CN110969434B - Payment method, server, terminal and system - Google Patents

Abstract

The embodiment of the application discloses a payment method, a server, a terminal and a system, wherein the method comprises the following steps: the payment server receives a payment request sent by a payment terminal, wherein the payment request comprises payment information generated by the payment terminal based on a payment credential displayed by the payment terminal; the payment server sends a security authentication request to the payment terminal to instruct the payment terminal to display first dynamic authentication information; the payment server receives feedback information sent by the payment terminal, and carries out security authentication on the payment terminal according to the first dynamic authentication information and second dynamic authentication information acquired by the payment terminal based on the first dynamic authentication information, wherein the feedback information is included in the feedback information, and if the authentication is passed, payment transaction is carried out according to the payment information. According to the embodiment of the application, the malicious collection operation of the malicious collection terminal can be effectively avoided, and the safety of mobile payment is improved.

Description

Payment method, server, terminal and system

Technical Field

The present application relates to the field of mobile payment technology, and in particular to a payment method, server, terminal and system.

Background technique

With the rapid development of Internet technology, mobile payment has become widely popular in life. The current mobile payment process is usually that the user shows the payment code (such as a QR code or barcode, etc.) in his payment terminal to the merchant's payment terminal, and the merchant's payment terminal can directly complete the payment by scanning the payment code. However, due to the complex and changeable payment environment, there may be other malicious payment devices around, such as malicious hidden cameras, etc. The malicious payment device can also scan the payment code displayed by the user's payment terminal and perform illegal deduction operations. Therefore, there are problems such as poor security and easy to cause property losses to users.

Summary of the invention

The embodiments of the present application provide a payment method, a server, a terminal and a system to solve the problems of poor security of mobile payment in the prior art and easy to cause property loss to users.

To solve the above technical problems, the embodiments of the present application are implemented as follows:

In a first aspect, an embodiment of the present application provides a payment method, applied to a payment server, comprising:

Receiving a payment request sent by a payment terminal, wherein the payment request includes payment information generated by the payment terminal based on a payment voucher displayed by the payment terminal;

Sending a security authentication request to the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display the first dynamic authentication information;

Receiving feedback information sent by the payment terminal, wherein the feedback information includes second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information;

Performing security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information;

If the authentication is successful, the payment transaction is performed according to the payment information.

In a second aspect, an embodiment of the present application provides a payment method, applied to a payment terminal, comprising:

In response to the user's payment operation, display the payment voucher so that the payment terminal generates payment information based on the payment voucher and sends a payment request to the payment server according to the payment information;

Receiving a security authentication request sent by the payment server;

According to the security authentication request, the first dynamic authentication information is displayed so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information.

In a third aspect, an embodiment of the present application provides a payment server, including:

A receiving module, configured to receive a payment request sent by a payment terminal, wherein the payment request includes payment information generated by the payment terminal based on a payment voucher displayed by the payment terminal;

A sending module, configured to send a security authentication request to the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display the first dynamic authentication information;

The receiving module is further used to receive feedback information sent by the payment receiving device, wherein the feedback information includes second dynamic authentication information collected by the payment receiving terminal based on the first dynamic authentication information;

an authentication module, configured to perform security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information;

The processing module is used to perform a payment transaction according to the payment information when the authentication module passes the authentication.

In a fourth aspect, an embodiment of the present application provides a payment terminal, including:

A display module, used to display the payment voucher in response to the user's payment operation, so that the payment terminal generates payment information based on the payment voucher and sends a payment request to the payment server according to the payment information;

A receiving module, used for receiving a security authentication request sent by the payment server;

The display module is also used to display the first dynamic authentication information according to the security authentication request, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information.

In a fifth aspect, an embodiment of the present application provides a payment system, including: a payment terminal, a payment terminal and a backend payment server;

The payment terminal is configured to display a payment voucher in response to a payment operation of a user; and receive a security authentication request sent by the payment server, and display first dynamic authentication information according to the security authentication request;

The payment terminal is configured to generate payment information based on the payment voucher, send a payment request to the payment server according to the payment information; and send second dynamic authentication information collected based on the first dynamic authentication information to the payment server;

The payment server is used to receive the payment request sent by the payment terminal, send a security authentication request to the payment terminal; and perform security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information. If the authentication is successful, a payment transaction is performed according to the payment information.

In a sixth aspect, an embodiment of the present application provides a payment server, comprising a processor, a memory, and a computer program stored in the memory and executable on the processor, wherein when the computer program is executed by the processor, the steps of the payment method applied to the payment server provided in the above embodiment are implemented.

In the seventh aspect, an embodiment of the present application provides a payment terminal, comprising a processor, a memory, and a computer program stored in the memory and executable on the processor, wherein the computer program, when executed by the processor, implements the steps of the payment method applied to the payment terminal provided in the above embodiment.

In an eighth aspect, an embodiment of the present application provides a computer-readable storage medium, on which a computer program is stored. When the computer program is executed by a processor, the steps of the payment method applied to the payment server provided in the above embodiment are implemented.

In a ninth aspect, an embodiment of the present application provides a computer-readable storage medium, on which a computer program is stored. When the computer program is executed by a processor, the steps of the payment method applied to the payment terminal provided in the above embodiment are implemented.

In an embodiment of the present application, when the payment server receives a payment request sent by a payment terminal, it sends a security authentication request to the payment terminal to instruct the payment terminal to display first dynamic authentication information; and, receives feedback information sent by the payment terminal, and performs security authentication on the payment terminal according to the second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information displayed by the payment terminal, which is included in the feedback information; and executes the payment transaction when the authentication is passed, rather than directly performing the payment transaction, effectively avoiding the occurrence of malicious payment terminals performing malicious payment operations, thereby ensuring the property safety of users and improving the security of mobile payments.

BRIEF DESCRIPTION OF THE DRAWINGS

In order to more clearly illustrate the embodiments of the present application or the technical solutions in the prior art, the drawings required for use in the embodiments or the description of the prior art will be briefly introduced below. Obviously, the drawings described below are only some embodiments recorded in the present application. For ordinary technicians in this field, other drawings can be obtained based on these drawings without paying creative labor.

