TWM553026U - Payment system - Google Patents

Abstract

A payment system having a payment server, payment application and a transaction system is provided. The payment server receives an encrypted data and executes a first authentication procedure when the encrypted data sent to the payment server according to a trigger event, so as to obtain a payment information according to the encrypted data. The payment application receives the payment information from the payment server and sends the payment information to a third party account information system. The third party account information system sends a transaction authorization code back to the payment application. The transaction system receives the payment information and the transaction authorization code from the payment application and executes a transaction procedure accordingly.

Description

Payment system

This disclosure relates to a payment system.

With the spread of electronic trading systems and mobile payments, the concept of transaction-free and paperless has been implemented in life. However, at the same time that the transaction is not card-based or paper-free, the user needs to input transaction-related information by himself, which causes inconvenience to the user. Not only that, but data security is also a major consideration in electronic trading. Therefore, providing a fast, secure and convenient trading system is a long-term task for those skilled in the art.

The present disclosure provides a payment system to provide a secure and convenient integrated payment system.

The disclosure provides a payment system having a payment server, a payment application, and a transaction system. The payment server is configured to receive the encrypted information when the encrypted information is transmitted to the payment server via the triggering action, and execute the first verification procedure to obtain the payment information according to the encrypted information. The payment application is located on the terminal device and connected to the payment server. The payment application receives the payment information transmitted from the payment server and transmits the payment information to the third party accounting information system to enable the third party accounting information system to return the transaction authorization code. The trading system is connected to the payment application. The trading system receives the payment information and transaction authorization code transmitted from the payment application, and executes the transaction based on the payment information and the transaction authorization code.

Based on the above, the payment system of the present disclosure provides an online payment method that is integrated and convenient for the user. After the user selects the bill to be paid and enters the payment method and card used, the payment system can automatically complete the payment. In addition, when the electronic bill is provided, the payment system exchanges information through encrypted information and obtains payment information by decrypting the encrypted information at the time of payment, thereby improving the security of the data.

The above described features and advantages of the present invention will be more apparent from the following description.

FIG. 1 is a block diagram of a payment system according to an embodiment of the present disclosure. The payment system 100 provides a service for users to pay electronic bills online. This payment system 100 is connected to the third party accounting information system 10. The third party accounting information system 10 is a third party financial platform for maintaining user account information. Specifically, the user can register a plurality of financial cards in the third-party accounting information system 10, and the user can use the financial card to conduct transactions through the terminal device without carrying the physical financial card. When the payment system 100 calls the third-party accounting information system 10, the third-party accounting information system 10 returns a financial card authorization code corresponding to the user, so that the payment system 100 can debit the financial card or the credit card. For example, the third-party accounting information system 10 is, for example, T-Wallet, T-Wallet+ provided by Taiwan Mobile Payment, Apple Pay provided by Apple, Samsung Pay provided by Samsung, Pi wallet, Ou Baobao, etc. The action payment unit in which the financial unit to which the payment system 100 belongs cooperates, and the disclosure does not limit the type of the third-party accounting information system 10 and the manner in which it actually operates.

The payment system 100 includes a payment server 110, a payment application 120, and a transaction system 130. The payment server 110 is used to process items related to the generation, storage, encryption and decryption related to the payment information, and the payment information includes the payment number and the payment amount. Specifically, in order to avoid malicious tampering of the payment number and the payment amount, the payment server 110 only provides the encrypted Universally Unique Identifier (UUID) in the process of generating and providing payment information to the user. For units that need to apply payment information to maintain the security of the data. When the user wants to pay through the payment system 100, the unit that needs to obtain the complete payment information sends the encrypted universal unique identification code to the payment server 110, and decrypts the universal unique identification code through the payment server 110, and then pays the fee. The server will query the corresponding payment information according to the universal unique identification code, and return the payment information to the relevant unit.

The payment application 120 is an application installed on a user terminal device (for example, a mobile phone, a tablet, a personal computer, etc.), and can be connected to the payment server 110. The payment application 120 provides an interface for the user to communicate with the payment system 100. When the user pays through the payment application 120, the user can select a payment method in the payment application 120, and the payment application 120 will send the payment server 110 to the payment server 110 according to the payment method selected by the user and the content of the electronic bill. The third party billing information system 10 requests the information required for the transaction and transmits it to the transaction system 130 for the transaction.

The transaction system 130 is coupled to a payment application 120, which is the unit that executes the transaction. The transaction system 130 will debit the user's account based on the information required for the transaction provided by the payment application 120 to complete the payment.

In the present embodiment, the payment system 100 more selectively sets up the electronic billing system 140. The electronic billing system 140 automatically calculates the payables of the user to generate a corresponding payable amount and transmits it to the payment server 110. The payment server 110 generates corresponding payment information according to the user name and the amount payable provided by the electronic billing system 140, and the payment server 110 stores the payment information in its own storage device, and generates encrypted information according to the payment information. This encrypted information is passed back to the electronic billing system 140. The electronic billing system 140 then generates an electronic bill based on the encrypted information.

It should be noted that, in this embodiment, the payment server 110, the transaction system 130, and the electronic billing system 140 may be implemented by a device having a processing unit, a storage unit, and a communication unit. The processing unit can be a central processing unit (CPU), or other programmable general purpose or special purpose microprocessor (Microprocessor), digital signal processor (DSP), and can be programmed. Controller, Application Specific Integrated Circuit (ASIC) or other similar components or a combination of the above. The communication unit is implemented by a communication chip, which can support Global System for Mobile communication (GSM), Personal Handy-phone System (PHS), and Code Multiple Access (Code Division). Multiple Access (CDMA) system, Wideband Code Division Multiple Access (WCDMA) system, Long Term Evolution (LTE) system, Worldwide Interoperability for Microwave Access (WiMAX) system, A component of a Wireless Fidelity (Wi-Fi) system or Bluetooth signal transmission. The storage unit is any type of fixed or removable random access memory (RAM), read-only memory (ROM), flash memory, hard disk (Hard) Disk Drive (HDD), Solid State Drive (SSD) or similar components or a combination of the above.

In this embodiment, the user's terminal device (eg, mobile phone, tablet computer, personal computer, notebook computer, etc.) has processing units and storage units similar to the above-described payment server 110, transaction system 130, and electronic billing system 140. And the communication unit, which will not be described here. The payment application 120 is stored in the storage unit of the terminal device and is implemented by the processing unit of the terminal device.

In order to improve the convenience of the user at the time of payment, in the present disclosure, the payment server 110 encodes the encrypted information into a two-dimensional barcode and transmits it to the electronic billing system 140 to integrate the two-dimensional barcode into the electronic bill. in. Therefore, when the user wants to pay the fee, the user only needs to enable the encrypted information carried by the two-dimensional barcode, and selects the payment method used by the payment application 120, and the rest will be automatically paid by the payment system 100.

Specifically, please refer to Table 1. Table 1 is a format of the encrypted information carried by the two-dimensional barcode of the embodiment. The two-dimensional barcode generated by the payment server 110 has five fields, which are a fixed website address, a universal unique identification code, a first encryption identification code, a time random number, and a field verification code.         <TABLE border="1" borderColor="#000000" width="85%"><TBODY><tr><td> Fixed URL</td><td> Universal Unique Identifier (UD) </td>< Td> first encrypted identification code</td><td> time random number</td><td> field verification code</td></tr><tr><td> https://www.xxxxx. Com.tw </td><td> ud=aaaaaa </td><td> ed=bbbbbb </td><td> te=201706220242aabb </td><td> vc=cccccc </td></tr ></TBODY></TABLE> Table 1: Format of 2D barcode       

The fixed URL field records the website address of the payment check web platform for calling the payment check web platform.

The field of the universal unique identification code describes the universally unique identification code after passing through the first encryption program in the encryption system. The payment server 110 can obtain the universal unique identification code after decoding, and obtain payment information according to the universal unique identification code. Specifically, in the present disclosure, the payment server 110 further calls the encryption system to encrypt the universal unique identification code. The encryption system is an encryption system that provides End-to-End Encryption (E2EE), and the first key applicable to the first encryption program is stored in the encryption system. In the embodiment of the disclosure, the first encryption program can encrypt and decrypt the Symmetric-key algorithm, for example, Data Encryption Standard (DES), Triple Data Encryption Algorithm (Triple Data) Encryption Algorithm (3DES), Advanced Encryption Standard (AES), Blowfish algorithm, and International Data Encryption Algorithm (IDEA), the disclosure is not limited thereto.

The field of the first encrypted identification code records the encrypted first identification code, which is a unique identification code in the encryption system. The payment server 110 transmits the first identification code to the encryption system, so that the encryption system finds the corresponding first key applicable to the first encryption program according to the first identification code. The first encrypted identification code is generated by inverting the time chaotic field according to the inversion rule to generate the first random number. Moreover, the first random number is obtained by encrypting, and the inversion rule can set the inverted field according to actual requirements, and the encryption method can be applied, for example, to the first encryption program.

The time chaos is the time when the time chaos field is generated, and the field consisting of random numbers is combined. The field verification code is added by the field data of the fixed URL, and then generated by the pressure code algorithm. The field verification code is used to verify the integrity of the URL to avoid tampering with the URL.

It should be noted that the field of the two-dimensional barcode of the present disclosure is only an example. In practical applications, the field content, encryption method, and placement order of the 2D barcode can be adjusted due to design requirements.

In the following, through various embodiments, how the user pays through the two-dimensional barcode, the third party accounting information system 10, the payment server 110, the payment application 120, the transaction system 130, and the electronic billing system 140 will be described. The format of the two-dimensional barcode described in the following embodiments is as shown in Table 1.

[First Embodiment]

Please refer to FIG. 1 and FIG. 2 simultaneously. FIG. 2 is a flow chart of the user paying through the payment system 100 according to the embodiment of the disclosure. In the first embodiment, the two-dimensional barcode is enabled through the payment application 120. Specifically, in the present embodiment, the payment application 120 has a function of automatically analyzing whether or not there is a two-dimensional barcode in the file. When the user clicks the payment electronic billing option in the payment application 120, first, the payment application 120 provides multiple payment methods, for example, using a mobile financial card, cloud payment, etc. for the user to select. After the user selects the payment method, the user can open the electronic bill or related file to be paid through the payment application 120. At this time, the payment application 120 determines whether the legal two-dimensional barcode is included in the file opened by the user. In detail, the payment application 120 will first analyze whether there is a two-dimensional barcode in the file. If the file has a two-dimensional barcode, the payment application 120 will further determine whether the two-dimensional barcode includes all necessary fields, namely: all fields of Table 1. If the file does not have a 2D barcode, or if the required field is missing from the 2D barcode, the payment application 120 will send an error message to inform the user that the payment application 120 does not support the file.

If the file has a legal two-dimensional barcode, the payment application 120 determines that the user has performed the trigger action. In step S210, when the user performs the triggering action, the payment application 120 transmits the encrypted information stored in the two-dimensional barcode to the payment server 110. The encrypted information described in this embodiment is all field information in the two-dimensional barcode.

In step S220, after the payment server 110 receives the encrypted information, the payment server 110 executes a first verification procedure to obtain payment information according to the encrypted information. In the present embodiment, the payment server 110 executes the first verification program through a service compliant with the Representational State Transfer Application Programming Interface (RESTful API) set up in the payment server 110.

Please refer to FIG. 3 further. FIG. 3 is a flowchart of the first verification procedure performed by the payment server 110 according to the first embodiment of the present disclosure. In the first verification process, in addition to transmitting the encrypted information to the payment server 110, the payment application 120 further transmits the payment application information to the payment server 110 in step S310. The payment application information is mainly used to verify whether the source of the encrypted information is legal to maintain transaction security. In different operating systems, the payment application information transmitted by the payment application 120 is not the same. For example, Android's payment application information is the application package name (Package name) and the package certificate Secure Hash Algorithm (SHA) fingerprint. The payment application information in Apple's mobile device system (iOS) is the application's unique identifier (bundle id).

After the payment server 110 receives the encrypted information and the payment application information, in step S320, the payment server 110 verifies whether the payment application information is legal, thereby confirming whether the source of the encrypted information is a legitimate source. If the payment application information is not legal payment application information, the payment server 110 performs step S380, interrupts the first verification process, and returns a message that the payment failed.

If the payment application information is legal payment application information, step S330 is executed, and the payment server 110 verifies whether the fixed URL field is complete according to the fixed website address field and the field verification code field in the encrypted information.

Specifically, please refer to FIG. 4. FIG. 4 is a flow chart showing whether the payment server 110 determines whether the fixed web address field is complete according to the first embodiment of the present disclosure. When determining whether the fixed web address field is complete, first, in step S422, the payment server 110 adds the total data of the fixed web address field to obtain a temporary verification code. Next, the payment server 110 further compares whether the values of the temporary verification code and the verification code are the same. If the two are different, it is judged that the fixed URL is not complete, and the payment server 110 performs step S380, interrupts the first verification procedure, and returns the payment failure message to the payment application 120.

Referring back to FIG. 3, if the fixed URL field is complete, step S340 is executed, and the payment server 110 decodes the first encrypted identification code field according to the time random number field to obtain the first identification code. Since the payment server 110 is decoded in a manner symmetric to the first encrypted identification code, it will not be described here.

Next, in step S350, the payment server 110 acquires the first key in the encryption system according to the first identification code. Since the first identification code is a unique identification code in the encryption system, the payment server 110 can find the corresponding first key according to the first identification code in the encryption system.

After the payment server 110 obtains the first key, step S360 is executed, and the payment server 110 decodes the field of the universal unique identification code in a symmetric manner in the encryption system according to the first key.

After the payment server 110 obtains the universal unique identification code, in step S370, the payment server 110 can find the payment information corresponding to the universal unique identification code among the plurality of payment information stored in the payment server 110 according to the universal unique identification code. .

Referring to FIG. 2, in step S220, the payment server 110 executes the first verification process to obtain the payment information according to the encrypted information, and the payment server 110 executes step S230 to transmit the complete payment information to the payment application 120.

After the payment application 120 receives the payment information transmitted from the payment server 110, the payment application 120 will direct the page to the payment page, and let the user confirm that the payment information is correct. In step S240, the payment application 120 will send the payment information. And the user's information is transmitted to the third party billing information system 10.

The third-party accounting information system 10 provides the user's action financial card option according to the user's information for the user to select. Moreover, in step S250, the third party accounting information system 10 returns the transaction authorization code to the payment application 120 according to the action financial card selected by the user and the payment information. Here, the transaction authorization code returned by the third-party accounting information system 10 is a security control code corresponding to the action financial card selected by the user, for example, a second generation wafer financial card authorization code (TAC).

After the payment application 120 receives the transaction authorization code transmitted from the third-party accounting information system 10, step S260 is executed, and the payment application 120 transmits the payment information and the transaction authorization code to the transaction system 130.

In step S270, when the transaction system 130 receives the payment information and the transaction authorization code, the transaction system 130 performs an actual financial transaction based on the payment information and the transaction authorization code to deduct the corresponding payment information from the user's account. Account. Moreover, after the transaction system 130 confirms that the deduction is completed, the transaction system 130 returns the message and displays the payment success message through the payment application 120 to prompt the user to complete the transaction.

In this embodiment, an electronic billing system 140 is also provided to generate and manage electronic bills. Please refer to FIG. 1 and FIG. 5 simultaneously. FIG. 5 is a flow chart of the electronic billing system 140 generating an electronic bill according to an embodiment of the present disclosure. In the disclosed embodiment, the electronic bill is generated by the electronic billing system 140 in the payment system 100. It should be noted that the disclosure is not limited thereto, and the electronic bill can also be generated by a compatible electronic billing system provided by other partners.

When the electronic billing system 140 wants to generate an electronic bill to the user, in step S510, the electronic billing system 140 transmits the receivable account of the corresponding user to the payment server 110.

In step S520, the payment server 110 generates payment information according to the accounts receivable transmitted by the electronic billing system 140, that is, generates a universal unique identification code and a payment amount.

In step S530, the payment server 110 stores the payment information in the payment server 110 and encrypts the universal unique identification code to generate the encrypted information. Moreover, in the embodiment, the payment server 110 encodes the encrypted information into a two-dimensional barcode, and transmits the two-dimensional barcode with the encrypted information to the electronic billing system 140.

In step S540, when the electronic billing system 140 receives the two-dimensional barcode, the electronic billing system 140 integrates the two-dimensional barcode into the electronic bill, and transmits the electronic bill to the user's terminal device to Provide user payment information.

[Second embodiment]

In the second embodiment, the activation of the two-dimensional barcode is to scan the two-dimensional barcode through an optical recognition component (for example, a camera), or to enable the two-dimensional barcode by clicking on the two-dimensional barcode.

Please refer to FIG. 6. FIG. 6 is a structural diagram of a payment system according to a second embodiment of the present disclosure. In the present embodiment, the payment system 100 is connected to the third party accounting information system 10 and has a payment server 110, a payment inspection web platform 115, a payment application 120, a transaction system 130, and an electronic billing system 140. The payment server 110, the payment application 120, the transaction system 130, and the electronic billing system 140 are the same as the first embodiment, and thus will not be described again.

The payment check webpage platform 115 is a communication platform connected to the payment server 110 through the payment check webpage platform 115 when the user enables the two-dimensional barcode. The payment check webpage platform 115 is provided in a device similar to the payment server 110, the payment application 120, the transaction system 130, and the electronic billing system 140, and will not be described herein.

In the present embodiment, the flow of payment by the user through the payment system 100 is similar to the flow of the first embodiment. Therefore, please refer to FIG. 2 for a flow chart of the user paying through the payment system 100. The difference between the first embodiment and the second embodiment is that, in the second embodiment, the payment check webpage platform 115 between the payment server 110 and the payment application 120 is further provided. Therefore, in step S210 of the second embodiment, when the user performs the triggering action, that is, scanning the two-dimensional barcode through the optical identification component, or clicking the two-dimensional barcode, the encrypted information is first transmitted to the payment inspection webpage platform 115, and then The encrypted information is transmitted to the payment server 110 through the payment check web platform 115.

In step S220, the first verification procedure executed after the payment server 110 receives the encrypted information is also slightly different due to the payment check webpage platform 115.

Specifically, the operation between the payment check web platform 115 in the payment system 100 and the payment server 110, the payment application 120, the transaction system 130, and the electronic billing system 140 will be described below with reference to FIG. FIG. 7 is a flow chart showing the second verification procedure performed by the payment server 110 according to the second embodiment of the present disclosure.

In step S710, the encrypted information is transmitted to the payment server 110 via the payment check webpage platform 115. At this time, the payment server 110 verifies whether the source of the encrypted information is legal, that is, whether the payment check page platform 115 is legal. Specifically, the webpage whitelist is stored in the payment server 110, and the payment server 110 determines whether the payment checking webpage platform 115 is in the webpage whitelist. If not, the payment server 110 determines that the source of the encrypted information is not legal, and therefore performs step S780 to interrupt the first verification procedure.

If the source of the encrypted information is legal, at this time, the payment server 110 performs steps S730 to S770 to determine whether the content of the encrypted information is complete and decrypt the content of the encrypted information. Since the contents of steps S730 to S770 and steps S330 to S370 are the same, the processing is performed on the encrypted information, and details are not described herein again.

Referring back to FIG. 2, in step S230 of FIG. 2, when the payment server 110 transmits the payment information to the payment application 120, it is first transmitted to the payment inspection webpage platform 115. At this time, the payment check webpage platform 115 first checks the operating system of the terminal device used by the user, and then opens the corresponding payment application 120 according to the operating system used by the user. The other steps in the second embodiment are the same as those in the first embodiment, and thus will not be described again.

In summary, the present disclosure provides a payment system to provide an integrated and convenient online payment method for users. After the user selects the bill to be paid and enters the payment method and card used, the payment system can automatically complete the payment. In addition, in the payment system disclosed in the present disclosure, the user can directly read the file having the two-dimensional barcode through the payment application to directly pay the fee. Therefore, the user can directly read the information of the two-dimensional barcode without additional bills and display devices. In addition, the payment system generates an electronic bill via the double-layer encrypted universal unique identification code, and obtains the payment information by decrypting the universal unique identification code at the time of payment, thereby improving the security of the data.

Although the present invention has been disclosed in the above embodiments, it is not intended to limit the novel creation, and any person skilled in the art can make some changes without departing from the spirit and scope of the novel creation. Retouching, the scope of protection of this new creation is subject to the definition of the scope of the patent application attached.

10‧‧‧Third-party accounting information system
100‧‧‧ payment system
110‧‧‧Payment Server
115‧‧‧Payment check webpage platform
120‧‧‧Payment application
130‧‧‧ trading system
140‧‧‧Electronic Billing System
S210~S270‧‧‧Steps for users to pay through the payment system

Steps for S310~S380, S424~S426, S710~S780‧‧‧ payment server to execute the first verification procedure

Steps for generating electronic bills in the S510~S540‧‧‧ electronic billing system

FIG. 1 is a block diagram of a payment system according to an embodiment of the present disclosure. FIG. 2 is a flow chart of a user paying through a payment system according to an embodiment of the disclosure. FIG. 3 is a flow chart showing the first verification procedure performed by the payment server of the first embodiment of the present disclosure. FIG. 4 is a flow chart showing whether the payment server determines whether the fixed web address field is complete according to the first embodiment of the present disclosure. FIG. 5 is a flow chart of generating an electronic bill by an electronic billing system according to an embodiment of the present disclosure. FIG. 6 is a structural diagram of a payment system according to a second embodiment of the present disclosure. FIG. 7 is a flow chart showing the execution of the first verification procedure by the payment server of the second embodiment of the present disclosure.

10‧‧‧Third-party accounting information system

100‧‧‧ payment system

110‧‧‧Payment Server

120‧‧‧Payment application

130‧‧‧ trading system

140‧‧‧Electronic Billing System

Claims (9)

A payment system, comprising: a payment server, when the encrypted information is transmitted to the payment server via a triggering action, the payment server receives the encrypted information, and executes a first verification procedure to obtain payment information according to the encrypted information; a payment application, located at the terminal device and connected to the payment server, the payment application receiving the payment information transmitted from the payment server, and transmitting the payment information to the third party accounting information system, so that the payment application The three-party accounting information system returns a transaction authorization code; and the transaction system is connected to the payment application, the payment application transmits the payment information and the transaction authorization code to the transaction system, so that the transaction system is based on the payment information and The transaction authorization code executes the transaction. The payment system of claim 1, wherein the encrypted information is stored in a two-dimensional barcode, the triggering action is that the two-dimensional barcode is scanned via an optical identification component, the two-dimensional barcode is touched or via the payment The application reads the file including the two-dimensional barcode. For example, in the payment system described in claim 2, the payment system further includes: an electronic billing system connected to the payment server, wherein the electronic billing system transmits the payment information to the payment server, wherein the payment is The server generates the encrypted information according to the payment information, generates the two-dimensional barcode according to the encrypted information, and returns the two-dimensional barcode to the electronic bill. The system, wherein the electronic billing system integrates the two-dimensional barcode into an electronic bill corresponding to the payment information, and provides the electronic bill to the user. For example, in the payment system described in claim 2, when the triggering action is to read the file including the two-dimensional barcode through the payment application, in the first verification program, the payment application further transmits the payment application. The program information is sent to the payment server, and the payment server verifies whether the payment application is legal according to the payment application information. For example, in the payment system described in claim 2, the payment system further includes a payment inspection webpage platform, and when the triggering action is that the two-dimensional barcode is scanned via the optical identification component or the two-dimensional barcode is clicked, the encrypted information The payment check webpage platform transmits to the payment server, and in the first verification procedure performed by the payment server, the payment server further verifies whether the payment check webpage platform is legal. The payment system of claim 5, wherein when the payment server transmits the payment information to the payment application, the payment server opens the corresponding payment application according to the terminal device that performs the triggering action. . The payment system of claim 2, wherein the encrypted information stored in the two-dimensional barcode comprises a fixed website, a Universally Unique Identifier (UUID), a first encrypted identification code, a time random number, and Field verification code. The payment system of claim 7, wherein the payment server performs the first verification procedure, and the payment server checks the integrity of the fixed website according to the fixed website and the field verification code, The payment server decodes the first encrypted identification code to obtain a first identification code, and the payment server uses the first identification code in the encryption system to obtain a first key, and the payment server decodes the first key The universal unique identification code, the payment server uses the decoded universal unique identification code to obtain the payment information. The payment system of claim 8, wherein the payment server checks the integrity of the fixed website according to the fixed website and the field verification code, and the payment server adds the fixed website address. Obtaining a temporary verification code, the payment server compares the temporary verification code and the field verification code, and if the temporary verification code is the same as the value of the field verification code, the payment server determines that the fixed website is complete.