TW201023067A - Payment method, system and payment platform capable of improving payment safety by virtual card - Google Patents

Payment method, system and payment platform capable of improving payment safety by virtual card Download PDF

Info

Publication number
TW201023067A
TW201023067A TW098122110A TW98122110A TW201023067A TW 201023067 A TW201023067 A TW 201023067A TW 098122110 A TW098122110 A TW 098122110A TW 98122110 A TW98122110 A TW 98122110A TW 201023067 A TW201023067 A TW 201023067A
Authority
TW
Taiwan
Prior art keywords
card
bank
virtual card
payment
virtual
Prior art date
Application number
TW098122110A
Other languages
Chinese (zh)
Inventor
xing-jun Ni
Xu Zhao
Original Assignee
Alibaba Group Holding Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority to CN 200810182977 priority Critical patent/CN101414370A/en
Application filed by Alibaba Group Holding Ltd filed Critical Alibaba Group Holding Ltd
Publication of TW201023067A publication Critical patent/TW201023067A/en

Links

Abstract

The invention provides a method of payment utilizing a virtual card to enhance payment safety and a system thereof, wherein, the method of payment includes the following steps : a third-party payment platform is provided; after receiving the application request of virtual card of a user, the third-party payment platform obtains the information of bank card of the user and sends the request of virtual card application to a corresponding issuing bank; the third-party payment platform returns the information of virtual card number sent by the issuing bank to the user; and when the issuing bank receives the request of payment including the information of virtual card number and payment amount, payment is successfully done, provided that the virtual card meets the service regulations of the virtual card and monetary amount on the corresponding bank card is no less than the payment amount. As the payment of the invention is carried out by the virtual card number, information security of the card can be enhanced when the bank card number and password are directly input.

Description

201023067 VI. Description of the Invention: [Technical Field] The present application relates to a payment method and system, and more particularly to a payment method and system for improving payment security by using a virtual card. [Prior Art] With the rapid development and popularization of the Internet, B2C e-commerce@ has also developed rapidly with it, but its development has also been restricted by the bottleneck of payment means, compared to the payment method in reality. Currently, there are usually three popular online payment methods: (1) direct payment through the bank online banking system; (2) payment through a third-party payment company; (3) direct input of the card number and password on the e-commerce platform's web page. . In terms of current technology, the security of the first two methods is relatively high, and more and more e-commerce platforms are beginning to support the payment methods of third-party payment companies, but there are still many e-commerce platforms using the third. Kind of payment method. • The third payment method requires the user to directly enter the bank card number and password when shopping, but now there are many malicious acts on the network, the customer cannot identify whether the shopping site is malicious, or whether there is a loophole that may reveal the card number. And the password, so it will bring certain threats to the user's card security. The invention patent of CN01 1 29250 discloses an e-commerce online payment system and an implementation method thereof, the method comprising the following steps: S 1 0 1 : an enterprise integrates multiple commodities or services, and establishes an electronic commerce for selling these goods or services. Platform; 201023067 S 1 02: The company issues pre-set fixed price 能够 can pay for the sequence of these goods or services 5 Ι Ι and street code 'serial number, password is carried on a certain medium, the medium is packaged; S103: the enterprise will encapsulate the serial number The password medium is distributed to the customer through the sales pipeline; S1 04: the customer orders the goods on the enterprise-designated e-commerce platform; S1 05: the customer writes the usage information on the goods; S106: writes the pre-provided information provided by the enterprise The fixed price can be used to pay a variety of _ product service serial number and password; S 1 07: e-commerce platform billing system program for serial number, password verification, after successful deduction of the serial number, password on the customer's choice of the price of the product, successful The post-use program informs the goods and service providers to verify the successful information; S 1 08: the goods and service manufacturers give the customers Service license, the customer gets the corresponding goods or services. However, the above e-commerce online payment method transaction method is particularly complicated and does not have versatility and universality. The current transaction is in the direction of convenience, speed, and security, especially the emergence of the Internet. It is possible to purchase products with excellent performance and price ratio without leaving the house. That is to say, through the third payment method, it is gradually becoming the mainstream. Since the user needs to directly enter the bank card number and password when shopping, and now there are many malicious acts on the Internet, 'the customer cannot identify whether the shopping site is malicious' or if there is a loophole that may reveal its card number and password, it will give The user's card security brings certain threats, especially the user's property loss. 201023067 [Invention] In view of the above drawbacks, the idea of the present application is to provide a payment method for improving payment security by using a virtual card to solve the prior art. In the case of directly entering the bank card number and password on the webpage for online payment or other business, the defect of the account cannot be effectively protected. Another idea of the present application is to provide a payment system that uses a virtual card to improve payment security, so as to solve the problem that the direct input of the silver Φ line card number and password on the webpage for online payment or other services cannot be effectively protected in the prior art. Defects in the account. The third idea of the present application is to provide a payment platform. The present application proposes a payment method for improving payment security by using a virtual card, which is used to improve the security of payment by a user through a bank card, including: (1) providing a third-party payment platform through a dedicated line or network The issuing bank that connects at least one bank card; (2) The third-party payment platform receives the user's virtual card application request φ and then 'obtains the user's bank card information, and sends a virtual card application request to the corresponding issuing bank'. Include bank card information and virtual card usage rules·, (3) When the third-party payment platform receives the requested virtual card number information sent by the card-issuing bank, return to the user; (4) When the card-issuing bank receives the information including the virtual card number and When the payment request for the payment amount is satisfied, if the virtual card satisfies the virtual card usage rule and corresponds to the payment rule of the bank card, the payment is successful. According to the payment method described in the preferred embodiment of the present application, obtaining the bank card information of the user in the step (2 201023067) further includes: the third party payment platform pre-stores the bank card information bound to the user, when receiving the virtual When the card applies for a request, it is determined that the user who sent the virtual card application request finds the bank card information bound by the user. According to the payment method of the preferred embodiment of the present application, the step (2) of obtaining the bank card information of the user further includes: the virtual card application request sent by the user received by the third-party payment platform includes the bank card and the password information thereof. When the two-party payment platform receives the virtual card application request, the bank card and password information are parsed therefrom. The payment method according to the preferred embodiment of the present application further includes: the virtual card application request sent by the third-party payment platform is included in the virtual card application request, or the third-party payment platform is preset in advance. The virtual card uses the rule template to receive the virtual card usage rule template selected by the user as the virtual card usage rule. The payment method according to the preferred embodiment of the present application further includes: the third-party payment platform receiving the request of the user to modify the virtual card usage rule and sending the request for modifying the virtual card usage rule to the corresponding issuing bank. The third-party payment platform sends the modified result returned by the issuing bank to the corresponding user. According to the payment method of the preferred embodiment of the present application, the virtual card usage rule further includes: an effective condition for using the virtual card that is limited by the number of uses and/or a time limit for use, and a virtual card corresponding password setting. . The present application proposes a support system for improving payment security by using a virtual card, including a table two-party payment platform and at least one bank card issuing bank. The third-party payment platform further includes a payment platform server and a payment platform. The database, wherein the payment platform server comprises at least: a user interface processing unit: receiving various requests sent by the user, including a virtual card application request, and returning the processing result of the platform to the user; the card issuing interface processing unit : used to establish interaction with each Φ issuing bank that has signed a contract with the third-party payment platform, and send it to various processing requests corresponding to the issuing card including the virtual card application request, and receive the virtual card application success; virtual card service Processing unit: connected to the user interface processing unit and the card issuing interface processing unit for receiving the virtual card application request, obtaining the user's bank card information and the virtual card usage rule, and finding the corresponding issuing bank information through the bank card information, forming The virtual card application request message is transmitted through the card issuing bank The interface processing unit is sent to the corresponding issuer bank; the payment platform database further includes: a virtual card record storage unit for storing all the conditions of the user and the corresponding φ virtual card application/modification, and the bank card and the card issue information are saved. a card issuing bank storage unit, a user attribute storage unit for storing user information; the card issuing bank further comprising a card issuing bank database and a card issuing bank server, wherein the 'issuing bank database further comprises a card card and a virtual card binding card corresponding to the card issuing bank Relationship table 'bank card attribute storage unit and bank card transaction record storage unit, the card issuer server further comprises: a bank card authentication unit: receiving various applications including a virtual card application request sent by a third party payment platform' The bank card information in the application is matched and authenticated; virtual-9 - 201023067 the card generation unit: for processing the virtual card application request authenticated by the bank card authentication unit, generating a virtual card, and transmitting the virtual card information to a third party Processing platform; transaction processing unit: used to process the virtual card number The payment request for information and payment amount is verified by the virtual card usage rule before the request is processed. After the verification is successful, the payment request is processed and the feedback is processed on the premise that the amount on the bank card is not less than the payment amount. Handle the situation. The application further proposes a payment method for improving payment security by using a virtual card, which is used for improving the security of payment by a user through a bank card, including (n. the card issuing bank of the bank card receives a virtual card application request sent by the user, in the request Include bank card information and virtual card usage rules; (2) After receiving the virtual card application request from the user, the card issuing bank authenticates the bank card information, and generates a virtual card number and a registered virtual card usage rule according to the request after the authentication. And then returning the virtual card number to the user; (3) When the card issuing bank receives the payment request including the virtual card number information and the payment amount, if the virtual card satisfies the virtual card usage rule and corresponds to the payment rule of the bank card, the payment is successful. The invention further proposes a payment system for improving payment security by using a virtual card, comprising at least one bank card issuing bank, the card issuing bank further comprising a card issuing bank database and a card issuing server, wherein the issuing bank database further comprises a bank card and a virtual card. Card-bound card correspondence table, bank card attribute storage unit, and bank The card transaction record storage unit further includes: -10- 201023067 The bank card authentication unit: receives various applications including a virtual card application request sent by the user, and matches the bank card information in the application. Authentication; virtual card generating unit: for processing a virtual card application request authenticated by the bank card authentication unit, generating a virtual card, and transmitting the virtual card information to the user; the transaction processing unit: for processing the virtual card number information and the payment amount The payment request is verified by the virtual card usage rule before the request is processed. After the verification is successful, and the amount on the bank card is satisfied, the payment request is processed under the premise of not less than the payment amount, and the processing is processed. The application further provides a payment platform, which includes a payment platform server and a payment platform database, wherein the payment platform server at least includes: a user interface processing unit: receiving various requests sent by the user, including a virtual card application request, And return the processing results of this platform to the user. The issuing card interface processing unit: establishing an interaction with each card issuing bank contracted by the third party payment platform φ, and transmitting the processing result to the corresponding issuing bank including the virtual card application request and receiving the virtual card application success. The virtual card service processing unit is connected to the user interface processing unit and the issuer interface processing unit, and is configured to obtain the user's bank card information and virtual card usage rules when receiving the virtual card application request, and find the corresponding card issuance through the bank card information; And the virtual card application request message is sent to the corresponding issuer through the card issuer interface processing unit; the payment platform database further includes: for saving the user and the corresponding -11 - 201023067 virtual card application/modification The virtual card record storage unit of the situation, the card issuer storage unit corresponding to the bank card and the card issue information, and the user attribute storage unit for storing the user information. Compared with the prior art, this series of appeals has the following advantages: (1) The user applies to the bank through the third-party platform to customize the virtual card number of the usage rule, and uses the virtual card number to consume to each e-commerce platform, which can be effective. Protect the interests of users and reduce the loss of customers. (2) When the virtual card number and password are stolen, the pre-set virtual card usage rules, such as pre-set usage times and usage limits (such as $500), can limit the loss to the range that the user can control. (3) In the prior art, when the bank card information is stolen, it is necessary to go to the outlet or through the telephone to report the loss. Most of the issuing bank's outlets are not open 24 hours, so the loss of time and geographical acceptance through the outlets However, if the loss is reported by telephone, the existing telephone number of each issuing bank is not easy to get in and there is a problem that the telephone system has a delay in processing. The present invention can realize instant loss reporting through a network through a third-party payment platform, and the processing speed is very fast, which reduces the time lost by the user. (4) The virtual card provided by the present invention can be used not only on the network but also in a traditional environment. The generation of the virtual card can be performed by using a traditional bank card number, that is, at least the card is included in the virtual card number. The information, especially when the user uses the virtual card to consume in some unfamiliar and untrusted environment, can reduce the user's loss, thereby improving the security of the user's bank card. Of course, the most common environment for the present invention is the Internet -12-201023067. (5) The program does not require any changes from the merchants. It only requires changes to the third-party platform and the bank, and has universal applicability. It should be noted that any of the above-described products embodying the present invention does not necessarily need to achieve all of the advantages described above at the same time. [Embodiment] Φ The core of the application is that the user applies for a virtual card number and password to the bank through a third-party payment platform, and subscribes to the virtual card number and password, and then consumes the obtained virtual card number and password. The user uses a virtual card number and password, and the card number and password also have various usage rules, so that the user's loss due to various malicious acts on the network can be minimized. The third-party payment platform described in this application is a transaction payment platform provided by a third-party independent institution that has signed contracts with major banks at home and abroad and has certain strength and credit guarantee. For example, Zhifubao can bind its own. User's bank card information. The present application will be specifically described below with reference to the accompanying drawings. [First Embodiment] This application proposes a payment system for improving payment security by using a virtual card. Referring to Fig. 1, there is shown a structural diagram of a payment system for improving payment security using a virtual card. The payment system includes a user 110, a third-party payment platform 120, at least one bank card issuing bank 130, and a merchant 140, wherein the third-party payment platform 12 transmits a card with a bank card through a dedicated line or network and to -13-201023067 Line 130 is connected, and merchant 140 is also connected to the issuing bank 1 30 via a dedicated line or network, and the user 1 1 可以 can be connected to the third party payment platform 120 and the merchant M〇, respectively. The third-party payment platform 120 further includes a payment platform server 121 and a payment platform database 122 (see FIG. 2), wherein the payment platform server 121 includes at least: a user interface processing unit 1211 for receiving the user 110 Various requests including virtual card application/modification request, and returning the processing result of the platform to the user 110; the card issuing interface processing unit 1213: the issuing bank 13 for signing with the third party payment platform 120 Establishing an interaction, sending to the issuer 130 for various requests including the virtual card application/modification request, receiving the virtual card application/modification success, the virtual card service processing unit 1212: connecting to the user interface processing unit 1211 and The issuing bank interface processing unit ι213 is configured to obtain the bank card information and the virtual card usage rule of the user 110 when receiving the virtual card application/modification request and find the corresponding issuing bank by analyzing the B IN code in the bank card information. Information, the virtual card application/modification request message is sent to the corresponding sender through the card issuing interface processing unit OK, the virtual card applicant / modification includes bank card information and virtual card usage rules Information request packet. The user interface processing unit 1211, the issuer interface processing unit 1213, and the virtual card service processing unit 1212 may be either hardware or software. In this example, it is better to set the logic unit on the processor in the server, -14 - 201023067 is commonly known as software. The payment platform database 122 further includes: a virtual card record storage unit 1221 for saving all the situations of the user and the corresponding virtual card application/modification, and a card issuer storage unit 1222 for saving the bank card and the card issue information, for saving the user. User attribute storage unit 1 223 of information. Virtual card record storage unit 1221 and issuer storage unit! 222 and the user attribute storage unit 1 2 2 3 are logical units and are logical units solidified in the memory φ. The issuing bank storage unit 1222 is mainly used for storing the correspondence between the issuing bank identification and the issuing bank, and the identification of the issuing line refers to the fixed position of the PIN code for identifying the digit of the issuing line. The issuer bank 130 further includes a card issuer database 131 and a card issuer server 132 (see Figure 3). The card issuing bank database 31 further includes: a card correspondence table 1311 for binding the generated virtual card number and the real bank card number, for storing various attributes of the bank card including the user name, the card number and the password. The bank card attribute storage unit 1312 and the bank card transaction record storage unit 1313 that stores the bank card transaction record and balance with φ. The issuer server 132 further includes: a bank card authentication unit 1 32 1 · for receiving various applications including a virtual card application/modification request sent by the third party payment platform 120, and the bank card information in the application The matching authentication is performed according to the information in the bank card attribute storage unit 1312. The virtual card generating unit 1 322 is configured to process the virtual card application/modification request authenticated by the bank card authentication unit 133, and apply for the request according to the authenticated virtual card. 'Generate a virtual card number, the virtual card number contains a BIN code identifying the card issuing line with -15-201023067, and binding the virtual card number to the real bank card number, and writing the card correspondence table 1311, and then to the virtual card The virtual card usage rule in the application request is registered, and finally the virtual card number information is sent to the third-party processing platform 120; and for the authenticated virtual card modification request, the previously registered virtual card usage rule is modified, and the result is Feedback is provided to the third party processing platform 120. The transaction processing unit 1323 is configured to process the payment request including the virtual card number information and the payment amount forwarded by the merchant, and verify the virtual card usage rule before the request is processed, and the amount on the bank card is not verified after the verification is successful. The payment request is processed under the premise of less than the payment amount, and the processing is reported. The bank card authentication unit 1321, the virtual card generating unit 1322, and the transaction processing unit 1323 may be hardware or software, and are usually software installed in the server. Based on the above payment system, the present application proposes a payment method for improving payment security by using a virtual card, which is used to improve the security of payment by a user through a bank card. Referring to FIG. 4, it is a flowchart of a payment method of the present application. The payment method includes the following steps: S4〇l, providing a third-party payment platform, the third-party payment platform connecting a card issuing bank of at least one bank card through a dedicated line or a network, and signing a relationship with the card issuing behavior, the issuing bank may be the The third-party payment platform provides a series of business processes, including the virtual card application business involved in this application. The third payment platform provides the user with a virtual card application service, which can be connected to the user through the Internet at -16 - 201023067. Of course, the user can also apply for the virtual card application business directly to the office set up by the third party payment platform. The user is generally a registered user of the third-party payment platform. The user can bind a bank card that has a contractual relationship with the third-party payment platform. Of course, the user can also register only without binding the bank card. Taking Alipay, a third-party payment platform, as an example, existing Alipay users usually have bank card information bound to them. S402. The third-party payment platform receives the virtual card application sent by the user, and asks for the virtual card usage rule. The virtual card usage rule may be a template preset by a third-party payment platform, and then the user may select the template according to the needs at the time of application, and the virtual card usage rule may also be freely set by the user at the time of application. Of course, this freedom setting will also be limited to a certain range. According to the actual application, the virtual card usage rule may generally include a virtual card usage limit and/or a use time limited virtual card effective condition setting, a virtual card corresponding password setting, etc., for example, the virtual card valid condition may be performed in the following scheme. Select: φ ( a ) according to the number of uses: (b) According to the effective use time of the virtual card: (b 1 ) is valid for the current time period of N; (b 2 ) is valid for the next time from time A to time B; (b3) specified The loop time period is valid; (c) manually close the virtual card. The virtual card corresponding password setting can also select the original bank card password in the following scheme; -17- 201023067 ϋ·specify the virtual card password; ΐϋ· no password; ΠΠ·any password; the third party payment platform receives the user's virtual card After the request is made, it is determined whether the user has the bound bank card information. If the user pre-sets the bank card information bound to the user on the third-party payment platform, the third-party payment platform receives the virtual card application request. The bank card information is read out; if the user does not pre-set the binding bank card information, but writes the bank card number and password information when the application request is made, the third party payment platform analyzes the bank card information. . The card number of the bank card is the number that identifies the card issuer and the cardholder information. It consists of the following three parts: the issuer identification code (BIN code), the issuer's custom bit and the check code, and the third-party payment platform can pass the BIN code. To determine whether the bank card is a contracted bank. 'When the third party payment platform determines that the bank is a contracted bank, the card issuing bank is identified according to the BIN code, and a virtual card application request is sent to the card issuing bank, and the virtual card application request It contains bank card information and virtual card usage rules. If the third party payment platform determines that the bank card is a non-contracted bank, an error message is returned to the client. S403. After receiving the virtual card application request, the card issuing bank verifies the bank card information included in the request, and the specific verification mode can determine whether the BIN code is the number of the bank, check the check code, determine whether the fake card, and match the card number. Password, etc. The issuing bank randomly generates a virtual card number according to the verified virtual card application request, and the virtual card number may also include a number (similar to the BIN code) useful for identifying the bank to which the virtual card belongs, and the virtual 201023067 card number and the bank card number are given. Bind and write a card correspondence table, and then the card issuing bank sends the virtual card information to the third party payment platform. The third party payment platform returns the received virtual card information to the user. S 4 04, the merchant's transaction system receives the request sent by the user to use the virtual card information for transaction payment, and the most common payment method of the user is to directly input the virtual card number and password on the pages provided by various merchants, of course, the user also You can enter the virtual card number and password in person at the exchange. After the merchant system receives the payment request, it judges the card issuing bank to which the card number belongs according to the BIN code of the virtual card number, and sends the relevant service request together with the virtual card number and password to the corresponding issuing bank. When the card issuing bank receives the payment request including the virtual card number information and the payment amount, first verify the usage rule of the virtual card, verify whether the use of the virtual card number continues to be valid, and whether the password is correct, and return an error if one item is incorrect. Information to the merchant system. After the virtual card usage rule is verified, the card issuing bank translates the virtual card number into a real card number φ according to the card correspondence table established in step S403, and processes the related service request. At this time, if the bank card account satisfies the bank card payment The rule, the payment is successful 'otherwise, the information of the payment failure is returned to the merchant system. The bank card payment rules are generally part of the same regulation in the industry. It can also be specified by the bank. For example, if the bank card is a normal debit card, that is, a bank card that does not have an overdraft function, the payment rule of the bank card includes at least the amount of the bank card corresponding to the virtual card is not less than the payment amount 'if the bank card is a credit card' Then, the payment rule of the bank card at least includes the usage rule of the credit card corresponding to the virtual card. -19- 201023067 When the third-party payment platform receives the modification of the virtual card usage rules that the user needs to apply, the following steps can be modified: S501, the third-party payment platform receives the user to send the virtual card modification request, the same The user may select in the template provided by the third-party payment platform, or may re-set the usage rule freely; S 502, the third-party payment platform reads the bank card and password information of the user according to the virtual card modification request, and Sending the request for modifying the virtual card usage rule together with the bank card and password information to the corresponding issuing bank; S 5 03, the issuing bank authenticates the bank card information, and if the authentication passes, modifying the previously registered virtual card usage rule, and Returning the modified information to the third-party payment platform; S504, the third-party payment platform returns the modified success information to the user. The above first embodiment, which is paid online, is a preferred embodiment of the present invention. Second Embodiment This application further proposes another payment system that utilizes a virtual card to improve payment security. Referring to FIG. 5, which is a structural diagram of another online payment system according to the application, the online payment system includes a user 510. At least one bank card issuing bank 520 and a merchant 530, wherein the issuing bank 520 and the merchant 530 are connected by a dedicated line or a network, and the user 510 can be connected to the issuing bank 520 and the merchant 530 respectively. The card issuing bank 520 further includes a card issuing bank database 521 and a card issuing bank server 522. The card issuing bank database 52 1 further includes a card correspondence table 5211 for binding the virtual card number generated by the 201023067 and the real bank card number. A bank card attribute storage unit 5212 for storing various attributes of the bank card including the user name, the card number and the password, and a bank card transaction record storage unit 5213 for storing the bank card transaction record and balance (see FIG. 6). The issuer server 522 further includes: a bank card authentication unit 5221: it is configured to receive various applications including the virtual card application/modification request sent by the user 510, and store the bank card information of the φ in the application according to the bank card attribute. The information in the unit 5212 is matched and authenticated; the virtual card generating unit 5222 is configured to process the virtual card application/modification request authenticated by the bank card authentication unit 522 1 , and generate a virtual card number according to the authenticated virtual card application request, the virtual The card number includes a BIN code for identifying the card issuer, and the virtual card number is bound to the real bank card number, and written into the card correspondence table 5211, and then the virtual card usage rule in the application is registered, and finally The virtual card number information is sent to the user 510; and for the authenticated virtual card modification request, the previously registered virtual card usage rule is modified, and the result is fed back to the user 510. The transaction processing unit 5223 is configured to process the payment request including the virtual card number information and the payment amount forwarded by the merchant 530, and verify the virtual card usage rule before the request is processed, and after verifying successfully, and satisfying the bank card The payment request is processed under the premise that the amount is not less than the payment amount, and then the feedback is processed. Based on the above system, the present application further provides an online payment method for improving online payment security, which is used to improve the user's online payment through a bank card. Please refer to FIG. 7' A flow chart of a payment method, the payment method comprising the following steps:

S 701, the card issuing bank of the bank card receives the virtual card application request sent by the user, and the virtual card application may be the user applying through the application page provided by the issuing bank through the Internet, or may be the user to the issuing bank. If the business office makes an application, the virtual card application request includes bank card information and virtual card usage rules. According to the actual application, the virtual card usage rule may generally include a virtual card usage limit and/or a use time limited virtual card effective condition setting, a virtual card corresponding password setting, etc., for example, the virtual card valid condition may be performed in the following scheme. Select: (a) according to the number of uses; (b) according to the effective use time of the virtual card: (b 1) valid for the current time period of N; (b2) valid for the later time from time A to time B; (b3) the specified circle The time period is valid;

(c) Manually shut down the virtual card. The virtual card corresponding password setting can be selected in the following schemes. i. The original bank card password; ϋ· specifies the virtual card password; iii. no password; iiii. any password; S 7 02, the card issuing bank receives the user's virtual card After requesting the application, verify the bank card information contained in the request. The specific verification method can be verified by -22-201023067 whether the BIN code is the number of the bank, check the check code to determine whether it is a fake card, and match the card number password. The issuing bank generates a virtual card number according to the verified virtual card request request. The virtual card number may also include a number (similar to the BIN code) useful for identifying the bank to which the virtual card belongs, and bind the virtual card number and the bank card number. And write a card correspondence table, and then the card issuing bank sends the virtual card information to the user. S 703, the merchant's transaction system receives the request sent by the user to use the virtual card φ information for transaction payment, and the most common payment method of the user is directly inputting the virtual card number and password on the pages provided by various merchants, of course, the user also You can enter the virtual card number and password in person at the exchange. After receiving the payment request, the merchant transaction system determines the card issuer to which the card number belongs according to the BIN code of the virtual card number, and sends the relevant service request together with the virtual card number and password to the corresponding issuer. When the card issuing bank receives the payment request including the virtual card number information and the payment amount, first verify the usage rule of the virtual card, verify whether the use of the virtual card number continues to be valid φ and whether the password is correct, and if one item is incorrect, return Error message to the merchant system. After the virtual card usage rule is verified, the card issuing bank translates the virtual card number into a real card number according to the card correspondence table established in step S102, and processes the related service request. At this time, if the bank card account satisfies the bank card payment If the rule is successful, the payment will be returned to the merchant system. The bank card payment rules are generally the same as those in the banking industry, and some may be specified by the bank. When the card issuing bank receives the modification of the virtual card usage rule that the user needs to apply, it can be modified as follows: -23- 201023067 S801, the card issuing bank receives the virtual card modification request sent by the user; S8 02, the card issuing bank receives After the request, the virtual card number is converted into a real card number. If the conversion is successful, the previously registered virtual card usage rule is modified, and the successfully modified information is returned to the user. The third embodiment further proposes a payment platform, which can receive a request for a user to apply for a virtual card, and apply for a virtual card for the user to the corresponding bank, and the structure is the same as that of the third-party payment platform in the first embodiment (ie, 2)). The third-party payment platform 120 further includes a payment platform server 121 and a payment platform database 122 (see FIG. 2), wherein the payment platform server 1 2 1 at least includes: a user interface processing unit 1211 for receiving the user 110 Sending various requests including virtual card application/modification request, and returning the processing result of the platform to the user 110; the card issuing interface processing unit 1213: for issuing the card issuing bank with each third party payment platform 120 130 establishes an interaction, sends to the card issuing bank 130 various requests including the virtual card application/modification request, and receives the processing result of the virtual card application/modification success; the virtual card service processing unit 1212: connects to the user interface processing unit 1211 and The card issuing card interface processing unit 1213 is configured to: obtain the bank card information of the user 110 and the virtual card usage rule when receiving the virtual card application/modification request and find the corresponding issuer information by analyzing the BIN code in the bank card information. Forming a virtual card application/modification request message to be sent to the corresponding server through the 201023067 description card issuing interface processing unit The issuing bank, the virtual card applicant / modification request message includes the bank card information and virtual information card usage rules. The user interface processing unit 1211, the issuer interface processing unit 1213, and the virtual card service processing unit 1212 may be either hardware or software. In this example, it is preferable to set a logic unit on the processor in the server, which is a so-called software. The φ payment platform database 1 22 further includes: a virtual card record storage unit 1221 for storing all cases of the user and the corresponding virtual card application/modification, and a card issuer storage unit 1222 for saving the bank card and the card issue information. User attribute storage unit 1 223 that stores user information. The virtual card record storage unit 1221, the issuer storage unit 1222, and the user attribute storage unit 1223 are logical units that are solidified in a memory. The issuing bank storage unit 1222 is mainly used for storing the correspondence between the issuing bank identification and the issuing bank, and the identification of the issuing unit refers to the fixed position of the BIN code for identifying the digit of the issuing line. The online payment method referred to in this application includes not only payment, but also transfers, mortgages, and freezes. Therefore, compared with the prior art, the present application has the following advantages: 1. The user applies for a virtual card number that uses the rule to the bank through the third-party platform, and uses the virtual card number to consume to each e-commerce platform, which can effectively protect The interests of users reduce the loss of customers. 2. The program does not require any changes from merchants. It only requires changes from third-party platforms and banks, and has universal applicability. The above disclosure is only a few specific embodiments of the present invention, but the present invention is not limited thereto, and any variations that can be considered by those skilled in the art are intended to fall within the scope of the present invention. BRIEF DESCRIPTION OF THE DRAWINGS FIG. 1 is a structural diagram of a system for improving payment security by using a virtual card; FIG. 2 is a structural diagram of a third-party payment platform of the present application; FIG. 3 is a card issuing line of the present application; FIG. 4 is a flow chart of a payment method for improving payment security by using a virtual card according to the present application; FIG. 5 is a structural diagram of another payment system using a virtual card to provide payment security; FIG. Another structural diagram of the issuing bank; FIG. 7 is a flow chart of another payment method for improving payment security by using a virtual card. [Main component symbol description] 1 10 : User 120: Third-party payment platform 1 2 1 : Payment platform server 122: Payment platform database 1 3 0: Issuer bank 1 3 1 : Issuer database -26- 201023067 13 2 : Issuer Server 140: Merchant 5 10: User 520: Issuer 52 1 = Issuer Database 522 = Issuer Server 530: Merchant Turtle 1211: User Interface Processing Unit 12 12: Virtual Card Service Processing Unit 12 13 : Issuer interface processing unit 122 1 : Virtual card record storage unit 1222 : Issuer storage unit 1223 : User attribute storage unit 13 11 : Card correspondence table 13 12 : Bank card attribute storage unit ❹ 1313 : Bank card transaction record storage unit 132 1 : bank card authentication unit 1322 : virtual card generation unit 13 23 : transaction processing unit 52 11 : card correspondence table 52 12 : bank card attribute storage unit 52 13 : bank card transaction record storage unit 522 1 : bank card authentication unit 5222 : Virtual card generation unit -27- 201023067 5223··Transaction processing single redundancy

-28-

Claims (1)

  1. 201023067 VII. Patent application scope: 1. A payment method for improving payment security by using a virtual card to improve the security of payment by a user through a bank card, including: (1) providing a third-party payment platform through which the third-party payment platform is provided A private line or network connection to at least one bank card issuing bank, the user connects to the third party payment platform through the network; (2) the third party payment platform receives the user's virtual card application request φ, and obtains the user's bank card information, And sending a virtual card application request to the corresponding issuing bank, the request includes bank card information and virtual card usage rules (3) when the third party payment platform receives the requested virtual card number information sent by the issuing bank, and returns to the user; (4) When the card issuing bank receives the payment request including the virtual card number information and the payment amount sent by the user, if the virtual card satisfies the virtual card usage rule and corresponds to the payment rule of the bank card, the payment is successful. Φ 2. The method of claim 1, wherein obtaining the user's bank card information in step (2) further comprises: pre-storing the bank card information bound to the user on the third-party payment platform, When receiving the virtual card application request, it is determined that the user who sent the virtual card application request 'find the bank card information bound by the user. 3. The method of claim 1, wherein the step (2) obtaining the user's bank card information further comprises: the third party payment platform receiving the virtual card application request sent by the user includes the bank card and Password information, when the third-party payment platform receives the -29-201023067 request for the virtual card, the bank card and password information is parsed out. 4. The method of claim 1, wherein the virtual card application request sent by the user received by the third-party payment platform includes a virtual card usage rule, or is preset on a third-party payment platform. Several virtual card usage rule templates receive the virtual card usage rule template selected by the user as the virtual card usage rule. 5. The method of claim 1, wherein the third party payment platform further receives a request for modifying the virtual card usage rule selected by the user, and sends the request for modifying the virtual card usage rule to the corresponding issuing bank. The third-party payment platform sends the result of the modification returned by the issuing bank to the corresponding user. 6. The method of claim 1, wherein the virtual card usage rule further comprises: a valid condition for using the virtual card defined by its usage limit and/or usage time, and a virtual card corresponding password setting . 7. The method of claim 1, wherein the step (2) further comprises: after receiving the virtual card application request, the card issuing bank parses the corresponding bank card information and the virtual card usage rule; The bank card information is checked with the pre-stored bank card and the corresponding secret -30-201023067 code. After the verification is successful, the virtual card is generated according to the preset rules, and the correspondence between the bank card and the virtual card is saved at the local end and The virtual card uses the rule that the card number of the virtual card stores the identification information of the card issuing bank; the card issuing bank returns the generated virtual card information or the unsuccessful result of the request to the corresponding third party payment platform. 8. The method of claim 1, wherein the virtual card φ satisfies the payment rule of the corresponding bank card and further includes the amount of the bank card corresponding to the virtual card not less than the payment amount. 9. A payment system for improving payment security using a virtual card, comprising: a third party payment platform and at least one bank card issuing bank, the third party payment platform further comprising a payment platform server and a payment platform database, wherein The payment platform server at least includes: a user interface processing unit: receiving various requests sent by the user, including the virtual card application request, and returning the processing result of the platform to the user • the issuer interface processing unit: for each The home card interacts with the issuing bank contracted by the third-party payment platform, and sends the processing result to the corresponding issuing bank including the virtual card application request, and the processing result of receiving the virtual card application successfully; the virtual card business processing unit: connected to The user interface processing unit and the issuer interface processing unit are configured to obtain the user's bank card information and the virtual card usage rule when receiving the virtual card application request, and find the corresponding issuer information through the bank card information to form a virtual card application request message. Issued through the -31 - 201023067 The line interface processing unit is sent to the corresponding issuer bank; the payment platform database further includes: a virtual card record storage unit for saving all situations of the user and the corresponding virtual card application/modification, and corresponding to saving the bank card and the card issue information a card issuing bank storage unit, configured to store a user attribute storage unit of the user information; the card issuing bank further comprises a card issuing bank database and a card issuing server, wherein the 'issuing bank database further comprises a card corresponding to the card bound to the virtual card a relationship table, a bank card attribute storage unit and a bank card transaction record storage unit, the card issuer server further comprising: a bank card authentication unit, receiving various applications including a virtual card application request sent by a third party payment platform, and Matching and authenticating the bank card information in the application; the virtual card generating unit: processing the virtual card application request authenticated by the bank card authentication unit, generating a virtual card, and transmitting the virtual card information to the third-party processing platform; Processing unit: used to process information including virtual card number The payment request of the payment amount is verified by the virtual card usage rule before the request is processed. After the verification is successful, the payment request is processed under the premise that the amount on the bank card is not less than the payment amount, and the feedback processing is performed. 〇10.- A payment method for improving payment security by using a virtual card to improve the security of payment by a user through a bank card, including: (1) The card issuing bank of the bank card receives a virtual card application request sent by the user, in the request Contains bank card information and virtual card usage rules; -32- 201023067 (2) After receiving the virtual card application request from the user, the card issuing bank authenticates the bank card information, generates a virtual card number after the authentication is passed, and then returns the virtual card number. To the user; (3) When the card issuing bank receives the payment request including the virtual card number information and the payment amount, if the virtual card satisfies the virtual card usage rule and the corresponding payment rule on the bank card, the payment is successful. 11. The method of claim 1, wherein the step (2) is specifically: after the card issuing bank receives the virtual card application request, parsing out the corresponding bank card information and the virtual card usage rule; The bank card information is checked with the bank card and the corresponding password saved in the local end. After the verification is successful, the virtual card is generated according to the preset rules, and the correspondence between the bank card and the virtual card and the virtual card usage rule are saved at the local end. The card number of the virtual card stores the identification information of the card issuing bank; the card issuing bank returns the generated virtual card information or the unsuccessful result of the request to the corresponding third party payment platform. 12. The method of claim 10, wherein the virtual card usage rule further comprises: a valid condition for using the virtual card defined by its usage limit and/or usage time, and a virtual card corresponding password setting The virtual card satisfies the payment rule of the corresponding bank card, and further includes the amount of the bank card corresponding to the virtual card is not less than the payment amount. 13. A payment system that uses a virtual card to pay for a secure payment, the special-33-201023067 is characterized in that it includes at least one bank card issuing bank, the card issuing bank further includes a issuing bank database and a issuing bank server, where ' The issuer database further includes a card correspondence table bounded by the bank card and the virtual card, a bank card attribute storage unit, and a bank card transaction record storage unit. The card issuer server further includes: a bank card authentication unit. Various applications including the virtual card application request, and matching and verifying the bank card information in the application; the virtual card generating unit: for processing the virtual card application request authenticated by the bank card authentication unit, generating a virtual card, and The virtual card information is sent to the user; the transaction processing unit is configured to process the payment request including the virtual card number information and the payment amount, and verify the virtual card usage rule before the request is processed, and the bank card is satisfied after the verification is successful. The payment request is not less than the amount of the payment. Processing, and feedback processing situation 〇 14. A payment platform, comprising: a payment platform server and a payment platform database, wherein the payment platform server comprises at least a user interface processing unit: receiving a virtual card application sent by a user Various requests, including the request, and returning the processing result of the platform to the user t card issuing fT interface processing unit: for interacting with the issuing bank contracted by the third party payment platform, and sending to the corresponding issuing bank containing the virtual -34- 201023067 Various requests including card application request, processing result of receiving virtual card application success; virtual card service processing unit: connected to user interface processing unit and issuer interface processing unit for receiving virtual card application request Obtaining the user's bank card information and virtual card usage rules, and finding the corresponding card issuer information through the bank card information, and forming a virtual card application request message to be sent to the corresponding issuer through the card issuer interface processing unit; payment platform database Further included: for preservation A virtual card record storage unit for all cases of the virtual card application/modification, a card issuer storage unit corresponding to the bank card and the card issue information, and a user attribute storage unit for storing the user information. -35-
TW098122110A 2008-12-15 2009-06-30 Payment method, system and payment platform capable of improving payment safety by virtual card TW201023067A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200810182977 CN101414370A (en) 2008-12-15 2008-12-15 Payment method, system and payment platform capable of improving payment safety by virtual card

Publications (1)

Publication Number Publication Date
TW201023067A true TW201023067A (en) 2010-06-16

Family

ID=40594897

Family Applications (1)

Application Number Title Priority Date Filing Date
TW098122110A TW201023067A (en) 2008-12-15 2009-06-30 Payment method, system and payment platform capable of improving payment safety by virtual card

Country Status (2)

Country Link
CN (1) CN101414370A (en)
TW (1) TW201023067A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104182870A (en) * 2013-05-24 2014-12-03 中国银联股份有限公司 Security payment method and payment system based on mobile phone wallet
TWI599971B (en) * 2016-07-29 2017-09-21 Digital wallet in the virtual card management
TWI626606B (en) * 2016-07-28 2018-06-11 Electronic card establishment system and method thereof
TWI643141B (en) * 2015-09-04 2018-12-01 黃少風 Payment service equipment that can perform payment operations with multiple third-party payment platforms and payment method

Families Citing this family (23)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101923754B (en) * 2009-06-17 2013-06-26 中国工商银行股份有限公司 System and method for realizing rapid payment based on bank intelligent card
KR101384608B1 (en) * 2011-03-21 2014-04-14 정현철 Method for providing card payment system using phnone number and system thereof
AU2012363110A1 (en) * 2011-06-07 2013-12-12 Visa International Service Association Payment Privacy Tokenization apparatuses, methods and systems
US8401904B1 (en) * 2011-11-13 2013-03-19 Google Inc. Real-time payment authorization
CN103188238B (en) * 2011-12-30 2017-11-07 上海博泰悦臻电子设备制造有限公司 The Activiation method and system of payment accounts
CN103186851B (en) * 2011-12-30 2018-05-25 上海博泰悦臻电子设备制造有限公司 Electronic fare payment system based on cloud data processing technique
CN103544074B (en) * 2012-07-09 2016-06-29 阿里巴巴集团控股有限公司 The method of calibration of a kind of business and device
CN104917796B (en) * 2014-03-13 2019-01-15 腾讯科技(深圳)有限公司 Credit accounts creating device, system and method
CN104915835B (en) * 2014-03-13 2018-10-02 腾讯科技(深圳)有限公司 Credit accounts creating device, system and method
CN104050565B (en) * 2014-06-30 2018-06-22 深圳市可秉资产管理合伙企业(有限合伙) Intelligent payment system and its mobile terminal based on PBOC payment networks
CN105354190A (en) * 2014-08-18 2016-02-24 阿里巴巴集团控股有限公司 Numerical information transfer method and apparatus
CN105427106A (en) * 2014-09-17 2016-03-23 苏州海博智能系统有限公司 Electronic cash data authorization processing method, electronic cash data payment processing method and virtual card
CN104268745A (en) * 2014-09-29 2015-01-07 余震辉 On-line and off-line safety payment method
CN105590214A (en) * 2014-12-31 2016-05-18 中国银联股份有限公司 Payment method and payment system based on virtual card
CN104504565A (en) * 2015-01-16 2015-04-08 上海浩恺信息科技有限公司 Mobile payment system and method based on bank virtual card number
CN104794613B (en) * 2015-04-27 2018-05-01 上海摩镶数据科技有限公司 A kind of mobile device authentication method based on point-of-sale terminal
CN104951937B (en) * 2015-04-27 2018-05-01 上海摩镶数据科技有限公司 Method for authenticating and right discriminating system between a kind of mobile equipment
CN105931035A (en) * 2015-08-18 2016-09-07 中国银联股份有限公司 Payment mark generation method and device
CN105139252A (en) * 2015-10-14 2015-12-09 北京邻和科技有限公司 Transaction and consumption system based on network platform and method thereof
CN106713248A (en) * 2015-11-17 2017-05-24 腾讯科技(深圳)有限公司 Online virtual card application method, user terminal and online virtual card application system
CN107204957A (en) * 2016-03-16 2017-09-26 阿里巴巴集团控股有限公司 A kind of account binding and the method and device of business processing
CN105894279A (en) * 2016-03-29 2016-08-24 联想(北京)有限公司 Information processing method, apparatus and equipment
CN109034791A (en) * 2018-07-19 2018-12-18 国民技术股份有限公司 Payment code method of commerce, smart card, mobile terminal and cashing machine

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104182870A (en) * 2013-05-24 2014-12-03 中国银联股份有限公司 Security payment method and payment system based on mobile phone wallet
CN104182870B (en) * 2013-05-24 2017-12-15 中国银联股份有限公司 A kind of safe payment method and payment system based on mobile phone wallet
TWI643141B (en) * 2015-09-04 2018-12-01 黃少風 Payment service equipment that can perform payment operations with multiple third-party payment platforms and payment method
TWI626606B (en) * 2016-07-28 2018-06-11 Electronic card establishment system and method thereof
TWI599971B (en) * 2016-07-29 2017-09-21 Digital wallet in the virtual card management

Also Published As

Publication number Publication date
CN101414370A (en) 2009-04-22

Similar Documents

Publication Publication Date Title
US7734527B2 (en) Method and apparatus for making secure electronic payments
CA2412184C (en) System and method for verifying a financial instrument
US10007940B2 (en) Transaction processing with payment agent
RU2576487C2 (en) Payment channel returning limited use proxy dynamic value
US7716127B2 (en) Systems and methods for facilitating commercial transactions between parties residing at remote locations
US8275704B2 (en) Systems and methods for authorizing an allocation of an amount between transaction accounts
US7849020B2 (en) Method and apparatus for network transactions
US9704155B2 (en) Passing payment tokens through an hop/sop
TW544605B (en) System for facilitating a transaction
US6721716B1 (en) Payment certification string and related electronic payment system and method
AU2001248198B2 (en) A method and system for a virtual safe
US7292996B2 (en) Method and apparatus for performing a credit based transaction between a user of a wireless communications device and a provider of a product or service
US8301500B2 (en) Ghosting payment account data in a mobile telephone payment transaction system
US8942997B2 (en) Payment system
US6947908B1 (en) System and use for correspondent banking
US5883810A (en) Electronic online commerce card with transactionproxy number for online transactions
US7249097B2 (en) Method for ordering goods, services, and content over an internetwork using a virtual payment account
US6594647B1 (en) Real time bank-centric universal payment system
US5724424A (en) Digital active advertising
US8762283B2 (en) Multiple party benefit from an online authentication service
US8296231B2 (en) Network accessible funds transfer system
US7461030B2 (en) System for anonymous purchase of goods by providing a plurality of non-activated account numbers
US7499889B2 (en) Transaction system
RU2438172C2 (en) Method and system for performing two-factor authentication in mail order and telephone order transactions
US10346837B2 (en) Adaptive authentication options