WO2018040653A1 - Nfc-based off-line payment method - Google Patents

Nfc-based off-line payment method Download PDF

Info

Publication number
WO2018040653A1
WO2018040653A1 PCT/CN2017/087192 CN2017087192W WO2018040653A1 WO 2018040653 A1 WO2018040653 A1 WO 2018040653A1 CN 2017087192 W CN2017087192 W CN 2017087192W WO 2018040653 A1 WO2018040653 A1 WO 2018040653A1
Authority
WO
WIPO (PCT)
Prior art keywords
payment
terminal
payment terminal
built
instruction
Prior art date
Application number
PCT/CN2017/087192
Other languages
French (fr)
Chinese (zh)
Inventor
聂明
Original Assignee
中城智慧科技有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中城智慧科技有限公司 filed Critical 中城智慧科技有限公司
Publication of WO2018040653A1 publication Critical patent/WO2018040653A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/20Point-of-sale [POS] network systems
    • G06Q20/206Point-of-sale [POS] network systems comprising security or operator identification provisions, e.g. password entry
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions

Definitions

  • the main payment methods are: cash on delivery, online payment, bank wire transfer and postal remittance.
  • online payment it is based on a financial electronic network, using commercial electronic tools and various transaction cards as media, using computer technology and communication technology as means, storing in binary data, through computer networks.
  • the system realizes circulation and payment in the form of electronic information transmission.
  • online online payment is divided into: online bank card transfer payment, third-party payment platform settlement payment.
  • Online bank card transfer payment refers to the way in which e-commerce transactions are paid through the network and using bank cards. After the customer orders through the network, the bank card number and password are encrypted and sent to the bank on the Internet, directly requesting the transfer of funds to the merchant bank account to complete the payment.
  • the card type of the bank card may include a credit card, a debit card, a smart card, and the like.
  • Online payments that do not enable digital certificate protection have certain functional limitations, for example, only account queries or small payments.
  • the process of recovering the purchase price may become very cumbersome and difficult.
  • bank remittance or postal remittance is a traditional payment method, and it is also the most commonly used payment method in e-commerce payment methods so far.
  • the post office remittance is a settlement payment method that the customer remits the order amount to the merchant through the postal department. It can be traded directly in RMB, avoiding problems such as hacking, account leakage, password theft, etc., and is safer for customers.
  • the payment and delivery cycle of this payment method is long; in addition, the customer must go to the bank or post office to make payment, and the payment process is cumbersome.
  • this kind of transaction method can not reflect the advantages of high speed, interactive, easy to use and low operating cost. Therefore, this payment method cannot adapt to the long-term rapid development of e-commerce.
  • the present invention aims to provide an offline payment method based on NFC (Near Field Communication), which greatly improves the security performance and convenience in the payment process.
  • NFC Near Field Communication
  • An offline payment method based on NFC comprising:
  • the S1 payment terminal receives the payment instruction sent by the payment terminal
  • step S1 the method specifically includes:
  • the S11 collection terminal generates a payment instruction
  • the S22 payment terminal uses the built-in security control to decrypt it to obtain a payment instruction
  • the S34 collection terminal generates a second verification code and encrypts it by using a built-in security plug-in to generate a second authentication signature code;
  • step S4 the method specifically includes:
  • the S42 payment terminal decrypts the received second authentication signature code by using the built-in security plug-in to obtain a second authentication verification code, and compares it with the second verification code to implement the verification operation of the collection terminal;
  • the S51 payment terminal generates a third verification code and encrypts it by using a built-in security plug-in to generate a third authentication signature code;
  • FIG. 1 is a schematic flowchart of an NFC-based offline payment method provided by the present invention.
  • the offline payment method includes: an S1 payment terminal receives a payment instruction sent by a collection terminal; and an S2 payment The terminal generates a first verification code and a first authentication signature code, and sends the first verification code together with the payment terminal identity authentication instruction to the payment terminal; the S3 payment terminal receives the second generation generated after the payment terminal performs the verification and deduction of the payment terminal.
  • the step S1 specifically includes: the S11 collection terminal generates a collection instruction; the S12 collection terminal encrypts the collection instruction by using the built-in security control and the first public key; and the S13 collection terminal is close to the payment terminal (this process) In the middle of the guaranteed payment terminal and the payment terminal, the NFC function is turned on), and the encrypted payment instruction is sent to the payment terminal.
  • Debiting in the wallet that is, deducting the balance in the payer's account
  • S34 receiving terminal generates a second verification code, and encrypts it with the built-in security plug-in and the second private key to generate a second authentication signature code
  • S35 collects money
  • the terminal generates an update e-wallet balance instruction
  • the S36 collection terminal uses the built-in security control and the first public key pair
  • the second verification code, the second authentication signature code, and the updated electronic wallet balance instruction are encrypted to obtain communication data, and the encrypted data (ie, communication data) is transmitted to the payment terminal.

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Engineering & Computer Science (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Disclosed is an NFC-based off-line payment method, which belongs to the technical field of mobile payment. The method comprises: S1, a payment terminal receiving a payment receiving instruction sent by a payment receiving terminal; S2, the payment terminal generating a first verification code and a first authentication signature code, and sending same together with a payment terminal identity authentication instruction to the payment receiving terminal; S3, the payment terminal receiving a second verification code, a second authentication signature code and an electronic purse balance updating instruction generated after the payment receiving terminal performs signature verification and deduction on the payment terminal; S4, the payment terminal performing signature verification on the payment receiving terminal and adding a corresponding amount to an electronic purse based on the received purse balance updating instruction; and S5, the payment terminal generating a third verification code and a third authentication signature code, and sending same together with a payment success instruction to a payment receiving terminal to wait for the payment receiving terminal to perform signature verification. The non-network payment and data exchange between two terminals are realized.

Description

一种基于NFC的离线支付方法An offline payment method based on NFC 技术领域Technical field
本发明属于移动支付技术领域,尤其涉及一种离线支付方法。The invention belongs to the field of mobile payment technologies, and in particular relates to an offline payment method.
背景技术Background technique
当下主要的支付方式有:货到付款、在线支付、银行电汇及邮政汇款等。The main payment methods are: cash on delivery, online payment, bank wire transfer and postal remittance.
对于货到付款来说,其是一种按照客户提交的订单内容,在承诺配送时限内送达顾客指定交货地点后,双方当场验收商品,当场交纳货款的一种结算支付方式。有效解决了中国网上零售行业的支付和物流两大问题,又培养了客户对网络的信任。但是,其采用现金付费,故只能局限在小额支付上,对于商家的大额交易则无法实现;再有,由于送货上门受到地域的限制,一般来说,顾客多会选择普通邮寄,无疑带来了不必要的时间损耗,给用户造成不便。For cash on delivery, it is a settlement payment method that pays the goods on the spot after the customer submits the goods according to the order submitted by the customer and delivers the goods to the designated delivery place within the promised delivery time limit. It effectively solves the two major problems of payment and logistics in China's online retail industry, and cultivates customers' trust in the network. However, it is paid in cash, so it can only be limited to small-paying. It is impossible to realize large-value transactions for merchants. Moreover, due to geographical restrictions on delivery, in general, customers will choose ordinary mailing. Undoubtedly brings unnecessary time loss, causing inconvenience to the user.
对于在线支付来说,其是一种以金融电子化网络为基础、以商用电子化工具和各类交易卡为媒介、以电子计算机技术和通信技术为手段、以二进制数据形式存储,通过计算机网络系统以电子信息传递形式实现流通和支付。其中,网上在线支付又分为:网上银行卡转帐支付、第三方支付平台结算支付。For online payment, it is based on a financial electronic network, using commercial electronic tools and various transaction cards as media, using computer technology and communication technology as means, storing in binary data, through computer networks. The system realizes circulation and payment in the form of electronic information transmission. Among them, online online payment is divided into: online bank card transfer payment, third-party payment platform settlement payment.
(1)网上银行卡转帐支付指的是电子商务的交易通过网络、利用银行卡进行支付的方式。客户通过网络向商家订货后,在网上将银行卡卡号和密码加密发送到银行,直接要求转移资金到商家银行账户中,完成支付。银行卡的卡类可以包括信用卡、借记卡和智能卡等。对于这种支付方式,如果用户如果不去银行申请启用有数字证书保护的网上支付功能,就只能使用无数字证书保护的网上支付,对有些对电脑操作不熟悉的顾客而言很难实现。而不启用数字证书保护的网上支付会有一定的功能限制,例如,只能进行账户查询或只能进行小额支付。另外,因客户直接将货款转移到商家的帐户上,如果出现交易失败的情况,那么讨回货款的过程就可能变得非常繁琐和困难。(1) Online bank card transfer payment refers to the way in which e-commerce transactions are paid through the network and using bank cards. After the customer orders through the network, the bank card number and password are encrypted and sent to the bank on the Internet, directly requesting the transfer of funds to the merchant bank account to complete the payment. The card type of the bank card may include a credit card, a debit card, a smart card, and the like. For this payment method, if the user does not apply for the online payment function with digital certificate protection, the user can only use the online payment without digital certificate protection, which is difficult for some customers who are not familiar with the operation of the computer. Online payments that do not enable digital certificate protection have certain functional limitations, for example, only account queries or small payments. In addition, because the customer directly transfers the payment to the merchant's account, if the transaction fails, the process of recovering the purchase price may become very cumbersome and difficult.
(2)第三方支付平台结算支付是指客户和商家都首先在第三方支付平台处开立账户;并将各自的银行账户信息提供给支付平台的账户中,第三方支付平台通知商家已经收到货款后商家发货;客户收到并检验商品后,通知第三方支付平台可以付款给商家,第三方支付平台再将款项划转到商家的账户中。这种支付方式,客户和商家的银行帐户信息只需提供给第三方支付平台,比较安全,且支付通过第三方支付平台完成,如果客户未收到商品或商品有问题则可以通知第三方支付平台拒绝划转货款到商家。而商家则可以在货款有保障的情况下放心发货,有效地降低了交易风险。(2) Third-party payment platform settlement payment means that both the customer and the merchant first open an account at the third-party payment platform; and provide the respective bank account information to the account of the payment platform, and the third-party payment platform notifies the merchant that the payment has been received. After the payment, the merchant delivers the goods; after receiving and checking the goods, the customer notifies the third-party payment platform that the payment can be made to the merchant, and the third-party payment platform transfers the money to the merchant's account. This payment method, the bank account information of customers and merchants only need to be provided to the third-party payment platform, which is relatively safe, and the payment is completed through the third-party payment platform. If the customer does not receive the goods or the goods have problems, the third-party payment platform can be notified. Refused to transfer the payment to the merchant. And the merchant can safely deliver the goods when the payment is guaranteed, which effectively reduces the transaction risk.
但是,中国法律规定只有金融机构才有权吸纳代理用户的资金,其他企业机构不得从事类似活动,支付平台的法律地位也受到一部分人的质疑。另外,货款在第三方支付平台中滞留的时间内将产生一定的利息,这部分利息如何分配目前也缺乏明确的规范和严格的监督;第三方支付平台解决的电子商务支付过程中的安全性问题只限于客户和厂商之间,其他安全 性问题如客户在支付平台填写银行资料时信息的保密性、有效性和完整性问题还有待进一步解决;操作还不够简便,客户在使用第三方支付平台时都必须进行一系列繁琐的申请;贷款会在第三方支付平台的账号中滞留一段时间,非实时性支付带来存款风险,如第三方支付企业不能完全保证货款安全,将大大损害客户和商家的利益;第三方支付平台可能会被利用,通过捏造虚假交易从信用卡套现,甚至存在可能被利用来进行洗钱的风险。However, Chinese law stipulates that only financial institutions have the right to absorb the funds of the agent users, other enterprises may not engage in similar activities, and the legal status of the payment platform is also questioned by some people. In addition, the payment will be subject to a certain amount of interest during the period of stay in the third-party payment platform. How to distribute this part of the interest is currently lack of clear regulation and strict supervision; the security problem in the e-commerce payment process solved by the third-party payment platform Limited to customers and vendors, other security Sexual issues, such as the confidentiality, validity and integrity of the information when the customer fills in the bank information on the payment platform, need to be further resolved; the operation is not easy enough, the customer must use a series of cumbersome applications when using the third-party payment platform; Will stay in the account of the third-party payment platform for a period of time, non-real-time payment brings deposit risk, such as third-party payment companies can not fully guarantee the security of the payment, will greatly damage the interests of customers and businesses; third-party payment platform may be used By cashing out credit cards by fabricating fake transactions, there is even a risk that money may be used for money laundering.
对于汇款方式来说,银行汇款或邮局汇款是一种传统支付方式,也是目前为止电子商务支付方式中最常用的支付方式。其中,邮局汇款是顾客将订单金额通过邮政部门汇到商户的一种结算支付方式。其可以直接用人民币交易,避免了诸如黑客攻击、账号泄漏、密码被盗等问题,对顾客来说更安全。但是,此种支付方式的收发货周期时间长;此外,顾客还必须到银行或邮局才能进行支付,支付过程比较繁琐。对于商家来说,这种交易方式也无法体现电子商务高速、交互性强、简单易用且运作成本低等优势。因此,这种支付方式并不能适应电子商务的长期高速发展。For remittance methods, bank remittance or postal remittance is a traditional payment method, and it is also the most commonly used payment method in e-commerce payment methods so far. Among them, the post office remittance is a settlement payment method that the customer remits the order amount to the merchant through the postal department. It can be traded directly in RMB, avoiding problems such as hacking, account leakage, password theft, etc., and is safer for customers. However, the payment and delivery cycle of this payment method is long; in addition, the customer must go to the bank or post office to make payment, and the payment process is cumbersome. For merchants, this kind of transaction method can not reflect the advantages of high speed, interactive, easy to use and low operating cost. Therefore, this payment method cannot adapt to the long-term rapid development of e-commerce.
发明内容Summary of the invention
针对上述问题,本发明旨在提供一种基于NFC(Near Field Communication,近距离无线通信技术)的离线支付方法,大大提高了支付过程中的安全性能和便利性。In view of the above problems, the present invention aims to provide an offline payment method based on NFC (Near Field Communication), which greatly improves the security performance and convenience in the payment process.
本发明提供的技术方案如下:The technical solution provided by the present invention is as follows:
一种基于NFC的离线支付方法,包括:An offline payment method based on NFC, comprising:
S1付款终端接收收款终端发送的收款指令;The S1 payment terminal receives the payment instruction sent by the payment terminal;
S2付款终端生成第一验证码和第一认证签名码,并连同付款终端身份认证指令一并发送至收款终端;The S2 payment terminal generates a first verification code and a first authentication signature code, and sends the first verification code together with the payment terminal identity authentication instruction to the payment terminal;
S3付款终端接收收款终端对付款终端进行了验签和扣款之后生成的第二验证码、第二认证签名码以及更新电子钱包余额指令;The S3 payment terminal receives the second verification code, the second authentication signature code and the updated electronic wallet balance instruction generated after the payment terminal performs the verification and deduction of the payment terminal;
S4付款终端对收款终端进行验签,基于接收到的更新钱包余额指令在电子钱包中添加相应的金额;The S4 payment terminal performs verification on the payment terminal, and adds a corresponding amount in the electronic wallet based on the received update wallet balance instruction;
S5付款终端生成第三验证码和第三认证签名码,并连同付款成功指令一并发送至收款终端待收款终端进行验签,完成离线支付。The S5 payment terminal generates a third verification code and a third authentication signature code, and sends the verification certificate together with the payment success instruction to the receiving terminal to perform the verification check to complete the offline payment.
进一步优选地,所述付款终端和所述收款终端中都包括一安全控件,所述安全控件被配置为:Further preferably, both the payment terminal and the payment terminal comprise a security control, and the security control is configured to:
对所述付款终端和所述收款终端之间的通信数据进行加密/解密操作;Performing an encryption/decryption operation on communication data between the payment terminal and the collection terminal;
对所述付款终端/收款终端进行签名/验签操作。Signing/checking the payment terminal/receipt terminal.
进一步优选地,在步骤S1中具体包括:Further preferably, in step S1, the method specifically includes:
S11收款终端生成收款指令; The S11 collection terminal generates a payment instruction;
S12收款终端使用内置的安全控件对所述收款指令进行加密;The S12 collection terminal encrypts the payment instruction using a built-in security control;
S13收款终端将加密后的收款指令发送至付款终端。The S13 collection terminal sends the encrypted payment instruction to the payment terminal.
进一步优选地,在步骤S2中具体包括:Further preferably, in step S2, the method specifically includes:
S21付款终端接收收款终端发送的加密后的收款指令;The S21 payment terminal receives the encrypted payment instruction sent by the payment terminal;
S22付款终端使用内置的安全控件对其进行解密得到收款指令;The S22 payment terminal uses the built-in security control to decrypt it to obtain a payment instruction;
S23付款终端生成第一验证码,并使用内置的安全插件对其进行加密生成第一认证签名码;The S23 payment terminal generates a first verification code and encrypts it by using a built-in security plug-in to generate a first authentication signature code;
S24付款终端生成付款终端身份认证指令;The S24 payment terminal generates a payment terminal identity authentication instruction;
S25付款终端使用内置的安全控件对第一验证码、第一认证签名码以及付款终端身份认证指令进行加密,并将加密后的数据发送至收款终端。The S25 payment terminal encrypts the first verification code, the first authentication signature code, and the payment terminal identity authentication instruction using the built-in security control, and transmits the encrypted data to the payment terminal.
进一步优选地,在步骤S3中具体包括:Further preferably, in step S3, the method specifically includes:
S31收款终端使用内置的安全插件对步骤S25中生成的加密后的数据进行解密;The S31 collection terminal decrypts the encrypted data generated in step S25 using a built-in security plug-in;
S32收款终端使用内置的安全插件对接收到的第一认证签名码进行解密得到第一认证验证码,并将其与第一验证码进行比对,实现对付款终端的验签操作;The S32 collection terminal decrypts the received first authentication signature code by using the built-in security plug-in to obtain a first authentication verification code, and compares it with the first verification code to implement an authentication operation on the payment terminal;
S33收款终端基于收款指令中的金额在电子钱包中进行扣款;The S33 collection terminal debits the electronic wallet based on the amount in the payment instruction;
S34收款终端生成第二验证码,并使用内置的安全插件对其进行加密生成第二认证签名码;The S34 collection terminal generates a second verification code and encrypts it by using a built-in security plug-in to generate a second authentication signature code;
S35收款终端生成更新电子钱包余额指令;The S35 collection terminal generates an update e-wallet balance instruction;
S36收款终端使用内置的安全控件对第二验证码、第二认证签名码以及更新电子钱包余额指令进行加密,并将加密后的数据发送至付款终端。The S36 collection terminal encrypts the second verification code, the second authentication signature code, and the updated electronic wallet balance instruction using the built-in security control, and transmits the encrypted data to the payment terminal.
进一步优选地,在步骤S4中具体包括:Further preferably, in step S4, the method specifically includes:
S41付款终端使用内置的安全插件对步骤S35中生成的加密后的数据进行解密;The S41 payment terminal decrypts the encrypted data generated in step S35 using the built-in security plug-in;
S42付款终端使用内置的安全插件对接收到的第二认证签名码进行解密得到第二认证验证码,并将其与第二验证码进行比对,实现对收款终端的验签操作;The S42 payment terminal decrypts the received second authentication signature code by using the built-in security plug-in to obtain a second authentication verification code, and compares it with the second verification code to implement the verification operation of the collection terminal;
S43付款终端基于接收到的更新钱包余额指令在电子钱包中添加相应的金额。The S43 payment terminal adds a corresponding amount in the electronic wallet based on the received updated wallet balance instruction.
进一步优选地,在步骤S5中包括:Further preferably, in step S5, it comprises:
S51付款终端生成第三验证码,并使用内置的安全插件对其进行加密生成第三认证签名码;The S51 payment terminal generates a third verification code and encrypts it by using a built-in security plug-in to generate a third authentication signature code;
S52付款终端生成付款成功指令;The S52 payment terminal generates a payment success instruction;
S53付款终端使用内置的安全插件对第三验证码、第三认证签名码以及付款成功指令进行加密,并将加密后的数据发送至收款终端待收款终端进行验签。 The S53 payment terminal encrypts the third verification code, the third authentication signature code, and the payment success instruction by using the built-in security plug-in, and sends the encrypted data to the receiving terminal to be received by the receiving terminal for verification.
进一步优选地,在步骤S5之后还包括:Further preferably, after step S5, the method further comprises:
S61收款终端使用内置的安全插件对步骤S53中生成的加密后的数据进行解密;The S61 collection terminal decrypts the encrypted data generated in step S53 using a built-in security plug-in;
S62收款终端使用内置的安全插件对接收到的第三认证签名码进行解密得到第三认证验证码,并将其与第三验证码进行比对,实现对付款终端的验签操作;The S62 collection terminal decrypts the received third authentication signature code by using the built-in security plug-in to obtain a third authentication verification code, and compares it with the third verification code to implement the verification operation of the payment terminal;
S63付款终端记录交易明细。The S63 payment terminal records the transaction details.
进一步优选地,所述付款终端中还包括第一私钥和第二公钥,所述收款终端中还包括第二私钥和第一公钥,所述第一私钥和所述第一公钥为一密钥对,所述第二私钥和第二公钥为一密钥对;Further preferably, the payment terminal further includes a first private key and a second public key, and the receiving terminal further includes a second private key and a first public key, the first private key and the first The public key is a key pair, and the second private key and the second public key are a key pair;
所述第一私钥被配置为:结合付款终端内置的安全插件对付款终端进行签名操作、及对付款终端接收到的通信数据进行解密操作;The first private key is configured to: perform a signature operation on the payment terminal in conjunction with a security plug-in built in the payment terminal, and perform a decryption operation on the communication data received by the payment terminal;
所述第二私钥被配置为:结合收款终端内置的安全插件对收款终端进行签名操作、及对收款终端接收到的通信数据进行解密操作;The second private key is configured to perform a signature operation on the payment terminal and a decryption operation on the communication data received by the payment terminal in conjunction with the security plug-in built in the payment terminal;
所述第一公钥被配置为:结合收款终端内置的安全插件对待发送的通信数据进行加密操作、及对付款终端进行验签操作;The first public key is configured to perform an encryption operation on the communication data to be sent in conjunction with the security plug-in built in the payment terminal, and perform an authentication operation on the payment terminal;
所述第二公钥被配置为:结合付款终端内置的安全插件对待发送的通信数据进行加密操作、及对收款终端进行验签操作。The second public key is configured to perform an encryption operation on the communication data to be sent in conjunction with the security plug-in built in the payment terminal, and perform an authentication operation on the payment terminal.
本发明提供的基于NFC的离线支付方法,其有益效果在于:The NFC-based offline payment method provided by the present invention has the beneficial effects of:
在本发明提供的支付方法中付款终端和收款终端中都内置安全控件,且该安全控件支持离线加密/解密、签名/验签功能,这样,在支付过程中,对每次的通信数据进行加密之外,还会对对方的身份进行认证,确保了通信数据的安全性能的同时提供了一种更加便捷有效的支付方法,实现了两个终端之间的无网络支付和数据交换。In the payment method provided by the present invention, a security control is built in the payment terminal and the payment terminal, and the security control supports offline encryption/decryption, signature/checking function, so that each communication data is performed during the payment process. In addition to encryption, it also authenticates the identity of the other party, ensuring the security of the communication data and providing a more convenient and efficient payment method, enabling networkless payment and data exchange between the two terminals.
附图说明DRAWINGS
图1为本发明中离线支付方法的流程示意图。FIG. 1 is a schematic flow chart of an offline payment method according to the present invention.
具体实施方式detailed description
下面结合附图和具体实施方式,对本发明作进一步详细说明。需要说明的是,下面描述的本发明的特定细节仅为说明本发明用,并不构成对本发明的限制。根据所描述的本发明的教导作出的任何修改和变型也在本发明的范围内。The present invention will be further described in detail below in conjunction with the drawings and specific embodiments. It is to be understood that the specific details of the invention described below are merely illustrative of the invention and are not intended to limit the invention. Any modifications and variations made in accordance with the teachings of the invention described are also within the scope of the invention.
如图1所示为本发明提供的基于NFC的离线支付方法的流程示意图,从图中可以看出,在该离线支付方法中包括:S1付款终端接收收款终端发送的收款指令;S2付款终端生成第一验证码和第一认证签名码,并连同付款终端身份认证指令一并发送至收款终端;S3付款终端接收收款终端对付款终端进行了验签和扣款之后生成的第二验证码、第二认证签名码以及更新电子钱包余额指令;S4付款终端对收款终端进行验签,基于接收到的更新钱包余额指令在 电子钱包中添加相应的金额;S5付款终端生成第三验证码和第三认证签名码,并连同付款成功指令一并发送至收款终端待收款终端进行验签,完成离线支付。FIG. 1 is a schematic flowchart of an NFC-based offline payment method provided by the present invention. As can be seen from the figure, the offline payment method includes: an S1 payment terminal receives a payment instruction sent by a collection terminal; and an S2 payment The terminal generates a first verification code and a first authentication signature code, and sends the first verification code together with the payment terminal identity authentication instruction to the payment terminal; the S3 payment terminal receives the second generation generated after the payment terminal performs the verification and deduction of the payment terminal. a verification code, a second authentication signature code, and an update of the e-wallet balance instruction; the S4 payment terminal checks the payment terminal, based on the received update wallet balance instruction The corresponding amount is added to the electronic wallet; the S5 payment terminal generates a third verification code and a third authentication signature code, and sends the verification certificate together with the payment success instruction to the receiving terminal to perform the verification to complete the offline payment.
具体,付款终端和收款终端中都包括一安全控件,且该安全控件被配置为:对付款终端和收款终端之间的通信数据进行加密/解密操作;对付款终端/收款终端进行签名/验签操作。另外,付款终端中还包括第一私钥和第二公钥,收款终端中还包括第二私钥和第一公钥,第一私钥和第一公钥为一密钥对,第二私钥和第二公钥为一密钥对;第一私钥被配置为:结合付款终端内置的安全插件对付款终端进行签名操作、及对付款终端接收到的通信数据进行解密操作;第二私钥被配置为:结合收款终端内置的安全插件对收款终端进行签名操作、及对收款终端接收到的通信数据进行解密操作;第一公钥被配置为:结合收款终端内置的安全插件对待发送的通信数据进行加密操作、及对付款终端进行验签操作;第二公钥被配置为:结合付款终端内置的安全插件对待发送的通信数据进行加密操作、及对收款终端进行验签操作。其中,上述通信数据具体为付款终端和收款终端之间的交互数据,即只要付款终端和收款终端之间需要进行数据通信,都会对其中的通信数据进行加密,以保证通信数据的安全。另外,在具体实施例中,这里的付款终端可以为NFC手机、NFC平板等;收款终端除了可以为NFC手机、NFC平板等,还可以为具备NFC功能的POS((Point of Sales,销售点)机等,理论上来说,具备NFC功能、能够实现本发明目的的终端都包括在本发明的内容中。Specifically, the payment terminal and the payment terminal both include a security control, and the security control is configured to: encrypt/decrypt the communication data between the payment terminal and the payment terminal; and sign the payment terminal/receipt terminal / check operation. In addition, the payment terminal further includes a first private key and a second public key, and the receiving terminal further includes a second private key and a first public key, where the first private key and the first public key are a key pair, and the second The private key and the second public key are a key pair; the first private key is configured to: perform a signature operation on the payment terminal in conjunction with the security plug-in built in the payment terminal, and perform a decryption operation on the communication data received by the payment terminal; The private key is configured to: perform a signature operation on the payment terminal and a decryption operation on the communication data received by the payment terminal in conjunction with the security plug-in built in the payment terminal; the first public key is configured to be combined with the built-in terminal of the payment terminal. The security plug-in encrypts the communication data to be sent and performs the check operation on the payment terminal; the second public key is configured to: perform encryption operation on the communication data to be sent in conjunction with the security plug-in built in the payment terminal, and perform the encryption operation on the payment terminal Checking operation. The communication data is specifically the interaction data between the payment terminal and the payment terminal, that is, as long as the data communication between the payment terminal and the payment terminal is required, the communication data is encrypted to ensure the security of the communication data. In addition, in a specific embodiment, the payment terminal herein may be an NFC mobile phone, an NFC tablet, or the like; the receiving terminal may be an NFC mobile phone, an NFC tablet, or the like, and may also be an NFC-enabled POS ((Point of Sales). In principle, a terminal having an NFC function and capable of achieving the object of the present invention is included in the content of the present invention.
基于此,在步骤S1中具体包括:S11收款终端生成收款指令;S12收款终端使用内置的安全控件和第一公钥对收款指令进行加密;S13收款终端靠近付款终端(此过程中保证收款终端和付款终端中的NFC功能都开启),将加密后的收款指令发送至付款终端.Based on this, the step S1 specifically includes: the S11 collection terminal generates a collection instruction; the S12 collection terminal encrypts the collection instruction by using the built-in security control and the first public key; and the S13 collection terminal is close to the payment terminal (this process) In the middle of the guaranteed payment terminal and the payment terminal, the NFC function is turned on), and the encrypted payment instruction is sent to the payment terminal.
在步骤S2中具体包括:S21付款终端接收收款终端发送的加密后的收款指令;S22付款终端使用内置的安全控件和第一私钥对其进行解密得到收款指令;S23付款终端生成第一验证码,并使用内置的安全插件和第一私钥对其进行加密生成第一认证签名码;S24付款终端生成付款终端身份认证指令;S25付款终端使用内置的安全控件和第二公钥对第一验证码、第一认证签名码以及付款终端身份认证指令进行加密,并将加密后的数据发送至收款终端。要说明的是,在步骤S21之前,付款终端靠近收款终端之后,付款终端首先判断自身是否支持该离线支付方法,若支持,则进入步骤S21;相反,若不支持,则交易终止,支付失败。Specifically, in step S2, the S21 payment terminal receives the encrypted payment instruction sent by the payment terminal; S22 uses the built-in security control and the first private key to decrypt the payment instruction; and the S23 payment terminal generates the first a verification code, and encrypting the first authentication signature code using the built-in security plug-in and the first private key; the S24 payment terminal generates a payment terminal identity authentication instruction; and the S25 payment terminal uses the built-in security control and the second public key pair The first verification code, the first authentication signature code, and the payment terminal identity authentication instruction are encrypted, and the encrypted data is sent to the payment terminal. It is to be noted that, before the step S21, after the payment terminal is close to the payment terminal, the payment terminal first determines whether it supports the offline payment method. If yes, the process proceeds to step S21; if not, if the transaction is terminated, the transaction is terminated and the payment fails. .
在步骤S3中具体包括:S31收款终端使用内置的安全插件和第二私钥对步骤S25中生成的加密后的数据进行解密;S32收款终端使用内置的安全插件和第一公钥对接收到的第一认证签名码进行解密得到第一认证验证码,并将其与第一验证码进行比对,若比对成功(第一认证验证码与第一验证码相同),则收款终端对付款终端验签成功,进入步骤S33;相反,若比对失败,则说明付款终端身份不合法,立即终止交易;S33对付款终端身份认证之后,收款终端基于收款指令中的金额在电子钱包中进行扣款,即扣除付款方账户中的余额;S34收款终端生成第二验证码,并使用内置的安全插件和第二私钥对其进行加密生成第二认证签名码;S35收款终端生成更新电子钱包余额指令;S36收款终端使用内置的安全控件和第一公钥对第 二验证码、第二认证签名码以及更新电子钱包余额指令进行加密得到通信数据,并将加密后的数据(即通信数据)发送至付款终端。Specifically, the step S3 includes: the S31 collection terminal decrypts the encrypted data generated in step S25 by using the built-in security plug-in and the second private key; and the S32 collection terminal uses the built-in security plug-in and the first public key pair to receive The first authentication signature code is decrypted to obtain a first authentication verification code, and is compared with the first verification code. If the comparison is successful (the first authentication verification code is the same as the first verification code), the receiving terminal If the payment terminal is successfully checked, the process proceeds to step S33; on the contrary, if the comparison fails, the payment terminal identity is illegal, and the transaction is terminated immediately; S33, after the payment terminal identity authentication, the payment terminal is based on the amount in the payment instruction. Debiting in the wallet, that is, deducting the balance in the payer's account; S34 receiving terminal generates a second verification code, and encrypts it with the built-in security plug-in and the second private key to generate a second authentication signature code; S35 collects money The terminal generates an update e-wallet balance instruction; the S36 collection terminal uses the built-in security control and the first public key pair The second verification code, the second authentication signature code, and the updated electronic wallet balance instruction are encrypted to obtain communication data, and the encrypted data (ie, communication data) is transmitted to the payment terminal.
在步骤S4中具体包括:S41付款终端使用内置的安全插件和第一私钥对步骤S35中生成的加密后的数据进行解密;S42付款终端使用内置的安全插件和第二公钥对接收到的第二认证签名码进行解密得到第二认证验证码,并将其与第二验证码进行比对,若比对成功(第二认证验证码与第二验证码相同),则付款终端对收款终端验签成功,进入步骤S43;相反,若比对失败,则说明收款终端身份不合法,立即终止交易;S43付款终端基于接收到的更新钱包余额指令在电子钱包中添加相应的金额。Specifically, in step S4, the S41 payment terminal decrypts the encrypted data generated in step S35 by using the built-in security plug-in and the first private key; and the S42 payment terminal uses the built-in security plug-in and the second public key pair to receive the received data. The second authentication signature code is decrypted to obtain a second authentication verification code, and is compared with the second verification code. If the comparison is successful (the second authentication verification code is the same as the second verification code), the payment terminal collects the payment. If the comparison is successful, the process proceeds to step S43. Conversely, if the comparison fails, the identity of the receiving terminal is illegal and the transaction is terminated immediately; and the S43 payment terminal adds a corresponding amount to the electronic wallet based on the received updated wallet balance instruction.
在步骤S5中包括:S51付款终端生成第三验证码,并使用内置的安全插件和第一私钥对其进行加密生成第三认证签名码;S52付款终端生成付款成功指令;S53付款终端使用内置的安全插件和第二公钥对第三验证码、第三认证签名码以及付款成功指令进行加密,并将加密后的数据发送至收款终端待收款终端进行验签。In step S5, the S51 payment terminal generates a third verification code, and encrypts it by using the built-in security plug-in and the first private key to generate a third authentication signature code; S52 the payment terminal generates a payment success instruction; and the S53 payment terminal uses the built-in The security plug-in and the second public key encrypt the third verification code, the third authentication signature code, and the payment success instruction, and send the encrypted data to the receiving terminal to be received by the receiving terminal for verification.
在步骤S5之后还包括:S61收款终端使用内置的安全插件和第二私钥对步骤S53中生成的加密后的数据进行解密;S62收款终端使用内置的安全插件和第一公钥对接收到的第三认证签名码进行解密得到第三认证验证码,并将其与第三验证码进行比对,若比对成功(第三认证验证码与第三验证码相同),则付款终端对收款终端验签成功,进入步骤S63;相反,若比对失败,则验证失败,记录失败信息;S63付款终端记录交易明细。After step S5, the method further includes: S61 the payment terminal decrypting the encrypted data generated in step S53 using the built-in security plug-in and the second private key; and the S62 receiving terminal uses the built-in security plug-in and the first public key pair to receive The third authentication signature code is decrypted to obtain a third authentication verification code, and is compared with the third verification code. If the comparison is successful (the third authentication verification code is the same as the third verification code), the payment terminal pair If the payment terminal is successfully checked, the process proceeds to step S63; on the contrary, if the comparison fails, the verification fails, and the failure information is recorded; and the payment terminal records the transaction details.
另外,要说明的是,在步骤S1之前,还包括,付款终端和收款终端分别从服务器中下载安全控件。In addition, it is to be noted that, before the step S1, the payment terminal and the payment terminal respectively download the security control from the server.
以上通过分别描述每个过程的实施场景案例,详细描述了本发明,本领域的技术人员应能理解。在不脱离本发明实质的范围内,可以作修改和变形,比如部分模块的剥离使用和将系统嵌入于其他应用系统中。 The present invention has been described in detail above by describing examples of implementation scenarios for each process, and those skilled in the art will understand. Modifications and variations may be made without departing from the spirit of the invention, such as the use of a portion of the module and the embedding of the system in other applications.

Claims (9)

  1. 一种基于NFC的离线支付方法,其特征在于,所述离线支付方法包括:An offline payment method based on NFC, characterized in that the offline payment method comprises:
    S1付款终端接收收款终端发送的收款指令;The S1 payment terminal receives the payment instruction sent by the payment terminal;
    S2付款终端生成第一验证码和第一认证签名码,并连同付款终端身份认证指令一并发送至收款终端;The S2 payment terminal generates a first verification code and a first authentication signature code, and sends the first verification code together with the payment terminal identity authentication instruction to the payment terminal;
    S3付款终端接收收款终端对付款终端进行了验签和扣款之后生成的第二验证码、第二认证签名码以及更新电子钱包余额指令;The S3 payment terminal receives the second verification code, the second authentication signature code and the updated electronic wallet balance instruction generated after the payment terminal performs the verification and deduction of the payment terminal;
    S4付款终端对收款终端进行验签,基于接收到的更新钱包余额指令在电子钱包中添加相应的金额;The S4 payment terminal performs verification on the payment terminal, and adds a corresponding amount in the electronic wallet based on the received update wallet balance instruction;
    S5付款终端生成第三验证码和第三认证签名码,并连同付款成功指令一并发送至收款终端待收款终端进行验签,完成离线支付。The S5 payment terminal generates a third verification code and a third authentication signature code, and sends the verification certificate together with the payment success instruction to the receiving terminal to perform the verification check to complete the offline payment.
  2. 如权利要求1所述的离线支付方法,其特征在于,所述付款终端和所述收款终端中都包括一安全控件,所述安全控件被配置为:The offline payment method according to claim 1, wherein both the payment terminal and the collection terminal comprise a security control, and the security control is configured to:
    对所述付款终端和所述收款终端之间的通信数据进行加密/解密操作;Performing an encryption/decryption operation on communication data between the payment terminal and the collection terminal;
    对所述付款终端/收款终端进行签名/验签操作。Signing/checking the payment terminal/receipt terminal.
  3. 如权利要求2所述的离线支付方法,其特征在于,在步骤S1中具体包括:The offline payment method according to claim 2, wherein the step S1 specifically includes:
    S11收款终端生成收款指令;The S11 collection terminal generates a payment instruction;
    S12收款终端使用内置的安全控件对所述收款指令进行加密;The S12 collection terminal encrypts the payment instruction using a built-in security control;
    S13收款终端将加密后的收款指令发送至付款终端。The S13 collection terminal sends the encrypted payment instruction to the payment terminal.
  4. 如权利要求3所述的离线支付方法,其特征在于,在步骤S2中具体包括:The offline payment method according to claim 3, wherein the step S2 specifically includes:
    S21付款终端接收收款终端发送的加密后的收款指令;The S21 payment terminal receives the encrypted payment instruction sent by the payment terminal;
    S22付款终端使用内置的安全控件对其进行解密得到收款指令;The S22 payment terminal uses the built-in security control to decrypt it to obtain a payment instruction;
    S23付款终端生成第一验证码,并使用内置的安全插件对其进行加密生成第一认证签名码;The S23 payment terminal generates a first verification code and encrypts it by using a built-in security plug-in to generate a first authentication signature code;
    S24付款终端生成付款终端身份认证指令;The S24 payment terminal generates a payment terminal identity authentication instruction;
    S25付款终端使用内置的安全控件对第一验证码、第一认证签名码以及付款终端身份认证指令进行加密,并将加密后的数据发送至收款终端。 The S25 payment terminal encrypts the first verification code, the first authentication signature code, and the payment terminal identity authentication instruction using the built-in security control, and transmits the encrypted data to the payment terminal.
  5. 如权利要求4所述的离线支付方法,其特征在于,在步骤S3中具体包括:The offline payment method according to claim 4, wherein the step S3 specifically includes:
    S31收款终端使用内置的安全插件对步骤S25中生成的加密后的数据进行解密;The S31 collection terminal decrypts the encrypted data generated in step S25 using a built-in security plug-in;
    S32收款终端使用内置的安全插件对接收到的第一认证签名码进行解密得到第一认证验证码,并将其与第一验证码进行比对,实现对付款终端的验签操作;The S32 collection terminal decrypts the received first authentication signature code by using the built-in security plug-in to obtain a first authentication verification code, and compares it with the first verification code to implement an authentication operation on the payment terminal;
    S33收款终端基于收款指令中的金额在电子钱包中进行扣款;The S33 collection terminal debits the electronic wallet based on the amount in the payment instruction;
    S34收款终端生成第二验证码,并使用内置的安全插件对其进行加密生成第二认证签名码;The S34 collection terminal generates a second verification code and encrypts it by using a built-in security plug-in to generate a second authentication signature code;
    S35收款终端生成更新电子钱包余额指令;The S35 collection terminal generates an update e-wallet balance instruction;
    S36收款终端使用内置的安全控件对第二验证码、第二认证签名码以及更新电子钱包余额指令进行加密,并将加密后的数据发送至付款终端。The S36 collection terminal encrypts the second verification code, the second authentication signature code, and the updated electronic wallet balance instruction using the built-in security control, and transmits the encrypted data to the payment terminal.
  6. 如权利要求5所述的离线支付方法,其特征在于,在步骤S4中具体包括:The offline payment method according to claim 5, wherein the step S4 specifically includes:
    S41付款终端使用内置的安全插件对步骤S35中生成的加密后的数据进行解密;The S41 payment terminal decrypts the encrypted data generated in step S35 using the built-in security plug-in;
    S42付款终端使用内置的安全插件对接收到的第二认证签名码进行解密得到第二认证验证码,并将其与第二验证码进行比对,实现对收款终端的验签操作;The S42 payment terminal decrypts the received second authentication signature code by using the built-in security plug-in to obtain a second authentication verification code, and compares it with the second verification code to implement the verification operation of the collection terminal;
    S43付款终端基于接收到的更新钱包余额指令在电子钱包中添加相应的金额。The S43 payment terminal adds a corresponding amount in the electronic wallet based on the received updated wallet balance instruction.
  7. 如权利要求6所述的离线支付方法,其特征在于,在步骤S5中包括:The offline payment method according to claim 6, wherein the step S5 includes:
    S51付款终端生成第三验证码,并使用内置的安全插件对其进行加密生成第三认证签名码;The S51 payment terminal generates a third verification code and encrypts it by using a built-in security plug-in to generate a third authentication signature code;
    S52付款终端生成付款成功指令;The S52 payment terminal generates a payment success instruction;
    S53付款终端使用内置的安全插件对第三验证码、第三认证签名码以及付款成功指令进行加密,并将加密后的数据发送至收款终端待收款终端进行验签。The S53 payment terminal encrypts the third verification code, the third authentication signature code, and the payment success instruction by using the built-in security plug-in, and sends the encrypted data to the receiving terminal to be received by the receiving terminal for verification.
  8. 如权利要求7所述的离线支付方法,其特征在于,在步骤S5之后还包括:The offline payment method according to claim 7, further comprising: after step S5:
    S61收款终端使用内置的安全插件对步骤S53中生成的加密后的数据进行解密;The S61 collection terminal decrypts the encrypted data generated in step S53 using a built-in security plug-in;
    S62收款终端使用内置的安全插件对接收到的第三认证签名码进行解密得到第三认证验证码,并将其与第三验证码进行比对,实现对付款终端的验签操作;The S62 collection terminal decrypts the received third authentication signature code by using the built-in security plug-in to obtain a third authentication verification code, and compares it with the third verification code to implement the verification operation of the payment terminal;
    S63付款终端记录交易明细。The S63 payment terminal records the transaction details.
  9. 如权利要求2-8任意一项所述的离线支付方法,其特征在于,所述付款终端中还包括 第一私钥和第二公钥,所述收款终端中还包括第二私钥和第一公钥,所述第一私钥和所述第一公钥为一密钥对,所述第二私钥和第二公钥为一密钥对;The offline payment method according to any one of claims 2-8, wherein the payment terminal further comprises a first private key and a second public key, the receiving terminal further includes a second private key and a first public key, where the first private key and the first public key are a key pair, the first The second private key and the second public key are a key pair;
    所述第一私钥被配置为:结合付款终端内置的安全插件对付款终端进行签名操作、及对付款终端接收到的通信数据进行解密操作;The first private key is configured to: perform a signature operation on the payment terminal in conjunction with a security plug-in built in the payment terminal, and perform a decryption operation on the communication data received by the payment terminal;
    所述第二私钥被配置为:结合收款终端内置的安全插件对收款终端进行签名操作、及对收款终端接收到的通信数据进行解密操作;The second private key is configured to perform a signature operation on the payment terminal and a decryption operation on the communication data received by the payment terminal in conjunction with the security plug-in built in the payment terminal;
    所述第一公钥被配置为:结合收款终端内置的安全插件对待发送的通信数据进行加密操作、及对付款终端进行验签操作;The first public key is configured to perform an encryption operation on the communication data to be sent in conjunction with the security plug-in built in the payment terminal, and perform an authentication operation on the payment terminal;
    所述第二公钥被配置为:结合付款终端内置的安全插件对待发送的通信数据进行加密操作、及对收款终端进行验签操作。 The second public key is configured to perform an encryption operation on the communication data to be sent in conjunction with the security plug-in built in the payment terminal, and perform an authentication operation on the payment terminal.
PCT/CN2017/087192 2016-08-31 2017-06-05 Nfc-based off-line payment method WO2018040653A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201610793599.8 2016-08-31
CN201610793599.8A CN106327186A (en) 2016-08-31 2016-08-31 Offline payment method based on NFC

Publications (1)

Publication Number Publication Date
WO2018040653A1 true WO2018040653A1 (en) 2018-03-08

Family

ID=57786211

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2017/087192 WO2018040653A1 (en) 2016-08-31 2017-06-05 Nfc-based off-line payment method

Country Status (2)

Country Link
CN (1) CN106327186A (en)
WO (1) WO2018040653A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN110766397A (en) * 2019-10-21 2020-02-07 深圳市丰鑫科技服务有限公司 Near-field payment method based on data identification model
CN111815326A (en) * 2019-04-11 2020-10-23 财付通支付科技有限公司 Payment method in flight state, device, equipment and storage medium thereof

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106327186A (en) * 2016-08-31 2017-01-11 中城智慧科技有限公司 Offline payment method based on NFC
CN107665427A (en) * 2017-08-22 2018-02-06 阿里巴巴集团控股有限公司 A kind of offline electronic payment, business processing, the method and device of payment processes
CN108564363B (en) * 2018-02-28 2020-10-13 阿里巴巴集团控股有限公司 Transaction processing method, server, client and system
CN108805574B (en) * 2018-05-19 2021-01-26 深圳市图灵奇点智能科技有限公司 Transaction method and system based on privacy protection
CN109787769A (en) * 2018-12-25 2019-05-21 深圳市安信认证系统有限公司 Offline authentication method, user terminal and the device end of internet of things equipment
CN110992172B (en) * 2019-12-04 2024-03-29 杭州复杂美科技有限公司 Offline payment method, device and storage medium
CN111861492A (en) * 2020-07-31 2020-10-30 展讯通信(上海)有限公司 Offline payment method and system
CN112581233B (en) * 2020-12-24 2024-01-26 北京顺达同行科技有限公司 Method, apparatus, device and computer readable storage medium for order offline operation
CN113393222A (en) * 2021-03-01 2021-09-14 福建创识科技股份有限公司 Offline payment method, mobile phone and offline payment system for digital currency
CN113393223A (en) * 2021-03-01 2021-09-14 福建创识科技股份有限公司 Cloud sound box, offline payment system of digital currency and offline payment method
CN113222600A (en) * 2021-05-18 2021-08-06 中国银行股份有限公司 Offline payment method and system, payment terminal and collection terminal
CN113450507B (en) * 2021-06-11 2023-06-23 石家庄新奥能源发展有限公司 Payment method based on multifunctional card, multifunctional card and system

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009132108A2 (en) * 2008-04-22 2009-10-29 Visa International Service Association Prepaid chip card exception processing
US20120166337A1 (en) * 2010-12-23 2012-06-28 Kt Corporation Near field communication terminal for performing secure payment and secure payment method using the same
CN104463575A (en) * 2014-11-26 2015-03-25 深圳市智惠付信息技术有限公司 NFC payment communication method based on payment command
CN105631661A (en) * 2015-04-27 2016-06-01 宇龙计算机通信科技(深圳)有限公司 Offline payment method, offline payment device and off-line payment system
CN105761078A (en) * 2016-02-04 2016-07-13 中城智慧科技有限公司 Electronic currency payment system and method thereof
CN106327186A (en) * 2016-08-31 2017-01-11 中城智慧科技有限公司 Offline payment method based on NFC

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7809652B2 (en) * 2007-01-30 2010-10-05 Visa U.S.A. Inc. Signature based negative list for off line payment device validation
CN102468960A (en) * 2010-11-16 2012-05-23 卓望数码技术(深圳)有限公司 Off-line mode identity and transaction authentication method and terminal
CN103812835A (en) * 2012-11-09 2014-05-21 深圳市华营数字商业有限公司 Public key algorithm based offline mode ID and transaction authentication method

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2009132108A2 (en) * 2008-04-22 2009-10-29 Visa International Service Association Prepaid chip card exception processing
US20120166337A1 (en) * 2010-12-23 2012-06-28 Kt Corporation Near field communication terminal for performing secure payment and secure payment method using the same
CN104463575A (en) * 2014-11-26 2015-03-25 深圳市智惠付信息技术有限公司 NFC payment communication method based on payment command
CN105631661A (en) * 2015-04-27 2016-06-01 宇龙计算机通信科技(深圳)有限公司 Offline payment method, offline payment device and off-line payment system
CN105761078A (en) * 2016-02-04 2016-07-13 中城智慧科技有限公司 Electronic currency payment system and method thereof
CN106327186A (en) * 2016-08-31 2017-01-11 中城智慧科技有限公司 Offline payment method based on NFC

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111815326A (en) * 2019-04-11 2020-10-23 财付通支付科技有限公司 Payment method in flight state, device, equipment and storage medium thereof
CN111815326B (en) * 2019-04-11 2024-05-28 财付通支付科技有限公司 Payment method under flight state, device, equipment and storage medium thereof
CN110766397A (en) * 2019-10-21 2020-02-07 深圳市丰鑫科技服务有限公司 Near-field payment method based on data identification model

Also Published As

Publication number Publication date
CN106327186A (en) 2017-01-11

Similar Documents

Publication Publication Date Title
WO2018040653A1 (en) Nfc-based off-line payment method
US11880815B2 (en) Device enrollment system and method
US12008088B2 (en) Recurring token transactions
US10592899B2 (en) Master applet for secure remote payment processing
JP5667228B2 (en) Transaction conversion system
JP6401278B2 (en) How to authenticate a transaction
US8725638B2 (en) Method and system for payment authorization and card presentation using pre-issued identities
US10614457B2 (en) Secure authorizations using independent communications and different one-time-use encryption keys for each party to a transaction
CN108476227A (en) System and method for equipment push supply
US20110103586A1 (en) System, Method and Device To Authenticate Relationships By Electronic Means
JP2018522353A (en) Authentication system and method for server-based payment
US20070063017A1 (en) System and method for securely making payments and deposits
CN104838399A (en) Authenticating remote transactions using mobile device
US20240303635A1 (en) Token-based off-chain interaction authorization
TW201417010A (en) System and method for performing financial certificate transaction through mobile device
US20240291812A1 (en) Token processing system and method
CN107230071A (en) Digital cash is converted to the method and system of cash in kind
Me et al. Mobile local macropayments: Security and prototyping
KR20130100811A (en) Method to approve payments
WO2012070923A1 (en) A method and a system to ensure a secured online transaction for a debit card
TW202109408A (en) Account payment managing system and method thereof
TW201828188A (en) Electronic wallet system and method thereof effectively improve the safety of using the electronic wallet
Li et al. A safe trading model based on encryption hybrid algorithms for mobile electronic commerce
EP4416669A1 (en) Efficient and protected data transfer system and method
Pisko Enhancing Security of Terminal Payment with Mobile Electronic Signatures

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 17844960

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 17844960

Country of ref document: EP

Kind code of ref document: A1