[go: up one dir, main page]

CN111507727B - Security control method for non-inductive payment - Google Patents

Security control method for non-inductive payment Download PDF

Info

Publication number
CN111507727B
CN111507727B CN202010313414.5A CN202010313414A CN111507727B CN 111507727 B CN111507727 B CN 111507727B CN 202010313414 A CN202010313414 A CN 202010313414A CN 111507727 B CN111507727 B CN 111507727B
Authority
CN
China
Prior art keywords
fueling
paid
refueling
payment
order information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010313414.5A
Other languages
Chinese (zh)
Other versions
CN111507727A (en
Inventor
马万龙
牛立
王石峰
罗赛
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Chezhubang Beijing Technology Co Ltd
Original Assignee
Chezhubang Beijing Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Chezhubang Beijing Technology Co Ltd filed Critical Chezhubang Beijing Technology Co Ltd
Priority to CN202010313414.5A priority Critical patent/CN111507727B/en
Priority to CN202311696391.0A priority patent/CN117726338A/en
Publication of CN111507727A publication Critical patent/CN111507727A/en
Application granted granted Critical
Publication of CN111507727B publication Critical patent/CN111507727B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K17/00Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/02Payment architectures, schemes or protocols involving a neutral party, e.g. certification authority, notary or trusted third party [TTP]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/405Establishing or using transaction specific rules

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Strategic Management (AREA)
  • Computer Security & Cryptography (AREA)
  • General Business, Economics & Management (AREA)
  • Finance (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Loading And Unloading Of Fuel Tanks Or Ships (AREA)

Abstract

The invention provides a security control method for non-inductive payment, which comprises the following steps: receiving a fueling request message; obtaining target user account information according to the tag ID, and inquiring whether pre-fueling order information to be paid exists according to the gas station ID, the oil gun ID and the target user account information; when the first confirmation message exists, generating a first confirmation message and sending the first confirmation message to the refueling equipment; receiving a refueling completion message sent by a refueling device; encrypting the pre-fueling order information to be paid through a first symmetric key to obtain first encrypted data; extracting abstracts from the pre-fueling order information to be paid to obtain abstracts; signing the abstract through a first private key to obtain a signed abstract; encrypting the first symmetric key through the second public key to obtain an encrypted first symmetric key; and sending the encrypted data to a third party server so that the third party server can make the secret payment. Therefore, the safety of the payment process is ensured, and the payment time is saved.

Description

无感支付的安全性控制方法Security control method for contactless payment

技术领域Technical field

本发明涉及数据处理领域,尤其涉及一种用于加油站的无感支付的安全性控制方法。The invention relates to the field of data processing, and in particular to a security control method for non-inductive payment at a gas station.

背景技术Background technique

人们在加油站除了会看到“严禁烟火”的警示语外,也经常会看到“禁止打手机”的相关标语,加油站是一个特殊场所,容易造成汽油、天然气等易爆性气体泄漏。In addition to the warnings "No Fireworks", people often see slogans "No Cell Phones" at gas stations. The gas station is a special place that can easily cause the leakage of explosive gases such as gasoline and natural gas.

现有技术中,用户加完油往往需要下车支付,大多数时候支付的时间甚至都超过了加油的时间,且支付的过程中可能存在货币污损等情况,导致支付过程不安全。In the existing technology, users often need to get out of the car to pay after refueling. Most of the time, the payment time even exceeds the refueling time, and there may be currency contamination during the payment process, making the payment process unsafe.

发明内容Contents of the invention

本发明实施例的目的是提供一种无感支付的安全性控制方法,以解决现有技术中在加油站进行支付时所存在的支付过程不安全的问题。The purpose of the embodiments of the present invention is to provide a security control method for senseless payment, so as to solve the problem of unsafe payment process that exists in the prior art when making payments at gas stations.

为解决上述问题,第一方面,本发明提供了一种无感支付的安全性控制方法,所述方法包括:In order to solve the above problems, in the first aspect, the present invention provides a security control method for senseless payment. The method includes:

接收加油请求消息;其中,所述加油请求消息包括标签ID、加油站ID和油枪ID;Receive a refueling request message; wherein the refueling request message includes a tag ID, a gas station ID, and a fuel gun ID;

根据所述标签ID,查询预设的标签ID与用户账户信息对照表,得到标签ID对应的目标用户账户信息;According to the tag ID, query the preset tag ID and user account information comparison table to obtain the target user account information corresponding to the tag ID;

根据所述加油站ID、油枪ID和所述目标用户账户信息,查询是否存在与所述加油站ID、油枪ID和所述目标用户账户信息对应的待支付的预加油订单信息;所述待支付的预加油订单信息包括预加油的加油站ID、预加油的油枪ID、预加油的加油升数和预加油的消费金额;According to the gas station ID, oil gun ID and the target user account information, query whether there is pre-refueling order information to be paid corresponding to the gas station ID, oil gun ID and the target user account information; The pre-refueling order information to be paid includes the ID of the gas station for pre-refueling, the ID of the oil gun for pre-refueling, the number of liters of pre-refueling and the consumption amount of pre-refueling;

当所述目标用户账户信息中存在与所述加油站ID和油枪ID对应的待支付的预加油订单信息时,生成第一确认消息;所述第一确认消息包括预加油的加油升数;When there is pre-refueling order information to be paid corresponding to the gas station ID and oil gun ID in the target user account information, a first confirmation message is generated; the first confirmation message includes the number of liters of pre-refueling;

将所述第一确认消息发送给所述加油设备,以指示所述加油设备根据所述预加油的加油升数进行加油;Send the first confirmation message to the refueling equipment to instruct the refueling equipment to refuel according to the pre-refueling liters;

接收所述加油设备发送的加油完成消息;Receive the refueling completion message sent by the refueling equipment;

对所述待支付的预加油订单信息通过第一对称密钥进行加密,得到第一加密数据;Encrypt the pre-fuel order information to be paid using a first symmetric key to obtain first encrypted data;

对所述待支付的预加油订单信息提取摘要,得到待支付的预加油订单信息的摘要;Extract a summary of the pre-refueling order information to be paid, and obtain a summary of the pre-refueling order information to be paid;

对所述摘要通过第一私钥进行签名,得到签名后的摘要;Sign the digest with the first private key to obtain the signed digest;

对所述第一对称密钥通过第二公钥进行加密,得到加密后的第一对称密钥;Encrypt the first symmetric key with the second public key to obtain an encrypted first symmetric key;

将所述第一加密数据、所述签名后的摘要和所述加密后的第一对称密钥进行打包,得到加密后的数据;Pack the first encrypted data, the signed digest and the encrypted first symmetric key to obtain encrypted data;

将所述加密后的数据发送给第三方服务器,以使所述第三方服务器进行免密支付。The encrypted data is sent to a third-party server so that the third-party server can perform password-free payment.

在一种可能的实现方式中,所述方法之前还包括:In a possible implementation, the method also includes:

接收用户终端发送的预加油订单信息;所述预加油订单信息包括用户ID、预加油的加油站ID、预加油的油枪ID、预加油的加油升数和预加油的消费金额;Receive pre-refueling order information sent by the user terminal; the pre-refueling order information includes the user ID, the ID of the gas station for pre-refueling, the ID of the oil gun for pre-refueling, the number of liters of pre-refueling and the consumption amount of pre-refueling;

根据所述用户ID,查询所述用户ID对应的用户账户信息的信用能力信息;所述信用能力信息包括用户的信用分数;According to the user ID, query the credit capability information of the user account information corresponding to the user ID; the credit capability information includes the user's credit score;

当所述信用分数不小于预设的分数阈值时,查询所述用户账户信息对应的用户的支付账号的第一支付能力信息;When the credit score is not less than a preset score threshold, query the first payment ability information of the user's payment account corresponding to the user account information;

当所述第一支付能力信息不小于预加油的消费金额时,生成待支付的预加油订单信息。When the first payment ability information is not less than the pre-fuel consumption amount, pre-fuel order information to be paid is generated.

在一种可能的实现方式中,所述方法还包括:In a possible implementation, the method further includes:

当不存在与所述加油站ID和油枪ID对应的待支付的预加油订单信息时,根据所述目标用户账户信息,查询所述目标用户账户信息对应的用户ID的信用能力信息;所述信用能力信息包括用户的信用分数;When there is no pre-refueling order information to be paid corresponding to the gas station ID and oil gun ID, query the credit capability information of the user ID corresponding to the target user account information according to the target user account information; Credit ability information includes the user’s credit score;

当所述信用分数不小于预设的分数阈值时,查询所述目标用户账户信息对应的用户的支付账号的第二支付能力信息;When the credit score is not less than a preset score threshold, query the second payment ability information of the user's payment account corresponding to the target user account information;

当所述第二支付能力信息不小于预设阈值时,生成第二确认消息;When the second payment ability information is not less than the preset threshold, generate a second confirmation message;

将所述第二确认消息发送给所述加油设备,所述第二确认消息用于通知所述加油设备进行加油;Send the second confirmation message to the refueling equipment, where the second confirmation message is used to notify the refueling equipment to perform refueling;

当加油完成后,接收加油设备发送的待支付的加油订单信息;其中,所述待支付的加油订单信息是加油设备根据加油站ID、油枪ID、当前加油升数和当前消费金额生成的;When the refueling is completed, receive the refueling order information to be paid sent by the refueling equipment; wherein the refueling order information to be paid is generated by the refueling equipment based on the gas station ID, the oil gun ID, the current refueling liters and the current consumption amount;

将所述待支付的加油订单信息发送给第三方服务器,以使所述第三方服务器进行免密支付。The refueling order information to be paid is sent to a third-party server, so that the third-party server can perform password-free payment.

在一种可能的实现方式中,所述当所述第一支付能力信息不小于预加油的消费金额时,或者,所述当所述第二支付能力信息不小于预设阈值时,所述方法还包括:In a possible implementation, when the first payment ability information is not less than the pre-fuel consumption amount, or when the second payment ability information is not less than a preset threshold, the method Also includes:

生成第一支付能力信息或第二支付能力信息通过的凭证消息,并显示所述凭证消息。Generate a voucher message through which the first payment capability information or the second payment capability information passes, and display the voucher message.

在一种可能的实现方式中,所述对所述待支付的预加油订单信息通过第一对称密钥进行加密,得到第一加密数据之前,所述方法还包括:In a possible implementation, before encrypting the pre-fuel order information to be paid using a first symmetric key to obtain the first encrypted data, the method further includes:

将第一公钥、第三方认证机构的服务器ID和第三方服务器ID发送给第三方认证机构的服务器;Send the first public key, the server ID of the third-party certification authority and the third-party server ID to the server of the third-party certification authority;

所述第三方认证机构的服务器通过预设私钥对所述第一公钥进行加密,得到第三方认证机构的服务器加密后的第一公钥;The server of the third-party certification agency encrypts the first public key with a preset private key to obtain the first public key encrypted by the server of the third-party certification agency;

所述第三方认证机构的服务器根据所述第三方服务器ID,将所述第三方认证机构的服务器加密后的第一公钥发送给第三方服务器;The server of the third-party certification agency sends the first public key encrypted by the server of the third-party certification agency to the third-party server according to the third-party server ID;

所述第三方服务器通过预设公钥对加密后的第一公钥进行解密,得到所述第一公钥;所述预设公钥为第三方认证机构的服务器的预设公钥。The third-party server decrypts the encrypted first public key using a preset public key to obtain the first public key; the preset public key is the preset public key of the server of the third-party certification authority.

在一种可能的实现方式中,所述将所述加密后的数据发送给第三方服务器,以使所述第三方服务器进行免密支付之后,还包括:In a possible implementation, after sending the encrypted data to a third-party server so that the third-party server can perform password-free payment, the method further includes:

所述第三方服务器对所述加密后的数据进行解包,得到所述第一加密数据、所述签名后的摘要和所述加密后的第一对称密钥;The third-party server unpacks the encrypted data to obtain the first encrypted data, the signed digest and the encrypted first symmetric key;

通过第二私钥对所述加密后的第一对称密钥进行解密,得到第一对称密钥;Decrypt the encrypted first symmetric key using the second private key to obtain the first symmetric key;

通过所述第一对称密钥对所述第一加密数据进行解密,得到待支付的预加油订单信息;Decrypt the first encrypted data using the first symmetric key to obtain pre-fuel order information to be paid;

通过摘要算法提取所述待支付的预加油订单信息的摘要,得到待对比摘要;Extract the summary of the pre-refueling order information to be paid through a summary algorithm to obtain the summary to be compared;

通过第一公钥对所述签名后的摘要进行解密,得到摘要;Decrypt the signed digest using the first public key to obtain the digest;

将所述摘要和所述待对比摘要进行比较,当两者相等时,确定通过安全性验证。The summary is compared with the summary to be compared, and when the two are equal, it is determined that the security verification is passed.

在一种可能的实现方式中,所述接收加油设备发送的加油请求消息之前,所述方法还包括:In a possible implementation, before receiving the refueling request message sent by the refueling device, the method further includes:

所述加油设备接收油枪上的读卡装置在读取车辆的油箱盖上的标签后发送的加油请求消息;所述加油请求消息包括目标用户账户信息、加油站ID和油枪ID。The refueling equipment receives a refueling request message sent by the card reader on the fuel nozzle after reading the label on the vehicle's fuel tank cap; the refueling request message includes target user account information, gas station ID and fuel nozzle ID.

第二方面,本发明提供了一种设备,包括存储器和处理器,存储器用于存储程序,处理器用于执行第一方面任一所述的方法。In a second aspect, the present invention provides a device, including a memory and a processor. The memory is used to store programs, and the processor is used to execute any method described in the first aspect.

第三方面,本发明提供了一种包含指令的计算机程序产品,当计算机程序产品在计算机上运行时,使得计算机执行如第一方面任一所述的方法。In a third aspect, the present invention provides a computer program product containing instructions, which when the computer program product is run on a computer, causes the computer to perform any of the methods described in the first aspect.

第四方面,本发明提供了一种计算机可读存储介质,计算机可读存储介质上存储有计算机程序,计算机程序被处理器执行时实现如第一方面任一所述的方法。In a fourth aspect, the present invention provides a computer-readable storage medium. A computer program is stored on the computer-readable storage medium. When the computer program is executed by a processor, the method as described in any one of the first aspects is implemented.

