CN112016928B

CN112016928B - Payment method and device and payment device

Info

Publication number: CN112016928B
Application number: CN201910472463.0A
Authority: CN
Inventors: 王蜀洪; 李艺
Original assignee: Huakong Tsingjiao Information Technology Beijing Co Ltd
Current assignee: Huakong Tsingjiao Information Technology Beijing Co Ltd
Priority date: 2019-05-31
Filing date: 2019-05-31
Publication date: 2024-01-16
Anticipated expiration: 2039-05-31
Also published as: CN112016928A

Abstract

The embodiment of the invention provides a payment method, a payment device and a payment device. The method comprises the following steps: receiving a payment request of a user, wherein the payment request comprises a first payment parameter; performing feature calculation on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain a first payment data ciphertext; and sending the first payment data ciphertext to a computing node for matching. The embodiment of the invention can improve the safety of the bank account of the user in the payment process.

Description

Payment method and device and payment device

Technical Field

The present invention relates to the field of computer technologies, and in particular, to a payment method, a payment device, and a payment device.

Background

With the development of computer technology, payment modes are more and more diversified, and face payment modes are becoming popular. The user does not need a wallet, a credit card or a mobile phone, and only needs a camera facing the cashing system to collect the face characteristics of the user in real time, so that face payment can be completed.

Before the face payment function is used, the bank can acquire and store the face characteristics of the user in advance, and when the user performs face payment, the face characteristics acquired in real time by the cashing system can be compared and verified with the face characteristics stored by the bank so as to acquire the bank account information of the current user to complete the payment process.

However, once the face feature data of the user is revealed, there is a risk that the face feature of the user is forged, and thus the bank account of the user is lost, and it can be seen that the face payment method brings convenience to the user and hidden danger to the bank account of the user.

Disclosure of Invention

The embodiment of the invention provides a payment method, a payment device and a payment device, which can improve the security of a bank account of a user in the payment process.

To solve the above problems, an embodiment of the present invention discloses a payment method, which includes:

receiving a payment request of a user, wherein the payment request comprises a first payment parameter;

performing feature calculation on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain a first payment data ciphertext;

and sending the first payment data ciphertext to a computing node for matching.

In another aspect, an embodiment of the present invention discloses a payment method, the method including:

receiving a payment verification request, wherein the payment verification request carries a first payment data ciphertext obtained by extracting the characteristics of a first payment parameter according to each preset algorithm in a preset algorithm set;

Matching the first payment data ciphertext corresponding to each preset algorithm in a preset registration set; the preset registration set comprises a payment account of the user and a second payment data ciphertext corresponding to the payment account of the user; the second payment data ciphertext is obtained by performing feature calculation on a second payment parameter corresponding to a payment account of the user according to at least one preset algorithm in the preset algorithm set;

if the target user exists in the preset registration set, responding to the payment verification request, and returning to a payment account of the target user; and the second payment data ciphertext of the target user is matched with the first payment data ciphertext carried in the payment verification request.

In yet another aspect, an embodiment of the present invention discloses a payment device, the device comprising:

the first receiving module is used for receiving a payment request of a user, wherein the payment request comprises a first payment parameter;

the characteristic calculation module is used for carrying out characteristic calculation on the first payment parameters according to each preset algorithm in the preset algorithm set to obtain a first payment data ciphertext;

and the first sending module is used for sending the first payment data ciphertext to the computing node for matching.

the second receiving module is used for receiving a payment verification request, wherein the payment verification request carries a first payment data ciphertext obtained by extracting the characteristics of the first payment parameters according to each preset algorithm in a preset algorithm set;

the matching module is used for matching the first payment data ciphertext corresponding to each preset algorithm in the preset registration set; the preset registration set comprises a payment account of the user and a second payment data ciphertext corresponding to the payment account of the user; the second payment data ciphertext is obtained by performing feature calculation on a second payment parameter corresponding to a payment account of the user according to at least one preset algorithm in the preset algorithm set;

the second sending module is used for responding to the payment verification request and returning a payment account of the target user if the target user exists in the preset registration set; and the second payment data ciphertext of the target user is matched with the first payment data ciphertext carried in the payment verification request.

In yet another aspect, an embodiment of the present invention discloses an apparatus for payment, comprising a memory, and one or more programs, wherein the one or more programs are stored in the memory and configured to be executed by one or more processors, the one or more programs comprising instructions for:

and sending the first payment data ciphertext to a computing node for matching.

In yet another aspect, embodiments of the present invention disclose a machine-readable medium having instructions stored thereon that, when executed by one or more processors, cause an apparatus to perform a payment method as described in one or more of the preceding.

The embodiment of the invention has the following advantages:

after receiving a payment request of a user, the embodiment of the invention carries out feature calculation on the first payment parameters in the payment request according to each preset algorithm in the preset algorithm set to obtain the first payment data ciphertext, and then sends the first payment data ciphertext to the calculation node for matching, so that the first payment parameters of the user are always transmitted in the form of the ciphertext in the payment process, the risk that the first payment parameters of the user, such as the first face feature or the first payment password, are revealed in the payment process can be reduced, the security of a bank account of the user can be improved, and meanwhile, different algorithms of different banks can be adapted.

Drawings

In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings that are needed in the description of the embodiments of the present invention will be briefly described below, it being obvious that the drawings in the following description are only some embodiments of the present invention, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.

FIG. 1 is a flow chart of the steps of one embodiment of a payment method of the present invention;

FIG. 2 is a flow chart of steps of another embodiment of a payment method of the present invention;

FIG. 3 is a block diagram of an embodiment of a payment device of the present invention;

FIG. 4 is a block diagram of another embodiment of a payment device of the present invention;

FIG. 5 is a block diagram of an apparatus 800 for payment of the present invention; a kind of electronic device with high-pressure air-conditioning system

Fig. 6 is a schematic diagram of a server in some embodiments of the invention.

Detailed Description

The following description of the embodiments of the present invention will be made clearly and fully with reference to the accompanying drawings, in which it is evident that the embodiments described are some, but not all embodiments of the invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.

Method embodiment

Referring to fig. 1, a flowchart illustrating steps of an embodiment of a payment method of the present invention may specifically include the steps of:

step 101, receiving a payment request of a user, wherein the payment request comprises a first payment parameter;

102, performing feature calculation on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain a first payment data ciphertext;

and step 103, sending the first payment data ciphertext to a computing node for matching.

It should be noted that, the scheme of the present invention is implemented by operations such as calculation and matching based on ciphertext, and the specific method of calculation and matching based on ciphertext may refer to the implementation scheme introduced in application No. 201910252632.X of the applicant, which is not described herein in detail.

The payment method of the embodiment of the invention can be applied to a payment system. The payment system may include a merchant side, a bank side, a Unionpay side, and a compute node. The payment process may include both registration and payment phases.

In an alternative embodiment of the present invention, the first payment parameters may specifically include: first face information, and/or a first payment password.

When the first payment parameter is first face information, the payment request triggered by the user is a face payment request, and the first face information can be information such as pictures or videos containing face images of the user and collected in real time by a merchant side. When the first payment parameter is the first payment password, the payment request triggered by the user is the password payment request, and the merchant side can acquire the first payment password input by the user in real time.

It can be appreciated that in a specific application, the first payment parameter may also include the first face information and the first payment password at the same time, and in the payment process, the first face information and the first payment password of the user may be respectively verified, so as to further enhance the security of the payment process.

It will be appreciated that the above-mentioned first payment parameters include the first face information, and/or the first payment password, which are merely an application example of the embodiment of the present invention, and the embodiment of the present invention does not limit the specific type of the first payment parameters. For example, the first payment parameter may be a fingerprint, a two-dimensional code, and the like, and any payment mode such as fingerprint payment, two-dimensional code payment, and the like may be supported.

For convenience of description, in the embodiment of the present invention, a face payment scenario is mainly taken as an example for illustration, and application scenarios of other payment modes are implemented in a similar manner and are referred to each other.

In the registration stage, the bank side can acquire the registration information of the user, and after the registration information of the user is encrypted, the registration information is stored in the computing node for matching use in the payment stage. The registration information of the user may include a payment account (such as a bank account) of the user and a second payment parameter corresponding to the payment account. The second payment parameters may include second face information of the user collected at the bank side during the registration process, and/or a second payment password, corresponding to the first payment parameters.

The bank side can perform feature calculation on a second payment parameter corresponding to the payment account registered by the user to obtain a second payment data ciphertext, and store the second payment data ciphertext in the computing node for matching with the first payment data ciphertext of the user in a payment stage.

In the embodiment of the invention, the specific process of obtaining the second payment data ciphertext by the bank side performing characteristic calculation on the second payment parameter comprises the following steps: firstly, extracting features of the second payment parameters according to a preset algorithm of a bank side to obtain feature parameters corresponding to the second payment parameters, and performing decentralized processing on the feature parameters to obtain second payment data ciphertext.

Taking face payment as an example, performing feature extraction on the second payment parameters according to a preset algorithm, namely performing feature extraction on second face information of the user to obtain face feature parameters corresponding to the second face information, and performing decentralized processing on the face feature parameters to obtain second payment data ciphertext.

In the embodiment of the invention, the decentralized processing is used for encrypting and decentralized storing the data so as to reduce the risk of leakage when all the data are stored in the same service node.

Specifically, the computing node of the embodiment of the present invention may include at least two service nodes for storing different ciphertext fragments of the same data. For example, after feature extraction is performed on the second payment parameter of the user by the bank side to obtain a feature parameter corresponding to the second payment parameter, the second payment parameter may be subjected to decentralized processing to achieve encryption, and the second payment parameter ciphertext fragment obtained after decentralized is stored in a decentralized manner, where the ciphertext fragment is x1 and x2, x1 is stored in the service node S1 of the computing node, and x2 is stored in the service node S2 of the computing node. Therefore, only x1 in S1 and x2 in S2 are obtained simultaneously, the second payment parameter ciphertext can be obtained, the difficulty of data acquisition is increased, and the safety of a user bank account can be improved.

In a specific application, the preset algorithm adopted by the bank side may be different versions of the feature extraction algorithm provided by different algorithm providers. For example, the preset algorithm used by bank a and bank B is F1.0, the preset algorithm used by bank C is S1.5, and the preset algorithm used by bank D is Y2.1. Wherein F1.0 is a feature extraction algorithm provided by algorithm provider F with a version of 1.0. S1.5 provides the algorithm provider S with a version of the feature extraction algorithm of 1.5. Y2.1 is a feature extraction algorithm version 2.0 provided by algorithm provider Y.

In order to enable the payment method of the embodiment of the invention to be applicable to feature extraction algorithms of different versions of different banks, the embodiment of the invention can set a preset algorithm set on the Unionpay side, wherein the preset algorithm set can comprise preset algorithms of each bank. For example, the preset algorithm set may include preset algorithms F1.0, S1.5, Y2.1, and the like.

In this way, the Unionpay side can perform feature extraction on the first payment parameters of the user acquired in real time according to each preset algorithm in the preset algorithm set under the condition that the Unionpay side receives the payment request of the user, so as to obtain the first payment data ciphertext corresponding to each preset algorithm. Assuming that the preset algorithm set is { F1.0, S1.5, Y2.1}, the feature extraction can be performed on the first payment parameters according to F1.0, S1.5, and Y2.1, so as to obtain three first payment data ciphertexts corresponding to the preset algorithms F1.0, S1.5, and Y2.1, and the three payment data ciphertexts are assumed to be respectively recorded as the first payment data ciphertexts F1.0, the first payment data ciphertexts S1.5, and the first payment data ciphertexts Y2.1, and the parallel side sends the three payment data ciphertexts to the computing node for matching.

In an optional embodiment of the present invention, the calculating the characteristics of the first payment parameter according to each preset algorithm in the preset algorithm set may specifically include:

step S11, extracting the characteristics of the first payment parameters according to each preset algorithm in a preset algorithm set to obtain characteristic parameters corresponding to each preset algorithm;

and step S12, carrying out dispersion processing on the characteristic parameters corresponding to the preset algorithms to obtain first payment data ciphertext corresponding to the preset algorithms.

It can be understood that the process of performing feature calculation on the first payment parameter to obtain the first payment data ciphertext is similar to the process of performing feature calculation on the second payment parameter to obtain the second payment data ciphertext, and will not be described herein.

In an alternative embodiment of the present invention, the method may further include: and carrying out secondary encryption on the first payment data ciphertext.

Optionally, the ciphertext fragment may be encrypted for a second time and then sent to each node for storage.

It can be understood that, in the foregoing method for slicing a ciphertext to obtain two ciphertext slices, and storing the two ciphertext slices in two service nodes respectively, only as an application example of the present invention, in practical application, the number of ciphertext slices obtained by slicing the ciphertext and the number of service nodes for storing the ciphertext slices in the embodiment of the present invention are not limited.

In summary, after receiving a payment request of a user, the embodiment of the invention can perform feature calculation on the first payment parameters in the payment request according to each preset algorithm in the preset algorithm set to obtain the first payment data ciphertext, and then send the first payment data ciphertext to the computing node for matching, so that the first payment parameters of the user are always transmitted in the form of ciphertext in the payment process, the risk that the first payment parameters of the user, such as the first face feature or the first payment password, are revealed in the payment process can be reduced, and the security of a bank account of the user can be improved.

Referring to fig. 2, a flowchart illustrating steps of another payment method embodiment of the present invention may specifically include the steps of:

step 201, receiving a payment verification request, wherein the payment verification request carries a first payment data ciphertext obtained by extracting features of a first payment parameter according to each preset algorithm in a preset algorithm set;

step 202, in a preset registration set, matching first payment data ciphertext corresponding to each preset algorithm; the preset registration set comprises a payment account of the user and a second payment data ciphertext corresponding to the payment account of the user; the second payment data ciphertext is obtained by performing feature calculation on a second payment parameter corresponding to a payment account of the user according to at least one preset algorithm in the preset algorithm set;

Step 203, if it is determined that the target user exists in the preset registry, responding to the payment verification request, and returning to a payment account of the target user; and the second payment data ciphertext of the target user is matched with the first payment data ciphertext carried in the payment verification request.

The payment accounts registered by the user have a one-to-one correspondence with the second payment parameters, and the deduction process of the payment accounts can be completed through the payment accounts of the user and the second payment parameters corresponding to the payment accounts.

It should be noted that, the payment accounts of the users in the preset registration set may be stored in different service nodes after feature extraction and secondary encryption.

In the embodiment of the invention, in a payment stage, a merchant side can respond to a payment request of a user, collect a first payment parameter of the user and forward the payment request carrying the first payment parameter to a Unionpay side; the Unionpay side performs characteristic calculation on the first payment parameters to obtain a first payment data ciphertext, and then sends a verification request carrying the first payment data ciphertext to a computing node; after receiving the payment verification request, the computing node matches the first payment data ciphertext corresponding to each preset algorithm in a preset registration set, and if the matched first payment data ciphertext and second payment data ciphertext exist, the payment verification request is determined to pass verification.

If the payment verification request passes the verification, a payment account of the target user can be returned to the Unionpay side in response to the payment verification request, so that the Unionpay side can execute the payment operation according to the payment account.

In an optional embodiment of the invention, the first payment data ciphertext is a secondarily encrypted ciphertext; the first payment parameters may specifically include: first face information, and/or a first payment password;

the second payment data ciphertext is obtained by performing feature extraction and secondary encryption on a second payment parameter corresponding to a payment account of the user; the second payment parameters may specifically include: second face information, and/or a second payment password.

In the embodiment of the invention, in a payment stage, the Unionpay side performs feature extraction on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain feature parameters corresponding to each preset algorithm, then performs decentralized processing on the feature parameters corresponding to each preset algorithm to obtain first payment data ciphertext corresponding to each preset algorithm, wherein the first payment ciphertext comprises a plurality of ciphertext fragments, and the ciphertext fragments are stored in a plurality of service nodes of a computing node in a decentralized manner, and optionally, in the process of performing decentralized processing on the feature parameters corresponding to each preset algorithm, the second encryption operation can be performed on each feature parameter.

In the registration stage, the bank side can perform feature extraction on the second payment parameters according to at least one preset algorithm in the preset algorithm set to obtain feature parameters corresponding to the second payment parameters, and then perform decentralized processing on the feature parameters to obtain second payment data ciphertext. Also, in the course of performing the dispersion processing on the characteristic parameter corresponding to the second payment parameter, the secondary encryption operation may be performed on the characteristic parameter.

It will be appreciated that the encryption algorithm employed by the encryption operation is not limited by the embodiments of the present invention.

In an optional embodiment of the present invention, before the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set, the method may further include:

step S21, decrypting the first payment data ciphertext corresponding to each preset algorithm once to obtain an intermediate ciphertext of the first payment data corresponding to each preset algorithm; and

step S22, decrypting the second payment data ciphertext in the preset registration set for one time to obtain an intermediate ciphertext of the second payment data;

the matching the first payment data ciphertext corresponding to each preset algorithm in the preset registration set may specifically include: and in a preset registration set, matching the intermediate ciphertext of the second payment data with the intermediate ciphertext of the first payment data corresponding to each preset algorithm.

In the embodiment of the invention, the first payment data ciphertext and the second payment data ciphertext can be obtained through secondary encryption, so that before the first payment data ciphertext and the second payment data ciphertext are matched, the first payment data ciphertext and the second payment data ciphertext can be decrypted once respectively to obtain the intermediate ciphertext of the first payment data and the intermediate ciphertext of the second payment data, and then the intermediate ciphertext of the first payment data and the intermediate ciphertext of the second payment data are matched. Therefore, in the process of payment verification, the first payment data and the second payment data always exist in the form of ciphertext, and the condition that the plaintext of the first payment data and the plaintext of the second payment data are leaked can be prevented.

In an alternative embodiment of the present invention, the first payment parameter includes first face information, and a first payment password; the matching the first payment data ciphertext corresponding to each preset algorithm in the preset registration set may specifically include:

step S31, determining a candidate user set in a preset registered set according to the first payment password; a second payment password corresponding to the payment account of each candidate user in the candidate user set is matched with the first payment password;

And step S32, in the candidate user set, matching the first payment data ciphertext corresponding to each preset algorithm.

In the payment verification process, in the preset registration set, for the second payment data ciphertexts containing N users, each of the first payment data ciphertexts corresponding to each preset algorithm needs to be matched with the N second payment data ciphertexts respectively. For the case that the first payment parameter is the first face information, the first face feature ciphertext and the second face feature ciphertext need to be matched, because the face features usually contain a large amount of data information, if the value of N is larger, the first face feature ciphertext corresponding to each preset algorithm is matched with the N second face feature ciphertexts one by one, so that a large amount of time and calculation resources need to be consumed, and the matching efficiency is lower.

In the face payment stage, the embodiment of the invention can acquire the first payment parameters of the user in real time through the merchant side, wherein the first payment parameters comprise the first face information of the user and the first payment password of the user, and send a face payment request carrying the first payment parameters to the Unionpay side. It should be noted that, the first payment password input by the user at the merchant side should be matched with the payment account registered by the user, that is, the first payment password should be the same as the second payment password, otherwise, a prompt message of wrong payment password may be returned.

In order to improve the matching efficiency, the Unionpay side may first determine a candidate user set in a preset registration set according to a first payment password carried in a face payment request when receiving the face payment request triggered by a user at a merchant side, and then match first payment data ciphertext corresponding to each preset algorithm in the candidate user set. The second payment password corresponding to the payment account of each candidate user in the candidate user set is matched with the first payment password, namely, the candidate users are screened out from the preset registration set, the payment accounts of the candidate users are different, but the second payment password corresponding to the payment account is the same and is matched with the first payment password input by the user triggering the face payment request. Since the payment passwords are usually 6-number combinations and contain less data information, the second payment password matched with the first payment password can be quickly screened out from the preset registration set, and a candidate user set is obtained. And then matching the first payment data ciphertext corresponding to each preset algorithm in the candidate user set. And if the candidate user set contains M candidate users, the value of M is far smaller than the value of N, and the first face feature ciphertext corresponding to each preset algorithm is matched in the M second face feature ciphers, so that the matching time can be greatly shortened, the computing resources can be saved, and the matching efficiency can be further improved.

In addition, the embodiment of the invention can also play a role in verifying the payment password before face payment by collecting the first payment password of the user at the merchant side and matching the first payment password, so that the face characteristics of the user can be prevented from being revealed and counterfeited, and the condition of stealing the payment account of the user can be avoided.

In an alternative embodiment of the present invention, the method may further include:

step S41, adding a version updated algorithm corresponding to the preset algorithm in the preset algorithm set;

step S42, performing feature calculation on the second payment parameters of the user according to the version updated algorithm to obtain a version updated second payment data ciphertext;

and step S43, adding the updated second payment data ciphertext into the preset registration set.

When the specific matching is performed, as each algorithm has a corresponding identifier, only the first payment data ciphertext is required to be matched with the information in the registered set identified by the corresponding algorithm.

In a specific application, after the algorithm provider makes a version update of the feature extraction algorithm, there may be the following cases: assuming that both bank a and bank B employ a preset algorithm with version 1.0 provided by the algorithm provider F, denoted as F1.0, after the algorithm provider F issues the version updated algorithm F1.1, bank a has updated its preset algorithm F1.0 to F1.1, but bank B still uses F1.0.

In order to avoid the situation that data errors occur due to inconsistent versions of preset algorithms in the process of updating a preset registration set, in the embodiment of the invention, under the condition that an algorithm provider issues a version updated algorithm (such as F1.1) to a preset algorithm (such as F1.0), the version updated algorithm corresponding to the preset algorithm is added in the preset algorithm set, that is, the preset algorithm (F1.0) and the version updated algorithm (F1.1) which are both existed in the preset algorithm set, and according to the version updated algorithm, a characteristic calculation is performed on a second payment parameter of a user to obtain a version updated second payment data ciphertext, and the version updated second payment data ciphertext is added in the preset registration set, that is, the second payment data ciphertext obtained by performing characteristic calculation on the second payment parameter of the user according to the version updated preset algorithm (F1.0) is simultaneously existed in the preset registration set, and the second payment data ciphertext obtained by calculating the second payment parameter of the user according to the version updated algorithm (F1.1).

In the case that the Unionpay side responds to the payment request of the user, the Unionpay side can calculate the first payment data carried in the payment request according to each preset algorithm (comprising a preset algorithm before version update and a preset algorithm after version update) in the preset algorithm set so as to obtain a first payment data ciphertext corresponding to each preset algorithm, so that two different versions (F1.0 and F1.1) of the first payment data ciphertext can exist for the first payment data of the user.

Thus, in the process of matching the first payment data ciphertext of two different versions (F1.0 and F1.1) in the preset registration set, for the user of bank a, the first payment data ciphertext of version F1.1 may be matched to the second payment data ciphertext calculated according to the preset algorithm F1.1, and for the user of bank B, the first payment data ciphertext of version F1.0 may be matched to the second payment data ciphertext calculated according to the preset algorithm F1.0, after version update of the preset algorithm is completed on all bank sides, that is, after updating the preset algorithm F1.0 to F1.1 on all bank sides, and the second payment parameters of each user in the preset registration set have the second payment data ciphertext calculated according to F1.1, the preset algorithm (e.g., F1.0) before version update may be deleted in the preset algorithm set, and the second payment data ciphertext calculated according to the preset algorithm (e.g., F1.0) before version update may be deleted in the preset registration set, so that the update process of the preset algorithm may be completed.

In an optional embodiment of the present invention, version information of the preset algorithm corresponding to the registration information ciphertext is recorded in the preset registration set; the matching the first payment data ciphertext corresponding to each preset algorithm in the preset registration set may specifically include:

Step S51, in a preset registration set, matching version information of a preset algorithm corresponding to the first payment data ciphertext with version information of a preset algorithm corresponding to the second payment data ciphertext to obtain a candidate user set with version matching;

and step S52, matching the first payment data ciphertext corresponding to each preset algorithm in the candidate user set matched with the version.

In the embodiment of the invention, under the condition that the algorithm provider issues the version updated algorithm, a version update transition period can be provided for each bank side using the preset algorithm of the same algorithm provider, and in the transition period, the Unionpay side can simultaneously store the second payment data ciphertext calculated according to the preset algorithm before version update and the second payment data ciphertext calculated according to the version updated algorithm.

During the transition period, the Unionpay side calculates the first payment data carried in the payment request according to each preset algorithm in the preset algorithm set, and the obtained first payment data ciphertext corresponding to each preset algorithm may have two different versions (such as F1.0 and F1.1). Therefore, in order to avoid errors in the data matching process, the embodiment of the invention can record the version information of the preset algorithm corresponding to the registration information ciphertext when the registration information ciphertext of the user is stored. In this way, in the process of matching the first payment data ciphertext corresponding to each preset algorithm in the preset registration set, the version information of the preset algorithm corresponding to the first payment data ciphertext and the version information of the preset algorithm corresponding to the second payment data ciphertext can be matched first, a candidate user set with matched versions is obtained, and then the first payment data ciphertext is matched in the candidate user set with matched versions. The method can match the first payment parameters corresponding to the first payment data ciphertext with the second payment parameters corresponding to the second payment data ciphertext, and can match the version information of the preset algorithm corresponding to the first payment data ciphertext with the version information of the preset algorithm corresponding to the registration information ciphertext so as to improve the accuracy of a matching result.

In an optional embodiment of the present invention, the adding, in the preset algorithm set, a version updated algorithm corresponding to the preset algorithm may specifically include:

step S61, performing signature verification on the algorithm after updating the version to be added;

step S62, adding a version updated algorithm passing the signature verification in the preset algorithm set.

In order to further improve the safety of a user account and prevent the situation that the preset algorithm is tampered to cause the account information of the user to be leaked, in the embodiment of the invention, in the process of updating the version of the preset algorithm, the version updated algorithm is subjected to signature verification, and the version updated algorithm which passes the signature verification is only added in the preset algorithm set.

Specifically, the algorithm provider can sign the updated version algorithm by using the private key of the key pair, then publish the public key, and after the updated version algorithm is obtained by the bank side, verify the signature of the updated version algorithm by the public key so as to ensure the validity and validity of the source of the updated version algorithm and prevent malicious tampering.

In summary, after receiving a payment request of a user, the embodiment of the invention performs feature calculation on first payment parameters in the payment request according to a plurality of algorithms in a preset algorithm set to obtain a first payment data ciphertext, and then sends the first payment data ciphertext to a computing node for matching, so that the first payment parameters of the user are always transmitted in the form of ciphertext in the payment process, the risk that the first payment parameters of the user, such as a first face feature or a first payment password, are revealed in the payment process can be reduced, and the security of a bank account of the user can be improved.

In addition, the second payment parameters corresponding to the payment account of the user are also stored in the form of second payment data ciphertext, and in the process of matching the first payment data ciphertext with the second payment data ciphertext in the process of payment, the second payment parameters are also matched in the form of ciphertext. Therefore, the risk that the second payment parameters of the user are leaked at the bank side can be reduced, the situation that the second payment parameters of the user are stored in a server in a plaintext form for a long time and are leaked can be avoided, and the safety of the bank account of the user can be further improved.

Furthermore, the second payment data ciphertext in the preset registration set may be obtained by performing feature calculation on the second payment parameter of the user according to at least one preset algorithm in the preset algorithm set, that is, the second payment data ciphertext in the preset registration set may correspond to a different preset algorithm. In order to match second payment data ciphertexts of different preset algorithms in the payment process, the embodiment of the invention performs characteristic calculation on the first payment parameters carried in the payment request according to each preset algorithm in the preset algorithm set to obtain first payment data ciphertexts corresponding to each preset algorithm, and in the preset registration set, the first payment data ciphertexts corresponding to each preset algorithm are matched one by one to determine a target user. Therefore, through the embodiment of the invention, different bank sides can adopt different preset algorithms to perform feature calculation on the second payment parameters of the user, and the diversified requirements of different banks on the feature extraction algorithm can be met.

It should be noted that, for simplicity of description, the method embodiments are shown as a series of acts, but it should be understood by those skilled in the art that the embodiments are not limited by the order of acts, as some steps may occur in other orders or concurrently in accordance with the embodiments. Further, those skilled in the art will appreciate that the embodiments described in the specification are presently preferred embodiments, and that the acts are not necessarily required by the embodiments of the invention.

Device embodiment

Referring to fig. 3, there is shown a block diagram of an embodiment of a payment device of the present invention, which may include:

the first receiving module 301 is configured to receive a payment request of a user, where the payment request includes a first payment parameter;

the feature calculation module 302 is configured to perform feature calculation on the first payment parameter according to each preset algorithm in the preset algorithm set, so as to obtain a first payment data ciphertext;

and the first sending module 303 is configured to send the first payment data ciphertext to a computing node for matching.

Optionally, the feature calculation module 302 may specifically include:

The feature extraction sub-module is used for carrying out feature extraction on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain feature parameters corresponding to each preset algorithm;

and the dispersion processing sub-module is used for carrying out dispersion processing on the characteristic parameters corresponding to the preset algorithms to obtain first payment data ciphertext corresponding to the preset algorithms.

Optionally, the apparatus may further include:

and the encryption module is used for carrying out secondary encryption on the first payment data ciphertext.

Optionally, the first payment parameter may specifically include: first face information, and/or a first payment password.

Referring to fig. 4, there is shown a block diagram of another embodiment of a payment device of the present invention, which may include in particular:

a second receiving module 401, configured to receive a payment verification request, where the payment verification request carries a first payment data ciphertext obtained by extracting features of a first payment parameter according to each preset algorithm in a preset algorithm set;

a matching module 402, configured to match, in a preset registration set, first payment data ciphertexts corresponding to each preset algorithm; the preset registration set comprises a payment account of the user and a second payment data ciphertext corresponding to the payment account of the user; the second payment data ciphertext is obtained by performing feature calculation on a second payment parameter corresponding to a payment account of the user according to at least one preset algorithm in the preset algorithm set;

A second sending module 403, configured to, if it is determined that the target user exists in the preset registry, respond to the payment verification request, and return a payment account of the target user; and the second payment data ciphertext of the target user is matched with the first payment data ciphertext carried in the payment verification request.

Optionally, the first payment data ciphertext is a ciphertext after secondary encryption; the first payment parameters include: first face information, and/or a first payment password;

the second payment data ciphertext is obtained by performing feature extraction and secondary encryption on a second payment parameter corresponding to a payment account of the user; the second payment parameters include: second face information, and/or a second payment password.

Optionally, the apparatus may further include:

the first decryption module is used for decrypting the first payment data ciphertext corresponding to each preset algorithm once to obtain an intermediate ciphertext of the first payment data corresponding to each preset algorithm; and

the second decryption module is used for decrypting the second payment data ciphertext in the preset registration set once to obtain an intermediate ciphertext of the second payment data;

The matching module is specifically used for:

and in a preset registration set, matching the intermediate ciphertext of the second payment data with the intermediate ciphertext of the first payment data corresponding to each preset algorithm.

Optionally, the first payment parameter includes first face information and a first payment password; the matching module 402 may specifically include:

the candidate determining submodule is used for determining a candidate user set in a preset registered set according to the first payment password; a second payment password corresponding to the payment account of each candidate user in the candidate user set is matched with the first payment password;

and the first matching sub-module is used for matching the first payment data ciphertext corresponding to each preset algorithm in the candidate user set.

Optionally, the apparatus may further include:

the first adding module is used for adding a version updated algorithm corresponding to the preset algorithm in the preset algorithm set;

the updating calculation module is used for carrying out characteristic calculation on the second payment parameters of the user according to the version updated algorithm so as to obtain a version updated second payment data ciphertext;

and the second adding module is used for adding the updated version second payment data ciphertext in the preset registration set.

Optionally, the first adding module may specifically include:

the verification sub-module is used for carrying out signature verification on the algorithm after updating the version to be added;

and the adding sub-module is used for adding a version updated algorithm passing the signature verification in the preset algorithm set.

Optionally, version information of a preset algorithm corresponding to the second payment data ciphertext is recorded in the preset registration set; the matching module 402 may specifically include:

the second matching sub-module is used for matching version information of the preset algorithm corresponding to the first payment data ciphertext with version information of the preset algorithm corresponding to the second payment data ciphertext in a preset registration set to obtain a candidate user set with matched versions;

and the third matching sub-module is used for matching the first payment data ciphertext corresponding to each preset algorithm in the candidate user set matched with the version.

For the device embodiments, since they are substantially similar to the method embodiments, the description is relatively simple, and reference is made to the description of the method embodiments for relevant points.

In this specification, each embodiment is described in a progressive manner, and each embodiment is mainly described by differences from other embodiments, and identical and similar parts between the embodiments are all enough to be referred to each other.

The specific manner in which the various modules perform the operations in the apparatus of the above embodiments have been described in detail in connection with the embodiments of the method, and will not be described in detail herein.

An embodiment of the invention provides a device for payment, comprising a memory, and one or more programs, wherein the one or more programs are stored in the memory and configured to be executed by one or more processors, the one or more programs comprising instructions for: receiving a payment request of a user, wherein the payment request comprises a first payment parameter; performing feature calculation on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain a first payment data ciphertext; and sending the first payment data ciphertext to a computing node for matching.

Fig. 5 is a block diagram illustrating an apparatus 800 for face payment, according to an example embodiment. For example, apparatus 800 may be a mobile phone, computer, digital broadcast terminal, messaging device, game console, tablet device, medical device, exercise device, personal digital assistant, or the like.

Referring to fig. 5, apparatus 800 may include one or more of the following components: a processing component 802, a memory 804, a power component 806, a multimedia component 808, an audio component 810, an input/output (I/O) interface 812, a sensor component 814, and a communication component 816.

The processing component 802 generally controls overall operation of the apparatus 800, such as operations associated with display, telephone calls, data communications, camera operations, and recording operations. Processing element 802 may include one or more processors 820 to execute instructions to perform all or part of the steps of the methods described above. Further, the processing component 802 can include one or more modules that facilitate interactions between the processing component 802 and other components. For example, the processing component 802 can include a multimedia module to facilitate interaction between the multimedia component 808 and the processing component 802.

The memory 804 is configured to store various types of data to support operations at the device 800. Examples of such data include instructions for any application or method operating on the device 800, contact data, phonebook data, messages, pictures, videos, and the like. The memory 804 may be implemented by any type or combination of volatile or nonvolatile memory devices such as Static Random Access Memory (SRAM), electrically erasable programmable read-only memory (EEPROM), erasable programmable read-only memory (EPROM), programmable read-only memory (PROM), read-only memory (ROM), magnetic memory, flash memory, magnetic or optical disk.

The power supply component 806 provides power to the various components of the device 800. The power components 806 may include a power management system, one or more power sources, and other components associated with generating, managing, and distributing power for the device 800.

The multimedia component 808 includes a screen between the device 800 and the user that provides an output interface. In some embodiments, the screen may include a Liquid Crystal Display (LCD) and a Touch Panel (TP). If the screen includes a touch panel, the screen may be implemented as a touch screen to receive input signals from a user. The touch panel includes one or more touch sensors to sense touches, swipes, and gestures on the touch panel. The touch sensor may sense not only the boundary of a touch or slide action, but also the duration and pressure associated with the touch or slide operation. In some embodiments, the multimedia component 808 includes a front camera and/or a rear camera. The front camera and/or the rear camera may receive external multimedia data when the device 800 is in an operational mode, such as a shooting mode or a video mode. Each front camera and rear camera may be a fixed optical lens system or have focal length and optical zoom capabilities.

The audio component 810 is configured to output and/or input audio signals. For example, the audio component 810 includes a Microphone (MIC) configured to receive external audio signals when the device 800 is in an operational mode, such as a call mode, a recording mode, and a voice information processing mode. The received audio signals may be further stored in the memory 804 or transmitted via the communication component 816. In some embodiments, audio component 810 further includes a speaker for outputting audio signals.

The I/O interface 812 provides an interface between the processing component 802 and peripheral interface modules, which may be a keyboard, click wheel, buttons, etc. These buttons may include, but are not limited to: homepage button, volume button, start button, and lock button.

The sensor assembly 814 includes one or more sensors for providing status assessment of various aspects of the apparatus 800. For example, the sensor assembly 814 may detect an on/off state of the device 800, a relative positioning of the components, such as a display and keypad of the apparatus 800, the sensor assembly 814 may also detect a change in position of the apparatus 800 or one component of the apparatus 800, the presence or absence of user contact with the apparatus 800, an orientation or acceleration/deceleration of the apparatus 800, and a change in temperature of the apparatus 800. The sensor assembly 814 may include a proximity sensor configured to detect the presence of nearby objects without any physical contact. The sensor assembly 814 may also include a light sensor, such as a CMOS or CCD image sensor, for use in imaging applications. In some embodiments, the sensor assembly 814 may also include an acceleration sensor, a gyroscopic sensor, a magnetic sensor, a pressure sensor, or a temperature sensor.

The communication component 816 is configured to facilitate communication between the apparatus 800 and other devices, either in a wired or wireless manner. The device 800 may access a wireless network based on a communication standard, such as WiFi,2G or 3G, or a combination thereof. In one exemplary embodiment, the communication component 816 receives broadcast signals or broadcast related information from an external broadcast management system via a broadcast channel. In one exemplary embodiment, the communication component 816 further includes a Near Field Communication (NFC) module to facilitate short range communications. For example, the NFC module may be implemented based on radio frequency information processing (RFID) technology, infrared data association (IrDA) technology, ultra Wideband (UWB) technology, bluetooth (BT) technology, and other technologies.

In an exemplary embodiment, the apparatus 800 may be implemented by one or more Application Specific Integrated Circuits (ASICs), digital Signal Processors (DSPs), digital Signal Processing Devices (DSPDs), programmable Logic Devices (PLDs), field Programmable Gate Arrays (FPGAs), controllers, microcontrollers, microprocessors, or other electronic elements for executing the methods described above.

In an exemplary embodiment, a non-transitory computer readable storage medium is also provided, such as memory 804 including instructions executable by processor 820 of apparatus 800 to perform the above-described method. For example, the non-transitory computer readable storage medium may be ROM, random Access Memory (RAM), CD-ROM, magnetic tape, floppy disk, optical data storage device, etc.

Fig. 6 is a schematic diagram of a server in some embodiments of the invention. The server 1900 may vary considerably in configuration or performance and may include one or more central processing units (central processing units, CPU) 1922 (e.g., one or more processors) and memory 1932, one or more storage media 1930 (e.g., one or more mass storage devices) that store applications 1942 or data 1944. Wherein the memory 1932 and storage medium 1930 may be transitory or persistent. The program stored in the storage medium 1930 may include one or more modules (not shown), each of which may include a series of instruction operations on a server. Still further, a central processor 1922 may be provided in communication with a storage medium 1930 to execute a series of instruction operations in the storage medium 1930 on the server 1900.

The server 1900 may also include one or more power supplies 1926, one or more wired or wireless network interfaces 1950, one or more input/output interfaces 1958, one or more keyboards 1956, and/or one or more operating systems 1941, such as Windows Server, mac OS XTM, unixTM, linuxTM, freeBSDTM, and the like.

A non-transitory computer readable storage medium, which when executed by a processor of an apparatus (server or terminal) enables the apparatus to perform the face payment method shown in fig. 1.

A non-transitory computer readable storage medium, which when executed by a processor of an apparatus (server or terminal), causes the apparatus to perform a face payment method, the method comprising: receiving a payment request of a user, wherein the payment request comprises a first payment parameter; performing feature calculation on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain a first payment data ciphertext; and sending the first payment data ciphertext to a computing node for matching.

The embodiment of the invention discloses A1 and a payment method, which comprises the following steps:

and sending the first payment data ciphertext to a computing node for matching.

A2, according to the method of A1, the performing feature calculation on the first payment parameter according to each preset algorithm in the preset algorithm set to obtain a first payment data ciphertext includes:

Extracting the characteristics of the first payment parameters according to each preset algorithm in a preset algorithm set to obtain characteristic parameters corresponding to each preset algorithm;

and carrying out decentralized processing on the characteristic parameters corresponding to the preset algorithms to obtain first payment data ciphertext corresponding to the preset algorithms.

A3, the method of A1 or A2, the method further comprising:

and carrying out secondary encryption on the first payment data ciphertext.

A4, the method of A1, wherein the first payment parameters include: first face information, and/or a first payment password.

The embodiment of the invention discloses a B5 payment method, which comprises the following steps:

B6, according to the method of B5, the first payment data ciphertext is a ciphertext after secondary encryption; the first payment parameters include: first face information, and/or a first payment password;

B7, according to the method of B6, before the first payment data ciphertext corresponding to each preset algorithm is matched in the preset registration set, the method further comprises:

decrypting the first payment data ciphertext corresponding to each preset algorithm once to obtain an intermediate ciphertext of the first payment data corresponding to each preset algorithm; and

decrypting the second payment data ciphertext in the preset registration set once to obtain an intermediate ciphertext of the second payment data;

The matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

B8, the method of B6 or B7, wherein the first payment parameters comprise first face information and a first payment password; the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

determining a candidate user set in a preset registered set according to the first payment password; a second payment password corresponding to the payment account of each candidate user in the candidate user set is matched with the first payment password;

and in the candidate user set, matching the first payment data ciphertext corresponding to each preset algorithm.

B9, the method of B5, the method further comprising:

adding a version updated algorithm corresponding to the preset algorithm in the preset algorithm set;

performing feature calculation on the second payment parameters of the user according to the version updated algorithm to obtain second payment data ciphertext after version updating;

And adding the updated second payment data ciphertext into the preset registration set.

B10, adding a version updated algorithm corresponding to the preset algorithm in the preset algorithm set according to the method of B9, wherein the method comprises the following steps:

performing signature verification on the algorithm after updating the version to be added;

and adding a version updated algorithm passing the signature verification in the preset algorithm set.

B11, according to the method of B5, version information of a preset algorithm corresponding to the second payment data ciphertext is recorded in the preset registration set; the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

in a preset registration set, matching version information of a preset algorithm corresponding to the first payment data ciphertext with version information of a preset algorithm corresponding to the second payment data ciphertext to obtain a candidate user set with version matching;

and matching the first payment data ciphertext corresponding to each preset algorithm in the candidate user set matched with the version.

The embodiment of the invention discloses C12 and a payment device, which comprises:

C13, the apparatus of C12, the feature calculation module comprising:

C14, the apparatus according to C12 or C13, the apparatus further comprising:

C15, the apparatus of C12, the first payment parameters comprising: first face information, and/or a first payment password.

The embodiment of the invention discloses a D16 and a payment device, which comprises:

D17, the device according to D16, wherein the first payment data ciphertext is a ciphertext after secondary encryption; the first payment parameters include: first face information, and/or a first payment password;

D18, the apparatus of D16, the apparatus further comprising:

the matching module is specifically used for:

D19, the apparatus of D17 or D18, the first payment parameters comprising first face information, and a first payment password; the matching module comprises:

D20, the apparatus of D16, the apparatus further comprising:

D21, the apparatus of D20, the first augmentation module comprising:

D22, according to the device of D16, the version information of the preset algorithm corresponding to the second payment data ciphertext is recorded in the preset registration set; the matching module comprises:

The embodiment of the invention discloses E23, a device for payment, which comprises a memory and one or more programs, wherein the one or more programs are stored in the memory, and are configured to be executed by one or more processors, and the one or more programs comprise instructions for:

and sending the first payment data ciphertext to a computing node for matching.

And E24, performing feature calculation on the first payment parameters according to each preset algorithm in the preset algorithm set according to the device of E23, wherein the obtained first payment data ciphertext comprises:

The method of E23 or E24, the device also configured to be executed by one or more processors the one or more programs including instructions for:

and carrying out secondary encryption on the first payment data ciphertext.

E26, the apparatus of E23, the first payment parameters comprising: first face information, and/or a first payment password.

The embodiment of the invention discloses F27, a device for payment, comprising a memory, and one or more programs, wherein the one or more programs are stored in the memory, and are configured to be executed by one or more processors, the one or more programs comprise instructions for:

F28, the device according to F27, wherein the first payment data ciphertext is a secondarily encrypted ciphertext; the first payment parameters include: first face information, and/or a first payment password;

F29 the device of F27, the device further configured to be executed by one or more processors the one or more programs comprising instructions for:

F30, the apparatus of F28 or F29, the first payment parameters including first face information, and a first payment password; the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

F31, the device of F27, the device further configured to be executed by one or more processors the one or more programs comprising instructions for:

F32, according to the apparatus of F31, adding a version updated algorithm corresponding to the preset algorithm in the preset algorithm set, including:

F33, according to the device of F27, the version information of the preset algorithm corresponding to the second payment data ciphertext is recorded in the preset registration set; the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

Embodiments of the invention disclose G34, a machine-readable medium having instructions stored thereon that, when executed by one or more processors, cause an apparatus to perform a payment method as described in one or more of A1 to A4.

Embodiments of the invention disclose H35, a machine-readable medium having instructions stored thereon that, when executed by one or more processors, cause an apparatus to perform a payment method as described in one or more of B5-B11.

Other embodiments of the invention will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This invention is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the invention and including such departures from the present disclosure as come within known or customary practice within the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the invention being indicated by the following claims.

It is to be understood that the invention is not limited to the precise arrangements and instrumentalities shown in the drawings, which have been described above, and that various modifications and changes may be effected without departing from the scope thereof. The scope of the invention is limited only by the appended claims.

The foregoing description of the preferred embodiments of the invention is not intended to limit the invention to the precise form disclosed, and any such modifications, equivalents, and alternatives falling within the spirit and scope of the invention are intended to be included within the scope of the invention.

The foregoing has outlined some of the more detailed description of a payment method, a payment device and a payment device according to the present invention, wherein specific examples are provided herein to illustrate the principles and embodiments of the present invention, and wherein the above examples are provided to assist in the understanding of the method and core concepts thereof; meanwhile, as those skilled in the art will have variations in the specific embodiments and application scope in accordance with the ideas of the present invention, the present description should not be construed as limiting the present invention in view of the above.

Claims

1. A payment method, characterized by being applied to a computing node, said computing node comprising at least two service nodes; the method comprises the following steps:

receiving a payment verification request, wherein the payment verification request carries a first payment data ciphertext obtained by performing feature extraction and decentralized processing on a first payment parameter according to each preset algorithm in a preset algorithm set; the decentralized processing is used for encrypting and decentralized storing the data; the first payment data ciphertext comprises a plurality of ciphertext fragments which are stored in different service nodes of the computing node in a scattered manner; the first payment data ciphertext is a ciphertext after secondary encryption;

Matching the first payment data ciphertext corresponding to each preset algorithm in a preset registration set; the preset registration set comprises a payment account of the user and a second payment data ciphertext corresponding to the payment account of the user; the second payment data ciphertext is obtained by performing feature calculation on a second payment parameter corresponding to a payment account of the user according to at least one preset algorithm in the preset algorithm set; the second payment data ciphertext is obtained by performing feature extraction and secondary encryption on a second payment parameter corresponding to a payment account of the user;

if the target user exists in the preset registration set, responding to the payment verification request, and returning to a payment account of the target user; the second payment data ciphertext of the target user is matched with the first payment data ciphertext carried in the payment verification request;

before the first payment data ciphertext corresponding to each preset algorithm is matched in the preset registration set, the method further comprises the steps of:

2. The method of claim 1, wherein the first payment parameters comprise: first face information, and/or a first payment password;

the second payment parameters include: second face information, and/or a second payment password.

3. The method according to claim 2, wherein the matching the first payment data ciphertext corresponding to each preset algorithm in the preset registry includes:

4. The method according to claim 1, wherein the method further comprises:

5. The method of claim 4, wherein adding a version updated algorithm corresponding to the preset algorithm in the preset algorithm set comprises:

6. The method according to claim 1, wherein version information of the second payment data ciphertext corresponding to a preset algorithm is recorded in the preset registry; the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

7. A payment method, applied to a Unionpay side, the method comprising:

performing decentralized processing on the characteristic parameters corresponding to the preset algorithms to obtain first payment data ciphertext corresponding to the preset algorithms; the decentralized processing is used for encrypting and decentralized storing the data; the first payment data ciphertext comprises a plurality of ciphertext fragments which are stored in different service nodes in a scattered manner;

performing secondary encryption on the first payment data ciphertext;

sending a payment verification request to a computing node, wherein the payment verification request carries the first payment data ciphertext so that the computing node executes the payment method according to any one of claims 1 to 6.

8. The method of claim 7, wherein the first payment parameters comprise: first face information, and/or a first payment password.

9. A payment device, characterized by being applied to a computing node comprising at least two service nodes; the device comprises:

the second receiving module is used for receiving a payment verification request, wherein the payment verification request carries a first payment data ciphertext obtained by carrying out feature extraction and decentralized processing on the first payment parameters according to each preset algorithm in a preset algorithm set; the decentralized processing is used for encrypting and decentralized storing the data; the first payment data ciphertext comprises a plurality of ciphertext fragments which are stored in different service nodes of the computing node in a scattered manner; the first payment data ciphertext is a ciphertext after secondary encryption;

the matching module is used for matching the first payment data ciphertext corresponding to each preset algorithm in the preset registration set; the preset registration set comprises a payment account of the user and a second payment data ciphertext corresponding to the payment account of the user; the second payment data ciphertext is obtained by performing feature calculation on a second payment parameter corresponding to a payment account of the user according to at least one preset algorithm in the preset algorithm set; the second payment data ciphertext is obtained by performing feature extraction and secondary encryption on a second payment parameter corresponding to a payment account of the user;

The second sending module is used for responding to the payment verification request and returning a payment account of the target user if the target user exists in the preset registration set; the second payment data ciphertext of the target user is matched with the first payment data ciphertext carried in the payment verification request;

the apparatus further comprises:

the matching module is specifically used for:

10. The apparatus of claim 9, wherein the first payment parameters comprise: first face information, and/or a first payment password;

11. The apparatus of claim 10, wherein the matching module comprises:

12. The apparatus of claim 9, wherein the apparatus further comprises:

13. The apparatus of claim 12, wherein the first augmentation module comprises:

14. The apparatus of claim 9, wherein the preset registry has version information of the second payment data ciphertext corresponding to a preset algorithm recorded therein; the matching module comprises:

15. A payment device for use on a Unionpay side, the device comprising:

a feature computation module, comprising: the feature extraction sub-module is used for carrying out feature extraction on the first payment parameters according to each preset algorithm in a preset algorithm set to obtain feature parameters corresponding to each preset algorithm; the dispersion processing sub-module is used for carrying out dispersion processing on the characteristic parameters corresponding to the preset algorithms to obtain first payment data ciphertext corresponding to the preset algorithms; the decentralized processing is used for encrypting and decentralized storing the data; the first payment data ciphertext comprises a plurality of ciphertext fragments which are stored in different service nodes in a scattered manner;

The encryption module is used for carrying out secondary encryption on the first payment data ciphertext;

the first sending module is used for sending a payment verification request to the computing node, wherein the payment verification request carries the first payment data ciphertext; a payment device as claimed in any one of claims 9 to 14 arranged on the computing node.

16. The apparatus of claim 15, wherein the first payment parameters comprise: first face information, and/or a first payment password.

17. An apparatus for payment, characterized by being applied to a computing node, the computing node comprising at least two service nodes; the device includes a memory, and one or more programs, wherein the one or more programs are stored in the memory and configured to be executed by the one or more processors, the one or more programs comprising instructions for:

before the first payment data ciphertext corresponding to each preset algorithm is matched in the preset registration set, the method further comprises the following steps:

18. The apparatus of claim 17, wherein the first payment parameters comprise: first face information, and/or a first payment password;

19. The apparatus of claim 18, wherein the matching the first payment data ciphertext corresponding to each preset algorithm in the preset registry comprises:

20. The device of claim 17, wherein the device is further configured to be executed by one or more processors the one or more programs include instructions for:

21. The apparatus of claim 20, wherein adding the version updated algorithm corresponding to the preset algorithm set comprises:

22. The apparatus of claim 17, wherein the preset registry has version information of the second payment data ciphertext corresponding to a preset algorithm recorded therein; the matching of the first payment data ciphertext corresponding to each preset algorithm in the preset registration set comprises the following steps:

23. An apparatus for payment, characterized by being applied to a Unionpay side, the apparatus comprising a memory, and one or more programs, wherein the one or more programs are stored in the memory and configured to be executed by one or more processors, the one or more programs comprising instructions for:

Performing secondary encryption on the first payment data ciphertext;

24. The apparatus of claim 23, wherein the first payment parameters comprise: first face information, and/or a first payment password.

25. A machine readable medium having instructions stored thereon, which when executed by one or more processors, cause an apparatus to perform the payment method of one or more of claims 1 to 6.

26. A machine readable medium having instructions stored thereon, which when executed by one or more processors, cause an apparatus to perform the payment method of claim 7 or 8.