FIG1 is a schematic diagram of an application scenario of a payment method provided by an embodiment of the present application;

FIG2 is a schematic diagram of a flow chart of a payment method applied to a payment server provided by an embodiment of the present application;

FIG3 is a flow chart of another payment method applied to a payment server provided by an embodiment of the present application;

FIG4 is a flow chart of another payment method applied to a payment server provided by an embodiment of the present application;

FIG5 is a schematic diagram of a flow chart of a payment method applied to a payment terminal provided by an embodiment of the present application;

FIG6 is a flow chart of another payment method applied to a payment terminal provided by an embodiment of the present application;

FIG7 is a schematic diagram of the structure of a payment server provided by an embodiment of the present application;

FIG8 is a schematic diagram of the structure of a payment terminal provided by an embodiment of the present application;

FIG9 is a schematic diagram of the structure of a payment system provided by an embodiment of the present application;

FIG. 10 is a schematic diagram of the structure of another payment terminal provided in an embodiment of the present application.

Detailed ways

In order to enable those skilled in the art to better understand the technical solutions in the present application, the technical solutions in the embodiments of the present application will be clearly and completely described below in conjunction with the drawings in the embodiments of the present application. Obviously, the described embodiments are only part of the embodiments of the present application, not all of the embodiments. Based on the embodiments in the present application, all other embodiments obtained by ordinary technicians in this field without creative work should fall within the scope of protection of this application.

Figure 1 is a schematic diagram of an application scenario of a payment method provided in an embodiment of the present application. As shown in Figure 1, the scenario includes: a payment terminal, a payment terminal and a payment server; wherein the payment terminal can be a mobile phone, a tablet computer, a desktop computer, a portable notebook computer, etc.; the payment terminal has a scanning function; the payment server can be an independent server or a server cluster, etc.; the payment terminal and the payment terminal are both connected to the payment server through a wireless network.

Specifically, the payment terminal displays the payment voucher in response to the user's payment operation; the payment terminal scans the payment voucher to obtain the user's payment related information, generates payment information according to the obtained payment related information and its own terminal identification, and sends a payment request to the payment server according to the payment information; the payment server receives the payment request sent by the payment terminal and sends a security authentication request to the payment terminal; the payment terminal displays the first dynamic authentication information according to the received security authentication request; the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server; the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information, and performs a payment transaction according to the payment information included in the payment request when the authentication is passed. Therefore, when the payment server receives the payment request sent by the payment terminal, by sending a security authentication request to the payment terminal so that the payment terminal displays the first dynamic authentication information, the payment terminal is securely authenticated based on the first dynamic authentication information and the second dynamic authentication information collected by the payment terminal, and the payment transaction is executed when the authentication is passed, rather than directly performing the payment transaction, which effectively avoids the occurrence of malicious payment terminals performing malicious payment collection operations, thereby ensuring the property safety of users and improving the security of mobile payments.

Based on the above application scenario architecture, an embodiment of the present application provides a payment method, which is applied to the payment server in the application scenario shown in FIG1 ; FIG2 is a flow chart of a payment method applied to the payment server provided by an embodiment of the present application. Referring to FIG2 , the method includes the following steps:

Step 102, receiving a payment request sent by a payment terminal, wherein the payment request includes payment information generated by the payment terminal based on a payment voucher displayed by the payment terminal;

Specifically, when a user needs to pay for the goods he purchased or the services he enjoys, he operates the application with payment function installed on his payment terminal to make payment. For example, the user clicks the "Payment" control in the application with payment function installed on his payment terminal to make the payment terminal display the payment voucher, where the payment voucher is such as a QR code, barcode, etc.; the payment terminal displays the payment voucher in response to the user's operation; the user provides the payment voucher displayed by his payment terminal to the merchant's payment terminal, such as pointing the payment voucher at the camera of the payment terminal; the payment terminal obtains the user's payment-related information from the payment voucher displayed by the payment terminal, such as the payment amount, payment account, device identification of the payment terminal, etc.; and generates payment information based on the obtained payment-related information, the terminal identification of the payment terminal, etc., and sends a payment request to the payment server based on the payment information; the payment server receives the payment request sent by the payment terminal.

Step 104, sending a security authentication request to the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display the first dynamic authentication information;

Taking into account that there may be malicious payment terminals in the user's environment, such as cameras maliciously hidden by others, the malicious payment terminal may obtain the payment credentials displayed by the user's payment terminal and perform malicious payment operations, thereby causing economic losses to the user; based on this, in order to improve payment security, in an embodiment of the present application, when the payment server receives a payment request sent by the payment terminal, it sends a security authentication request to the payment terminal, so that the payment terminal displays the first dynamic authentication information, and performs security authentication on the payment terminal based on the first dynamic authentication information.

Optionally, the security authentication request includes a video of a first preset length, or a plurality of pictures in a fixed order, or continuous transformation instructions, etc.

As an example, the security authentication request includes a video of a first preset length, and correspondingly, the first dynamic authentication information includes the video of the first preset length. Step 104 includes: the payment server randomly generates a video of the first preset length, and sends a security authentication request to the corresponding payment terminal based on the generated video of the first preset length and the terminal identifier of the payment terminal included in the payment information; or, the payment server randomly selects a video from a plurality of specified videos of the first preset length, and sends a security authentication request to the corresponding payment terminal based on the selected video and the terminal identifier of the payment terminal included in the payment information; or, the payment server randomly intercepts a video of the first preset length from a specified video of a third preset length, and sends a security authentication request to the corresponding payment terminal based on the intercepted video and the terminal identifier of the payment terminal included in the payment information; wherein the third preset length is greater than the first preset length.

As another example, the security authentication request includes several pictures in a fixed sorting manner, and correspondingly, the first dynamic authentication information includes several pictures in the fixed sorting manner. Step 104 includes: the payment server randomly generates several pictures, sorts the pictures according to a first preset sorting manner, and sends a security authentication request to the corresponding payment terminal based on the sorted pictures and the terminal identification of the payment terminal included in the payment information; or, the payment server randomly selects several pictures from a specified picture library, sorts the pictures according to a first preset sorting manner, and sends a security authentication request to the corresponding payment terminal based on the sorted pictures and the terminal identification of the payment terminal included in the payment information, wherein the picture library includes a large number of pictures; or, the payment server randomly selects a group of pictures from a specified plurality of groups of pictures, and sends a security authentication request to the corresponding payment terminal based on the selected group of pictures and the terminal identification of the payment terminal included in the payment information, wherein each group of pictures includes several pictures in a fixed sorting manner.

As another example, the security authentication request includes continuous transformation instructions, and correspondingly, the first dynamic authentication information includes information obtained by changing the payment credential according to the transformation instruction, such as continuously rotating, resynthesizing, and other transformations of the payment credential according to the transformation instruction; step 104 includes: the payment server randomly selects a preset number of transformation instructions from a specified instruction library, sorts the selected transformation instructions according to a second preset sorting method to obtain continuous transformation instructions, and sends a security authentication request to the corresponding payment terminal based on the continuous transformation instructions and the terminal identification of the payment terminal included in the payment information; or, the payment server randomly selects a group of instructions from a specified plurality of groups of instructions, and sends a security authentication request to the corresponding payment terminal based on the selected group of instructions and the terminal identification of the payment terminal included in the payment information, wherein each group of instructions includes a plurality of continuous instructions.

It should be pointed out that the above-mentioned first preset sorting method, second preset sorting method, first preset duration, third preset duration, preset quantity, etc. can all be set according to needs in actual applications; among them, the first preset sorting method and the second preset sorting method can be the same or different, for example, both are sorted according to the selection order, etc.

Further, in order to avoid authentication failure due to the user not providing the first dynamic authentication information displayed by the payment terminal to the payment terminal in a timely manner, as shown in FIG3 , in one embodiment of this specification, step 104 includes:

Step 104-2, sending security authentication prompt information to the payment terminal, so that the payment terminal prompts the user to perform security authentication;

Step 104 - 4 , if the prompt completion information sent by the payment terminal is received, a security authentication request is sent to the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display the first dynamic authentication information.

By sending security authentication prompt information to the payment terminal in advance, the payment terminal can prompt the user to ensure that the user displays the display interface of the payment terminal to the payment terminal in time to ensure the smooth progress of security authentication.

Step 106, receiving feedback information sent by the payment terminal, wherein the feedback information includes second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information;

Specifically, when the payment terminal receives a security authentication request sent by the payment server, it displays the first dynamic authentication information according to the security authentication request, the payment terminal collects the second dynamic authentication information based on the first dynamic authentication information displayed by the payment terminal, and sends feedback information to the payment server based on the collected second dynamic authentication information, and the payment server receives the feedback information sent by the payment terminal; wherein the feedback information may also include information such as the terminal identification of the payment terminal.

Step 108, performing security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information;

In order to enable the payment server to effectively distinguish each payment request, thereby performing security authentication on the corresponding payment terminal and then performing an accurate payment transaction, as shown in FIG. 4 , after step 104, the following steps are further included:

Step 105, the first dynamic authentication information or the index information of the first dynamic authentication information is associated with the payment information and saved;

Optionally, when the security authentication request includes a video of a first preset duration, after the payment server sends the security authentication request to the payment terminal, the video of the first preset duration is used as the first dynamic authentication information, and the first dynamic authentication information is associated with the payment information and saved; or, the preset index information of the randomly selected video is associated with the payment information and saved. When the security authentication request includes several pictures in a fixed sorting method, after the payment server sends the security authentication request to the payment terminal, the several pictures in the fixed sorting method are used as the first dynamic authentication information, and the first dynamic authentication information is associated with the payment information and saved; or, the preset index information of the several pictures is sorted according to the sorting method of the several pictures, and the sorted index information is associated with the payment information and saved; or, the preset index information of a selected group of pictures is associated with the payment information and saved. When the security authentication request includes continuous transformation instructions, after the payment server sends the security authentication request to the payment terminal, the payment credentials in the payment information are transformed in sequence according to the continuous transformation instructions to obtain first dynamic authentication information, and the obtained first dynamic authentication information is associated with the payment information and saved; or, the continuous transformation instructions are used as index information of the first dynamic authentication information, and the index information is associated with the payment information and saved.

Corresponding to step 105, as shown in FIG4 , step 108 includes:

Step 108-2, determining the associated first dynamic authentication information according to the terminal identification of the payment terminal included in the feedback information;

Optionally, according to the terminal identification of the payment terminal included in the feedback information, the associated saved first dynamic authentication information is queried; or, according to the terminal identification of the payment terminal included in the feedback information, the associated saved index information is queried, and the corresponding first dynamic authentication information is obtained according to the queried index information.

Step 108 - 4 , performing security authentication on the payment terminal according to the determined first dynamic authentication information and the received second dynamic authentication information.

Furthermore, considering that the payment terminal displays the first dynamic authentication information at a high speed according to the security authentication request, when the user fails to provide the first dynamic information displayed by the payment terminal to the payment terminal in a timely manner, the payment terminal is likely to fail to collect the first frame of video or the first picture, thereby causing the subsequent security authentication to fail; based on this, in the embodiment of the present application, upon receiving the security authentication request, the payment terminal repeatedly displays the first dynamic authentication within the second preset time length to ensure that the payment terminal can collect at least one complete first dynamic authentication information; wherein, the second preset time length is greater than the first preset time length, and it can be set as needed in actual applications to ensure that the first dynamic authentication information can be displayed multiple times. Correspondingly, if the security authentication request includes the first dynamic authentication information, and the first dynamic authentication information includes a video of the first preset time length or a number of pictures in a fixed order, etc., then step 108 further includes:

Determine whether the second dynamic authentication information includes the first dynamic authentication information, and if so, determine that the authentication is successful; if not, determine that the authentication is not successful.

For example, the first dynamic authentication information includes three pictures. For the convenience of description, the three pictures are recorded as Picture 1, Picture 2, and Picture 3 in order according to the sorting method, that is, the first dynamic authentication information is "Picture 1-Picture 2-Picture 3"; the order of pictures included in the second dynamic authentication information is "Picture 1-Picture 2-Picture 3-Picture 1-Picture 2", and the second dynamic authentication information includes the first dynamic authentication information, determining that the authentication is successful; for another example, the order of pictures included in the second dynamic authentication information is "Picture 2-Picture 3-Picture 1-Picture 2-Picture 3", and the second dynamic authentication information includes the first dynamic authentication information, determining that the authentication is successful.

Furthermore, if the security authentication request includes continuous transformation instructions, step 108 includes:

It is determined whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction. If so, it is determined that the authentication is passed; if not, it is determined that the authentication is not passed.

Therefore, the payment terminal is securely authenticated based on the first dynamic authentication information and the second dynamic authentication information, which effectively avoids the occurrence of malicious payment terminal performing malicious payment operations, ensures the property safety of the user, and improves the security of mobile payment.

Step 110: If the authentication is successful, the payment transaction is performed according to the payment information.

Specifically, if the authentication is passed, the payment amount, payment account and receiving account are obtained from the payment information; the payment transaction is performed based on the obtained payment amount, payment account and receiving account; the money corresponding to the payment amount is deducted from the payment account, and the money corresponding to the payment amount is added to the receiving account.

In order to let the user and the merchant know the payment result, after step 110, the process further includes: sending the payment result to the payment terminal and the payment terminal respectively.

In the payment method applied to the payment server provided in the embodiment of the present application, when the payment server receives a payment request sent by the payment terminal, it sends a security authentication request to the payment terminal to instruct the payment terminal to display first dynamic authentication information; and receives feedback information sent by the payment terminal, and performs security authentication on the payment terminal according to the second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information displayed by the payment terminal included in the feedback information; and executes the payment transaction when the authentication is passed instead of directly performing the payment transaction, which effectively avoids the occurrence of malicious payment terminals performing malicious payment collection operations, thereby ensuring the property safety of users and improving the security of mobile payments.

Corresponding to the payment method described in Figures 2 to 4 above, an embodiment of the present application also provides another payment method, which is applied to the payment terminal in the application scenario shown in Figure 1; Figure 5 is a flow chart of a payment method applied to a payment terminal provided by an embodiment of the present application. Referring to Figure 5, the method includes the following steps:

Step 202, in response to the user's payment operation, display the payment voucher so that the payment terminal generates payment information based on the payment voucher and sends a payment request to the payment server according to the payment information;

Specifically, when a user needs to pay for the goods he purchased or the services he enjoys, he operates the application with payment function installed on his payment terminal to make payment. For example, the user clicks the "Payment" control in the application with payment function installed on his payment terminal to make the payment terminal display the payment voucher, where the payment voucher is such as a QR code, barcode, etc., and the payment voucher includes information such as the payment account, payment amount, and terminal identification of the payment terminal; the payment terminal displays the payment voucher in response to the user's payment operation.

Step 204, receiving a security authentication request sent by the payment server;

In order to prevent malicious payment terminals from performing malicious payment operations, in an embodiment of the present application, when the payment server receives a payment request sent by the payment terminal, it sends a security authentication request to the corresponding payment terminal based on the terminal identifier of the payment terminal included in the payment information to perform security authentication on the payment terminal.

Optionally, the security authentication request includes a terminal identification of the payment terminal. Accordingly, after step 204, the following steps are further included:

Determine whether the terminal identification of the payment terminal included in the security authentication request is consistent with its own terminal identification. If they are consistent, execute step 206; if they are inconsistent, send authentication failure information to the payment server, so that the payment server sends the payment result of payment failure to the payment terminal.

Step 206, based on the security authentication request, the first dynamic authentication information is displayed, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal based on the first dynamic authentication information and the second dynamic authentication information.

Optionally, in step 206, displaying the first dynamic authentication information according to the security authentication request includes:

Step 206-2, obtaining first dynamic authentication information from the security authentication request, wherein the first dynamic authentication information includes a video of a first preset duration or a plurality of pictures in a fixed order;

Step 206-4, repeatedly displaying the obtained video of the first preset duration or the plurality of pictures in a fixed order within a second preset duration; wherein the second preset duration is greater than the first preset duration.

Specifically, the acquired video of the first preset duration is repeatedly displayed within the second preset duration; or, according to the sorting method of the acquired pictures, each picture is repeatedly displayed in sequence within the second preset duration; for example, the acquired pictures in a fixed sorting method are picture 1, picture 2, picture 3, then picture 1, picture 2, picture 3, picture 1, picture 2, etc. are displayed in sequence within the second preset duration.

Optionally, in step 206, displaying the first dynamic authentication information according to the security authentication request includes:

Step 206-2, obtaining continuous transformation instructions from the security authentication request;

Step 206-4, transforming the payment credential according to the acquired transformation instruction to obtain first dynamic authentication information;

Specifically, according to the sequence of each instruction in the continuous transformation instructions, the payment credential is transformed in accordance with each transformation instruction in sequence to obtain the first dynamic authentication information; for example, the continuous transformation instructions obtained are instruction 1, instruction 2, and instruction 3 in sequence, then the payment credential is transformed in accordance with instruction 1, instruction 2, and instruction 3 in sequence, such as rotating, flipping, resynthesizing, etc. the payment credential according to the transformation instructions.

Step 206-6', repeatedly displaying the first dynamic authentication information within a second preset time period.

The payment terminal repeatedly displays the first dynamic authentication information according to the security authentication request within the second preset time period to ensure that the payment device can collect at least one complete first dynamic authentication information, thereby ensuring the smooth progress of the security authentication operation and successfully completing the payment.

Further, in order to avoid the security authentication failure caused by the user not providing the first dynamic authentication information displayed by the payment terminal to the payment terminal in time, as shown in FIG6 , in one embodiment of the present application, before step 204, the following is further included:

Step 203-2, receiving security authentication prompt information sent by the payment server;

Step 203-4, prompting the user to perform security authentication according to the first preset prompting method;

Among them, the first preset prompt mode, such as vibration prompt, sound prompt, etc., can be set according to needs in actual application.

Step 203-6, sending a prompt completion message to the payment server so that the payment server can perform security authentication on the payment terminal.

Therefore, by prompting the user to perform security authentication, the user can promptly display the display interface of the payment terminal to the payment device, so that the payment device can collect complete authentication information, ensuring the smooth progress of security authentication.

In order to make the user aware of the payment structure, the payment server further sends the payment result to the payment terminal after the payment transaction. Correspondingly, after step 206, the following steps are also included:

Step 208, receiving the payment result sent by the payment server;

Step 210, prompting the user that authentication is complete in accordance with the second preset method, and displaying payment success information or payment failure information according to the payment result.

Among them, the second preset method can be the same as or different from the aforementioned first preset method; in this embodiment, by prompting the user that the authentication is completed, it can avoid the user from showing the display interface of the payment terminal to the payment terminal for a long time because he does not know whether the authentication is completed, which is conducive to improving the user experience.

In the payment method applied to the payment terminal provided in the embodiment of the present application, the payment terminal displays the first dynamic authentication information based on the security authentication request sent by the payment server, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information, and performs the payment transaction after the authentication is passed. It can be seen that through the embodiment of the present application, malicious payment terminals can be effectively prevented from performing malicious payment collection behaviors, thereby ensuring the property safety of users and improving the security of mobile payments.

Corresponding to the payment method described in FIGS. 2 to 4 above, based on the same technical concept, the embodiment of the present application further provides a payment server, as shown in FIG. 7 , the payment server 300 includes:

The receiving module 301 is used to receive a payment request sent by a payment terminal, wherein the payment request includes payment information generated by the payment terminal based on the payment voucher displayed by the payment terminal;

A sending module 302, configured to send a security authentication request to the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display the first dynamic authentication information;

The receiving module 301 is further configured to receive feedback information sent by the payment receiving device, wherein the feedback information includes second dynamic authentication information collected by the payment receiving terminal based on the first dynamic authentication information;

An authentication module 303, configured to perform security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information;

The processing module 304 is used to perform a payment transaction according to the payment information when the authentication module passes the authentication.

Optionally, the payment information includes a terminal identifier of the payment terminal, and the feedback information also includes a terminal identifier of the payment terminal; the payment server further includes: a storage module;

The storage module is used to associate and store the first dynamic authentication information or the index information of the first dynamic authentication information with the payment information;

Correspondingly, the authentication module 303 is used to determine the associated first dynamic authentication information according to the terminal identification of the payment terminal included in the feedback information; and

Perform security authentication on the payment terminal according to the determined first dynamic authentication information and the received second dynamic authentication information.

Optionally, the security authentication request includes the first dynamic authentication information, and the first dynamic authentication information includes a video of a first preset duration or a plurality of pictures in a fixed order;

The authentication module 303 is used to determine whether the second dynamic authentication information includes the first dynamic authentication information; if so, determine that the authentication is successful; if not, determine that the authentication is not successful.

Optionally, the security authentication request includes continuous transformation instructions;

The authentication module 303 is used to determine whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction; if so, it is determined that the authentication is passed; if not, it is determined that the authentication is not passed.

Optionally, the sending module 302 is specifically configured to send security authentication prompt information to the payment terminal, so that the payment terminal prompts the user to perform security authentication; and

If the prompt completion information sent by the payment terminal is received, a security authentication request is sent to the payment terminal.

Optionally, the processing module 304 obtains the payment amount, the payment account and the receiving account from the payment information; and

A payment transaction is performed based on the payment amount, the payment account and the receiving account.

Optionally, the sending module 302 is further configured to send payment results to the payment terminal and the payment terminal respectively after the processing module 304 performs a payment transaction according to the payment information.

The payment server provided in the embodiment of the present application, when receiving a payment request sent by a payment terminal, sends a security authentication request to the payment terminal to instruct the payment terminal to display first dynamic authentication information; and, receives feedback information sent by the payment terminal, and performs security authentication on the payment terminal according to the second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information displayed by the payment terminal included in the feedback information; and executes the payment transaction when the authentication is passed, rather than directly performing the payment transaction, effectively avoiding the occurrence of malicious payment terminals performing malicious payment operations, ensuring the property safety of users, and improving the security of mobile payments.

The payment server provided in the embodiment of the present application can implement the various processes implemented by the payment server in the method embodiments of Figures 2 to 4. To avoid repetition, they are not described here. In addition, it should be noted that the various components of the payment server of the present application are logically divided according to the functions to be implemented, but the present application is not limited thereto, and the various components can be re-divided or combined as needed.

Furthermore, an embodiment of the present application also provides a payment server, including a processor, a memory, and a computer program stored in the memory and executable on the processor. When the computer program is executed by the processor, the various processes of the above-mentioned payment method embodiment applied to the payment server are implemented, and the same technical effect can be achieved. To avoid repetition, it will not be repeated here.

In addition, an embodiment of the present application also provides a computer-readable storage medium, on which a computer program is stored. When the computer program is executed by a processor, the various processes of the above-mentioned payment method embodiment applied to the payment server are implemented, and the same technical effect can be achieved. To avoid repetition, it will not be repeated here.

Further, corresponding to the payment method described in FIG. 5 and FIG. 6 , based on the same technical concept, the embodiment of the present application further provides a payment terminal, as shown in FIG. 8 , where the payment terminal 400 includes:

A display module 401 is used to display the payment voucher in response to the user's payment operation, so that the payment terminal generates payment information based on the payment voucher and sends a payment request to the payment server according to the payment information;

Receiving module 402, used to receive the security authentication request sent by the payment server;

The display module 401 is also used to display the first dynamic authentication information according to the security authentication request, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information.

Optionally, the display module 401 obtains first dynamic authentication information from the security authentication information, where the first dynamic authentication information includes a video of a first preset duration or a plurality of pictures in a fixed order; and

Repeatedly display the video of the first preset duration or several pictures in a fixed order obtained within a second preset duration; wherein the second preset duration is greater than the first preset duration.

Optionally, the display module 401 obtains continuous transformation instructions from the security authentication information; and

transforming the payment credential according to the transformation instruction to obtain first dynamic authentication information;

The first dynamic authentication information obtained is repeatedly displayed within a second preset time period.

Optionally, the payment terminal further includes: a first prompting module and a sending module;

Correspondingly, the receiving module 402, before receiving the security authentication request sent by the payment server, also receives security authentication prompt information sent by the payment server;

The first prompt module prompts the user to perform security authentication according to a first preset prompt method;

The sending module sends prompt completion information to the payment server, so that the payment server performs security authentication on the payment terminal.

Optionally, the payment terminal further includes: a second prompt module;

The receiving module 402 is further configured to receive a payment result sent by the payment server after the display module 401 displays the first dynamic authentication information;

The second prompting module prompts the user that the authentication is complete in a second preset manner when the receiving module 402 receives the payment result;

The display module 401 also displays payment success information or payment failure information according to the payment result.

The payment terminal provided in the embodiment of the present application displays the first dynamic authentication information based on the security authentication request sent by the payment server, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information, and performs the payment transaction after the authentication is passed. It can be seen that through the embodiment of the present application, the occurrence of malicious payment terminals executing malicious payment collection can be effectively avoided, the property safety of users is ensured, and the security of mobile payment is improved.

The payment terminal provided in the embodiment of the present application can implement the various processes implemented by the payment terminal in the method embodiments of Figures 5 to 6, and will not be described here to avoid repetition. In addition, it should be noted that among the various components of the payment terminal of the present application, the components are logically divided according to the functions to be implemented, but the present application is not limited thereto, and the various components can be re-divided or combined as needed.

Corresponding to the payment method described above, based on the same technical concept, the embodiment of the present application also provides a payment system, as shown in FIG9 , the payment system 500 includes: a payment terminal 501, a payment terminal 502 and a backend payment server 503;

The payment terminal 501 is used to display the payment voucher in response to the user's payment operation; and receive the security authentication request sent by the payment server 503, and display the first dynamic authentication information according to the security authentication request;

The payment terminal 502 is used to obtain payment information from the payment voucher, send a payment request to the payment server 503 according to the payment information; and send the second dynamic authentication information collected based on the first dynamic authentication information to the payment server 503;

The payment server 503 is used to receive the payment request sent by the payment terminal 502, send a security authentication request to the payment terminal 501; and perform security authentication on the payment terminal 501 according to the first dynamic authentication information and the second dynamic authentication information. If the authentication is successful, a payment transaction is performed according to the payment information.

Optionally, the payment terminal 502 obtains payment related information of the user from the payment voucher, and generates payment information according to the payment related information and the terminal identification of the payment terminal 502;

Optionally, the payment terminal 502 sends feedback information to the payment server 503 , where the feedback information includes the second dynamic authentication information collected based on the first dynamic authentication information and the terminal identification of the payment terminal 502 .

The payment system provided in the embodiment of the present application, when the payment server receives a payment request sent by the payment terminal, sends a security authentication request to the payment terminal to instruct the payment terminal to display first dynamic authentication information; and receives feedback information sent by the payment terminal, and performs security authentication on the payment terminal according to the second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information displayed by the payment terminal included in the feedback information; and executes the payment transaction when the authentication is passed, instead of directly performing the payment transaction, which effectively avoids the occurrence of malicious payment terminals performing malicious payment collection operations, ensures the property safety of users, and improves the security of mobile payments.

It should be noted that the embodiment of the payment system in the present application and the embodiment of the payment method in the present application are based on the same inventive concept, so the specific implementation of this embodiment can refer to the implementation of the aforementioned payment method, and the repeated parts will not be repeated.

FIG. 10 is a schematic diagram of the hardware structure of a payment terminal for implementing various embodiments of the present application.

As shown in FIG10 , the payment terminal 600 includes but is not limited to: a radio frequency unit 601, a network module 602, an audio output unit 603, an input unit 604, a sensor 605, a display unit 606, a user input unit 607, an interface unit 608, a memory 609, a processor 610, and a power supply 611. It can be understood by those skilled in the art that the structure of the payment terminal shown in FIG10 does not constitute a limitation on the payment terminal, and the payment terminal may include more or fewer components than shown, or combine certain components, or arrange components differently. In an embodiment of the present invention, the payment terminal includes but is not limited to a mobile phone, a tablet computer, a laptop computer, a PDA, a vehicle-mounted terminal, a wearable device, and a pedometer.

Among them, the processor 610 is used to display the payment voucher in response to the user's payment operation, so that the payment terminal obtains payment information from the payment voucher and sends a payment request to the payment server according to the payment information; receives a security authentication request sent by the payment server; and displays the first dynamic authentication information according to the security authentication request, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server performs security authentication on the payment terminal according to the first dynamic authentication information and the second dynamic authentication information.

Based on this, malicious payment terminals can be effectively prevented from executing malicious payment collection behaviors, thus avoiding property losses of users and improving the security of mobile payments.

It should be understood that in the embodiment of the present application, the radio frequency unit 601 can be used for receiving and sending signals during information transmission or calls. Specifically, after receiving downlink data from the base station, it is sent to the processor 610 for processing; in addition, uplink data is sent to the base station. Generally, the radio frequency unit 601 includes but is not limited to an antenna, at least one amplifier, a transceiver, a coupler, a low noise amplifier, a duplexer, etc. In addition, the radio frequency unit 601 can also communicate with the network and other devices through a wireless communication system.

The payment terminal provides users with wireless broadband Internet access through the network module 602, such as helping users to send and receive emails, browse web pages, and access streaming media.

The audio output unit 603 can convert the audio data received by the RF unit 601 or the network module 602 or stored in the memory 609 into an audio signal and output it as sound. Moreover, the audio output unit 603 can also provide audio output related to a specific function performed by the payment terminal 600 (e.g., a call signal reception sound, a message reception sound, etc.). The audio output unit 603 includes a speaker, a buzzer, a receiver, etc.

The input unit 604 is used to receive audio or video signals. The input unit 604 may include a graphics processor (GPU) 6041 and a microphone 6042, and the graphics processor 6041 processes the image data of a static picture or video obtained by an image capture device (such as a camera) in a video capture mode or an image capture mode. The processed image frame can be displayed on the display unit 606. The image frame processed by the graphics processor 6041 can be stored in the memory 609 (or other storage medium) or sent via the radio frequency unit 601 or the network module 602. The microphone 6042 can receive sound and can process such sound into audio data. The processed audio data can be converted into a format output that can be sent to a mobile communication base station via the radio frequency unit 601 in the case of a telephone call mode.

The payment terminal 600 also includes at least one sensor 605, such as a light sensor, a motion sensor, and other sensors. Specifically, the light sensor includes an ambient light sensor and a proximity sensor, wherein the ambient light sensor can adjust the brightness of the display panel 6061 according to the brightness of the ambient light, and the proximity sensor can turn off the display panel 6061 and/or the backlight when the payment terminal 600 is moved to the ear. As a kind of motion sensor, the accelerometer sensor can detect the magnitude of acceleration in each direction (generally three axes), and can detect the magnitude and direction of gravity when stationary, which can be used to identify the posture of the payment terminal (such as horizontal and vertical screen switching, related games, magnetometer posture calibration), vibration recognition related functions (such as pedometer, tapping), etc.; the sensor 605 can also include a fingerprint sensor, a pressure sensor, an iris sensor, a molecular sensor, a gyroscope, a barometer, a hygrometer, a thermometer, an infrared sensor, etc., which will not be repeated here.

The display unit 606 is used to display information input by the user or information provided to the user. The display unit 606 may include a display panel 6061, which may be configured in the form of a liquid crystal display (LCD), an organic light-emitting diode (OLED), or the like.

The user input unit 607 can be used to receive input digital or character information, and to generate key signal input related to the user settings and function control of the payment terminal. Specifically, the user input unit 607 includes a touch panel 6071 and other input devices 6072. The touch panel 6071, also known as a touch screen, can collect the user's touch operation on or near it (such as the user's operation on the touch panel 6071 or near the touch panel 6071 using any suitable object or accessory such as a finger, stylus, etc.). The touch panel 6071 may include two parts: a touch detection device and a touch controller. Among them, the touch detection device detects the user's touch orientation, detects the signal brought by the touch operation, and transmits the signal to the touch controller; the touch controller receives the touch information from the touch detection device, converts it into the contact point coordinates, and then sends it to the processor 610, receives the command sent by the processor 610 and executes it. In addition, the touch panel 6071 can be implemented in various types such as resistive, capacitive, infrared and surface acoustic waves. In addition to the touch panel 6071, the user input unit 607 may also include other input devices 6072. Specifically, other input devices 6072 may include but are not limited to a physical keyboard, function keys (such as volume control keys, switch keys, etc.), a trackball, a mouse, and a joystick, which will not be described in detail here.

Furthermore, the touch panel 6071 may be covered on the display panel 6061. When the touch panel 6071 detects a touch operation on or near it, it is transmitted to the processor 610 to determine the type of the touch event, and then the processor 610 provides a corresponding visual output on the display panel 6061 according to the type of the touch event. Although in FIG9 , the touch panel 6071 and the display panel 6061 are used as two independent components to implement the input and output functions of the payment terminal, in some embodiments, the touch panel 6071 and the display panel 6061 may be integrated to implement the input and output functions of the payment terminal, which is not limited here.

The interface unit 608 is an interface for connecting an external device to the payment terminal 600. For example, the external device may include a wired or wireless headset port, an external power supply (or battery charger) port, a wired or wireless data port, a memory card port, a port for connecting a device with an identification module, an audio input/output (I/O) port, a video I/O port, a headphone port, etc. The interface unit 608 may be used to receive input (e.g., data information, power, etc.) from an external device and transmit the received input to one or more elements in the payment terminal 600 or may be used to transmit data between the payment terminal 600 and an external device.

The memory 609 can be used to store software programs and various data. The memory 609 can mainly include a program storage area and a data storage area, wherein the program storage area can store an operating system, an application required for at least one function (such as a sound playback function, an image playback function, etc.), etc.; the data storage area can store data created according to the use of the mobile phone (such as audio data, a phone book, etc.), etc. In addition, the memory 609 can include a high-speed random access memory, and can also include a non-volatile memory, such as at least one disk storage device, a flash memory device, or other volatile solid-state storage devices.

The processor 610 is the control center of the payment terminal. It uses various interfaces and lines to connect various parts of the entire payment terminal. It executes various functions of the payment terminal and processes data by running or executing software programs and/or modules stored in the memory 609, and calling data stored in the memory 609, so as to monitor the payment terminal as a whole. The processor 610 may include one or more processing units; preferably, the processor 610 may integrate an application processor and a modem processor, wherein the application processor mainly processes the operating system, user interface and application programs, etc., and the modem processor mainly processes wireless communications. It is understandable that the above-mentioned modem processor may not be integrated into the processor 610.

The payment terminal 600 may also include a power supply 611 (such as a battery) for supplying power to various components. Preferably, the power supply 611 may be logically connected to the processor 610 via a power management system, thereby implementing functions such as charging, discharging, and power consumption management through the power management system.

In addition, the payment terminal 600 includes some functional modules not shown, which will not be described in detail here.

Preferably, an embodiment of the present invention further provides a payment terminal, comprising a processor 610, a memory 609, and a computer program stored in the memory 609 and executable on the processor 610. When the computer program is executed by the processor 610, each process of the above-mentioned method embodiment applied to the payment terminal is implemented, and the same technical effect can be achieved. To avoid repetition, it will not be described here.

The embodiment of the present application also provides a computer-readable storage medium, on which a computer program is stored, and when the computer program is executed by a processor, each process of the payment method embodiment applied to the payment terminal is implemented, and the same technical effect can be achieved. To avoid repetition, it is not repeated here. The computer-readable storage medium is, for example, a read-only memory (ROM), a random access memory (RAM), a magnetic disk or an optical disk.

Those skilled in the art will appreciate that embodiments of the present invention may be provided as methods, systems, or computer program products. Therefore, the present invention may take the form of a complete hardware embodiment, a complete software embodiment, or an embodiment combining software and hardware. Moreover, the present invention may take the form of a computer program product implemented on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) containing computer-usable program code.

The present invention is described with reference to the flowchart and/or block diagram of the method, device (system), and computer program product according to the embodiment of the present invention. It should be understood that each process and/or box in the flowchart and/or block diagram, as well as the combination of the process and/or box in the flowchart and/or block diagram can be implemented by computer program instructions. These computer program instructions can be provided to a processor of a general-purpose computer, a special-purpose computer, an embedded processor or other programmable data processing device to produce a machine, so that the instructions executed by the processor of the computer or other programmable data processing device produce a device for implementing the functions specified in one or more processes in the flowchart and/or one or more boxes in the block diagram.

These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing device to work in a specific manner, so that the instructions stored in the computer-readable memory produce a manufactured product including an instruction device that implements the functions specified in one or more processes in the flowchart and/or one or more boxes in the block diagram.

These computer program instructions may also be loaded onto a computer or other programmable data processing device so that a series of operational steps are executed on the computer or other programmable device to produce a computer-implemented process, whereby the instructions executed on the computer or other programmable device provide steps for implementing the functions specified in one or more processes in the flowchart and/or one or more boxes in the block diagram.

In a typical configuration, a computing device includes one or more processors (CPU), input/output interfaces, network interfaces, and memory.

The memory may include non-permanent storage in a computer-readable medium, random access memory (RAM) and/or non-volatile memory in the form of read-only memory (ROM) or flash RAM. The memory is an example of a computer-readable medium.

Computer readable media include permanent and non-permanent, removable and non-removable media that can be implemented by any method or technology to store information. Information can be computer readable instructions, data structures, program modules or other data. Examples of computer storage media include, but are not limited to, phase change memory (PRAM), static random access memory (SRAM), dynamic random access memory (DRAM), other types of random access memory (RAM), read-only memory (ROM), electrically erasable programmable read-only memory (EEPROM), flash memory or other memory technology, compact disk read-only memory (CD-ROM), digital versatile disk (DVD) or other optical storage, magnetic cassettes, magnetic tape magnetic disk storage or other magnetic storage devices or any other non-transmission media that can be used to store information that can be accessed by a computing device. As defined herein, computer readable media does not include temporary computer readable media (transitory media), such as modulated data signals and carrier waves.

It should also be noted that the terms "include", "comprises" or any other variations thereof are intended to cover non-exclusive inclusion, so that a process, method, commodity or device including a series of elements includes not only those elements, but also other elements not explicitly listed, or also includes elements inherent to such process, method, commodity or device. In the absence of more restrictions, the elements defined by the sentence "comprises a ..." do not exclude the existence of other identical elements in the process, method, commodity or device including the elements.

Those skilled in the art will appreciate that the embodiments of the present application may be provided as methods, systems or computer program products. Therefore, the present application may adopt the form of a complete hardware embodiment, a complete software embodiment or an embodiment in combination with software and hardware. Moreover, the present application may adopt the form of a computer program product implemented on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) that contain computer-usable program code.

The above is only an embodiment of the present application and is not intended to limit the present application. For those skilled in the art, the present application may have various changes and variations. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the present application should be included in the scope of the claims of the present application.

