WO2016138743A1 - 一种实现安全支付的方法、移动终端和支付认证服务端 - Google Patents

一种实现安全支付的方法、移动终端和支付认证服务端 Download PDF

Info

Publication number
WO2016138743A1
WO2016138743A1 PCT/CN2015/087246 CN2015087246W WO2016138743A1 WO 2016138743 A1 WO2016138743 A1 WO 2016138743A1 CN 2015087246 W CN2015087246 W CN 2015087246W WO 2016138743 A1 WO2016138743 A1 WO 2016138743A1
Authority
WO
WIPO (PCT)
Prior art keywords
payment
mobile terminal
authentication server
transaction
payment authentication
Prior art date
Application number
PCT/CN2015/087246
Other languages
English (en)
French (fr)
Inventor
孙枕戈
岳旭鹏
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016138743A1 publication Critical patent/WO2016138743A1/zh

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols

Definitions

  • the embodiments of the present invention relate to, but are not limited to, information security technologies, and in particular, to a method for implementing secure payment, a mobile terminal, and a payment authentication server.
  • the credit card payment process generally includes: the cashier terminal displays the transaction amount obtained; after the consumer confirms that the displayed transaction amount is correct, the payment card number is sent to the cashier terminal and the payment password is input by swiping the card at the cashier terminal; the cashier terminal notifies the cash register system The transaction amount, the payment card number and the payment password are used for payment; the cashier system returns the payment result to the cashier terminal; the cashier terminal displays the payment result obtained.
  • the cashier terminal Since the cashier terminal is kept by the seller, there is a possibility that the seller will illegally modify it.
  • the cashier terminal is illegally modified and the transaction amount displayed is inconsistent with the transaction amount sent to the cashier system, if the former is smaller than the latter, the transaction scam caused by the cashier terminal appears.
  • the actual payment paid by the consumer exceeds the transaction amount displayed by the cashier terminal.
  • the economic interests of consumers are lost. In this way, since the cashier terminal is illegally modified and the security is lowered, the security of the card payment process is reduced, and the user experience and user trust of the card payment are greatly reduced.
  • the embodiment of the invention provides a method for implementing secure payment, a mobile terminal and a payment authentication server, which can improve the security of the card payment process, thereby improving the user experience and user trust of the card payment process.
  • An embodiment of the present invention provides a method for implementing secure payment, including:
  • the mobile terminal obtains the transaction identifier from the cash register terminal, and requests and obtains from the payment authentication server.
  • the mobile terminal If it is determined that the requested transaction amount is correct, the mobile terminal notifies the payment authentication server to make the payment.
  • the method further includes: the mobile terminal successfully logging in to the payment authentication server by using the mobile communication system.
  • the method further includes:
  • the payment authentication server sets the identity of the mobile terminal to authenticated, and establishes a correspondence between the identity identifier and the address information of the mobile terminal obtained in the login, where the address information of the mobile terminal Assigned to the mobile terminal by the mobile communication system.
  • the requesting, by the mobile terminal, the transaction authentication server to request the transaction amount corresponding to the obtained transaction identifier includes:
  • the payment authentication server determines that the identity identifier corresponding to the received address information is authenticated, the transaction amount corresponding to the received transaction identifier is queried from the cash register system and returned to the mobile terminal.
  • the mobile terminal notifying the payment authentication server to perform the payment comprises: the mobile terminal sending the transaction identifier and the payment account obtained by using an external instruction to the payment authentication server.
  • the method before the acquiring, by the mobile terminal, the transaction identifier from the cash register terminal, the method further includes:
  • the transaction amount obtained and the assigned transaction identifier are sent to the cash register system;
  • the cash register system saves a correspondence between the received transaction amount and the transaction identifier
  • the method further includes:
  • the cash register system uses the payment account to pay a transaction amount corresponding to the transaction identifier, And notify the cashier terminal that the transaction is successful.
  • the transaction identifier comprises a terminal number and a transaction number of the cashier terminal.
  • An embodiment of the present invention further provides a mobile terminal that implements secure payment, including a request unit and a notification unit, where
  • the requesting unit is configured to obtain a transaction identifier from the cash register terminal, and request, from the payment authentication server, a transaction amount corresponding to the obtained transaction identifier;
  • the notification unit is configured to notify the payment authentication server to perform payment when it is determined that the requested transaction amount is correct.
  • the mobile terminal further includes a login unit configured to successfully log in to the payment authentication server by the mobile communication system.
  • the requesting unit is configured to: obtain the transaction identifier from a cash register terminal, send the transaction identifier and address information to the payment authentication server, and receive the return from the payment authentication server. Amount of the transaction.
  • the notification unit is configured to: when determining that the transaction amount indicating the request is correct, send the transaction identifier and a payment account obtained by using an external instruction to the payment authentication server to notify The payment authentication server performs payment.
  • the embodiment of the present invention further provides a payment authentication service terminal for implementing secure payment, including an authentication unit and an inquiry unit, where
  • the authentication unit is configured to set the identity of the successfully registered mobile terminal to authenticated, and establish a correspondence between the identity identifier and the address information of the mobile terminal obtained in the login, where the mobile terminal Address information is allocated to the mobile terminal by a mobile communication system;
  • the query unit is configured to: when receiving the address information and the transaction identifier from the mobile terminal, and determining that the identity identifier corresponding to the address information is authenticated, querying, by the cash register system, the transaction amount corresponding to the transaction identifier And return to the mobile terminal.
  • the cash register system stores the received transaction gold from the cash register terminal. Correspondence between the amount and the transaction identifier;
  • the payment authentication server further includes a payment unit configured to receive a payment account from the mobile terminal, instructing the cash register system to use the received payment account to pay the transaction amount.
  • the embodiment of the invention further provides a computer readable storage medium storing program instructions, which can be implemented when the program instructions are executed.
  • the technical solution of the embodiment of the present invention includes: the mobile terminal acquires the transaction identifier from the cash register terminal, and requests the payment authentication server to the transaction amount corresponding to the obtained transaction identifier; if it is determined that the requested transaction amount is correct, The mobile terminal notifies the payment authentication server to make a payment.
  • the consumer obtains the transaction amount sent by the cashier terminal to the cash register system through the credit payment authentication server of the credit terminal, and can timely discover the displayed transaction.
  • the technical solution of the embodiment of the present invention improves the security and convenience of the card payment process, thereby improving the user experience and user trust of the card payment process.
  • FIG. 1 is a flowchart of a method for implementing secure payment according to an embodiment of the present invention
  • FIG. 2 is a schematic structural diagram of a system for implementing secure payment according to an embodiment of the present invention.
  • a payment authentication server is added between the mobile communication system and a financial system such as a cash register system.
  • the payment authentication server is mainly used to record the legal, that is, the authenticated mobile terminal indicated by the mobile communication system as being authenticated.
  • the cash register system is instructed to complete. Pay.
  • the mobile communication system determines whether the mobile terminal is legal, that is, the security of the authentication process is the telecommunication level, and the security is very high, and the payment authentication server can also be understood as the payment authentication because it records the legitimate mobile terminal indicated by the mobile communication system.
  • the server inherits the telecommunications-level security of the mobile communication system authentication process, so the security of the payment authentication server is also very high, that is, the payment authentication server is credited.
  • FIG. 1 is a flowchart of a method for implementing secure payment according to an embodiment of the present invention. As shown in FIG. 1 , the method includes:
  • Step 101 The mobile terminal acquires a transaction identifier from the cash register terminal, and requests a payment authentication server to process the transaction amount corresponding to the obtained transaction identifier.
  • the step may include: the mobile terminal successfully logs in to the payment authentication server through a mobile communication system, such as a Long Term Evolution (LTE) mobile communication system, that is, a 4th generation (4G) mobile communication system.
  • a mobile communication system such as a Long Term Evolution (LTE) mobile communication system, that is, a 4th generation (4G) mobile communication system.
  • LTE Long Term Evolution
  • 4G 4th generation
  • the mobile communication system may be a mobile communication system such as a 2G mobile communication system, a 3G mobile communication system, a 4G mobile communication system, or a 5G mobile communication system, or may be a mobile device composed of two or more mobile communication systems. Communication Systems.
  • the method further includes the following steps: the payment authentication server sets the identity of the mobile terminal, such as an International Mobile Subscriber Identity (IMSI), to the authenticated server, and establishes the login. Correspondence between the identity of the mobile terminal and the address information.
  • the address information of the mobile terminal such as an Internet Protocol (IP) address, is allocated by the mobile communication system to the mobile terminal.
  • IP Internet Protocol
  • the mobile terminal can obtain the transaction identifier from the cashier terminal by scanning the two-dimensional code or barcode containing the transaction identifier displayed by the cashier terminal.
  • the transaction identifier in step 101 may include a terminal number and a transaction number of the cashier terminal.
  • the mobile terminal in step 101 requests the payment authentication server to request the transaction amount corresponding to the obtained transaction identifier, including:
  • the mobile terminal sends the transaction identifier and the address information to the payment authentication server;
  • the payment authentication server determines that the identity corresponding to the received address information has been authenticated, the transaction amount corresponding to the received transaction identifier is queried from the cash register system and returned to the mobile terminal.
  • the mobile terminal when the mobile terminal receives the returned transaction amount, it displays the received transaction amount, that is, the requested transaction amount.
  • Step 102 If it is determined that the requested transaction amount is correct, the mobile terminal notifies the payment authentication server to perform payment.
  • the mobile terminal after the mobile terminal displays the requested transaction amount, the mobile terminal acquires an external instruction from the consumer through a human-computer interaction technology; if it is determined by an external instruction, the requested transaction amount is consistent with the actual consumption amount. The mobile terminal determines that the requested transaction amount is correct.
  • the mobile terminal notifying the payment authentication server to perform the payment includes: the mobile terminal transmitting the transaction identifier and the payment account obtained by the external instruction, such as a bank card number, to the payment authentication server.
  • step 101 the following steps are further included:
  • the cashier terminal When the cashier terminal obtains the transaction amount, the transaction amount and the assigned transaction identifier are sent to the cash register system; the cash register system saves the correspondence between the received transaction amount and the transaction identifier; wherein the cashier terminal can obtain through the human-computer interaction method
  • the transaction amount for example, the cashier terminal obtains the transaction amount through the button on it.
  • the method further includes:
  • the payment authentication server sends the received transaction identifier and payment account to the cash register system; the cash register system uses the payment account to pay the transaction amount corresponding to the transaction identifier, and notifies the cashier terminal that the transaction is successful.
  • the payment password obtained by the external instruction may be sent to the payment authentication server to notify the payment authentication service.
  • the payment is made by using the received payment account and payment password.
  • FIG. 2 is a schematic structural diagram of a system for implementing secure payment according to an embodiment of the present invention, as shown in FIG. 2, including a cashier terminal 21 (such as a POS machine), a mobile terminal 22 (such as a mobile phone or a tablet computer (PAD), etc.), and mobile communication.
  • a cashier terminal 21 such as a POS machine
  • a mobile terminal 22 such as a mobile phone or a tablet computer (PAD), etc.
  • PDA tablet computer
  • the mobile terminal 22 in the system shown in FIG. 2 includes a request unit 221 and a notification unit 222, where
  • the requesting unit 221 is configured to acquire a transaction identifier from the cash register terminal, and request, from the payment authentication server, a transaction amount corresponding to the obtained transaction identifier;
  • the notification unit 222 is configured to notify the payment authentication server to perform payment when it is determined that the requested transaction amount is correct.
  • the mobile terminal further includes a login unit 222 configured to successfully log in to the payment authentication server through the mobile communication system.
  • the requesting unit 221 is configured to: obtain a transaction identifier from the cashier terminal, send the transaction identifier and the address information to the payment authentication server, and receive the transaction amount returned by the payment authentication server.
  • the notification unit 222 is configured to: when it is determined that the requested transaction amount is correct, send the transaction identifier and the payment account obtained by the external instruction to the payment authentication server to notify the payment authentication server to perform Pay.
  • the payment authentication server 24 in the system shown in FIG. 2 includes an authentication unit 241 and a query unit 242, where
  • the authentication unit 241 is configured to set the identity of the successfully registered mobile terminal to authenticated, and establish a correspondence between the identity of the mobile terminal obtained by the login and the address information, where the address information of the mobile terminal is used by the mobile communication
  • the system is assigned to the mobile terminal;
  • the query unit 242 is configured to: when receiving the address information and the transaction identifier from the mobile terminal, and determining that the identity identifier corresponding to the address information is authenticated, query the transaction amount corresponding to the transaction identifier from the cash register system, and return the transaction amount to the mobile terminal.
  • the payment authentication server further includes a payment unit 243, configured to receive a payment account from the mobile terminal for paying the transaction amount, and instruct the cash register system to use the received payment account. Pay the transaction amount.
  • a payment unit 243 configured to receive a payment account from the mobile terminal for paying the transaction amount, and instruct the cash register system to use the received payment account. Pay the transaction amount.
  • the technical solution of the embodiment of the present invention includes: the mobile terminal acquires the transaction identifier from the cash register terminal, and requests the payment authentication server to request the transaction amount corresponding to the obtained transaction identifier; if it is determined that the requested transaction amount is correct, the mobile terminal notifies the payment authentication service Pay for it.
  • the mobile terminal acquires the transaction amount displayed by the cashier terminal is inconsistent with the transaction amount sent to the cash register system, the consumer obtains the transaction amount sent by the cashier terminal to the cash register system through the credit payment authentication server of the credit terminal, and can timely discover the displayed transaction.
  • the technical solution of the embodiment of the present invention improves the security and convenience of the card payment process, thereby improving the user experience and user trust of the card payment process.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Cash Registers Or Receiving Machines (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

一种实现安全支付的方法、移动终端和支付认证服务端,所述方法包括:移动终端从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额(101);如果确定出请求到的交易金额正确,移动终端通知支付认证服务端进行支付(102)。

Description

一种实现安全支付的方法、移动终端和支付认证服务端 技术领域
本发明实施例涉及但不限于信息安全技术,尤指一种实现安全支付的方法、移动终端和支付认证服务端。
背景技术
随着收银终端如销售点(POS)机的广泛应用,人们越来越习惯刷卡支付。相关技术中刷卡支付流程大致包括:收银终端显示获得的交易金额;消费者确认显示的交易金额正确后,通过在收银终端上刷卡将支付卡号发送给收银终端并输入支付密码;收银终端通知收银系统采用获得的交易金额、支付卡号和支付密码进行支付;收银系统将支付结果返回给收银终端;收银终端显示获得的支付结果。
由于收银终端由销售者保管,存在被销售者非法修改的可能性。当收银终端被非法修改而显示的交易金额与发送给收银系统的交易金额不一致如前者小于后者即出现了收银终端引发的交易骗局时,通常消费者实际支付的费用超出收银终端显示的交易金额,从而消费者的经济利益受到损失。这样,由于收银终端被非法修改而安全性降低,使得刷卡支付流程的安全性降低,较大地降低了刷卡支付的用户体验和用户信任度。
发明内容
以下是对本文详细描述的主题的概述。本概述并非是为了限制权利要求的保护范围。
本发明实施例提供了一种实现安全支付的方法、移动终端和支付认证服务端,能够提高刷卡支付流程的安全性,从而改善刷卡支付流程的用户体验和用户信任度。
本发明实施例提供了一种实现安全支付的方法,包括:
移动终端从收银终端获取交易标识,并向支付认证服务端请求与获得的 交易标识对应的交易金额;
如果确定出请求到的交易金额正确,所述移动终端通知支付认证服务端进行支付。
可选地,所述移动终端从收银终端获取交易标识之前,所述方法还包括:所述移动终端通过移动通信系统成功登录所述支付认证服务端。
可选地,所述移动终端成功登录所述支付认证服务端后,所述方法还包括:
所述支付认证服务端将所述移动终端的身份标识设置为已认证,并建立登录中获得的所述移动终端的身份标识与地址信息之间的对应关系,其中,所述移动终端的地址信息由所述移动通信系统分配给所述移动终端。
可选地,其中,所述移动终端向支付认证服务端请求与获得的交易标识对应的交易金额包括:
所述移动终端将所述交易标识和地址信息发送给所述支付认证服务端;
所述支付认证服务端确定出与接收到的地址信息对应的身份标识已认证时,从收银系统查询与接收到的交易标识对应的交易金额,并返回给所述移动终端。
可选地,其中,所述移动终端通知支付认证服务端进行支付,包括:所述移动终端将所述交易标识和通过外部指令获得的支付账号发送给所述支付认证服务端。
可选地,所述移动终端从收银终端获取交易标识之前,所述方法还包括:
所述收银终端获得交易金额时,将获得的交易金额和分配的交易标识发送给所述收银系统;
所述收银系统保存接收到的交易金额和交易标识之间的对应关系;
所述移动终端通知支付认证服务端进行支付之后,所述方法还包括:
所述支付认证服务端将接收到的交易标识和支付账号发送给所述收银系统;
所述收银系统采用所述支付账号支付与所述交易标识对应的交易金额, 并通知所述收银终端交易成功。
可选地,其中,所述交易标识包括收银终端的终端号和交易号。
本发明实施例还提供了一种实现安全支付的移动终端,包括请求单元和通知单元,其中,
所述请求单元,设置为从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;
所述通知单元,设置为当确定出请求到的交易金额正确时,通知支付认证服务端进行支付。
可选地,所述移动终端还包括登录单元,其设置为通过移动通信系统成功登录所述支付认证服务端。
可选地,其中,所述请求单元是设置为:从收银终端获取所述交易标识,将所述交易标识和地址信息发送给所述支付认证服务端,并接收所述支付认证服务端返回的交易金额。
可选地,其中,所述通知单元是设置为:当确定出指示请求到的交易金额正确时,将所述交易标识和通过外部指令获得的支付账号发送给所述支付认证服务端,以通知支付认证服务端进行支付。
本发明实施例还提供了一种实现安全支付的支付认证服务端,包括认证单元和查询单元,其中,
所述认证单元,设置为将成功登录的移动终端的身份标识设置为已认证,并建立登录中获得的所述移动终端的身份标识与地址信息之间的对应关系,其中,所述移动终端的地址信息由移动通信系统分配给所述移动终端;
所述查询单元,设置为在接收到来自所述移动终端的地址信息和交易标识,且确定出所述地址信息对应的身份标识已认证时,从收银系统查询与所述交易标识对应的交易金额,并返回给所述移动终端。
可选地,其中,所述收银系统中保存有接收到的来自收银终端的交易金 额和交易标识之间的对应关系;
所述支付认证服务端还包括支付单元,其设置为接收来自所述移动终端的支付账号,指示所述收银系统采用接收到的支付账号支付交易金额。
本发明实施例还提供一种计算机可读存储介质,存储有程序指令,当该程序指令被执行时可实现上述方法。
与相关技术相比,本发明实施例技术方案包括:移动终端从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;如果确定出请求到的交易金额正确,移动终端通知支付认证服务端进行支付。一方面,当收银终端显示的交易金额与发送给收银系统的交易金额不一致时,消费者通过移动终端经由授信的支付认证服务端获得收银终端发送给收银系统的交易金额,能够及时发现显示的交易金额不正确即当前交易为交易骗局并终止支付,因此避免了消费者蒙受经济损失;另一方面,采用本发明实施例技术方案,消费者无需携带银行卡完成交易支付,因此提高了支付流程的便捷性。综上,本发明实施例技术方案提高了刷卡支付流程的安全性和便利性,从而改善了刷卡支付流程的用户体验和用户信任度。
在阅读并理解了附图和详细描述后,可以明白其他方面。
附图概述
图1为本发明实施例实现安全支付的方法的流程图;
图2为本发明实施例实现安全支付的系统的组成结构示意图。
本发明的实施方式
下文中将结合附图对本发明实施例进行详细说明。需要说明的是,在不冲突的情况下,本文中的实施例及实施例中的特征可以相互任意组合。
在附图的流程图示出的步骤可以在诸如一组计算机可执行指令的计算机系统中执行。并且,虽然在流程图中示出了逻辑顺序,但是在有些情况下,可以以不同于此处的顺序执行所示出或描述的步骤。
为了提高通过移动终端进行电子支付的安全性,在移动通信系统和金融系统如收银系统之间增加了支付认证服务端。支付认证服务端主要用于将移动通信系统指示的合法的即已认证的移动终端记录为已认证,当确定出接收到的支付请求的发起端为已认证的移动通信终端时,指示收银系统完成支付。通常移动通信系统判定移动终端是否合法的流程即认证流程的安全性为电信级别,安全性非常高,而支付认证服务端由于记录了移动通信系统指示的合法的移动终端,也可以理解为支付认证服务端继承了移动通信系统认证流程的电信级别安全性,因此支付认证服务端的安全性也非常高,也就是说,支付认证服务端是授信的。
图1为本发明实施例实现安全支付的方法的流程图,如图1所示,包括:
步骤101:移动终端从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;
可选地,本步骤之前可包括:移动终端通过移动通信系统如长期演进(LTE)移动通信系统即第4代(4G)移动通信系统成功登录支付认证服务端。需要说明的是,移动通信系统可以为2G移动通信系统、3G移动通信系统、4G移动通信系统或5G移动通信系统等移动通信系统、或者可以为上述两个或两个以上移动通信系统组成的移动通信系统。
可选地,移动终端成功登录支付认证服务端后,还可包括以下步骤:支付认证服务端将移动终端的身份标识如国际移动用户识别码(IMSI)设置为已认证,并建立登录中获得的移动终端的身份标识与地址信息之间的对应关系。其中,移动终端的地址信息如网际协议(IP)地址由移动通信系统分配给移动终端。
步骤101中,移动终端可通过扫描收银终端显示的包含交易标识的二维码或者条形码的方式从收银终端获取交易标识。在本发明实施例中,步骤101中的交易标识可以包括收银终端的终端号和交易号。
步骤101中的移动终端向支付认证服务端请求与获得的交易标识对应的交易金额包括:
移动终端将交易标识和地址信息发送给支付认证服务端;
支付认证服务端确定出与接收到的地址信息对应的身份标识已认证时,从收银系统查询与接收到的交易标识对应的交易金额,并返回给移动终端。
在本发明实施例中,移动终端接收到返回的交易金额时,显示接收到的交易金额即请求到的交易金额。
不难看出,由于支付认证服务端是授信的,因此从支付认证服务端获得的交易金额是授信的,这样为有效避免交易骗局的发生提供了保障。
步骤102:如果确定出请求到的交易金额正确,移动终端通知支付认证服务端进行支付。
可选地,在本发明实施例中,移动终端显示请求到的交易金额之后,通过人机交互技术获取来自消费者的外部指令;如果通过外部指令确定出请求到的交易金额与实际消费金额一致,移动终端确定出请求到的交易金额正确。
步骤102中移动终端通知支付认证服务端进行支付包括:移动终端将交易标识和通过外部指令获得的支付账号如银行卡卡号发送给支付认证服务端。
可选地,在步骤101之前还包括以下步骤:
收银终端获得交易金额时,将获得的交易金额和分配的交易标识发送给收银系统;收银系统保存接收到的交易金额和交易标识之间的对应关系;其中,收银终端可以通过人机交互方法获取交易金额,例如,收银终端通过其上按键获取交易金额。
在本发明实施例中,步骤102中,移动终端通知支付认证服务端进行支付之后,还包括:
支付认证服务端将接收到的交易标识和支付账号发送给收银系统;收银系统采用支付账号支付与交易标识对应的交易金额,并通知收银终端交易成功。
需要说明的是,在本发明实施例中,移动终端将交易标识和支付账号发送给支付认证服务端时,还可以将通过外部指令获得的支付密码发送给支付认证服务端,以通知支付认证服务端采用接收到的支付账号和支付密码进行支付。
图2为本发明实施例实现安全支付的系统的组成结构示意图,如图2所示,包括收银终端21(如POS机)、移动终端22(如手机或平板电脑(PAD)等)、移动通信系统23、支付认证服务端24和收银系统25。
如图2所示系统中的移动终端22包括请求单元221和通知单元222,其中,
所述请求单元221,设置为从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;
所述通知单元222,设置为当确定出请求到的交易金额正确时,通知支付认证服务端进行支付。
可选地,移动终端还包括登录单元222,其设置为通过移动通信系统成功登录支付认证服务端。
在本发明实施例中,请求单元221是设置为:从收银终端获取交易标识,将交易标识和地址信息发送给支付认证服务端,并接收支付认证服务端返回的交易金额。
在本发明实施例中,通知单元222是设置为:当确定出请求到的交易金额正确时,将交易标识和通过外部指令获得的支付账号发送给支付认证服务端,以通知支付认证服务端进行支付。
如图2所示系统中的支付认证服务端24包括认证单元241和查询单元242,其中,
认证单元241,设置为将成功登录的移动终端的身份标识设置为已认证,并建立登录中获得的移动终端的身份标识与地址信息之间的对应关系,其中,移动终端的地址信息由移动通信系统分配给移动终端;
查询单元242,设置为在接收到来自移动终端的地址信息和交易标识,且确定出地址信息对应的身份标识已认证时,从收银系统查询与交易标识对应的交易金额,并返回给移动终端。
可选地,支付认证服务端还包括支付单元243,其设置为接收来自移动终端的支付账号用于支付交易金额,指示收银系统采用接收到的支付账号支 付交易金额。
如图2所示系统中的收银系统,其中保存有接收到的来自收银终端的交易金额和交易标识之间的对应关系,采用支付账号支付与交易标识对应的交易金额,并通知收银终端交易成功。
本领域普通技术人员可以理解上述方法中的全部或部分步骤可通过程序来指令相关硬件完成,上述程序可以存储于计算机可读存储介质中,如只读存储器、磁盘或光盘等。可选地,上述实施例的全部或部分步骤也可以使用一个或多个集成电路来实现。相应地,上述实施例中的各模块/单元可以采用硬件的形式实现,也可以采用软件功能模块的形式实现。本发明实施例不限制于任何特定形式的硬件和软件的结合。
工业实用性
本发明实施例技术方案包括:移动终端从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;如果确定出请求到的交易金额正确,移动终端通知支付认证服务端进行支付。一方面,当收银终端显示的交易金额与发送给收银系统的交易金额不一致时,消费者通过移动终端经由授信的支付认证服务端获得收银终端发送给收银系统的交易金额,能够及时发现显示的交易金额不正确即当前交易为交易骗局并终止支付,因此避免了消费者蒙受经济损失;另一方面,采用本发明实施例技术方案,消费者无需携带银行卡完成交易支付,因此提高了支付流程的便捷性。综上,本发明实施例技术方案提高了刷卡支付流程的安全性和便利性,从而改善了刷卡支付流程的用户体验和用户信任度。

Claims (14)

  1. 一种实现安全支付的方法,包括:
    移动终端从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;
    如果确定出请求到的交易金额正确,所述移动终端通知支付认证服务端进行支付。
  2. 根据权利要求1所述的方法,所述移动终端从收银终端获取交易标识之前,所述方法还包括:所述移动终端通过移动通信系统成功登录所述支付认证服务端。
  3. 根据权利要求2所述的方法,所述移动终端成功登录所述支付认证服务端后,所述方法还包括:
    所述支付认证服务端将所述移动终端的身份标识设置为已认证,并建立登录中获得的所述移动终端的身份标识与地址信息之间的对应关系,其中,所述移动终端的地址信息由所述移动通信系统分配给所述移动终端。
  4. 根据权利要求3所述的方法,其中,所述移动终端向支付认证服务端请求与获得的交易标识对应的交易金额,包括:
    所述移动终端将所述交易标识和地址信息发送给所述支付认证服务端;
    所述支付认证服务端确定出与接收到的地址信息对应的身份标识已认证时,从收银系统查询与接收到的交易标识对应的交易金额,并返回给所述移动终端。
  5. 根据权利要求1~4任一项所述的方法,其中,所述移动终端通知支付认证服务端进行支付,包括:所述移动终端将所述交易标识和通过外部指令获得的支付账号发送给所述支付认证服务端。
  6. 根据权利要求5所述的方法,
    所述移动终端从收银终端获取交易标识之前,所述方法还包括:
    所述收银终端获得交易金额时,将获得的交易金额和分配的交易标识发送给所述收银系统;
    所述收银系统保存接收到的交易金额和交易标识之间的对应关系;
    所述移动终端通知支付认证服务端进行支付之后,所述方法还包括:
    所述支付认证服务端将接收到的交易标识和支付账号发送给所述收银系统;
    所述收银系统采用所述支付账号支付与所述交易标识对应的交易金额,并通知所述收银终端交易成功。
  7. 根据权利要求1~4任一项所述的方法,其中,所述交易标识包括收银终端的终端号和交易号。
  8. 一种实现安全支付的移动终端,包括请求单元和通知单元,其中,
    所述请求单元,设置为从收银终端获取交易标识,并向支付认证服务端请求与获得的交易标识对应的交易金额;
    所述通知单元,设置为当确定出请求到的交易金额正确时,通知支付认证服务端进行支付。
  9. 根据权利要求8所述的移动终端,所述移动终端还包括登录单元,其设置为通过移动通信系统成功登录所述支付认证服务端。
  10. 根据权利要求9所述的移动终端,其中,所述请求单元是设置为:从收银终端获取所述交易标识,将所述交易标识和地址信息发送给所述支付认证服务端,并接收所述支付认证服务端返回的交易金额。
  11. 根据权利要求10所述的移动终端,其中,所述通知单元是设置为:当确定出指示请求到的交易金额正确时,将所述交易标识和通过外部指令获得的支付账号发送给所述支付认证服务端,以通知支付认证服务端进行支付。
  12. 一种实现安全支付的支付认证服务端,包括认证单元和查询单元,其中,
    所述认证单元,设置为将成功登录的移动终端的身份标识设置为已认证,并建立登录中获得的所述移动终端的身份标识与地址信息之间的对应关系,其中,所述移动终端的地址信息由移动通信系统分配给所述移动终端;
    所述查询单元,设置为在接收到来自所述移动终端的地址信息和交易标 识,且确定出所述地址信息对应的身份标识已认证时,从收银系统查询与所述交易标识对应的交易金额,并返回给所述移动终端。
  13. 根据权利要求12所述的支付认证服务端,所述支付认证服务端还包括支付单元,其设置为接收来自所述移动终端的支付账号,指示所述收银系统采用接收到的支付账号支付交易金额。
  14. 一种计算机可读存储介质,存储有程序指令,当该程序指令被执行时可实现权利要求1-7任一项所述的方法。
PCT/CN2015/087246 2015-03-03 2015-08-17 一种实现安全支付的方法、移动终端和支付认证服务端 WO2016138743A1 (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510094884.6 2015-03-03
CN201510094884.6A CN105989471B (zh) 2015-03-03 2015-03-03 一种实现安全支付的方法、移动终端和支付认证服务端

Publications (1)

Publication Number Publication Date
WO2016138743A1 true WO2016138743A1 (zh) 2016-09-09

Family

ID=56849169

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2015/087246 WO2016138743A1 (zh) 2015-03-03 2015-08-17 一种实现安全支付的方法、移动终端和支付认证服务端

Country Status (2)

Country Link
CN (1) CN105989471B (zh)
WO (1) WO2016138743A1 (zh)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110119940A (zh) * 2019-05-17 2019-08-13 深圳前海微众银行股份有限公司 收款方法、装置、设备与计算机可读存储介质
CN110163764B (zh) * 2019-05-17 2021-08-10 泰康保险集团股份有限公司 保费支付处理方法、装置与存储介质
CN112669033A (zh) * 2019-10-15 2021-04-16 深圳市文鼎创数据科技有限公司 基于fido设备的交易认证方法及fido设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1635525A (zh) * 2003-12-31 2005-07-06 中国银联股份有限公司 一种安全的网上支付系统及安全的网上支付认证方法
US20090307133A1 (en) * 2005-06-17 2009-12-10 Daniel Lee Holloway Online Payment System for Merchants
CN102184495A (zh) * 2011-04-21 2011-09-14 北京天地融科技有限公司 一种网络支付方法及系统
CN104008477A (zh) * 2013-02-27 2014-08-27 中国移动通信集团湖南有限公司 移动终端现场联机支付方法、装置及系统

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102663586B (zh) * 2012-03-21 2016-07-06 华为技术有限公司 一种通过两个移动终端完成支付的方法
CN103577979A (zh) * 2012-07-31 2014-02-12 黄金富 利用二维条码的手机支付系统和相应方法
CN103778532A (zh) * 2014-02-21 2014-05-07 北京购阿购技术服务有限公司 全方位安全定位交易信息集成系统

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1635525A (zh) * 2003-12-31 2005-07-06 中国银联股份有限公司 一种安全的网上支付系统及安全的网上支付认证方法
US20090307133A1 (en) * 2005-06-17 2009-12-10 Daniel Lee Holloway Online Payment System for Merchants
CN102184495A (zh) * 2011-04-21 2011-09-14 北京天地融科技有限公司 一种网络支付方法及系统
CN104008477A (zh) * 2013-02-27 2014-08-27 中国移动通信集团湖南有限公司 移动终端现场联机支付方法、装置及系统

Also Published As

Publication number Publication date
CN105989471A (zh) 2016-10-05
CN105989471B (zh) 2021-02-09

Similar Documents

Publication Publication Date Title
US20220318799A1 (en) Systems And Methods For Using A Transaction Identifier To Protect Sensitive Credentials
US11887110B2 (en) Methods and systems for processing transactions on a value dispensing device using a mobile device
US10248952B2 (en) Automated account provisioning
JP6648110B2 (ja) クライアントをデバイスに対して認証するシステム及び方法
EP3198907B1 (en) Remote server encrypted data provisioning system and methods
US10475015B2 (en) Token-based security processing
JP6021923B2 (ja) オンライン取引のための安全な認証方法およびシステム
RU2563163C2 (ru) Обработка аутентификации удаленной переменной
CA2748481C (en) System and method for initiating transactions on a mobile device
US10776771B2 (en) Electronic resource processing method and device
US20140052638A1 (en) Method and system for providing a card payment service using a mobile phone number
US20170011440A1 (en) Online mobile payment using a server
US20210406909A1 (en) Authorizing transactions using negative pin messages
WO2017033118A1 (en) Method and system for enhancing security of contactless card
WO2016138743A1 (zh) 一种实现安全支付的方法、移动终端和支付认证服务端
US11049101B2 (en) Secure remote transaction framework
CN110766388B (zh) 虚拟卡生成方法及系统、电子设备
CN104616147A (zh) 一种信息配置方法、装置、系统、客户端及服务器
EP3579518B1 (en) Payment method and device based on verification terminal
US20170187726A1 (en) Cross-domain message authentication
US20190075094A1 (en) System and method for remote identification during transaction processing
CN110365646B (zh) 将实体关联到第一服务器的方法及装置
KR101355862B1 (ko) 애플리케이션 시스템, 인증 시스템, 및 인증정보를 이용한 모바일 인증방법
WO2017009743A1 (en) Method and system for enhancing security of card based financial transaction
KR20150069319A (ko) 보안 장치

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 15883794

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 15883794

Country of ref document: EP

Kind code of ref document: A1