TW201835824A - Mobile payment sublicensing method and payment system implemented through same - Google Patents

Mobile payment sublicensing method and payment system implemented through same Download PDF

Info

Publication number
TW201835824A
TW201835824A TW107107855A TW107107855A TW201835824A TW 201835824 A TW201835824 A TW 201835824A TW 107107855 A TW107107855 A TW 107107855A TW 107107855 A TW107107855 A TW 107107855A TW 201835824 A TW201835824 A TW 201835824A
Authority
TW
Taiwan
Prior art keywords
transaction
user terminal
token
server
payment
Prior art date
Application number
TW107107855A
Other languages
Chinese (zh)
Other versions
TWI775820B (en
Inventor
孫權
Original Assignee
大陸商中國銀聯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 大陸商中國銀聯股份有限公司 filed Critical 大陸商中國銀聯股份有限公司
Publication of TW201835824A publication Critical patent/TW201835824A/en
Application granted granted Critical
Publication of TWI775820B publication Critical patent/TWI775820B/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management

Abstract

The invention relates to a mobile payment authorization method and system. The method comprises the following steps: enabling a main user terminal to be bound with a payment account; enabling the main user terminal and a slave user terminal to respectively log in a server, and enabling the main user terminal to send a sublicensing request to the server; enabling the server to check the sublicensing request, and issuing Token and a transaction secret key to the slave user terminal after the sublicensing request passes the checking; and enabling the slave user terminal to achieve the payment according to the Token and the transaction secret key. According to the invention, the method can achieve the mobile payment sublicensing between family members and friends based on trust, and can guarantee the transaction safety through the Token and the transaction secret key. Meanwhile, when a user is carrying out the payment, the user does not need to input a password, so the method enables the payment to be quick and convenient, and enables the user experience to be better. Moreover, a cellphone of the user can achieve the payment transaction without connecting the Internet.

Description

移動支付轉授權方法、及利用該方法實現的支付系統Mobile payment transfer authorization method and payment system realized by the same

[0001] 本發明係有關電腦通信技術,具體上有關基於支付標記(Token)實現的移動支付轉授權方法、利用該移動支付轉授權方法實現的支付系統、移動終端以及伺服器。[0001] The present invention relates to computer communication technologies, and in particular, to a mobile payment transfer authorization method based on a payment token (Token) implementation, a payment system implemented by using the mobile payment transfer authorization method, a mobile terminal, and a server.

[0002] 現有的主流的支付方式都需要密碼來驗證使用者身份實現支付。這具有以下缺點,   第一、使用者需要輸入密碼才能支付,支付過程麻煩,用戶體驗較差。   [0003] 第二、移動支付需要綁定自己的銀行卡,無法實現家庭或者朋友之間的共用銀行卡支付。   [0004] 第三、使用者帳戶密碼可能被竊取,帶來安全隱患。[0002] Existing mainstream payment methods require a password to verify the identity of the user to implement payment. This has the following disadvantages: First, the user needs to input a password to pay, the payment process is troublesome, and the user experience is poor. [0003] Second, mobile payment needs to be bound to its own bank card, and it is impossible to realize shared bank card payment between family or friends. [0004] Third, the user account password may be stolen, posing a security risk.

[0005] 鑒於上述問題,本發明的目的在於,旨在提出了一種在確保支付安全的前提下能夠實現家庭成員或者朋友之間基於信任的移動支付轉授權方法以及利用該方法實現的移動支付轉授權系統。   [0006] 本發明的移動支付授權方法,由主使用者終端、從使用者終端、伺服器以及商戶終端來實現,該方法包括下述步驟:   綁定步驟,主使用者終端綁定支付帳戶;   轉授權請求提出步驟,主使用者終端、從使用者終端分別登錄伺服器,主使用者終端向伺服器發出轉授權請求;   轉授權請求核實步驟,伺服器對於轉授權請求進行核實,在通過核實後,頒發Token給從使用者終端;以及   轉授權支付步驟,從使用者終端根據所述Token和交易金鑰來實現支付。   [0007] 較佳地,在所述轉授權請求中,主使用者終端預先設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶以及是否需要交易確認中的一項或者多項。   [0008] 較佳地,所述轉授權請求核實步驟包括下述子步驟:   伺服器對於轉授權請求進行核對;   在通過核對後,一次性頒發Token和交易金鑰給從使用者終端;   從使用者終端將Token和交易金鑰儲存在安全元件裡或者儲存在在雲端。   [0009] 較佳地,所述轉授權支付步驟包括下述子步驟:   從使用者終端進行支付交易時,使用在雲端或者本地安全元件產生一個Token代替PAN,利用該Token,每次交易使用一個交易金鑰,將交易要素(包括Token、交易金額、商戶號、終端號等資訊)進行加密而形成交易密文,在交易終端進行消費交易;   商戶終端將包括目前消費位置、商戶號、交易金額以及交易Token、交易密文的交易資訊發送到伺服器;   伺服器驗證交易Token,對交易密文資訊進行解密,驗證確認交易身份合法性;   在驗證成功的情況,伺服器向商戶終端返回驗證成功並完成支付。   [0010] 較佳地,在伺服器驗證交易Token的子步驟中,伺服器驗證交易Token並根據需要來判斷交易金額、交易時間、交易地點、交易商戶中的一項或多項是否在所述轉授權請求中的預先設定。   [0011] 較佳地,在伺服器驗證交易Token的子步驟中,進一步包括:伺服器發送交易資訊給主使用者終端進行交易確認,在主使用者終端確認交易可執行的情況下伺服器向商戶終端返回驗證成功。   [0012] 本發明的移動支付轉授權系統,其特徵在於,該系統具備:   主使用者終端,用於與支付帳戶進行綁定並且用於向下述的伺服器提交轉授權請求;   從使用者終端,用於接收下述伺服器發送來的Token和交易金鑰,將其儲存在安全單元中或者儲存在雲端,並且利用該Token結合交易金鑰來進行交易;   伺服器,用於對來自主使用者終端的所述轉授權請求進行核對並且在通過核對的情況下產生Token和交易金鑰並下發給所述從使用者終端,在進行交易支付時用於驗證從所述從使用者終端發送來的交易Token和交易密文並且在驗證通過情況下完成交易;以及   商戶終端,在所述從使用者終端在商戶終端進行消費時,用於將來自從所述使用者終端包含交易Token、商戶號、交易金額、交易密文的交易資訊提交到伺服器。   [0013] 較佳地,所述主使用者終端在轉授權請求中設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶等中的一項或多項。   [0014] 較佳地,所述商戶終端具備:   LBS模組,用於獲取產生交易的交易地點;以及   通訊模組,用於將交易產生的交易地點和交易資訊上傳到所述伺服器。   [0015] 較佳地,所述伺服器具備:Token授權模組,用於產生Token和交易金鑰,將該Token和交易金鑰下發給所述從使用者終端;以及位置計算模組,用於計算交易地點與授權限制地點之間的距離,比對是否符合在所述轉授權請求中設定的有關授權限定地點的條件。   [0016] 較佳地,所述Token授權模組進一步用於對該Token設定一定的生命週期。   [0017] 較佳地,所述主使用者終端在轉授權請求中設定是否需要交易確認,在設定為需要交易確認的情況下,所述伺服器將有關的交易的資訊轉發到主使用者終端並由主使用者終端進行確認,僅在通過主使用者終端確認後才允許交易。   [0018] 本發明的移動終端,其特徵在於,   所述移動終端用於接收伺服器發送來的Token和交易金鑰,將Token和交易金鑰儲存在安全單元中或者儲存在雲端,並且利用該Token結合交易金鑰來進行交易。   [0019] 本發明的伺服器用於實現主使用者終端向使用者終端進行轉支付授權,其特徵在於,   用於對來自主使用者終端的轉授權請求進行核對並且在通過核對的情況下產生Token和交易金鑰並下發給從使用者終端,在進行交易支付時用於驗證從所述從使用者終端發送來的交易Token和交易密文並且在驗證通過情況下完成交易支付。   [0020] 較佳地,本發明的伺服器具備:   Token授權模組,用於產生Token和交易金鑰,將該Token和交易金鑰下發給從使用者終端;以及   位置計算模組,用於計算交易地點與授權限制地點之間的距離,比對是否符合在所述轉授權請求中設定的有關授權限定地點的條件。   [0021] 根據本發明,能夠從主使用者終端向從使用者終端進行移動支付轉授權,由此能夠實現家庭成員以及朋友之間基於信任的移動支付轉授權。其中,能夠利用Token和交易金鑰來實現交易,由此能夠確保交易的安全性。而且,使用者在支付時,無需輸入密碼,快捷方便,用戶體驗良好。另一方面,由於在從使用者終端可以預先接收和儲存多個Token和多個交易金鑰,因此,從使用者終端無需聯網即可進行支付交易。In view of the above problems, an object of the present invention is to provide a trust-based mobile payment transfer authorization method between family members or friends and a mobile payment transfer realized by the method under the premise of ensuring payment security. Authorization system. [0006] The mobile payment authorization method of the present invention is implemented by a primary user terminal, a user terminal, a server, and a merchant terminal, and the method includes the following steps: a binding step, the primary user terminal binding a payment account; The authorization request request step, the main user terminal and the user terminal respectively log in to the server, and the main user terminal sends a transfer authorization request to the server; the authorization request verification step, the server verifies the transfer authorization request, and passes the verification Thereafter, the token is issued to the slave user terminal; and the authorization payment step is performed, and the payment is implemented from the user terminal according to the token and the transaction key. [0007] Preferably, in the transfer authorization request, the primary user terminal presets one or more of an authorization limited amount, an authorization limited time, an authorized limited place, an authorized limited merchant, and whether a transaction confirmation is required. [0008] Preferably, the transfer authorization request verification step comprises the following sub-steps: the server checks the transfer authorization request; after the verification, the token and the transaction key are issued to the slave user terminal at one time; The terminal stores the Token and transaction key in a secure element or in the cloud. [0009] Preferably, the step of transferring the authorization payment comprises the following sub-steps: when the payment transaction is performed from the user terminal, a Token is generated in the cloud or the local security element instead of the PAN, and the Token is used, and one transaction is used for each transaction. The transaction key encrypts the transaction elements (including Token, transaction amount, merchant number, terminal number, etc.) to form a transaction ciphertext, and conducts a consumer transaction at the transaction terminal; the merchant terminal will include the current consumption location, the merchant number, and the transaction amount. And the transaction information of the transaction Token and the transaction ciphertext is sent to the server; the server verifies the transaction token, decrypts the transaction ciphertext information, and verifies the legality of the transaction identity; in the case of successful verification, the server returns the verification success to the merchant terminal. And complete the payment. [0010] Preferably, in the sub-step of the server verifying the transaction token, the server verifies the transaction token and determines whether one or more of the transaction amount, the transaction time, the transaction location, and the transaction merchant are in the transfer as needed. Pre-set in the authorization request. [0011] Preferably, in the sub-step of the server verifying the transaction token, the method further includes: the server sends the transaction information to the main user terminal for transaction confirmation, and the server is in the case that the main user terminal confirms that the transaction is executable. The merchant terminal returned the verification successfully. [0012] The mobile payment transfer authorization system of the present invention is characterized in that the system is provided with: a main user terminal for binding with a payment account and for submitting a transfer authorization request to the server described below; The terminal is configured to receive the Token and the transaction key sent by the following server, store it in the security unit or store it in the cloud, and use the Token to combine the transaction key to perform the transaction; the server is used to access the host The transfer authorization request of the user terminal is checked and the Token and the transaction key are generated and sent to the slave user terminal by the check, and are used for verifying from the slave user terminal when the transaction payment is made. Transmitting the transaction token and the transaction ciphertext and completing the transaction if the verification passes; and the merchant terminal, when the slave user terminal is consuming at the merchant terminal, for including the transaction token, the merchant from the user terminal The transaction information of the number, transaction amount, and transaction ciphertext is submitted to the server. [0013] Preferably, the primary user terminal sets one or more of an authorized limited amount, an authorized limited time, an authorized limited place, an authorized limited merchant, and the like in the transfer authorization request. [0014] Preferably, the merchant terminal has: an LBS module for acquiring a transaction place for generating a transaction; and a communication module for uploading a transaction place and transaction information generated by the transaction to the server. [0015] Preferably, the server is provided with: a Token authorization module, configured to generate a Token and a transaction key, and send the Token and the transaction key to the slave user terminal; and a location calculation module, It is used to calculate the distance between the transaction place and the authorized restriction place, and whether the comparison meets the conditions for the authorized limited place set in the transfer authorization request. [0016] Preferably, the Token authorization module is further configured to set a certain life cycle of the Token. [0017] Preferably, the primary user terminal sets whether a transaction confirmation is required in the transfer authorization request, and if the transaction confirmation is required, the server forwards the information about the transaction to the primary user terminal. It is confirmed by the main user terminal, and the transaction is allowed only after being confirmed by the main user terminal. [0018] The mobile terminal of the present invention is characterized in that: the mobile terminal is configured to receive a Token and a transaction key sent by a server, store the Token and the transaction key in a security unit or store in a cloud, and use the Token combines the transaction key to trade. [0019] The server of the present invention is configured to implement a transfer authorization for the primary user terminal to the user terminal, and is characterized in that it is used for checking the transfer authorization request from the primary user terminal and generating the verification result. The Token and the transaction key are issued to the slave user terminal for verifying the transaction token and the transaction ciphertext sent from the slave user terminal when the transaction payment is made and completing the transaction payment if the verification is passed. [0020] Preferably, the server of the present invention is provided with: a Token authorization module for generating a Token and a transaction key, and the token and the transaction key are sent to the slave user terminal; and the location calculation module is used. In calculating the distance between the transaction location and the authorized restriction location, the comparison is in accordance with the conditions of the authorization-qualified location set in the transfer authorization request. [0021] According to the present invention, it is possible to perform mobile payment transfer authorization from the primary user terminal to the secondary user terminal, thereby enabling trust-based mobile payment transfer authorization between family members and friends. Among them, the transaction can be realized by using the token and the transaction key, thereby ensuring the security of the transaction. Moreover, the user does not need to input a password when paying, which is quick and convenient, and the user experience is good. On the other hand, since a plurality of Tokens and a plurality of transaction keys can be received and stored in advance from the user terminal, the payment transaction can be performed from the user terminal without networking.

[0025] 下面介紹的是本發明的多個實施例中的一些,旨在提供對本發明的基本瞭解。並不旨在確認本發明的關鍵或決定性的要素或限定所要保護的範圍。   [0026] 首先,對於本發明中會出現的一些名詞進行說明。   [0027] 卡類比技術是將NFC終端整體上類比成為一張卡片並接受讀卡器訪問的一種技術。   [0028] Token技術是指Token SP根據Token Requestor提供的PAN(主帳號)產生Token後,將Token作為PAN的替代值流轉在支付的各個環節,使得在支付流程中,獨一無二的PAN只在Token SP、轉接方、發卡方間傳遞,由於三者專線連接且彼此互信,且當Token被檢測到風險或到期時,將再次產生新Token替代,從而大幅降低支付過程中PAN洩漏的可能性,極大地提高了PAN的安全性。   [0029] LBS定位服務又叫做移動定位服務(Location Based Service,LBS),它是透過電信移動運營商的網路(如GSM網、CDMA網)來獲取移動終端使用者的位置資訊(經緯度座標)。   [0030] PAN是指銀行發行的銀行卡主帳號,一般是由發卡機構標識、個人帳戶標識和校驗位元組成。   [0031] HCE(host-based card emulation)是指基於主機的卡類比,是在配備NFC功能的移動終端上實現卡類比。   [0032] 首先,對於本發明的移動支付轉授權方法進行說明。   [0033] 圖1是表示本發明的移動支付轉授權方法的流程圖。   [0034] 如圖1所示,本發明的移動支付授權方法由主使用者終端、從使用者終端、伺服器以及商戶終端來實現,該方法包括下述步驟:   綁定步驟S100:主使用者終端綁定支付帳戶;   轉授權請求提出步驟S200:主使用者終端、從使用者終端分別登錄伺服器,主使用者終端向伺服器發出轉授權請求,其中,在轉授權請求中,主使用者終端可以根據需要來設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶等,也可以根據需要來設定是否需要交易確認;   轉授權請求核實步驟S300:伺服器對於轉授權請求進行核實,在通過核實後,一次性頒發Token和交易金鑰給從使用者終端;以及   轉授權支付步驟S400:從使用者終端利用該Token和交易金鑰實現支付,其中,從使用者終端將Token和交易金鑰儲存在其安全元件(SE)裡或者儲存在在雲端,從使用者終端進行支付交易時,雲端或者本地安全元件(SE)產生一個Token,利用該Token在商戶側支援雲閃付的交易終端進行消費交易,商戶終端將包括目前消費位置、商戶號、交易金額以及交易Token、交易密文等在內的相關消費資訊傳送至伺服器,伺服器驗證交易Token和交易密文,在驗證成功的情況下完成支付。   [0035] 接著,對於本發明的移動支付轉授權方法的具體應用的實施方式進行說明。   [0036] 圖2是表示本發明的移動支付轉授權方法的一個實施方式的流程圖。   [0037] 該實施方式的移動支付轉授權方法由主使用者終端100、從使用者終端200、伺服器300以及商戶終端400來實現。   [0038] 如圖2所示,本發明的一個實施方式的移動支付轉授權方法包括下述具體步驟:   ① 主使用者終端100通過例如移動支付應用等綁定支付帳戶(例如,銀行卡、支付卡、消費卡等)。   [0039] ② 主使用者終端100、從使用者終端200分別登錄到伺服器300。   [0040] ③ 主使用者終端100向伺服器300發出轉授權請求,以允許從使用者終端200通過能夠使用主使用者終端100的支付功能,其中,在轉授權請求中,主使用者終端100可以根據需要來設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶等,也可以根據需要來設定是否需要交易確認。   [0041] ④ 伺服器300對於轉授權請求的相關資訊進行核對,在通過核對後,一次性頒發Token和交易金鑰給從使用者終端200(該臨時Token對應於主使用者終端100所綁定的支付帳號),從使用者終端200將Token和交易金鑰儲存在其安全元件(SE)裡或者儲存在在雲端,此時從使用者終端200具有支付功能。根據主使用者終端100的設定,具有Token的從使用者終端100的支付交易具有授權限定金額、授權限定時間、授權限定地點、授權限定商戶等的各類限制範圍,如果超越限制範圍,從使用者終端200將失去支付功能。   [0042] ⑤ 從使用者終端200進行支付交易時,雲端或者本地安全元件(SE)產生一個Token,透過HCE(host-based cardemulation)或者SE(Secure Element),在商戶側支援雲閃付的交易終端400進行消費交易。另外,通常雲端會提前產生一個以上Token,以便使用者在設備未聯網時仍可使用HCE支付。   [0043] ⑥ 商戶終端400將包括目前消費位置、商戶號、交易金額以及交易Token、交易密文等在內的相關消費資訊傳送至伺服器300。   [0044] ⑦ 伺服器300驗證交易Token和交易密文,並根據需要來判斷交易金額、交易時間、交易地點、交易商戶是否符合授權限定金額、授權限定時間、授權限定地點、授權限定商戶等。   [0045] ⑧ 根據需要可選地進行交易確認,伺服器300發送交易資訊給主使用者終端100進行交易確認。   [0046] ⑨ 驗證成功的情況(可選地包含交易確認成功的情況)下,伺服器300向商戶終端400返回驗證成功並完成支付。   [0047] 在本發明中,Token為解決卡號資訊洩露問題,以由13至19個位元的虛擬數字串來替代卡號。伺服器300頒發Token和交易金鑰給從使用者終端200,透過交易金鑰,針對每次刷卡交易,計算出一個交易密文,用於交易身份合法性確認。透過Token、交易金鑰相結合,實現交易安全保障。   [0048] 圖3是表示本發明的移動支付轉授權系統的一個實施方式的構造方塊圖。   [0049] 如圖3所示,本發明的移動支付轉授權系統包括主使用者終端100、從使用者終端200、伺服器300以及商戶終端400。   [0050] 主使用者終端100是指主使用者的移動支付設備,例如可以是智慧手機、平板電腦或可穿戴設備等,它可以包含支付APP,綁定支付帳戶(例如,銀行卡、支付卡等),可以利用支付APP實現用戶登錄以及之後的支付轉授權。主使用者終端100用於綁定支付帳戶,用於向伺服器300提交轉授權請求。其中,主使用者終端100可以根據需要而在轉授權請求中設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶等中的一項或多項,也可以根據需要來設定是否需要交易確認。   [0051] 從使用者終端200是指從使用者的移動設備,它安裝有支付APP,例如可以是智慧手機、平板電腦或可穿戴設備等,接收來自伺服器300傳送的Token證書(或者儲存於雲端),完成支付。從使用者終端200接收伺服器300發送來的Token和交易金鑰,將Token和交易金鑰儲存在安全單元中或者儲存在雲端,並且利用該Token和交易金鑰進行交易。   [0052] 伺服器300用於對來自主使用者終端100的轉授權請求進行核對並且在通過核對的情況下產生Token和交易金鑰並下發給從使用者終端200,在進行交易支付時用於驗證從從使用者終端200發送來的交易Token和交易密文並且在驗證通過情況下完成交易支付。   [0053] 伺服器300具備:Token授權模組310以及位置計算模組320,其中,位置計算模組320是可選模組。   [0054] Token授權模組310用於產生Token和交易金鑰,並綁定此Token與主交易終端所對應的卡號,將該Token授權與給從使用者終端200。進一步地,Token授權模組310還能夠對該Token設定一定的生命週期。   [0055] 位置計算模組320用於計算交易地點與授權限制地點之間的距離,比對是否符合在所述轉授權請求中設定的有關授權限定地點的條件。   [0056] 商戶終端400例如可以是商戶的POS機等的終端設備,商戶終端400具備:通信模組410和LBS功能模組420,其中,LBS功能模組420是可選模組。通訊模組410用於將交易產生的交易地點(可選)和交易資訊上傳到伺服器300。LBS模組420用於探測交易發生的地點。   [0057] 根據本發明,能夠從主使用者終端向從使用者終端進行移動支付轉授權,由此能夠實現家庭成員以及朋友之間基於信任的移動支付轉授權。其中,能夠利用Token和交易金鑰來實現交易,由此能夠確保交易的安全性。而且,使用者在支付時,無需輸入密碼,快捷方便,用戶體驗良好。另一方面,由於在從使用者終端可以預先接收和儲存多個Token和交易金鑰,因此,從使用者終端無需聯網即可進行支付交易。   [0058] 以上例子主要說明了本發明的移動支付轉授權方法、利用該移動支付轉授權方法實現的支付系統、移動終端以及伺服器。儘管只對其中一些本發明的具體實施方式進行了描述,但是本領域普通技術人員應當瞭解,本發明可以在不偏離其主旨與範圍內以許多其他的形式實施。因此,所展示的例子與實施方式被視為示意性的而非限制性的,在不脫離如所附之各申請專利範圍所定義的本發明精神及範圍的情況下,本發明可能涵蓋各種的修改與替換。[0025] The following are some of the various embodiments of the invention, which are intended to provide a basic understanding of the invention. It is not intended to identify key or critical elements of the invention or the scope of the invention. First, some terms that will appear in the present invention will be described. [0027] The card analog technology is a technique in which an NFC terminal is collectively compared to a card and is accessed by a card reader. [0028] Token technology means that the Token SP generates a Token according to the PAN (Primary Account) provided by the Token Requestor, and then transfers the Token as a substitute value of the PAN to each part of the payment, so that in the payment process, the unique PAN is only in the Token SP. Transfer between the transfer party and the issuer, because the three private lines are connected and trust each other, and when the Token is detected to be risky or expires, a new Token replacement will be generated again, thereby greatly reducing the possibility of PAN leakage during the payment process. Greatly improved the security of PAN. [0029] The LBS location service is also called a Location Based Service (LBS), which acquires location information (latitude and longitude coordinates) of a mobile terminal user through a telecommunication mobile operator's network (eg, GSM network, CDMA network). . [0030] PAN refers to a bank card master account issued by a bank, which is generally composed of a card issuer identifier, a personal account identifier, and a check digit. [0031] HCE (host-based card emulation) refers to a host-based card analogy, which implements card analogy on a mobile terminal equipped with an NFC function. [0032] First, the mobile payment transfer authorization method of the present invention will be described. 1 is a flow chart showing a mobile payment transfer authorization method of the present invention. As shown in FIG. 1, the mobile payment authorization method of the present invention is implemented by a primary user terminal, a user terminal, a server, and a merchant terminal, and the method includes the following steps: binding step S100: primary user The terminal binds the payment account; the transfer authorization request is raised to step S200: the primary user terminal and the user terminal separately log in to the server, and the primary user terminal sends a transfer authorization request to the server, wherein, in the transfer authorization request, the primary user The terminal may set the authorization limited amount, the authorization limited time, the authorized limited location, the authorized limited merchant, etc. according to the need, and may also set whether the transaction confirmation is needed according to the need; the authorization request verification step S300: the server verifies the transfer authorization request, After verification, the Token and the transaction key are issued to the slave user terminal in one time; and the authorization payment step S400 is performed: the payment is realized from the user terminal by using the Token and the transaction key, wherein the Token and the transaction are performed from the user terminal. The key is stored in its secure element (SE) or stored in the cloud When the payment transaction is performed from the user terminal, the cloud or the local security element (SE) generates a Token, and the Token is used to support the cloud flash payment transaction terminal on the merchant side for the consumer transaction, and the merchant terminal will include the current consumption location, the merchant number, and the transaction. The relevant consumption information including the amount and transaction token, transaction ciphertext, etc. is transmitted to the server, and the server verifies the transaction token and the transaction ciphertext, and completes the payment if the verification is successful. [0035] Next, an embodiment of a specific application of the mobile payment transfer authorization method of the present invention will be described. 2 is a flow chart showing an embodiment of a mobile payment transfer authorization method of the present invention. [0037] The mobile payment transfer authorization method of this embodiment is implemented by the main user terminal 100, the user terminal 200, the server 300, and the merchant terminal 400. As shown in FIG. 2, the mobile payment transfer authorization method according to an embodiment of the present invention includes the following specific steps: 1 The primary user terminal 100 binds a payment account (for example, a bank card, a payment) by, for example, a mobile payment application or the like. Card, consumer card, etc.). [0039] 2 The main user terminal 100 and the user terminal 200 respectively log in to the server 300. [0040] 3 The main user terminal 100 issues a transfer authorization request to the server 300 to allow the payment function from the user terminal 200 to be able to use the main user terminal 100, wherein in the transfer authorization request, the main user terminal 100 You can set the authorization limit amount, authorization time limit, authorization limit location, authorized qualified merchant, etc. according to your needs. You can also set whether you need transaction confirmation as needed. [0041] 4 The server 300 checks the related information of the transfer authorization request, and after passing the verification, issues the Token and the transaction key to the slave user terminal 200 (the temporary Token is bound to the main user terminal 100). The payment account) stores the Token and the transaction key from the user terminal 200 in its secure element (SE) or in the cloud, at which time the user terminal 200 has a payment function. According to the setting of the main user terminal 100, the payment transaction from the user terminal 100 having the Token has various types of restrictions such as an authorized limited amount, an authorized limited time, an authorized limited place, an authorized limited merchant, and the like, and if the limit is exceeded, the use is performed. The terminal 200 will lose the payment function. [0042] 5 When the user terminal 200 performs a payment transaction, the cloud or the local security element (SE) generates a Token, and supports the cloud flash payment transaction on the merchant side through HCE (host-based cardemulation) or SE (Secure Element). The terminal 400 performs a consumer transaction. In addition, usually the cloud will generate more than one Token in advance so that the user can still use HCE payment when the device is not connected to the Internet. [0043] The merchant terminal 400 transmits relevant consumption information including the current consumption location, the merchant number, the transaction amount, and the transaction token, the transaction ciphertext, and the like to the server 300. [0044] The server 300 verifies the transaction token and the transaction ciphertext, and determines the transaction amount, the transaction time, the transaction location, whether the transaction merchant meets the authorized limit amount, the authorization limited time, the authorized limited location, the authorized limited merchant, and the like according to the need. [0045] 8 Optionally, the transaction confirmation is performed, and the server 300 transmits the transaction information to the main user terminal 100 for transaction confirmation. [0046] 9 In the case where the verification is successful (optionally including the case where the transaction confirmation is successful), the server 300 returns the verification success to the merchant terminal 400 and completes the payment. [0047] In the present invention, Token solves the problem of card number information leakage, and replaces the card number with a virtual digit string of 13 to 19 bits. The server 300 issues a Token and a transaction key to the slave user terminal 200, and through the transaction key, calculates a transaction ciphertext for each credit card transaction for the validity verification of the transaction identity. Transaction security is achieved through the combination of Token and transaction key. 3 is a block diagram showing the configuration of an embodiment of a mobile payment transfer authorization system of the present invention. As shown in FIG. 3, the mobile payment transfer authorization system of the present invention includes a primary user terminal 100, a secondary user terminal 200, a server 300, and a merchant terminal 400. [0050] The primary user terminal 100 refers to a mobile payment device of the primary user, and may be, for example, a smart phone, a tablet or a wearable device, etc., which may include a payment APP, and a binding payment account (eg, a bank card, a payment card). Etc.), the payment APP can be used to implement user login and subsequent payment transfer authorization. The primary user terminal 100 is configured to bind a payment account for submitting a transfer authorization request to the server 300. The main user terminal 100 can set one or more of the authorized limited amount, the authorized limited time, the authorized limited place, the authorized limited merchant, and the like in the transfer authorization request according to the need, or can set whether the transaction confirmation is needed according to the need. . [0051] The user terminal 200 refers to a user's mobile device, which is installed with a payment APP, such as a smart phone, a tablet or a wearable device, etc., and receives a Token certificate transmitted from the server 300 (or is stored in Cloud), complete the payment. The Token and the transaction key sent by the server 300 are received from the user terminal 200, the Token and the transaction key are stored in the security unit or stored in the cloud, and the Token and the transaction key are used for the transaction. [0052] The server 300 is configured to check the transfer authorization request from the main user terminal 100 and generate a Token and a transaction key in the case of verification and send it to the slave user terminal 200, and use the transaction payment. The transaction Token and the transaction ciphertext sent from the user terminal 200 are verified and the transaction payment is completed in the case of verification. [0053] The server 300 is provided with a Token authorization module 310 and a location calculation module 320. The location calculation module 320 is an optional module. [0054] The Token authorization module 310 is configured to generate a Token and a transaction key, and bind the Token to the card number corresponding to the main transaction terminal, and authorize the Token to the user terminal 200. Further, the Token authorization module 310 can also set a certain life cycle for the Token. [0055] The location calculation module 320 is configured to calculate a distance between the transaction location and the authorized restriction location, and whether the comparison meets the condition of the authorization-defined location set in the transfer authorization request. [0056] The merchant terminal 400 may be, for example, a terminal device such as a POS machine of a merchant. The merchant terminal 400 includes a communication module 410 and an LBS function module 420. The LBS function module 420 is an optional module. The communication module 410 is configured to upload the transaction location (optional) and transaction information generated by the transaction to the server 300. The LBS module 420 is used to detect where the transaction occurred. [0057] According to the present invention, it is possible to perform mobile payment transfer authorization from the primary user terminal to the secondary user terminal, thereby enabling trust-based mobile payment transfer authorization between family members and friends. Among them, the transaction can be realized by using the token and the transaction key, thereby ensuring the security of the transaction. Moreover, the user does not need to input a password when paying, which is quick and convenient, and the user experience is good. On the other hand, since a plurality of Tokens and transaction keys can be received and stored in advance from the user terminal, the payment transaction can be performed from the user terminal without networking. [0058] The above examples mainly illustrate the mobile payment transfer authorization method of the present invention, the payment system implemented by the mobile payment transfer authorization method, the mobile terminal, and the server. Although only a few of the specific embodiments of the present invention have been described, it is understood that the invention may be embodied in many other forms without departing from the spirit and scope of the invention. The present examples and embodiments are to be considered as illustrative and not restricting Modifications and replacements.

[0059][0059]

100‧‧‧主使用者終端100‧‧‧ primary user terminal

200‧‧‧從使用者終端200‧‧‧From the user terminal

300‧‧‧伺服器300‧‧‧Server

310‧‧‧Token授權模組310‧‧‧Token Authorization Module

320‧‧‧位置計算模組320‧‧‧Location Computing Module

400‧‧‧商戶終端400‧‧‧Business terminal

410‧‧‧通訊模組410‧‧‧Communication Module

420‧‧‧LBS模組420‧‧‧LBS module

[0022] 圖1是表示本發明的移動支付轉授權方法的流程圖。   [0023] 圖2是表示本發明的移動支付轉授權方法的一個實施方式的流程圖。   [0024] 圖3是表示本發明的移動支付轉授權系統的一個實施方式的構造方塊圖。1 is a flow chart showing a mobile payment transfer authorization method of the present invention. 2 is a flow chart showing an embodiment of a mobile payment transfer authorization method of the present invention. 3 is a block diagram showing the construction of an embodiment of a mobile payment transfer authorization system of the present invention.

Claims (15)

一種移動支付授權方法,由主使用者終端、從使用者終端、伺服器以及商戶終端來實現,該方法包括下述步驟:   綁定步驟,主使用者終端綁定支付帳戶;   轉授權請求提出步驟,主使用者終端、從使用者終端分別登錄伺服器,主使用者終端向伺服器發出轉授權請求;   轉授權請求核實步驟,伺服器對於轉授權請求進行核實,在通過核實後,頒發Token和交易金鑰給從使用者終端;以及   轉授權支付步驟,從使用者終端使用該Token以及交易金鑰來實現支付。A mobile payment authorization method is implemented by a primary user terminal, a user terminal, a server, and a merchant terminal, and the method includes the following steps: a binding step, the primary user terminal is bound to the payment account; The main user terminal and the user terminal respectively log in to the server, and the main user terminal sends a transfer authorization request to the server; the authorization request verification step, the server verifies the transfer authorization request, and after the verification, the token is issued and The transaction key is given to the slave user terminal; and the authorization payment step is performed, and the user terminal uses the token and the transaction key to implement the payment. 如申請專利範圍第1項所述的移動支付授權方法,其中,   在該轉授權請求中,主使用者終端預先設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶以及是否需要交易確認中的一項或者多項。The mobile payment authorization method according to claim 1, wherein in the transfer authorization request, the primary user terminal presets an authorized limited amount, an authorized limited time, an authorized limited place, an authorized limited merchant, and whether a transaction confirmation is required. One or more of them. 如申請專利範圍第2項所述的移動支付授權方法,其中,   該轉授權請求核實步驟包括下述子步驟:   伺服器對於轉授權請求進行核對;   在通過核對後,一次性頒發Token和多個交易金鑰給從使用者終端;以及   從使用者終端將Token和交易金鑰儲存在安全元件裡或者儲存在雲端。The mobile payment authorization method of claim 2, wherein the transfer authorization request verification step comprises the following sub-steps: the server reconciles the transfer authorization request; after the verification, the Token and the plurality are issued at one time The transaction key is given to the slave user terminal; and the Token and transaction key are stored in the secure element or stored in the cloud from the user terminal. 如申請專利範圍第3項所述的移動支付授權方法,其中,   該轉授權支付步驟包括下述子步驟:   從使用者終端在交易終端進行支付交易時,使用在雲端或者本地安全元件的Token代替PAN,每次交易使用一個交易金鑰,將作為交易要素的Token、交易金額、商戶號、終端號進行加密而形成交易密文,發送商戶終端進行消費交易;   商戶終端將包括目前消費位置、商戶號、交易金額以及交易Token、交易密文的交易資訊發送到伺服器;   伺服器驗證交易Token,對交易密文資訊進行解密,驗證確認交易身份合法性;以及   在驗證成功的情況,伺服器向商戶終端返回驗證成功並完成支付。The mobile payment authorization method of claim 3, wherein the transfer authorization payment step comprises the following sub-steps: when the user terminal performs a payment transaction at the transaction terminal, using a Token in the cloud or a local security element instead PAN, using a transaction key for each transaction, encrypting the Token, transaction amount, merchant number, and terminal number as transaction elements to form a transaction ciphertext, and transmitting the merchant terminal for consumption transactions; the merchant terminal will include the current consumption location, the merchant The transaction information of the transaction amount and the transaction token and the transaction ciphertext is sent to the server; the server verifies the transaction token, decrypts the transaction ciphertext information, verifies the validity of the transaction identity; and in the case of successful verification, the server The merchant terminal returns to the verification success and completes the payment. 如申請專利範圍第4項所述的移動支付授權方法,其中,   在伺服器驗證交易Token的子步驟中,伺服器驗證交易Token並根據需要來判斷交易金額、交易時間、交易地點、交易商戶中的一項或多項是否在該轉授權請求中的預先設定。The mobile payment authorization method according to claim 4, wherein in the sub-step of the server verifying the transaction token, the server verifies the transaction token and determines the transaction amount, the transaction time, the transaction place, and the transaction merchant according to the need. Whether one or more of the items are pre-set in the transfer authorization request. 如申請專利範圍第5項所述的移動支付授權方法,其中,   在伺服器驗證交易Token的子步驟中,進一步包括:伺服器發送交易資訊給主使用者終端進行交易確認,在主使用者終端確認交易可執行的情況下伺服器向商戶終端返回驗證成功。The mobile payment authorization method according to claim 5, wherein, in the sub-step of the server verifying the transaction token, the method further comprises: the server sending the transaction information to the main user terminal for confirming the transaction, at the main user terminal When the confirmation transaction is executable, the server returns the verification to the merchant terminal successfully. 一種移動支付轉授權系統,其特徵在於,該系統具備:   主使用者終端,用於與支付帳戶進行綁定並且用於向下述的伺服器提交轉授權請求;   從使用者終端,用於接收下述伺服器發送來的Token和交易金鑰儲存在安全單元中或者儲存在雲端,並且利用該Token和交易金鑰來進行交易;   伺服器,用於對來自主使用者終端的該轉授權請求進行核對並且在通過核對的情況下產生Token和交易金鑰並下發給該從使用者終端,在進行交易支付時用於驗證從該從使用者終端發送來的交易Token和交易密文並且在驗證通過情況下完成交易;以及   商戶終端,在該從使用者終端在商戶終端進行消費時,用於將來自從該使用者終端包含交易Token、商戶號、交易金額、交易密文的交易資訊提交到伺服器。A mobile payment transfer authorization system, characterized in that the system is provided with: a main user terminal for binding with a payment account and for submitting a transfer authorization request to a server to be received; The Token and transaction key sent by the following server are stored in the security unit or stored in the cloud, and the Token and the transaction key are used for the transaction; the server is used for the authorization request from the primary user terminal. Performing a check and generating a Token and a transaction key in the case of verification and delivering to the slave user terminal, for verifying the transaction token and the transaction ciphertext sent from the slave user terminal when the transaction payment is made and The transaction is completed by the verification; and the merchant terminal submits the transaction information from the user terminal including the transaction token, the merchant number, the transaction amount, and the transaction ciphertext when the user terminal consumes at the merchant terminal. server. 如申請專利範圍第7項所述的移動支付轉授權系統,其中,   該主使用者終端在轉授權請求中設定授權限定金額、授權限定時間、授權限定地點、授權限定商戶等中的一項或多項。The mobile payment transfer authorization system according to claim 7, wherein the primary user terminal sets one of an authorized limit amount, an authorized limited time, an authorized limited place, an authorized limited merchant, or the like in the transfer authorization request or Multiple. 如申請專利範圍第8項所述的移動支付轉授權系統,其中,   該商戶終端具備:   LBS模組,用於獲取產生交易的交易地點;以及   通訊模組,用於將交易產生的交易地點和交易資訊上傳到該伺服器。The mobile payment transfer authorization system according to claim 8, wherein the merchant terminal has: an LBS module for acquiring a transaction place where the transaction is generated; and a communication module for using the transaction place generated by the transaction and Transaction information is uploaded to the server. 如申請專利範圍第9項所述的移動支付轉授權系統,其中,   該伺服器具備:   Token授權模組,用於產生Token和交易金鑰,將該Token和交易金鑰下發給該從使用者終端;以及   位置計算模組,用於計算交易地點與授權限制地點之間的距離,比對是否符合在該轉授權請求中設定的有關授權限定地點的條件。The mobile payment transfer authorization system according to claim 9, wherein the server has: a Token authorization module, configured to generate a Token and a transaction key, and issue the Token and the transaction key to the slave use. And a location calculation module, configured to calculate a distance between the transaction location and the authorized restriction location, and whether the comparison meets the condition for the authorized limited location set in the transfer authorization request. 如申請專利範圍第9項所述的移動支付轉授權系統,其中,   該Token授權模組進一步用於對該Token設定一定的生命週期。The mobile payment transfer authorization system of claim 9, wherein the Token authorization module is further configured to set a certain life cycle of the Token. 如申請專利範圍第9項所述的移動支付轉授權系統,其中,   該主使用者終端在轉授權請求中設定是否需要交易確認,在設定為需要交易確認的情況下,該伺服器將有關的交易的資訊轉發到主使用者終端並由主使用者終端進行確認,僅在通過主使用者終端確認後才允許交易。The mobile payment transfer authorization system according to claim 9, wherein the primary user terminal sets whether a transaction confirmation is required in the transfer authorization request, and if the transaction confirmation is required, the server will be related. The transaction information is forwarded to the primary user terminal and confirmed by the primary user terminal, and the transaction is allowed only after confirmation by the primary user terminal. 一種移動終端,其特徵在於,   該移動終端用於接收伺服器發送來的Token和交易金鑰儲存在安全單元中或者儲存在雲端,並且利用該Token和交易金鑰進行交易。A mobile terminal is characterized in that the mobile terminal is configured to receive a Token and a transaction key sent by a server in a security unit or store in a cloud, and use the Token and a transaction key to perform a transaction. 一種伺服器,用於實現主使用者終端向使用者終端進行轉支付授權,其特徵在於,   用於對來自主使用者終端的轉授權請求進行核對並且在通過核對的情況下產生Token和交易金鑰並下發給從使用者終端,在進行交易支付時用於驗證從該從使用者終端發送來的交易Token和交易密文並且在驗證通過情況下完成交易支付。A server for realizing a transfer authorization to a user terminal by a main user terminal, which is characterized in that it is used for checking a transfer authorization request from a main user terminal and generating a Token and a transaction gold in the case of verification The key is sent to the slave user terminal for verifying the transaction token and the transaction ciphertext sent from the slave user terminal when the transaction payment is made and completing the transaction payment if the verification is passed. 如申請專利範圍第14項所述的伺服器,其中,該伺服器具備:   Token授權模組,用於產生Token和交易金鑰,將該Token和交易金鑰下發給從使用者終端;以及   位置計算模組,用於計算交易地點與授權限制地點之間的距離,比對是否符合在該轉授權請求中設定的有關授權限定地點的條件。The server of claim 14, wherein the server has: a Token authorization module, configured to generate a Token and a transaction key, and the token and the transaction key are sent to the slave user terminal; The location calculation module is configured to calculate a distance between the transaction location and the authorized restriction location, and whether the comparison meets the conditions for the authorized limited location set in the transfer authorization request.
TW107107855A 2017-03-17 2018-03-08 Mobile payment subauthorization method and payment system realized by the method TWI775820B (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
CN201710160386.6 2017-03-17
CN201710160386.6A CN107256484B (en) 2017-03-17 2017-03-17 Mobile payment authorization transfer method and payment system realized by using same
??201710160386.6 2017-03-17

Publications (2)

Publication Number Publication Date
TW201835824A true TW201835824A (en) 2018-10-01
TWI775820B TWI775820B (en) 2022-09-01

Family

ID=60027216

Family Applications (1)

Application Number Title Priority Date Filing Date
TW107107855A TWI775820B (en) 2017-03-17 2018-03-08 Mobile payment subauthorization method and payment system realized by the method

Country Status (3)

Country Link
CN (1) CN107256484B (en)
TW (1) TWI775820B (en)
WO (1) WO2018166359A1 (en)

Families Citing this family (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107256484B (en) * 2017-03-17 2021-01-15 中国银联股份有限公司 Mobile payment authorization transfer method and payment system realized by using same
CN108960818A (en) * 2018-05-04 2018-12-07 中国银联股份有限公司 A kind of virtual card generation method, user terminal and token server
CN110009348B (en) * 2019-03-25 2022-03-11 杭州秘猿科技有限公司 Block chain proxy signature method and system and electronic equipment
CN110267264B (en) * 2019-05-20 2022-10-25 广西蛋壳机器人科技有限公司 System for binding non-networked intelligent terminal and user mobile terminal
CN111192052B (en) * 2020-01-03 2023-05-09 广东岭南通股份有限公司 Payment method, payment server and payment terminal
CN113743927A (en) * 2020-05-27 2021-12-03 中国银联股份有限公司 Data processing method and system based on user payment label and user payment label
CN112435031A (en) * 2020-08-06 2021-03-02 中国银联股份有限公司 Data processing method and system based on user binding relationship
CN112633888A (en) * 2020-09-22 2021-04-09 中国银联股份有限公司 Token-based data processing method and system and mobile terminal
CN113159761A (en) * 2021-01-06 2021-07-23 中国银联股份有限公司 Payment authorization transfer system and payment authorization transfer method based on equipment connection

Family Cites Families (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103065240B (en) * 2013-01-11 2018-04-27 中兴通讯股份有限公司 A kind of mobile payment processing method and system
CN103051459B (en) * 2013-01-17 2016-04-06 北京印天网真科技有限公司 The management method of the transaction key of safety card and device
EP2843605A1 (en) * 2013-08-30 2015-03-04 Gemalto SA Method for authenticating transactions
JP6386567B2 (en) * 2013-10-11 2018-09-05 ビザ インターナショナル サービス アソシエーション Network token system
CN105450691B (en) * 2014-08-21 2019-08-16 阿里巴巴集团控股有限公司 Method for processing business, device and server
US20160063487A1 (en) * 2014-08-29 2016-03-03 Capital One Services, Llc System and method for double blind authentication
CN105528695B (en) * 2014-09-28 2019-12-24 中国银联股份有限公司 Mobile payment method and mobile payment system based on marks
CN106127467A (en) * 2016-06-20 2016-11-16 上海易码信息科技有限公司 The method of mobile payment integrating financial card paying and settle accounts
CN106251140A (en) * 2016-08-02 2016-12-21 中国银联股份有限公司 Method of payment, payment application system and payment system
CN107256484B (en) * 2017-03-17 2021-01-15 中国银联股份有限公司 Mobile payment authorization transfer method and payment system realized by using same

Also Published As

Publication number Publication date
CN107256484A (en) 2017-10-17
CN107256484B (en) 2021-01-15
WO2018166359A1 (en) 2018-09-20
TWI775820B (en) 2022-09-01

Similar Documents

Publication Publication Date Title
TWI775820B (en) Mobile payment subauthorization method and payment system realized by the method
US10666428B2 (en) Efficient methods for protecting identity in authenticated transmissions
US11227275B2 (en) Person-to-person electronic payment processing
US10311433B2 (en) Secure authorizations using independent communications and different one-time-use encryption keys for each party to a transaction
RU2710897C2 (en) Methods for safe generation of cryptograms
RU2663476C2 (en) Remote payment transactions protected processing, including authentication of consumers
KR101596279B1 (en) Method and device for conducting trusted remote payment transactions
CN108476227A (en) System and method for equipment push supply
CN105612543A (en) Methods and systems for provisioning mobile devices with payment credentials
US10614457B2 (en) Secure authorizations using independent communications and different one-time-use encryption keys for each party to a transaction
US10325260B2 (en) System, method and computer program product for secure peer-to-peer transactions
US20210383378A1 (en) Validation Service For Account Verification
CN101425901A (en) Control method and device for customer identity verification in processing terminals
KR20140089730A (en) Method and System for Registering Payment Means by using Alliance Application
WO2016195764A1 (en) Secure authorizations using independent communications and different one-time-use encryption keys for each party to a transaction
CN109801059A (en) A kind of mobile-payment system and method for mobile payment
KR101505847B1 (en) Method for Validating Alliance Application for Payment
TWM614981U (en) System for central management of keys to allow different computing devices to perform validation operation
KR20150090873A (en) Method for Registering Payment Means Coupled Multiple Alliance Application

Legal Events

Date Code Title Description
GD4A Issue of patent certificate for granted invention patent