CN114462990A - Method and device for secret-free payment based on digital currency - Google Patents

Method and device for secret-free payment based on digital currency Download PDF

Info

Publication number
CN114462990A
CN114462990A CN202111673158.1A CN202111673158A CN114462990A CN 114462990 A CN114462990 A CN 114462990A CN 202111673158 A CN202111673158 A CN 202111673158A CN 114462990 A CN114462990 A CN 114462990A
Authority
CN
China
Prior art keywords
free
secret
payee
payment
password
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202111673158.1A
Other languages
Chinese (zh)
Inventor
穆长春
狄刚
赵新宇
崔沛东
闫建丽
陈松
袁巧
郭伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Digital Currency Institute of the Peoples Bank of China
Original Assignee
Digital Currency Institute of the Peoples Bank of China
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Digital Currency Institute of the Peoples Bank of China filed Critical Digital Currency Institute of the Peoples Bank of China
Priority to CN202111673158.1A priority Critical patent/CN114462990A/en
Publication of CN114462990A publication Critical patent/CN114462990A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/04Payment circuits
    • G06Q20/06Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme
    • G06Q20/065Private payment circuits, e.g. involving electronic currency used among participants of a common payment scheme using e-cash
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/405Establishing or using transaction specific rules

Abstract

The invention discloses a method and a device for secret-free payment based on digital currency, and relates to the technical field of digital currency. One embodiment of the method comprises: receiving a secret-free payment request based on digital currency sent by a payee, wherein the secret-free payment request is generated according to transaction information and secret-free authority information of the payee; and performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information, thereby completing secret-free payment. The implementation method can greatly improve the payment rate and experience of the user, so that when the user uses the digital currency to pay, the fund safety of the user is ensured, the fund loss caused by illegal embezzlement is avoided, and the user experience is improved.

Description

Method and device for secret-free payment based on digital currency
Technical Field
The invention relates to the technical field of digital currency, in particular to a method and a device for secret-free payment based on digital currency.
Background
In the existing transaction process of data currency, a payer is required to input a payment password or biometric information such as a verification fingerprint to carry out payment verification, and particularly in the short-distance communication transaction process, the user experience is greatly influenced by the verification password during each payment. Although the prior art has a scheme of secret-free payment, most of payer users authorize a payment platform, secret-free payment is realized in an online transaction scene, payment amount is limited, and user experience is poor.
Therefore, how to realize secret-free payment during double offline, single offline and online transactions on the premise of ensuring the fund security of the user so as to improve the transaction experience of the user in using digital currency for payment is a technical problem to be solved urgently at present.
Disclosure of Invention
In view of this, embodiments of the present invention provide a method and an apparatus for secret-free payment based on digital currency, which can greatly improve the payment rate and experience of a user, so that when the user uses the digital currency to perform payment, the fund security of the user is ensured, the fund loss caused by illegal embezzlement is avoided, and the user experience is improved.
To achieve the above object, according to an aspect of an embodiment of the present invention, there is provided a method for secret-less payment based on digital money.
A method for secure payment based on digital currency, comprising:
receiving a secret-free payment request based on digital currency sent by a payee, wherein the secret-free payment request is generated according to transaction information and secret-free authority information of the payee;
and performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information, thereby completing secret-free payment.
Optionally, the secret-free permission information is a user certificate with a secret-free field, and the secret-free payment request includes the user certificate;
the verification of the password-free payment to the payee according to the password-free authority information comprises the following steps:
verifying the user certificate using a payee certificate to perform a privacy-exempt payment verification for the payee.
Optionally, the payee certificate is pre-set in a digital currency wallet or included in the request for a privacy-free payment.
Optionally, if the payee certificate is included in the request for the privacy-exempt payment, verifying the user certificate using the payee certificate comprises:
verifying the cashier's certificate by using a certificate of a central line preset in a digital money wallet;
and in case of passing the verification, verifying the user certificate by using the payee certificate.
Optionally, the secret-free permission information is a symmetric key for secret-free payment, and the secret-free payment request is generated by encrypting transaction information by using the symmetric key for secret-free payment of the payee;
the verification of the password-free payment to the payee according to the password-free authority information comprises the following steps:
and decrypting the password-free payment request by using a symmetric key preset in the digital currency wallet and corresponding to the payee so as to verify the password-free payment of the payee.
Optionally, the secret-free permission information is a secret-free field issued by a payee institution, and the secret-free payment request includes the secret-free field and the transaction information;
and carrying out secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation to enable a payer mechanism to carry out digital currency payment according to the transaction information under the condition that the verification is passed, wherein the secret-free payment verification comprises the following steps:
executing a secret-free operation, and generating a secret-free payment verification request according to the secret-free operation and the secret-free payment request;
sending the password-free payment verification request to the payee so that the payee invokes a payee mechanism and a payer mechanism to perform password-free payment verification on the payee according to the password-free field; and in the case of passing the verification, causing the payer institution to pay for digital money based on the transaction information.
Optionally, the method for the payee invoking a payee mechanism and a payer mechanism to verify the password-free payment of the payee according to the password-free field comprises:
the payee sends the request for verification of the password-free payment to the payee institution;
the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free authority identification to the payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform;
and the payer mechanism carries out password-free payment verification on the payee according to the password-free authority identification and the password-free field.
Optionally, generating a request for verification of a secret-free payment from the secret-free operation and the request for secret-free payment comprises:
respectively encrypting the secret-free operation and the secret-free payment request and then splicing to generate a secret-free payment verification request, or splicing the secret-free operation and the secret-free payment request and then encrypting to generate a secret-free payment verification request;
the payee invoking a payee mechanism and a payer mechanism to carry out the password-free payment verification on the payee according to the password-free field comprises the following steps:
the payee sends the request for verification of the password-free payment to the payee institution;
the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free payment verification request and the password-free authority identification to a payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform;
and the payer mechanism decrypts the password-free payment verification request to obtain the password-free field and verifies the password-free payment of the payee according to the password-free authority identification and the password-free field.
Optionally, the transaction information includes a transaction amount;
before executing the secret-free operation to enable the payer mechanism to pay the digital currency according to the transaction information, the method further comprises the following steps:
and verifying the transaction amount according to the transaction amount and a preset password-free payment amount limit value, and if the transaction amount is not greater than the password-free payment amount limit value, passing the verification.
According to another aspect of the embodiments of the present invention, there is provided an apparatus for performing a secret-free payment based on digital money.
An apparatus for making a secret-free payment based on digital currency, comprising:
the request receiving module is used for receiving a secret-free payment request which is sent by a payee and is based on digital currency, and the secret-free payment request is generated according to transaction information and secret-free authority information of the payee;
and the verification payment module is used for performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information and finish secret-free payment.
According to still another aspect of an embodiment of the present invention, there is provided an electronic device for secret-less payment based on digital money.
An electronic device for secure payment based on digital currency, comprising: one or more processors; the storage device is used for storing one or more programs, and when the one or more programs are executed by the one or more processors, the one or more processors realize the method for the secret payment based on the digital currency, which is provided by the embodiment of the invention.
According to yet another aspect of embodiments of the present invention, a computer-readable medium is provided.
A computer readable medium having stored thereon a computer program which, when executed by a processor, implements a method for secure payment based on digital currency according to an embodiment of the present invention.
One embodiment of the above invention has the following advantages or benefits: receiving a password-free payment request based on digital currency sent by a payee, wherein the password-free payment request is generated according to transaction information and password-free authority information of the payee; the technical scheme of the password-free payment is completed by issuing the password-free authority to the payee for verifying the password-free payment, so that the issuing of the password-free authority is safer without requiring a user to perform password-free authorization, and the payment safety is greatly improved; the user of the payer can realize the password-free payment by verifying the password-free payment of the payee during the payment, the user operation is more convenient, and the payment rate and the experience of the user can be greatly improved, so that when the payment is carried out by using the digital currency, the fund safety of the user is ensured, the fund loss caused by illegal embezzlement is avoided, and the user experience is also improved.
Further effects of the above-mentioned non-conventional alternatives will be described below in connection with the embodiments.
Drawings
The drawings are included to provide a better understanding of the invention and are not to be construed as unduly limiting the invention. Wherein:
FIG. 1 is a schematic diagram of the main steps of a method for making a secret-free payment based on digital currency according to an embodiment of the present invention;
FIG. 2 is a schematic diagram of the privacy-free payment principle of the first embodiment of the present invention;
FIG. 3 is a schematic diagram of the privacy-free payment principle of a second embodiment of the present invention;
FIG. 4 is a schematic diagram of the privacy-free payment principle of a third embodiment of the present invention;
FIG. 5 is a schematic diagram of the main modules of an apparatus for making a secret-free payment based on digital currency according to an embodiment of the present invention;
FIG. 6 is an exemplary system architecture diagram in which embodiments of the present invention may be employed;
fig. 7 is a schematic block diagram of a computer system suitable for use in implementing a terminal device or server of an embodiment of the invention.
Detailed Description
Exemplary embodiments of the present invention are described below with reference to the accompanying drawings, in which various details of embodiments of the invention are included to assist understanding, and which are to be considered as merely exemplary. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the invention. Also, descriptions of well-known functions and constructions are omitted in the following description for clarity and conciseness.
In order to solve the technical problems in the prior art, the invention provides a method for carrying out secret-free payment based on digital currency. Compared with the technical scheme that after the user performs the secret-free authorization on the payment platform, the user performs the secret-free payment on the payment platform in the prior art, the secret-free authorization is applied to the background of the payee mechanism from the payee, so that the secret-free authorization is issued more safely, the secret-free authorization is not required to be performed by the user, and the payment safety is greatly improved; the user of the payer can realize the password-free payment by verifying the password-free payment of the payee during the payment, and the user operation is more convenient, so that the fund safety of the user is ensured and the user experience is improved when the digital currency is used for payment.
In order to realize the method for carrying out the secret-free payment based on the digital currency, the invention provides a system for carrying out the secret-free payment based on the digital currency, which mainly comprises a payment module, a collection module, an organization background signing module and an organization background transaction module. The payment module is responsible for verifying the secret-free authority of the payee and verifying the password, the fingerprint or the secret-free payment according to the secret-free authority of the payee; the collection module is responsible for applying for collection secret-free authority to the mechanism background signing module of the collection party, sending secret-free authority information to the payment party in the transaction process, and transmitting payment information to the mechanism background transaction module of the collection party. The mechanism background signing module is responsible for carrying out password-free collection permission registration on a collector; the mechanism background transaction module verifies the transaction information and the secret-free authority transmitted by the payee, confirms the secret-free or secret-verification operation of the payer and processes the transaction. Specifically, the secret-free payment method is implemented according to the following principle: firstly, a payment module is connected with a collection module; the second step is that: the two parties carry out secret-free verification in the transaction process; and thirdly, the payer carries out transaction with the payee after carrying out the secret-free operation or the secret-verification operation. If the transaction is online, the institution background transaction module verifies the password-free authority of the payee, checks whether the password is verified by the payer, confirms that the password is correct and continues the payment process.
Fig. 1 is a schematic diagram of the main steps of a method for making a secret-free payment based on digital currency according to an embodiment of the present invention. As shown in fig. 1, the method for performing a secret-free payment based on digital currency according to the embodiment of the present invention mainly includes the following steps S101 to S102.
Step S101: receiving a secret-free payment request sent by a payee and based on digital currency, wherein the secret-free payment request is generated according to transaction information and secret-free authority information of the payee. The password-free authority information of the payee is applied by a payee institution of the payee. The payee is, for example, public service infrastructure (such as public transport and subway), official business authorized by the institution, and the like, and provides more convenient service for the payer user by applying the secret-free authority to the payee institution in the process of opening or using the digital currency wallet. Among them, the payee institution is an institution for providing support services to the payee's digital money wallet, and the payer institution is an institution for providing support services to the payer's digital money wallet, for example, each commercial banking institution or the like;
step S102: and performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information, thereby completing secret-free payment.
In one embodiment of the invention, the secret-free authority information is a user certificate with a secret-free field, and the user certificate is included in the secret-free payment request. In step S102, the password-free payment verification is performed on the payee according to the password-free permission information, which may specifically include: verifying the user certificate using a payee certificate to perform a privacy-exempt payment verification for the payee.
Fig. 2 is a schematic diagram of the principle of the secret-free payment of the first embodiment of the invention. In this embodiment, as shown in fig. 2, when the payee applies for the pass-through authorization from the payee institution, the payee institution generates a user certificate with a pass-through field and issues the user certificate to the payee, and when the pass-through payment is performed, the payee can be verified by verifying the user certificate to perform the pass-through payment verification.
In particular, the payer verifies the user's certificate using a payee certificate, which may be pre-set in a digital currency wallet or included in the request for a privacy-free payment. When the payer digital money wallet application is installed, each payee certificate can be deployed in the payer digital money wallet for subsequent verification of the secret-free payment. Or when the digital money wallet application of the payer is installed, only the central bank certificate is deployed in the digital money wallet of the payer, and when the payee sends the password-free payment request, the password-free payment request includes a certificate of the institution, at this time, when the certificate of the institution is used for verifying the user certificate, the certificate of the institution can be firstly verified by using the central bank certificate preset in the digital money wallet; in the case of passing the verification, the user certificate is verified using the payee certificate.
When the user certificate is verified, firstly, whether the user certificate comprises the secret-free field or not is verified, and secondly, the validity of the secret-free field is verified. When the user certificate comprises the secret-free field and the secret-free field is valid, the verification is passed, at this time, the payer executes secret-free operation (also called authentication-free operation, which means that payment is directly confirmed without password input and the like), and triggers the payer mechanism to pay the digital currency according to the transaction information. Otherwise, when the user certificate does not include the secret-free field or the secret-free field is invalid, the verification is not passed, and the payer can pay through password verification operation or refuse to pay. The transaction information includes, for example: payer information (payer identification, payer wallet address, etc.), payee information (payee identification, payee wallet address, etc.), and transaction amount.
In another embodiment of the invention, the secret-free authority information is a symmetric key for secret-free payment, and the secret-free payment request is generated by encrypting transaction information by using the symmetric key for secret-free payment of the payee; in step S102, when the password-free payment verification is performed on the payee according to the password-free authority information, the method may specifically include: and decrypting the password-free payment request by using a symmetric key preset in the digital currency wallet and corresponding to the payee so as to verify the password-free payment of the payee.
Fig. 3 is a schematic diagram of the principle of the secret-free payment of the second embodiment of the invention. In this embodiment, as shown in fig. 3, when the payee applies for the pass right to the payee mechanism, the payee mechanism generates a symmetric key for the pass payment and issues the symmetric key to the payee mechanism, and when the pass payment is performed, the payee mechanism can perform pass verification on the pass payment through the symmetric key.
Specifically, after the payee establishes connection with the payer, the transaction information is encrypted by using the symmetric key for the password-free payment to generate a password-free payment request, and the password-free payment request is sent to the payer. The transaction information includes, for example, payer information (payer identification, payer wallet address, etc.), payee information (payee identification, payee wallet address, etc.), and transaction amount. The encryption process is, for example, encryption using a symmetric encryption algorithm or integrity protection using a data integrity protection algorithm (e.g., data integrity protection by a message authentication code MAC) based on the symmetric key, and so on. And after receiving the password-free payment request, the payer acquires a preset symmetric key corresponding to the payee from the digital currency wallet, and decrypts the password-free payment request to verify the password-free payment of the payee. Wherein, when the digital currency wallet application of the payer is installed, the symmetric key corresponding to the payee is preset.
When the password-free payment verification is carried out on the payee through the symmetric key, if the decryption processing is successful, the verification is passed, and at the moment, the payer executes the password-free operation (also called authentication-free operation, which means that the payment is directly confirmed without password input and the like), and triggers the payer mechanism to carry out digital currency payment according to the transaction information. Otherwise, when the decryption processing is unsuccessful, the verification is not passed, and the payer can pay through password verification operation or refuse to pay.
In another embodiment of the present invention, the information of the secret-free authority is a secret-free field issued by a payee institution, and the request for the secret-free payment includes the secret-free field and the transaction information. In step S102, when the payee is verified to be a secret-free payment according to the secret-free authority information and if the verification is passed, the secret-free operation is performed to enable the payer mechanism to pay the digital money according to the transaction information, the method may specifically include: executing a secret-free operation, and generating a secret-free payment verification request according to the secret-free operation and the secret-free payment request; sending the password-free payment verification request to the payee so that the payee invokes a payee mechanism and a payer mechanism to perform password-free payment verification on the payee according to the password-free field; and in the case of passing the verification, causing the payer institution to pay for digital money based on the transaction information.
Fig. 4 is a schematic diagram of the principle of the secret-free payment of the third embodiment of the invention. As shown in fig. 4, in this embodiment, when the payee applies for the password-free authority to the payee mechanism, the payee mechanism performs the password-free registration on the payee and records the related information, generates the password-free field and issues the generated password-free field to the payer to grant the payee the password-free payment authority, and when performing the password-free payment, the payee mechanism needs to perform the verification of the password-free payment. This embodiment typically requires verification on-line, mostly for on-line transaction scenarios.
In the above embodiment of the present invention, the invoking, by the payee and the payer, a password-free payment verification for the payee according to the password-free field by the payee and the payer mechanism may specifically include: the payee sends the request for verification of the password-free payment to the payee institution; the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free authority identification to the payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform; and the payer mechanism carries out password-free payment verification on the payee according to the password-free authority identification and the password-free field. If the payee mechanism and the payer mechanism are the same mechanism, the payee mechanism directly performs the verification of the password-free payment.
In another embodiment of the present invention, when generating the request for verification of the password-free payment according to the password-free operation and the request for payment, the method specifically includes: respectively encrypting the secret-free operation and the secret-free payment request and then splicing to generate a secret-free payment verification request, or splicing the secret-free operation and the secret-free payment request and then encrypting to generate a secret-free payment verification request;
and the payee invoking a payee mechanism and a payer mechanism to perform the password-free payment verification on the payee according to the password-free field, which may specifically include: the payee sends the request for verification of the password-free payment to the payee institution; the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free payment verification request and the password-free authority identification to a payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform; and the payer mechanism decrypts the password-free payment verification request to obtain the password-free field and verifies the password-free payment of the payee according to the password-free authority identification and the password-free field.
Specifically, in an online transaction scene, after the payee and the payer establish connection, the payee generates a password-free payment request according to transaction information and a password-free field issued by the payee, and sends the password-free payment request to the payee. The payee performs a privacy-free operation according to a privacy-free field included in the privacy-free payment request, and sends the privacy-free operation and the privacy-free payment request together to the payer mechanism to request for privacy-free payment verification. When the payee generates the password-free payment verification request, the executed password-free operation and the password-free payment request are signed or integrity protected together to generate the password-free payment verification request, or the executed password-free operation and the executed password-free payment request are signed or integrity protected respectively to generate the password-free payment verification request.
After receiving the password-free payment verification request sent by the payee, the payee mechanism checks the password-free payment authority of the payee, and sends a password-free authority identifier for identifying whether the payee has the password-free payment authority to the payer mechanism together with the password-free payment request. If the payee institution and the payer institution are different institutions, such as different commercial banks, data interaction needs to be performed through the interconnection platform; if the payee institution and the payer institution are the same institution, the subsequent verification process is directly performed by the payer institution (or payee institution). The payer mechanism decrypts the password-free payment verification request to obtain a password-free field included in the password-free payment request; then comparing and matching the secret-free authority identification sent by the payer mechanism with the obtained secret-free field, if the secret-free authority identification is consistent with the obtained secret-free field, the secret-free payment verification of the payee is passed, and the payer mechanism carries out digital currency payment according to the transaction information; otherwise, if the two are not consistent, the verification is not passed, and the payment mechanism refuses the transaction.
According to yet another embodiment of the invention, the transaction information includes a transaction amount; and before executing a secret-free operation to make a payer mechanism pay digital currency according to the transaction information, the method further comprises the following steps: and verifying the transaction amount according to the transaction amount and a preset password-free payment amount limit value, and if the transaction amount is not greater than the password-free payment amount limit value, passing the verification. According to the embodiment of the invention, the method for carrying out the secret-free payment based on the digital currency can also be added with the verification of the transaction amount after carrying out the secret-free payment verification on the payer, namely, the user carries out the secret-free or authentication-free operation after carrying out the double judgment and verification on the secret-free authority of the payee and the transaction amount, thereby ensuring the fund security of the user.
According to the embodiment of the invention, when secret-free payment is carried out based on digital currency, under an off-line scene, a secret-free field in a user certificate is verified through an organization certificate or verification is carried out through a symmetric key preset by both parties; in an online scene, a password-free signing mode can be carried out between a payee and a payee mechanism background, a password-free field or a password-free identifier is transmitted by the payee, whether password verification or authentication information is carried out or not is transmitted by the payer, and whether a transaction is successful or not is verified by the mechanism background. The scheme greatly improves the user experience of digital currency payment and ensures the fund safety of the user. The method for carrying out secret-free payment based on digital currency can be applied to double off-line scenes, single off-line scenes and on-line payment scenes, and different schemes can meet different payment scenes and performance requirements. The secret-free payment method is particularly suitable for scenes of near field communication, public transportation, mechanism signing merchants and the like, can greatly improve the payment rate and experience of users, reduces the steps of user authentication, simultaneously ensures the fund safety of the users, and avoids fund loss caused by illegal embezzlement.
Fig. 5 is a schematic diagram of main blocks of an apparatus for making a secret-free payment based on digital money according to an embodiment of the present invention. As shown in fig. 5, the apparatus 500 for performing a secret payment based on digital currency according to the embodiment of the present invention mainly includes a request receiving module 501 and a verification payment module 502.
A request receiving module 501, configured to receive a secret-free payment request based on digital currency sent by a payee, where the secret-free payment request is generated according to transaction information and secret-free authority information of the payee;
and the verification payment module 502 is used for performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation to enable a payer mechanism to perform digital currency payment according to the transaction information under the condition of passing verification so as to complete secret-free payment.
According to one embodiment of the invention, the secret-free authority information is a user certificate with a secret-free field, and the secret-free payment request comprises the user certificate; the verify payments module 502 may also be used to: verifying the user certificate using a payee certificate to perform a privacy-exempt payment verification for the payee.
According to another embodiment of the invention, the payee certificate is pre-set in the digital currency wallet or included in the request for a privacy-free payment.
According to another embodiment of the invention, if the payee certificate is included in the request for a privacy-exempt payment, the verify-payments module 502, when verifying the user certificate using the payee certificate, may be further configured to: verifying the cashier's certificate by using a certificate of a central line preset in a digital money wallet; and in case of passing the verification, verifying the user certificate by using the payee certificate.
According to another embodiment of the invention, the secret-free authority information is a symmetric key for secret-free payment, and the secret-free payment request is generated by encrypting transaction information by using the symmetric key for secret-free payment of the payee; the verify payments module 502 may also be used to: and decrypting the password-free payment request by using a symmetric key preset in the digital currency wallet and corresponding to the payee so as to verify the password-free payment of the payee.
According to another embodiment of the invention, the secret-free permission information is a secret-free field issued by a payee institution, and the secret-free payment request comprises the secret-free field and the transaction information; the verify payments module 502 may also be used to: executing a secret-free operation, and generating a secret-free payment verification request according to the secret-free operation and the secret-free payment request; sending the password-free payment verification request to the payee so that the payee invokes a payee mechanism and a payer mechanism to perform password-free payment verification on the payee according to the password-free field; and in the case of passing the verification, causing the payer institution to pay for digital money based on the transaction information.
According to yet another embodiment of the invention, the payee invoking a payee mechanism and a payer mechanism for a password-free payment verification of the payee according to the password-free field comprises: the payee sends the request for verification of the password-free payment to the payee institution; the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free authority identification to the payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform; and the payer mechanism carries out password-free payment verification on the payee according to the password-free authority identification and the password-free field.
According to still another embodiment of the present invention, generating a privacy-exempt payment verification request according to the privacy-exempt operation and the privacy-exempt payment request includes: respectively encrypting the secret-free operation and the secret-free payment request and then splicing to generate a secret-free payment verification request, or splicing the secret-free operation and the secret-free payment request and then encrypting to generate a secret-free payment verification request;
the payee invoking a payee mechanism and a payer mechanism to carry out the password-free payment verification on the payee according to the password-free field comprises the following steps: the payee sends the request for verification of the password-free payment to the payee institution; the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free payment verification request and the password-free authority identification to a payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform; and the payer mechanism decrypts the password-free payment verification request to obtain the password-free field and verifies the password-free payment of the payee according to the password-free authority identification and the password-free field.
According to yet another embodiment of the invention, the transaction information includes a transaction amount; the device 500 for performing the crypto-payment based on the digital currency may further include an amount verification module (not shown in the drawings) for: and before executing the secret-free operation to enable a payer mechanism to pay digital currency according to the transaction information, verifying the transaction amount according to the transaction amount and a preset secret-free payment amount limit value, and passing the verification under the condition that the transaction amount is not greater than the secret-free payment amount limit value.
According to the technical scheme of the embodiment of the invention, a secret-free payment request based on digital currency sent by a payee is received, and the secret-free payment request is generated according to transaction information and secret-free authority information of the payee; the technical scheme of the password-free payment is completed by issuing the password-free authority to the payee for verifying the password-free payment, so that the issuing of the password-free authority is safer without requiring a user to perform password-free authorization, and the payment safety is greatly improved; the user of the payer can realize the password-free payment by verifying the password-free payment of the payee during the payment, the user operation is more convenient, and the payment rate and the experience of the user can be greatly improved, so that when the payment is carried out by using the digital currency, the fund safety of the user is ensured, the fund loss caused by illegal embezzlement is avoided, and the user experience is also improved.
Fig. 6 illustrates an exemplary system architecture 600 of a method for performing a secret payment based on digital currency or an apparatus for performing a secret payment based on digital currency, to which embodiments of the present invention may be applied.
As shown in fig. 6, the system architecture 600 may include terminal devices 601, 602, 603, a network 604, and a server 605. The network 604 serves to provide a medium for communication links between the terminal devices 601, 602, 603 and the server 605. Network 604 may include various types of connections, such as wire, wireless communication links, or fiber optic cables, to name a few.
A user may use the terminal devices 601, 602, 603 to interact with the server 605 via the network 604 to receive or send messages or the like. The terminal devices 601, 602, 603 may have installed thereon various communication client applications such as a bank-type application, a digital money wallet application, a cryptographic signature-type application, etc. (by way of example only).
The terminal devices 601, 602, 603 may be various electronic devices having a display screen and supporting web browsing, including but not limited to smart phones, tablet computers, laptop portable computers, desktop computers, and the like.
The server 605 may be a server providing various services, such as a background management server (for example only) supporting a request for a privacy-free payment from a user using the terminal device 601, 602, 603. The background management server may perform a secret-free payment verification on the payee according to the secret-free authority information on the received data such as the secret-free payment request, execute a secret-free operation to enable a payer mechanism to perform processing such as digital currency payment according to the transaction information when the verification is passed, and feed back a processing result (for example, a secret-free payment result — just an example) to the terminal device.
It should be noted that the method for performing the secret-free payment based on the digital currency provided by the embodiment of the present invention is generally executed by the server 605, and accordingly, the device for performing the secret-free payment based on the digital currency is generally disposed in the server 605.
It should be understood that the number of terminal devices, networks, and servers in fig. 6 is merely illustrative. There may be any number of terminal devices, networks, and servers, as desired for implementation.
Referring now to FIG. 7, a block diagram of a computer system 700 suitable for use with a terminal device or server implementing an embodiment of the invention is shown. The terminal device or the server shown in fig. 7 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present invention.
As shown in fig. 7, the computer system 700 includes a Central Processing Unit (CPU)701, which can perform various appropriate actions and processes in accordance with a program stored in a Read Only Memory (ROM)702 or a program loaded from a storage section 708 into a Random Access Memory (RAM) 703. In the RAM 703, various programs and data necessary for the operation of the system 700 are also stored. The CPU 701, the ROM 702, and the RAM 703 are connected to each other via a bus 704. An input/output (I/O) interface 705 is also connected to bus 704.
The following components are connected to the I/O interface 705: an input portion 706 including a keyboard, a mouse, and the like; an output section 707 including a display such as a Cathode Ray Tube (CRT), a Liquid Crystal Display (LCD), and the like, and a speaker; a storage section 708 including a hard disk and the like; and a communication section 709 including a network interface card such as a LAN card, a modem, or the like. The communication section 709 performs communication processing via a network such as the internet. A drive 710 is also connected to the I/O interface 705 as needed. A removable medium 711 such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, or the like is mounted on the drive 710 as necessary, so that a computer program read out therefrom is mounted into the storage section 708 as necessary.
In particular, according to the embodiments of the present disclosure, the processes described above with reference to the flowcharts may be implemented as computer software programs. For example, embodiments of the present disclosure include a computer program product comprising a computer program embodied on a computer readable medium, the computer program comprising program code for performing the method illustrated in the flow chart. In such an embodiment, the computer program can be downloaded and installed from a network through the communication section 709, and/or installed from the removable medium 711. The computer program performs the above-described functions defined in the system of the present invention when executed by the Central Processing Unit (CPU) 701.
It should be noted that the computer readable medium shown in the present invention can be a computer readable signal medium or a computer readable storage medium or any combination of the two. A computer readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples of the computer readable storage medium may include, but are not limited to: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the present invention, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. In the present invention, however, a computer readable signal medium may include a propagated data signal with computer readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to: wireless, wire, fiber optic cable, RF, etc., or any suitable combination of the foregoing.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present invention. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams or flowchart illustration, and combinations of blocks in the block diagrams or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
The units or modules described in the embodiments of the present invention may be implemented by software, or may be implemented by hardware. The described units or modules may also be provided in a processor, and may be described as: a processor includes a request receiving module and a verified payment module. Where the names of such units or modules do not in some cases constitute a limitation on the unit or module itself, for example, the request receiving module may also be described as a "module for receiving a request for a digital currency based privacy-free payment from a payee".
As another aspect, the present invention also provides a computer-readable medium that may be contained in the apparatus described in the above embodiments; or may be separate and not incorporated into the device. The computer readable medium carries one or more programs which, when executed by a device, cause the device to comprise: receiving a secret-free payment request based on digital currency sent by a payee, wherein the secret-free payment request is generated according to transaction information and secret-free authority information of the payee; and performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information, thereby completing secret-free payment.
According to the technical scheme of the embodiment of the invention, a secret-free payment request based on digital currency sent by a payee is received, and the secret-free payment request is generated according to transaction information and secret-free authority information of the payee; the technical scheme of the password-free payment is completed by issuing the password-free authority to the payee for verifying the password-free payment, so that the issuing of the password-free authority is safer without requiring a user to perform password-free authorization, and the payment safety is greatly improved; the user of the payer can realize the password-free payment by verifying the password-free payment of the payee during the payment, the user operation is more convenient, and the payment rate and the experience of the user can be greatly improved, so that when the payment is carried out by using the digital currency, the fund safety of the user is ensured, the fund loss caused by illegal embezzlement is avoided, and the user experience is also improved.
The above-described embodiments should not be construed as limiting the scope of the invention. Those skilled in the art will appreciate that various modifications, combinations, sub-combinations, and substitutions can occur, depending on design requirements and other factors. Any modification, equivalent replacement, and improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.

Claims (12)

1. A method for secure payment based on digital currency, comprising:
receiving a secret-free payment request based on digital currency sent by a payee, wherein the secret-free payment request is generated according to transaction information and secret-free authority information of the payee;
and performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information, thereby completing secret-free payment.
2. The method of claim 1, wherein the privacy-exempt permission information is a user certificate having a privacy-exempt field, and wherein the user certificate is included in the privacy-exempt payment request;
the verification of the password-free payment to the payee according to the password-free authority information comprises the following steps:
verifying the user certificate using a payee certificate to perform a privacy-exempt payment verification for the payee.
3. The method of claim 2, wherein the payee certificate is pre-provisioned in a digital currency wallet or included in the request for the privacy-free payment.
4. The method of claim 3, wherein verifying the user certificate using a payee certificate if the payee certificate is included in the request for a privacy-exempt payment comprises:
verifying the cashier's certificate by using a certificate of a central line preset in a digital money wallet;
and in case of passing the verification, verifying the user certificate by using the payee certificate.
5. The method of claim 1, wherein the secret-free authority information is a symmetric key for secret-free payment, and the secret-free payment request is generated by encrypting transaction information by using the symmetric key for secret-free payment of the payee;
the verification of the password-free payment to the payee according to the password-free authority information comprises the following steps:
and decrypting the secret-free payment request by using a symmetric key corresponding to the payee and preset in the digital currency wallet so as to verify the secret-free payment of the payee.
6. The method of claim 1, wherein the secret-free permission information is a secret-free field issued by a payee institution, and the secret-free payment request comprises the secret-free field and the transaction information;
and carrying out secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation to enable a payer mechanism to carry out digital currency payment according to the transaction information under the condition that the verification is passed, wherein the secret-free payment verification comprises the following steps:
executing a secret-free operation, and generating a secret-free payment verification request according to the secret-free operation and the secret-free payment request;
sending the password-free payment verification request to the payee so that the payee calls a payee mechanism and a payer mechanism to carry out password-free payment verification on the payee according to the password-free field; and in the case of passing the verification, causing the payer institution to pay for digital money based on the transaction information.
7. The method of claim 6, wherein the payee invoking a payee mechanism and a payer mechanism for a password-free payment verification for the payee based on the password-free field comprises:
the payee sends the request for verification of the password-free payment to the payee institution;
the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free authority identification to the payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform;
and the payer mechanism carries out password-free payment verification on the payee according to the password-free authority identification and the password-free field.
8. The method of claim 6,
generating a secret-free payment verification request according to the secret-free operation and the secret-free payment request comprises:
respectively encrypting the secret-free operation and the secret-free payment request and then splicing to generate a secret-free payment verification request, or splicing the secret-free operation and the secret-free payment request and then encrypting to generate a secret-free payment verification request;
the payee invoking a payee mechanism and a payer mechanism to carry out the password-free payment verification on the payee according to the password-free field comprises the following steps:
the payee sends the request for verification of the password-free payment to the payee institution;
the payee mechanism acquires the password-free authority identification of the payee according to the password-free payment verification request and sends the password-free payment verification request and the password-free authority identification to a payer mechanism, wherein if the payee mechanism and the payer mechanism are different mechanisms, the payee mechanism and the payer mechanism carry out data interaction through an interconnection platform;
and the payer mechanism decrypts the password-free payment verification request to obtain the password-free field and performs password-free payment verification on the payee according to the password-free authority identifier and the password-free field.
9. The method of claim 1, wherein the transaction information includes a transaction amount;
before executing the secret-free operation to enable the payer mechanism to pay the digital currency according to the transaction information, the method further comprises the following steps:
and verifying the transaction amount according to the transaction amount and a preset password-free payment amount limit value, and if the transaction amount is not greater than the password-free payment amount limit value, passing the verification.
10. An apparatus for making a secret-free payment based on digital currency, comprising:
the request receiving module is used for receiving a secret-free payment request which is sent by a payee and is based on digital currency, and the secret-free payment request is generated according to transaction information and secret-free authority information of the payee;
and the verification payment module is used for performing secret-free payment verification on the payee according to the secret-free authority information, and executing secret-free operation under the condition that the verification is passed so as to enable a payer mechanism to perform digital currency payment according to the transaction information and finish secret-free payment.
11. An electronic device for secret-free payment based on digital currency, comprising:
one or more processors;
a storage device for storing one or more programs,
when executed by the one or more processors, cause the one or more processors to implement the method of any one of claims 1-9.
12. A computer-readable medium, on which a computer program is stored, which, when being executed by a processor, carries out the method according to any one of claims 1-9.
CN202111673158.1A 2021-12-31 2021-12-31 Method and device for secret-free payment based on digital currency Pending CN114462990A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202111673158.1A CN114462990A (en) 2021-12-31 2021-12-31 Method and device for secret-free payment based on digital currency

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202111673158.1A CN114462990A (en) 2021-12-31 2021-12-31 Method and device for secret-free payment based on digital currency

Publications (1)

Publication Number Publication Date
CN114462990A true CN114462990A (en) 2022-05-10

Family

ID=81408406

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202111673158.1A Pending CN114462990A (en) 2021-12-31 2021-12-31 Method and device for secret-free payment based on digital currency

Country Status (1)

Country Link
CN (1) CN114462990A (en)

Similar Documents

Publication Publication Date Title
AU2018202542B2 (en) Automated account provisioning
US20200336315A1 (en) Validation cryptogram for transaction
EP3136646B1 (en) Secure data interaction method and system
CN106062799B (en) Method and system for secure authentication of a user and a mobile device without a secure element
CN116132063A (en) Security token distribution
AU2017206119A1 (en) Systems and methods for device push provisioning
CN110740136B (en) Network security control method for open bank and open bank platform
US20210383378A1 (en) Validation Service For Account Verification
WO2016088087A1 (en) Third party access to a financial account
CN106251145A (en) Electronic fare payment system, electronic payment devices and electric paying method
CN114462989A (en) Method, device and system for starting digital currency hardware wallet application
CN112074835A (en) Techniques to perform secure operations
CN114037447A (en) Method and device for off-line transaction
WO2023160667A1 (en) Security authentication method, apparatus and system for digital currency transaction
CN114037446A (en) Transaction method, transaction management method, device and system for digital currency
CN114462991A (en) Method and apparatus for conditional transactions based on digital currency
CN114186994A (en) Method, terminal and system for using digital currency wallet application
CN114119024A (en) Data interaction method, device and related equipment
CN114462990A (en) Method and device for secret-free payment based on digital currency
CN113452528B (en) Request processing method, system, computer device and medium
US20230107197A1 (en) Blockchain based interaction processing
WO2023072115A1 (en) Digital currency transaction method and system, and related transaction terminals
US20240062198A1 (en) Security Chip for Digital Currency Storage, and Application Method for Security Chip for Digital Currency Storage
CN116415947A (en) Payment method, device and system based on hardware wallet
CN115222403A (en) Method, device and system for managing digital currency

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination