HK1241103A - Credit payment method and device based on mobile terminal p2p - Google Patents
Credit payment method and device based on mobile terminal p2p Download PDFInfo
- Publication number
- HK1241103A HK1241103A HK18100158.8A HK18100158A HK1241103A HK 1241103 A HK1241103 A HK 1241103A HK 18100158 A HK18100158 A HK 18100158A HK 1241103 A HK1241103 A HK 1241103A
- Authority
- HK
- Hong Kong
- Prior art keywords
- transaction
- payment
- mobile terminal
- information
- credit
- Prior art date
Links
Description
Technical Field
The invention relates to the technical field of communication, in particular to a credit payment method and device based on a mobile terminal P2P.
Background
At present, public transport means mainly comprise buses and subways, and when a user takes the public transport means to buy tickets, two payment modes of cash or bus cards are mainly adopted, cash payment mainly aims at a public transport system, and the user can buy tickets in a coin-feed mode. Meanwhile, the user can also transact the bus card in a prepayment mode and take the bus or the subway for going out in a card swiping mode.
When a user buys tickets and takes buses in a cash mode, on one hand, the users need to prepare small amount of ticket money in advance because many buses are unmanned ticket selling vehicles and do not need to find and exchange, and inconvenience is brought to the traveling of the users. On the other hand, after the business is finished, the staff of the public transport system also needs to check the small amount of money thrown by the user when taking the unmanned ticketing bus, and brings extra work for the staff. When a user uses a bus card to swipe the card and take a public transport means, the current bus card is mainly a non-contact radio frequency card, so that the bending damage of the bus card and the abrasion of a card surface are easily caused to cause artificial losses such as the blurring of card surface patterns and the like in the using and carrying processes of the user. When a user takes a public transport means to use a single bus card, the user mostly uses small amount of money to purchase the single bus card, and staff are also required to count and settle the small amount of money.
When a user takes a public transport means to use the reusable prepaid bus card, the reusable prepaid bus card is not registered and lost, so that great loss is caused to the user after the reusable prepaid bus card is lost, and the user is required to go to a designated network to buy, recharge and refund, which causes great inconvenience to the user.
Disclosure of Invention
In order to overcome the problems in the related art, the invention provides a credit payment method and device based on a mobile terminal P2P.
According to a first aspect of the embodiments of the present invention, there is provided a credit payment method based on a mobile terminal P2P, applied to a mobile terminal, including:
receiving transaction information sent by the transaction terminal;
generating transaction response information according to the transaction information, and sending the transaction response information to the transaction terminal;
receiving deduction acceptance request information of the payment transaction sent by the transaction terminal;
generating an application private key in the mobile terminal to generate a payment authorization permission according to the deduction acceptance request information and the transaction response information;
and sending the payment authorization permission to the transaction terminal so that the transaction terminal completes the payment transaction according to the received payment authorization permission.
Further, after the sending the transaction response information corresponding to the transaction information to the transaction terminal, the method further includes:
receiving application public key certificate return request information sent by the transaction terminal;
and generating application public key certificate response information from the application public key certificate of the mobile terminal according to the application public key certificate return request information, and sending the application public key certificate response information to the transaction terminal.
Further, the generating of the application private key in the mobile terminal generates a payment authorization permission, including:
generating signature data by using an application private key stored in the mobile terminal according to the deduction acceptance request information;
generating a transaction verification code (TAC) by using a TAC sub-key generated in advance in the mobile terminal according to the deduction receiving request information and the transaction response information;
using the signature data and the TAC as the payment authorization permission.
Further, the payment method is applied to payment of public transport trips;
the transaction response information includes: payment card number, available credit and in-out sign.
Further, the deduction acceptance request message includes: deduction amount, date of the payment transaction, time of the payment transaction, incoming and outgoing marks of the payment transaction and site information of the payment transaction.
Further, the method also comprises the following steps:
subtracting the deduction amount from the available amount in the transaction information according to the deduction amount in the deduction acceptance request information to obtain the current available amount;
and taking the current available quota as the available quota of the corresponding user in the mobile terminal.
According to a second aspect of the embodiments of the present invention, there is provided a credit payment apparatus based on a mobile terminal P2P, including:
sending transaction information to the mobile terminal;
receiving transaction response information sent by the mobile terminal;
generating deduction acceptance request information of the payment transaction according to the transaction response information;
sending the deduction acceptance request information to the mobile terminal;
and when the payment authorization permission is received, determining that the payment transaction is completed according to the payment authorization permission.
Further, after the receiving the transaction response information sent by the mobile terminal, the method further includes:
sending application public key certificate return request information to the mobile terminal;
receiving application public key certificate response information sent by the mobile terminal;
verifying and signing the application public key certificate in the application public key certificate response information by using a credit authorization public key in the transaction terminal;
and when the application public key is recovered from the application public key certificate in the signature verification process, executing the step of generating deduction acceptance request information of the payment transaction.
Further, the payment method is applied to payment of public transport trips;
the transaction response information includes: payment card number, available credit, in-out station flag and transaction information.
Further, the method further comprises:
judging whether the payment card number in the transaction response information is contained in a preset blacklist or not;
and when the payment card number in the transaction response information is not contained in a preset blacklist, executing the step of sending application public key certificate return request information to the mobile terminal.
Further, the method also comprises the following steps:
judging whether the available quota in the transaction response information is greater than or equal to a preset threshold value or not;
when the available quota is larger than or equal to a preset threshold value, checking whether an in-out mark in the transaction information is in an out-of-station state;
and when the station in-out mark is in an out-of-station state, executing the step of sending application public key certificate return request information to the mobile terminal.
Further, the payment authorization permission includes: signature data and a transaction verification code TAC; the determining that the payment transaction is completed according to the payment authorization permission comprises the following steps:
verifying the signature data by using the application public key;
when the signature data is verified successfully, generating a transaction log;
sending the transaction log to a preset server so that the preset server deducts corresponding amount in a user account corresponding to the mobile terminal according to the transaction log; wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC.
According to a third aspect of the embodiments of the present invention, there is provided a credit payment apparatus based on a mobile terminal P2P, including:
the first return request information receiving unit is used for receiving the transaction information sent by the transaction terminal when the transaction terminal is detected;
the transaction response information is used for generating transaction response information according to the transaction information;
the information sending unit is used for sending the transaction response information to the transaction terminal;
the deduction receiving request information receiving unit is used for receiving deduction receiving request information of the payment transaction sent by the transaction terminal;
the application private key generation and payment authorization permission generation unit is used for generating an application private key in the mobile terminal to generate payment authorization permission according to the deduction acceptance request information and the transaction response information;
and the payment authorization permission sending unit is used for sending the payment authorization permission to the transaction terminal so as to enable the transaction terminal to complete the payment transaction according to the received payment authorization permission.
Further, the apparatus further comprises:
the second return request information receiving unit is used for receiving the application public key certificate return request information sent by the transaction terminal;
an application public key certificate response information generating unit, configured to generate application public key certificate response information from the application public key certificate of the mobile terminal according to the application public key certificate return request information;
and the public key certificate response information sending unit is used for sending the application public key certificate response information to the transaction terminal.
Further, the generation unit of the payment authorization permission by the application private key includes:
the signature data generation module is used for generating signature data by using an application private key stored in the mobile terminal according to the deduction acceptance request information;
the information generation module is used for generating a TAC (transaction verification code) by using a TAC sub-key which is generated in advance in the mobile terminal according to the deduction receiving request information and the transaction response information;
and the payment authorization permission determination module is used for taking the signature data and the TAC as the payment authorization permission.
Further, the transaction response message includes: payment card number, available credit, in-out station flag and transaction information.
Further, the payment method is applied to payment of public transport trips;
the deduction acceptance request information comprises: deduction amount, date of the payment transaction, time of the payment transaction, incoming and outgoing marks of the payment transaction and site information of the payment transaction.
Further, the method also comprises the following steps:
the current available limit generating unit is used for subtracting the deduction amount from the available limit in the transaction information according to the deduction amount in the deduction accepting request information to obtain the current available limit;
and the available quota determining unit is used for taking the current available quota as the available quota of the corresponding user in the mobile terminal.
According to a fourth aspect of the embodiments of the present invention, there is provided a credit payment apparatus based on a mobile terminal P2P, applied to a transaction terminal, the apparatus including:
the transaction information sending unit is used for sending transaction information to the mobile terminal;
the transaction response information receiving unit is used for receiving the transaction response information sent by the mobile terminal;
the deduction unit is used for generating deduction acceptance request information of the payment transaction according to the transaction response information;
a deduction acceptance request information sending unit, configured to send the deduction acceptance request information to the mobile terminal;
and the payment transaction completion unit is used for determining that the payment transaction is completed according to the payment authorization permission when the payment authorization permission is received.
Further, the apparatus further comprises:
a return request information sending unit, configured to send application public key certificate return request information to the mobile terminal;
a public key certificate response information receiving unit, configured to receive application public key certificate response information sent by the mobile terminal;
and the signature verification unit is used for verifying the signature of the application public key certificate in the application public key certificate response information by using the credit authorization public key in the transaction terminal.
Further, the transaction response message includes: payment card number, available credit and in-out sign.
Further, the apparatus further comprises:
the blacklist judging unit is used for judging whether the payment card number in the transaction response information is contained in a preset blacklist or not;
and the return request information sending unit is also used for sending application public key certificate return request information to the mobile terminal when the payment card number in the transaction response information is not contained in a preset blacklist.
Further, the method also comprises the following steps:
the threshold value judging unit is used for judging whether the available quota in the transaction response information is greater than or equal to a preset threshold value or not;
and the state checking unit is used for checking whether the station entering and exiting mark in the transaction information is in an outbound state or not when the available quota is greater than or equal to a preset threshold value.
Further, the payment authorization permission includes: signature data and a transaction verification code TAC; the payment transaction completion unit comprises:
the signature verification module is used for verifying the signature of the signature data by utilizing the application public key;
the transaction log generation module is used for generating a transaction log when the signature verification of the signature data is successful;
the transaction log sending module is used for sending the transaction log to a preset server so that the preset server deducts corresponding amount in a user account corresponding to the mobile terminal according to the transaction log; wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC.
The technical scheme provided by the embodiment of the invention can have the following beneficial effects:
the credit payment method and device based on the mobile terminal P2P can be applied to the mobile terminal and the transaction terminal, when the user opens the payment application, the off-line credit payment to the transaction terminal can be completed by using the mobile terminal, the payment transaction can be completed quickly and safely, the on-line payment is not needed, and the problem that in the related technology, for example, when the user takes a public transport means, the payment transaction function can be realized by using cash or a bus card and the like is avoided.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the invention, as claimed.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments consistent with the invention and together with the description, serve to explain the principles of the invention.
FIG. 1 is a schematic diagram of a credit authorization system according to an exemplary embodiment;
FIG. 2 is a flow chart illustrating a method for credit payment based on a mobile terminal P2P, in accordance with an exemplary embodiment;
FIG. 3 is a flow chart illustrating a method for credit payment based on a mobile terminal P2P, in accordance with another exemplary embodiment;
FIG. 4 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 5 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 6 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 7 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 8 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 9 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 10 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 11 is a flowchart of step S320 in FIG. 10;
FIG. 12 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 13 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 14 is a flowchart illustrating a credit payment method based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 15 is a flowchart illustrating a credit payment method based on the mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 16 is a flowchart illustrating a credit payment method based on the mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 17 is a flowchart illustrating a credit payment method based on the mobile terminal P2P, in accordance with yet another exemplary embodiment;
fig. 18 is a flowchart of step S450 in fig. 14;
FIG. 19 is a data interaction flow signaling diagram of the flow between the credit authorization system application, the credit payment application and the server side of the credit authorization system;
FIG. 20 is a signaling diagram of data interaction between a bus gate and a server of a credit authorization system;
FIG. 21 is a signaling diagram of data interaction between a bus gate and a server of a credit authorization system;
FIG. 22 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 23 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
fig. 24 is a schematic diagram of the payment authorization license generation unit in fig. 22 that generates a payment authorization license using a private key;
FIG. 25 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 26 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 27 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 28 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
FIG. 29 is a schematic diagram illustrating a credit payment arrangement based on a mobile terminal P2P, in accordance with yet another exemplary embodiment;
fig. 30 is a schematic diagram of a unit for completing the present payment transaction in fig. 26.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present invention. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the invention, as detailed in the appended claims.
Mobile Payment (Mobile Payment), also called Mobile Payment, can be used by a user to perform financial Payment for purchased goods or services. The mobile terminal may communicate with the transaction terminal by NFC (Near Field Communication) to implement payment transaction. Among them, NFC is also called near field communication, which is a short-distance high-frequency wireless communication technology that allows contactless point-to-point data transmission and exchange between electronic devices. Because the near field communication has natural security, the NFC technology has great application prospect in the fields of payment and the like.
P2P, peer-to-peer, is one of three operating modes of NFC technology, and this mode is similar to infrared, and can be used for data exchange, but the transmission distance is short, the transmission creation speed is fast, the transmission speed is also fast, and the power consumption is low (bluetooth is also similar). The two devices with NFC function are wirelessly linked, so that data point-to-point transmission can be realized, such as downloading music, exchanging pictures or synchronizing device address books. Thus, through NFC, multiple devices such as digital cameras, PDAs, computers and cell phones can exchange data or services. In the embodiment of the invention, the mobile terminal performs data interaction with the bus gate in a P2P mode in the NFC technology to complete credit payment transaction.
In order to facilitate those skilled in the art to understand and implement the present invention, first, the relationship among the mobile terminal, the payment terminal and the server, such as how data is transmitted and processed between the terminals, will be briefly described. Since the present invention can be used in many fields including mobile payment, for convenience of explanation, the embodiment of the present invention is described by taking an example of credit payment by mobile phone swiping when a user rides a public transportation vehicle.
As shown in fig. 1, the credit authorization system provided in the embodiment of the present invention includes: a mobile terminal 100, a transaction terminal 200 and a server 300. The mobile terminal 100 may be a mobile phone with a payment transaction function; the transaction terminal 200 may be a bus gate, which refers to a POS used in a public transportation and subway system; the server 300 is a server side of the credit authorization system. Before the user performs the payment transaction with the transaction terminal 200 through the mobile terminal 100, the credit payment transaction function of the mobile terminal 100 needs to be activated through the server 300, and then the payment transaction between the mobile terminal 100 and the transaction terminal 200 can be realized. And the transaction terminal 200 will periodically upload the transaction log of the mobile terminal 100 to the server 300, and the server 300 will deduct the corresponding amount of money from the account corresponding to the mobile terminal 100 and pay the amount of money to the public transportation company.