通过应用本发明实施例提供的无感支付的安全性验证方法,用户可以预先建立待支付的预加油订单信息,并在采集到的标签解析后与待支付的预加油订单信息相匹配时,直接进行加油,并在加油完成后,在对待支付的预加油订单进行加密后,进行免密支付,保证了支付过程的安全性,且节省了支付时间,避免了加油完成后支付时的排队等待,提高了加油效率。By applying the security verification method of non-inductive payment provided by the embodiment of the present invention, the user can pre-establish the pre-fuel order information to be paid, and when the collected tags are parsed and match the pre-fuel order information to be paid, the user can directly Carry out refueling, and after the refueling is completed, after the pre-refueling order to be paid is encrypted, the password-free payment is performed, which ensures the security of the payment process, saves payment time, and avoids waiting in line for payment after the refueling is completed. Improved refueling efficiency.

附图说明Description of the drawings

图1为本发明实施例一提供的无感支付的安全性控制方法流程示意图。Figure 1 is a schematic flowchart of a security control method for senseless payment provided by Embodiment 1 of the present invention.

具体实施方式Detailed ways

下面结合附图和实施例对本申请作进一步的详细说明。可以理解的是,此处所描述的具体实施例仅仅用于解释相关发明,而非对该发明的限定。另外还需要说明的是,为便于描述,附图中仅示出了与有关发明相关的部分。The present application will be further described in detail below in conjunction with the accompanying drawings and examples. It can be understood that the specific embodiments described here are only used to explain the relevant invention, but not to limit the invention. It should also be noted that, for convenience of description, only the parts related to the invention are shown in the drawings.

需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。下面将参考附图并结合实施例来详细说明本申请。It should be noted that, as long as there is no conflict, the embodiments and features in the embodiments of this application can be combined with each other. The present application will be described in detail below with reference to the accompanying drawings and embodiments.

第一、第二等编号仅予以区分,并无其他含义。The first and second numbers are only distinguished and have no other meaning.

图1为本发明实施例一提供的无感支付的安全性控制方法流程示意图。该方法应用在加油站加油的场景中。该方法的执行主体为具有计算处理功能的销售时点信息(Pointof sale,POS)系统服务器。如图1所示,该方法包括以下步骤:Figure 1 is a schematic flowchart of a security control method for senseless payment provided by Embodiment 1 of the present invention. This method is used in gas station refueling scenarios. The execution subject of this method is a Point of Sale (POS) system server with calculation and processing functions. As shown in Figure 1, the method includes the following steps:

步骤101,接收加油请求消息;其中,加油请求消息包括标签ID、目标用户账户信息、加油站ID和油枪ID。Step 101: Receive a refueling request message; wherein the refueling request message includes tag ID, target user account information, gas station ID, and fuel nozzle ID.

加油站ID可以是加油站的编号,每个加油站具有唯一的编号。比如,加油站编号可以是“1110”。The gas station ID can be the number of the gas station, and each gas station has a unique number. For example, the gas station number could be "1110".

油枪ID可以包括油枪的编号,油枪可以根据对应的汽油型号不同,分为不同编号的油枪,比如001可以对应92号汽油、002可以对应95号汽油,每一个加油设备上,可以具有一个或多个油枪,当有多个油枪时,这些油枪可以对应相同型号的汽油,也可以对应不同型号的汽油。油枪ID的结构可以是加油站ID+加油设备ID+油枪编号,比如“1110012001”的含义可以是:加油站编号“1110”、加油设备编号“012”、油枪编号“001”,由此,可以通过油枪ID,可以得到所在的加油站下的哪个加油设备下的哪个油枪。The oil gun ID can include the number of the oil gun. The oil gun can be divided into oil guns with different numbers according to the corresponding gasoline models. For example, 001 can correspond to No. 92 gasoline, and 002 can correspond to No. 95 gasoline. On each refueling equipment, you can There are one or more oil guns. When there are multiple oil guns, these oil guns can correspond to the same type of gasoline or different types of gasoline. The structure of the oil gun ID can be the gas station ID + the oil gun number + the oil gun number. For example, the meaning of "1110012001" can be: the gas station number "1110", the oil gun number "012", and the oil gun number "001". Therefore, You can use the oil gun ID to get which oil gun is under which refueling equipment under the gas station where you are located.

在本申请中,接收到的加油请求消息可以是由油枪上的读卡装置发送的,也可以是由加油设备发送的。加油设备中具有通信模块和处理模块。加油设备中的通信模块可以和POS系统服务器、油枪进行数据传输。In this application, the received refueling request message may be sent by the card reading device on the oil gun or by the refueling equipment. There are communication modules and processing modules in the refueling equipment. The communication module in the refueling equipment can transmit data with the POS system server and oil gun.

当加油请求消息是由油枪上的读卡装置发送时,加油站的油枪上设置有读卡装置,读卡装置包括读卡器、通信模块和存储器,存储器可以存储加油站ID和油枪ID。读卡器可以读取车辆的油箱盖上的标签并解码后,得到标签ID,油枪中的通信模块可以将标签ID、存储器中的加油站ID和油枪ID进行打包后生成的加油请求消息,发送给POS系统服务器。When the refueling request message is sent by the card reading device on the oil gun, the oil gun of the gas station is equipped with a card reading device. The card reading device includes a card reader, a communication module and a memory. The memory can store the gas station ID and the oil gun. ID. The card reader can read the tag on the vehicle's fuel tank cap and decode it to obtain the tag ID. The communication module in the oil gun can package the tag ID, the gas station ID in the memory and the oil gun ID to generate a refueling request message. , sent to the POS system server.

当加油请求消息是由油枪上的读卡装置发送时,加油站的油枪上设置有读卡装置,读卡装置包括读卡器和通信模块,读卡器可以读取车辆的油箱盖上的标签并解码后,得到标签ID,油枪中的通信模块可以将标签ID发送给加油设备中的通信模块,加油设备上的处理模块,将加油站ID、油枪ID和标签ID进行打包后生成的加油请求消息,发送给POS系统服务器。When the refueling request message is sent by the card reading device on the oil gun, the oil gun at the gas station is equipped with a card reading device. The card reading device includes a card reader and a communication module. The card reader can read the fuel tank cap of the vehicle. After decoding the tag, the tag ID is obtained. The communication module in the oil gun can send the tag ID to the communication module in the refueling equipment. The processing module on the refueling equipment packages the gas station ID, oil gun ID and tag ID. The generated refueling request message is sent to the POS system server.

其中,标签可以是射频识别(Radio Frequency Identification,RFID)标签。The tag may be a radio frequency identification (Radio Frequency Identification, RFID) tag.

步骤102,根据所述标签ID,查询预设的标签ID与用户账户信息对照表,得到标签ID对应的目标用户账户信息;Step 102: According to the tag ID, query the preset tag ID and user account information comparison table to obtain the target user account information corresponding to the tag ID;

具体的,一个标签ID可以对应一个车辆信息,车辆信息包括车辆标识(Identitydocument,ID)和车型信息。车辆ID为车辆唯一标识,可以是车牌号,也可以是车辆的全球唯一的编号。Specifically, a tag ID can correspond to a piece of vehicle information, and the vehicle information includes vehicle identification (Identitydocument, ID) and vehicle model information. The vehicle ID is a unique identification of the vehicle, which can be a license plate number or a globally unique number of the vehicle.

一个标签ID对应一个车辆信息,一个用户可以有一个或多个车辆,即一个用户可以具有一个标签ID,也可以具有多个标签ID,但是一个用户仅对应一个用户账户信息。由此,当POS系统服务器接收到加油请求消息后,对加油请求消息进行解包,并根据标签ID,确定标签ID对应的用户账户信息,并将当前标签ID对应的用户账户信息作为目标用户账户信息。A tag ID corresponds to one vehicle information, and a user can have one or more vehicles, that is, a user can have one tag ID or multiple tag IDs, but a user only corresponds to one user account information. Therefore, when the POS system server receives the refueling request message, it unpacks the refueling request message, determines the user account information corresponding to the tag ID based on the tag ID, and uses the user account information corresponding to the current tag ID as the target user account. information.

其中,用户账户信息可以是POS系统服务器中存储的用户的团油APP中账号,此处的团油APP是一款用于驾驶员进行加油交易的应用程序。The user account information may be the user's Tuanyou APP account number stored in the POS system server. The Tuanyou APP here is an application used for drivers to perform refueling transactions.

步骤103,根据加油站ID、油枪ID和目标用户账户信息,查询是否存在与加油站ID、油枪ID和目标用户账户信息对应的待支付的预加油订单信息。Step 103: Query whether there is pre-refueling order information to be paid corresponding to the gas station ID, fuel nozzle ID and target user account information.

其中,待支付的预加油订单信息包括预加油的加油站ID、预加油的油枪ID、预加油的加油升数和预加油的消费金额。Among them, the pre-refueling order information to be paid includes the ID of the gas station for pre-refueling, the ID of the oil gun for pre-refueling, the number of liters of pre-refueling and the consumption amount of pre-refueling.

具体的,POS系统服务器中,可以预先存储有用户预先建立的待支付的预加油订单信息。用户可以通过在用户终端上进行输入操作,从而建立预加油订单信息,当该预加油订单信息通过信用能力和支付能力验证后,可以生成待支付的预加油订单信息,并且用户终端可以将该待支付的预加油订单信息发送给POS系统服务器。从而,当进入加油站后,可以在存在待支付的预加油订单信息时,直接进行加油。Specifically, the POS system server may pre-store pre-refueling order information to be paid that is pre-established by the user. The user can create pre-refueling order information by performing input operations on the user terminal. When the pre-refueling order information passes the verification of credit ability and payment ability, pre-refueling order information to be paid can be generated, and the user terminal can transfer the pre-refueling order information to be paid. The paid pre-fuel order information is sent to the POS system server. Therefore, after entering the gas station, you can directly refuel when there is pre-refueling order information to be paid.

因此,步骤103之前,本申请还可以包括如下步骤:Therefore, before step 103, this application may also include the following steps:

接收用户终端发送的预加油订单信息;预加油订单信息包括用户ID、预加油的加油站ID、预加油的油枪ID、预加油的加油升数和预加油的消费金额;Receive pre-refueling order information sent by the user terminal; the pre-refueling order information includes the user ID, the ID of the gas station for pre-refueling, the ID of the oil gun for pre-refueling, the number of liters of pre-refueling and the consumption amount of pre-refueling;

根据用户ID,查询用户ID对应的用户账户信息的信用能力信息;信用能力信息包括用户的信用分数;According to the user ID, query the credit capability information of the user account information corresponding to the user ID; the credit capability information includes the user's credit score;

当信用分数不小于预设的分数阈值时,查询用户账户信息对应的用户的支付账号的第一支付能力信息;When the credit score is not less than the preset score threshold, query the first payment ability information of the user's payment account corresponding to the user account information;

当第一支付能力信息不小于预加油的消费金额时,生成待支付的预加油订单信息。When the first payment ability information is not less than the pre-fuel consumption amount, pre-fuel order information to be paid is generated.

其中,信用能力信息可以是用户的信用能力的分数,比如,可以根据用户的付款记录、客户的信用记录来生成信用能力分数。比如,在POS系统服务器中付款次数、总金额等,可以生成一个信用分数,而用户在银行的信用记录,又生成一个信用分数,两个信用分数进行加权求和后,可以得到用户的信用能力信息。该信用能力信息是一个动态变化的数据,可以随着用户的付款记录和信用记录进行变化。Among them, the credit ability information can be the score of the user's credit ability. For example, the credit ability score can be generated based on the user's payment record and the customer's credit record. For example, the number of payments, total amount, etc. in the POS system server can generate a credit score, and the user's credit record in the bank can generate a credit score. After the weighted sum of the two credit scores, the user's credit ability can be obtained. information. This credit ability information is dynamically changing data and can change with the user's payment record and credit record.

从而POS系统服务器在接收到加油请求消息后,先进行查询,从而确定是否存在待支付的预加油订单信息。Therefore, after receiving the refueling request message, the POS system server first performs a query to determine whether there is pre-refueling order information to be paid.

步骤104,当目标用户账户信息中存在与加油站ID和油枪ID对应的待支付的预加油订单信息时,生成第一确认消息;第一确认消息包括预加油的加油升数。Step 104: When there is pre-refueling order information to be paid corresponding to the gas station ID and fuel nozzle ID in the target user's account information, a first confirmation message is generated; the first confirmation message includes the number of liters of pre-refueling.

在一个示例中,如果存在待支付的预加油订单信息时,可以根据该待支付的预加油订单信息中的预加油的加油升数,生成第一确认消息,并将第一确认消息发送给加油设备。In one example, if there is pre-refueling order information to be paid, a first confirmation message can be generated based on the number of pre-refueling liters in the pre-refueling order information to be paid, and the first confirmation message can be sent to the refueling equipment.

在另一个示例中,当不存在与加油站ID和油枪ID对应的待支付的预加油订单信息时,根据目标用户账户信息,查询目标用户账户信息对应的用户ID的信用能力信息;信用能力信息包括用户的信用分数;In another example, when there is no pre-refueling order information to be paid corresponding to the gas station ID and the oil gun ID, query the credit capability information of the user ID corresponding to the target user account information according to the target user account information; credit capability Information includes a user’s credit score;

当信用分数不小于预设的分数阈值时,查询目标用户账户信息对应的用户的支付账号的第二支付能力信息;When the credit score is not less than the preset score threshold, query the second payment ability information of the user's payment account corresponding to the target user's account information;

当第二支付能力信息不小于预设阈值时,生成第二确认消息;When the second payment ability information is not less than the preset threshold, generate a second confirmation message;

将第二确认消息发送给加油设备,第二确认消息用于通知加油设备进行加油;Send a second confirmation message to the refueling equipment, and the second confirmation message is used to notify the refueling equipment to perform refueling;

当加油完成后,接收加油设备发送的待支付的加油订单信息;其中,待支付的加油订单信息是加油设备根据加油站ID、油枪ID、当前加油升数和当前消费金额生成的;When the refueling is completed, receive the refueling order information to be paid from the refueling equipment; where the refueling order information to be paid is generated by the refueling equipment based on the gas station ID, the oil gun ID, the current refueling liters and the current consumption amount;

将待支付的加油订单信息发送给第三方服务器,以使第三方服务器进行免密支付。Send the refueling order information to be paid to the third-party server so that the third-party server can perform password-free payment.

在这种情况下,后续需要计算当前加油升数。示例而非限定,加油设备可以根据当前加油升数和油枪ID,计算出加油的金额,从而生成待支付的加油订单信息,并发送给第三方服务器。In this case, subsequent calculation of the current fuel liters is required. As an example, but not a limitation, the refueling equipment can calculate the amount of refueling based on the current refueling liters and the oil gun ID, thereby generating refueling order information to be paid and sending it to a third-party server.

从而,在没有待支付的预加油订单信息时,后续可以通过加油设备实时的生成待支付的加油订单信息,并完成免密支付,从而节省了加油时间。Therefore, when there is no pre-refueling order information to be paid, the refueling order information to be paid can be generated in real time through the refueling equipment, and password-free payment can be completed, thereby saving refueling time.

进一步的,当所述第一支付能力信息不小于预加油的消费金额时,或者,所述当所述第二支付能力信息不小于预设阈值时,本申请还包括:生成第一支付能力信息或第二支付能力信息通过的凭证消息,并显示所述凭证消息。由此,可以根据凭证消息,在一段时期内,不用再进行支付能力验证,从而提高了下次支付的速度。Further, when the first payment ability information is not less than the pre-fuel consumption amount, or when the second payment ability information is not less than a preset threshold, the application also includes: generating the first payment ability information Or the second payment ability information is passed through the voucher message, and the voucher message is displayed. Therefore, according to the voucher message, there is no need to verify the payment ability for a period of time, thereby improving the speed of the next payment.

步骤105,将第一确认消息发送给加油设备,以指示加油设备根据预加油的加油升数进行加油。Step 105: Send the first confirmation message to the refueling equipment to instruct the refueling equipment to refuel according to the pre-refueling liters.

加油设备接收到预加油的加油升数时,可以根据对应的油枪ID,控制油枪进行加油。When the refueling equipment receives the pre-refueling liters, it can control the oil gun to refuel according to the corresponding oil gun ID.

步骤106,接收加油设备发送的加油完成消息。Step 106: Receive the refueling completion message sent by the refueling equipment.

其中,该加油完成消息中还可以包括加油完成时间。The refueling completion message may also include the refueling completion time.

当加油完成后,加油设备可以发送加油完成消息给POS系统服务器,从而POS系统服务器可以根据加油完成消息,确定加油完成。When refueling is completed, the refueling equipment can send a refueling completion message to the POS system server, so that the POS system server can determine that refueling is completed based on the refueling completion message.

步骤107,对待支付的预加油订单信息通过第一对称密钥进行加密,得到第一加密数据。Step 107: The pre-fuel order information to be paid is encrypted using the first symmetric key to obtain first encrypted data.

其中,此处的第一对称密钥是进行对称加密时的密钥,第一对称密钥可以根据对称加密算法产生,对称加密算法包括但不限于数据加密算法(Data EncryptionAlgorithm,DES)、三重数据加密算法(Triple Data Encryption Algorithm,3DES)、高级加密标准(Advanced Encryption Standard,AES)算法、RC-5算法、国际数据加密算法(International Data Encryption Algorithm,IDEA)。Among them, the first symmetric key here is the key when performing symmetric encryption. The first symmetric key can be generated according to a symmetric encryption algorithm. The symmetric encryption algorithm includes but is not limited to data encryption algorithm (Data Encryption Algorithm, DES), triple data Encryption algorithm (Triple Data Encryption Algorithm, 3DES), Advanced Encryption Standard (Advanced Encryption Standard, AES) algorithm, RC-5 algorithm, International Data Encryption Algorithm (IDEA).

在步骤107之前,还需要进行POS系统和第三方服务器之间的安全性验证。进行安全性验证之前,需要先通过第三方认证机构的服务器确认POS系统生成的公钥、私钥的安全性。可以通过以下方法进行公钥安全性的验证:Before step 107, security verification between the POS system and the third-party server is also required. Before performing security verification, the security of the public and private keys generated by the POS system needs to be confirmed through the server of a third-party certification agency. Public key security can be verified through the following methods:

将第一公钥、第三方认证机构的服务器ID和第三方服务器ID发送给第三方认证机构的服务器;Send the first public key, the server ID of the third-party certification authority and the third-party server ID to the server of the third-party certification authority;

第三方认证机构的服务器通过预设私钥对第一公钥进行加密,得到第三方认证机构的服务器加密后的第一公钥;The server of the third-party certification agency encrypts the first public key through the preset private key, and obtains the first public key encrypted by the server of the third-party certification agency;

第三方认证机构的服务器根据第三方服务器ID,将第三方认证机构的服务器加密后的第一公钥发送给第三方服务器;The server of the third-party certification agency sends the first public key encrypted by the server of the third-party certification agency to the third-party server based on the third-party server ID;

第三方服务器通过预设公钥对加密后的第一公钥进行解密,得到第一公钥;预设公钥为第三方认证机构的服务器的预设公钥。The third-party server decrypts the encrypted first public key through the preset public key to obtain the first public key; the preset public key is the preset public key of the server of the third-party certification authority.

其中,第三方认证机构的服务器之前会将第一公钥发送给POS系统和第三方服务器。从而通过第三方认证机构的服务器,保证了公钥的安全性,从而保证了支付过程的安全。Among them, the server of the third-party certification authority will previously send the first public key to the POS system and the third-party server. This ensures the security of the public key through the server of the third-party certification agency, thus ensuring the security of the payment process.

对私钥进行安全性验证的步骤与上述对公钥进行安全性验证的步骤相同,此处不再赘述。The steps for security verification of the private key are the same as the steps for security verification of the public key above, and will not be described again here.

在步骤107之前,POS系统服务器会生成多对公钥、私钥,用以进行数据加密。Before step 107, the POS system server will generate multiple pairs of public keys and private keys for data encryption.

步骤108,对待支付的预加油订单信息提取摘要,得到待支付的预加油订单信息的摘要。Step 108: Extract the summary of the pre-fuel order information to be paid, and obtain the summary of the pre-fuel order information to be paid.

具体的,可以通过摘要算法,比如信息摘要算法(MD5 Message-DigestAlgorithm,MD5、安全散列算法(Secure Hash Algorithm,SHA)等,可以提取待支付的预加油订单信息中的摘要。Specifically, the digest of the pre-fuel order information to be paid can be extracted through a digest algorithm, such as a message digest algorithm (MD5 Message-Digest Algorithm, MD5, Secure Hash Algorithm, SHA), etc.

步骤109,对摘要通过第一私钥进行签名,得到签名后的摘要;Step 109: Sign the digest with the first private key to obtain the signed digest;

具体的,POS系统服务器之前生成了多对公钥和私钥,用以进行非对称加密。对摘要通过私钥,可以进行数字签名,以便于后续在第三方服务器解密后,验证加密后的数据是否被篡改。其中,第一私钥与后面的第一公钥相对应。Specifically, the POS system server previously generated multiple pairs of public keys and private keys for asymmetric encryption. The private key can be used to digitally sign the digest, so that after decryption by a third-party server, it can be verified whether the encrypted data has been tampered with. Among them, the first private key corresponds to the subsequent first public key.

步骤110,对第一对称密钥通过第二公钥进行加密,得到加密后的第一对称密钥;Step 110: Encrypt the first symmetric key with the second public key to obtain the encrypted first symmetric key;

具体的,对于进行对称加密的第一对称密钥,可以通过第二公钥进行加密,从而对第一对称密钥进行了非对称加密。此处的第二公钥,与后面的第二私钥相对应。Specifically, the first symmetric key for symmetric encryption can be encrypted using the second public key, thereby performing asymmetric encryption on the first symmetric key. The second public key here corresponds to the second private key later.

步骤111,将第一加密数据、签名后的摘要和加密后的第一对称密钥进行打包,得到加密后的数据;Step 111: Pack the first encrypted data, the signed digest and the encrypted first symmetric key to obtain encrypted data;

具体的,对第一加密数据、签名后的摘要和加密后的第一对称密钥进行包装后,得到一个加密后的数据,该加密后的数据为一个数据包。Specifically, after packaging the first encrypted data, the signed digest and the encrypted first symmetric key, an encrypted data is obtained, and the encrypted data is a data packet.

步骤112,将加密后的数据发送给第三方服务器,以使第三方服务器进行免密支付。Step 112: Send the encrypted data to the third-party server so that the third-party server can perform password-free payment.

其中,加密后的数据以数据包的方式发送给第三方服务器后,第三方服务器在解密后,可以按照预设的免密支付协议,进行免密支付。Among them, after the encrypted data is sent to the third-party server in the form of a data packet, the third-party server can make secret-free payment according to the preset secret-free payment agreement after decryption.

其中,第三方服务器,可以是支付系统的服务器,比如,可以根据用户在待支付的预加油订单信息中选择的支付方式,来确定第三方服务器具体为哪一类服务器,当支付方式为支付宝或微信支付时,第三方服务器可以是支付宝或微信服务器,当支付方式为储蓄卡支付时,第三方服务器可以是储蓄卡对应的银行的结算服务器。由此,通过第一对称秘钥对订单数据进行进行对称加密,通过第一私钥对摘要进行非对称加密,再通过第二公钥对第一对称秘钥进行非对称加密,从而保证了在多重加密下的数据的安全性。Among them, the third-party server can be a server of the payment system. For example, the specific type of server of the third-party server can be determined based on the payment method selected by the user in the pre-fuel order information to be paid. When the payment method is Alipay or When paying with WeChat, the third-party server can be Alipay or WeChat server. When the payment method is debit card payment, the third-party server can be the settlement server of the bank corresponding to the debit card. As a result, the order data is symmetrically encrypted using the first symmetric secret key, the summary is asymmetrically encrypted using the first private key, and then the first symmetric secret key is asymmetrically encrypted using the second public key, thereby ensuring that the Data security under multiple encryption.

进一步的,第三方服务器进行解密,以保证支付的安全性,第三方服务器进行解密的步骤如下:Further, the third-party server decrypts to ensure the security of the payment. The steps for the third-party server to decrypt are as follows:

第三方服务器对加密后的数据进行解包,得到第一加密数据、签名后的摘要和加密后的第一对称密钥;The third-party server unpacks the encrypted data and obtains the first encrypted data, the signed digest and the encrypted first symmetric key;

通过第二私钥对加密后的第一对称密钥进行解密,得到第一对称密钥;Decrypt the encrypted first symmetric key using the second private key to obtain the first symmetric key;

通过第一对称密钥对第一加密数据进行解密,得到待支付的预加油订单信息;Decrypt the first encrypted data using the first symmetric key to obtain the pre-fuel order information to be paid;

通过摘要算法提取待支付的预加油订单信息的摘要,得到待对比摘要;Extract the summary of the pre-fuel order information to be paid through the summary algorithm to obtain the summary to be compared;

通过第一公钥对签名后的摘要进行解密,得到摘要;Decrypt the signed digest through the first public key to obtain the digest;

将摘要和待对比摘要进行比较,当两者相等时,确定通过安全性验证。Compare the summary with the summary to be compared. When the two are equal, it is determined that the security verification is passed.

由此,与加密的过程相对应,第三方服务器进行解密,从而保证了支付过程的安全性。Thus, corresponding to the encryption process, the third-party server performs decryption, thereby ensuring the security of the payment process.

同样的,对于待支付的加油订单信息,也会根据上述方法进行加密,从而保证了支付过程的安全性,具体的加密方法与上述对待支付的预加油订单信息进行加密的方法相同,此处不再赘述。Similarly, the refueling order information to be paid will also be encrypted according to the above method, thereby ensuring the security of the payment process. The specific encryption method is the same as the above method for encrypting the pre-refueling order information to be paid, which is not specified here. Again.

通过应用本发明实施例提供的无感支付的安全性验证方法,用户可以预先建立待支付的预加油订单信息,并在采集到的标签解析后与待支付的预加油订单信息相匹配时,直接进行加油,并在加油完成后,在对待支付的预加油订单进行加密后,进行免密支付,保证了支付过程的安全性,且节省了支付时间,避免了加油完成后支付时的排队等待,提高了加油效率。By applying the security verification method of non-inductive payment provided by the embodiment of the present invention, the user can pre-establish the pre-fuel order information to be paid, and when the collected tags are parsed and match the pre-fuel order information to be paid, the user can directly Carry out refueling, and after the refueling is completed, after the pre-refueling order to be paid is encrypted, the password-free payment is performed, which ensures the security of the payment process, saves payment time, and avoids waiting in line for payment after the refueling is completed. Improved refueling efficiency.

本发明实施例二提供了一种设备,包括存储器和处理器,存储器用于存储程序,存储器可通过总线与处理器连接。存储器可以是非易失存储器,例如硬盘驱动器和闪存,存储器中存储有软件程序和设备驱动程序。软件程序能够执行本发明实施例提供的上述方法的各种功能;设备驱动程序可以是网络和接口驱动程序。处理器用于执行软件程序,该软件程序被执行时,能够实现本发明实施例一提供的方法。Embodiment 2 of the present invention provides a device, including a memory and a processor. The memory is used to store programs, and the memory can be connected to the processor through a bus. The memory may be non-volatile memory, such as hard drives and flash memory, in which software programs and device drivers are stored. The software program can perform various functions of the above method provided by the embodiment of the present invention; the device driver can be a network and interface driver. The processor is used to execute a software program. When the software program is executed, the method provided in Embodiment 1 of the present invention can be implemented.

本发明实施例三提供了一种包含指令的计算机程序产品,当计算机程序产品在计算机上运行时,使得计算机执行本发明实施例一提供的方法。Embodiment 3 of the present invention provides a computer program product containing instructions. When the computer program product is run on a computer, it causes the computer to execute the method provided in Embodiment 1 of the present invention.

本发明实施例四提供了一种计算机可读存储介质,计算机可读存储介质上存储有计算机程序,计算机程序被处理器执行时实现本发明实施例一提供的方法。Embodiment 4 of the present invention provides a computer-readable storage medium. A computer program is stored on the computer-readable storage medium. When the computer program is executed by a processor, the method provided in Embodiment 1 of the present invention is implemented.

专业人员应该还可以进一步意识到,结合本文中所公开的实施例描述的各示例的单元及算法步骤,能够以电子硬件、计算机软件或者二者的结合来实现,为了清楚地说明硬件和软件的可互换性,在上述说明中已经按照功能一般性地描述了各示例的组成及步骤。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本发明的范围。Those skilled in the art should further realize that the units and algorithm steps of each example described in conjunction with the embodiments disclosed herein can be implemented with electronic hardware, computer software, or a combination of both. In order to clearly illustrate the relationship between hardware and software Interchangeability, in the above description, the composition and steps of each example have been generally described according to functions. Whether these functions are performed in hardware or software depends on the specific application and design constraints of the technical solution. Skilled artisans may implement the described functionality using different methods for each specific application, but such implementations should not be considered to be beyond the scope of the present invention.

结合本文中所公开的实施例描述的方法或算法的步骤可以用硬件、处理器执行的软件模块,或者二者的结合来实施。软件模块可以置于随机存储器(RAM)、内存、只读存储器(ROM)、电可编程ROM、电可擦除可编程ROM、寄存器、硬盘、可移动磁盘、CD-ROM、或技术领域内所公知的任意其它形式的存储介质中。The steps of the methods or algorithms described in connection with the embodiments disclosed herein may be implemented in hardware, software modules executed by a processor, or a combination of both. Software modules may be located in random access memory (RAM), memory, read-only memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disks, removable disks, CD-ROMs, or anywhere in the field of technology. any other known form of storage media.

以上的具体实施方式,对本发明的目的、技术方案和有益效果进行了进一步详细说明,所应理解的是,以上仅为本发明的具体实施方式而已,并不用于限定本发明的保护范围,凡在本发明的精神和原则之内,所做的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above specific embodiments further describe the purpose, technical solutions and beneficial effects of the present invention in detail. It should be understood that the above are only specific embodiments of the present invention and are not intended to limit the scope of protection of the present invention. Within the spirit and principles of the present invention, any modifications, equivalent substitutions, improvements, etc. shall be included in the protection scope of the present invention.

Claims (8)

1. A security control method for a non-inductive payment, the method comprising:
receiving a fueling request message; the oiling request message comprises a tag ID, a gas station ID and a gun ID;
the oiling request message is sent by a card reader on the oil gun or by oiling equipment;
when the oiling request message is sent by a card reader on the oil gun, the card reader is arranged on the oil gun and comprises a card reader, a communication module and a memory, wherein the memory is used for storing a gas station ID and an oil gun ID, the card reader is used for reading and decoding a label on an oil tank cover of a vehicle to obtain the label ID, and the communication module is used for packaging the label ID, the gas station ID in the memory and the oil gun ID to generate the oiling request message;
when the oiling request message is sent by the oiling equipment, a card reading device is arranged on the oil gun and comprises a card reader and a communication module, wherein the card reader is used for reading and decoding a label on an oil tank cover of a vehicle to obtain a label ID, the communication module is used for sending the label ID to the communication module in the oiling equipment, and a processing module on the oiling equipment packages the gas station ID, the oil gun ID and the label ID to generate the oiling request message;
inquiring a preset tag ID and user account information comparison table according to the tag ID to obtain target user account information corresponding to the tag ID;
inquiring whether pre-fueling order information to be paid corresponding to the gas station ID, the oil gun ID and the target user account information exists according to the gas station ID, the oil gun ID and the target user account information; the pre-fueling order information to be paid includes a pre-fueling station ID, a pre-fueling gun ID, a pre-fueling liter, and a pre-fueling expense amount;
generating a first confirmation message when pre-fueling order information to be paid corresponding to the gas station ID and the gun ID exists in the target user account information; the first confirmation message includes a fueling boost number of the pre-fueling;
sending the first confirmation message to a refueling device to instruct the refueling device to refuel according to the refuel liter number of the pre-refueling;
receiving a refueling completion message sent by the refueling equipment;
encrypting the pre-fueling order information to be paid through a first symmetric key to obtain first encrypted data;
extracting the abstract of the pre-fueling order information to be paid to obtain the abstract of the pre-fueling order information to be paid;
signing the abstract through a first private key to obtain a signed abstract;
encrypting the first symmetric key through a second public key to obtain an encrypted first symmetric key;
packaging the first encrypted data, the signed digest and the encrypted first symmetric key to obtain encrypted data;
sending the encrypted data to a third party server so that the third party server performs secret payment;
inquiring credit capability information of a user ID corresponding to the target user account information according to the target user account information when pre-fueling order information to be paid corresponding to the gas station ID and the oil gun ID does not exist; the credit ability information includes a credit score of the user;
inquiring second payment capability information of a payment account number of the user corresponding to the target user account information when the credit score is not smaller than a preset score threshold value;
generating a second confirmation message when the second payment capability information is not smaller than a preset threshold value;
sending the second confirmation message to the oiling device, wherein the second confirmation message is used for notifying the oiling device to carry out oiling;
after oiling is completed, receiving oiling order information to be paid, which is sent by oiling equipment; the oiling order information to be paid is generated by oiling equipment according to an ID of a gas station, an ID of an oil gun, a current oiling increment and a current consumption amount;
and sending the oiling order information to be paid to a third party server so that the third party server performs the secret-free payment.
2. The method according to claim 1, characterized in that the method is preceded by:
receiving pre-fueling order information sent by a user terminal; the pre-fueling order information includes a user ID, a pre-fueling station ID, a pre-fueling gun ID, a pre-fueling liter, and a pre-fueling expense amount;
inquiring credit capability information of user account information corresponding to the user ID according to the user ID; the credit ability information includes a credit score of the user;
when the credit score is not smaller than a preset score threshold value, inquiring first payment capability information of a payment account of a user corresponding to the user account information;
and generating pre-fueling order information to be paid when the first payment capability information is not less than the consumption amount of the pre-fueling.
3. The method of claim 1, wherein the method further comprises, when the first payment capability information is not less than a pre-fueling consumption amount, or when the second payment capability information is not less than a pre-set threshold:
and generating a credential message through which the first payment capability information or the second payment capability information passes, and displaying the credential message.
4. The method of claim 1, wherein the encrypting the pre-fueling order information to be paid with a first symmetric key, prior to obtaining first encrypted data, further comprises:
transmitting the first public key, the server ID of the third party certification authority and the third party server ID to a server of the third party certification authority;
the server of the third party authentication mechanism encrypts the first public key through a preset private key to obtain a first public key encrypted by the server of the third party authentication mechanism;
the server of the third party authentication mechanism sends the first public key encrypted by the server of the third party authentication mechanism to a third party server according to the third party server ID;
the third party server decrypts the encrypted first public key through a preset public key to obtain the first public key; the preset public key is a preset public key of a server of the third party certification authority.
5. The method of claim 4, wherein the sending the encrypted data to a third party server to enable the third party server to make a secure-free payment, further comprises:
the third party server unpacks the encrypted data to obtain the first encrypted data, the signed digest and the encrypted first symmetric key;
decrypting the encrypted first symmetric key through a second private key to obtain a first symmetric key;
decrypting the first encrypted data through the first symmetric key to obtain pre-fueling order information to be paid;
extracting the abstract of the pre-fueling order information to be paid through an abstract algorithm to obtain an abstract to be compared;
decrypting the signed abstract through a first public key to obtain the abstract;
and comparing the abstract with the abstract to be compared, and determining that the abstract passes the security verification when the abstract and the abstract are equal to each other.
6. The method of claim 1, wherein prior to receiving the fueling request message, the method further comprises:
the oiling equipment receives an oiling request message sent by a card reading device on an oil gun after reading a label on an oil tank cover of a vehicle; the fueling request message includes a tag ID, a fueling station ID, and a fueling gun ID.
7. A security control device for non-inductive payment, characterized in that the device comprises a memory for storing a program and a processor for performing the method according to any of claims 1-6.
8. A computer readable storage medium, characterized in that the computer readable storage medium has stored thereon a computer program which, when executed by a processor, implements the method according to any of claims 1-6.
CN202010313414.5A 2020-04-20 2020-04-20 Security control method for non-inductive payment Active CN111507727B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
CN202010313414.5A CN111507727B (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment
CN202311696391.0A CN117726338A (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010313414.5A CN111507727B (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN202311696391.0A Division CN117726338A (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment

Publications (2)

Publication Number Publication Date
CN111507727A CN111507727A (en) 2020-08-07
CN111507727B true CN111507727B (en) 2023-12-29

Family

ID=71876494

Family Applications (2)

Application Number Title Priority Date Filing Date
CN202010313414.5A Active CN111507727B (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment
CN202311696391.0A Pending CN117726338A (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment

Family Applications After (1)

Application Number Title Priority Date Filing Date
CN202311696391.0A Pending CN117726338A (en) 2020-04-20 2020-04-20 Security control method for non-inductive payment

Country Status (1)

Country Link
CN (2) CN111507727B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113592489B (en) * 2021-06-24 2023-06-20 青岛海尔科技有限公司 Secure payment method and system, storage medium and electronic device
CN113570366B (en) * 2021-07-20 2024-10-01 国网河南省电力公司经济技术研究院 Multi-party payment data transmission method and electricity selling method

Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1383296A (en) * 2001-04-25 2002-12-04 汤姆森许可贸易公司 Method for managing symmetrical secret key in communication network, and device for carrying out such method
WO2007006084A1 (en) * 2005-07-08 2007-01-18 Smarq Pty Ltd Card processing apparatus and method
JP2009043196A (en) * 2007-08-10 2009-02-26 Icon:Kk Procedure proxy server device, stop processing proxy server device, stop processing proxy method and program
WO2012112941A2 (en) * 2011-02-18 2012-08-23 Visa International Service Association Method and system for managing data and enabling payment transactions between multiple entities
CN107784498A (en) * 2017-11-28 2018-03-09 车主邦(北京)科技有限公司 A kind of group refueling system and method
KR20180137651A (en) * 2017-06-16 2018-12-28 주식회사 비즈모델라인 Method for Providing Simple Refueling Payment by using Signaling Device
DE102017128807A1 (en) * 2017-11-15 2019-05-16 Rubean AG Method and arrangement for triggering an electronic payment
WO2019236708A1 (en) * 2018-06-07 2019-12-12 American Express Travel Related Services Company, Inc. Automated remote payments between a vehicle and a refueling station
CN110852839A (en) * 2019-10-29 2020-02-28 车主邦(北京)科技有限公司 Method, device and storage medium for interfacing energy service business

Family Cites Families (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8875990B2 (en) * 1999-11-05 2014-11-04 Lead Core Fund, L.L.C. Systems and methods for allocating a payment authorization request to a payment processor
US7082533B2 (en) * 2000-08-04 2006-07-25 First Data Corporation Gauging risk in electronic communications regarding accounts in ABDS system
US6978369B2 (en) * 2000-08-04 2005-12-20 First Data Corporation Person-centric account-based digital signature system
US6938019B1 (en) * 2000-08-29 2005-08-30 Uzo Chijioke Chukwuemeka Method and apparatus for making secure electronic payments
US8185449B2 (en) * 2009-11-25 2012-05-22 The Royal Bank Of Scotland Plc System and method of providing fuel
WO2014011453A2 (en) * 2012-07-09 2014-01-16 Jvl Ventures, Llc Systems, methods, and computer program products for integrating third party services with a mobile wallet
EP3022700B1 (en) * 2013-07-15 2023-11-01 Visa International Service Association Secure remote payment transaction processing
US20160267451A1 (en) * 2014-02-04 2016-09-15 Gilbert Eid Payment processing based on vehicle remote identification
US10062072B2 (en) * 2014-12-19 2018-08-28 Facebook, Inc. Facilitating sending and receiving of peer-to-business payments
WO2016168499A1 (en) * 2015-04-14 2016-10-20 Szeto Amy Processing of unit-based transactions
US10169746B2 (en) * 2015-05-05 2019-01-01 Mastercard International Incorporated Methods, systems, and computer readable media for integrating payments
US20170076265A1 (en) * 2015-09-16 2017-03-16 First Data Corporation Systems and methods for facilitating purchases at a gas station

Patent Citations (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1383296A (en) * 2001-04-25 2002-12-04 汤姆森许可贸易公司 Method for managing symmetrical secret key in communication network, and device for carrying out such method
WO2007006084A1 (en) * 2005-07-08 2007-01-18 Smarq Pty Ltd Card processing apparatus and method
JP2009043196A (en) * 2007-08-10 2009-02-26 Icon:Kk Procedure proxy server device, stop processing proxy server device, stop processing proxy method and program
WO2012112941A2 (en) * 2011-02-18 2012-08-23 Visa International Service Association Method and system for managing data and enabling payment transactions between multiple entities
KR20180137651A (en) * 2017-06-16 2018-12-28 주식회사 비즈모델라인 Method for Providing Simple Refueling Payment by using Signaling Device
DE102017128807A1 (en) * 2017-11-15 2019-05-16 Rubean AG Method and arrangement for triggering an electronic payment
CN107784498A (en) * 2017-11-28 2018-03-09 车主邦(北京)科技有限公司 A kind of group refueling system and method
WO2019236708A1 (en) * 2018-06-07 2019-12-12 American Express Travel Related Services Company, Inc. Automated remote payments between a vehicle and a refueling station
CN110852839A (en) * 2019-10-29 2020-02-28 车主邦(北京)科技有限公司 Method, device and storage medium for interfacing energy service business

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
全球手机支付业务发展及跨行业清算前景分析;崔乐;;电信技术(12);60-63 *
基于数字证书的移动支付协议;李福祥;关龙;赵金娜;徐剑;周福才;;计算机科学(第S3期);26-30 *
移动商务安全微支付方案的改进实现;孙玲芳;靳伟;赵宁;张婧;;江苏科技大学学报(自然科学版)(第06期);65-67 *

Also Published As

Publication number Publication date
CN117726338A (en) 2024-03-19
CN111507727A (en) 2020-08-07

Similar Documents

Publication Publication Date Title
CN111539702B (en) Payment record processing method
CN105960776B (en) Token authentication using limited-use credentials
CN102801710B (en) A kind of network trading method and system
CN102789607B (en) A kind of network trading method and system
EP3540671A1 (en) Systems and methods for software based encryption
EP3008852B3 (en) System and method for encryption
KR101138283B1 (en) Method and system of mobile payment
EP3029880B1 (en) Method and system for safely transmitting transaction sensitive data based on cloud pos
CN107146120B (en) Electronic invoice generation method and generation device
CN105684010A (en) Secure Remote Payment Transaction Processing Using Secure Elements
CN108234385A (en) A kind of method for authenticating user identity and device
CN103152174B (en) Data processing method, device and parking lot management system applied to parking lot
CN103186857A (en) Bank card payment method and system
CN109614803B (en) Bill anti-counterfeiting method and system
CN111507727B (en) Security control method for non-inductive payment
US20170161743A1 (en) Use of encryption to provide secure credit card payments
CN111507718B (en) Sensorless payment system
CN110601836B (en) Key acquisition method, device, server and medium
CN102609842B (en) A kind of payment cipher device based on hardware signature equipment and application process thereof
CN111539704B (en) Non-inductive payment method
CN102724180A (en) Method and system for preventing signature information of universal serial bus (USB) key from being falsified
EP4315920A1 (en) Systems and methods for transaction card-based authentication
KR20110103822A (en) Mobile card management method and system
US10762558B1 (en) System, method, and computer program for authorizing a payment using gesture data
CN116192469A (en) Security anti-theft method for electronic card transaction or transmission

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant