CN1417734A - Method for implementation of electronic payment - Google Patents
Method for implementation of electronic payment Download PDFInfo
- Publication number
- CN1417734A CN1417734A CN 02159277 CN02159277A CN1417734A CN 1417734 A CN1417734 A CN 1417734A CN 02159277 CN02159277 CN 02159277 CN 02159277 A CN02159277 A CN 02159277A CN 1417734 A CN1417734 A CN 1417734A
- Authority
- CN
- China
- Prior art keywords
- payment
- payment terminal
- ciphertext
- data
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
The present invention discloses an electronic payment implementation method. The electronic payment system includes several payment terminals for consumers and central service equipment with the enciphering and deciphering system corresponding to that in the payment terminals. The central service equipmient is networked to the mobile communication server and connected to the mobile communication unit. By means of the enciphering and deciphering system, and the consumer pays only through once data exchange between the mobile communication unit and the central service equipment. The payment terminal is always in off-line state and this reduces the production cost and complicity of the payment terminal, reduces network using cost and raises the reliability and practicality.
Description
Technical field
The present invention relates to the solution of ecommerce, relate in particular to the technical method that solves small amount pay downs such as automatic vending machine.
Background technology
Along with the development of infotech and popularizing of network with perfect, people begin to explore the solution of ecommerce, it has many superior parts such as convenient and swift undoubtedly the tradition commercial affairs of comparing, but how to guarantee effectively that it reliably carries out in an orderly manner as traditional commercial affairs, and the safety that how to improve transaction under the reality that network security constantly is on the hazard becomes the technical matters that the restriction ecommerce is popularized always.
Publication number in Infohub Corp. is in the patented claim of CN1335970A, a kind of " with the method and system that carries out electronic money trading as the mobile comm unit of stored value card " disclosed, its method has the typicalness of current ecommerce solution, and main means are based on that popularization is strong, the Internet and the cordless communication network of broad covered area.Wireless communication user develops and manages the personal electric account by employed number and personal identification number, operations such as realization is supplemented with money, inquiry.The seller obtains the buyer's personal information and demand information from webpage in the process of exchange, will the number of affirmation sends to the buyer's mobile comm unit by radio communication, obtains the affirmation number of buyer's input again from webpage, checks and confirms that number consistent back implements transaction and charge.
Said method has ease for use and security preferably owing to rely on the authentication and accounting system of cordless communication network.But for businessman, set transaction terminal makes hardware cost higher because of communication and the network processes function that it needs, design is complicated, be difficult for embedding in other equipment and use, and software development and maintenance is also very complicated, the more important thing is that on-line operation also causes very high usage charges,, availability is reduced also because on-line execute is influenced by network reliability.
Summary of the invention
The object of the present invention is to provide a kind of method that the off-line operation terminal is paid by mails that is implemented in, thereby reduce equipment cost and operating cost, improve system reliability and availability.
The technical solution used in the present invention is in order to achieve the above object: a kind of E-Payment implementation method, it is characterized in that: a series of payment terminals for the consumption user operation at first are set, and setting and payment terminal have service centre's equipment of respective encrypted and deciphering system, and this service centre's equipment also can establish a communications link with mobile comm unit with the networking of mobile communications operator's business support server;
This E-Payment implementation method may further comprise the steps:
A, consumption user are imported article of consumption according to prompting to payment terminal;
B, payment terminal generate and comprise the Payment Request sign indicating number of consumption project data, this payment terminal being confirmed the ciphertext of data through encrypting formation;
C, consumption user are sent to service centre equipment with the Payment Request sign indicating number together with charge information by mobile comm unit;
D, service centre's equipment are confirmed charging way to the decrypt ciphertext in the Payment Request sign indicating number according to charge information;
If the E payment terminal confirms that the data decryption result is legal and charging way is feasible, then continue execution in step F; Otherwise, Payment Request is discarded;
F, service centre's equipment will comprise confirms that to consumption project data and this payment terminal data and the payment confirmation codes of charge information through encrypting the ciphertext that forms are back to mobile comm unit;
G, consumption user are imported payment terminal with payment confirmation codes, to decrypt ciphertext wherein and verify the decrypted result legitimacy, if legal, think that then payment effectively carries out transaction and record Transaction Information by payment terminal; Otherwise, think that payment is invalid.
Owing to adopt said method to bring following advantage:
1, payment terminal need not possess communication and network processes function, only needs at conventional business terminal the encrypting and decrypting calculation function to be set and gets final product, and reduces equipment cost greatly.
2, only need the user to carry out exchanges data one time by mobile comm unit and service centre's equipment in the implementation, all the other operate in off-line state carries out, and reduces network and takies and usage charges.
3, payment terminal is owing to need not have direct communication to connect with service centre, so transaction is not subjected to the influence of the reliabilty and availability of communication.
Embodiment
Below in conjunction with embodiment technical solution of the present invention is described in further detail.
The set payment terminal of the present invention is a communications data processing unit, can be the single-chip microcomputer that embeds business machine in concrete the application, and it is provided with input-output unit or interface.The basic function of payment terminal is to carry out man-machine interaction, operation encryption and decryption program, handle transaction data with consumption user.
The article of consumption data that payment terminal generates can comprise commercial product code, unit price, quantity etc. usually, owing to need its encryption in the subsequent step, and in mobile comm unit and service centre's equipment room transmission, be the simplified code treatment capacity, the article of consumption data can be decided to be this amount payable of selecting consumption to amount to of user.
Mobile comm unit among the present invention program can be regular handset, the mobile phone of supporting WAP (WAP (wireless application protocol)), also can be PC or the palm PC that adopts GPRS (GPRS), CDMA (CDMA) or GSM (global system for mobile communications) to dial up on the telephone.Correspondingly, described charge information can be the consumption user phone number, come down to SIM (client identification module) card card number, it is charging relevant informations such as record keeping user or stored value card user that the number by this type of and the unique binding of particular user also can further identify this user.
The key of the inventive method is that payment terminal and service centre's equipment have respective encrypted and deciphering system, make payment terminal off-line independent operating, authentication and accounting by the input-output unit operation, is then undertaken by network between service centre's equipment and consumption user between payment terminal and consumption user.The generation of key, distribution, setting, storage, replacing etc. are all according to common method in encryption of being adopted and the deciphering system, and being used under the prerequisite of considering attack protection and guaranteeing operational efficiency of cryptographic algorithm can be selected arbitrarily and make up.
Below be description to adoptable three kinds of encryptions and deciphering system implementation:
Encrypt and the deciphering system comprises unique female key and by female key the numbering of each payment terminal carried out cryptographic calculation and obtains corresponding a series of sub-key for first kind;
The step B of described formation Payment Request sign indicating number comprises the steps:
B11, payment terminal are carried out cryptographic calculation with its sub-key to current time information and are generated communication key;
B12, payment terminal are encrypted the numbering of consumption project data and payment terminal with communication key and are generated ciphertext 1;
B13, the numbering of payment terminal is connected as the Payment Request sign indicating number with ciphertext 1;
Described step D to the deciphering of Payment Request sign indicating number comprises the steps:
D11, the numbering of from the Payment Request sign indicating number, isolating payment terminal and ciphertext 1;
D12, current time information is encrypted the acquisition communication key with corresponding sub-key;
D13, ciphertext 1 is decrypted, obtains the numbering of article of consumption data and this payment terminal with communication key;
Step e comprises:
The numbering of the payment terminal that obtains with deciphering and the numbering of the payment terminal in the Payment Request sign indicating number are expressly compared, if unanimity then confirm that Payment Request is legal, otherwise would confirm that Payment Request is illegal;
Step F comprises:
Service centre's equipment is encrypted acquisition ciphertext 2 as payment confirmation codes with communication key to the numbering and the charge information that comprise article of consumption data and this payment terminal;
Step G comprises:
G11, payment terminal are decrypted numbering and the charge information that obtains article of consumption data and this payment terminal with communication key to payment confirmation codes;
G12, payment terminal will be deciphered the numbering of the payment terminal that obtains and the numbering of the payment terminal of self compares, article of consumption data and user that deciphering is obtained compare in the cuit of steps A, if all consistent, assert that then payment confirmation codes is legal, carry out transaction; Otherwise, assert that payment confirmation codes is illegal, the refusal transaction.
Encrypt and the deciphering system comprises a series of keys to confirming data with the payment terminal that payment terminal is generated at random for second kind, a key of cipher key pair confirms that with payment terminal data are arranged at payment terminal as PKI; Another key of cipher key pair confirms that as private key and payment terminal data are stored in service centre's device databases together;
The step B of described formation Payment Request sign indicating number comprises the steps:
B21, payment terminal generate a random number N.
B22, to be communication key with the random number N confirm to amount payable, payment terminal that the The data symmetric encipherment algorithm is encrypted generates ciphertext 1.
B23, with the PKI of this payment terminal random number N is encrypted and to generate ciphertext 2 as extra-code;
B24, payment terminal is confirmed that data, ciphertext 2 and ciphertext 1 link to each other as the Payment Request sign indicating number;
Described step D to the deciphering of Payment Request sign indicating number comprises the steps:
D21, from the Payment Request sign indicating number, isolate payment terminal and confirm data, ciphertext 2 and ciphertext 1;
D22, from service centre's device databases, inquire its corresponding private key by the payment terminal identification code;
D23, with private key ciphertext 2 is decrypted and obtains communication key N;
D24, with communication key N ciphertext 1 is adopted symmetric encipherment algorithm to be decrypted to obtain payment terminal and confirm data and amount payable;
Step e comprises:
Relatively decrypt operation obtains payment terminal and confirms that isolated payment terminal is confirmed data among data and the step D21, if unanimity then confirm that Payment Request is legal, otherwise the affirmation Payment Request is illegal;
Step F comprises:
Confirm the data item encryption of data, charge information and amount payable with communication key N to comprising payment terminal, obtain ciphertext 3 as payment confirmation codes.
Step G comprises:
G21, payment terminal are decrypted payment confirmation codes with communication key N and obtain payment terminal affirmation data, charge information and amount payable;
G22, payment terminal will be deciphered the payment terminal that obtains and be confirmed that data and the payment terminal of self affirmation data compare, amount payable and user that deciphering is obtained compare in the cuit of steps A, if all consistent, assert that then payment confirmation codes is legal, carry out transaction; Otherwise, assert that payment confirmation codes is illegal, the refusal transaction.
We select mobile comm unit is the palm PC that has the general packet radio service gprs card of surfing Internet; The third encryption and deciphering system adopt the symmetric key encryption system, and cryptographic object is repeatedly encrypted respectively to improve Cipher Strength.Wherein the distribution of key is set in all payment terminals by communication interface as the encryption key of payment terminal by management server generation six random number N 1, N2, N3, N4, N5, N6, producing two random number N 7, N8 by management server again is set in all payment terminals by communication interface as the affirmation data of payment terminal, and is recorded in the server;
The step B of described formation Payment Request sign indicating number comprises the steps:
B31, payment terminal are carried out DES Cipher to the current time respectively with N1, N2, N3, N4, N5, N6 and are encrypted generation six groups of communication key K1, K2, K3, K4, K5, K6;
B32, payment terminal are carried out three times of des encryptions with communication key K1, K2, K3 to payment, generate ciphertext X;
B33, payment terminal are carried out three times of des encryptions with communication key K4, K5, K6 to payment terminal affirmation data random number N 7, generate ciphertext Y;
B34, payment terminal are connected ciphertext X as the Payment Request sign indicating number with ciphertext Y;
Described step D to the deciphering of Payment Request sign indicating number comprises the steps:
D31, management server are isolated ciphertext X and ciphertext Y from the Payment Request sign indicating number;
D32, the management server random number N that reading and recording is got off from file 1, N2, N3, N4, N5, N6 obtain communication key K1, K2, K3, K4, K5, K6 as key with the des encryption current time;
D33, management server carry out three times of DES deciphering with communication key K1, K2, the K3 that calculates above to ciphertext X, obtain payment;
D34, management server carry out three times of DES deciphering with communication key K4, K5, the K6 that calculates above to ciphertext Y, obtain payment terminal and confirm data random number N 7;
Step e comprises:
Compare with the random number N 7 that is recorded in the server file with the payment terminal affirmation data random number N 7 that deciphering obtains.If unanimity then think that this Payment Request is legal, otherwise think that this Payment Request is illegal;
Step F comprises:
F31, management server carry out three times of des encryptions with communication key K4, K5, K6 to payment, obtain ciphertext Z;
F32, management server confirm that to payment terminal data random number N 8, GPRS card number carry out three times of des encryptions, obtain ciphertext W with communication key K1, K2, K3;
F33, with the ciphertext Z generation payment confirmation codes that is connected with ciphertext W;
Step G comprises:
G31, payment terminal are isolated ciphertext Z and ciphertext W from payment confirmation codes;
G32, payment terminal are carried out three times of DES deciphering with communication key K4, K5, K6 to ciphertext Z and are obtained payment;
G33, payment terminal are carried out three times of DES deciphering with communication key K1, K2, K3 to ciphertext W and are obtained payment terminal affirmation data random number N 8 and GPRS card number;
G34, payment terminal will be deciphered the payment terminal that obtains and be confirmed that data N8 and built-in random number N 8 compare, and if the amount of money contrast that payment that deciphering is obtained and user need pay all consistent, thinks that then payment confirmation codes is legal, carries out transaction; Otherwise think that payment confirmation codes is illegal, the refusal transaction.
The rest may be inferred, and those of ordinary skills can draw multiple alternative.
Tell about specific implementation of the present invention below in conjunction with concrete the application.
Embodiment one:
By the unified numbering of giving payment terminal distributing key and payment terminal of administrative center, present embodiment adopts the symmetric key system.Encrypting and decrypting method subsequently all can adopt DES (data encryption standards) or IDEA symmetric encipherment algorithms such as (IDEA).Determine one earlier and encrypt female key, other key need be generated by it.Supposing that businessman has is no more than 1,000,000 payment terminal, then is numbered 000000~999999 to what payment terminal was distributed payment terminal.Obtain the sub-key of payment terminal correspondence as the numbering of encryption keys payment terminal with female key.Numbering and sub-key with payment terminal deposits corresponding payment terminal in again.The sub-key information of payment terminal is recorded in the database on the management server.
The step of carrying out is:
1, the user of payment terminal imports the amount of money that will pay on terminal, perhaps imports the commodity or the service of choosing.
2, calculate total charge by payment terminal.
3, payment terminal is encrypted the generation communication key with its sub-key to the current time.
4, payment terminal is encrypted the numbering of payment, payment terminal with communication key, generates corresponding ciphertext A.
5, payment terminal is connected the numbering of its payment terminal and is presented on the display screen together as the Payment Request sign indicating number with ciphertext A.
6, the user sends to specific telecom operators' shortcode with the Payment Request sign indicating number that shows by SMS (short message service).
7, telecom operators are sent to short message the management server of administrative center by network.
8, management server is isolated user's cell-phone number and Payment Request sign indicating number from short message.
9, management server is isolated the numbering and the ciphertext A of payment terminal from the Payment Request sign indicating number.
10, management server inquires its corresponding sub-key by the numbering of the payment terminal of acquisition from database, encrypts current time acquisition communication key with sub-key.
11, management server is decrypted ciphertext A with the communication key of calculating above, obtains the numbering and the payment of payment terminal.
12, the numbering of the payment terminal that obtains with deciphering and the numbering of the payment terminal that short message transmits are expressly compared.If it is consistent then think that this Payment Request short message is legal.Otherwise think that this time Payment Request is illegal, waste treatment.
13, management server confirms to mobile communications operator's business support server whether this phone number belongs to the prepaying charge card user.If the rechargeable card user, management server in its Communications service Operator Specific Service back-level server is inquired about its card remaining sum whether greater than this dealing money, otherwise refusal transaction, the short message that sends insufficient in amount arrives this mobile phone.If remaining sum greater than payment, then directly notifies mobile communications operator's business support server to deduct the corresponding amount of money in this card number of the account.For non-prepaid user, business management server is committed to mobile communications operator's business support server with Transaction Information, by it payment is charged to the note charge system, squeezes in user's mobile communication expense in this month.
14, for the legal Payment Request that meets terms of trade, management server will be submitted the cell-phone number of requesting users to, and trade date time and payment are recorded in the database.
15, management server is encrypted numbering, user mobile phone number and the payment of payment terminal with communication key, obtains ciphertext B and sends on this user's the mobile phone with the short message form by telecom operators as payment confirmation codes.
16, the user receives after the payment confirmation codes, by the payment terminal keyboard payment confirmation codes is input in the payment terminal.
17, payment terminal with communication key to payment confirmation codes just ciphertext B be decrypted, obtain numbering, user mobile phone number and the payment of payment terminal.
18, payment terminal will be deciphered the numbering of the payment terminal that obtains and the numbering of built-in payment terminal compares, the amount of money contrast that payment that deciphering is obtained and user need pay, if all consistent, think that then the user has confirmed payment this time, payment confirmation codes is legal.
19, payment terminal comprises user's cell-phone number and payment with the information of this transaction, and the trade date time, purchase is recorded on the storer.
20, payment terminal shows Transaction Success, by salesman or the miscellaneous equipment that connects this payment terminal user-selected commodity is offered the user.
In the transaction, will conclude the business user mobile phone number and payment of administrative center's management server is sent to mobile communications operator's business support server that Communications service is provided to the user.Operator directly includes the amount of money of this transaction in the communication fee, and the user pays these tranaction costs in the lump when paying communication expense next time.For the rechargeable card user, the corresponding amount of money of deduction from its rechargeable card that operator is instant.
Because the inherent characteristics of data encryption and the uniqueness of phone number.Produce legal transaction request sign indicating number so the user is difficult to puppet in whole process of exchange, can not puppet produce legal trade confirmation sign indicating number substantially, the record of Transaction Information also has the assurance of safety and precise, can realize cash-free easily E-Payment.
Embodiment two:
Present embodiment adopts RSA (with the public key encryption system of Ronald Rivest, Aid Shamir, the name of Leonard Adleman three people's surname initials and the encryption system that DES combines.Because RSA belongs to public key architecture, similarly the public key encryption system also has elliptic curve cryptography system etc., and PKI can transmit by non-safe channel, so key can adopt the mode of later stage distribution.The method is applicable to that the businessman that service need be provided adds the situation of Payment System gradually.
When some businessmans buy payment terminal, when need adding whole Payment System, open application to the management server submission, it is right that management server generates one group of RSA key, and distribute an ID (identity code) at random for this businessman, cipher key pair one distributes to businessman as PKI simultaneously, and another key is saved in the database as private key and ID.
The step of carrying out is:
1, the user of payment terminal imports the amount of money that will pay on terminal, perhaps imports the commodity or the service of choosing.
2, calculate total charge by payment terminal.
3, payment terminal is that seed generates a random number N with current time, user to the incoming frequency of input keyboard or button distribution etc.
4, with the random number N be communication key to payment, payment terminal ID carries out des encryption, generates corresponding ciphertext a.
5, the PKI with this payment terminal carries out rsa encryption to random number N, generates ciphertext b as extra-code.
6, payment terminal is payment terminal ID, and extra-code ciphertext b is connected with ciphertext a and is presented on the display screen together as the Payment Request sign indicating number.
7, the user is by supporting the transaction page of the mobile phone access management server that WAP serves.
8, the user is committed to management server with Payment Request sign indicating number and the cell-phone number that shows by transaction page.
9, management server is isolated user's cell-phone number and Payment Request sign indicating number from the form data of submitting to.
10, management server is isolated payment terminal ID from the Payment Request sign indicating number, extra-code ciphertext b and ciphertext a.
11, management server inquires its corresponding private key by the payment terminal ID that obtains from database.
12, obtain the communication key random number N with private key deciphering extra-code ciphertext b.
13, management server carries out the DES deciphering with the communication key of calculating above to ciphertext a, obtains payment terminal ID and payment.
14, expressly compare with the payment terminal ID of deciphering acquisition and the payment terminal ID that submits to by WAP.If it is consistent then think that this Payment Request is legal; Otherwise think that this time Payment Request is illegal, waste treatment.
15, obtain this user mobile phone number from user's submission information, management server confirms to mobile communications operator's business support server whether this phone number belongs to the prepaying charge card user.If the rechargeable card user, management server in its Communications service Operator Specific Service back-level server is inquired about its card remaining sum whether greater than this dealing money, otherwise refusal transaction, the short message that sends insufficient in amount arrives this mobile phone.If remaining sum greater than payment, then directly notifies mobile communications operator's business support server to deduct the corresponding amount of money in this card number of the account.For non-prepaid user, business management server is committed to mobile communications operator's business support server with Transaction Information, by it payment is charged to the note charge system, squeezes in user's mobile communication expense in this month.
16, for the legal Payment Request that meets terms of trade, management server will submit to cell-phone number, exchange hour and the payment of requesting users to be recorded in the database.
17, management server is encrypted payment terminal ID, user mobile phone number and payment with communication key, obtains ciphertext c as payment confirmation codes, sends on this user's the mobile phone with the short message form by telecom operators.
18, the user receives after the payment confirmation codes, by the payment terminal keyboard payment confirmation codes is input in the payment terminal.
19, payment terminal with communication key to payment confirmation codes just ciphertext c be decrypted, obtain payment terminal ID, user mobile phone number and payment.
20, payment terminal will be deciphered the payment terminal ID that obtains and built-in payment terminal ID compares, the amount of money contrast that payment that deciphering is obtained and user need pay, if all consistent, think that then the user has confirmed payment this time, payment confirmation codes is legal.
21, payment terminal comprises that with the information of this transaction user's cell-phone number, payment and exchange hour and purchase is recorded on the storer.
22, payment terminal shows Transaction Success, by salesman or the miscellaneous equipment that connects this payment terminal user-selected commodity is offered the user.
Transaction Information can regularly or as required be gathered from each payment terminal by transaction back administrative center, and the Transaction Information after generally can will gathering by movable storage device deposits the management server data storehouse in.Prepare against when special circumstances occurring, as the transaction voucher.
Embodiment three:
Mobile comm unit in the present embodiment is the palm PC that has the GPRS wireless Internet card, and its function has the short message that comprises the trade confirmation sign indicating number that sends by the transaction webpage of GPRS online access management server and receiving management server.
The encrypting and decrypting system of present embodiment adopts the symmetric key system that cryptographic object is repeatedly encrypted respectively to improve Cipher Strength.Wherein symmetrical following mode is adopted in the distribution of key: produce six random number N 1, N2, N3, N4, N5, N6 by management server and be set in all payment terminals by communication interface as the encryption key of payment terminal, and record hereof.Producing two random number N 7, N8 by management server again is set in all payment terminals by communication interface as the affirmation data of payment terminal, and is recorded in the server.
The step of carrying out is:
1, the user of payment terminal imports the amount of money that will pay on terminal, perhaps imports the commodity or the service of choosing.
2, calculate total charge by payment terminal.
3, payment terminal is carried out des encryption to the current time respectively with N1, N2, N3, N4, N5, N6 and is generated six groups of communication key K1, K2, K3, K4, K5, K6.
4, payment terminal is carried out three times of des encryptions with communication key K1, K2, K3 to payment, generates ciphertext X.
5, payment terminal is carried out three times of des encryptions with communication key K4, K5, K6 to payment terminal affirmation data random number N 7, generates ciphertext Y.
6, payment terminal is connected ciphertext X and is presented on the display screen together as the Payment Request sign indicating number with ciphertext Y.
7, the user uses the transaction webpage of the palm PC access management server of band GPRS wireless Internet card.
8, the user is committed to management server with the card number of the Payment Request sign indicating number that shows and GPRS wireless Internet card by the transaction webpage.
9, management server is isolated user's GPRS card number and Payment Request sign indicating number from the data of submitting to.
10, management server is isolated ciphertext X and ciphertext Y from the Payment Request sign indicating number.
11, the management server random number N that reading and recording is got off from file 1, N2, N3, N4, N5, N6 obtain communication key K1, K2, K3, K4, K5, K6 as key with the des encryption current time.
12, management server carries out three times of DES deciphering with communication key K1, K2, the K3 that calculates above to ciphertext X, obtains payment.
13, management server carries out three times of DES deciphering with communication key K4, K5, the K6 that calculates above to ciphertext Y, obtains payment terminal and confirms data random number N 7.
14, compare with the payment terminal affirmation data random number N 7 of deciphering acquisition and the random number N 7 that is recorded in the server file.If consistent then think that this payment request information is legal, otherwise think that this time Payment Request is illegal, waste treatment.
15, management server confirms to mobile communications operator's business support server whether this GPRS card number sign indicating number belongs to the prepaying charge card user.If the rechargeable card user, management server in its Communications service Operator Specific Service back-level server is inquired about its card remaining sum whether greater than this dealing money, otherwise refusal transaction, the short message that sends insufficient in amount arrives this GPRS card.If remaining sum greater than payment, then directly notifies mobile communications operator's business support server to deduct the corresponding amount of money in this card number of the account.For non-prepaid user, business management server is committed to mobile communications operator's business support server with Transaction Information, by it payment is charged to the note charge system, squeezes in user's communication expense in this month.
16, for the legal Payment Request that meets terms of trade, management server will be submitted request user's GPRS card number to, and exchange hour and payment are recorded in the database.
17, management server carries out three times of des encryptions with communication key K4, K5, K6 to payment, obtains ciphertext Z.
18, management server confirms that to payment terminal data random number N 8, GPRS card number carry out three times of des encryptions, obtain ciphertext W with communication key K1, K2, K3.
19, ciphertext Z is connected with ciphertext W generates payment confirmation codes and send on this user's the GPRS card with the short message form by telecom operators.
20, after the user receives payment confirmation codes by the GPRS card, payment confirmation codes is input in the payment terminal by the payment terminal keyboard.
21, payment terminal is isolated ciphertext Z and ciphertext W from payment confirmation codes.
22, payment terminal is carried out three times of DES deciphering acquisition payments with communication key K4, K5, K6 to ciphertext Z.
23, payment terminal is carried out three times of DES deciphering acquisition payment terminals affirmation data random number N 8 and GPRS card number with communication key K1, K2, K3 to ciphertext W.
24, payment terminal will be deciphered the payment terminal that obtains and be confirmed that data N8 and built-in random number N 8 compare, the amount of money contrast that payment that deciphering is obtained and user need pay, if all consistent, think that then the user has confirmed payment this time, payment confirmation codes is legal; Otherwise payment confirmation codes is illegal.
25, payment terminal comprises that with the information of this transaction user's GPRS card number, payment, exchange hour and purchase is recorded on the internal memory eeprom memory.
26, payment terminal shows Transaction Success, by salesman or the miscellaneous equipment that connects this payment terminal user-selected commodity is offered the user.
Treatment step after the transaction comprises:
Transaction Information regularly or is as required gathered from each payment terminal by administrative center, generally is to pass through movable storage device.Transaction Information after the collection deposits the management server data storehouse in.Prepare against when special circumstances occurring, as the transaction voucher.Such as the user really do not conclude the business after receiving payment confirmation codes, and inreal in other words input payment confirmation codes is on payment terminal.After stating during the user proposes so, by the transaction record of inquiry payment terminal, find not have really this transaction to take place, then reimbursement is given the user or is cancelled this payment.
Claims (7)
1, a kind of E-Payment implementation method, it is characterized in that: a series of payment terminals for the consumption user operation at first are set, and setting and payment terminal have service centre's equipment of respective encrypted and deciphering system, and this service centre's equipment also can establish a communications link with mobile comm unit with the networking of mobile communications operator's business support server;
This E-Payment implementation method may further comprise the steps:
A, consumption user are imported article of consumption according to prompting to payment terminal;
B, payment terminal generate and comprise the Payment Request sign indicating number of consumption project data, this payment terminal being confirmed the ciphertext of data through encrypting formation;
C, consumption user are sent to service centre equipment with the Payment Request sign indicating number together with charge information by mobile comm unit;
D, service centre's equipment are confirmed charging way to the decrypt ciphertext in the Payment Request sign indicating number according to charge information;
If the E payment terminal confirms that the data decryption result is legal and charging way is feasible, then continue execution in step F; Otherwise, Payment Request is discarded;
F, service centre's equipment will comprise confirms that to consumption project data and this payment terminal data and the payment confirmation codes of charge information through encrypting the ciphertext that forms are back to mobile comm unit;
G, consumption user are imported payment terminal with payment confirmation codes, to decrypt ciphertext wherein and verify the decrypted result legitimacy, if legal, think that then payment effectively carries out transaction and record Transaction Information by payment terminal; Otherwise, think that payment is invalid.
2, E-Payment implementation method as claimed in claim 1 is characterized in that: the data of article of consumption described in the step B are amount payable.
3, E-Payment implementation method as claimed in claim 1 is characterized in that: described charge information is the consumption user phone number, among step C, the F between service centre's equipment and mobile comm unit information transmission mode be mobile phone short message.
4, E-Payment implementation method as claimed in claim 1 is characterized in that: among step C, the F between service centre's equipment and mobile comm unit information transmission mode be the wireless application protocol (wap) mode.
5, pay implementation method by mails as described any one of claim 1 to 4, it is characterized in that: described encryption and deciphering system comprise unique female key and by female key the numbering of each payment terminal are carried out cryptographic calculation and obtain corresponding a series of sub-key;
The step B of described formation Payment Request sign indicating number comprises the steps:
B11, payment terminal are carried out cryptographic calculation with its sub-key to current time information and are generated communication key;
B12, payment terminal are encrypted the numbering of consumption project data and payment terminal with communication key and are generated ciphertext 1;
B13, the numbering of payment terminal is connected as the Payment Request sign indicating number with ciphertext 1;
Described step D to the deciphering of Payment Request sign indicating number comprises the steps:
D11, the numbering of from the Payment Request sign indicating number, isolating payment terminal and ciphertext 1;
D12, current time information is encrypted the acquisition communication key with corresponding sub-key;
D13, ciphertext 1 is decrypted, obtains the numbering of article of consumption data and this payment terminal with communication key;
Step e comprises:
The numbering of the payment terminal that obtains with deciphering and the numbering of the payment terminal in the Payment Request sign indicating number are expressly compared, if unanimity then confirm that Payment Request is legal, otherwise would confirm that Payment Request is illegal;
Step F comprises:
Service centre's equipment is encrypted acquisition ciphertext 2 as payment confirmation codes with communication key to the numbering and the charge information that comprise article of consumption data and this payment terminal;
Step G comprises:
G11, payment terminal are decrypted numbering and the charge information that obtains article of consumption data and this payment terminal with communication key to payment confirmation codes;
G12, payment terminal will be deciphered the numbering of the payment terminal that obtains and the numbering of the payment terminal of self compares, and article of consumption data and user that deciphering is obtained compare in the cuit of steps A, if all consistent, assert that then payment confirmation codes is legal; Otherwise, assert that payment confirmation codes is illegal.
6, pay implementation method by mails as described any one of claim 1 to 4, it is characterized in that: described encryption and deciphering system comprise a series of keys to confirming data with the payment terminal that payment terminal is generated at random, and a key of cipher key pair confirms that with payment terminal data are arranged at payment terminal as PKI; Another key of cipher key pair confirms that as private key and payment terminal data are stored in service centre's device databases together;
The step B of described formation Payment Request sign indicating number comprises the steps:
B21, payment terminal generate a random number N;
B22, to be communication key with the random number N confirm to amount payable, payment terminal that the The data symmetric encipherment algorithm is encrypted generates ciphertext 1;
B23, with the PKI of this payment terminal random number N is encrypted and to generate ciphertext 2 as extra-code;
B24, payment terminal is confirmed that data, ciphertext 2 and ciphertext 1 link to each other as the Payment Request sign indicating number;
Described step D to the deciphering of Payment Request sign indicating number comprises the steps:
D21, from the Payment Request sign indicating number, isolate payment terminal and confirm data, ciphertext 2 and ciphertext 1;
D22, from service centre's device databases, inquire its corresponding private key by the payment terminal identification code;
D23, with private key ciphertext 2 is decrypted and obtains communication key N;
D24, with communication key N ciphertext 1 is adopted symmetric encipherment algorithm to be decrypted to obtain payment terminal and confirm data and amount payable;
Step e comprises:
Relatively decrypt operation obtains payment terminal and confirms that isolated payment terminal is confirmed data among data and the step D21, if unanimity then confirm that Payment Request is legal, otherwise the affirmation Payment Request is illegal;
Step F comprises:
Confirm the data item encryption of data, charge information and amount payable with communication key N to comprising payment terminal, obtain ciphertext 3 as payment confirmation codes;
Step G comprises:
G21, payment terminal are decrypted payment confirmation codes with communication key N and obtain payment terminal affirmation data, charge information and amount payable;
G22, payment terminal will be deciphered the payment terminal that obtains and be confirmed that data and the payment terminal of self affirmation data compare, and amount payable and user that deciphering is obtained compare in the cuit of steps A, if all consistent, assert that then payment confirmation codes is legal; Otherwise, assert that payment confirmation codes is illegal.
7, E-Payment implementation method as claimed in claim 1 or 2 is characterized in that: described mobile comm unit is the palm PC that has the general packet radio service gprs card of surfing Internet; The distribution of key is set in all payment terminals by communication interface as the encryption key of payment terminal by management server generation six random number N 1, N2, N3, N4, N5, N6 in the described encrypting and decrypting system, producing two random number N 7, N8 by management server again is set in all payment terminals by communication interface as the affirmation data of payment terminal, and is recorded in the server;
The step B of described formation Payment Request sign indicating number comprises the steps:
B31, payment terminal are carried out DES Cipher to the current time respectively with N1, N2, N3, N4, N5, N6 and are encrypted generation six groups of communication key K1, K2, K3, K4, K5, K6;
B32, payment terminal are carried out three times of des encryptions with communication key K1, K2, K3 to payment, generate ciphertext X;
B33, payment terminal are carried out three times of des encryptions with communication key K4, K5, K6 to payment terminal affirmation data random number N 7, generate ciphertext Y;
B34, payment terminal are connected ciphertext X as the Payment Request sign indicating number with ciphertext Y;
Described step D to the deciphering of Payment Request sign indicating number comprises the steps:
D31, management server are isolated ciphertext X and ciphertext Y from the Payment Request sign indicating number;
D32, the management server random number N that reading and recording is got off from file 1, N2, N3, N4, N5, N6 obtain communication key K1, K2, K3, K4, K5, K6 as key with the des encryption current time;
D33, management server carry out three times of DES deciphering with communication key K1, K2, the K3 that calculates above to ciphertext X, obtain payment;
D34, management server carry out three times of DES deciphering with communication key K4, K5, the K6 that calculates above to ciphertext Y, obtain payment terminal and confirm data random number N 7;
Step e comprises:
Compare with the random number N 7 that is recorded in the server file with the payment terminal affirmation data random number N 7 that deciphering obtains.If unanimity then think that this Payment Request is legal, otherwise think that this Payment Request is illegal;
Step F comprises:
F31, management server carry out three times of des encryptions with communication key K4, K5, K6 to payment, obtain ciphertext Z:
F32, management server confirm that to payment terminal data random number N 8, GPRS card number carry out three times of des encryptions, obtain ciphertext W with communication key K1, K2, K3;
F33, with the ciphertext Z generation payment confirmation codes that is connected with ciphertext W;
Step G comprises:
G31, payment terminal are isolated ciphertext Z and ciphertext W from payment confirmation codes;
G32, payment terminal are carried out three times of DES deciphering with communication key K4, K5, K6 to ciphertext Z and are obtained payment;
G33, payment terminal are carried out three times of DES deciphering with communication key K1, K2, K3 to ciphertext W and are obtained payment terminal affirmation data random number N 8 and GPRS card number;
G34, payment terminal will be deciphered the payment terminal that obtains and be confirmed that data N8 and built-in random number N 8 compare, and if the amount of money contrast that payment that deciphering is obtained and user need pay all consistent, thinks that then payment confirmation codes is legal; Otherwise think that payment confirmation codes is illegal.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 02159277 CN1417734A (en) | 2002-12-30 | 2002-12-30 | Method for implementation of electronic payment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN 02159277 CN1417734A (en) | 2002-12-30 | 2002-12-30 | Method for implementation of electronic payment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1417734A true CN1417734A (en) | 2003-05-14 |
Family
ID=4753279
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN 02159277 Pending CN1417734A (en) | 2002-12-30 | 2002-12-30 | Method for implementation of electronic payment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1417734A (en) |
Cited By (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1321537C (en) * | 2004-11-29 | 2007-06-13 | 上海市电信有限公司 | Electronic paymenting service system and realizing method based on fixed telephone net short message |
| CN101295394A (en) * | 2007-04-23 | 2008-10-29 | 美国通宝科技有限公司 | Method and device for providing e-commerce and m-commerce |
| CN101867895A (en) * | 2009-09-01 | 2010-10-20 | 深圳市安捷信联科技有限公司 | Consumption method based on mobile terminal and messages, mobile terminal and business system |
| CN102044026A (en) * | 2009-10-23 | 2011-05-04 | 中兴通讯股份有限公司 | Telephone payment encryption method, device and system |
| CN102346889A (en) * | 2010-08-04 | 2012-02-08 | 中国移动通信有限公司 | POS (Point of Sale) terminal-based off-line transaction method, POS terminal-based off-line transaction system and related devices |
| CN103123708A (en) * | 2011-08-23 | 2013-05-29 | 宏达国际电子股份有限公司 | Secure payment method, mobile device and secure payment system |
| CN103312507A (en) * | 2013-05-09 | 2013-09-18 | 重庆邮电大学 | Encryption and authentication method in mobile payment |
| CN103827904A (en) * | 2011-07-28 | 2014-05-28 | Upc咨询有限公司 | Offline transaction |
| CN104348792A (en) * | 2013-07-30 | 2015-02-11 | 阿里巴巴集团控股有限公司 | Data processing method, device and system |
| WO2015106369A1 (en) * | 2014-01-20 | 2015-07-23 | 上海睿响信息技术有限公司 | Off-line guiding and confirmation device and method for supporting mobile payment |
| CN106066601A (en) * | 2016-06-15 | 2016-11-02 | 金钱象网络科技(北京)有限公司 | One barcode scanning can pay intelligent watch |
| CN106600827A (en) * | 2016-12-14 | 2017-04-26 | 上海众人网络安全技术有限公司 | Selling method and system based on dynamic password transaction authentication |
| CN108932619A (en) * | 2018-06-07 | 2018-12-04 | 贵州玛迩比特通信科技有限公司 | A kind of chargeable service method and system that terminal is offline |
| CN110070357A (en) * | 2013-07-19 | 2019-07-30 | 阿里巴巴集团控股有限公司 | Data processing method, device and system |
| CN111355776A (en) * | 2016-09-20 | 2020-06-30 | 徐蔚 | Service providing method and device for carrying out encryption signature on digital currency application program and mobile terminal |
| US11004061B2 (en) | 2006-09-24 | 2021-05-11 | Rfcyber Corporation | Method and apparatus for payments between two mobile devices |
| CN114548986A (en) * | 2022-01-27 | 2022-05-27 | 深圳金融电子结算中心有限公司 | Payment method, payment security code generation method, device, equipment and storage medium |
-
2002
- 2002-12-30 CN CN 02159277 patent/CN1417734A/en active Pending
Cited By (26)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1321537C (en) * | 2004-11-29 | 2007-06-13 | 上海市电信有限公司 | Electronic paymenting service system and realizing method based on fixed telephone net short message |
| US11004061B2 (en) | 2006-09-24 | 2021-05-11 | Rfcyber Corporation | Method and apparatus for payments between two mobile devices |
| CN104966196A (en) * | 2007-04-23 | 2015-10-07 | 深圳市可秉资产管理合伙企业(有限合伙) | Method and apparatus for providing e-commerce and m-commerce |
| CN101295394A (en) * | 2007-04-23 | 2008-10-29 | 美国通宝科技有限公司 | Method and device for providing e-commerce and m-commerce |
| CN104966196B (en) * | 2007-04-23 | 2019-07-26 | 深圳市可秉资产管理合伙企业(有限合伙) | The method and device thereof of e-commerce and Mobile business are provided |
| CN101867895A (en) * | 2009-09-01 | 2010-10-20 | 深圳市安捷信联科技有限公司 | Consumption method based on mobile terminal and messages, mobile terminal and business system |
| CN102044026A (en) * | 2009-10-23 | 2011-05-04 | 中兴通讯股份有限公司 | Telephone payment encryption method, device and system |
| CN102346889A (en) * | 2010-08-04 | 2012-02-08 | 中国移动通信有限公司 | POS (Point of Sale) terminal-based off-line transaction method, POS terminal-based off-line transaction system and related devices |
| CN102346889B (en) * | 2010-08-04 | 2014-04-30 | 中国移动通信有限公司 | POS (Point of Sale) terminal-based off-line transaction method, POS terminal-based off-line transaction system and related devices |
| CN103827904A (en) * | 2011-07-28 | 2014-05-28 | Upc咨询有限公司 | Offline transaction |
| CN103123708A (en) * | 2011-08-23 | 2013-05-29 | 宏达国际电子股份有限公司 | Secure payment method, mobile device and secure payment system |
| CN103312507A (en) * | 2013-05-09 | 2013-09-18 | 重庆邮电大学 | Encryption and authentication method in mobile payment |
| CN110070357A (en) * | 2013-07-19 | 2019-07-30 | 阿里巴巴集团控股有限公司 | Data processing method, device and system |
| CN110070357B (en) * | 2013-07-19 | 2024-05-17 | 创新先进技术有限公司 | Data processing method, device and system |
| CN104348792A (en) * | 2013-07-30 | 2015-02-11 | 阿里巴巴集团控股有限公司 | Data processing method, device and system |
| CN104348792B (en) * | 2013-07-30 | 2018-06-19 | 阿里巴巴集团控股有限公司 | Data processing method, device and system |
| CN108510276A (en) * | 2013-07-30 | 2018-09-07 | 阿里巴巴集团控股有限公司 | Data processing method, device and system |
| WO2015106369A1 (en) * | 2014-01-20 | 2015-07-23 | 上海睿响信息技术有限公司 | Off-line guiding and confirmation device and method for supporting mobile payment |
| GB2531665A (en) * | 2014-01-20 | 2016-04-27 | Shanghai Ruixiang Information Tech Co Ltd | Off-line guiding and confirmation device and method for supporting mobile payment |
| CN106066601A (en) * | 2016-06-15 | 2016-11-02 | 金钱象网络科技(北京)有限公司 | One barcode scanning can pay intelligent watch |
| CN111355776A (en) * | 2016-09-20 | 2020-06-30 | 徐蔚 | Service providing method and device for carrying out encryption signature on digital currency application program and mobile terminal |
| CN111355776B (en) * | 2016-09-20 | 2023-10-24 | 徐蔚 | Service providing method and device based on multiple application programs and mobile terminal |
| CN106600827A (en) * | 2016-12-14 | 2017-04-26 | 上海众人网络安全技术有限公司 | Selling method and system based on dynamic password transaction authentication |
| CN108932619A (en) * | 2018-06-07 | 2018-12-04 | 贵州玛迩比特通信科技有限公司 | A kind of chargeable service method and system that terminal is offline |
| CN108932619B (en) * | 2018-06-07 | 2022-03-22 | 贵州玛迩比特通信科技有限公司 | Terminal offline charging service method and system |
| CN114548986A (en) * | 2022-01-27 | 2022-05-27 | 深圳金融电子结算中心有限公司 | Payment method, payment security code generation method, device, equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1417734A (en) | Method for implementation of electronic payment | |
| CN1313948C (en) | Electronic stamp. storage medium, high-level vertification system, moving device and vehicle start control equipment | |
| CN1147120C (en) | Accounting apparatus, information receiving apparatus, and communication system | |
| CN1284326C (en) | Single account portable wireless financial messaging unit | |
| CN1201609C (en) | System for realizing reat-time long distance payment and business by mobile telephone and treating method | |
| CN1155919C (en) | Transaction method carried out with a mobile apparatus | |
| CN1756150A (en) | Information management apparatus, information management method, and program | |
| CN1878160A (en) | Program exchanging system | |
| CN1638332A (en) | Information processing system | |
| CN1283295A (en) | Transaction authentication for 1-way wireless financial messaging units | |
| CN1254472A (en) | Broadcast and reception system, and receiver/decoder and remote controller | |
| CN1744137A (en) | Electronic wallet | |
| CN1928907A (en) | Method, system and device for transaction payment using mobile terminal equipment | |
| CN1926567A (en) | Systems and methods for conducting secure payment transactions using a formatted data structure | |
| CN1625888A (en) | System and method for starting financial transaction service provided by remote communication operation mechanism | |
| CN101034449A (en) | Method, system and mobile terminal for implementing electronic payment | |
| CN1921384A (en) | Public key infrastructure system, local safety apparatus and operation method | |
| CN1635525A (en) | Security Internet payment system and security Internet payment authentication method | |
| CN1353389A (en) | Contents distribution method and service aid and terminal used for same and computer program | |
| CN1758279A (en) | Method for purchasing lottery ticket using radio data communication mode | |
| CN1479216A (en) | Electronic stamp, IC card, checking system and mobile equipment | |
| CN101052191A (en) | Information processing system, information processing apparatus and integrated circuit chip | |
| CN1726686A (en) | Providing convenience and authentication for trade | |
| CN1318933A (en) | Transmitting, receiving device and method, management, aconting, providing device and method, and recording medium | |
| CN101064033A (en) | System and method for action payment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C57 | Notification of unclear or unknown address | ||
| DD01 | Delivery of document by public notice |
Addressee: Qin Yuezhen Tang Zhongqing Document name: Deemed as a notice of withdrawal (Trial) |
|
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |