known, and the risk level may be improved.
In some embodiments, the method comprises:
positioning the position of the terminal for multiple times to obtain alternative positions;
and determining the current position according to the alternative position.
In order to solve the problem in the positioning process, the risk level of the wind control platform is inaccurately determined, so that the phenomenon that the current most suitable risk control strategy is not obtained is caused, and positioning is performed for a plurality of times within a small time range in the embodiment, so that a plurality of positions are obtained; based on the alternative positions obtained by the multiple positioning, the current position is accurately obtained.
In some embodiments, N candidate positions are obtained through N times of positioning, the N candidate positions are matched, the candidate positions obtained through M times of positioning are found to be the same, and assuming that the M/N is greater than 0.5, the candidate positions obtained through M times of positioning can be considered as the current position.
In some embodiments, N candidate positions are obtained through N times of positioning, then the positions of obvious anomalies in the N candidate positions are removed, for example, the candidate positions with distances greater than a specific distance from the rest of the plurality of positions are removed, and then after the abnormal positions are removed, the intermediate positions of the candidate positions are obtained and are used as the current position.
In this embodiment, an accurate current position can be provided by positioning a plurality of times.
As shown in fig. 3, the present embodiment provides a risk control method applied to a wind control platform, including:
step S210: acquiring the current position of a terminal;
step S220: determining the risk level of the terminal according to the current position;
step S230: determining a risk control strategy according to the risk level;
step S240: and sending the risk control strategy to the terminal, wherein the risk control strategy is used for controlling the terminal to use near field communication NFC to carry out safety control of electronic payment.
The risk control method provided in the embodiment is applied to the current position of the terminal received by the wind control platform, and determines the risk level of the terminal according to the current position.
For example, according to whether the current location is a common location of the terminal, or whether the current location of the terminal is a multiple-event location of a swipe event, etc., the risk level of the current terminal may be considered high, and a risk control policy capable of improving the security of the terminal or the security of electronic payment based on NFC may be required.
In some embodiments, the step S220 may include:
and determining the risk control strategy according to the risk level and the wind control configuration information.
Here, in some embodiments, one or more locations may be determined as common locations of the terminal based on historical location information of the terminal. In this embodiment, it is determined whether the current location is a common location of the terminal, and the location characteristic information includes: first location characteristic information indicating that the current location is a common location and/or second location characteristic information indicating that the current location is not a common location.
In some embodiments, wind control configuration information is set in the wind control steel platform, where the wind control configuration information may be: a wind control configuration table, etc. The wind control configuration information includes: and inquiring the wind control configuration table by taking the risk level as an inquiry basis according to the corresponding relation between the risk level and the risk control strategy, wherein the risk control strategy matched with the current risk level of the terminal can be used as the current risk control strategy of the terminal.
In some embodiments, the method further comprises: determining a position change rate of the terminal according to the current position, or receiving the position change rate from the terminal;
and determining the risk level of the current position of the terminal according to the confirmation result, wherein the determination comprises the following steps: and determining the risk level by combining the determination result and the position change rate.
In some embodiments, the rate of change of the position of the terminal carried by different users is regular, and if the rate of change of the position of the current user does not conform to the rule, it is possible that the terminal is stolen by a person, and the risk is relatively high.
In other embodiments, the greater the rate of change of the location may also indicate that the more frequent the change of the location of the terminal or the greater the change space, the higher the risk may be, and in this case, the higher the risk level may also be.
For example, in determining whether or not the current position of the terminal is a usual position, it can be determined by the number of times of occurrence in a certain position. For example, counting the number of times that the terminal appears at each position in a period of time, then calculating the average number of times that the terminal appears at each position, if the number of times that the current position of the terminal appears is greater than the average number of times, the current position can be the common position, and if the number of times that the current position appears is lower than the average number of times, the current position can be considered as the unusual position.
In some embodiments, the time difference of the terminal moving from the last position to the current position is determined, then the position change rate of the terminal moving to the current position is obtained based on the distance between the two positions, and if the position change rate is compared with the rate threshold, the comparison result can be used for evaluating the risk level.
In some embodiments, the method further comprises:
receiving first equipment fingerprint information sent by the terminal, wherein the first equipment fingerprint information comprises at least one of the following information provided by the terminal: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2
Determining second device fingerprint information according to the locally stored data, wherein the second device fingerprint information wind control platform determines at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information;
matching the first device fingerprint information and the second device fingerprint information;
and when the first equipment fingerprint information and the second equipment fingerprint information fail to be matched, a risk control strategy for prohibiting the terminal from performing NFC-based electronic payment is sent to the terminal.
In this embodiment, the wind control platform may store device fingerprint information of a legal terminal in advance, where the device fingerprint information may be formed by combining multiple pieces of information of a device, so as to improve difficulty in imitation of the device fingerprint information, and improve security of the device and security of electronic payment.
The terminal sends the first device fingerprint information to the wind control platform, then matches the two device fingerprint information, if the matching is unsuccessful, the terminal or the terminal is unsafe in current NFC-based electronic payment, and then the risk control strategy for prohibiting the terminal from performing NFC-based electronic payment can be directly sent.
As shown in fig. 4, this embodiment provides a risk control device, which is applied to a terminal, including:
a positioning module 110, configured to position a current position of the terminal;
a first obtaining module 120, configured to obtain a risk control policy generated based on a risk level corresponding to the current location;
and the control module 130 is configured to control electronic payment of the terminal using near field communication NFC according to the risk control policy.
In some embodiments, the positioning module 110, the first obtaining module 120, and the control module 130 may be program modules; the program modules may be capable of implementing the functions of the respective modules described above when executed by a processor.
In still other embodiments, the positioning module 110, the first obtaining module 120, and the control module 130 may be a soft-hard combination module, which may be various programmable arrays, such as a complex programmable array or a field programmable array.
In still other embodiments, the positioning module 110, the first obtaining module 120, and the control module 130 may be pure hardware modules, which may be application specific integrated circuits.
In still other embodiments, the control module 130 is specifically configured to determine, according to the risk control policy, a first type of application in the terminal that allows electronic payment using NFC, and/or a second type of application that prohibits electronic payment using NFC.
The chip eSE performs the first-type application of payment information security control;
determining the first type of application allowing the security control of payment information by a security control HCE service in an operating system of the terminal according to the risk control policy;
and/or the number of the groups of groups,
the control module 130 may also be configured to perform at least one of:
determining the second type of application which prohibits the security control of the payment information by the security chip using NFC according to the risk control policy;
Determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC;
and determining the second type of application which prohibits the security control of the payment information by the HCE service using NFC according to the risk control strategy.
In some embodiments, the first obtaining module 120 is specifically configured to report the current position to a wind control platform;
receiving the risk control strategy provided by the wind control platform, wherein the risk control strategy is as follows: and the wind control platform is determined based on the risk level corresponding to the current position.
In some embodiments, the apparatus further comprises:
the reporting module is used for reporting the first equipment fingerprint information to the wind control platform, wherein the first equipment fingerprint information comprises at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2;
the first obtaining module 120 is specifically configured to receive, from the wind control platform, a risk control policy that prohibits the terminal from performing electronic payment if the first device fingerprint information fails to match with the second device fingerprint information determined by the wind control platform.
In some embodiments, the reporting module is configured to report a rate of change of a location of the terminal to the wind control platform; the position change rate and the current position are used together for the wind control platform to determine the risk control strategy.
In some embodiments, the positioning module 110 is specifically configured to locate the position of the terminal multiple times, and obtain an alternative position; and determining the current position according to the alternative position.
As shown in fig. 5, the present embodiment provides a risk control method applied to a wind control platform, including:
a second obtaining module 210, configured to obtain a current position of the terminal;
a first determining module 220, configured to determine a risk level of the terminal according to the current location;
a second determining module 230, configured to determine a risk control policy according to the risk level;
the sending module 240 is configured to send the risk control policy to the terminal, where the risk control policy is used for controlling, by the terminal, security control of electronic payment using near field communication NFC.
In some embodiments, the second acquisition module 210, the first determination module 220, the second determination module 230, and the sending module 240 may be program modules; the program modules may be capable of implementing the functions of the respective modules described above when executed by a processor.
