Nothing Special   »   [go: up one dir, main page]

CN109636381A - A kind of payment terminal off line authorization method and system based on IC card - Google Patents

A kind of payment terminal off line authorization method and system based on IC card Download PDF

Info

Publication number
CN109636381A
CN109636381A CN201811519186.6A CN201811519186A CN109636381A CN 109636381 A CN109636381 A CN 109636381A CN 201811519186 A CN201811519186 A CN 201811519186A CN 109636381 A CN109636381 A CN 109636381A
Authority
CN
China
Prior art keywords
random number
public key
payment terminal
card
line authorization
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201811519186.6A
Other languages
Chinese (zh)
Inventor
张兆鑫
郑凯
林国兵
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
FUJIAN NEWLAND PAYMENT TECHNOLOGY Co Ltd
Original Assignee
FUJIAN NEWLAND PAYMENT TECHNOLOGY Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by FUJIAN NEWLAND PAYMENT TECHNOLOGY Co Ltd filed Critical FUJIAN NEWLAND PAYMENT TECHNOLOGY Co Ltd
Priority to CN201811519186.6A priority Critical patent/CN109636381A/en
Publication of CN109636381A publication Critical patent/CN109636381A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4093Monitoring of device authentication

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The invention discloses a kind of payment terminal off line authorization method and system based on IC card.Wherein, the described method includes: payment terminal can compare the random number decrypted and whether the random number for being associated with RSA public key value of generation is consistent, when it is consistent for comparing the random number decrypted with the random number for being associated with RSA public key value of the generation, off line authorization message can be recorded in IC card and complete off line authorization by payment terminal.Payment terminal safety operation is authorized using off-line mode by the above-mentioned means, can be realized.

Description

A kind of payment terminal off line authorization method and system based on IC card
Technical field
The present invention relates to payment terminal technical field more particularly to a kind of payment terminal off line authorization methods based on IC card And system.
Background technique
Payment terminal is as financial transaction tool common in daily life, it is desirable that and it must have very high safety, The operation for being related to payment terminal safety, which all has to pass through authorization, just can be used.
Current many producers authorize payment terminal safety operation using on-line mode, although which safety Height, operation note is traceable, but every sub-authorization must all network and be communicated, and this requires payment terminals itself to have networking Function or configuration one have the computer of network savvy, in addition the low efficiency when the payment terminal quantity that need to be authorized is bigger Under.In addition to this, online authorization requires payment terminal equipment or computer capacity to access outer net, some highly-safe Place does not have the condition of access outer net.
But at least there are the following problems in the prior art for inventor's discovery:
Existing many producers are all to be authorized using on-line mode to payment terminal safety operation, cannot achieve use Off-line mode authorizes payment terminal safety operation.
Summary of the invention
In view of this, it is an object of the invention to propose a kind of payment terminal off line authorization method based on IC card and be System, can be realized and authorized using off-line mode to payment terminal safety operation.
According to an aspect of the present invention, a kind of payment terminal off line authorization method based on IC card is provided, comprising:
Payment terminal obtains public key certificate in IC card;
Whether the public key certificate that payment terminal verifies the acquisition is legal, is to close in the public key certificate for verifying out the acquisition When method, the RSA public key value in the public key certificate of the acquisition is stored;
Payment terminal generates the random number for being associated with the RSA public key value according to the RSA public key value of the storage, and by institute The random number and off line authorization requests code for stating generation are sent to IC card;
IC card receives the random number and the off line authorization requests code, and examines whether the off line authorization requests code closes Method, it is random described in RSA private key encryption of the IC card using itself storage when it is legal for verifying the off line authorization requests code Number;
The off line Authorization result for carrying the random number after RSA private key encryption is sent payment terminal by IC card;
Payment terminal receives the off line Authorization result for carrying the random number after RSA private key encryption, and to institute It states received off line Authorization result to be decrypted, decrypts random number;
The relatively described random number decrypted of payment terminal is with the random number for being associated with the RSA public key value of the generation It is no consistent, it is consistent comparing the random number decrypted with the random number for being associated with the RSA public key value of the generation When, off line authorization message is recorded in IC card to complete off line authorization by payment terminal.
Wherein, the payment terminal verify the acquisition public key certificate it is whether legal, in the public affairs for verifying out the acquisition When key certificate is legal, the RSA public key value in the public key certificate of the acquisition is stored, further includes:
Whether the public key certificate that payment terminal verifies the acquisition is legal, does not conform in the public key certificate for verifying out the acquisition When method, then off line authorization failure is prompted.
Wherein, the IC card receives the random number and the off line authorization requests code, and the off line authorization is examined to ask Ask code whether legal, when it is legal for verifying the off line authorization requests code, IC card uses the RSA private key encryption of itself storage The random number, further includes:
IC card receives the random number and the off line authorization requests code, and examines whether the off line authorization requests code closes Method then prompts off line authorization failure when verifying that the off line authorization requests code is illegal.
Wherein, the payment terminal receives the off line authorization knot for carrying the random number after RSA private key encryption Fruit, and the received off line Authorization result is decrypted, decrypt random number, comprising:
Payment terminal receives the off line Authorization result for carrying the random number after RSA private key encryption, and applies The received off line Authorization result is decrypted in RSA public key value in the public key certificate of the storage, decrypt with Machine number.
Wherein, the relatively described random number decrypted of the payment terminal and the generation is associated with the RSA public key value Random number it is whether consistent, compare the random number decrypted and the generation be associated with the RSA public key value with When machine number is consistent, off line authorization message is recorded in IC card to complete off line authorization by payment terminal, further includes:
The relatively described random number decrypted of payment terminal is with the random number for being associated with the RSA public key value of the generation It is no consistent, comparing the random number decrypted and the random number for being associated with the RSA public key value of the generation is inconsistent When, payment terminal prompts off line authorization failure.
Wherein, the RSA public key is associated in the relatively described random number decrypted of the payment terminal and the generation Whether the random number of value is consistent, in the RSA public key value that is associated with for comparing the random number decrypted and the generation When random number is consistent, off line authorization message is recorded in IC card come after completing off line authorization by payment terminal, further includes:
Payment terminal carries out safety operation.
According to another aspect of the present invention, a kind of payment terminal off line authoring system based on IC card is provided, comprising:
Payment terminal and IC card;
The payment terminal, for obtaining public key certificate in the IC card, and the verification acquisition public key certificate whether It is legal, when it is legal for verifying out the public key certificate of the acquisition, the RSA public key value in the public key certificate of the acquisition is stored, And according to the RSA public key value of the storage, the random number for being associated with the RSA public key value is generated, and by the random number of the generation The IC card is sent to off line authorization requests code;
The IC card for receiving the random number and the off line authorization requests code, and examines the off line authorization to ask Ask code whether legal, when it is legal for verifying the off line authorization requests code, described in the RSA private key encryption using itself storage Random number, and the payment terminal is sent by the off line Authorization result for carrying the random number after RSA private key encryption;
The payment terminal is also used to receive the off line authorization for carrying the random number after RSA private key encryption As a result, and the received off line Authorization result is decrypted, decrypt random number, and relatively described in the random number that decrypts It is whether consistent with the random number for being associated with the RSA public key value of the generation, comparing the random number decrypted and institute When to state the random number of the association RSA public key value of generation be consistent, off line authorization message is recorded in the IC by payment terminal Off line authorization is completed in card.
Wherein, the payment terminal, comprising:
Cue module prompts off line authorization failure for when the public key certificate for verifying out the acquisition is illegal, and When comparing the random number and the inconsistent random number for being associated with the RSA public key value of the generation decrypted, prompt de- Machine authorization failure.
Wherein, the payment terminal, comprising:
Deciphering module, for receiving the off line Authorization result for carrying the random number after RSA private key encryption, and The received off line Authorization result is decrypted using the RSA public key value in the public key certificate of the storage, is decrypted Random number out.
Wherein, the payment terminal off line authoring system based on IC card, further includes:
Security module;
The security module is set in the payment terminal, for carrying out safety operation.
It can be found that above scheme, what payment terminal can compare the random number that decrypts and generation is associated with RSA public key value Random number it is whether consistent, be one comparing the random number decrypted with the random number for being associated with RSA public key value of the generation When cause, off line authorization message can be recorded in IC card and complete off line authorization by payment terminal, can be realized using off line side Formula authorizes payment terminal safety operation.
Further, above scheme, payment terminal can carry out safety operation, and can be realized payment terminal can be carried out peace Full payment, ensures the safety of payment.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this Some embodiments of invention for those of ordinary skill in the art without creative efforts, can be with It obtains other drawings based on these drawings.
Fig. 1 is the flow diagram of one embodiment of payment terminal off line authorization method the present invention is based on IC card;
Fig. 2 is the flow diagram of another embodiment of payment terminal off line authorization method the present invention is based on IC card;
Fig. 3 is the structural schematic diagram of one embodiment of payment terminal off line authoring system the present invention is based on IC card;
Fig. 4 is the structural schematic diagram of another embodiment of payment terminal off line authoring system the present invention is based on IC card;
Fig. 5 is the structural schematic diagram of the another embodiment of payment terminal off line authoring system the present invention is based on IC card.
Specific embodiment
With reference to the accompanying drawings and examples, the present invention is described in further detail.It is emphasized that following implement Example is merely to illustrate the present invention, but is not defined to the scope of the present invention.Likewise, following embodiment is only portion of the invention Point embodiment and not all embodiments, institute obtained by those of ordinary skill in the art without making creative efforts There are other embodiments, shall fall within the protection scope of the present invention.
The present invention provides a kind of payment terminal off line authorization method based on IC card, can be realized using off-line mode to branch Terminal security operation is paid to be authorized.
Referring to Figure 1, Fig. 1 is the process signal of one embodiment of payment terminal off line authorization method the present invention is based on IC card Figure.It is noted that if having substantially the same as a result, method of the invention is not limited with process sequence shown in FIG. 1.Such as Shown in Fig. 1, this method comprises the following steps:
S101: payment terminal obtains public key certificate in IC card.
S102: whether the public key certificate that payment terminal verifies the acquisition is legal, is in the public key certificate for verifying out the acquisition When legal, the RSA public key value in the public key certificate of the acquisition is stored.
Wherein, payment terminal verify the acquisition public key certificate it is whether legal, be in the public key certificate for verifying out the acquisition When legal, the RSA public key value in the public key certificate of the acquisition is stored, can also include:
Whether the public key certificate that payment terminal verifies the acquisition is legal, illegal in the public key certificate for verifying out the acquisition When, then prompt off line authorization failure.
S103: payment terminal generates the random number for being associated with the RSA public key value, and should according to the RSA public key value of the storage The random number and off line authorization requests code of generation are sent to IC card.
The random number and the off line authorization requests code are received in S104:IC clamping, and examine whether the off line authorization requests code closes Method, when it is legal for verifying the off line authorization requests code, IC card uses the RSA private key encryption of itself storage random number.
Wherein, IC card receives the random number and the off line authorization requests code, and examines whether the off line authorization requests code closes Method, when it is legal for verifying the off line authorization requests code, IC card is using the RSA private key encryption of itself storage random number, also May include:
Whether IC card receives the random number and the off line authorization requests code, and examine the off line authorization requests code legal, When verifying that the off line authorization requests code is illegal, then off line authorization failure is prompted.
The off line Authorization result for carrying the random number after RSA private key encryption is sent payment terminal by S105:IC card.
S106: payment terminal receives the off line Authorization result of the carrying random number after RSA private key encryption, and to this Received off line Authorization result is decrypted, and decrypts random number.
Wherein, payment terminal receives the off line Authorization result of the carrying random number after RSA private key encryption, and to this Received off line Authorization result is decrypted, and decrypts random number, may include:
Payment terminal receives the off line Authorization result of the carrying random number after RSA private key encryption, and deposits using this The received off line Authorization result is decrypted in RSA public key value in the public key certificate of storage, decrypts random number.
S107: payment terminal, which compares the random number decrypted with the random number for being associated with the RSA public key value of the generation, is It is no consistent, when it is consistent for comparing the random number decrypted with the random number for being associated with the RSA public key value of the generation, payment Off line authorization message is recorded in IC card to complete off line authorization by terminal.
Wherein, payment terminal, which compares the random number decrypted with the random number for being associated with the RSA public key value of the generation, is It is no consistent, when it is consistent for comparing the random number decrypted with the random number for being associated with the RSA public key value of the generation, payment Off line authorization message is recorded in IC card to complete off line authorization by terminal, can also include:
Payment terminal compare the random number decrypted and the random number for being associated with the RSA public key value of the generation whether one It causes, when comparing the random number decrypted and the random number for being associated with the RSA public key value of the generation is inconsistent, payment terminal Prompt off line authorization failure.
In the present embodiment, which may include:
The information such as off line authorization time, payment terminal sequence number, off line authorization requests code.
Wherein, the random number for being associated with the RSA public key value of the random number decrypted with the generation is compared in payment terminal It is whether consistent, when it is consistent for comparing the random number decrypted with the random number for being associated with the RSA public key value of the generation, branch Terminal is paid off line authorization message to be recorded in IC card can also include: after completing off line authorization
Payment terminal carries out safety operation.
It can be found that in the present embodiment, what payment terminal can compare the random number that decrypts and generation is associated with RSA public affairs Whether the random number of key value is consistent, in the random number for being associated with RSA public key value for comparing the random number decrypted with the generation When being consistent, off line authorization message can be recorded in IC card and complete off line authorization by payment terminal, can be realized using de- Machine mode authorizes payment terminal safety operation.
Fig. 2 is referred to, Fig. 2 is that the process of another embodiment of payment terminal off line authorization method the present invention is based on IC card is shown It is intended to.In the present embodiment, method includes the following steps:
S201: payment terminal obtains public key certificate in IC card.
S202: whether the public key certificate that payment terminal verifies the acquisition is legal, is in the public key certificate for verifying out the acquisition When legal, the RSA public key value in the public key certificate of the acquisition is stored.
Can be as above described in S102, therefore not to repeat here.
S203: payment terminal generates the random number for being associated with the RSA public key value, and should according to the RSA public key value of the storage The random number and off line authorization requests code of generation are sent to IC card.
The random number and the off line authorization requests code are received in S204:IC clamping, and examine whether the off line authorization requests code closes Method, when it is legal for verifying the off line authorization requests code, IC card uses the RSA private key encryption of itself storage random number.
Can be as above described in S104, therefore not to repeat here.
The off line Authorization result for carrying the random number after RSA private key encryption is sent payment terminal by S205:IC card.
S206: payment terminal receives the off line Authorization result of the carrying random number after RSA private key encryption, and to this Received off line Authorization result is decrypted, and decrypts random number.
Can be as above described in S106, therefore not to repeat here.
S207: payment terminal, which compares the random number decrypted with the random number for being associated with the RSA public key value of the generation, is It is no consistent, when it is consistent for comparing the random number decrypted with the random number for being associated with the RSA public key value of the generation, payment Off line authorization message is recorded in IC card to complete off line authorization by terminal.
Can be as above described in S107, therefore not to repeat here.
S208: payment terminal carries out safety operation.
It can be found that in the present embodiment, payment terminal can carry out safety operation, can be realized payment terminal can be into Row secure payment ensures the safety of payment.
The present invention also provides a kind of payment terminal off line authoring system based on IC card, can be realized using off-line mode pair Payment terminal safety operation is authorized.
Fig. 3 is referred to, Fig. 3 is the structural representation of one embodiment of payment terminal off line authoring system the present invention is based on IC card Figure.It should include payment terminal 31 and IC card 32 based on the payment terminal off line authoring system 30 of IC card in the present embodiment.
Whether the payment terminal 31 for obtaining public key certificate in the IC card 32, and verifies the public key certificate of the acquisition and closes Method stores the RSA public key value in the public key certificate of the acquisition when the public key certificate for verifying out the acquisition is legal, and according to The RSA public key value of the storage generates the random number for being associated with the RSA public key value, and the random number of the generation and off line authorization is asked Code is asked to be sent to the IC card 32.
The IC card 32 for receiving the random number and the off line authorization requests code, and examines the off line authorization requests code to be It is no legal, when it is legal for verifying the off line authorization requests code, using the RSA private key encryption of itself storage random number, and The payment terminal 31 is sent by the off line Authorization result for carrying the random number after RSA private key encryption.
The payment terminal 31 is also used to receive the off line Authorization result of the carrying random number after RSA private key encryption, And the received off line Authorization result is decrypted, random number is decrypted, and compare the random number decrypted and the generation The association RSA public key value random number it is whether consistent, be associated with the RSA compare the random number decrypted and the generation When the random number of public key value is consistent, off line authorization message is recorded in the IC card 32 and completes off line authorization by payment terminal.
Optionally, the payment terminal 31 may include:
Cue module 311 prompts off line authorization failure for when the public key certificate for verifying out the acquisition is illegal, and When comparing the random number decrypted and the random number for being associated with the RSA public key value of the generation is inconsistent, off line is prompted to award Power failure.
Optionally, the payment terminal 31 may include:
Deciphering module 312, for receiving the off line Authorization result of the carrying random number after RSA private key encryption, and The received off line Authorization result is decrypted using the RSA public key value in the public key certificate of the storage, decrypt with Machine number.
Optionally, the IC card 32, can be also used for:
When verifying that the off line authorization requests code is illegal, off line authorization failure is prompted.
Fig. 4 is referred to, Fig. 4 is that the structure of another embodiment of payment terminal off line authoring system the present invention is based on IC card is shown It is intended to.It is different from an embodiment, the payment terminal off line authoring system 40 based on IC card described in the present embodiment further include: safety Module 41.
The security module 41 is set in the payment terminal 31, for carrying out safety operation.
The payment terminal 31 is the payment terminal in above-described embodiment, which can execute above method reality respectively It applies and corresponds to step in example, therefore each unit module is not repeated herein, refer to the explanation of the above corresponding step.
The IC card 32 is the IC card in above-described embodiment, which can execute corresponding step in above method embodiment respectively Suddenly, therefore each unit module is not repeated herein, refers to the explanation of the above corresponding step.
Each unit module of the payment terminal off line authoring system 30/40 based on IC card can execute the above method respectively Step is corresponded in embodiment, therefore each unit module is not repeated herein, and the explanation of the above corresponding step is referred to.
Fig. 5 is referred to, Fig. 5 is that the structure of the another embodiment of payment terminal off line authoring system the present invention is based on IC card is shown It is intended to.Each unit module of the payment terminal off line authoring system based on IC card can execute above method embodiment respectively Middle corresponding step.Related content refers to the detailed description in the above method, no longer superfluous herein to chat.
In the present embodiment, should payment terminal off line authoring system based on IC card include: payment terminal 51, IC card 52 and with The memory 53 that the payment terminal 51, the IC card 52 couple respectively.
Whether the payment terminal 51 for obtaining public key certificate in the IC card 52, and verifies the public key certificate of the acquisition and closes Method stores the RSA public key value in the public key certificate of the acquisition when the public key certificate for verifying out the acquisition is legal, and according to The RSA public key value of the storage generates the random number for being associated with the RSA public key value, and the random number of the generation and off line authorization is asked Code is asked to be sent to the IC card 52.
The IC card 52 for receiving the random number and the off line authorization requests code, and examines the off line authorization requests code to be It is no legal, when it is legal for verifying the off line authorization requests code, using the RSA private key encryption of itself storage random number, and The payment terminal 51 is sent by the off line Authorization result for carrying the random number after RSA private key encryption.
The payment terminal 51 is also used to receive the off line Authorization result of the carrying random number after RSA private key encryption, And the received off line Authorization result is decrypted, random number is decrypted, and compare the random number decrypted and the generation The association RSA public key value random number it is whether consistent, be associated with the RSA compare the random number decrypted and the generation When the random number of public key value is consistent, off line authorization message is recorded in the IC card 52 and completes off line authorization by payment terminal.
The memory 53, the finger that the instruction and the IC card 52 executed for storage program area, the payment terminal 51 executes Enable etc..
Optionally, the payment terminal 51, can be also used for:
When the public key certificate for verifying out the acquisition is illegal, off line authorization failure is prompted, and decrypt comparing this Random number and the inconsistent random number for being associated with the RSA public key value of the generation when, prompt off line authorization failure.
Optionally, the payment terminal 51, can be specifically used for:
Receive the off line Authorization result of the carrying random number after RSA private key encryption, and the public affairs of the application storage The received off line Authorization result is decrypted in RSA public key value in key certificate, decrypts random number.
Optionally, the IC card 52, can be also used for:
When verifying that the off line authorization requests code is illegal, off line authorization failure is prompted.
Optionally, the payment terminal 51, can be also used for:
Carry out safety operation.
It can be found that above scheme, what payment terminal can compare the random number that decrypts and generation is associated with RSA public key value Random number it is whether consistent, be one comparing the random number decrypted with the random number for being associated with RSA public key value of the generation When cause, off line authorization message can be recorded in IC card and complete off line authorization by payment terminal, can be realized using off line side Formula authorizes payment terminal safety operation.
Further, above scheme, payment terminal can carry out safety operation, and can be realized payment terminal can be carried out peace Full payment, ensures the safety of payment.
In several embodiments provided by the present invention, it should be understood that disclosed system, device and method can To realize by another way.For example, device embodiments described above are only schematical, for example, module or The division of unit, only a kind of logical function partition, there may be another division manner in actual implementation, such as multiple units Or component can be combined or can be integrated into another system, or some features can be ignored or not executed.Another point, institute Display or the mutual coupling, direct-coupling or communication connection discussed can be through some interfaces, device or unit Indirect coupling or communication connection can be electrical property, mechanical or other forms.
Unit may or may not be physically separated as illustrated by the separation member, shown as a unit Component may or may not be physical unit, it can and it is in one place, or may be distributed over multiple networks On unit.It can select some or all of unit therein according to the actual needs to realize the mesh of present embodiment scheme 's.
In addition, each functional unit in each embodiment of the present invention can integrate in one processing unit, it can also To be that each unit physically exists alone, can also be integrated in one unit with two or more units.It is above-mentioned integrated Unit both can take the form of hardware realization, can also realize in the form of software functional units.
It, can if integrated unit is realized in the form of SFU software functional unit and when sold or used as an independent product To be stored in a computer readable storage medium.Based on this understanding, technical solution of the present invention substantially or Say that all or part of the part that contributes to existing technology or the technical solution can embody in the form of software products Out, which is stored in a storage medium, including some instructions are used so that a computer equipment (can be personal computer, server or the network equipment etc.) or processor (processor) execute each implementation of the present invention The all or part of the steps of methods.And storage medium above-mentioned include: USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), random access memory (RAM, Random Access Memory), magnetic or disk etc. it is various It can store the medium of program code.
The foregoing is merely section Examples of the invention, are not intended to limit protection scope of the present invention, all utilizations Equivalent device made by description of the invention and accompanying drawing content or equivalent process transformation are applied directly or indirectly in other correlations Technical field, be included within the scope of the present invention.

Claims (10)

1. a kind of payment terminal off line authorization method based on IC card characterized by comprising
Payment terminal obtains public key certificate in IC card;
Whether the public key certificate that payment terminal verifies the acquisition is legal, is legal in the public key certificate for verifying out the acquisition When, store the RSA public key value in the public key certificate of the acquisition;
Payment terminal generates the random number for being associated with the RSA public key value according to the RSA public key value of the storage, and by the life At random number and off line authorization requests code be sent to IC card;
Whether IC card receives the random number and the off line authorization requests code, and examine the off line authorization requests code legal, When it is legal for verifying the off line authorization requests code, random number described in RSA private key encryption of the IC card using itself storage;
The off line Authorization result for carrying the random number after RSA private key encryption is sent payment terminal by IC card;
Payment terminal receives the off line Authorization result for carrying the random number after RSA private key encryption, and connects to described The off line Authorization result of receipts is decrypted, and decrypts random number;
The relatively described random number decrypted of payment terminal and the random number for being associated with the RSA public key value of the generation whether one It causes, when it is consistent for comparing the random number decrypted with the random number for being associated with the RSA public key value of the generation, branch Terminal is paid off line authorization message to be recorded in IC card to complete off line authorization.
2. the payment terminal off line authorization method based on IC card as described in claim 1, which is characterized in that the payment terminal Whether the public key certificate for verifying the acquisition is legal, when it is legal for verifying out the public key certificate of the acquisition, obtains described in storage RSA public key value in the public key certificate taken, further includes:
Whether the public key certificate that payment terminal verifies the acquisition is legal, illegal in the public key certificate for verifying out the acquisition When, then prompt off line authorization failure.
3. the payment terminal off line authorization method based on IC card as described in claim 1, which is characterized in that the IC card receives The random number and the off line authorization requests code, and examine the off line authorization requests code whether legal, it is described verifying When off line authorization requests code is legal, random number described in RSA private key encryption of the IC card using itself storage, further includes:
Whether IC card receives the random number and the off line authorization requests code, and examine the off line authorization requests code legal, When verifying that the off line authorization requests code is illegal, then off line authorization failure is prompted.
4. the payment terminal off line authorization method based on IC card as described in claim 1, which is characterized in that the payment terminal The off line Authorization result for carrying the random number after RSA private key encryption is received, and to the received off line authorization As a result it is decrypted, decrypts random number, comprising:
Payment terminal receives the off line Authorization result for carrying the random number after RSA private key encryption, and described in application The received off line Authorization result is decrypted in RSA public key value in the public key certificate of storage, decrypts random number.
5. the payment terminal off line authorization method based on IC card as described in claim 1, which is characterized in that the payment terminal Compare the random number decrypted and whether the random number for being associated with the RSA public key value of the generation is consistent, is comparing When the random number decrypted with the random number for being associated with the RSA public key value of the generation is consistent, payment terminal will take off Machine authorization message is recorded in IC card to complete off line authorization, further includes:
The relatively described random number decrypted of payment terminal and the random number for being associated with the RSA public key value of the generation whether one It causes, when comparing the random number and the inconsistent random number for being associated with the RSA public key value of the generation decrypted, branch Pay terminal notifying off line authorization failure.
6. the payment terminal off line authorization method based on IC card as described in claim 1, which is characterized in that whole in the payment Whether the relatively more described random number decrypted in end and the random number for being associated with the RSA public key value of the generation are consistent, are comparing When the random number decrypted with the random number for being associated with the RSA public key value of the generation is consistent out, payment terminal general Off line authorization message is recorded in IC card come after completing off line authorization, further includes:
Payment terminal carries out safety operation.
7. a kind of payment terminal off line authoring system based on IC card characterized by comprising
Payment terminal and IC card;
The payment terminal, for obtaining public key certificate in the IC card, and whether the public key certificate of the verification acquisition is legal, When it is legal for verifying out the public key certificate of the acquisition, the RSA public key value in the public key certificate of the acquisition is stored, and according to The RSA public key value of the storage, generates the random number for being associated with the RSA public key value, and by the random number and off line of the generation Authorization requests code is sent to the IC card;
The IC card for receiving the random number and the off line authorization requests code, and examines the off line authorization requests code It is whether legal, it is random described in the RSA private key encryption using itself storage when it is legal for verifying the off line authorization requests code Number, and the payment terminal is sent by the off line Authorization result for carrying the random number after RSA private key encryption;
The payment terminal is also used to receive the off line Authorization result for carrying the random number after RSA private key encryption, And the received off line Authorization result is decrypted, decrypt random number, and the random number decrypted described in comparison and institute Whether the random number for stating the association RSA public key value of generation is consistent, is comparing the random number and the life decrypted At the random number of the association RSA public key value be consistent when, off line authorization message is recorded in the IC card by payment terminal To complete off line authorization.
8. the payment terminal off line authoring system based on IC card as claimed in claim 7, which is characterized in that the payment is eventually End, comprising:
Cue module, for prompting off line authorization failure, and comparing when the public key certificate for verifying out the acquisition is illegal Out when the random number and the inconsistent random number for being associated with the RSA public key value of the generation decrypted, off line is prompted to award Power failure.
9. the payment terminal off line authoring system based on IC card as claimed in claim 7, which is characterized in that the payment is eventually End, comprising:
Deciphering module for receiving the off line Authorization result for carrying the random number after RSA private key encryption, and is applied The received off line Authorization result is decrypted in RSA public key value in the public key certificate of the storage, decrypt with Machine number.
10. the payment terminal off line authoring system based on IC card as claimed in claim 7, which is characterized in that described to be based on IC The payment terminal off line authoring system of card, further includes:
Security module;
The security module is set in the payment terminal, for carrying out safety operation.
CN201811519186.6A 2018-12-12 2018-12-12 A kind of payment terminal off line authorization method and system based on IC card Pending CN109636381A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811519186.6A CN109636381A (en) 2018-12-12 2018-12-12 A kind of payment terminal off line authorization method and system based on IC card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811519186.6A CN109636381A (en) 2018-12-12 2018-12-12 A kind of payment terminal off line authorization method and system based on IC card

Publications (1)

Publication Number Publication Date
CN109636381A true CN109636381A (en) 2019-04-16

Family

ID=66073264

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811519186.6A Pending CN109636381A (en) 2018-12-12 2018-12-12 A kind of payment terminal off line authorization method and system based on IC card

Country Status (1)

Country Link
CN (1) CN109636381A (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101090316A (en) * 2006-06-16 2007-12-19 普天信息技术研究院 Identify authorization method between storage card and terminal equipment at off-line state
US20080203151A1 (en) * 2007-02-28 2008-08-28 Visa U.S.A. Inc. Verification of a portable consumer device in an offline environment
CN102510333A (en) * 2011-09-30 2012-06-20 飞天诚信科技股份有限公司 Authorization method and system
CN107995985A (en) * 2017-10-27 2018-05-04 福建联迪商用设备有限公司 Financial payment terminal Activiation method and its system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101090316A (en) * 2006-06-16 2007-12-19 普天信息技术研究院 Identify authorization method between storage card and terminal equipment at off-line state
US20080203151A1 (en) * 2007-02-28 2008-08-28 Visa U.S.A. Inc. Verification of a portable consumer device in an offline environment
CN102510333A (en) * 2011-09-30 2012-06-20 飞天诚信科技股份有限公司 Authorization method and system
CN107995985A (en) * 2017-10-27 2018-05-04 福建联迪商用设备有限公司 Financial payment terminal Activiation method and its system

Similar Documents

Publication Publication Date Title
US10049360B2 (en) Secure communication of payment information to merchants using a verification token
EP2430602B1 (en) Verification of portable consumer devices
CN108964922A (en) mobile terminal token activation method, terminal device and server
AU2020412566A1 (en) Contactless card personal identification system
AU2010292125B2 (en) Secure communication of payment information to merchants using a verification token
CN103944715B (en) A kind of data processing method based on arranging key
CN103888942B (en) Data processing method based on negotiation secret keys
CN103888453B (en) A kind of data processing method based on arranging key
CN103177388B (en) For authoring system and for authorization method
EP2840735A1 (en) Electronic cipher generation method, apparatus and device, and electronic cipher authentication system
CN109976770A (en) A kind of ECU writes with a brush dipped in Chinese ink method, system and relevant device
CN108881000A (en) Gateway, third-party platform, payment system and method
CN106056419A (en) Method, system and device for realizing independent transaction by using electronic signature equipment
CN106027461A (en) Secret key use method for cloud authentication platform in identity card authentication system
CN104835038A (en) Networking payment device and networking payment method
CN103813333B (en) A kind of data processing method based on arranging key
Basin et al. Inducing Authentication Failures to Bypass Credit Card {PINs}
CN107819766A (en) Safety certifying method, system and computer-readable recording medium
CN105635164B (en) The method and apparatus of safety certification
CN103281188B (en) A kind of back up the method and system of private key in electronic signature token
CN103336918B (en) Electronic hard disk system authorization method and device
CN109636381A (en) A kind of payment terminal off line authorization method and system based on IC card
CN109784910A (en) A kind of off line method of payment and payment terminal based on payment terminal
CN109508995A (en) A kind of off line authorization method and payment terminal based on payment terminal
CN105989481A (en) Data interaction method and system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20190416

RJ01 Rejection of invention patent application after publication