In the embodiment provided by the invention, two applications can be installed in the mobile terminal, one is a credit payment application, such as a credit payment application Applet, and for a Java card, Sun company designates an Applet as an object of the Applet running thereon. Another application on the mobile terminal may be a credit authorization system application. The two functions applied to the mobile terminal may also be implemented in the same application, and the embodiment of the present application is not particularly limited.
The transaction terminal 200 uses a strict identity security authentication mechanism to ensure that the public transportation credit payment application can be opened only if the identity passes the security authentication and the user with enough credit limit is provided.
The credit payment application Applet is installed in the mobile terminal 100 with the NFC function, generates an application public and private key pair during personalization, stores an application private key in the credit payment application, ensures that data cannot be stolen under any condition by the credit payment application, and issues an application public key certificate by a private key of a credit authorization system and stores the application public key certificate in the credit payment application. The public key of the credit authorization system is provided to the transaction terminal 200, and the storage location is determined by the transaction terminal 200, and since it is the public key, no mandatory requirements may be required for security.
When a credit payment transaction is provided, the transaction terminal 200 uses the public key of the credit authorization system to check and sign after reading the application public key certificate in the credit payment application, and recovers the application public key. The credit payment application generates a payment authorization permission by using the application private key, the transaction terminal 200 checks the payment authorization permission by using the application public key, checks the security factor in the authorization permission after the payment authorization permission passes, performs credit accounting after the security is confirmed, and performs settlement to a corresponding credit account at a specified time. In order to ensure safety, when any factor of the using times, the amount and the interval time exceeds a specified threshold value, the mobile terminal is required to be networked to verify the identity information of the user, and the security of re-authorization and credit payment is required.
In order to solve the related technical problem, an embodiment of the present invention first provides a credit payment method based on a mobile terminal P2P, which is used in a process of opening credit payment by a mobile terminal, as shown in fig. 2, the method may include the following steps:
in step S110, an application authorization request is sent to a preset server by using a credit authorization system application in the mobile terminal.
The credit authorization system application is installed in the mobile terminal, and the mobile terminal can send an application authorization request to a server side of the credit authorization system through the authorization system application.
In step S120, an application public key certificate and an application private key sent by a preset server are received.
The server side of the credit authorization system generates a pair of application public and private keys, namely an application public key and an application private key, according to the received application authorization request, the server side utilizes the locally stored authorization private key to sign the application public key to generate an application public key certificate, and the obtained application public key certificate and the obtained application private key are respectively sent to the mobile terminal.
In step S130, the application public key certificate and the application private key are respectively saved in the credit payment application of the mobile terminal.
And the mobile terminal stores the application public key certificate and the application private key sent by the server side into the credit payment application of the mobile terminal.
In step S140, a credit payment data acquisition request is transmitted to the preset server.
In step S150, credit payment data sent by the preset server is received, and the credit payment function of the mobile terminal is opened according to the credit payment data.
The credit payment data may be a personalization script, wherein the personalization script comprises: payment card number, credit line, available line, TAC sub-key. Wherein the payment card number is a unique feature code generated by the credit authorization system for each user's credit payment application. The available amount is the amount of money the user can currently use. And the TAC sub-key is obtained by the service end of the credit authorization system through hashing according to the card number by using the TAC mother key.
In another embodiment provided by the present invention, based on fig. 2, as shown in fig. 3, before step S110, the following steps may be further included:
in step S101, device parameter information of the mobile terminal is acquired.
The device parameter information of the mobile terminal may be hardware information of the mobile terminal, and it is required to detect whether the mobile terminal has a hardware condition required for the payment transaction, such as whether the mobile terminal has an NFC function or not, according to the device parameter information. Of course, the device parameter information may also be information such as a device model, a ROM version, a system model (e.g., android version), and an application version of the mobile terminal.
In step S102, the device parameter information is sent to a preset server.
The mobile terminal sends the acquired equipment parameter information to a server of the credit authorization system, so that the server judges whether the mobile terminal meets the hardware condition for opening credit payment according to the received equipment parameter information.
In step S103, it is detected whether credit payment opening information sent by a preset server is received.
And if the mobile terminal meets the hardware condition for opening the credit payment, the server side sends credit payment opening information to the mobile terminal. Wherein, the credit payment opening information can be a credit payment application opening page.
And if the mobile terminal does not meet the hardware condition for opening the credit payment, the server side does not send credit payment opening information to the mobile terminal.
When the credit payment opening information sent by the preset server is received, step S104 is executed.
In step S104, it is determined that the mobile terminal satisfies the hardware condition for opening credit payment, and then step S110 is performed.
In addition to detecting whether the mobile terminal satisfies the hardware condition for opening credit payment, based on fig. 2, before step S110, as shown in fig. 4, it also needs to detect whether the mobile terminal satisfies the security authentication condition, so in another embodiment provided by the present invention, the credit payment method based on the mobile terminal P2P provided by the present invention may further include the following steps:
in step S105, corresponding user identity information in the mobile terminal is acquired.
The identity information of the user can be information such as an identity card number, a name, a bank card number, a mailbox, a payer account number and the like of the user.
In step S106, the user identity information is sent to a preset server. So that the preset terminal judges whether the mobile terminal meets the safety certification condition for opening credit payment according to the received user identity information.
The mobile terminal sends the user identity information to a server of the credit authorization system, so that the server verifies the user identity information, such as whether a bank card number provides service normally, whether the user account number has a credit bad transaction record, and the like.
In step S107, it is detected whether security authentication passing information sent by a preset server is received.
After receiving the user information sent by the mobile terminal, the server side checks the user information, and if the user information meets the security authentication condition for opening credit payment, the server side sends security authentication passing information to the mobile terminal.
When the security authentication passing information sent by the preset server is received, in step S108, it is determined that the mobile terminal satisfies the security authentication condition for opening credit payment, and then step S110 is performed.
And when the mobile terminal receives the safety certification passing information sent by the server, determining that the mobile terminal meets the safety certification condition for opening credit payment.
And when the mobile terminal does not receive the safety certification passing information sent by the server, determining that the mobile terminal does not meet the safety certification condition for opening credit payment.
Based on fig. 2, before step S110, as shown in fig. 5, it is further required to install a relevant application on the mobile terminal, therefore, the credit payment method based on the mobile terminal P2P provided by the present invention further includes the following steps:
in step S160, a request for obtaining a preset installation file is sent to the preset server.
Presetting installation files comprises: a credit payment application.
In step S170, a preset installation file sent by a preset server is acquired.
In step S180, a preset installation file is installed in the mobile terminal. Step S110 is then performed.
After the credit payment application and the registration script are respectively installed on the mobile terminal, the personalization of the user of the mobile terminal is finished. The process of opening the payment function for communication on the mobile terminal side is finished, and the execution process on the service side of the credit authorization system for opening the credit payment function on the mobile terminal is described in detail below with reference to the above embodiment.
In another embodiment provided by the present invention, as shown in fig. 6, an execution flow of the credit payment method based on the mobile terminal P2P provided by the present invention at the server (the server of the credit authorization system) may include the following steps:
in step S210, an application authorization request sent by the mobile terminal is received.
In step S220, an application public key and an application private key are respectively generated according to the application authorization request.
In step S230, the application public key is signed by using the credit authorization private key stored in the preset server, and an application public key certificate is generated.
In step S240, the application public key certificate and the application private key are respectively transmitted to the mobile terminal.
The server side of the credit authorization system generates a pair of application public and private keys, namely an application public key and an application private key, according to the received application authorization request, the server side utilizes the locally stored authorization private key to sign the application public key to generate an application public key certificate, and the obtained application public key certificate and the obtained application private key are respectively sent to the mobile terminal.
In step S250, a credit payment data acquisition request sent by the mobile terminal is received.
In step S260, credit payment data corresponding to the mobile terminal is generated according to the credit payment data acquisition request, and the credit payment data is sent to the mobile terminal, so that the mobile terminal opens a credit payment function of the mobile terminal according to the received credit payment data.
The credit payment data may be a personalization script, wherein the personalization script comprises: payment card number, credit line, available line, TAC sub-key. Wherein the payment card number is a unique feature code generated by the credit authorization system for each user's credit payment application. The available amount is the amount of money the user can currently use. And the TAC sub-key is obtained by the service end of the credit authorization system through hashing according to the card number by using the TAC mother key.
Based on fig. 6, as shown in fig. 7, in another embodiment provided by the present invention, the server (the server of the credit authorization system) determines whether the mobile terminal satisfies a hardware condition for opening credit payment according to the device parameter information sent by the mobile terminal, and therefore, the credit payment method based on the mobile terminal P2P provided in this embodiment of the present invention may further include, before step S210, the following steps:
in step S201, device parameter information transmitted by the mobile terminal is received.
In the process of activating the credit payment function of the mobile terminal, the mobile terminal can communicate with a service end (namely a server) of the credit authorization system in a mode of network and the like, and the service end of the credit authorization system can receive the equipment parameter information sent by the mobile terminal.
In step S202, it is determined whether the mobile terminal satisfies a hardware condition for opening credit payment according to the device parameter information.
The parameter information sent by the mobile terminal may be information such as a device model, a ROM version, a system model (e.g., android version), and an application version of the mobile terminal. The server can detect whether the mobile terminal has the NFC function or not according to the information sent by the mobile terminal.
And if the server detects that the mobile terminal meets the hardware condition for opening the credit payment, the server sends credit payment opening information to the mobile terminal. Wherein, the credit payment opening information can be a credit payment application opening page. The user can input user information on a credit payment application opening interface on the mobile terminal and upload the user information to the server side.
And if the server detects that the mobile terminal does not meet the hardware condition for opening the credit payment, the server does not send the credit payment opening information to the mobile terminal.
When the mobile terminal satisfies the hardware condition for opening credit payment, in step S203, credit payment opening information is transmitted to the mobile terminal. Step S210 is then performed.
The service end of the credit authorization system needs to detect user identity information sent by the mobile terminal in addition to the device parameter information sent by the mobile terminal, and judges whether the user corresponding to the mobile terminal meets the security authentication condition. Therefore, based on fig. 6, as shown in fig. 8, the credit payment method based on the mobile terminal P2P provided by the present invention may further include, before step S210, the following steps in the process of activating the credit payment function of the mobile terminal:
in step S204, the user identity information sent by the mobile terminal is received.
The user identity information can be information such as an identity card number, a name, a bank card number, a mail box, a payer account number and the like of the user.
In step S205, it is determined whether the mobile terminal meets the security authentication condition for opening credit payment according to the user identity information.
For example, the server may detect whether a line of card numbers in the user identity information provides services normally, whether a bad transaction record exists, and the like.
And if the server detects that the mobile terminal meets the security authentication condition for opening credit payment, the server sends security authentication passing information to the mobile terminal.
When the identity information satisfies the security authentication condition for opening credit payment, security authentication passing information is transmitted to the mobile terminal in step S206. Step S210 is then performed.
When the mobile terminal opens the credit payment, the credit payment application is required to be installed, and the installation files are required to be sent to the mobile terminal by the server side of the credit payment system. Therefore, based on fig. 6, as shown in fig. 9, in another embodiment provided by the present invention, before step S210, the credit payment method based on the mobile terminal P2P further includes the following steps:
in step S207, a request for acquiring a preset installation file sent by the mobile terminal is received.
Wherein, predetermine the installation file and include: a credit payment application.
In step S208, the preset installation files are respectively transmitted to the mobile terminals according to the request for obtaining the preset installation files, and then step S210 is performed.
The above embodiments of the present invention describe how to open a credit payment process at a mobile terminal, and in some scenarios, the credit payment process may also be obtained through other approaches, for example, setting in advance at the mobile terminal, or performing a registration application by going to a credit payment authority, and the like, where the process of opening the credit payment is not particularly limited.
In order to solve the related art problem, the embodiment of the present invention firstly provides a credit payment method based on a mobile terminal P2P, which is used in the process of credit payment between a mobile terminal and a transaction terminal, as shown in fig. 10, the method may include the following steps:
in step S310, transaction information transmitted from the transaction terminal is received.
When the mobile terminal is held by a user and is close to a bus gate to carry out payment transaction, because a radio frequency field can be generated on the bus gate, when the mobile terminal is close to the bus gate, namely, when the mobile terminal enters the radio frequency field generated by the bus gate, the mobile terminal can detect the bus gate, and meanwhile, the bus gate also can detect the mobile terminal. At this time, the public traffic gate can establish communication connection with the mobile terminal, the public traffic gate can send transaction information to the mobile terminal, and the mobile terminal can receive the transaction information sent by the public traffic gate.
It should be noted that, in the P2P mode, how to perform interaction of NDEF (NFC Data Exchange Format: NFC) messages is defined.
In step S320, transaction response information is generated according to the transaction information and is sent to the transaction terminal.
In step S330, information of a deduction acceptance request of the payment transaction sent by the transaction terminal is received.
After receiving the application public key certificate sent by the mobile terminal, the public key gate checks the application public key certificate, generates deduction information of the payment transaction, sends the deduction information to the mobile terminal, and the mobile terminal receives the deduction information sent by the public key gate.
In step S340, an application private key in the mobile terminal is generated to generate a payment authorization permission according to the deduction acceptance request information and the transaction response information.
The payment authorization permission generated by the mobile terminal comprises: signature data and TAC (Transaction authentication code).
In step S350, the payment authorization permission is sent to the transaction terminal, so that the transaction terminal completes the payment transaction according to the received payment authorization permission.
And after receiving the payment authorization permission sent by the mobile terminal, the bus gate verifies the payment permission, and if the verification is correct, the bus gate determines that the payment transaction is finished.
After the bus gate induces the mobile terminal, the SNEP Get Request Message can be assembled and sent to the bus credit payment application, and the Information field of the Message identifies the Message as the read card Information. After receiving the information, the bus credit payment application assembles data to be returned as SNEP Response Message, including card number, available amount, station-entering and station-exiting mark and transaction information, and returns the data to the gate. The content of the transaction information includes site information, transaction date, transaction time and the like.
Note that, SNEP Request Message: the SNEP Client in the P2P sends a request message to the SNEP Server. The message is divided into two types of get and put, wherein the get requests the Server to return data, and the put requests the Server to receive the data. This document distinguishes between SNEP Get Request Message and SNEP Put Request Message. SNEPRESPONSE Message: the SNEP Server in P2P returns a response message to the SNEP Client. The Get request returns data, and the put request returns success or an error response code.
The return Request Message corresponds to an SNEP Get Request Message, and the transaction response Message corresponds to an snerpesponse Message.
According to the method provided by the embodiment of the invention, when a user carries out payment transaction with the transaction terminal by using the mobile terminal, the transaction information, the application public key certificate and the generated payment authorization permission are sequentially sent to the transaction terminal by the mobile terminal according to the related instruction information sent by the transaction terminal, and the transaction terminal completes the payment transaction according to the information sent by the mobile terminal. Compared with the problems in the related art, the credit payment method provided by the embodiment of the invention has the advantages that when a user uses the mobile terminal to trade with the trading terminal, the mobile terminal and the trading terminal can be respectively in an off-line mode, the user account of the mobile terminal can be subjected to credit accounting consumption, settlement is carried out after the user uses the mobile terminal to consume, and the fund loss risk generated when the user uses cash trading can be avoided.
As a refinement of the method of fig. 10, in another embodiment of the present invention, as shown in fig. 11, after step S320, the following steps may be further included:
in step S360, application public key certificate return request information sent by the transaction terminal is received.
In step S370, the application public key certificate of the mobile terminal generates application public key certificate response information according to the application public key certificate return request information, and sends the application public key certificate response information to the mobile terminal.
The application public key certificate response information corresponds to the application public key certificate return request information, and meets the format requirements of data sending and receiving.
In order to describe in detail how the mobile terminal generates the payment authorization permission in the embodiment of the present invention, so that the transaction terminal completes the payment transaction according to the authorization permission sent by the mobile terminal, as a refinement of the method in fig. 10, in another embodiment of the present invention, as shown in fig. 12, step S340 may further include the following steps:
in step S361, signature data is generated using the application private key stored in the mobile terminal according to the deduction acceptance request information.
The application private key is generated in advance and stored in the mobile terminal, and the credit payment application signs the deduction information by using the application private key to generate signature data. Wherein, deduction information includes: deduction amount, date of the payment transaction, time of the payment transaction, incoming and outgoing marks of the payment transaction and site information of the payment transaction.
In step S362, a TAC is generated using a TAC sub-key, which is a transaction verification code generated in advance in the mobile terminal, according to the deduction acceptance request information and the transaction response information.
The deduction acceptance request information comprises deduction information, and the transaction response information comprises transaction information. And according to the deduction information and the transaction information, encrypting the deduction amount, the payment transaction date, the payment transaction time, the payment card number, the available amount and the credit amount by using the credit payment application in the mobile terminal to generate the TAC. The credit limit is the maximum available amount of the user authorized by the credit authorization system in an offline state.
In step S363, the signature data and the TAC are used as the payment authorization permission.
The credit payment application can respectively send the signature data and the TAC as payment authorization licenses to the bus gate, and can also send the signature data and the TAC as credit authorization licenses to the bus gate together.
In addition, the transaction information includes: payment card number, available credit, in-out station flag and transaction information. Wherein the payment card number is a unique feature code generated by the credit authorization system for each user's credit payment application. The available amount is the amount of money the user can currently use. And the TAC sub-key is obtained by the service end of the credit authorization system through hashing according to the card number by using the TAC mother key. The content of the upper transaction information comprises site information, transaction date, transaction time and the like.
Based on fig. 10, as shown in fig. 13, in another embodiment of the present invention, the method may further include the following steps:
in step S380, according to the deduction amount in the deduction acceptance request message, subtracting the deduction amount from the available amount in the transaction message to obtain the current available amount;
in step S390, the current available quota is used as the available quota of the corresponding user in the mobile terminal.
In order to describe the transaction payment process between the mobile terminal and the transaction terminal in detail, an embodiment of the invention provides a credit payment method based on a mobile terminal P2P, and an execution flow at the transaction terminal side, as shown in fig. 14, the method may include the following steps:
in step S410, transaction information is transmitted to the mobile terminal.
In step S420, the transaction response information sent by the mobile terminal is received.
In step S430, deduction acceptance request information of the payment transaction is generated according to the transaction response information.
In step S440, the deduction acceptance request message is transmitted to the mobile terminal.
In step S450, when the payment authorization permission is received, it is determined that the payment transaction is completed according to the payment authorization permission.
Since the method is an execution flow of the public transit gate side in the credit payment transaction process, and corresponds to an execution flow of the mobile terminal side in the credit payment transaction process, data exchange between the two is not described herein, and details can be referred to the execution flow of the mobile terminal side in the above embodiments.
It should be noted that, in the embodiments, for example, the transaction information, the transaction response information, the public key certificate return request information, the public key certificate response information, and the like are related to illustrate that the format requirement is satisfied in the data interaction process, and the transaction information, the transaction response information, the public key certificate return request information, and the public key certificate response information, for example, the transaction response information may be understood as returning response information including the transaction information, and the public key certificate response information may be understood as response information including the public key certificate.
Additionally, the transaction response message includes: payment card number, available credit, in-out station flag and transaction information.
Based on fig. 14, as shown in fig. 15, in another embodiment provided by the present invention, after step S420, the method may further include the following steps:
in step S460, application public key certificate return request information is sent to the mobile terminal.
In step S470, application public key certificate response information sent by the mobile terminal is received.
In step S480, the credit authorization public key in the transaction terminal is used to verify the signature of the application public key certificate in the application public key certificate response message.
Since the method is an execution flow of the public transit gate side in the credit payment transaction process, and corresponds to an execution flow of the mobile terminal side in the credit payment transaction process, data exchange between the two is not described herein, and details can be referred to the execution flow of the mobile terminal side in the above embodiments.
Based on fig. 14, as shown in fig. 16, in another embodiment provided by the present invention, the method may further include the following steps:
in step S401, it is determined whether the payment card number in the transaction response message is included in the preset blacklist.
When the payment card number in the transaction response message is not included in the preset blacklist, step S460 is performed.
The blacklist can be a transaction terminal and is preset in the public transit gate, the user identity information corresponding to the mobile terminal is compared with the information in the blacklist, if the user identity information exists in the blacklist, the transaction payment process is stopped, and malicious transaction is avoided.
Based on fig. 14, as shown in fig. 17, in another embodiment provided by the present invention, the method may further include the following steps:
in step S402, determining whether the available credit in the transaction response message is greater than or equal to a preset threshold;
when the available credit is greater than or equal to the preset threshold, in step S403, checking whether the in-out flag in the transaction information is in an out-of-station state;
when the inbound and outbound flag is in the outbound state, step S460 is performed.
Whether credit payment transaction needs to be continued is judged by checking the available amount of the user, and when the available amount of the user is lower than the deduction amount of the transaction, the credit payment transaction is stopped, so that malicious payment transaction can be avoided.
The method comprises the steps that the public traffic gate checks whether the available amount of a user account corresponding to a mobile terminal is enough to pay the amount used by the payment transaction according to transaction information sent by the mobile terminal, if the available amount is not enough, the payment transaction is rejected, if the available amount is enough, the public traffic gate checks whether an in-and-out mark in the transaction information is 0, and if the in-and-out mark is not 0, the payment transaction is rejected; if the in-out station flag is 0, the payment transaction is continued. It should be noted that, if the station entering and exiting flag 1 indicates that the mobile terminal held by the user is in the station entering state, the payment transaction is rejected; and if 0 in the in-and-out mark indicates that the mobile terminal held by the user is in the out-of-station state, the user can settle accounts and perform the payment transaction.
Based on fig. 14, as shown in fig. 18, in another embodiment provided by the present invention, step S450 may include:
in step S481, the signature data is verified using the application public key.
The application public key is obtained by recovering the public transit gate from the payment authorization permission sent by the mobile terminal, the application public key can check whether the relevant information in the signature data is matched with the corresponding information in the application public key, and if the relevant information is matched with the corresponding information in the application public key, the signature verification is determined to be passed.
In step S482, when the signature data is successfully verified, a transaction log is generated.
And when the bus gate passes the signature verification of the signature data, generating a transaction log of the payment. Wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC.
In step S483, the transaction log is sent to the preset server, so that the preset server deducts a corresponding amount of money from the user account corresponding to the mobile terminal according to the transaction log.
Wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC. A payment authorization license comprising: signature data and a transaction verification code TAC.
In another embodiment of the present invention, as shown in fig. 19, in the embodiment of the credit payment method based on the mobile terminal P2P, the mobile terminal is represented by a mobile phone, and the server of the credit authorization system represents a server for explanation, when the mobile phone activates the credit payment function, a flow among the application of the credit authorization system, the application of the credit payment and the server of the credit authorization system in the mobile phone includes:
1001, acquiring equipment parameter information of a mobile phone;
step 1002, uploading equipment parameter information;
step 1003, judging whether the mobile phone receiving meets the hardware condition for opening credit payment;
step 1004, returning a judgment result;
step 1005, judging result is: displaying an opening credit payment application interface;
step 1006, uploading user identity information;
step 1007, judging whether the mobile phone receiving meets the safety certification condition for opening credit payment;
step 1008, returning a judgment result;
step 1009, the user chooses to open the credit payment application;
step 1010, activating a credit payment application;
step 1011, returning an activation success result;
step 1012, requesting an application private key, an application public key certificate and credit payment data;
step 1013, generating a pair of public and private keys, and generating an application public key certificate by using the credit authorization private key; generating a payment card; generating an application TAC sub-key, an application plus sub-key and credit payment data by the number and the hash;
step 1014, returning an application private key, an application public key certificate and credit payment data;
step 1015, sending the application private key, the application public key certificate and the credit payment data;
step 1016, storing the application private key, the application public key certificate and the credit payment data;
step 1017, returning the personalization result;
step 1018, sending a credit payment opening result;
step 1019, recording the opening result;
step 1020, return a processing completion notification;
and step 1021, prompting the user that the credit payment application is successfully opened.
In another embodiment provided by the present invention, as shown in fig. 20, in the credit payment method based on the mobile terminal P2P provided by the present invention, during the payment transaction of the mobile terminal, the data interaction flow between the mobile terminal and the bus gate is as follows:
step 2001, SNEP-Request (Get [ card reading information ]);
step 2002, reading data needing to be returned;
step 2003, SNEP-Response (return payment card number, available amount, station entrance and exit mark, last transaction information);
step 2004, blacklist judgment; if the information exists in the blacklist, refusing information is prompted;
step 2005, checking available quota, station entrance and exit signs; if the check is not passed, prompting rejection information;
step 2006, SNEP-Request (Get [ read application public key certificate ]);
step 2007, SNEP-Response (application public key certificate);
step 2008, reading the stored public key of the application authorization system, and checking the application public key certificate; if the signature is not passed, prompting rejection information; the application public key is analyzed after the signature verification is passed;
step 2009, calculating the deduction amount;
step 2010, SNEP-Request (Put (deduction: deduction amount, transaction time, station entrance mark and station exit mark and transaction information (station, etc.));
step 2011, generating a payment authorization license includes: signature data and TAC;
step 2012, return signature data and TAC;
step 2013, using the application public key to verify the data signature; the signature verification is passed, and a transaction log is recorded; and if the signature is not passed, prompting rejection information.
In addition, as shown in fig. 21, the bus gate also needs to upload the transaction log credit authorization system periodically and update the blacklist. The invention provides a credit payment method based on a mobile terminal P2P, wherein a data interaction flow between a public transit gate (transaction terminal) and a service end of a credit authorization system is as follows:
step 3001, periodically uploading a transaction log;
step 3002, settlement, inquiring whether the blacklist in the system is updated, and if so, preparing the blacklist to return;
step 3003, returning transaction log receiving result and blacklist list;
step 3004, checking whether a blacklist exists;
step 3005, updating the blacklist list by the bus gate;
step 3006, updating;
step 3007, return update complete result.
Wherein, the public gate management system can be positioned in the public transit gate.
In the above embodiment, the process of realizing payment in public transportation is taken as an example for explanation, and it can be understood that the method is also applicable to other scenarios, such as offline shopping payment, subway payment, and the like. The specific application scenario is not limited.
Through the above description of the method embodiments, those skilled in the art can clearly understand that the present invention can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but the former is a better implementation mode in many cases. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the methods according to the embodiments of the present invention. And the aforementioned storage medium includes: various media that can store program codes, such as Read Only Memory (ROM), Random Access Memory (RAM), magnetic or optical disks, and so on.
In addition, as an implementation of the foregoing embodiments, an embodiment of the present invention further provides a credit payment apparatus based on a mobile terminal P2P, where the apparatus is located in the mobile terminal, and as shown in fig. 22, the apparatus includes: a first return request information receiving unit 10, transaction response information 20, an information transmitting unit 30, a deduction acceptance request information receiving unit 40, an application private key generation payment authorization permission generating unit 50, and a payment authorization permission transmitting unit 60, wherein,
a first return request information receiving unit 10, configured to receive transaction information sent by the transaction terminal;
the transaction response information 20 is used for generating transaction response information according to the transaction information;
an information sending unit 30, configured to send transaction response information to the transaction terminal;
a deduction acceptance request information receiving unit 40, configured to receive deduction acceptance request information of the current payment transaction sent by the transaction terminal;
an application private key generation and payment authorization permission generation unit 50, configured to generate an application private key in the mobile terminal to generate a payment authorization permission according to the deduction acceptance request information and the transaction response information;
a payment authorization permission sending unit 60, configured to send the payment authorization permission to the transaction terminal, so that the transaction terminal completes the payment transaction according to the received payment authorization permission.
In another embodiment of the present invention, based on fig. 22, in another embodiment of the present invention, as shown in fig. 23, the apparatus further includes:
a second return request information receiving unit 70, configured to receive application public key certificate return request information sent by the transaction terminal;
an application public key certificate response information generating unit 80, configured to generate application public key certificate response information from the application public key certificate of the mobile terminal according to the application public key certificate return request information;
a public key certificate response information sending unit 90, configured to send the application public key certificate response information to the mobile terminal.
In another embodiment of the present invention, based on fig. 22, as shown in fig. 24, the application private key generation payment authorization permission generation unit 50 includes:
the signature data generating module 51 is configured to generate signature data by using an application private key stored in the mobile terminal according to the deduction acceptance request information;
an information generating module 52, configured to generate a TAC by using a TAC sub-key, which is a transaction verification code and is generated in advance in the mobile terminal, according to the deduction acceptance request information and the transaction response information;
a payment authorization permission determination module 53, configured to use both the signature data and the TAC as the payment authorization permission.
In another embodiment of the present invention, based on fig. 22, as shown in fig. 25, the apparatus further includes:
a current available limit generating unit 91, configured to subtract the deduction amount from the available limit in the transaction information according to the deduction amount in the deduction acceptance request information to obtain a current available limit;
an available quota determining unit 92, configured to use the current available quota as an available quota of a corresponding user in the mobile terminal.
In another embodiment of the present invention, an embodiment of the present invention further provides a credit payment apparatus based on a mobile terminal P2P, the apparatus is located in a transaction terminal, as shown in fig. 26, and the apparatus includes: a transaction information transmitting unit 11, a transaction response information receiving unit 12, a deduction unit 13, a deduction acceptance request information transmitting unit 14, and a present payment transaction completing unit 15, wherein,
a transaction information sending unit 11, configured to send transaction information to the mobile terminal;
a transaction response information receiving unit 12, configured to receive transaction response information sent by the mobile terminal;
the deduction unit 13 is used for generating deduction acceptance request information of the payment transaction according to the transaction response information;
a deduction acceptance request information sending unit 14, configured to send the deduction acceptance request information to the mobile terminal;
and the payment transaction completion unit 15 is configured to determine that the payment transaction is completed according to the payment authorization permission when the payment authorization permission is received.
In another embodiment of the present invention, based on fig. 26, as shown in fig. 27, the apparatus further includes:
a return request information sending unit 16, configured to send application public key certificate return request information to the mobile terminal;
a public key certificate response information receiving unit 17, configured to receive application public key certificate response information sent by the mobile terminal;
the signature verification unit 18 is configured to verify the signature of the application public key certificate in the application public key certificate response information by using the credit authorization public key in the transaction terminal;
in another embodiment of the present invention, based on fig. 26, as shown in fig. 28, the apparatus further includes: and a blacklist determination unit 191. Wherein the content of the first and second substances,
and a blacklist determining unit 191 configured to determine whether the payment card number in the transaction response information is included in a preset blacklist.
The return request information sending unit 192 is further configured to send application public key certificate return request information to the mobile terminal when the payment card number in the transaction response information is not included in the preset blacklist.
In another embodiment of the present invention, based on fig. 21, as shown in fig. 29, the apparatus further includes:
a threshold determining unit 193, configured to determine whether an available credit in the transaction response message is greater than or equal to a preset threshold;
the status checking unit 194 is configured to check whether the in-out flag in the transaction information is in an out-of-station status when the available credit is greater than or equal to a preset threshold.
In another embodiment of the present invention, based on fig. 26, as shown in fig. 30, the payment authorization permission includes: signature data and a transaction verification code TAC; the payment transaction completion unit 15 includes:
a signature verification module 151, configured to verify the signature of the signature data by using the application public key;
a transaction log generating module 152, configured to generate a transaction log when the signature verification of the signature data is successful;
the transaction log sending module 153 is configured to send the transaction log to a preset server, so that the preset server deducts a corresponding amount from a user account corresponding to the mobile terminal according to the transaction log; wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC.
With regard to the apparatus in the above-described embodiment, the specific manner in which each module performs the operation has been described in detail in the embodiment related to the method, and will not be elaborated here.
It should be appreciated that the invention is operational with numerous general purpose or special purpose computing system environments or configurations. For example: personal computers, server computers, hand-held or portable devices, tablet-type devices, multiprocessor systems, microprocessor-based systems, set top boxes, programmable consumer electronics, network PCs, minicomputers, mainframe computers, distributed computing environments that include any of the above systems or devices, and the like.
The invention may be described in the general context of computer-executable instructions, such as program modules, being executed by a computer. Generally, program modules include routines, programs, objects, components, data structures, etc. that perform particular tasks or implement particular abstract data types. The invention may also be practiced in distributed computing environments where tasks are performed by remote processing devices that are linked through a communications network. In a distributed computing environment, program modules may be located in both local and remote computer storage media including memory storage devices.
It is noted that, in this document, relational terms such as "first" and "second," and the like, may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other identical elements in a process, method, article, or apparatus that comprises the element.
Other embodiments of the invention will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the invention and including such departures from the present disclosure as come within known or customary practice within the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the invention being indicated by the following claims.
It will be understood that the invention is not limited to the precise arrangements described above and shown in the drawings and that various modifications and changes may be made without departing from the scope thereof. The scope of the invention is limited only by the appended claims.
Claims (24)
1. A credit payment method based on a mobile terminal P2P, which is applied to the mobile terminal, and is characterized in that the method comprises the following steps:
receiving transaction information sent by the transaction terminal;
generating transaction response information according to the transaction information, and sending the transaction response information to the transaction terminal;
receiving deduction acceptance request information of the payment transaction sent by the transaction terminal;
generating an application private key in the mobile terminal to generate a payment authorization permission according to the deduction acceptance request information and the transaction response information;
and sending the payment authorization permission to the transaction terminal so that the transaction terminal completes the payment transaction according to the received payment authorization permission.
2. The credit payment method based on the mobile terminal P2P, according to claim 1, further comprising, after the sending transaction response information corresponding to the transaction information to the transaction terminal:
receiving application public key certificate return request information sent by the transaction terminal;
and generating application public key certificate response information from the application public key certificate of the mobile terminal according to the application public key certificate return request information, and sending the application public key certificate response information to the transaction terminal.
3. The mobile terminal P2P-based credit payment method according to claim 1, wherein the generating of the application private key in the mobile terminal generates a payment authorization permission, including:
generating signature data by using an application private key stored in the mobile terminal according to the deduction acceptance request information;
generating a transaction verification code (TAC) by using a TAC sub-key generated in advance in the mobile terminal according to the deduction receiving request information and the transaction response information;
using the signature data and the TAC as the payment authorization permission.
4. The credit payment method based on the mobile terminal P2P, according to claim 1, wherein the payment method is applied to payment of public transit trip;
the transaction response information includes: payment card number, available credit and in-out sign.
5. The credit payment method based on the mobile terminal P2P, according to any one of claims 1 to 4, wherein the deduction acceptance request message includes: deduction amount, date of the payment transaction, time of the payment transaction, incoming and outgoing marks of the payment transaction and site information of the payment transaction.
6. The credit payment method based on the mobile terminal P2P, according to claim 5, further comprising:
subtracting the deduction amount from the available amount in the transaction information according to the deduction amount in the deduction acceptance request information to obtain the current available amount;
and taking the current available quota as the available quota of the corresponding user in the mobile terminal.
7. A credit payment method based on a mobile terminal P2P, which is applied to a transaction terminal, and is characterized in that the method comprises the following steps:
sending transaction information to the mobile terminal;
receiving transaction response information sent by the mobile terminal;
generating deduction acceptance request information of the payment transaction according to the transaction response information;
sending the deduction acceptance request information to the mobile terminal;
and when the payment authorization permission is received, determining that the payment transaction is completed according to the payment authorization permission.
8. The credit payment method based on the mobile terminal P2P, according to claim 7, further comprising, after the receiving the transaction response message sent by the mobile terminal:
sending application public key certificate return request information to the mobile terminal;
receiving application public key certificate response information sent by the mobile terminal;
verifying and signing the application public key certificate in the application public key certificate response information by using a credit authorization public key in the transaction terminal;
and when the application public key is recovered from the application public key certificate in the signature verification process, executing the step of generating deduction acceptance request information of the payment transaction.
9. The credit payment method based on the mobile terminal P2P, according to claim 7 or 8, wherein the payment method is applied to the payment of public transit trip;
the transaction response information includes: payment card number, available credit and in-out sign.
10. The mobile terminal P2P-based credit payment method according to claim 9, wherein the method further comprises:
judging whether the payment card number in the transaction response information is contained in a preset blacklist or not;
and when the payment card number in the transaction response information is not contained in a preset blacklist, executing the step of sending application public key certificate return request information to the mobile terminal.
11. The credit payment method based on the mobile terminal P2P, according to claim 9, further comprising:
judging whether the available quota in the transaction response information is greater than or equal to a preset threshold value or not;
when the available quota is larger than or equal to a preset threshold value, checking whether an in-out mark in the transaction information is in an out-of-station state;
and when the station in-out mark is in an out-of-station state, executing the step of sending application public key certificate return request information to the mobile terminal.
12. The credit payment method based on the mobile terminal P2P, wherein the payment authorization permission comprises: signature data and a transaction verification code TAC; the determining that the payment transaction is completed according to the payment authorization permission comprises the following steps:
verifying the signature data by using the application public key;
when the signature data is verified successfully, generating a transaction log;
sending the transaction log to a preset server so that the preset server deducts corresponding amount in a user account corresponding to the mobile terminal according to the transaction log; wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC.
13. A credit payment device based on a mobile terminal P2P, applied to a mobile terminal, characterized in that the device comprises:
the first return request information receiving unit is used for receiving the transaction information sent by the transaction terminal;
the transaction response information is used for generating transaction response information according to the transaction information;
the information sending unit is used for sending the transaction response information to the transaction terminal;
the deduction receiving request information receiving unit is used for receiving deduction receiving request information of the payment transaction sent by the transaction terminal;
the application private key generation and payment authorization permission generation unit is used for generating an application private key in the mobile terminal to generate payment authorization permission according to the deduction acceptance request information and the transaction response information;
and the payment authorization permission sending unit is used for sending the payment authorization permission to the transaction terminal so as to enable the transaction terminal to complete the payment transaction according to the received payment authorization permission.
14. The credit payment device based on the mobile terminal P2P, according to claim 13, further comprising:
the second return request information receiving unit is used for receiving the application public key certificate return request information sent by the transaction terminal;
an application public key certificate response information generating unit, configured to generate application public key certificate response information from the application public key certificate of the mobile terminal according to the application public key certificate return request information;
and the public key certificate response information sending unit is used for sending the application public key certificate response information to the transaction terminal.
15. The credit payment device based on the mobile terminal P2P, wherein the application private key generates the payment authorization permission generating unit, comprising:
the signature data generation module is used for generating signature data by using an application private key stored in the mobile terminal according to the deduction acceptance request information;
the information generation module is used for generating a TAC (transaction verification code) by using a TAC sub-key which is generated in advance in the mobile terminal according to the deduction receiving request information and the transaction response information;
and the payment authorization permission determination module is used for taking the signature data and the TAC as the payment authorization permission.
16. The credit payment device based on the mobile terminal P2P, according to claim 13, wherein the payment method is applied to payment of public transit trip;
the transaction response information includes: payment card number, available credit, in-out station flag and transaction information.
17. The mobile terminal P2P-based credit payment device according to any one of claims 13 to 16, wherein the deduction acceptance request message includes: deduction amount, date of the payment transaction, time of the payment transaction, incoming and outgoing marks of the payment transaction and site information of the payment transaction.
18. The mobile terminal P2P-based credit payment device of claim 17, further comprising:
the current available limit generating unit is used for subtracting the deduction amount from the available limit in the transaction information according to the deduction amount in the deduction accepting request information to obtain the current available limit;
and the available quota determining unit is used for taking the current available quota as the available quota of the corresponding user in the mobile terminal.
19. A credit payment device based on a mobile terminal P2P, applied to a transaction terminal, characterized in that the device comprises:
the transaction information sending unit is used for sending transaction information to the mobile terminal;
the transaction response information receiving unit is used for receiving the transaction response information sent by the mobile terminal;
the deduction unit is used for generating deduction acceptance request information of the payment transaction according to the transaction response information;
a deduction acceptance request information sending unit, configured to send the deduction acceptance request information to the mobile terminal;
and the payment transaction completion unit is used for determining that the payment transaction is completed according to the payment authorization permission when the payment authorization permission is received.
20. The mobile terminal P2P-based credit payment device of claim 19, further comprising:
a return request information sending unit, configured to send application public key certificate return request information to the mobile terminal;
a public key certificate response information receiving unit, configured to receive application public key certificate response information sent by the mobile terminal;
and the signature verification unit is used for verifying the signature of the application public key certificate in the application public key certificate response information by using the credit authorization public key in the transaction terminal.
21. The credit payment device based on the mobile terminal P2P, according to claim 19 or 20, wherein the transaction response message includes: payment card number, available credit and in-out sign.
22. The mobile terminal P2P-based credit payment device of claim 21, wherein the device further comprises:
the blacklist judging unit is used for judging whether the payment card number in the transaction response information is contained in a preset blacklist or not;
and the return request information sending unit is also used for sending application public key certificate return request information to the mobile terminal when the payment card number in the transaction response information is not contained in a preset blacklist.
23. The mobile terminal P2P-based credit payment device of claim 21, further comprising:
the threshold value judging unit is used for judging whether the available quota in the transaction response information is greater than or equal to a preset threshold value or not;
and the state checking unit is used for checking whether the station entering and exiting mark in the transaction information is in an outbound state or not when the available quota is greater than or equal to a preset threshold value.
24. The mobile terminal P2P-based credit payment device of claim 20, wherein the payment authorization permission comprises: signature data and a transaction verification code TAC; the payment transaction completion unit comprises:
the signature verification module is used for verifying the signature of the signature data by utilizing the application public key;
the transaction log generation module is used for generating a transaction log when the signature verification of the signature data is successful;
the transaction log sending module is used for sending the transaction log to a preset server so that the preset server deducts corresponding amount in a user account corresponding to the mobile terminal according to the transaction log; wherein the transaction log comprises: deduction amount, transaction date, transaction time, transaction terminal ID, payment card number, available amount and TAC.
Publications (2)
| Publication Number | Publication Date |
|---|---|
| HK1241103A true HK1241103A (en) | 2018-06-01 |
| HK1241103A1 HK1241103A1 (en) | 2018-06-01 |
Family
ID=
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106997530B (en) | Credit payment method and device based on mobile terminal card simulation | |
| TWI675338B (en) | Credit payment method and device based on mobile terminal P2P | |
| CN106997529B (en) | Credit payment method and device based on mobile terminal eSE | |
| CN101916459B (en) | Safe electronic ticket method | |
| US20160140775A1 (en) | Method and apparatus for mobile ticketing | |
| HK1241103A (en) | Credit payment method and device based on mobile terminal p2p | |
| HK1241103A1 (en) | Credit payment method and device based on mobile terminal p2p | |
| EP4409498A1 (en) | Device security with one-way function | |
| HK1241104A1 (en) | Credit payment method and device based on mobile terminal card simulation | |
| HK1241104B (en) | Credit payment method and device based on mobile terminal card simulation | |
| HK1241102A (en) | Credit payment method and device based on mobile terminal ese | |
| HK1241102A1 (en) | Credit payment method and device based on mobile terminal ese | |
| HK1241102B (en) | Credit payment method and device based on mobile terminal ese |