Claims (11)

1. A payment method, applied to a payment server, comprising: Receiving a payment request sent by a payment terminal, wherein the payment request includes payment information generated by the payment terminal based on a payment voucher displayed by the payment terminal; the payment information includes a terminal identifier of the payment terminal and a terminal identifier of the payment terminal; Sending a security authentication request to the payment terminal according to the terminal identification of the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display first dynamic authentication information, the security authentication request includes the first dynamic authentication information, the security authentication request includes continuous transformation instructions, and the first dynamic authentication information includes information obtained by changing the payment credential according to the transformation instruction; Associating and saving the first dynamic authentication information or the index information of the first dynamic authentication information with the payment information; receiving feedback information sent by the payment terminal, wherein the feedback information includes a terminal identifier of the payment terminal and second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information; Determine whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction; if so, determine that the authentication is passed; if not, determine that the authentication is not passed; wherein the first dynamic authentication information is the associated first dynamic authentication information determined according to the terminal identifier of the payment terminal included in the feedback information; If the authentication is successful, the payment transaction is performed according to the payment information. 2. The method according to claim 1, characterized in that the sending of a security authentication request to the payment terminal comprises: Sending security authentication prompt information to the payment terminal so that the payment terminal prompts the user to perform security authentication; If the prompt completion information sent by the payment terminal is received, a security authentication request is sent to the payment terminal. 3. A payment method, applied to a payment terminal, comprising: In response to a user's payment operation, displaying a payment voucher so that the payment terminal generates payment information based on the payment voucher and sends a payment request to a payment server according to the payment information; the payment information includes a terminal identifier of the payment terminal; receiving a security authentication request sent by the payment server, the security authentication request including first dynamic authentication information, the security authentication request including continuous transformation instructions; the first dynamic authentication information including information obtained by changing the payment credential according to the transformation instruction; Obtain continuous transformation instructions from the security authentication request; transform the payment credential according to the transformation instruction to obtain first dynamic authentication information; repeatedly display the first dynamic authentication information within a second preset time period, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server determines whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction; if so, determine that the authentication is passed; if not, determine that the authentication is not passed. 4. The method according to claim 3, characterized in that before receiving the security authentication request sent by the payment server, it also includes: Receiving security authentication prompt information sent by the payment server; Prompt the user to perform security authentication according to a first preset prompting method; Sending a prompt completion message to the payment server so that the payment server performs security authentication on the payment terminal. 5. A payment server, comprising: A receiving module, configured to receive a payment request sent by a payment receiving terminal, wherein the payment request includes payment information generated by the payment receiving terminal based on the payment voucher displayed by the payment terminal; the payment information includes a terminal identifier of the payment terminal and a terminal identifier of the payment receiving terminal; a sending module, configured to send a security authentication request to the payment terminal according to the terminal identification of the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display first dynamic authentication information, the security authentication request includes the first dynamic authentication information, the security authentication request includes continuous transformation instructions, and the first dynamic authentication information includes information obtained by changing the payment credential according to the transformation instruction; A saving module, used to associate and save the first dynamic authentication information or the index information of the first dynamic authentication information with the payment information; The receiving module is further used to receive feedback information sent by the payment terminal, wherein the feedback information includes a terminal identifier of the payment terminal and second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information; an authentication module, used to determine whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction; if so, determining that the authentication is passed; if not, determining that the authentication is not passed; wherein the first dynamic authentication information is the associated first dynamic authentication information determined according to the terminal identification of the payment terminal included in the feedback information; The processing module is used to perform a payment transaction according to the payment information when the authentication module passes the authentication. 6. A payment terminal, comprising: a display module, configured to display the payment voucher in response to the user's payment operation, so that the payment terminal generates payment information based on the payment voucher and sends a payment request to the payment server according to the payment information; the payment information includes the terminal identification of the payment terminal and the terminal identification of the payment terminal; A receiving module, configured to receive a security authentication request sent by the payment server, wherein the security authentication request includes first dynamic authentication information, and the security authentication request includes continuous transformation instructions; the first dynamic authentication information includes information obtained by changing the payment credential according to the transformation instruction; The display module is further used to display the first dynamic authentication information according to the security authentication request, so that the payment terminal sends the second dynamic authentication information collected based on the first dynamic authentication information to the payment server, so that the payment server determines whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction; if so, it is determined that the authentication is passed; if not, it is determined that the authentication is not passed; In the process of displaying the first dynamic authentication information according to the security authentication request, the display module is used to obtain continuous transformation instructions from the security authentication request; transform the payment credential according to the transformation instruction to obtain the first dynamic authentication information; and repeatedly display the first dynamic authentication information within a second preset time period. 7. A payment system, characterized by comprising: a payment terminal, a payment terminal and a payment server; The payment terminal is configured to display the payment voucher in response to the user's payment operation; and receive a security authentication request sent by the payment server, and obtain a continuous transformation instruction from the security authentication request; transform the payment voucher according to the transformation instruction to obtain first dynamic authentication information; and repeatedly display the first dynamic authentication information within a second preset time period; The payment terminal is used to generate payment information based on the payment voucher, send a payment request to the payment server according to the payment information; and send the second dynamic authentication information collected based on the first dynamic authentication information to the payment server; the payment information includes the terminal identification of the payment terminal and the terminal identification of the payment terminal; The payment server is used to receive the payment request sent by the payment terminal, and send a security authentication request to the payment terminal according to the terminal identification of the payment terminal; wherein the security authentication request is used to instruct the payment terminal to display the first dynamic authentication information, the security authentication request includes the first dynamic authentication information, and the security authentication request includes continuous transformation instructions; the first dynamic authentication information includes information obtained by changing the payment credential according to the transformation instruction; the first dynamic authentication information or the index information of the first dynamic authentication information is associated with the payment information and saved; receiving feedback information sent by the payment terminal, wherein the feedback information includes the terminal identification of the payment terminal and the second dynamic authentication information collected by the payment terminal based on the first dynamic authentication information; determining whether the second dynamic authentication information includes the first dynamic authentication information corresponding to the transformation instruction; if so, determining that the authentication is passed; if not, determining that the authentication is not passed; wherein the first dynamic authentication information is the associated first dynamic authentication information determined according to the terminal identification of the payment terminal included in the feedback information; if the authentication is passed, performing a payment transaction according to the payment information. 8. A payment server, comprising: a processor, a memory, and a computer program stored in the memory and executable on the processor, wherein the computer program implements the steps of the payment method according to any one of claims 1 to 2 when executed by the processor. 9. A payment terminal, comprising: a processor, a memory, and a computer program stored in the memory and executable on the processor, wherein the computer program implements the steps of the payment method according to any one of claims 3 to 4 when executed by the processor. 10. A computer-readable storage medium, characterized in that a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the steps of the payment method according to any one of claims 1 to 2 are implemented. 11. A computer-readable storage medium, characterized in that a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the steps of the payment method according to any one of claims 3 to 4 are implemented.