In still other embodiments, the second acquisition module 210, the first determination module 220, the second determination module 230, and the sending module 240 may be a soft-hard combination module, which may be various programmable arrays, such as a complex programmable array or a field programmable array.
In still other embodiments, the second acquisition module 210, the first determination module 220, the second determination module 230, and the sending module 240 may be pure hardware modules, which may be application specific integrated circuits.
In still other embodiments, the control module is specifically configured to determine, according to the risk control policy, a first type of application in the terminal that allows electronic payment using NFC, and/or a second type of application that prohibits electronic payment using NFC.
In some embodiments, the first determining module 220 is further configured to determine whether the current location is a common location of the terminal, and obtain a confirmation result; determining the risk level of the current position of the terminal according to the confirmation result; and determining the risk control strategy according to the risk level and the wind control configuration information.
In some embodiments, the apparatus further comprises:
A third determining module, configured to determine a location change rate of the terminal according to the current location, or receive the location change rate from the terminal;
the first determining module 220 is specifically configured to determine the risk level by combining the determination result and the location change rate.
In some embodiments, the apparatus further comprises:
the terminal comprises a receiving module, a receiving module and a processing module, wherein the receiving module is used for receiving first equipment fingerprint information sent by the terminal, and the first equipment fingerprint information is provided by the terminal and comprises at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2
The fourth determining module is used for determining second equipment fingerprint information according to the locally stored data, wherein the second equipment fingerprint information wind control platform determines at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information;
the matching module is used for matching the first equipment fingerprint information and the second equipment fingerprint information;
And the sending module 240 is configured to send, to the terminal, a risk control policy that prohibits the terminal from performing NFC-based electronic payment when the matching of the first device fingerprint information and the second device fingerprint information fails.
Several specific examples are provided below in connection with any of the embodiments described above:
example 1:
FIG. 6 shows an NFC-based electronic payment by a terminal device through a POS or gate; the mobile terminal and the POS machine or the gate machine conduct NFC payment information interaction, initiate payment and determine payment, and after the POS machine and the gate machine complete payment information interaction, the POS machine or the gate machine can trigger a payment platform (such as a banking system or various network payment platforms) to conduct payment to a corresponding service platform, and an electronic payment flow is completed. Taking bus payment as an example, the mobile terminal utilizes a mobile phone to carry out NFC-based electronic payment, and after the POS machine or gate machine finishes payment, the corresponding amount in the bus stored-value card is posted to a bus financial system, or a third party payment platform such as a payment bank or WeChat is triggered to post the corresponding amount to the bus financial system, so that the NFC-based electronic payment is completed.
The NFC non-contact secure card swiping (namely electronic payment based on NFC) based on the position is realized by the following technical means:
As shown in fig. 7, by adding a wind control module in a terminal operation system, position information of a terminal is collected and transmitted to a wind control platform for processing, so as to obtain a risk level of the terminal;
the wind control module in the terminal operating system can acquire the position information of the user in real time through the position chip, and the position information is processed through the algorithm of the platform and the wind control logic thereof;
the terminal provided by the example is additionally provided with an air control module. And acquiring position information and the like, evaluating the risk level, further determining a risk control strategy, and performing risk control based on the risk control strategy.
The present example provides an NFC contactless secure swipe card system with wind control functionality, which has the following main functional modules, which may include:
and a position information module: the module for storing the position information of the terminal, the position information module obtains the position information of the terminal from the position chip regularly, and stores the position information in the module, and the information format stored in the position information is as follows:
parameters (parameters) T S P V
Description of the invention Time Positioning state (latitude, longitude) Relative displacement velocity
Risk information module: storing the calculated terminal risk information (such as risk level, whether positioning is effective, special situation, etc.);
And the main control module: the system is responsible for data communication with the wind control platform and main control and scheduling modules at the terminal side, sending position information, acquiring risk information and scheduling and managing the modules;
the wind control platform adding module is as follows:
and the wind control engine module is used for: the main control and scheduling module is used for performing operations such as position information receiving, wind control algorithm and logic updating, wind control information outputting and the like, and generating equipment fingerprints of the terminal based on the position information;
and the wind control algorithm module: the module is used for carrying out terminal risk level operation according to the position information, the wind control algorithm and the logic;
example 2:
the present example provides a risk control method that may be applied to the wind control system as provided in example 1. Including but not limited to the following steps:
the position information module acquires and stores the position information of the terminal in real time;
the main control module collects position information according to requirements;
the main control module processes the position information and judges the positioning state S in the position information, ifMarking the terminal as positioning invalid, otherwise marking the terminal as valid; for example, count (S all ) Positioning the secondary current position; by the processes such as screening of abnormal values, it is determined that the Count is effectively located (S invalid ) Calculate Count (S invalid ) Count (S) all ) If the ratio is less than or equal to the effective ratio, the current positioning may be deemed invalid and the next round of positioning may need to be initiated to obtain an accurate current position.
The main control module sends the position information and the acquired terminal basic information to the wind control platform;
the wind control engine calculates the position information to obtain the equipment fingerprint of the terminal, and the equipment fingerprint is used as the unique identifier of the terminal and used for identifying the terminal by the wind control platform, and an algorithm can be used:and selecting position information for a period of time to participate in calculation, wherein the algorithm and parameter selection are obtained by training a big data classification algorithm (such as a naive Bayesian algorithm) according to all the sent terminal information by the wind control platform. In the algorithm, the UID can be an NFC identifier; GPS_info may be information of the positioning module; />Positioning information of k times before the current time can be obtained; p (P) n Position information for the nth time; t (T) n The positioning time for the nth positioning.
The wind control engine initiates terminal risk calculation;
the wind control algorithm module calculates the position information according to a wind control algorithm and logic to obtain wind control result information; the wind control algorithm can obtain corresponding risk levels according to the user position change for a period of time, can use the common position to combine the position change for consideration, define P0 as a common position threshold value, V0 as a speed threshold value, The recipe is indicated as usual location>The normal rate of change of position is counted, when the terminal marks the positioning as valid: p and->To be the number of times that appears at the current position in k times, P0 appears at the current position. If P is greater than or equal to P0, the current location may be considered a common location, otherwise the unusual location may be considered. />The distance between the positions obtained by positioning the two times can be the distance between the positions obtained by positioning the two times; t (T) n -T n-1 The time difference between the front and back positioning can be obtained; />And T n -T n-1 Obtaining a position change rate; the terminal obtains a position change rate by detecting the displacement of the terminal, takes a larger value between the two values, compares the position change rate with a rate threshold V0, and if the position change rate is larger than V0, the current position change rate is too fast, otherwise, the position change rate can be considered to be normal.
The risk level is low: p is less than or equal to P and V is less than or equal to V Low and low
Risk level: in P is less than or equal to P, V is less than or equal to V In (a)
Risk level is high: p is greater than or equal to Pheight, V is greater than or equal to V High height
And returning a risk result containing the risk level to the wind control engine.
The wind control engine acquires a terminal risk control strategy wind control platform and returns a terminal risk calculation result and a risk control strategy to the terminal;
and the master control module synchronizes wind control calculation results.
In summary, a location-based NFC contactless secure card swiping method includes:
A location-based overall security system architecture;
the method for calculating the risk result of the terminal by the wind control platform based on the real-time position information;
a method for calculating a risk strategy by a wind control platform;
the wind control platform is added with equipment fingerprints for uniquely identifying the terminal;
adding a wind control related module in a terminal operation system, collecting and processing position information of the terminal, calculating and storing a risk condition based on the position according to a wind control platform;
the device fingerprint based on the position information can still identify the terminal after the information such as the IMEI, mac and the like of the terminal is tampered, so that the risk of using the terminal by a user is reduced.
Example 3:
the present example provides a risk control method, which may include:
1: the terminal position information module acquires the position information of the terminal in real time;
2: the terminal utilizes interaction between the main control module and the position information module to realize position information acquisition;
3: the terminal performs preliminary processing of the position information, for example, judges whether the currently located position information is valid, that is, judges whether the current position can be accurately indicated;
4: the main control module of the terminal sends the effective position information to the wind control platform for wind control and duty;
5: the wind control invalidity position information of the wind control platform is calculated to obtain the equipment fingerprint of the mobile phone;
6: terminal risk calculation (e.g., determining a terminal risk level);
7: calculating position information according to a wind control algorithm to obtain wind control result information; the wind control result information may be index information or reference parameters for generating a risk control policy of the terminal, etc.
8: the wind control strategy module returns the result to the wind control engine;
9: the method comprises the steps that a wind control engine and a wind control strategy module acquire a risk control strategy of a terminal;
10: returning a terminal risk result and a risk control strategy;
11: a terminal risk result is passed;
12: and synchronizing a terminal risk result and a risk control amount strategy.
In this example, the wind control platform also informs the terminal of the risk result, and the terminal verifies whether the risk control policy provided by the current wind control is suitable by itself, and automatically adjusts the risk control policy if not suitable, or adjusts the risk control policy based on the user instruction.
The present embodiment provides an electronic device including:
transceiver with a plurality of transceivers
The memory device is used for storing the data,
and a processor, respectively connected to the memory and the transceiver, for controlling the operation of the transceiver and the memory by executing computer executable instructions stored on the memory, and implementing any one of risk control methods applied to the terminal or the wind control platform, for example, one or more of the methods shown in fig. 1 to 3 and 8.
The transceiver may include various types of network interfaces.
The processor may be a microprocessor, a digital signal processor, a central processing unit, or a programmable array, and the processor may be equal to the transceiver and the memory connection through a bus.
The present embodiment also provides a computer storage medium storing computer-executable instructions; the computer executable instructions, when executed by the processor, enable the implementation of any one of the risk control methods applied to the terminal or the wind-controlled platform, for example, one or more of the methods shown in fig. 1-3 and 8. The computer storage medium may be a non-transitory storage medium.
In the several embodiments provided by the present application, it should be understood that the disclosed apparatus and method may be implemented in other ways. The above described device embodiments are only illustrative, e.g. the division of the units is only one logical function division, and there may be other divisions in practice, such as: multiple units or components may be combined or may be integrated into another system, or some features may be omitted, or not performed. In addition, the various components shown or discussed may be coupled or directly coupled or communicatively coupled to each other via some interface, whether indirectly coupled or communicatively coupled to devices or units, whether electrically, mechanically, or otherwise.
The units described as separate units may or may not be physically separate, and units displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units; some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional unit in each embodiment of the present invention may be integrated in one processing module, or each unit may be separately used as one unit, or two or more units may be integrated in one unit; the integrated units may be implemented in hardware or in hardware plus software functional units.
Those of ordinary skill in the art will appreciate that: all or part of the steps for implementing the above method embodiments may be implemented by hardware associated with program instructions, where the foregoing program may be stored in a computer readable storage medium, and when executed, the program performs steps including the above method embodiments; and the aforementioned storage medium includes: a mobile storage device, a Read-Only Memory (ROM), a random access Memory (Random Access Memory, RAM), a magnetic disk or an optical disk, or the like, which can store program codes.
The foregoing is merely illustrative of the present invention, and the present invention is not limited thereto, and any person skilled in the art will readily recognize that variations or substitutions are within the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (12)

1. The risk control method is characterized by being applied to the terminal and comprising the following steps:
positioning the current position of the terminal;
acquiring a risk control strategy generated based on a risk level corresponding to the current position;
according to the risk control strategy, controlling the electronic payment of the terminal by using near field communication NFC;
the controlling the electronic payment of the terminal using near field communication NFC according to the risk control policy includes:
determining a first type of application which allows electronic payment by using NFC and a second type of application which prohibits electronic payment by using NFC in the terminal according to the risk control strategy;
wherein,
the determining, according to the risk control policy, a first type of application in the terminal that allows electronic payment using NFC includes at least one of: determining the first type of application allowing the security chip on the NFC-SIM card to perform payment information security control according to the risk control strategy; determining the first type of application allowing the security control of payment information by an embedded security chip eSE located on a host in the terminal according to the risk control strategy; determining the first type of application allowing the security control of payment information by a security control HCE service in an operating system of the terminal according to the risk control policy;
And determining a second type of application which prohibits electronic payment using NFC in the terminal according to the risk control strategy, wherein the second type of application comprises at least one of the following components: determining the second type of application which prohibits the security control of the payment information by using NFC (near field communication) prohibited by a security chip according to the risk control policy; determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC; determining the second type of application which prohibits the security control of payment information by using NFC (near field communication) by the HCE service according to the risk control strategy;
the acquiring the risk control strategy generated based on the risk level corresponding to the current position comprises the following steps:
reporting the current position to a wind control platform;
receiving the risk control strategy provided by the wind control platform, wherein the risk control strategy is as follows: the wind control platform is determined based on the risk level corresponding to the current position and wind control configuration information, and the risk level corresponding to the current position is determined according to the current position, the position change rate of the terminal and the common position.
2. The method according to claim 1, wherein the method further comprises:
Reporting first equipment fingerprint information to the wind control platform, wherein the first equipment fingerprint information comprises at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2;
the receiving the risk control policy provided by the wind control platform further includes:
and if the first equipment fingerprint information is failed to be matched with the second equipment fingerprint information determined by the wind control platform, receiving a risk control strategy for prohibiting the terminal from carrying out electronic payment from the wind control platform.
3. The method according to claim 1, characterized in that the method further comprises:
reporting the position change rate of the terminal to the wind control platform; the position change rate and the current position are used together for the wind control platform to determine the risk control strategy.
4. The method according to claim 1, characterized in that the method comprises:
positioning the position of the terminal for multiple times to obtain alternative positions;
and determining the current position according to the alternative position.
5. The risk control method is characterized by being applied to a wind control platform and comprising the following steps of:
receiving the current position reported by a terminal;
determining the risk level of the current position of the terminal according to the current position, the position change rate of the terminal and the common position;
determining a risk control strategy according to the risk level and the wind control configuration information;
the risk control strategy is sent to the terminal, wherein the risk control strategy is used for controlling the terminal to use near field communication NFC to conduct safety control of electronic payment;
the risk control policy is used for controlling security control of electronic payment by using near field communication NFC by the terminal, and includes:
the terminal determines a first type of application which allows electronic payment by using NFC and a second type of application which prohibits electronic payment by using NFC in the terminal according to the risk control strategy;
wherein,
the terminal determines a first type of application which allows electronic payment to be performed by using NFC in the terminal according to the risk control strategy, wherein the first type of application comprises at least one of the following steps: determining the first type of application allowing the security chip on the NFC-SIM card to perform payment information security control according to the risk control strategy; determining the first type of application allowing the security control of payment information by an embedded security chip eSE located on a host in the terminal according to the risk control strategy; determining the first type of application allowing the security control of payment information by a security control HCE service in an operating system of the terminal according to the risk control policy;
The terminal determines a second type of application which prohibits electronic payment by using NFC in the terminal according to the risk control strategy, wherein the second type of application comprises at least one of the following steps: determining the second type of application which prohibits the security control of the payment information by using NFC (near field communication) prohibited by a security chip according to the risk control policy; determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC; and determining the second type of application which prohibits the security control of the payment information by using NFC by the HCE service according to the risk control strategy.
6. The method of claim 5, wherein the step of determining the position of the probe is performed,
the determining the risk level of the current position of the terminal according to the current position, the position change rate of the terminal and the common position comprises the following steps:
determining whether the current position is a common position of the terminal, and obtaining a confirmation result;
and determining the risk level of the current position of the terminal according to the confirmation result and the position change rate of the terminal.
7. The method of claim 6, wherein the step of providing the first layer comprises,
the method further comprises the steps of:
and determining the position change rate of the terminal according to the current position, or receiving the position change rate from the terminal.
8. The method according to any one of claims 5 to 7, further comprising:
receiving first equipment fingerprint information sent by the terminal, wherein the first equipment fingerprint information comprises at least one of the following information provided by the terminal: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information, wherein the positioning information comprises: position information and positioning time; n is a positive integer not less than 2
Determining second device fingerprint information according to the locally stored data, wherein the second device fingerprint information wind control platform determines at least one of the following information: the method comprises the steps of equipment identification of a terminal, identification information of a positioning module of the terminal, NFC identification and N times of positioning information;
matching the first device fingerprint information and the second device fingerprint information;
and when the first equipment fingerprint information and the second equipment fingerprint information fail to be matched, a risk control strategy for prohibiting the terminal from performing NFC-based electronic payment is sent to the terminal.
9. A risk control device, applied to a terminal, comprising:
the positioning module is used for positioning the current position of the terminal;
The first acquisition module is used for acquiring a risk control strategy generated based on the risk level corresponding to the current position;
the control module is used for controlling the electronic payment of the terminal by using near field communication NFC according to the risk control strategy; the controlling the electronic payment of the terminal using near field communication NFC according to the risk control policy includes: determining a first type of application which allows electronic payment by using NFC and a second type of application which prohibits electronic payment by using NFC in the terminal according to the risk control strategy; the determining, according to the risk control policy, a first type of application in the terminal that allows electronic payment using NFC includes at least one of: determining the first type of application allowing the security chip on the NFC-SIM card to perform payment information security control according to the risk control strategy; determining the first type of application allowing the security control of payment information by an embedded security chip eSE located on a host in the terminal according to the risk control strategy; determining the first type of application allowing the security control of payment information by a security control HCE service in an operating system of the terminal according to the risk control policy; and determining a second type of application which prohibits electronic payment using NFC in the terminal according to the risk control strategy, wherein the second type of application comprises at least one of the following components: determining the second type of application which prohibits the security control of the payment information by using NFC (near field communication) prohibited by a security chip according to the risk control policy; determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC; determining the second type of application which prohibits the security control of payment information by using NFC (near field communication) by the HCE service according to the risk control strategy;
The first acquisition module is specifically configured to report the current position to a wind control platform; and receiving the risk control strategy provided by the wind control platform, wherein the risk control strategy is as follows: the wind control platform is determined based on the risk level corresponding to the current position and wind control configuration information, and the risk level corresponding to the current position is determined according to the current position, the position change rate of the terminal and the common position.
10. A risk control device, characterized in that it is applied to the wind control platform, includes:
the second acquisition module is used for receiving the current position reported by the terminal;
the first determining module is used for determining the risk level of the current position of the terminal according to the current position, the position change rate of the terminal and the common position;
the second determining module is used for determining a risk control strategy according to the risk grade and the wind control configuration information;
the sending module is used for sending the risk control strategy to the terminal, wherein the risk control strategy is used for controlling the terminal to use near field communication NFC to carry out safety control of electronic payment; the risk control policy is used for controlling security control of electronic payment by using near field communication NFC by the terminal, and includes: the terminal determines a first type of application which allows electronic payment by using NFC and a second type of application which prohibits electronic payment by using NFC in the terminal according to the risk control strategy;
The terminal determines a first type of application which allows electronic payment by using NFC in the terminal according to the risk control strategy, wherein the first type of application comprises at least one of the following: determining the first type of application allowing the security chip on the NFC-SIM card to perform payment information security control according to the risk control strategy; determining the first type of application allowing the security control of payment information by an embedded security chip eSE located on a host in the terminal according to the risk control strategy; determining the first type of application allowing the security control of payment information by a security control HCE service in an operating system of the terminal according to the risk control policy; the terminal determines a second type of application which prohibits electronic payment by using NFC in the terminal according to the risk control strategy, wherein the second type of application comprises at least one of the following steps: determining the second type of application which prohibits the security control of the payment information by using NFC (near field communication) prohibited by a security chip according to the risk control policy; determining, according to the risk control policy, the second type of application that prohibits secure control of payment information by the eSE using NFC; and determining the second type of application which prohibits the security control of the payment information by using NFC by the HCE service according to the risk control strategy.
11. An electronic device, comprising:
transceiver with a plurality of transceivers
The memory device is used for storing the data,
a processor, coupled to the memory and the transceiver, respectively, for controlling the operation of the transceiver and the memory by executing computer-executable instructions stored on the memory, and for implementing the method provided in any one of claims 1 to 4 or 5 to 8.
12. A computer storage medium having stored thereon computer executable instructions; the computer executable instructions, when executed by a processor, are capable of carrying out the method provided in any one of claims 1 to 4 or 5 to 8.
CN201910081369.2A 2019-01-28 2019-01-28 Risk control method and device, electronic equipment and storage medium Active CN111489148B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910081369.2A CN111489148B (en) 2019-01-28 2019-01-28 Risk control method and device, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910081369.2A CN111489148B (en) 2019-01-28 2019-01-28 Risk control method and device, electronic equipment and storage medium

Publications (2)

Publication Number Publication Date
CN111489148A CN111489148A (en) 2020-08-04
CN111489148B true CN111489148B (en) 2023-11-21

Family

ID=71812295

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910081369.2A Active CN111489148B (en) 2019-01-28 2019-01-28 Risk control method and device, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN111489148B (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103745397A (en) * 2014-01-27 2014-04-23 上海坤士合生信息科技有限公司 System and method for realizing electronic transaction risk control based on position scene identification
WO2015088638A1 (en) * 2013-10-11 2015-06-18 Sequent Software, Inc. System and method for dynamic temporary payment authorization in a portable communication device
CN104811952A (en) * 2014-01-26 2015-07-29 中国移动通信集团江苏有限公司 Service processing verification method and system
CN104951933A (en) * 2014-03-24 2015-09-30 联想(北京)有限公司 Security payment method and mobile terminal
CN107844977A (en) * 2017-10-09 2018-03-27 中国银联股份有限公司 A kind of method of payment and device
CN108701303A (en) * 2017-06-30 2018-10-23 华为技术有限公司 NFC payment and terminal

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9082117B2 (en) * 2008-05-17 2015-07-14 David H. Chin Gesture based authentication for wireless payment by a mobile electronic device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2015088638A1 (en) * 2013-10-11 2015-06-18 Sequent Software, Inc. System and method for dynamic temporary payment authorization in a portable communication device
CN104811952A (en) * 2014-01-26 2015-07-29 中国移动通信集团江苏有限公司 Service processing verification method and system
CN103745397A (en) * 2014-01-27 2014-04-23 上海坤士合生信息科技有限公司 System and method for realizing electronic transaction risk control based on position scene identification
CN104951933A (en) * 2014-03-24 2015-09-30 联想(北京)有限公司 Security payment method and mobile terminal
CN108701303A (en) * 2017-06-30 2018-10-23 华为技术有限公司 NFC payment and terminal
CN107844977A (en) * 2017-10-09 2018-03-27 中国银联股份有限公司 A kind of method of payment and device

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
刘婧雯.指纹认证在移动支付中的应用研究.《2016全国无线及移动通信学术大会论文集》.25-36. *

Also Published As

Publication number Publication date
CN111489148A (en) 2020-08-04

Similar Documents

Publication Publication Date Title
US11783335B2 (en) Transaction confirmation and authentication based on device sensor data
CN106384273B (en) Malicious bill-swiping detection system and method
CN109598281B (en) Service risk prevention and control method, device and equipment
US9420448B2 (en) System and method for automated analysis comparing a wireless device location with another geographic location
US20170308898A1 (en) System and method of recognizing transactions as trusted
CN106682906B (en) Risk identification and service processing method and equipment
WO2018164684A1 (en) System and method for fraud risk analysis in iot
CN104408341A (en) Smart phone user identity authentication method based on gyroscope behavior characteristics
US10049363B2 (en) Passenger behavior rating for improved risk management in transit systems
BRPI0721466B1 (en) METHOD FOR DETERMINING FRAUDULENT CREDIT CARD ACTIVITY
US11429698B2 (en) Method and apparatus for identity authentication, server and computer readable medium
AU2019101846A4 (en) Identity recognition method and apparatus based on dynamic rasterization management, and server
US11379591B2 (en) Methods and devices for user authorization
CN111506889B (en) User verification method and device based on similar user group
WO2019136414A1 (en) System, method, and computer program product for determining fraud rules
US20210042757A1 (en) Determining a fraud risk score associated with a transaction
US20220164423A1 (en) Method and apparatus for user recognition
KR101777389B1 (en) Apparatus and method for authentication based cognitive information
CN112801670B (en) Risk assessment method and device for payment operation
CN107786516B (en) Mobile card punching method and server
CN105631662A (en) NFC payment method, NFC payment system and mobile terminal
CN111489148B (en) Risk control method and device, electronic equipment and storage medium
CN108764369A (en) Character recognition method, device based on data fusion and computer storage media
CN111476579A (en) Authority control method, device, equipment and medium
CN108427868A (en) Verification method, system and the client of resource transmission object

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant