CN113592489A - Secure payment method and system, storage medium and electronic device - Google Patents

Secure payment method and system, storage medium and electronic device Download PDF

Info

Publication number
CN113592489A
CN113592489A CN202110706103.XA CN202110706103A CN113592489A CN 113592489 A CN113592489 A CN 113592489A CN 202110706103 A CN202110706103 A CN 202110706103A CN 113592489 A CN113592489 A CN 113592489A
Authority
CN
China
Prior art keywords
payment
information
request
order request
consumable
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202110706103.XA
Other languages
Chinese (zh)
Other versions
CN113592489B (en
Inventor
刘新平
陶磊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Qingdao Haier Technology Co Ltd
Haier Smart Home Co Ltd
Original Assignee
Qingdao Haier Technology Co Ltd
Haier Smart Home Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Qingdao Haier Technology Co Ltd, Haier Smart Home Co Ltd filed Critical Qingdao Haier Technology Co Ltd
Priority to CN202110706103.XA priority Critical patent/CN113592489B/en
Publication of CN113592489A publication Critical patent/CN113592489A/en
Application granted granted Critical
Publication of CN113592489B publication Critical patent/CN113592489B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/06Buying, selling or leasing transactions
    • G06Q30/0601Electronic shopping [e-shopping]
    • G06Q30/0609Buyer or seller confidence or verification

Abstract

The invention discloses a secure payment method and system, a storage medium and an electronic device, wherein the method comprises the following steps: receiving an order request sent by a payment logic unit in the intelligent equipment, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment, and the payment logic unit is arranged in the intelligent equipment; under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and payment information to be paid of the intelligent equipment is determined according to the encrypted order request; the payment information is sent to the payment logic unit, the payment logic unit is instructed to initiate a non-inductive payment request carrying the payment information to the payment platform, the non-inductive payment request is used for instructing the payment platform to directly obtain consumable resources to be obtained according to the payment information, and the problems that when consumable items of the intelligent equipment are few, the user needs to perform complex selection confirmation and then purchase the consumable items are solved.

Description

Secure payment method and system, storage medium and electronic device
Technical Field
The invention relates to the field of communication, in particular to a secure payment method and system, a storage medium and an electronic device.
Background
With the rapid development of the internet, there are more and more home appliances, and accordingly, various service demands related to the home appliances are rapidly increased. Most of the existing washing machines adopt an ink box type laundry detergent in many types, and the laundry detergent can be replenished by replacing the ink box. When the laundry detergent consumables are exhausted, the user needs to go to a shopping mall or an internet mall to purchase the laundry detergent consumables of the corresponding model by himself to complete replacement. However, the conventional consumable purchasing method requires that a user automatically go to a store front or manually place a bill for purchase through a network e-commerce according to the type of the consumable. The experience is greatly reduced for the user with heavy work.
In the prior art, when the consumables of the intelligent equipment are few, the user needs to select and confirm the materials to purchase the intelligent equipment, and an effective solution is not provided.
Disclosure of Invention
The embodiment of the invention provides a safe payment method and system, a storage medium and an electronic device, which are used for at least solving the problems that in the related technology, when the consumable of intelligent equipment is lack, the user needs to perform complicated selection confirmation to purchase the intelligent equipment and the like.
According to an aspect of an embodiment of the present invention, there is provided a secure payment method, including: receiving an order request sent by a payment logic unit in the intelligent equipment, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment, and the payment logic unit is arranged in the intelligent equipment; under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and payment information to be paid of the intelligent equipment is determined according to the encrypted order request; and sending the payment information to a payment logic unit, and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information.
In an exemplary embodiment, receiving an order request sent by a payment logic unit in the intelligent device includes: establishing communication connection between the safety unit and the payment logic unit; receiving the order request determined by the payment logic unit for processing consumable resource information of the intelligent device under the condition that the communication connection passes the authority verification, wherein the consumable resource information comprises at least one of the following: the residual amount information of the consumables after use and the replacement record of the consumables.
In an exemplary embodiment, when the smart device has acquired authorization information for non-inductive payment, the method further includes, before encrypting the order request by using a key carried in the authorization information to obtain an encrypted order request and determining payment information to be paid by the smart device according to the encrypted order request, performing encryption processing on the order request by using a key carried in the authorization information: determining a non-inductive payment authority of the intelligent device; under the condition that the intelligent device has a non-inductive payment authority, receiving authorization information sent by the payment platform, and carrying out safe encryption storage on the authorization information, wherein the authorization information comprises at least one of the following: payment account information of the target object, an account private key of the target object and a payment platform public key.
In an exemplary embodiment, when the smart device has acquired authorization information of a non-sensitive payment, encrypting the order request by using a key carried by the authorization information to obtain an encrypted order request, and determining payment information to be paid by the smart device according to the encrypted order request, includes: determining parameter information of the order request, wherein the parameter information comprises at least one of the following: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; encrypting the parameter information through a payment platform public key carried by the authorization information to determine a parameter ciphertext corresponding to the parameter information; determining a hash value of the parameter ciphertext, and encrypting the hash value through an account private key of a target object carried by the authorization information to determine a signature of the parameter information; and generating payment information to be paid by the intelligent equipment according to the parameter ciphertext and the signature.
In an exemplary embodiment, generating payment information to be paid by the smart device according to the parameter cryptograph and the signature includes: acquiring preset consumable data, wherein the consumable data comprises at least one of the following: the method comprises the following steps of identifying the consumable, the unit price of the consumable and the size of the consumable corresponding to the unit price of the consumable; calculating the consumable value corresponding to the parameter ciphertext according to the consumable data; and carrying out data packaging on the consumable value, the parameter ciphertext and the signature to determine payment information to be paid by the intelligent equipment.
In an exemplary embodiment, after sending the payment information to a payment logic unit and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, the method further includes: receiving a response result of the payment platform to the non-sensory payment request; and determining that the authorization information supports the non-inductive payment of the intelligent device under the condition that the response result indicates that the non-inductive payment request passes validity verification.
According to another aspect of the embodiment of the present invention, there is also provided another secure payment method, including: receiving a non-inductive payment request carrying payment information sent by a payment logic unit in intelligent equipment, wherein the payment logic unit is arranged in the intelligent equipment, and the payment information is determined in the following way: the method comprises the steps that a security unit receives an order request sent by a payment logic unit in the intelligent equipment, and when the intelligent equipment obtains authorization information of non-inductive payment, the security unit encrypts the order request through a secret key carried by the authorization information to obtain the encrypted order request and determines payment information to be paid of the intelligent equipment according to the encrypted order request; responding the non-inductive payment request, and directly obtaining the consumable resources to be obtained according to the payment information.
In an exemplary embodiment, after receiving a non-sensitive payment request carrying payment information sent by a payment logic unit in an intelligent device, the method includes: decrypting the non-inductive payment request through a public key of a payment platform to acquire parameter information of the payment information, wherein the parameter information comprises at least one of the following: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; and determining consumable resources to be acquired of the intelligent equipment according to the parameter information.
In an exemplary embodiment, after the imperceptible payment request is decrypted by a payment platform public key to obtain parameter information of the payment information, the method further includes: acquiring a signature in the non-sensitive payment request for security verification, wherein the signature is used for indicating data obtained by performing hash value extraction on a parameter ciphertext generated by encrypting parameter information through a public key of a payment platform and encrypting the hash value again; and determining the imperceptible payment request to be a trusted request in the case that the signature passes a security check, wherein the trusted request is used for indicating that no information exists in the imperceptible payment request to be false.
According to an aspect of an embodiment of the present invention, there is provided a secure payment system including: smart machine, with the payment platform that smart machine connects, include in the smart machine: the payment logic unit is used for sending an order request to the safety unit, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment; the security unit is used for encrypting the order request through a secret key carried by the authorization information under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment to obtain the encrypted order request, and determining the payment information to be paid by the intelligent equipment according to the encrypted order request; the safety unit is also used for sending the payment information to a payment logic unit; the payment logic unit is also used for initiating a non-inductive payment request carrying the payment information to a payment platform; and the payment platform is used for responding to the non-inductive payment request and directly acquiring the consumable resources to be acquired according to the payment information.
In an exemplary embodiment, the secure unit is further configured to establish a communication connection with the payment logic unit; receiving the order request determined by the payment logic unit for processing consumable resource information of the intelligent device under the condition that the communication connection passes the authority verification, wherein the consumable resource information comprises at least one of the following: the residual amount information of the consumables after use and the replacement record of the consumables.
In an exemplary embodiment, the security unit is further configured to determine a non-inductive payment authority of the smart device; under the condition that the intelligent device has a non-inductive payment authority, receiving authorization information sent by the payment platform, and carrying out safe encryption storage on the authorization information, wherein the authorization information comprises at least one of the following: payment account information of the target object, an account private key of the target object and a payment platform public key.
In an exemplary embodiment, the above safety unit is further configured to determine parameter information of the order request, where the parameter information includes at least one of: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; encrypting the parameter information through a payment platform public key carried by the authorization information to determine a parameter ciphertext corresponding to the parameter information; determining a hash value of the parameter ciphertext, and encrypting the hash value through an account private key of a target object carried by the authorization information to determine a signature of the parameter information; and generating payment information to be paid by the intelligent equipment according to the parameter ciphertext and the signature.
In an exemplary embodiment, the secure unit is further configured to receive a response result of the payment platform to the imperceptible payment request; and determining that the authorization information supports the non-inductive payment of the intelligent device under the condition that the response result indicates that the non-inductive payment request passes validity verification.
In an exemplary embodiment, the payment platform is further configured to decrypt the imperceptible payment request through a public key of the payment platform to obtain parameter information of the payment information, where the parameter information includes at least one of: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; and determining consumable resources to be acquired of the intelligent equipment according to the parameter information.
In an exemplary embodiment, the payment platform is further configured to obtain a signature in the non-inductive payment request for security verification, where the signature is used to instruct to extract a hash value of a parameter ciphertext generated by encrypting parameter information with a public key of the payment platform and encrypt the hash value again to obtain data; and determining the imperceptible payment request to be a trusted request in the case that the signature passes a security check, wherein the trusted request is used for indicating that no information exists in the imperceptible payment request to be false.
According to a further aspect of the embodiments of the present invention, there is also provided a computer-readable storage medium having a computer program stored therein, wherein the computer program is configured to execute the above-mentioned secure payment method when running.
According to another aspect of the embodiments of the present invention, there is also provided an electronic device, including a memory, a processor, and a computer program stored on the memory and executable on the processor, wherein the processor executes the secure payment method through the computer program.
In the embodiment of the invention, an order request sent by a payment logic unit in the intelligent equipment is received, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment, and the payment logic unit is arranged in the intelligent equipment; under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and payment information to be paid of the intelligent equipment is determined according to the encrypted order request; sending the payment information to a payment logic unit, instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information, namely, the consumable material request of the intelligent equipment is processed through the authorization information stored in the security unit, a non-inductive payment request is generated and sent to the payment platform for consumable material supplement, the purchase of the consumable material of the intelligent equipment is rapidly realized, the problem in the related technology is solved, when smart machine's consumptive material lacks when few, need carry out complicated selection through the user and confirm the back and just can purchase the scheduling problem, realize opening under the prerequisite of authorization information, smart machine's consumptive material is when not enough, and order and noninductive payment are accomplished to the automatic completion, and the user need not to know consumptive material and purchase condition detail, has promoted the user experience under the intelligent house scene.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
fig. 1 is a block diagram of a hardware structure of a mobile terminal of a secure payment method according to an embodiment of the present invention;
FIG. 2 is a flow diagram of a secure payment method according to an embodiment of the invention;
FIG. 3 is a flow diagram of a secure payment method according to an embodiment of the invention (two);
FIG. 4 is a schematic diagram of the operation of a secure, non-inductive payment ordering system in accordance with an alternative embodiment of the present invention;
fig. 5 is a block diagram of a secure payment system according to an embodiment of the present invention.
Detailed Description
Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings in conjunction with the embodiments.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order.
The method provided by the embodiment of the application can be executed in a computer terminal, a mobile terminal or a similar operation device. Taking an example of the secure payment method running on a mobile terminal, fig. 1 is a block diagram of a hardware structure of the mobile terminal according to the secure payment method of the embodiment of the present invention. As shown in fig. 1, the mobile terminal may include one or more (only one shown in fig. 1) processors 102 (the processor 102 may include, but is not limited to, a processing device such as a microprocessor MCU or a programmable logic device FPGA) and a memory 104 for storing data, which in an exemplary embodiment may also include a transmission device 106 for communication functions and an input-output device 108. It will be understood by those skilled in the art that the structure shown in fig. 1 is only an illustration, and does not limit the structure of the mobile terminal. For example, the mobile terminal may also include more or fewer components than shown in FIG. 1, or have a different configuration with equivalent functionality to that shown in FIG. 1 or with more functionality than that shown in FIG. 1.
The memory 104 may be used to store computer programs, for example, software programs and modules of application software, such as computer programs corresponding to the secure payment method in the embodiment of the present invention, and the processor 102 executes various functional applications and data processing by running the computer programs stored in the memory 104, so as to implement the method described above. The memory 104 may include high speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid-state memory. In some examples, the memory 104 may further include memory located remotely from the processor 102, which may be connected to the mobile terminal over a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The transmission device 106 is used for receiving or transmitting data via a network. Specific examples of the network described above may include a wireless network provided by a communication provider of the mobile terminal. In one example, the transmission device 106 includes a Network adapter (NIC), which can be connected to other Network devices through a base station so as to communicate with the internet. In one example, the transmission device 106 may be a Radio Frequency (RF) module, which is used for communicating with the internet in a wireless manner.
In the present embodiment, a secure payment method is provided, and fig. 2 is a flowchart of the secure payment method according to the embodiment of the present invention, where the flowchart includes the following steps:
step S202, receiving an order request sent by a payment logic unit in the intelligent device, wherein the order request is used for requesting consumable resources to be acquired of the intelligent device, and the payment logic unit is arranged in the intelligent device;
step S204, under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and the payment information to be paid by the intelligent equipment is determined according to the encrypted order request;
step S206, sending the payment information to a payment logic unit, and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information.
Through the steps, an order request sent by a payment logic unit in the intelligent equipment is received, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment, and the payment logic unit is arranged in the intelligent equipment; under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and payment information to be paid of the intelligent equipment is determined according to the encrypted order request; sending the payment information to a payment logic unit, instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information, namely, the consumable material request of the intelligent equipment is processed through the authorization information stored in the security unit, a non-inductive payment request is generated and sent to the payment platform for consumable material supplement, the purchase of the consumable material of the intelligent equipment is rapidly realized, the problem in the related technology is solved, when smart machine's consumptive material lacks when few, need carry out complicated selection through the user and confirm the back and just can purchase the scheduling problem, realize opening under the prerequisite of authorization information, smart machine's consumptive material is when not enough, and order and noninductive payment are accomplished to the automatic completion, and the user need not to know consumptive material and purchase condition detail, has promoted the user experience under the intelligent house scene.
It should be noted that, in order to simplify the hardware requirement of the non-inductive and non-inductive payment, the payment logic unit and the security unit may be embedded into the device backplane of the smart device in a chip manner, and the information interaction connection may be established through a circuit on the device backplane.
In an optional embodiment, receiving an order request sent by a payment logic unit in the intelligent device includes: establishing a communication connection with a payment logic unit; receiving the order request determined by the payment logic unit for processing consumable resource information of the intelligent device under the condition that the communication connection passes the authority verification, wherein the consumable resource information comprises at least one of the following: the residual amount information of the consumables after use and the replacement record of the consumables.
In short, in order to learn the change condition of the inside consumptive material of smart machine in time, carry out the record to the surplus and the change number of times of consumptive material through setting up the consumptive material sensor, upload the record information that will correspond to payment logical unit, and then combine change time point and consumptive material data to confirm the consumptive material change cycle of target smart machine, in order to determine smart machine's order request, establish the communication connection back through the authority at security unit and payment logical unit, send the order request to security unit.
It can be understood that, according to different demands of different intelligent devices for consumables, the consumable quantity required by different intelligent devices can be pertinently determined, consumable data of the intelligent devices are determined from consumable data received by the Internet of things platform, and then consumable reports of each intelligent device are generated, further logic processing of purchase information is carried out on the consumable reports, namely, when the corresponding consumable quantity in the consumable reports reaches a replacement period, and the remaining service time is longer than the service time for purchasing the consumables and completing replacement, purchase is generated in a safe time period of a user in a mode that the consumable quantity generation order request can be informed.
In an exemplary embodiment, when the smart device has acquired authorization information for non-inductive payment, the method further includes, before encrypting the order request by using a key carried in the authorization information to obtain an encrypted order request and determining payment information to be paid by the smart device according to the encrypted order request, performing encryption processing on the order request by using a key carried in the authorization information: determining a non-inductive payment authority of the intelligent device; under the condition that the intelligent device has a non-inductive payment authority, receiving authorization information sent by the payment platform, and carrying out safe encryption storage on the authorization information, wherein the authorization information comprises at least one of the following: payment account information of the target object, an account private key of the target object and a payment platform public key.
In short, the security unit receives the order request uploaded by the payment logic unit, determines whether the authorization information of the non-sensitive payment authority of the intelligent device corresponding to the order request is stored, performs encryption processing of data security protection on the order request through the authorization information after determining that the authorization information is obtained from the payment platform, and securely encrypts the authorization information stored in the security unit in order to prevent the authorization information from being leaked.
In an exemplary embodiment, when the smart device has acquired authorization information of a non-sensitive payment, encrypting the order request by using a key carried by the authorization information to obtain an encrypted order request, and determining payment information to be paid by the smart device according to the encrypted order request, includes: determining parameter information of the order request, wherein the parameter information comprises at least one of the following: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; encrypting the parameter information through a payment platform public key carried by the authorization information to determine a parameter ciphertext corresponding to the parameter information; determining a hash value of the parameter ciphertext, and encrypting the hash value through an account private key of a target object carried by the authorization information to determine a signature of the parameter information; and generating payment information to be paid by the intelligent equipment according to the parameter ciphertext and the signature.
It can be understood that, in order to ensure the security of the information to be paid, the parameter information corresponding to the order request is encrypted through the authorization information. For example, a consumable sensor on the intelligent household appliance periodically collects the consumable allowance information and reports the consumable allowance information to the payment function logic unit together with a consumable replacement record. The payment function logic unit generates an order payment logic request according to the residual amount information of the consumable items, the consumable item replacement record, the signal information of the consumable items and the like, and sends the order payment logic request to an SE (Secure Element, SE for short) safety unit. And the SE safety unit performs operation through a preset key according to the user account information and the order payment logic request to generate actual payment information. Wherein the actual payment request comprises two parts: payment request information: the request URL, consumable ID, quantity, equipment ID, payment account ID and other parameter information are contained. The payment request information is encrypted by a public key of the payment platform (stored in the SE security unit) to form a ciphertext. Signing the payment request: and carrying out hash operation and RSA2048 encryption calculation on a ciphertext corresponding to the payment request information to obtain a signature. Actual payment information signature generation algorithm: performing hash operation on parameter information corresponding to all order requests: SHA256value is SHA256(ALL request parameters), and the hash result is RSA encrypted with a private key corresponding to the account: signature is RSA2048(private key, sha256 value). Through the two steps, the order request forms an actual payment request in the SE security unit, and the encrypted ciphertext has the hash signature, so that the actual payment request cannot be forged and analyzed, and the integrity and the security of the payment security are ensured.
In an exemplary embodiment, generating payment information to be paid by the smart device according to the parameter cryptograph and the signature includes: acquiring preset consumable data, wherein the consumable data comprises at least one of the following: the method comprises the following steps of identifying the consumable, the unit price of the consumable and the size of the consumable corresponding to the unit price of the consumable; calculating the consumable value corresponding to the parameter ciphertext according to the consumable data; and carrying out data packaging on the consumable value, the parameter ciphertext and the signature to determine payment information to be paid by the intelligent equipment.
In short, in order to ensure that the safety unit can quickly determine consumable data corresponding to consumables in the order request, consumable data commonly used by the target object of the intelligent device pair are preset in the safety unit in advance, the consumable value corresponding to the order request can be quickly determined through the preset consumable data, and the payment information to be paid of the intelligent device is determined by combining the parameter ciphertext and the signature.
In an exemplary embodiment, after sending the payment information to a payment logic unit and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, the method further includes: receiving a response result of the payment platform to the non-sensory payment request; and determining that the authorization information supports the non-inductive payment of the intelligent device under the condition that the response result indicates that the non-inductive payment request passes validity verification.
In order to ensure the validity of the authorization information stored in the security unit, after the payment platform receives the non-inductive payment request and responds, the response result is informed to the security unit, so as to avoid the occurrence of invalid authorization information. For example, when the laundry detergent or other consumables are about to be used up, the washing machine can pre-judge the most appropriate purchase scheme and purchase time according to the laundry habits and the laundry categories accumulated by the user, actively place an order for the laundry detergent, automatically purchase and distribute the consumables for the user, ensure high safety through the technical scheme in the whole ordering and non-inductive payment process, and determine the arrival mode and the arrival time of the consumables according to a purchase order after the order is placed, so that the special consumables needing after-sale personnel service can be replaced in time after the consumables are received.
In this embodiment, another secure payment method is further provided, and fig. 3 is a flowchart of another secure payment method according to an embodiment of the present invention, where the flowchart includes the following steps:
step S302: receiving a non-inductive payment request carrying payment information sent by a payment logic unit in intelligent equipment, wherein the payment logic unit is arranged in the intelligent equipment, and the payment information is determined in the following way: the method comprises the steps that a security unit receives an order request sent by a payment logic unit in the intelligent equipment, and when the intelligent equipment obtains authorization information of non-inductive payment, the security unit encrypts the order request through a secret key carried by the authorization information to obtain the encrypted order request and determines payment information to be paid of the intelligent equipment according to the encrypted order request;
step S304: responding the non-inductive payment request, and directly obtaining the consumable resources to be obtained according to the payment information.
Through the steps, a non-inductive payment request carrying payment information sent by a payment logic unit in the intelligent equipment is received, wherein the payment logic unit is arranged in the intelligent equipment, and the payment information is determined in the following way: the method comprises the steps that a security unit receives an order request sent by a payment logic unit in the intelligent equipment, and when the intelligent equipment obtains authorization information of non-inductive payment, the security unit encrypts the order request through a secret key carried by the authorization information to obtain the encrypted order request and determines payment information to be paid of the intelligent equipment according to the encrypted order request; respond the noninductive payment request, directly according to payment information acquires the consumptive material resource of waiting to acquire, the consumptive material request of smart machine is handled through the authorization information of storage in the security unit promptly, generate noninductive payment request and send to payment platform and carry out the replenishment of consumptive material, the purchase of smart machine consumptive material is realized to quick realization, in the correlation technique has been solved, when smart machine's consumptive material lacks, need carry out complicated selection through the user and confirm the back and can purchase the scheduling problem, realize under the prerequisite of opening authorization information, smart machine's consumptive material is when not enough, order and noninductive payment under the automatic completion, the user need not to know consumptive material and purchase condition detail, user experience under the intelligent house scene has been promoted.
In an exemplary embodiment, after receiving a non-sensitive payment request carrying payment information sent by a payment logic unit in an intelligent device, the method includes: decrypting the non-inductive payment request through a public key of a payment platform to acquire parameter information of the payment information, wherein the parameter information comprises at least one of the following: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; and determining consumable resources to be acquired of the intelligent equipment according to the parameter information.
In short, after the payment platform receives the non-inductive payment request, the payment platform public key stored in the payment platform decrypts the non-inductive payment request, and then determines the parameter information contained in the payment information, and further determines the type of the consumable item to be purchased, and further, the resource platform orders the intelligent device to acquire the consumable item resource.
In an exemplary embodiment, after the imperceptible payment request is decrypted by a payment platform public key to obtain parameter information of the payment information, the method further includes: acquiring a signature in the non-sensitive payment request for security verification, wherein the signature is used for indicating data obtained by performing hash value extraction on a parameter ciphertext generated by encrypting parameter information through a public key of a payment platform and encrypting the hash value again; and determining the imperceptible payment request to be a trusted request in the case that the signature passes a security check, wherein the trusted request is used for indicating that no information exists in the imperceptible payment request to be false.
The payment platform also needs to perform security verification on a signature in a non-sensitive payment request corresponding to the payment information of the consumable resources to be acquired, and when the non-sensitive payment request is determined to be a trusted request and no information is found, the payment platform performs payment on the consumable resources to be acquired correspondingly so as to complete consumable purchase of the intelligent device.
For better understanding of the technical solutions of the embodiments and the alternative embodiments of the present invention, the following explains the flow of the secure payment method with reference to an example, but is not limited to the technical solutions of the embodiments of the present invention.
The invention provides a technical scheme for safe and non-inductive payment ordering, when the laundry detergent or other consumables are about to be used up, the washing machine can pre-judge the most appropriate purchasing scheme and purchasing time according to the laundry habits and clothes categories accumulated by a user, actively orders the laundry detergent, automatically purchases and delivers the consumables for the user, and the whole ordering and non-inductive payment process ensures high safety through the technical scheme.
For convenience of understanding, the functions of the unit modules involved in the alternative embodiments of the present invention are explained, but are not intended to limit the schemes of the alternative embodiments of the present invention.
The SE security unit in the system is an embedded security chip and is responsible for specific security operation and storage. The whole safety unit has high attack resistance (side channel attack, fault injection attack and the like can be resisted) and a high-safety computing environment, is used for storing important data and generating specific payment information according to business requirements.
The payment function logic unit is a common embedded controller chip, has no safe computing capability and strong computing capability, is suitable for functional logic operation, and is mainly used for controlling the logic of non-inductive payment and communicating with the Internet.
The payment function logic unit is used to determine whether to generate payment and order requirements, but not to generate the actual payment information directly, which is generated by the security unit in the SE security chip. The payment platform needs to verify the actual payment information, the actual payment information comprises account information, ID information, order information and the like, and the order is confirmed only after the actual payment information passes the verification, so that the order cannot be forged and falsified.
As an alternative implementation, fig. 4 is a schematic operation diagram of a secure and non-inductive payment ordering system according to an alternative embodiment of the present invention, including the following steps:
step 1, a household appliance IoT (Internet of things, IoT for short) platform issues ID information of a household appliance (equivalent to an intelligent device in the embodiment of the present invention) and corresponding consumable information to a payment function logic unit through cloud configuration, and stores the ID information and the corresponding consumable information.
And 2, after the non-inductive payment authorization information is sent, the payment platform sends the account information, the account key information and the payment platform public key of the payment card of the user to the intelligent household appliance through the network, and the intelligent household appliance is encrypted by the SE safety unit and then stored.
And 3, regularly collecting the consumable allowance information by a consumable sensor on the intelligent household appliance, and reporting the consumable allowance information to the payment function logic unit together with the consumable replacement record. And the payment function logic unit generates an order payment logic request according to the residual amount information of the consumable items, the consumable item replacement record, the signal information of the consumable items and other contents, and sends the order payment logic request to the SE safety unit. And the SE safety unit performs operation through a preset key according to the user account information and the order payment logic request to generate actual payment information.
Optionally, the actual payment request in the actual payment information comprises two parts:
1. payment request information: the method comprises the steps that parameter information such as requested URL, consumable ID, quantity, equipment ID and payment account ID is contained, and payment request information is encrypted through a payment platform public key (stored in SE) to form a ciphertext.
2. Signing the payment request: the payment request information encrypts the computed signature by means of hash and RSA 2048. Actual payment information signature generation algorithm: performing hash operation on all request parameters of the payment information: SHA256value is SHA256(ALL request parameters), and the hashed result is RSA-encrypted by a private key corresponding to the account: signature is RSA2048(privatekey, sha256 value).
It should be noted that, through the above two steps, the payment logic request forms an actual payment request (encrypted ciphertext, and hash signature at the same time) in the SE, and the actual payment request cannot be forged and analyzed, thereby ensuring the integrity and security of the payment security.
And 4, after receiving the payment information, the payment function logic unit sends the payment information to a payment platform at the cloud end.
And 5, the payment platform verifies the payment information, confirms the account number and the identity information used by the equipment for payment and the equipment consumable information purchase information, and informs the market platform of the order and the payment information through the cloud docking interface after the confirmation is finished.
Optionally, after the cloud payment platform receives the payment request, RSA decryption may be performed using a private key of the payment platform to obtain a payment request plaintext; meanwhile, the hash signature of the payment request can be verified, and if the hash signature passes the verification, the request is a trusted request and the situations of counterfeiting, tampering, counterfeiting and the like do not occur. Because the private key, the consumable ID and the account information are safely stored in the SE, a third party cannot obtain the private key, the consumable ID and the account information in a reverse mode, and the legality and uniqueness of the payment request signature are guaranteed.
And 6, after confirming the validity of the order by the market platform, finishing delivery. As an alternative embodiment.
Optionally, the overall operation flow is explained as follows: the consumptive material sensor through intelligent household electrical appliances gathers consumptive material surplus regularly, and the consumptive material sensor is responsible for the consumptive material surplus and reports. The payment card account information of a user and the consumable information of the intelligent household appliance are issued through a network and stored in an SE (secure element is mainly a secure chip and is completely independent of an embedded main control embedded chip of the intelligent household appliance), the SE ensures that internal information cannot be extracted and changed, a payment function logic unit is responsible for generating payment logic, the payment function logic unit cannot generate orders and payment information, and actual payment request information is generated by the SE. The actual payment request of the intelligent household appliance is generated in an encryption and signature mode through an SE security unit, and the unit is guaranteed by an SE security chip, so that reverse engineering and information decryption cannot be realized.
Through above-mentioned optional embodiment, use and be similar to the ETC mode, intelligent household electrical appliances can accomplish automatically and network payment platform's safe butt joint, realize the automatic purchase and the delivery process to specific model consumptive material, whole process safety and need not user's intervention. The intelligent household appliances of the Internet of things are directly issued with the payment platform through the network without other interaction. The safe and non-inductive payment can ensure that important information such as consumable items, equipment identity, payment information and the like is processed in a safe link, and the usability, confidentiality and integrity of transaction safety are ensured. Under the prerequisite that the user opened the authorization information, intelligent household electrical appliances class equipment is when the consumptive material is not enough, and order and noninductive payment are accomplished automatically, and the user need not to know consumptive material and purchase condition detail, has promoted the user experience under the intelligent house scene.
Through the above description of the embodiments, those skilled in the art can clearly understand that the method according to the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but the former is a better implementation mode in many cases. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal device (such as a mobile phone, a computer, an evener, or a network device) to execute the method according to the embodiments of the present invention.
In this embodiment, a secure payment system is further provided, and the system is used to implement the foregoing embodiments and preferred embodiments, and the description of the system is omitted. Fig. 5 is a block diagram of a secure payment system according to an embodiment of the present invention, as shown in fig. 5, the system includes:
a smart device 52 and a payment platform 54 connected to the smart device, wherein the smart device comprises: a payment logic unit 62, and a security unit 64 connected to the payment logic unit, wherein,
the payment logic unit 62 is configured to send an order request to the security unit, where the order request is used to request a consumable resource to be acquired of the intelligent device;
the security unit 64 is configured to, when the smart device has acquired authorization information for non-inductive payment, encrypt the order request through a key carried in the authorization information to obtain an encrypted order request, and determine payment information to be paid by the smart device according to the encrypted order request;
the security unit 64 is further configured to send the payment information to a payment logic unit;
the payment logic unit 62 is further configured to initiate a non-inductive payment request carrying the payment information to a payment platform;
and the payment platform 54 is configured to respond to the non-inductive payment request and directly obtain the consumable resources to be obtained according to the payment information.
Receiving an order request sent by a payment logic unit in the intelligent equipment through the system, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment, and the payment logic unit is arranged in the intelligent equipment; under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and payment information to be paid of the intelligent equipment is determined according to the encrypted order request; sending the payment information to a payment logic unit, instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information, namely, the consumable material request of the intelligent equipment is processed through the authorization information stored in the security unit, a non-inductive payment request is generated and sent to the payment platform for consumable material supplement, the purchase of the consumable material of the intelligent equipment is rapidly realized, the problem in the related technology is solved, when smart machine's consumptive material lacks when few, need carry out complicated selection through the user and confirm the back and just can purchase the scheduling problem, realize opening under the prerequisite of authorization information, smart machine's consumptive material is when not enough, and order and noninductive payment are accomplished to the automatic completion, and the user need not to know consumptive material and purchase condition detail, has promoted the user experience under the intelligent house scene.
It should be noted that, in order to simplify the hardware requirement of the non-inductive and non-inductive payment, the payment logic unit and the security unit may be embedded into the device backplane of the smart device in a chip manner, and the information interaction connection may be established through a circuit on the device backplane.
In an exemplary embodiment, the secure unit is further configured to establish a communication connection with the payment logic unit; receiving the order request determined by the payment logic unit for processing consumable resource information of the intelligent device under the condition that the communication connection passes the authority verification, wherein the consumable resource information comprises at least one of the following: the residual amount information of the consumables after use and the replacement record of the consumables.
In short, in order to learn the change condition of the inside consumptive material of smart machine in time, carry out the record to the surplus and the change number of times of consumptive material through setting up the consumptive material sensor, upload the record information that will correspond to payment logical unit, and then combine change time point and consumptive material data to confirm the consumptive material change cycle of target smart machine, in order to determine smart machine's order request, establish the communication connection back through the authority at security unit and payment logical unit, send the order request to security unit.
In an exemplary embodiment, the security unit is further configured to determine a non-inductive payment authority of the smart device; under the condition that the intelligent device has a non-inductive payment authority, receiving authorization information sent by the payment platform, and carrying out safe encryption storage on the authorization information, wherein the authorization information comprises at least one of the following: payment account information of the target object, an account private key of the target object and a payment platform public key.
In short, the security unit receives the order request uploaded by the payment logic unit, determines whether the authorization information of the non-sensitive payment authority of the intelligent device corresponding to the order request is stored, performs encryption processing of data security protection on the order request through the authorization information after determining that the authorization information is obtained from the payment platform, and securely encrypts the authorization information stored in the security unit in order to prevent the authorization information from being leaked.
In an exemplary embodiment, the above safety unit is further configured to determine parameter information of the order request, where the parameter information includes at least one of: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; encrypting the parameter information through a payment platform public key carried by the authorization information to determine a parameter ciphertext corresponding to the parameter information; determining a hash value of the parameter ciphertext, and encrypting the hash value through an account private key of a target object carried by the authorization information to determine a signature of the parameter information; and generating payment information to be paid by the intelligent equipment according to the parameter ciphertext and the signature.
It can be understood that, in order to ensure the security of the information to be paid, the parameter information corresponding to the order request is encrypted through the authorization information. For example, a consumable sensor on the intelligent household appliance periodically collects the consumable allowance information and reports the consumable allowance information to the payment function logic unit together with a consumable replacement record. And the payment function logic unit generates an order payment logic request according to the residual amount information of the consumable items, the consumable item replacement record, the signal information of the consumable items and other contents, and sends the order payment logic request to the SE safety unit. And the SE safety unit performs operation through a preset key according to the user account information and the order payment logic request to generate actual payment information. Wherein the actual payment request comprises two parts: payment request information: the request URL, consumable ID, quantity, equipment ID, payment account ID and other parameter information are contained. The payment request information is encrypted by a public key of the payment platform (stored in the SE security unit) to form a ciphertext. Signing the payment request: and carrying out hash operation and RSA2048 encryption calculation on a ciphertext corresponding to the payment request information to obtain a signature. Actual payment information signature generation algorithm: performing hash operation on parameter information corresponding to all order requests: SHA256value is SHA256(ALL request parameters), and the hash result is RSA encrypted with a private key corresponding to the account: signature is RSA2048(private key, sha256 value). Through the two steps, the order request forms an actual payment request in the SE security unit, and the encrypted ciphertext has the hash signature, so that the actual payment request cannot be forged and analyzed, and the integrity and the security of the payment security are ensured.
In an exemplary embodiment, the secure unit is further configured to receive a response result of the payment platform to the imperceptible payment request; and determining that the authorization information supports the non-inductive payment of the intelligent device under the condition that the response result indicates that the non-inductive payment request passes validity verification. In short, in order to ensure that the safety unit can quickly determine consumable data corresponding to consumables in the order request, consumable data commonly used by the target object of the intelligent device pair are preset in the safety unit in advance, the consumable value corresponding to the order request can be quickly determined through the preset consumable data, and the payment information to be paid of the intelligent device is determined by combining the parameter ciphertext and the signature. In order to ensure the validity of the authorization information stored in the security unit, after the payment platform receives the non-inductive payment request and responds, the response result is informed to the security unit, so as to avoid the occurrence of invalid authorization information. For example, when the laundry detergent or other consumables are about to be used up, the washing machine can pre-judge the most appropriate purchase scheme and purchase time according to the laundry habits and the laundry categories accumulated by the user, actively place an order for the laundry detergent, automatically purchase and distribute the consumables for the user, ensure high safety through the technical scheme in the whole ordering and non-inductive payment process, and determine the arrival mode and the arrival time of the consumables according to a purchase order after the order is placed, so that the special consumables needing after-sale personnel service can be replaced in time after the consumables are received.
In an exemplary embodiment, the payment platform is further configured to decrypt the imperceptible payment request through a public key of the payment platform to obtain parameter information of the payment information, where the parameter information includes at least one of: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request; and determining consumable resources to be acquired of the intelligent equipment according to the parameter information. In short, after the payment platform receives the non-inductive payment request, the payment platform public key stored in the payment platform decrypts the non-inductive payment request, and then determines the parameter information contained in the payment information, and further determines the type of the consumable item to be purchased, and further, the resource platform orders the intelligent device to acquire the consumable item resource.
In an exemplary embodiment, the payment platform is further configured to obtain a signature in the non-inductive payment request for security verification, where the signature is used to instruct to extract a hash value of a parameter ciphertext generated by encrypting parameter information with a public key of the payment platform and encrypt the hash value again to obtain data; and determining the imperceptible payment request to be a trusted request in the case that the signature passes a security check, wherein the trusted request is used for indicating that no information exists in the imperceptible payment request to be false. The payment platform also needs to perform security verification on a signature in a non-sensitive payment request corresponding to the payment information of the consumable resources to be acquired, and when the non-sensitive payment request is determined to be a trusted request and no information is found, the payment platform performs payment on the consumable resources to be acquired correspondingly so as to complete consumable purchase of the intelligent device.
It should be noted that, the above modules may be implemented by software or hardware, and for the latter, the following may be implemented, but not limited to: the modules are all positioned in the same processor; alternatively, the modules are respectively located in different processors in any combination.
Embodiments of the present invention also provide a storage medium having a computer program stored therein, wherein the computer program is arranged to perform the steps of any of the above method embodiments when executed.
Alternatively, in the present embodiment, the storage medium may be configured to store a computer program for executing the steps of:
s1, receiving an order request sent by a payment logic unit in the intelligent device, wherein the order request is used for requesting consumable resources to be acquired of the intelligent device, and the payment logic unit is arranged in the intelligent device;
s2, when the intelligent device obtains the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and the payment information to be paid of the intelligent device is determined according to the encrypted order request;
s3, sending the payment information to a payment logic unit, and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information.
Embodiments of the present invention also provide a computer-readable storage medium having a computer program stored thereon, wherein the computer program is arranged to perform the steps of any of the above-mentioned method embodiments when executed.
In an exemplary embodiment, the computer-readable storage medium may include, but is not limited to: various media capable of storing computer programs, such as a usb disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic disk, or an optical disk.
Embodiments of the present invention also provide an electronic device comprising a memory having a computer program stored therein and a processor arranged to run the computer program to perform the steps of any of the above method embodiments.
In an exemplary embodiment, the electronic apparatus may further include a transmission device and an input/output device, wherein the transmission device is connected to the processor, and the input/output device is connected to the processor.
In an exemplary embodiment, the processor may be configured to execute the following steps by a computer program:
s1, receiving an order request sent by a payment logic unit in the intelligent device, wherein the order request is used for requesting consumable resources to be acquired of the intelligent device, and the payment logic unit is arranged in the intelligent device;
s2, when the intelligent device obtains the authorization information of the non-inductive payment, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and the payment information to be paid of the intelligent device is determined according to the encrypted order request;
s3, sending the payment information to a payment logic unit, and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information. It will be apparent to those skilled in the art that the various modules or steps of the invention described above may be implemented using a general purpose computing device, they may be centralized on a single computing device or distributed across a network of computing devices, and they may be implemented using program code executable by the computing devices, such that they may be stored in a memory device and executed by the computing device, and in some cases, the steps shown or described may be performed in an order different than that described herein, or they may be separately fabricated into various integrated circuit modules, or multiple ones of them may be fabricated into a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the principle of the present invention should be included in the protection scope of the present invention.

Claims (12)

1. A secure payment method, applied to a security unit in a smart device, the method comprising:
receiving an order request sent by a payment logic unit in the intelligent equipment, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment;
under the condition that the authorization information of the non-inductive payment is obtained, the order request is encrypted through a secret key carried by the authorization information to obtain an encrypted order request, and the payment information to be paid of the intelligent equipment is determined according to the encrypted order request;
and sending the payment information to a payment logic unit, and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, wherein the non-inductive payment request is used for instructing the payment platform to directly acquire the consumable resources to be acquired according to the payment information.
2. The method of claim 1, wherein receiving the order request sent by the payment logic in the smart device comprises:
establishing communication connection between the safety unit and the payment logic unit;
receiving the order request determined by the payment logic unit for processing consumable resource information of the intelligent device under the condition that the communication connection passes the authority verification, wherein the consumable resource information comprises at least one of the following: the residual amount information of the consumables after use and the replacement record of the consumables.
3. The method according to claim 1, wherein when the smart device has acquired authorization information for the non-sensitive payment, the method further includes, before encrypting the order request by using a key carried in the authorization information to obtain an encrypted order request and determining payment information to be paid by the smart device according to the encrypted order request:
determining a non-inductive payment authority of the intelligent device;
under the condition that the intelligent device has a non-inductive payment authority, receiving authorization information sent by the payment platform, and carrying out safe encryption storage on the authorization information, wherein the authorization information comprises at least one of the following: payment account information of the target object, an account private key of the target object and a payment platform public key.
4. The method according to claim 3, wherein when the smart device has acquired authorization information for the non-inductive payment, encrypting the order request by using a key carried by the authorization information to obtain an encrypted order request, and determining payment information to be paid by the smart device according to the encrypted order request, includes:
determining parameter information of the order request, wherein the parameter information comprises at least one of the following: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request;
encrypting the parameter information through a payment platform public key carried by the authorization information to determine a parameter ciphertext corresponding to the parameter information;
determining a hash value of the parameter ciphertext, and encrypting the hash value through an account private key of a target object carried by the authorization information to determine a signature of the parameter information;
and generating payment information to be paid by the intelligent equipment according to the parameter ciphertext and the signature.
5. The method according to claim 4, wherein generating payment information to be paid by the smart device according to the parameter cryptograph and the signature comprises:
acquiring preset consumable data, wherein the consumable data comprises at least one of the following: the method comprises the following steps of identifying the consumable, the unit price of the consumable and the size of the consumable corresponding to the unit price of the consumable;
calculating the consumable value corresponding to the parameter ciphertext according to the consumable data;
and carrying out data packaging on the consumable value, the parameter ciphertext and the signature to determine payment information to be paid by the intelligent equipment.
6. The method of claim 1, wherein after sending the payment information to a payment logic unit and instructing the payment logic unit to initiate a non-inductive payment request carrying the payment information to a payment platform, the method further comprises:
receiving a response result of the payment platform to the non-sensory payment request;
and determining that the authorization information supports the non-inductive payment of the intelligent device under the condition that the response result indicates that the non-inductive payment request passes validity verification.
7. A secure payment method is applied to a payment platform, and comprises the following steps:
receiving a non-inductive payment request carrying payment information sent by a payment logic unit in intelligent equipment, wherein the payment information is determined in the following way: the method comprises the steps that a security unit receives an order request sent by a payment logic unit in the intelligent equipment, and when the intelligent equipment obtains authorization information of non-inductive payment, the security unit encrypts the order request through a secret key carried by the authorization information to obtain the encrypted order request and determines payment information to be paid of the intelligent equipment according to the encrypted order request;
responding the non-inductive payment request, and directly obtaining the consumable resources to be obtained according to the payment information.
8. The method according to claim 7, wherein after receiving the non-inductive payment request carrying the payment information sent by the payment logic unit in the smart device, the method comprises:
decrypting the non-inductive payment request through a public key of a payment platform to acquire parameter information of the payment information, wherein the parameter information comprises at least one of the following: unified resource positioning characters of the order request, consumable serial numbers corresponding to the order request, consumable quantity corresponding to the order request, equipment serial numbers of intelligent equipment corresponding to the order request and serial numbers of payment account information corresponding to the order request;
and determining consumable resources to be acquired of the intelligent equipment according to the parameter information.
9. The method of claim 8, wherein after decrypting the imperceptible payment request by a payment platform public key to obtain parameter information of the payment information, the method further comprises:
acquiring a signature in the non-sensitive payment request for security verification, wherein the signature is used for indicating data obtained by performing hash value extraction on a parameter ciphertext generated by encrypting parameter information through a public key of a payment platform and encrypting the hash value again;
and determining the imperceptible payment request to be a trusted request in the case that the signature passes a security check, wherein the trusted request is used for indicating that no information exists in the imperceptible payment request to be false.
10. A secure payment system, comprising:
smart machine, with the payment platform that smart machine connects, include in the smart machine: a payment logic unit, and a security unit connected to the payment logic unit, wherein,
the payment logic unit is used for sending an order request to the safety unit, wherein the order request is used for requesting consumable resources to be acquired of the intelligent equipment;
the security unit is used for encrypting the order request through a secret key carried by the authorization information under the condition that the intelligent equipment acquires the authorization information of the non-inductive payment to obtain the encrypted order request, and determining the payment information to be paid by the intelligent equipment according to the encrypted order request;
the safety unit is also used for sending the payment information to a payment logic unit;
the payment logic unit is also used for initiating a non-inductive payment request carrying the payment information to a payment platform;
and the payment platform is used for responding to the non-inductive payment request and directly acquiring the consumable resources to be acquired according to the payment information.
11. A computer-readable storage medium, comprising a stored program, wherein the program is operable to perform the method of any one of claims 1 to 9.
12. An electronic device comprising a memory and a processor, characterized in that the memory has stored therein a computer program, the processor being arranged to execute the method of any of claims 1 to 9 by means of the computer program.
CN202110706103.XA 2021-06-24 2021-06-24 Secure payment method and system, storage medium and electronic device Active CN113592489B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110706103.XA CN113592489B (en) 2021-06-24 2021-06-24 Secure payment method and system, storage medium and electronic device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110706103.XA CN113592489B (en) 2021-06-24 2021-06-24 Secure payment method and system, storage medium and electronic device

Publications (2)

Publication Number Publication Date
CN113592489A true CN113592489A (en) 2021-11-02
CN113592489B CN113592489B (en) 2023-06-20

Family

ID=78244598

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110706103.XA Active CN113592489B (en) 2021-06-24 2021-06-24 Secure payment method and system, storage medium and electronic device

Country Status (1)

Country Link
CN (1) CN113592489B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20190108483A1 (en) * 2017-10-06 2019-04-11 Paypal, Inc. Quantity sensing storage system
CN110073386A (en) * 2017-01-06 2019-07-30 万事达卡国际公司 For enabling the method and system of the payment of IOT
CN111507727A (en) * 2020-04-20 2020-08-07 车主邦(北京)科技有限公司 Security control method for non-inductive payment
US20210035189A1 (en) * 2019-07-29 2021-02-04 Luke MARIETTA Method and system for automatically replenishing consumable items

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110073386A (en) * 2017-01-06 2019-07-30 万事达卡国际公司 For enabling the method and system of the payment of IOT
US20190108483A1 (en) * 2017-10-06 2019-04-11 Paypal, Inc. Quantity sensing storage system
US20210035189A1 (en) * 2019-07-29 2021-02-04 Luke MARIETTA Method and system for automatically replenishing consumable items
CN111507727A (en) * 2020-04-20 2020-08-07 车主邦(北京)科技有限公司 Security control method for non-inductive payment

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
MAJID AL-KUWARI 等: "Smart-home automation using IoT-based sensing and monitoring platform", 《2018 IEEE 12TH INTERNATIONAL CONFERENCE ON COMPATIBILITY, POWER ELECTRONICS AND POWER ENGINEERING (CPE-POWERENG 2018)》 *
汤黎明 等: "基于移动集团寻呼的医疗耗材采购管理信息平台建立", 《中国数字医学》 *
顾旻霞 等: "物联网商业模式初探", 《信息技术与网络安全》 *

Also Published As

Publication number Publication date
CN113592489B (en) 2023-06-20

Similar Documents

Publication Publication Date Title
CN109462588B (en) Decentralized data transaction method and system based on block chain
US10733603B2 (en) Method and apparatus for facilitating electronic payments using a wearable device
US9530126B2 (en) Secure mobile payment processing
JP5688458B2 (en) System and method for securely using multiple subscriber profiles in security components and portable communication devices
CN101873331B (en) Safety authentication method and system
CN103731259A (en) Method and system for safe downloading of TMK
KR20170137739A (en) How to remotely control the permissions and permissions of the target security element
EP3487142A1 (en) Method and device for providing and obtaining graphic code information, and terminal
CN108023727B (en) Authorization method and system thereof
US8825512B2 (en) Persistent network-based electronic transaction services
CN108737080A (en) Storage method, device, system and the equipment of password
US20160292967A1 (en) Method and Device for Payment Processing
CN107729760B (en) CSP implementation method based on Android system and intelligent terminal
CN103139737B (en) Cryptographic key negotiation method and device, note secondary-confirmation method, system and equipment
CN113613227B (en) Data transmission method and device of Bluetooth equipment, storage medium and electronic device
CN112118209B (en) Account operation method and device of vehicle equipment
WO2017044677A1 (en) Method and apparatus for facilitating electronic payments using a wearable device
CN113592489B (en) Secure payment method and system, storage medium and electronic device
KR101577058B1 (en) Method for Registering OTP Creation Condition
CN106815761B (en) Electronic rechargeable card processing method, device and system
CN111510421A (en) Data processing method and device, electronic equipment and computer readable storage medium
CN108564361B (en) Information processing method, device and equipment
EP3729850B1 (en) A method for controlling by a server the use of at least one data element of a data owner
CN112448928B (en) Credential obtaining method and device
KR101663694B1 (en) Method for Providing Service by using User’s Handheld Phone

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant