CN111539713B - Mobile payment account end user certificate generation and conversion method, system and storage medium - Google Patents
Mobile payment account end user certificate generation and conversion method, system and storage medium Download PDFInfo
- Publication number
- CN111539713B CN111539713B CN202010196419.4A CN202010196419A CN111539713B CN 111539713 B CN111539713 B CN 111539713B CN 202010196419 A CN202010196419 A CN 202010196419A CN 111539713 B CN111539713 B CN 111539713B
- Authority
- CN
- China
- Prior art keywords
- account
- user
- credentials
- mobile payment
- different
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 50
- 238000006243 chemical reaction Methods 0.000 title claims abstract description 47
- 238000012545 processing Methods 0.000 claims abstract description 8
- 239000006185 dispersion Substances 0.000 claims abstract description 4
- 238000013461 design Methods 0.000 claims description 12
- 230000005540 biological transmission Effects 0.000 claims description 8
- 238000011176 pooling Methods 0.000 claims description 8
- 230000006855 networking Effects 0.000 claims description 6
- 238000004590 computer program Methods 0.000 claims description 5
- 230000002441 reversible effect Effects 0.000 claims description 4
- 239000008186 active pharmaceutical agent Substances 0.000 claims description 3
- 238000011161 development Methods 0.000 claims description 3
- 238000005516 engineering process Methods 0.000 claims description 3
- 230000003287 optical effect Effects 0.000 claims description 3
- 230000002688 persistence Effects 0.000 claims description 3
- 238000010586 diagram Methods 0.000 description 6
- 230000003993 interaction Effects 0.000 description 5
- 230000009466 transformation Effects 0.000 description 4
- 230000004913 activation Effects 0.000 description 1
- 238000013459 approach Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000000586 desensitisation Methods 0.000 description 1
- 238000007429 general method Methods 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000004806 packaging method and process Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/382—Payment protocols; Details thereof insuring higher security of transaction
- G06Q20/3821—Electronic credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/06009—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking
- G06K19/06018—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking one-dimensional coding
- G06K19/06028—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking one-dimensional coding using bar codes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K19/00—Record carriers for use with machines and with at least a part designed to carry digital markings
- G06K19/06—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
- G06K19/06009—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking
- G06K19/06037—Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code with optically detectable marking multi-dimensional coding
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K7/00—Methods or arrangements for sensing record carriers, e.g. for reading patterns
- G06K7/10—Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation
- G06K7/10009—Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves
- G06K7/10237—Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves the reader and the record carrier being capable of selectively switching between reader and record carrier appearance, e.g. in near field communication [NFC] devices where the NFC device may function as an RFID reader or as an RFID tag
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/322—Aspects of commerce using mobile devices [M-devices]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3272—Short range or proximity payments by means of M-devices using an audio code
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/32—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
- G06Q20/327—Short range or proximity payments by means of M-devices
- G06Q20/3278—RFID or NFC payments by means of M-devices
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/405—Establishing or using transaction specific rules
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- Physics & Mathematics (AREA)
- Accounting & Taxation (AREA)
- Theoretical Computer Science (AREA)
- General Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- Strategic Management (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Health & Medical Sciences (AREA)
- Toxicology (AREA)
- Economics (AREA)
- Development Economics (AREA)
- Electromagnetism (AREA)
- General Health & Medical Sciences (AREA)
- Artificial Intelligence (AREA)
- Computer Vision & Pattern Recognition (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention relates to the technical field of mobile payment, in particular to a method, a system and a storage medium for generating and converting user credentials of a mobile payment account end, which are used for acquiring equipment information of an account B and performing decentralized operation on the user credentials of the account B; the certificate of the account B is serialized after being processed by utilizing an operation method agreed between the account A and the account B; encrypting the certificate of the serialized account B through a contracted encryption algorithm; carrying out decentralized processing on the result encrypted by the encryption algorithm through account information of the user; serializing the data after the dispersion treatment to form a digital string; the digit string is obfuscated with the user credential identifier of account a to form an account a-based user credential. The invention generates, converts and interactively uses the user credentials of the remote payment account, thereby realizing the simple and rapid interconnection and intercommunication of the user credentials of the account system in different account systems and solving the problem of safe conversion among the account credentials.
Description
Technical Field
The invention relates to the technical field of mobile payment, in particular to a mobile payment account end user certificate generation and conversion method, a system and a storage medium.
Background
Currently, account system designs in the field of mobile payment are divided into two types, near field payment and remote payment: wherein the account design of the near field payment is based on a card-based account credential system based on NFC; NFC is not suitable in the design of account systems for remote payment, based on which most payment institutions and banks use digital authentication (TOKEN) in the remote payment scenario.
In this case, since each payment mechanism and bank adopts a customized TOKEN system and implementation method, a lot of inconveniences are brought to interconnection and interworking in the case of the internet. In order to enable various account systems to be interconnected and intercommunicated, the invention provides a simple and easy-to-use method for helping different account owners to realize production, interaction, storage and conversion.
Disclosure of Invention
Aiming at the defects of the prior art, the invention discloses a mobile payment account end user certificate generation and conversion method, a system and a storage medium, which are used for solving the problems that in the current payment remote account system, the method for generating the certificate is quite a lot and quite scattered and fragmented, and unified standards and specifications cannot be realized in a short period to adapt to the demands of globalization payment systems and users.
The existing user certificate design approximately adopts a mode based on digital coding, the number of digits is between 18-25 digits, the digital coding design is used for facilitating acceptance transformation of a merchant terminal, but transformation cost of a plurality of merchant terminals is brought in different account certificate interactions.
Meanwhile, the user certificate is used in financial transaction, and has high requirements on security and privacy, so that the technical scheme of conversion and desensitization of the user certificate has high requirements.
The invention is realized by the following technical scheme:
in a first aspect, the present invention discloses a mobile payment account user credential generation and conversion method, which includes the following steps:
s1, acquiring equipment information of an account B, and performing decentralized operation on user credentials of the account B;
s2, using an operation method agreed between the account A and the account B to sequence the certificate of the account B after processing in the S1;
s3, encrypting the certificate of the account B after the serialization of the S2 through a contracted encryption algorithm;
s4, carrying out decentralized processing on the encrypted result of the encryption algorithm through account information of the user;
s5, serializing the data after the dispersion treatment to form a digital string;
s6, the digit string is mixed with the user credential identifier of the account A to form the user credential based on the account A.
Furthermore, the user credentials of the account B are fingerprint-related credentials, and the initial user credentials of the user B can be retrospectively obtained through the newly generated user credentials of the account A.
Further, when the user credentials of the account B are user credentials unrelated to the user fingerprint, a random matching algorithm is used to randomly match the user credentials of different accounts, and the algorithm includes the following steps:
t1, pooling user credentials of a server side account A and an account B;
t2 opens up an independent storage space at the account end to establish association between the pooling digital certificate system with the server dialogue;
t3 carries out unidirectional association of the server side on digital certificates in the user certificate pools of different clients and opposite ends;
t4 is exposed at the front end after the client serializes the digits of the credential pool.
Furthermore, the mutual correspondence between the user certificates of different account systems is one-time one-way correspondence, and restoration or reverse restoration cannot be performed after the use is completed.
In a second aspect, the present invention provides a mobile payment account user credential generation and conversion system, where the system is configured to implement the mobile payment account user credential generation and conversion method according to the first aspect, and the system includes credential correspondence, serialization, temporary storage, security, and persistence groups, and connects different account systems and credential generation methods.
Still further, the system supports account credential conversion services that are based on a alphanumeric ID, including email, phone, identification card number, bank card number, or other account ID.
Furthermore, the system can be displayed and used for carrying out financial transactions on different user side devices, including mobile phones, tablet computers, devices with screen non-networking capability and devices with screen networking capability, and can be operated on different devices in different forms, and integrated by providing application system interfaces, development tools and the like.
Furthermore, the system presents on account APP and website in the modes of APP embedded application, web application, quick and easy use or applet, and the presentation mode can be deployed and served between financial institutions and account system owners to connect account systems of different financial institutions and non-financial institutions, so as to realize interconnection and intercommunication service.
Furthermore, the serial numbers generated by the system are displayed at the front end in various modes, including bar codes, two-dimensional codes, bluetooth, near-field NFC, sound waves, magnetic transmission, optical transmission and other transmission modes.
Furthermore, the certificates generated by the system can be used in different financial terminals and scenes, meanwhile, the certificates after the sequence digitization can be read by various front-end reading devices, the system can be deployed on various types of devices, can be containerized and serialized, and can be deployed and operated in various complex cloud environments and local environments.
Furthermore, when the financial certificates generated by the system are transacted on different terminals, when the plurality of account certificates of the user side and the certificates supported by the merchant terminal are compared and handshaking is carried out, the preferable matching results of the two parties are selected to conduct the financial transaction. When the generated financial document is transacted on different terminals, the account document code is displayed on the user terminal, and the financial transaction is carried out after the selection judgment is carried out manually.
Still further, the system provides services to the front end by interfacing and embedding with existing multiple application forms in a variety of ways, including but not limited to SDK, APIs, applets or rich text, thin clients and rich web.
Furthermore, the system can integrate a plurality of account credential systems simply and rapidly by using the UI design method of the user side, can rapidly display and switch on one UI, and can be applied to different front-end technologies.
In a third aspect, the present invention provides a storage medium, where a computer program is stored, different user credentials are stored and mixed up, and exchanged between different account systems, where the computer program, when executed by a processor, implements the mobile payment account end user credential generation conversion method of the first aspect.
The beneficial effects of the invention are as follows:
the invention generates, converts and interactively uses the user certificate of the remote payment account, thereby realizing the simple and rapid interconnection and intercommunication of the user certificate of the account system in different account systems, and well solving the problem of safe conversion among the account certificates.
Drawings
In order to more clearly illustrate the embodiments of the invention or the technical solutions in the prior art, the drawings that are required in the embodiments or the description of the prior art will be briefly described, it being obvious that the drawings in the following description are only some embodiments of the invention, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a schematic diagram of a mobile payment account end user credential generation conversion;
FIG. 2 is a diagram of two account system conversion credentials in accordance with an embodiment of the present invention;
FIG. 3 is a schematic diagram of user credential conversion based on account fingerprints in accordance with an embodiment of the present invention;
FIG. 4 is a schematic diagram of user credential conversion without account fingerprint in accordance with an embodiment of the present invention;
FIG. 5 is a schematic diagram of an application program interface based design of an embodiment of the present invention;
FIG. 6 is a schematic diagram of a developer tool based packaging model in accordance with an embodiment of the present invention.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is apparent that the described embodiments are some embodiments of the present invention, but not all embodiments of the present invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
Example 1
The embodiment discloses a mobile payment account end user certificate generation and conversion method, which comprises the following steps:
s1, acquiring equipment information of an account B, and performing decentralized operation on user credentials of the account B;
s2, using an operation method agreed between the account A and the account B to sequence the certificate of the account B after processing in the S1;
s3, encrypting the certificate of the account B after the serialization of the S2 through a contracted encryption algorithm;
s4, carrying out decentralized processing on the encrypted result of the encryption algorithm through account information of the user;
s5, serializing the data after the dispersion treatment to form a digital string;
s6, the digit string is mixed with the user credential identifier of the account A to form the user credential based on the account A.
The user credentials of the account B are fingerprint-related credentials, and the initial user credentials of the user B can be retrospectively traced through the newly generated user credentials of the account A.
When the user credentials of account B are user credentials that are not related to the user fingerprint, a random matching algorithm is used to randomly match the user credentials of different accounts.
The algorithm comprises the following steps:
t1, pooling user credentials of a server side account A and an account B;
t2 opens up an independent storage space at the account end to establish association between the pooling digital certificate system with the server dialogue;
t3 carries out unidirectional association of the server side on digital certificates in the user certificate pools of different clients and opposite ends;
t4 is exposed at the front end after the client serializes the digits of the credential pool.
The mutual corresponding relation of the algorithm between the user certificates of different account systems is one-time one-way corresponding relation, and restoration or reverse restoration cannot be carried out after the use is completed.
Example 2
The embodiment discloses a simple and rapid method based on security conversion between different account credentials, and the general method is shown in fig. 1, and the conversion between account credentials can be simply understood as that different account credentials can be displayed between different wallets to realize acceptance in different account networks. For example, user credentials for account B may be dynamically displayed in account a (based on the mobile end application and the web application), and interconnected in the network of account B.
Technically, conversion between different account user credentials requires extremely high security and versatility. Thus, in the present invention, different security policies and methods are employed for the conversion of user credentials for different account systems.
Assuming that in the two account system, account B needs to use the user credentials to account a, as shown in fig. 2, account B will initiate a request to account a for a credential that matches account credential a.
Example 3
The embodiment discloses a user credential conversion method based on account fingerprint as shown in fig. 3:
under this method, when account B is converted to obtain user credentials of account A, a token based on the user credentials of account B is generated, and at this time, the two account credentials can be associated and restored by the user fingerprints.
The specific conversion and implementation method is as follows:
the first step: the user credentials of account B are decentralized by obtaining device information (hardware serial number, timestamp) of account B.
And a second step of: and (3) serializing the certificate of the account B after the first step of processing by an operation method agreed between the account A and the account B. The serialization is then encrypted by a agreed encryption algorithm.
And a third step of: the result of the second step is subjected to a decentralized process by account information (e-mail, or telephone number) of the user.
Fourth step: and (3) serializing the data of the third step to form a digital string.
Fifth step: the digit string is obfuscated with the user credential identifier of account a to form an account a-based user credential.
Meanwhile, the method ensures that the steps are reversible, namely, the initial user credentials traced to the user B can be reversely deduced through the newly generated user credentials of the account A.
Example 4
The above embodiment is based on the account fingerprint related credential conversion method, and in addition to the user fingerprint related credential conversion method, the present embodiment discloses another user credential conversion method unrelated to the user fingerprint.
The user credential conversion method without account fingerprint as shown in fig. 4:
under this method, when the user credentials of the account a are obtained by the account B through conversion, the user credentials of the account a and the account B are randomly matched, and at this time, the relationship between the two account credentials cannot be associated and restored.
Under this method, the invention will use a random matching algorithm to randomly match different account user credentials, as follows:
the first step: and pooling the user credentials of the server-side account A and the account B, namely caching and pooling the numbers in different credential systems.
And a second step of: an independent storage space is opened up at the account end for establishing association between the pooled digital credential systems with the server dialogue.
And a third step of: the invention can realize one-to-one-way association or one-to-many one-way association by carrying out one-way association of the server side on the digital certificates in the user certificate pools of different clients and opposite terminals.
Fourth step: after the client serializes the digits of the credential pool, it is exposed at the front end.
Under the method, the mutual correspondence between the user certificates of different account systems is one-way correspondence, and the user certificates cannot be restored or reversely restored after the use is completed.
Example 5
The embodiment discloses a mobile payment account end user credential generation and conversion system, which is used for realizing the mobile payment account end user credential generation and conversion method described in the above embodiment, wherein the system comprises credential correspondence, serialization, temporary storage, security and persistence groups, and is connected with different account systems and credential generation methods.
The system supports account credential conversion services that are architected with a tokenized ID, including email, phone call, identification card number, bank card number, or other account ID. The system can be displayed and used for carrying out financial transactions on different user side devices, wherein the system comprises a mobile phone, a tablet computer and a computer, the device with a screen is not in networking capability and the device with the screen is in networking capability, and the system runs on different devices in different forms and is integrated by providing an application system interface, a development tool and the like.
The system presents on account APP and website in the modes of APP embedded application, web application, quick and easy use or applet, and the presentation mode can be deployed and served between financial institutions and account system owners to connect account systems of different financial institutions and non-financial institutions, so as to realize interconnection and intercommunication service. The serial numbers generated by the system are displayed at the front end in a plurality of modes, including bar codes, two-dimensional codes, bluetooth, near-field NFC, sound waves, magnetic transmission, optical transmission and other transmission modes.
The certificates generated by the system can be used in different financial terminals and scenes, meanwhile, the certificates after the serial digitization can be read by various front-end reading devices, the system can be deployed on various types of devices, can be containerized and serialized, and can be deployed and operated in various complex cloud environments and local environments. When the financial certificates generated by the system are transacted on different terminals, when a plurality of account certificates of a user side and certificates supported by merchant terminals are compared and handshaking is carried out, a matching result preferred by the two parties is selected to conduct financial transactions. When the generated financial document is transacted on different terminals, the account document code is displayed on the user terminal, and the financial transaction is carried out after the selection judgment is carried out manually.
The system provides services to the front end by interfacing and embedding with existing multiple application forms in a variety of ways including, but not limited to, SDKs, APIs, applets or rich text, thin clients and rich web. The system utilizes the UI design method of the user side, can integrate a plurality of account credential systems simply and rapidly, can rapidly display and switch on one UI, and can be applied to different front-end technologies.
Example 6
For the technical implementation of the system in embodiment 5, this embodiment discloses that in the system implementation, different implementation manners are adopted: based on the design of the application program interface as shown in fig. 5, the credential system under the method can provide a complete application program interface for interfacing and using the account system. In addition to the application program interface, the credential conversion system under the method can also provide a developer tool interface based on various devices, a background system to implement credential conversion services, as shown in fig. 6. In the acceptance environment, interaction is realized between the account credential subsystem and merchant terminal acceptance equipment, and selection and activation among different account credentials are realized, wherein the connection mode comprises Bluetooth, wifi or approach communication means.
Example 7
The embodiment discloses a storage medium, wherein a computer program is stored on the storage medium, different user credentials are stored and mixed, and exchange is performed between different account systems, and when the computer program is executed by a processor, the method for generating and converting the user credentials at the mobile payment account end described in the above embodiment is realized.
In conclusion, the invention generates, converts and interactively uses the user credentials of the remote payment account, so that the user credentials of the account system can be simply and quickly interconnected and intercommunicated in different account systems. In the current payment remote account system, the method for generating the certificates is quite numerous and quite scattered and fragmented, and unified standards and specifications cannot be realized in a short period to adapt to the demands of globalized payment systems and users, so that the method can simply and quickly implement conversion and intercommunication.
The existing user certificate design approximately adopts a mode based on digital coding, the number of digits is between 18-25 digits, the digital coding design is used for facilitating acceptance and transformation of merchant terminals, but transformation cost of a plurality of merchant terminals can be brought in different account certificate interactions, so that the account certificate conversion is simple and economical in order to realize the interactions and the intercommunications rapidly.
Meanwhile, the user certificate is used in financial transactions, and has high requirements on security and privacy, so that the user certificate is converted and desensitized. The invention well solves the problem of security conversion between account certificates.
The above embodiments are only for illustrating the technical solution of the present invention, and are not limiting; although the invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present invention.
Claims (14)
1. A mobile payment account end user credential generation and conversion method, the method comprising the steps of:
s1, acquiring equipment information of an account B, and performing decentralized operation on user credentials of the account B;
s2, using an operation method agreed between the account A and the account B to sequence the certificate of the account B after processing in the S1;
s3, encrypting the certificate of the account B after the serialization of the S2 through a contracted encryption algorithm;
s4, carrying out decentralized processing on the result encrypted by the encryption algorithm through account information of the account B;
s5, serializing the data after the dispersion treatment to form a digital string;
s6, the digit string is mixed with the user credential identifier of the account A to form the user credential based on the account A.
2. The method for generating and converting user credentials at a mobile payment account according to claim 1, wherein the user credentials of the account B are fingerprint-related credentials, and the initial user credentials of the user B can be retrospectively traced through the newly generated user credentials of the account a.
3. The mobile payment account side user credential generation and conversion method according to claim 1, wherein when the user credential of the account B is a user credential unrelated to the user fingerprint, a random matching algorithm is used to randomly match user credentials of different accounts, the random matching algorithm includes the following steps:
t1, pooling user credentials of a server side account A and an account B;
t2 opens up an independent storage space at the account end to establish association between the pooling digital certificate system with the server dialogue;
t3 carries out unidirectional association of the server side on digital certificates in the user certificate pools of different clients and opposite ends;
t4 is exposed at the front end after the client serializes the digits of the credential pool.
4. The method for generating and converting user credentials at mobile payment account end according to claim 3, wherein the mutual correspondence between the user credentials of different account systems by the random matching algorithm is one-time one-way correspondence, and restoration or reverse restoration cannot be performed after the use is completed.
5. A mobile payment account user credential generation and conversion system for implementing a mobile payment account user credential generation and conversion method according to any of claims 1-4, characterized in that the system comprises a credential correspondence, serialization, temporary storage, security, persistence group, connecting different account systems and credential generation methods.
6. The mobile payment account side user credential generation conversion system of claim 5 wherein the system supports an account credential conversion service that is architected with a tokenized ID comprising email, phone, identification card number, bank card number or other account ID.
7. The mobile payment account side user credential generation conversion system of claim 5 wherein the system can be presented and financial transactions performed on different user side devices including cell phones, tablet computers, devices with screen non-networking capability and devices with screen networking capability, run in different forms on different devices, integrate by providing application system interfaces and development tools, etc.
8. The system of claim 5, wherein the system is configured to present on an account APP, web application, quick and easy application, or applet by way of an APP in-line application, wherein a presentation mode is configured to be deployed and serviced between a financial institution and an account system owner system for connecting account systems of different financial and non-financial institutions for interconnection and interworking services.
9. The system of claim 5, wherein the serial numbers generated by the system are displayed at the front end in a plurality of ways, including bar code, two-dimensional code, bluetooth, near field NFC, acoustic wave, magnetic transmission, and optical transmission.
10. The mobile payment account side user credential generation conversion system of claim 5 wherein the system generated credentials can be used in different financial terminals and scenarios, while the serial digitized credentials can be read by a variety of front end reading devices the system can be deployed on a variety of forms of devices, can be containerized and serialized, and can be deployed and run on a variety of complex cloud and local environments.
11. The system for generating and converting mobile payment account side user credentials according to claim 5, wherein when the financial credentials generated by the system are transacted on different terminals, when the plurality of account credentials of the user side and credentials supported by the merchant terminal are compared and handshake, a matching result preferred by both parties is selected for conducting the financial transaction; when the generated financial document is transacted on different terminals, the account document code is displayed on the user terminal, and the financial transaction is carried out after the selection judgment is carried out manually.
12. The mobile payment account side user credential generation conversion system of claim 5 wherein the system provides services to the front end by interfacing and embedding with existing multiple application forms in a variety of ways including but not limited to SDKs, APIs, applets or rich text, thin clients and rich web.
13. The system for generating and converting user credentials at a mobile payment account according to claim 5, wherein the system uses a UI design method at the user end to integrate multiple account credential systems simply and answer and rapidly, and the system can rapidly display and switch on one UI and can be applied to different front-end technologies.
14. A storage medium having stored thereon a computer program which, when executed by a processor, performs a mobile payment account side user credential generation conversion method as claimed in any one of claims 1 to 4, and which stores, obfuscates and exchanges between different account systems.
Priority Applications (5)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010196419.4A CN111539713B (en) | 2020-03-19 | 2020-03-19 | Mobile payment account end user certificate generation and conversion method, system and storage medium |
| JP2020097208A JP2021168100A (en) | 2020-03-19 | 2020-06-03 | Method and system for generating and converting user token of mobile payment account side, and storage medium |
| JP2022545030A JP2023525616A (en) | 2020-03-19 | 2021-03-04 | Mobile payment account user voucher generation conversion method, system, and storage medium |
| KR1020227026567A KR20220125281A (en) | 2020-03-19 | 2021-03-04 | Mobile payment account side user credentials creation and conversion method, system and storage medium |
| PCT/CN2021/079017 WO2021185090A1 (en) | 2020-03-19 | 2021-03-04 | Method and system for generating and converting user credential of mobile payment account end, and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010196419.4A CN111539713B (en) | 2020-03-19 | 2020-03-19 | Mobile payment account end user certificate generation and conversion method, system and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111539713A CN111539713A (en) | 2020-08-14 |
| CN111539713B true CN111539713B (en) | 2023-11-03 |
Family
ID=71976711
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010196419.4A Active CN111539713B (en) | 2020-03-19 | 2020-03-19 | Mobile payment account end user certificate generation and conversion method, system and storage medium |
Country Status (4)
| Country | Link |
|---|---|
| JP (2) | JP2021168100A (en) |
| KR (1) | KR20220125281A (en) |
| CN (1) | CN111539713B (en) |
| WO (1) | WO2021185090A1 (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111539713B (en) * | 2020-03-19 | 2023-11-03 | 上海讯联数据服务有限公司 | Mobile payment account end user certificate generation and conversion method, system and storage medium |
| CN113205318A (en) * | 2021-05-28 | 2021-08-03 | 金蝶软件(中国)有限公司 | Voucher display method, voucher generation device and computer storage medium |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106936773A (en) * | 2015-12-29 | 2017-07-07 | 阿里巴巴集团控股有限公司 | A kind of data security protection method and device |
| CN107274183A (en) * | 2017-03-21 | 2017-10-20 | 中国银联股份有限公司 | Transaction verification method and system |
| CN109978566A (en) * | 2019-02-20 | 2019-07-05 | 广州中科易德科技有限公司 | A kind of end based on generated code is traced to the source information acquisition system and method |
| CN110163658A (en) * | 2019-04-17 | 2019-08-23 | 深圳左邻永佳科技有限公司 | Virtual resource data processing method, device, computer equipment and storage medium |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102957536B (en) * | 2011-08-29 | 2016-02-17 | 陈华平 | Based on the certificate verification system CFL of mark |
| US9953311B2 (en) * | 2013-09-25 | 2018-04-24 | Visa International Service Association | Systems and methods for incorporating QR codes |
| US9237006B2 (en) * | 2013-09-30 | 2016-01-12 | Protegrity Corporation | Table-connected tokenization |
| TWI707286B (en) * | 2015-08-21 | 2020-10-11 | 新加坡商萬事達卡亞洲/太平洋私人有限公司 | Method and system for modifying transaction credentials, server and non-transitory computer readable medium |
| US20170262832A1 (en) * | 2016-03-09 | 2017-09-14 | Mastercard International Incorporated | Systems and Methods for Use in Facilitating Payment Account Transactions |
| CN107819569B (en) * | 2017-12-14 | 2018-09-11 | 平安科技(深圳)有限公司 | The encryption method and terminal device of log-on message |
| CN111539713B (en) * | 2020-03-19 | 2023-11-03 | 上海讯联数据服务有限公司 | Mobile payment account end user certificate generation and conversion method, system and storage medium |
-
2020
- 2020-03-19 CN CN202010196419.4A patent/CN111539713B/en active Active
- 2020-06-03 JP JP2020097208A patent/JP2021168100A/en active Pending
-
2021
- 2021-03-04 JP JP2022545030A patent/JP2023525616A/en active Pending
- 2021-03-04 KR KR1020227026567A patent/KR20220125281A/en not_active Application Discontinuation
- 2021-03-04 WO PCT/CN2021/079017 patent/WO2021185090A1/en active Application Filing
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106936773A (en) * | 2015-12-29 | 2017-07-07 | 阿里巴巴集团控股有限公司 | A kind of data security protection method and device |
| CN107274183A (en) * | 2017-03-21 | 2017-10-20 | 中国银联股份有限公司 | Transaction verification method and system |
| CN109978566A (en) * | 2019-02-20 | 2019-07-05 | 广州中科易德科技有限公司 | A kind of end based on generated code is traced to the source information acquisition system and method |
| CN110163658A (en) * | 2019-04-17 | 2019-08-23 | 深圳左邻永佳科技有限公司 | Virtual resource data processing method, device, computer equipment and storage medium |
Non-Patent Citations (1)
| Title |
|---|
| 邓绪水 ; 宋庭新 ; 黄必清 ; .单点登录技术在企业资源集成中的应用.湖北工业大学学报.2010,(02),全文. * |
Also Published As
| Publication number | Publication date |
|---|---|
| JP2023525616A (en) | 2023-06-19 |
| JP2021168100A (en) | 2021-10-21 |
| KR20220125281A (en) | 2022-09-14 |
| CN111539713A (en) | 2020-08-14 |
| WO2021185090A1 (en) | 2021-09-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9864987B2 (en) | Account provisioning authentication | |
| US9799029B2 (en) | Securely receiving data input at a computing device without storing the data locally | |
| US20150262052A1 (en) | Omni smart card | |
| US20090172402A1 (en) | Multi-factor authentication and certification system for electronic transactions | |
| CN104361493A (en) | Electronic payment method on basis of biological characteristics | |
| CN110210207A (en) | Authorization method and equipment | |
| CN111539713B (en) | Mobile payment account end user certificate generation and conversion method, system and storage medium | |
| CN101790166A (en) | Digital signing method based on mobile phone intelligent card | |
| TWI626607B (en) | Smart card with dynamic token OTP function and working method thereof | |
| CN102831738A (en) | Mobile card swiping unit, mobile payment system and method | |
| CN105741116A (en) | Fast payment method, apparatus and system | |
| TWI619042B (en) | System and method for online transaction security, SIM card, mobile phone and online transaction system realized by the method | |
| CN108337090A (en) | A kind of dynamic password acquisition methods, device, terminal and storage medium | |
| EP3776299A1 (en) | System and method for secure device connection | |
| CA3045344A1 (en) | System and method for message recipient verification | |
| TW201317911A (en) | Cloud credit card transaction system and transaction method thereof | |
| CN104935550A (en) | Intelligent electronic commerce user management system technique and operating method thereof | |
| EP3229190A1 (en) | Payment verification method, apparatus and system | |
| CN103281186B (en) | A kind of dynamic token based on Android system, transaction system and method | |
| JP7402928B2 (en) | Method and system for activating a portable contactless payment object | |
| CN202904766U (en) | Mobile card swiping unit and mobile payment system | |
| WO2017206680A1 (en) | Point-to-point transfer system and method | |
| CN108665267A (en) | Safety certification device and system | |
| US11397940B2 (en) | Secure payment transactions | |
| CA3144301C (en) | Secure payment transactions |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |