CN117745289A

CN117745289A - Payment method and device, nonvolatile storage medium and computer equipment

Info

Publication number: CN117745289A
Application number: CN202211110686.0A
Authority: CN
Inventors: 穆长春; 狄刚; 梁伟; 许科峰; 冯曦雨
Original assignee: Digital Currency Institute of the Peoples Bank of China
Current assignee: Digital Currency Institute of the Peoples Bank of China
Priority date: 2022-09-13
Filing date: 2022-09-13
Publication date: 2024-03-22

Abstract

The invention discloses a payment method, a payment device, a nonvolatile storage medium and computer equipment. Wherein the method comprises the following steps: receiving payment information, wherein the payment information includes an amount of the payment; transmitting the payer digital identity information and the payer certificate to the payee device based on the payment information; receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payee, and comprises the payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; and in the case that the identity verification result of the payee is passing verification, paying the digital currency to the payee according to the payment instruction. The invention solves the technical problem that whether the identities of the two parties participating in the transaction are true and legal is difficult to confirm in the related technology.

Description

Payment method and device, nonvolatile storage medium and computer equipment

Technical Field

The invention relates to the field of financial science and technology, in particular to a payment method, a payment device, a nonvolatile storage medium and computer equipment.

Background

The digital currency has the value characteristic of currency, and both transaction parties can develop real and concise transaction practice based on the digital currency. However, since digital money is realized by digital technology, it is difficult for ordinary people to verify authenticity of money in a transaction scenario, so that how to guarantee authenticity, uniqueness and non-repudiation of payment information and money in a transaction link, and ensuring confidentiality and authenticity of user information are facing problems required for realizing digital money transaction.

In view of the above problems, no effective solution has been proposed at present.

Disclosure of Invention

The embodiment of the invention provides a payment method, a payment device, a nonvolatile storage medium and computer equipment, which at least solve the technical problem that whether identities of two parties participating in a transaction are true or legal is difficult to confirm in the related technology.

According to an aspect of an embodiment of the present invention, there is provided a payment method including: receiving payment information, wherein the payment information includes an amount of the payment; transmitting payer digital identity information and payer credentials to a payee based on the payment information; receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payer, and the payment instruction comprises the payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a pre-stored upper certificate of the payee, and obtaining an identity verification result of the payee; and under the condition that the identity verification result of the payee is passing verification, paying digital currency to the money receiving equipment according to the payment instruction.

Optionally, the sending the payer digital identity information and the payer certificate to the payee device based on the payment information includes: transmitting the payment information to a payer SE chip; receiving the digital identity information of the payer and the payer certificate returned by the SE chip of the payer in response to the payment information, wherein the payer certificate is a lower-level certificate of the upper-level certificate of the payer, and the digital identity information of the payer comprises at least one of the following information of the payer: personal digital ID, ID card number, biometric information; and sending the payer digital identity information and the payer certificate to the collection device.

Optionally, the verifying the payee digital identity information and the payee certificate according to a pre-stored payer superior certificate to obtain payee identity verification results, including: transmitting the payment instruction to the payer SE chip, and verifying the payee digital identity information and the payee certificate by the payer SE chip based on the payer superior certificate to obtain the payee identity verification result; the payment of digital currency to the collection device according to the payment instruction comprises: and receiving a payment certificate transmitted by the payer SE chip and sending the payment certificate to the collection device, wherein the payment certificate is used for proving that the digital currency is paid to the collection device according to the payment instruction.

Optionally, the method further comprises: receiving a first session encryption character transmitted by the payer SE chip and sending the first session encryption character to the collection device; and receiving a second session encryption character sent by the collection device and transmitting the second session encryption character to the payer SE chip, wherein the first session encryption character and the second session encryption character are used for generating a session key, and the session key is used for encrypting communication with the collection device.

Optionally, the receiving payment receipt transmitted by the payer SE chip and sending the payment receipt to the collection device includes: receiving a payment voucher ciphertext transmitted by the payer SE chip, wherein the payment voucher ciphertext is ciphertext obtained by encrypting the payment voucher by the payer SE chip by using the session key; and sending the payment certificate ciphertext to the collection device.

Optionally, after paying the digital money to the collection device according to the payment instruction, the method further comprises: judging whether a coin closing condition is reached, wherein the coin closing condition comprises at least one of the following: the number of times of completing the digital currency payment action reaches a first threshold value, and the digital currency storage space is smaller than a second threshold value; under the condition that the coin closing condition is met, sending the digital currency historical data of the payer, the digital identity information of the payer and the payer certificate to a mechanism background, wherein the mechanism background verifies the identity of the payer and verifies whether the digital currency historical data of the payer is legal or not according to a superior mechanism certificate; receiving updated digital money of a payer returned by the mechanism background, wherein the updated digital money of the payer is a digital money string returned by the mechanism background under the condition that the identity of the payer and the historical data of the digital money of the payer are verified; and after receiving the updated digital currency of the payer, cleaning the historical data of the digital currency of the payer.

According to another aspect of the embodiment of the present invention, there is also provided a payment method, including: transmitting payment information to a payment device, wherein the payment information includes an amount of payment; receiving digital identity information of a payer and a payer certificate returned by the payment equipment; verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining an identity verification result of the payer; sending a payment instruction to the payment device when the payment party identity verification result is verified, wherein the payment instruction comprises the payment information, the payee digital identity information and payee certificate; and determining that the cash collecting equipment pays the digital money according to the payment instruction.

Optionally, the verifying the digital identity information of the payer and the certificate of the payer according to a pre-stored superior certificate of the payee, to obtain a verification result of the payer, includes: transmitting the payer digital identity information and the payer certificate to a payee SE (secure element) chip, wherein the payee SE chip is used for verifying the payer digital identity information and the payer certificate according to the prestored payee superior certificate and generating the payer identity verification result.

Optionally, the sending a payment instruction to the payment device includes: receiving a payee initialization response result transmitted by the payee SE chip in response to the payer identity verification result, wherein a payee certificate included in the payee initialization response result is a lower-level certificate of the payee upper-level certificate, and the payee digital identity information included in the payee initialization response result comprises at least one of the following information of a payee: personal digital ID, ID card number, biometric information; and generating the payment instruction according to the receiving party initialization response result, and sending the payment instruction to the payment equipment.

Optionally, the method further comprises: receiving a first session encryption character sent by the payment device and transmitting the first session encryption character to the payee SE chip; and receiving a second session encryption character transmitted by the SE chip of the payee and sending the second session encryption character to the payment device, wherein the first session encryption character and the second session encryption character are used for generating a session key, and the session key is used for encrypting communication with the payment device.

Optionally, the determining that the cash register device pays digital currency according to the payment instruction includes: receiving a payment voucher ciphertext sent by the payment equipment, wherein the payment voucher ciphertext is ciphertext obtained by the payment equipment after encrypting a payment voucher by using the session key, and the payment voucher is used for proving that the payment equipment has paid the digital currency according to the payment instruction; the payment voucher ciphertext is sent to the payee SE chip, wherein the payee SE chip is used for decrypting the payment voucher ciphertext according to the session key to obtain the payment voucher, and is also used for generating a pushing result by verifying the payment voucher, and the pushing result is used for indicating whether the payment equipment pays the digital currency according to the payment instruction; and receiving the pushing result transmitted by the SE chip of the payee, and determining that the payee device pays the digital currency according to the payment instruction according to the pushing result.

Optionally, after determining that the cash collecting device pays digital currency according to the payment instruction, the method further includes: judging whether a coin closing condition is reached, wherein the coin closing condition comprises at least one of the following: the number of times of completing the digital currency payment action reaches a first threshold value, and the digital currency storage space is smaller than a second threshold value; under the condition that the coin closing condition is met, sending the digital currency historical data of the payee, the digital identity information of the payee and the payee certificate to a mechanism background, wherein the mechanism background verifies the identity of the payee and verifies whether the digital currency historical data of the payee is legal or not according to a higher-level mechanism certificate; receiving updated digital money of a payee returned by the mechanism background, wherein the updated digital money of the payee is a digital money string returned by the mechanism background under the condition that the identity of the payee and the historical data of the digital money of the payee are verified; and after receiving the updated digital money of the payee, cleaning the historical data of the digital money of the payee.

According to another aspect of the embodiment of the present invention, there is also provided a payment method, including: receiving payment information transmitted by a payment device, wherein the payment information comprises the amount of payment, and the payment information is information received by the payment device from a collection device; transmitting payer digital identity information and payer credentials to the payment device based on the payment information; receiving a payment instruction transmitted by the payment equipment, wherein the payment instruction is an instruction generated by the payment equipment after the verification of the digital identity information of the payer and the certificate of the payer is passed and sent to the payment equipment, and the payment instruction comprises the payment information, the digital identity information of the payee and a payment Fang Zheng book; verifying the digital identity information of the payee and the payee certificate according to a pre-stored superior certificate of the payee, and obtaining an identity verification result of the payee; and under the condition that the identity verification result of the payee is passing verification, paying digital currency to the payee device according to the payment instruction.

Optionally, the payment of digital currency to the collection device according to the payment instruction includes: generating a payment voucher according to the payment instruction, wherein the payment voucher is used for proving that the digital currency is paid to the collection device according to the payment instruction; transmitting the payment receipt to the payment device.

Optionally, the method further comprises: receiving a first session encryption character transmitted by the payment device, wherein the first session encryption character is a character sent to the payment device by the collection device; generating and transmitting a second session encryption character to the payment device, wherein the first session encryption character and the second session encryption character are used to generate a session key that is used to encrypt communications with the collection device; the session key is generated from the first session encryption character and the second session encryption character.

Optionally, the transmitting the payment voucher to the payment device comprises: encrypting the payment certificate by adopting the session key to obtain a payment certificate ciphertext; and transmitting the payment certificate ciphertext to the payment equipment.

According to another aspect of the embodiment of the present invention, there is also provided a payment method, including: receiving payment information, digital identity information of a payer and a payer certificate transmitted by a cash register, wherein the payment information comprises the amount of payment; verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining an identity verification result of the payer; if the identity verification result of the payer is passing verification, sending a payee initialization response result to the payee device, wherein the payee initialization response result comprises the payment information, payee digital identity information and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device; and determining that the payment equipment pays digital currency to the collection equipment according to the payment instruction.

Optionally, the determining that the payment device pays digital currency to the collection device according to the payment instruction includes: receiving payment vouchers transmitted by the collection device, wherein the payment vouchers are received by the collection device from the collection device, and the payment vouchers are used for proving that the payment device has paid the digital currency to the collection device according to the payment instruction; and verifying the payment receipt, and confirming that the digital currency is paid by the payment device if the payment receipt is verified.

Optionally, the method further comprises: receiving a first session encryption character transmitted by the collection device, wherein the first session encryption character is sent to the collection device by the payment device; generating and transmitting a second session encryption character to the checkout device, wherein the first session encryption character and the second session encryption character are used to generate a session key that is used to encrypt communications with the checkout device; the session key is generated from the first session encryption character and the second session encryption character.

Optionally, the receiving payment receipt transmitted by the payment device includes: receiving a payment voucher ciphertext transmitted by the collection device, wherein the payment voucher ciphertext is a ciphertext which is transmitted to the collection device after the payment device encrypts the payment voucher by using the session key; before said verifying said payment document, further comprising: and decrypting the payment certificate ciphertext by using the session key to obtain the payment certificate.

Optionally, the verifying the payment credential includes: acquiring a primary signature and a secondary signature of the digital currency from the payment certificate, wherein the primary signature is an issuing signature of a central bank on the digital currency, and the secondary signature is a signature of a secondary operation mechanism of the digital currency on the digital currency; respectively verifying the primary signature and the secondary signature by adopting a superior organization certificate to determine the legitimacy of the digital currency; verifying the payment instrument to determine that the payment device has paid the digital currency if the verification of the digital currency is legal; and rejecting the digital currency paid by the payment equipment under the condition that the verification result of the digital currency is illegal.

According to another aspect of the embodiment of the present invention, there is also provided a payment apparatus including: the first receiving module is used for receiving payment information, wherein the payment information comprises the amount of payment; the first sending module is used for sending the digital identity information of the payer and the certificate of the payer to the collection device based on the payment information; the second receiving module is used for receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payer, and the payment instruction comprises the payment information, the digital identity information of the payee and the certificate of the payee; the first verification module is used for verifying the digital identity information of the payee and the payee certificate according to a prestored upper certificate of the payee to obtain an identity verification result of the payee; and the first payment module is used for paying digital currency to the collection equipment according to the payment instruction under the condition that the identity verification result of the collection party is verified.

According to another aspect of the embodiment of the present invention, there is also provided a payment apparatus including: the second sending module is used for sending payment information to the payment equipment, wherein the payment information comprises the amount of payment; the third receiving module is used for receiving the digital identity information of the payer and the certificate of the payer returned by the payment equipment; the second verification module is used for verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining a verification result of the payer; the third sending module is used for sending a payment instruction to the payment equipment when the identity verification result of the payer is verified, wherein the payment instruction comprises the payment information, the digital identity information of the payee and the payee certificate; and the first determining module is used for determining that the cash collecting equipment pays digital currency according to the payment instruction.

According to another aspect of the embodiment of the present invention, there is also provided a payment apparatus including: a fourth receiving module, configured to receive payment information transmitted by a payment device, where the payment information includes an amount of payment, and the payment information is information received by the payment device from a collection device; the transmission module is used for transmitting the digital identity information of the payer and the certificate of the payer to the payment equipment based on the payment information; a fifth receiving module, configured to receive a payment instruction transmitted by the payment device, where the payment instruction is an instruction generated by the payment device after verification of the digital identity information of the payer and the certificate of the payer, and sent to the payment device, and the payment instruction includes the payment information, the digital identity information of the payee and the certificate of the payee; the third verification module is used for verifying the digital identity information of the payee and the payee certificate according to a prestored upper certificate of the payee to obtain an identity verification result of the payee; and the second payment module is used for paying digital currency to the collection equipment according to the payment instruction under the condition that the identity verification result of the collection party is verified.

According to another aspect of the embodiment of the present invention, there is also provided a payment apparatus including: a sixth receiving module, configured to receive payment information, digital identity information of a payer, and a payer certificate transmitted by a payment device, where the payment information includes a payment amount; the fourth verification module is used for verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining a verification result of the payer; a fourth sending module, configured to send a payee initialization response result to the payee device when the payee authentication result is verified, where the payee initialization response result includes the payment information, payee digital identity information, and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device; and the second determining module is used for determining that the payment equipment pays digital currency to the collection equipment according to the payment instruction.

According to still another aspect of the embodiments of the present invention, there is further provided a nonvolatile storage medium, where the nonvolatile storage medium includes a stored program, and when the program runs, the device in which the nonvolatile storage medium is controlled to execute any one of the payment methods described above.

According to still another aspect of the embodiments of the present invention, there is further provided a computer device, including a memory for storing a program and a processor for running the program stored in the memory, where the program executes any one of the payment methods described above.

In the embodiment of the invention, a preset certificate mode is adopted, and payment information is received, wherein the payment information comprises the amount of payment; transmitting the payer digital identity information and the payer certificate to the payee device based on the payment information; receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payee, and comprises the payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; under the condition that the identity verification result of the payee is that the digital currency is verified, the digital currency is paid to the payee according to the payment instruction, and the purpose of authoritative verification of the identities of the payer and the payee is achieved, so that the technical effect of ensuring that the identities of the payer and the payee are true and legal is achieved, and the technical problem that whether the identities of the payee and the payer are true and legal is difficult to confirm in the related technology is solved.

Drawings

The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiments of the invention and together with the description serve to explain the invention and do not constitute an undue limitation. In the drawings:

fig. 1 shows a block diagram of a hardware architecture of a mobile terminal for implementing a payment method;

fig. 2 is a schematic flow chart of a payment method one according to an embodiment of the present invention;

fig. 3 is a schematic flow chart of a payment method two according to an embodiment of the present invention;

fig. 4 is a schematic flow chart of a third payment method according to an embodiment of the present invention;

fig. 5 is a schematic flow chart of a payment method four provided according to an embodiment of the present invention;

FIG. 6 is a timing diagram for implementing transactions through offline payments provided in accordance with an alternative embodiment of the present invention;

fig. 7 is a block diagram of a first payment device according to an embodiment of the present invention;

fig. 8 is a block diagram of a second payment apparatus according to an embodiment of the present invention;

fig. 9 is a block diagram of a third configuration of a payment apparatus provided according to an embodiment of the present invention;

fig. 10 is a block diagram of a payment apparatus fourth provided according to an embodiment of the present invention.

Detailed Description

In order that those skilled in the art will better understand the present invention, a technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in which it is apparent that the described embodiments are only some embodiments of the present invention, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the present invention without making any inventive effort, shall fall within the scope of the present invention.

It should be noted that the terms "first," "second," and the like in the description and the claims of the present invention and the above figures are used for distinguishing between similar objects and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used may be interchanged where appropriate such that the embodiments of the invention described herein may be implemented in sequences other than those illustrated or otherwise described herein. Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.

In accordance with an embodiment of the present invention, there is provided a method embodiment of payment, it being noted that the steps shown in the flowchart of the figures may be performed in a computer system, such as a set of computer executable instructions, and, although a logical order is shown in the flowchart, in some cases, the steps shown or described may be performed in an order other than that shown or described herein.

The method embodiments provided by the embodiments of the present application may be performed in a mobile terminal, a computer terminal, or similar computing device. Fig. 1 shows a block diagram of a hardware architecture of a mobile terminal for implementing a payment method. As shown in fig. 1, the mobile terminal 10 may include one or more processors 102 (which may include, but are not limited to, a processing device such as a micro-processor MCU or a programmable logic device FPGA), a memory 104 for storing data. In addition to this, it may include: a display, an input/output interface (I/O interface), a Universal Serial BUS (USB) port (which may be included as one of the ports of the BUS), a network interface, a power supply, and/or a camera. It will be appreciated by those of ordinary skill in the art that the configuration shown in fig. 1 is merely illustrative and is not intended to limit the configuration of the electronic device described above. For example, the mobile terminal 10 may also include more or fewer components than shown in FIG. 1 or have a different configuration than shown in FIG. 1.

It should be noted that the one or more processors and/or other data processing circuits described above may be referred to herein generally as "data processing circuits. The data processing circuit may be embodied in whole or in part in software, hardware, firmware, or any combination thereof. Further, the data processing circuitry may be a single stand-alone processing module or incorporated, in whole or in part, into any of the other elements in the mobile terminal 10. As referred to in the embodiments of the present application, the data processing circuit acts as a processor control (e.g., selection of the path of the variable resistor termination to interface).

The memory 104 may be used to store software programs and modules of application software, such as program instructions/data storage devices corresponding to the payment methods in the embodiments of the present invention, and the processor executes the software programs and modules stored in the memory 104, thereby executing various functional applications and data processing, that is, implementing the payment methods of application programs described above. Memory 104 may include high-speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid-state memory. In some examples, the memory 104 may further comprise memory located remotely from the processor, which may be connected to the mobile terminal 10 via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.

The display may be, for example, a touch screen type Liquid Crystal Display (LCD) that may enable a user to interact with a user interface of the mobile terminal 10.

To enable a commercial transaction between a payer and a payee, digital currency may be used as a value carrier. Digital currency is currency that converts cash values into a series of electronically encrypted sequences, the security of the currency itself being secured by a cryptographic algorithm. In the aspect of cryptographic algorithm, the security of the digital currency system relates to symmetric passwords, asymmetric passwords, message digest algorithms and identity-based cryptosystems, and in the aspect of system implementation, the overall security of the cryptosystem, the selection of the cryptographic algorithm, the implementation of the cryptographic algorithm, the design of interactive protocols, the compatibility of international and domestic standards and the like are required to be deeply considered, so that the transaction security of the digital currency is ensured.

Fig. 2 is a schematic flow chart of a first payment method according to an embodiment of the present invention, which may be optionally applied to a payment device for completing a transfer of digital money between the payment device and a collection device. As shown in fig. 2, the method comprises the steps of:

in step S202, payment information is received, wherein the payment information includes an amount of the payment.

In this step, the payment information may be information sent by the payment device, and the payment device may communicate with each other by, for example, a short-range wireless communication technology (NFC for short), where it should be noted that the payment device and the payment device may be mobile terminals with NFC functions, such as smart phones or smart tablets, or POS devices with NFC functions. In addition, when the collection device and the payment device are communicated, a wireless near field communication mode such as Bluetooth or UWB can be adopted besides NFC, so long as the two interactive devices have corresponding hardware capability and support corresponding protocols. The payment information is generated and transmitted by the payment device, and the payment information includes the amount paid by the payment party and the time when the payment party requests the payment party.

Step S204, based on the payment information, sends the payer digital identity information and the payer certificate to the payee device.

After the payee receives the payer digital identity information and the payer certificate through the payee equipment, the payer digital identity information and the payer certificate can be verified to confirm the identity of the payer, and further confirm that the payment of the payer is legal and safe. The embodiment can be applied to a payment scene that the payment equipment and the payment equipment are in an off-line state, and the payment equipment cannot be connected with the Internet under the scene and can only communicate with each other, so that the adoption of the mode of sending and verifying the certificate of the payment party can help establish mutual trust between the payment party and the payment party, and help the payment party to confirm the identity of the payment party.

As an alternative embodiment, transmitting the payer digital identity information and the payer certificate to the payee device based on the payment information may include the steps of: transmitting payment information to a payer SE chip; receiving payer digital identity information and a payer certificate returned by a payer SE chip in response to the payment information, wherein the payer certificate is a subordinate certificate of an upper-level certificate of the payer, and the payer digital identity information comprises at least one of the following information of the payer: personal digital ID, ID card number, biometric information; the payer digital identity information and the payer certificate are sent to the payee device.

The payer certificate may be a digital certificate generated from a payer upper certificate authenticated by an authority certification authority. Alternatively, the authority certification authority may be a central bank, or may be a secondary certification authority formed by the central bank and other banking authorities. The payee and the payer can preset the primary certificate issued by the central bank certificate issuing center, and can preset the secondary certificate issued by other banking institutions according to the primary certificate, and the payer certificate and the payee certificate are certificates for proving the identity of the payer and the payee according to the secondary certificate, wherein the primary certificate and the secondary certificate can be used as the superior certificates of the identity certificate.

It should be noted that, in order to realize a payment scenario based on digital currency, the payment device and the collection device may be respectively connected to the payment device and the collection device, and the SE chip may be used to realize functions such as encryption operation, digital currency transfer, identity information storage, and certificate verification. The digital identity information of the payer and the payer certificate may be stored in the payer SE chip, and when the payee is a reliable mechanism, more information in the digital identity information of the payer may be given to the payee, and if the payee is a merchant or an individual, only the personal digital ID (PID) of the payer may be sent to the payee, and the payer ID number, biometric information, etc. related to the privacy of the payer may be protected in the payer SE chip. Alternatively, the biometric information may include at least one of fingerprint information, face information, pupil information, etc. of the payer.

In addition, the digital identity information of the payer in the SE chip can be information recorded when the payer opens the digital currency payment function for the reliable certification authority, the information can be protected by the SE chip, and unless the payee is very reliable, the SE chip of the payer can not give out all the information in the digital identity information of the payer. The digital identity information of the payer or payee may be pre-stored in the payer SE chip or payee SE chip before the target transaction is performed, for example, when the payer and payee open a digital wallet in a bank or trusted service management platform (Trusted Service Manager, abbreviated as TSM), the bank or TSM platform invokes a data interface provided by an authorization verification center related to the digital wallet to obtain corresponding digital identity information, and then the bank or TSM platform transmits the corresponding digital identity information to the payer SE chip or payee SE chip, so as to ensure the security and reliability of the digital identity information stored in the SE chip.

In step S206, a payment instruction returned by the collecting device is received, where the payment instruction is an instruction generated after the collecting device verifies the digital identity information of the payer and the certificate of the payee, and the payment instruction includes the payment information, the digital identity information of the payee and the certificate of the payee.

In this step, the payee gives the payee digital identity information and payee certificate to the payer for verification by the payer, and the process is similar to the process of handling the payee digital identity information and the payee certificate in the above embodiment, and the payee digital identity information and payee certificate may also be given by a payee SE chip connected to the payee, where the information includes at least one of a personal digital ID, an identification card number and biometric information of the payee. In addition, the payment instruction is further used for indicating that the payment equipment transfers money to the collection equipment, the payment information represents the money transferred, the digital identity information of the collection party represents the object of transferring money, the collection party certificate is used for verifying the identity of the collection party by the payment party, specifically, the payment party SE chip can verify the collection party certificate by adopting a payment party superior certificate, and as the payment party superior certificate and the collection party superior certificate are superior certificates issued by a central bank or a secondary bank, and the collection party certificate and the payment party certificate are identity certificates generated according to the superior certificate, the payment party can verify the authenticity of the collection party certificate by adopting the payment party superior certificate. Similarly, the payee may also use the payee's superior certificate to verify the authenticity of the payee's certificate. Through the process, the authenticity and the validity of the identities of the payee and the payer are effectively verified by the authentication mechanism, so that the authenticity and the reliability of the identities of the two parties of the transaction are ensured.

Step S208, verifying the digital identity information of the payee and the payee certificate according to the pre-stored superior certificate of the payee, and obtaining the payee identity verification result.

As an alternative embodiment, the payee digital identity information and payee certificate are verified according to the pre-stored payer upper certificate, and the payee identity verification result is obtained by the following way: transmitting a payment instruction to a payer SE chip, and verifying the digital identity information of the payee and a payee Fang Zheng book by the payer SE chip based on a payer superior certificate to obtain a payee identity verification result; paying digital money to a collection device according to a payment instruction, comprising: and receiving payment vouchers transmitted by the payer SE chip and sending the payment vouchers to the collection device, wherein the payment vouchers are used for proving that the digital currency is paid to the collection device according to the payment instruction. Alternatively, the payment voucher may be a generated string of digital currency for payment to the payee, in which a level 2 signature verification may be employed, respectively the primary-row issuing verification and the secondary institution's operating string signature. The coin string signature is sent to the payment equipment, the coin string signature is forwarded to the payment party SE chip by the payment equipment, the 2-level signature can be adopted in the coin string for verification, if the verification is passed, the payment party SE chip confirms that the coin string is legal and is compliant, the coin string is further received, and otherwise, the payment party SE chip can reject the coin string.

In step S210, in the case that the identity verification result of the payee is passing the verification, the digital currency is paid to the payee according to the payment instruction. It should be noted that, when the payment party pays the digital currency to the payee, the payee and the payee can update their digital currencies respectively, so as to realize the payment. For example, when a payment is transferred to a payee, both parties agree on a transfer amount, and then the digital money stored in the payer is updated by the payer based on the transfer amount, and the digital money stored in the payee is updated by the payee based on the transfer amount, thereby realizing the delivery of one digital money.

Through the steps, a mode of presetting a certificate in the payment receiving equipment is adopted, and payment information is received, wherein the payment information comprises the payment amount; transmitting the payer digital identity information and the payer certificate to the payee device based on the payment information; receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payee, and comprises the payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; under the condition that the identity verification result of the payee is passing verification, digital currency is paid to the payee according to a payment instruction, so that the purpose of authoritative verification of the identities of the payer and the payee is achieved, the technical effect of ensuring that the identities of the payee and the payer participate in the transaction are true and legal is achieved, and the technical problem that whether the identities of the payee and the payee participate in the transaction are true and legal is difficult to confirm in the related art is solved.

As an alternative embodiment, the method may further include the steps of: receiving a first session encryption character transmitted by the payer SE chip and transmitting the first session encryption character to the collection device; and receiving a second session encryption character sent by the collection device and transmitting the second session encryption character to the payer SE chip, wherein the first session encryption character and the second session encryption character are used for generating a session key, and the session key is used for encrypting communication with the collection device.

In this alternative embodiment, the session encryption algorithm may be pre-agreed between the payment device and the payment device, a set of session encryption characters may be generated by each of the two parties, and any party of the payment party and the payment party may generate the same session key according to the first session encryption character, the second session encryption character, and the pre-agreed session encryption algorithm, respectively, and then communicate based on the session key. Alternatively, the session encryption character and session key generation process may be performed in the payor SE chip and the payee SE chip, respectively.

Alternatively, the first session encryption character may include a first random number and a first random number factor, the second session encryption character may include a second random number and a second random number factor, and any one of the payer SE chip and the payee SE chip may generate the same session key using a pre-agreed encryption algorithm based on the two sets of random numbers and the two sets of random number factors.

As an alternative embodiment, the following manner may be adopted to receive the payment receipt transmitted by the payer SE chip and send the payment receipt to the collection device: receiving a payment voucher ciphertext transmitted by a payer SE (secure element) chip, wherein the payment voucher ciphertext is ciphertext obtained by encrypting a payment voucher by the payer SE chip by using a session key; and sending the payment certificate ciphertext to the collection device.

In this alternative embodiment, in order to prevent the payment certificate from being intercepted, the payment certificate may be encrypted by the payment party SE chip by using a session key in advance to obtain a ciphertext, and after the ciphertext is transmitted to the payment party SE chip, the payment party SE chip may decrypt the ciphertext by using a session key generated by the payment party SE chip itself to obtain the payment certificate, so as to verify whether the payment party has completed the payment transaction indicated by the payment instruction.

As an alternative embodiment, after the digital money is paid to the money receiving apparatus according to the payment instruction, the following steps may be further performed: judging whether a coin closing condition is reached, wherein the coin closing condition comprises at least one of the following: the number of times of completing the digital currency payment actions reaches a first threshold, and the digital currency storage space is smaller than a second threshold; under the condition that the currency closing condition is met, sending the digital currency historical data of the payer, the digital identity information of the payer and the certificate of the payer to a background of the mechanism, wherein the background of the mechanism verifies the identity of the payer and verifies whether the digital currency historical data of the payer is legal or not according to the certificate of the upper-level mechanism; receiving updated digital currency of the payer returned by the mechanism background, wherein the updated digital currency of the payer is a digital currency string returned by the mechanism background under the condition that the identity of the payer and the historical data of the digital currency of the payer are verified; after receiving the updated payer digital currency, the payer digital currency history data is cleared.

Based on this alternative embodiment, when the offline transaction between the collection device and the payment device reaches a certain number of times or the digital currency storage space in the SE chip of the payer in the payment device is insufficient, the user of the payer can be prompted to complete the closing of the currency string through the data synchronization operation, and the digital currency history data of the payer, that is, the currency string data, can be synchronized to the background of the banking institution through the internet after the payment device is communicated with the internet, the background of the banking institution can also perform PID verification at this time, and the background of the banking institution can also perform verification on whether the currency string is legal or not by calling the interface of the authentication institution, if the verification finds that the currency string is illegal or the payer refuses to accept the currency string validity check, the background of the banking institution can refuse the subsequent request of the payer and inform the security department, and if the currency string is legal is checked, the subsequent operation is continued. After the data of the coin string is completely synchronous with the background of the banking mechanism, the banking mechanism returns a new coin string to the payer SE chip, and the SE chip simultaneously cleans data garbage (namely cleans invalid digital currency historical data of the payer), so that the closing of the coins in the payer SE chip is realized, and redundant data in the payer SE chip is cleaned.

Fig. 3 is a schematic flow chart of a payment method two according to an embodiment of the present invention, and optionally, the method may be applied to a collection device. As shown in fig. 3, the method comprises the steps of:

in step S302, payment information is sent to the payment device, wherein the payment information includes the amount of the payment.

In this step, the payment information may be information sent by the payment device, and the payment device may communicate with each other by, for example, a short-range wireless communication technology (NFC for short), where it should be noted that the payment device and the payment device may be mobile terminals with NFC functions, such as smart phones or smart tablets, or POS devices with NFC functions. Payment information is generated and transmitted by the collection device, and the payment information includes the amount paid by the receiver and the time of payment required by the receiver.

Step S304, the digital identity information of the payer and the certificate of the payer returned by the payment equipment are received.

After the payee receives the digital identity information of the payer and the certificate of the payer through the payee device, the payee can verify the digital identity information of the payer and the certificate of the payer by using the superior certificate of the payee issued by the self-preset certification authority, so as to confirm the identity of the payer and confirm that the payment of the payer is legal and safe. The certificate of the upper level of the payer and the certificate of the upper level of the payee can be the certificates issued by the same certification authority for the payer and the payee respectively, and are used for checking and signing the certificates which are also issued by the authority and the certificates which are derived according to the certificates issued by the authority. Optionally, the authoritative certification authority may be a central bank, or may be a secondary certification authority formed by the central bank and other banking institutions. The payee and the payer can preset a primary certificate issued by a central bank certificate issuing center, and can preset a secondary certificate issued by other banking institutions according to the primary certificate, and the payer certificate and the payee certificate are certificates for proving the identity of the payer and the payee according to the secondary certificate, wherein the primary certificate and the secondary certificate can be used as the superior certificates of the identity certificate.

It should be noted that, the process of presetting certificates by the payee and the payer needs to respectively carry the device to go to the certification authority for account opening and certificate acquisition.

Step S306, verifying the digital identity information of the payer and the credentials of the payer according to the prestored superior credentials of the payee, and obtaining the identity verification result of the payer.

In step S308, in the case that the verification result of the payer identity is that the verification is passed, a payment instruction is sent to the payment device, wherein the payment instruction includes payment information, payee digital identity information and payee certificate.

Step S310, determining that the collection device pays the digital currency according to the payment instruction.

Through the steps, the purpose of authoritative verification of the identities of the payer and the payee is achieved, so that the technical effect of ensuring the true and legal identities of the parties participating in the transaction is achieved, and the technical problem that whether the identities of the parties participating in the transaction are true and legal in the related technology is difficult to confirm is solved.

As an alternative embodiment, verifying the payer digital identity information and the payer certificate according to the pre-stored payee upper certificate, to obtain the payer identity verification result may include the following procedures: and transmitting the digital identity information of the payer and the payer certificate to a payee SE (secure element) chip, wherein the payee SE chip is used for verifying the digital identity information of the payer and the payer certificate according to a prestored payee superior certificate and generating a payer identity verification result.

As an alternative embodiment, sending payment instructions to the payment device may be as follows: receiving a payee initialization response result transmitted by the payee SE chip in response to the payer identity verification result, wherein a payee certificate included in the payee initialization response result is a subordinate certificate of a payee superior certificate, and the payee digital identity information included in the payee initialization response result comprises at least one of the following information of the payee: personal digital ID, ID card number, biometric information; and generating a payment instruction according to the receiving party initialization response result, and sending the payment instruction to the payment equipment.

In this optional embodiment, the payee initialization response result is a response result of the payee SE chip to the transaction, and if no problem is found after the payee SE chip verifies the information of the payer, the payee initialization response result may be output to continue the transaction flow, and the application program of the payee device may generate a payment instruction based on the payee initialization response result and send the payment instruction to the payment device, so as to instruct the payment device to pay to the payee device.

As an alternative embodiment, the method further comprises the steps of: receiving a first session encryption character sent by the payment device and transmitting the first session encryption character to the payee SE chip; and receiving the second session encryption character transmitted by the SE chip of the receiving party and sending the second session encryption character to the payment device, wherein the first session encryption character and the second session encryption character are used for generating a session key, and the session key is used for encrypting communication with the payment device.

As an alternative embodiment, determining that the collection device pays digital money according to a payment instruction includes the steps of: receiving a payment voucher ciphertext sent by the payment equipment, wherein the payment voucher ciphertext is ciphertext obtained by the payment equipment after encrypting the payment voucher by using a session key, and the payment voucher is used for proving that the payment equipment pays digital currency according to a payment instruction; sending the payment voucher ciphertext to a payee SE chip, wherein the payee SE chip is used for decrypting the payment voucher ciphertext according to a session key to obtain a payment voucher, and generating a pushing result by verifying the payment voucher, and the pushing result is used for indicating whether the payment equipment pays digital currency according to a payment instruction; and receiving a pushing result transmitted by the SE chip of the payee, and determining that the payee device pays the digital currency according to the payment instruction according to the pushing result.

As an alternative embodiment, after determining that the cash register device pays the digital money according to the payment instruction, the method may further include the steps of: judging whether a coin closing condition is reached, wherein the coin closing condition comprises at least one of the following: the number of times of completing the digital currency payment actions reaches a first threshold, and the digital currency storage space is smaller than a second threshold; under the condition that the coin combination condition is met, sending the digital currency historical data of the payee, the digital identity information of the payee and the payee certificate to an institution background, wherein the institution background verifies the identity of the payee and verifies whether the digital currency historical data of the payee is legal or not according to the upper-level institution certificate; receiving updated digital money of the payee returned by the mechanism background, wherein the updated digital money of the payee is a digital money string returned by the mechanism background under the condition that the identity of the payee and the historical data of the digital money of the payee are verified; after receiving the updated payee digital currency, the payee digital currency history data is cleaned.

Based on this alternative embodiment, when the offline transaction between the collection device and the payment device reaches a certain number of times or the digital currency storage space in the collection party SE chip in the collection device is insufficient, the collection party user can be prompted to complete the combination of the currency strings through the data synchronization operation, and the collection party digital currency history data, namely the currency string data, can be synchronized to the back office of the banking institution through the internet after the collection device is communicated with the internet, the back office of the banking institution can also perform the verification of the PID of the collection party at this time, and can perform the verification of whether the currency string is legal or not by calling the interface of the authentication mechanism, if the verification finds that the currency string is illegal or the collection party refuses to accept the currency string validity check, the back office of the banking institution can refuse the subsequent request of the collection party and inform the security department, and if the currency string is found, the subsequent operation is continued. After the data of the coin string is completely synchronized with the background of the banking institution, the banking institution returns a new coin string to the payee SE chip, and the payee SE chip simultaneously cleans data garbage (namely cleans invalid payee digital currency historical data), so that the closing of the coins in the payee SE chip is realized, and redundant data in the payee SE chip is cleaned.

Fig. 4 is a schematic flow chart of a payment method three provided in accordance with an embodiment of the present invention, and the method may alternatively be applied to a payer SE chip. As shown in fig. 4, the method comprises the steps of:

in step S402, payment information transmitted by the payment device is received, where the payment information includes an amount of payment, and the payment information is information received by the payment device from the collection device.

Step S404, based on the payment information, transmitting the payer digital identity information and the payer certificate to the payment device.

In step S406, a payment instruction transmitted by the payment device is received, where the payment instruction is an instruction generated and sent to the payment device after the payment device verifies the digital identity information of the payer and the certificate of the payee, and the payment instruction includes the payment information, the digital identity information of the payee and the certificate of the payee.

Step S408, verifying the payee digital identity information and the payee certificate according to the pre-stored payer superior certificate, and obtaining the payee identity verification result.

It should be noted that, the payer upper certificate may be preset in the payer SE chip, and correspondingly, the payee upper certificate may be preset in the payee SE chip. The pre-setting of the superior certificate and the identity certificate can be performed when the payer and the payee respectively go to the certification authority to open the account, and the certificate is never leaked after being pre-set in the SE chip.

In step S410, in the case that the identity verification result of the payee is passing the verification, the digital currency is paid to the payee according to the payment instruction.

As an alternative embodiment, paying digital money to a collection device according to a payment instruction includes: generating a payment voucher according to the payment instruction, wherein the payment voucher is used for proving that the digital currency is paid to the collection device according to the payment instruction; transmitting the payment receipt to the payment device.

As an alternative embodiment, the method further comprises: receiving a first session encryption character transmitted by the payment device, wherein the first session encryption character is a character sent to the payment device by the collection device; generating and transmitting a second session encryption character to the payment device, wherein the first session encryption character and the second session encryption character are used to generate a session key, the session key being used to encrypt communications with the payment device; a session key is generated from the first session encryption character and the second session encryption character.

As an alternative embodiment, transmitting payment vouchers to a payment device, comprising: encrypting the payment certificate by using the session key to obtain a payment certificate ciphertext; and transmitting the payment certificate ciphertext to the payment device.

Fig. 5 is a flowchart of a payment method four according to an embodiment of the present invention, and the method may alternatively be applied to a payee SE chip. As shown in fig. 5, the method comprises the steps of:

in step S502, payment information, digital identity information of a payer, and a payer certificate transmitted by a payee device are received, wherein the payment information includes a payment amount.

Step S504, verifying the digital identity information of the payer and the credentials of the payer according to the pre-stored superior credentials of the payee, and obtaining the identity verification result of the payer.

Step S506, if the verification result of the payer identity is passing, sending a payee initialization response result to the payee device, wherein the payee initialization response result comprises payment information, payee digital identity information and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device.

Step S508, determining that the payment device pays the digital currency to the collection device according to the payment instruction.

As an alternative embodiment, determining that the payment device is to pay digital currency to the collection device according to the payment instruction may be by: receiving payment vouchers transmitted by the collection device, wherein the payment vouchers are received by the collection device from the payment device, and the payment vouchers are used for proving that the payment device has paid digital currency to the collection device according to payment instructions; and verifying the payment certificate, and confirming that the payment equipment has paid the digital currency under the condition that the payment certificate passes the verification.

As an alternative embodiment, when verifying the payment certificate, a primary signature and a secondary signature of the digital currency may be obtained from the payment certificate, where the primary signature is an issue signature of the digital currency by a central bank, and the secondary signature is a signature of the digital currency by a secondary operator of the digital currency; respectively verifying the primary signature and the secondary signature by adopting a superior mechanism certificate to determine the legitimacy of the digital currency; in case that the verification result of the digital currency is legal, verifying the payment certificate to determine that the payment device has paid the digital currency; and rejecting the digital currency paid by the payment device under the condition that the verification result of the digital currency is illegal.

Based on the alternative embodiment, whether the digital currency paid by the payer is legal or not can be synchronously verified when the payment certificate is verified, and if the source or the circulation way of the digital currency paid by the payer is illegal, the digital currency is refused to be received, so that the transaction safety is ensured. It should be noted that, the digital currency string may adopt a secondary signature standard, when the primary signature of the first-level central office issues the string and the secondary signature of the second-level operation mechanism's operation string pass, it may be determined that the string is a legal string, and the upper-level mechanism certificate may include a digital certificate issued by the central bank and a digital certificate issued by the second-level operation mechanism, where the upper-level mechanism certificate is preset in the payee SE chip, for verifying the validity of the digital currency.

As an alternative embodiment, the method may further comprise the steps of: receiving a first session encryption character transmitted by the collection device, wherein the first session encryption character is sent to the collection device by the payment device; generating and transmitting a second session encryption character to the checkout device, wherein the first session encryption character and the second session encryption character are used to generate a session key, the session key being used to encrypt communications with the checkout device; a session key is generated from the first session encryption character and the second session encryption character.

As an alternative embodiment, receiving payment vouchers transmitted by a payment device may comprise the steps of: receiving a payment voucher ciphertext transmitted by the collection device, wherein the payment voucher ciphertext is a ciphertext which is transmitted to the collection device after the payment device encrypts the payment voucher by using a session key; before verifying the payment voucher, the method may further comprise the steps of: and decrypting the payment voucher ciphertext by using the session key to obtain the payment voucher.

Fig. 6 is a timing diagram for implementing transactions through offline payments provided in accordance with an alternative embodiment of the present invention, as shown in fig. 6, the process may include the steps of:

step 1, a collection device sends payment information to a payer SE chip to carry out payment initialization, wherein the payment information comprises payment amount and time; alternatively, the payment device may send the payment information to the payment device before the payment device transmits the payment information to the payer SE chip.

Step 2, the payer SE chip responds to the payment information and returns the payment information, the payer digital identity information, the payer certificate and the first session encryption character to the collection device; alternatively, the payer digital identity information may be PID of the payer, the payer certificate may be a digital certificate certifying the identity of the payer generated from a superior certificate of the payer issued by the certification authority, and the first session encryption character may include a first random number and a first random number factor for generating session keys in the payer SE chip and the payee SE chip, respectively, the algorithm for generating the session keys according to the random number and the random number factor having been pre-agreed by the payee and the payer.

And 3, the payment receiving equipment transmits payment information, digital identity information of the payer, a payer certificate and a first session encryption character to a payee SE (secure element) chip, wherein a payee superior certificate issued by a certification authority is preset in the payee SE chip, and the payee SE chip can check the payer certificate according to the payee superior certificate to confirm whether the identity of the payer is true or reliable, and if the identity passes the verification, the step 4 is entered.

And 4, the SE chip of the payee responds to the information to generate a payment instruction and transmit the payment instruction to the payee, wherein the payment instruction comprises payment information, the PID of the payee, a certificate of the payee and a second session encryption character, wherein the second session encryption character can comprise a second random number and a second random number factor, after the payee forwards the second session encryption character to the payment device, the payee and the payer hold the first session encryption character and the second session encryption character by hands, and then the same session key can be respectively generated to encrypt and decrypt the information based on a session key generation algorithm agreed by the two parties.

And 5, the payment receiving device can send the payment instruction to the payment device in an NFC mode and transmit the payment instruction to the payment party SE chip, after the payment party SE chip receives the payment instruction, the payment party SE chip verifies the information in the payment instruction based on the superior certificate of the payment party to confirm the identity of the payment party, and particularly, the payment party certificate and the digital identity information of the payment party are checked based on the superior certificate of the payment party, and if the verification is passed, the digital currency is paid to the payment party.

And 6, the payer SE chip finishes payment based on the payment instruction, generates a payment voucher, encrypts the payment voucher by adopting a session key generated according to the first session encryption character, the second session encryption character and a pre-agreed encryption algorithm to obtain a payment voucher ciphertext, and can encrypt the first session encryption character and the second session encryption character by adopting the session key to obtain an encrypted character ciphertext, and then sends the payment voucher ciphertext, the encrypted character ciphertext, the payer PID and Mac to the collection device together, wherein Mac is a check code for preventing information from being tampered.

And 7, the payment receipt equipment transmits the payment receipt ciphertext, the encrypted character ciphertext, the payer PID and the Mac to the payee SE chip for the payee SE chip to verify the payment, the payee SE chip verifies whether the session key adopted by the payer SE chip is correct or not based on the encrypted word Fu Miwen, decrypts the payment receipt ciphertext based on the session key to obtain the payment receipt, verifies the payment receipt, and confirms that the transaction is completed under the condition that the payer is confirmed to pay the digital money and the paid digital money is legal, and then enters step 8.

And 8, pushing the result of successful payment to the collection device, and informing the collection party that the opposite party has completed payment by the collection device through message pushing or an APP interface.

And 9, the collection equipment pushes the successful collection message to the SE chip of the payer for the SE chip of the payer to confirm and record.

And step 10, the SE chip of the payer pushes the successful collection message of the payee to the payment equipment for verification and confirmation of the payer.

It should be noted that the above process may be performed in a state where the collection device and the payment device are completely offline, and the two parties are not dependent on the internet. After the payment flow of the digital currency is completed and the fee deduction is successful, the digital currency can be directly pushed to the front-end App of the receiving equipment and the payment equipment in the form of information or UI. Further, when the offline transaction reaches a certain number of times or the space in the SE chip is insufficient, the user can be prompted to complete the closing of the coin string through synchronous operation, the data of the coin string can be completely synchronized to the background of the banking institution through the Internet, the banking institution can perform PID verification at the moment, the authentication institution performs verification on whether the coin string is legal or not, if the verification finds that the coin string is illegal or refuses to accept the check of the validity of the coin string, the subsequent request is refused and the security department is informed, and if the examination finds that the coin string is legal, the subsequent operation is continued. After the data of the coin string is completely synchronized with the background of the banking institution, the banking institution returns a new coin string to the payer or the payee and the SE chips respectively clear data garbage at the same time, so that the closing of the coins is realized.

It should be noted that, for simplicity of description, the foregoing method embodiments are all expressed as a series of action combinations, but it should be understood by those skilled in the art that the present invention is not limited by the order of action described, as some steps may be performed in other order or simultaneously according to the present invention. Further, those skilled in the art will also appreciate that the embodiments described in the specification are all preferred embodiments, and that the acts and modules referred to are not necessarily required for the present invention.

From the description of the above embodiments, it will be clear to a person skilled in the art that the payment method according to the above embodiments may be implemented by means of software plus a necessary general hardware platform, but of course also by means of hardware, but in many cases the former is a preferred embodiment. Based on such understanding, the technical solution of the present invention may be embodied essentially or what contributes to the prior art in the form of a software product stored in a storage medium (e.g. ROM/RAM, magnetic disk, optical disk) comprising several instructions for causing a terminal device (which may be a mobile phone, a computer, a server, or a network device, etc.) to execute the method of the embodiments of the present invention.

According to an embodiment of the present invention, there is further provided a first payment device for implementing the first payment method, and fig. 7 is a block diagram of a first payment device according to an embodiment of the present invention, as shown in fig. 7, where the first payment device includes: the first receiving module 71, the first transmitting module 72, the second receiving module 73, the first verifying module 74 and the first payment module 75 are described below as the first payment device.

A first receiving module 71 for receiving payment information, wherein the payment information includes an amount of the payment;

a first transmitting module 72 for transmitting the payer digital identity information and the payer certificate to the payee based on the payment information;

a second receiving module 73, configured to receive a payment instruction returned by the payment device, where the payment instruction is an instruction generated after the payment device verifies the digital identity information of the payment party and the certificate of the payment party, and the payment instruction includes the payment information, the digital identity information of the payment party, and the certificate of the payment party;

a first verification module 74, configured to verify the payee digital identity information and the payee certificate according to a pre-stored payee upper certificate, and obtain a payee identity verification result;

the first payment module 75 is configured to pay digital money to the collection device according to the payment instruction if the identity verification result of the payee is passing verification.

Here, it should be noted that the first receiving module 71, the first sending module 72, the second receiving module 73, the first verifying module 74 and the first payment module 75 correspond to steps S202 to S210 in the embodiment, and the plurality of modules are the same as the examples and application scenarios implemented by the corresponding steps, but are not limited to the disclosure of the foregoing embodiments. It should be noted that the above-described module may be operated as a part of the apparatus in the computer terminal 10 provided in the embodiment.

According to an embodiment of the present invention, there is further provided a second payment device for implementing the second payment method, and fig. 8 is a block diagram of the second payment device according to the embodiment of the present invention, as shown in fig. 8, where the second payment device includes: the second transmitting module 81, the third receiving module 82, the second verifying module 83, the third transmitting module 84 and the first determining module 85 are described below as the second payment device.

A second transmitting module 81 for transmitting payment information to the payment device, wherein the payment information includes a payment amount;

a third receiving module 82, configured to receive the payer digital identity information and the payer certificate returned by the payment device;

A second verification module 83, configured to verify the digital identity information of the payer and the certificate of the payer according to a pre-stored superior certificate of the payee, so as to obtain a verification result of the payer;

a third sending module 84, configured to send a payment instruction to the payment device when the verification result of the identity of the payer is verification, where the payment instruction includes payment information, digital identity information of the payee, and a payee certificate;

the first determining module 85 is used for determining that the cash collecting device pays the digital currency according to the payment instruction.

Here, the second sending module 81, the third receiving module 82, the second verifying module 83, the third sending module 84, and the first determining module 85 correspond to steps S302 to S310 in the embodiment, and the plurality of modules are the same as the examples and application scenarios implemented by the corresponding steps, but are not limited to the disclosure of the above embodiments. It should be noted that the above-described module may be operated as a part of the apparatus in the computer terminal 10 provided in the embodiment.

According to an embodiment of the present invention, there is further provided a payment apparatus three for implementing the payment method three, and fig. 9 is a block diagram of a payment apparatus three provided according to an embodiment of the present invention, as shown in fig. 9, where the payment apparatus three includes: the fourth receiving module 91, the transmitting module 92, the fifth receiving module 93, the third verifying module 94 and the second payment module 95 are explained below for the third payment device.

A fourth receiving module 91, configured to receive payment information transmitted by the payment device, where the payment information includes an amount of payment, and the payment information is information received by the payment device from the collection device;

a transmission module 92 for transmitting the payer digital identity information and the payer certificate to the payment device based on the payment information;

a fifth receiving module 93, configured to receive a payment instruction transmitted by the payment device, where the payment instruction is an instruction generated by the payment device after verification of the digital identity information of the payee and the certificate of the payee, and sent to the payment device, and the payment instruction includes payment information, digital identity information of the payee and the certificate of the payee;

the third verification module 94 is configured to verify the digital identity information of the payee and the certificate of the payee according to a pre-stored superior certificate of the payee, so as to obtain an identity verification result of the payee;

and the second payment module 95 is used for paying the digital currency to the collection device according to the payment instruction when the identity verification result of the collection party is passing verification.

Here, the fourth receiving module 91, the transmitting module 92, the fifth receiving module 93, the third verifying module 94 and the second payment module 95 correspond to steps S402 to S410 in the embodiment, and the plurality of modules are the same as the examples and application scenarios implemented by the corresponding steps, but are not limited to the disclosure of the above embodiment. It should be noted that the above-described module may be operated as a part of the apparatus in the computer terminal 10 provided in the embodiment.

According to an embodiment of the present invention, there is further provided a fourth payment device for implementing the fourth payment method, and fig. 10 is a block diagram of a fourth payment device according to an embodiment of the present invention, where, as shown in fig. 10, the fourth payment device includes: a sixth receiving module 1001, a fourth verifying module 1002, a fourth transmitting module 1003, and a second determining module 1004, the fourth payment device will be described below.

A sixth receiving module 1001, configured to receive payment information, digital identity information of a payer, and a payer certificate transmitted by a payment device, where the payment information includes a payment amount;

a fourth verification module 1002, configured to verify the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, so as to obtain a verification result of the payer;

a fourth sending module 1003, configured to send a payee initialization response result to the payee device if the payee authentication result is passing authentication, where the payee initialization response result includes payment information, payee digital identity information and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device;

A second determining module 1004 is configured to determine that the payment device is to pay digital currency to the payment device according to the payment instruction.

Here, the sixth receiving module 1001, the fourth verifying module 1002, the fourth transmitting module 1003, and the second determining module 1004 correspond to steps S602 to S608 in the embodiment, and a plurality of modules are the same as examples and application scenarios implemented by the corresponding steps, but are not limited to those disclosed in the above embodiment. It should be noted that the above-described modules may be run as part of the apparatus in the computer terminal 10 provided in the embodiment.

Embodiments of the present invention may provide a computer device, optionally in this embodiment, the computer device may be located in at least one network device of a plurality of network devices of a computer network. The computer device includes a memory and a processor.

The processor executes the software program and the module stored in the memory to perform various functional applications and data processing, i.e. to implement the payment method described above. The memory may include high speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid state memory. In some examples, the memory may further include memory remotely located relative to the processor, which may be connected to the computer terminal via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.

The processor may call the information and the application program stored in the memory through the transmission device to perform the following steps: receiving payment information, wherein the payment information includes an amount of the payment; transmitting the payer digital identity information and the payer certificate to the payee device based on the payment information; receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payee, and comprises the payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; and in the case that the identity verification result of the payee is passing verification, paying the digital currency to the payee according to the payment instruction.

The processor may call the information and the application program stored in the memory through the transmission device to perform the following steps: transmitting payment information to the payment device, wherein the payment information includes an amount of the payment; receiving the digital identity information of the payer and the certificate of the payer returned by the payment equipment; verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining an identity verification result of the payer; transmitting a payment instruction to the payment device under the condition that the authentication result of the payer is passing authentication, wherein the payment instruction comprises payment information, payee digital identity information and payee certificate; the determining means determines to pay the digital money according to the payment instruction.

The processor may call the information and the application program stored in the memory through the transmission device to perform the following steps: receiving payment information transmitted by the payment equipment, wherein the payment information comprises the amount of payment, and the payment information is information received by the payment equipment from the collection equipment; transmitting payer digital identity information and payer credentials to a payment device based on the payment information; receiving a payment instruction transmitted by a payment device, wherein the payment instruction is an instruction generated and sent to the payment device after the payment device verifies the digital identity information of the payer and the certificate of the payee, and the payment instruction comprises payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; and in the case that the identity verification result of the payee is passing verification, paying the digital currency to the payee according to the payment instruction.

The processor may call the information and the application program stored in the memory through the transmission device to perform the following steps: receiving payment information, digital identity information of a payer and a payer certificate transmitted by a cash register, wherein the payment information comprises the amount of payment; verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining an identity verification result of the payer; if the identity verification result of the payer is passing verification, sending a payee initialization response result to the payee device, wherein the payee initialization response result comprises payment information, payee digital identity information and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device; and determining that the payment device pays the digital currency to the collection device according to the payment instruction.

Those skilled in the art will appreciate that all or part of the steps in the various methods of the above embodiments may be implemented by a program for instructing a terminal device to execute in association with hardware, and the program may be stored in a non-volatile storage medium, and the storage medium may include: flash disk, read-Only Memory (ROM), random access Memory (Random Access Memory, RAM), magnetic or optical disk, and the like.

Embodiments of the present invention also provide a nonvolatile storage medium. Alternatively, in the present embodiment, the above-described nonvolatile storage medium may be used to store the program code executed by the payment method provided in the above-described embodiment.

Alternatively, in this embodiment, the above-mentioned nonvolatile storage medium may be located in any one of the computer terminals in the computer terminal group in the computer network, or in any one of the mobile terminals in the mobile terminal group.

Optionally, in the present embodiment, the nonvolatile storage medium is configured to store program code for performing the steps of: receiving payment information, wherein the payment information includes an amount of the payment; transmitting the payer digital identity information and the payer certificate to the payee device based on the payment information; receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payer, and comprises payment information, digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; and in the case that the identity verification result of the payee is passing verification, paying the digital currency to the payee according to the payment instruction.

Optionally, in the present embodiment, the nonvolatile storage medium is configured to store program code for performing the steps of: transmitting payment information to the payment device, wherein the payment information includes an amount of the payment; receiving digital identity information of a payer and a payer certificate returned by the payment equipment; verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining an identity verification result of the payer; transmitting a payment instruction to the payment device when the authentication result of the payer is passing the authentication, wherein the payment instruction comprises payment information, payee digital identity information and payee certificate; the determining means determines to pay the digital money according to the payment instruction.

Optionally, in the present embodiment, the nonvolatile storage medium is configured to store program code for performing the steps of: receiving payment information transmitted by the payment equipment, wherein the payment information comprises the amount of payment, and the payment information is information received by the payment equipment from the collection equipment; transmitting payer digital identity information and payer credentials to a payment device based on the payment information; receiving a payment instruction transmitted by a payment device, wherein the payment instruction is an instruction generated and sent to the payment device after the payment device verifies the digital identity information of the payer and the certificate of the payee, and the payment instruction comprises the payment information, the digital identity information of the payee and the certificate of the payee; verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee; and in the case that the identity verification result of the payee is passing verification, paying the digital currency to the payee according to the payment instruction.

Optionally, in the present embodiment, the nonvolatile storage medium is configured to store program code for performing the steps of: receiving payment information, digital identity information of a payer and a payer certificate transmitted by a cash register, wherein the payment information comprises the amount of payment; verifying the digital identity information of the payer and the certificate of the payer according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payer; if the identity verification result of the payer is passing verification, sending a payee initialization response result to the payee device, wherein the payee initialization response result comprises payment information, payee digital identity information and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device; and determining that the payment device pays the digital currency to the collection device according to the payment instruction.

The foregoing embodiment numbers of the present invention are merely for the purpose of description, and do not represent the advantages or disadvantages of the embodiments.

In the foregoing embodiments of the present invention, the descriptions of the embodiments are emphasized, and for a portion of this disclosure that is not described in detail in this embodiment, reference is made to the related descriptions of other embodiments.

In the several embodiments provided in the present application, it should be understood that the disclosed technology content may be implemented in other manners. The above-described embodiments of the apparatus are merely exemplary, and the division of units may be a logic function division, and there may be another division manner in actual implementation, for example, multiple units or components may be combined or integrated into another system, or some features may be omitted, or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed with each other may be through some interfaces, indirect coupling or communication connection of units or modules, electrical or other forms.

The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed over a plurality of units. Some or all of the units may be selected according to actual needs to achieve the purpose of the embodiment.

In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units may be implemented in hardware or in software functional units.

The integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a non-volatile storage medium. Based on such understanding, the technical solution of the present invention may be essentially or part of the present invention contributing to the prior art or all or part of the technical solution may be embodied in the form of a software product stored in a storage medium, comprising several instructions for causing a computer device (which may be a personal computer, a server or a network device, etc.) to perform all or part of the steps of the methods of the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a Read-Only Memory (ROM), a random access Memory (RAM, random Access Memory), a removable hard disk, a magnetic disk, or an optical disk, or other various media capable of storing program codes.

The foregoing is merely a preferred embodiment of the present invention and it should be noted that modifications and adaptations to those skilled in the art may be made without departing from the principles of the present invention, which are intended to be comprehended within the scope of the present invention.

Claims

1. A method of payment, comprising:

receiving payment information, wherein the payment information comprises an amount of the payment;

transmitting payer digital identity information and payer credentials to a payee based on the payment information;

receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payer, and the payment instruction comprises the payment information, the digital identity information of the payee and the certificate of the payee;

verifying the digital identity information of the payee and the payee certificate according to a pre-stored superior certificate of the payee, and obtaining an identity verification result of the payee;

and under the condition that the identity verification result of the payee is passing verification, paying digital currency to the payee device according to the payment instruction.

2. The method of claim 1, wherein the sending the payer digital identity information and the payer certificate to the payee device based on the payment information comprises:

transmitting the payment information to a payer SE chip;

receiving the digital identity information of the payer and the payer certificate returned by the SE chip of the payer in response to the payment information, wherein the payer certificate is a lower-level certificate of an upper-level certificate of the payer, and the digital identity information of the payer comprises at least one of the following information of the payer: personal digital ID, ID card number, biometric information;

And sending the payer digital identity information and the payer certificate to the collection device.

3. The method of claim 2, wherein said verifying the payee digital identity information and the payee certificate based on a pre-stored payee superior certificate, resulting in a payee identity verification result, comprises:

transmitting the payment instruction to the payer SE chip, and verifying the payee digital identity information and the payee certificate by the payer SE chip based on the payer superior certificate to obtain the payee identity verification result;

the payment of digital currency to the collection device according to the payment instruction comprises:

and receiving a payment certificate transmitted by the payer SE chip and sending the payment certificate to the collection device, wherein the payment certificate is used for proving that the digital currency is paid to the collection device according to the payment instruction.

4. A method according to claim 3, further comprising:

receiving a first session encryption character transmitted by the payer SE chip and sending the first session encryption character to the collection device;

And receiving a second session encryption character sent by the collection device and transmitting the second session encryption character to the payer SE chip, wherein the first session encryption character and the second session encryption character are used for generating a session key, and the session key is used for encrypting communication with the collection device.

5. The method of claim 4, wherein said receiving payment vouchers transmitted by said payer SE chip and sending said payment vouchers to said payee device comprises:

receiving a payment voucher ciphertext transmitted by the payer SE chip, wherein the payment voucher ciphertext is ciphertext obtained by encrypting the payment voucher by the payer SE chip by using the session key;

and sending the payment certificate ciphertext to the collection device.

6. The method of any one of claims 1 to 5, further comprising, after payment of digital currency to the collection device in accordance with the payment instruction:

judging whether a coin closing condition is reached, wherein the coin closing condition comprises at least one of the following: the number of times of completing the digital currency payment action reaches a first threshold value, and the digital currency storage space is smaller than a second threshold value;

Under the condition that the coin closing condition is met, sending the digital currency historical data of the payer, the digital identity information of the payer and the payer certificate to a mechanism background, wherein the mechanism background verifies the identity of the payer and verifies whether the digital currency historical data of the payer is legal or not according to a superior mechanism certificate;

receiving updated digital currency of a payer returned by the mechanism background, wherein the updated digital currency of the payer is a digital currency string returned by the mechanism background under the condition that the identity of the payer and the historical data of the digital currency of the payer are verified;

and after receiving the updated digital currency of the payer, cleaning the historical data of the digital currency of the payer.

7. A method of payment, comprising:

transmitting payment information to a payment device, wherein the payment information includes an amount of payment;

receiving payer digital identity information and a payer certificate returned by the payment equipment;

verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining an identity verification result of the payer;

Transmitting a payment instruction to the payment device when the payment party identity verification result is verified, wherein the payment instruction comprises the payment information, the payee digital identity information and the payee certificate;

and determining that the collection device pays digital currency according to the payment instruction.

8. The method of claim 7, wherein said verifying said payer digital identity information and said payer certificate based on a pre-stored payee upper certificate, resulting in a payer identity verification result, comprises:

transmitting the payer digital identity information and the payer certificate to a payee SE (secure element) chip, wherein the payee SE chip is used for verifying the payer digital identity information and the payer certificate according to the pre-stored payee superior certificate and generating the payer identity verification result.

9. The method of claim 8, wherein the sending payment instructions to the payment device comprises:

receiving a payee initialization response result transmitted by the payee SE chip in response to the payer identity verification result, wherein a payee certificate included in the payee initialization response result is a lower-level certificate of the payee upper-level certificate, and the payee digital identity information included in the payee initialization response result comprises at least one of the following information of a payee: personal digital ID, ID card number, biometric information;

And generating the payment instruction according to the receiving party initialization response result, and sending the payment instruction to the payment equipment.

10. The method as recited in claim 8, further comprising:

receiving a first session encryption character sent by the payment device and transmitting the first session encryption character to the payee SE chip;

and receiving a second session encryption character transmitted by the SE chip of the payee and sending the second session encryption character to the payment device, wherein the first session encryption character and the second session encryption character are used for generating a session key, and the session key is used for encrypting communication with the payment device.

11. The method of claim 10, wherein the determining that the collection device is to pay digital currency according to the payment instruction comprises:

receiving a payment voucher ciphertext sent by the payment equipment, wherein the payment voucher ciphertext is ciphertext obtained by the payment equipment after encrypting a payment voucher by using the session key, and the payment voucher is used for proving that the payment equipment has paid the digital currency according to the payment instruction;

The payment voucher ciphertext is sent to the payee SE chip, wherein the payee SE chip is used for decrypting the payment voucher ciphertext according to the session key to obtain the payment voucher, and is also used for generating a pushing result by verifying the payment voucher, and the pushing result is used for indicating whether the payment equipment pays the digital currency according to the payment instruction;

and receiving the pushing result transmitted by the SE chip of the payee, and determining that the payee device pays the digital currency according to the payment instruction according to the pushing result.

12. The method of any of claims 7-11, wherein after the determining that the cash register device is to pay digital currency according to the payment instruction, further comprising:

under the condition that the coin closing condition is met, sending the digital currency historical data of the payee, the digital identity information of the payee and the payee certificate to a mechanism background, wherein the mechanism background verifies the identity of the payee and verifies whether the digital currency historical data of the payee is legal or not according to a higher-level mechanism certificate;

Receiving updated digital money of a payee returned by the mechanism background, wherein the updated digital money of the payee is a digital money string returned by the mechanism background under the condition that the identity of the payee and the historical data of the digital money of the payee are verified;

and after receiving the updated digital money of the payee, cleaning the historical data of the digital money of the payee.

13. A method of payment, comprising:

receiving payment information transmitted by a payment device, wherein the payment information comprises the amount of payment, and the payment information is information received by the payment device from a collection device;

transmitting payer digital identity information and payer credentials to the payment device based on the payment information;

receiving a payment instruction transmitted by the payment equipment, wherein the payment instruction is an instruction generated by the payment equipment after verification of the digital identity information of the payer and the certificate of the payee is passed and sent to the payment equipment, and the payment instruction comprises the payment information, the digital identity information of the payee and the certificate of the payee;

14. The method of claim 13, wherein the paying digital currency to the collection device according to the payment instruction comprises:

generating a payment voucher according to the payment instruction, wherein the payment voucher is used for proving that the digital currency is paid to the collection device according to the payment instruction;

transmitting the payment receipt to the payment device.

15. The method as recited in claim 14, further comprising:

receiving a first session encryption character transmitted by the payment device, wherein the first session encryption character is a character sent to the payment device by the collection device;

generating and transmitting a second session encryption character to the payment device, wherein the first session encryption character and the second session encryption character are used to generate a session key that is used to encrypt communications with the payment device;

the session key is generated from the first session encryption character and the second session encryption character.

16. The method of claim 15, wherein the transmitting the payment instrument to the payment device comprises:

encrypting the payment certificate by adopting the session key to obtain a payment certificate ciphertext;

and transmitting the payment certificate ciphertext to the payment equipment.

17. A method of payment, comprising:

receiving payment information, digital identity information of a payer and a payer certificate transmitted by a cash register, wherein the payment information comprises the amount of payment;

if the identity verification result of the payer is passing verification, sending a payee initialization response result to the payee device, wherein the payee initialization response result comprises the payment information, payee digital identity information and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device;

and determining that the payment equipment pays digital currency to the collection equipment according to the payment instruction.

18. The method of claim 17, wherein the determining that the payment device is to pay digital currency to the collection device according to the payment instruction comprises:

receiving payment vouchers transmitted by the collection device, wherein the payment vouchers are received by the collection device from the collection device, and the payment vouchers are used for proving that the payment device has paid the digital currency to the collection device according to the payment instruction;

and verifying the payment receipt, and confirming that the digital currency is paid by the payment device if the payment receipt is verified.

19. The method as recited in claim 18, further comprising:

receiving a first session encryption character transmitted by the collection device, wherein the first session encryption character is sent to the collection device by the payment device;

generating and transmitting a second session encryption character to the checkout device, wherein the first session encryption character and the second session encryption character are used to generate a session key that is used to encrypt communications with the checkout device;

20. The method of claim 19, wherein the receiving payment instrument transmitted payment instrument comprises:

receiving a payment voucher ciphertext transmitted by the collection device, wherein the payment voucher ciphertext is a ciphertext which is transmitted to the collection device after the payment device encrypts the payment voucher by using the session key;

before said verifying said payment document, further comprising:

and decrypting the payment certificate ciphertext by using the session key to obtain the payment certificate.

21. The method of claim 18, wherein said verifying said payment instrument comprises:

acquiring a primary signature and a secondary signature of the digital currency from the payment certificate, wherein the primary signature is an issuing signature of a central bank on the digital currency, and the secondary signature is a signature of a secondary operation mechanism of the digital currency on the digital currency;

respectively verifying the primary signature and the secondary signature by adopting a superior mechanism certificate to determine the legitimacy of the digital currency;

in the case that the verification result of the digital currency is legal, verifying the payment voucher to determine that the payment device has paid the digital currency;

And rejecting the digital currency paid by the payment equipment under the condition that the verification result of the digital currency is illegal.

22. A payment device, comprising:

the first receiving module is used for receiving payment information, wherein the payment information comprises the amount of payment;

the first sending module is used for sending the digital identity information of the payer and the certificate of the payer to the collection device based on the payment information;

the second receiving module is used for receiving a payment instruction returned by the collection device, wherein the payment instruction is generated after the collection device verifies the digital identity information of the payer and the certificate of the payer, and the payment instruction comprises the payment information, the digital identity information of the payee and the certificate of the payee;

the first verification module is used for verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee;

and the first payment module is used for paying digital currency to the collection equipment according to the payment instruction under the condition that the identity verification result of the collection party is verified.

23. A payment device, comprising:

the second sending module is used for sending payment information to the payment equipment, wherein the payment information comprises the amount of payment;

the third receiving module is used for receiving the digital identity information of the payer and the certificate of the payer returned by the payment equipment;

the second verification module is used for verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining a verification result of the payer;

a third sending module, configured to send a payment instruction to the payment device when the verification result of the payer identity is verification, where the payment instruction includes the payment information, payee digital identity information, and payee certificate;

and the first determining module is used for determining that the collection equipment pays digital currency according to the payment instruction.

24. A payment device, comprising:

a fourth receiving module, configured to receive payment information transmitted by a payment device, where the payment information includes an amount of payment, and the payment information is information received by the payment device from a collection device;

The transmission module is used for transmitting the digital identity information of the payer and the certificate of the payer to the payment equipment based on the payment information;

a fifth receiving module, configured to receive a payment instruction transmitted by the payment device, where the payment instruction is an instruction generated by the payment device after verification of the digital identity information of the payer and the certificate of the payer, and sent to the payment device, and the payment instruction includes the payment information, the digital identity information of the payee and the certificate of the payee;

the third verification module is used for verifying the digital identity information of the payee and the payee certificate according to a prestored superior certificate of the payee, and obtaining an identity verification result of the payee;

and the second payment module is used for paying digital currency to the collection equipment according to the payment instruction under the condition that the identity verification result of the collection party is verified.

25. A payment device, comprising:

a sixth receiving module, configured to receive payment information, digital identity information of a payer, and a payer certificate transmitted by a payment device, where the payment information includes a payment amount;

the fourth verification module is used for verifying the digital identity information of the payer and the credentials of the payer according to pre-stored superior credentials of the payee, and obtaining a verification result of the payer;

A fourth sending module, configured to send a payee initialization response result to the payee device when the payer identity verification result is verified, where the payee initialization response result includes the payment information, payee digital identity information, and payee certificate, and the payee device generates a payment instruction according to the payee initialization response result and sends the payment instruction to the payee device;

and the second determining module is used for determining that the payment equipment pays digital currency to the collection equipment according to the payment instruction.

26. A non-volatile storage medium, characterized in that the non-volatile storage medium comprises a stored program, wherein the program, when run, controls a device in which the non-volatile storage medium is located to perform the payment method of any one of claims 1 to 21.

27. A computer device comprising a memory for storing a program and a processor for executing the program stored in the memory, wherein the program when executed performs the payment method of any one of claims 1 to 21.