[go: up one dir, main page]

CN103186857A - Bank card payment method and system - Google Patents

Bank card payment method and system Download PDF

Info

Publication number
CN103186857A
CN103186857A CN2011104608027A CN201110460802A CN103186857A CN 103186857 A CN103186857 A CN 103186857A CN 2011104608027 A CN2011104608027 A CN 2011104608027A CN 201110460802 A CN201110460802 A CN 201110460802A CN 103186857 A CN103186857 A CN 103186857A
Authority
CN
China
Prior art keywords
safe control
bank card
end system
bank
control front
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN2011104608027A
Other languages
Chinese (zh)
Inventor
刘风军
肖波
嵇文俊
陈孜
诸中林
胡笳
尤佳
梅磊
张振华
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Unionpay Co Ltd
Original Assignee
China Unionpay Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Unionpay Co Ltd filed Critical China Unionpay Co Ltd
Priority to CN2011104608027A priority Critical patent/CN103186857A/en
Publication of CN103186857A publication Critical patent/CN103186857A/en
Pending legal-status Critical Current

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

本申请提供了一种银行卡支付方法,包括安全控件接收银行卡信息、持卡人身份信息以及短信验证码;安全控件向安全控件前置系统发送支付请求消息,所述支付请求消息包含银行卡信息、持卡人身份信息以及短信验证码;安全控件前置系统从所述支付请求消息中提取短信验证码,并对其进行验证;在短信验证码验证通过之后,安全控件前置系统将所述银行卡信息和持卡人信息转发给银行交易系统;银行交易系统根据从安全控件前置系统所转发的银行卡信息和持卡人信息来进行身份认证;以及当身份认证通过之后,银行交易系统进行交易授权。本申请还提供了一种银行卡支付系统。

Figure 201110460802

The application provides a bank card payment method, including a security control receiving bank card information, cardholder identity information and SMS verification code; the security control sends a payment request message to the security control pre-system, and the payment request message includes a bank card information, cardholder identity information, and SMS verification code; the security control front-end system extracts the SMS verification code from the payment request message, and verifies it; after the SMS verification code is verified, the security control front-end system The above bank card information and cardholder information are forwarded to the bank transaction system; the bank transaction system performs identity authentication based on the bank card information and cardholder information forwarded from the security control front-end system; and when the identity authentication is passed, the bank transaction The system authorizes the transaction. The application also provides a bank card payment system.

Figure 201110460802

Description

银行卡支付方法及系统Bank card payment method and system

技术领域 technical field

本申请涉及金融数据处理领域,特别涉及一种银行卡支付方法及系统。This application relates to the field of financial data processing, in particular to a bank card payment method and system.

背景技术 Background technique

随着互联网及电子商务产业的高速发展,围绕互联网为人们提供衣、食、住、行、游、购、娱等全方位服务成为产业热点。在移动通信技术进步的推进下,将互联网、移动通信技术、短距离通信技术及其它信息处理技术完美结合的移动电子商务迅猛发展。移动电子商务就是利用手机、PDA及掌上电脑等无线终端进行的B2B、B2C或C2C的电子商务。它使人们可以在任何时间、任何地点进行各种商贸活动,实现随时随地、线上线下的购物与交易、在线电子支付以及各种交易活动、商务活动、金融活动和相关的综合服务活动等。With the rapid development of the Internet and e-commerce industry, it has become a hot spot in the industry to provide people with all-round services such as clothing, food, housing, transportation, travel, shopping, and entertainment around the Internet. Driven by the advancement of mobile communication technology, mobile e-commerce, which perfectly combines the Internet, mobile communication technology, short-distance communication technology and other information processing technologies, has developed rapidly. Mobile e-commerce refers to B2B, B2C or C2C e-commerce conducted by wireless terminals such as mobile phones, PDAs and handheld computers. It enables people to carry out various business activities at any time and any place, realize online and offline shopping and transactions, online electronic payment and various transaction activities, commercial activities, financial activities and related comprehensive service activities anytime, anywhere.

然而,在网络安全威胁日益严重的今天,作为移动电子商务最重要环节之一的支付环节的安全性常为人所诟病。例如,至目前为止,用于保证支付环节安全的安全控件无法嵌入到手机WAP浏览器中。因而,在利用例如手机等移动设备进行购物时,难以保证与网上购物相同的安全性。另外,在利用例如手机进行支付之前,必须开通手机银行或者手机中需要装配一定的硬件介质,例如SD卡等,这些都限制了移动互联网支付的发展。However, in today's increasingly serious network security threats, the security of the payment link, one of the most important links in mobile e-commerce, is often criticized by people. For example, up to now, the security control used to ensure the security of the payment link cannot be embedded in the WAP browser of the mobile phone. Therefore, when using mobile devices such as mobile phones for shopping, it is difficult to guarantee the same security as online shopping. In addition, before using mobile phones to make payments, mobile banking must be activated or certain hardware media, such as SD cards, must be installed in mobile phones, which limit the development of mobile Internet payment.

在公开号为CN101098371的专利文献中,公开了一种金融数据处理方法,它包括如下步骤:设置智能卡于移动终端设备中,所述智能卡存储有至少一个金融卡磁道信息;移动终端设备发送金融卡磁道信息和待处理数据至服务器;服务器将金融卡磁道信息和待处理数据转发至相应数据处理终端;所述数据处理终端完成相关数据的处理并返回处理结果信息。尽管该专利申请提高了移动支付中金融数据处理的效率,但是其方法需要将存储有金融卡磁道信息的智能卡设置于移动终端设备,降低了手机的适配率,不利于大面积推广使用。In the patent document whose publication number is CN101098371, a financial data processing method is disclosed, which includes the following steps: setting a smart card in a mobile terminal device, the smart card is stored with at least one financial card magnetic track information; the mobile terminal device sends the financial card The magnetic track information and data to be processed are sent to the server; the server forwards the financial card magnetic track information and data to be processed to the corresponding data processing terminal; the data processing terminal completes the processing of relevant data and returns the processing result information. Although this patent application improves the efficiency of financial data processing in mobile payment, its method requires the smart card storing financial card magnetic track information to be set on the mobile terminal device, which reduces the adaptation rate of mobile phones and is not conducive to large-scale promotion and use.

发明内容 Contents of the invention

本申请的目的之一在于提供一种改进的银行卡支付方法及系统。One of the purposes of the present application is to provide an improved bank card payment method and system.

根据本申请的一个方面,提供了一种银行卡支付方法,包括:安全控件接收银行卡信息、持卡人身份信息以及短信验证码;安全控件向安全控件前置系统发送支付请求消息,所述支付请求消息包含银行卡信息、持卡人身份信息以及短信验证码;安全控件前置系统从所述支付请求消息中提取短信验证码,并对其进行验证;在短信验证码验证通过之后,安全控件前置系统将所述银行卡信息和持卡人信息转发给银行交易系统;银行交易系统根据从安全控件前置系统所转发的银行卡信息和持卡人信息来进行身份认证;以及当身份认证通过之后,银行交易系统进行交易授权。According to one aspect of the present application, a bank card payment method is provided, including: the security control receives bank card information, cardholder identity information and SMS verification code; the security control sends a payment request message to the security control front-end system, the The payment request message includes bank card information, cardholder identity information and SMS verification code; the security control front-end system extracts the SMS verification code from the payment request message and verifies it; after the SMS verification code is verified, the security The control front-end system forwards the bank card information and cardholder information to the bank transaction system; the bank transaction system performs identity authentication according to the bank card information and cardholder information forwarded from the security control front-end system; and when the identity After the authentication is passed, the bank transaction system authorizes the transaction.

在上述银行卡支付方法中,所述安全控件设置在移动智能终端中。In the above bank card payment method, the security control is set in the smart mobile terminal.

在上述银行卡支付方法中,所述银行卡信息包括银行卡卡号、有效期、CVN2和密码中的一种或多种。In the above bank card payment method, the bank card information includes one or more of bank card number, validity period, CVN2 and password.

在上述银行卡支付方法中,所述持卡人身份信息包括身份证号和/或手机号。In the above bank card payment method, the cardholder identity information includes an ID number and/or a mobile phone number.

在上述银行卡支付方法中,还包括:在进行交易授权后,银行交易系统将交易结果返回给安全控件前置系统。之后,安全控件前置系统将交易结果返回给安全控件。最后,安全控件向持卡人展示交易结果。In the above bank card payment method, it also includes: after the transaction is authorized, the bank transaction system returns the transaction result to the security control front-end system. Afterwards, the security control front-end system returns the transaction result to the security control. Finally, the security control presents the transaction result to the cardholder.

在上述银行卡支付方法中,所述短信验证码由安全控件前置系统提供给持卡人。In the above bank card payment method, the SMS verification code is provided to the cardholder by the security control front-end system.

在上述银行卡支付方法中,安全控件与安全控件前置系统采用PKI数字信封加密来进行直接通讯。In the above bank card payment method, the security control and the security control front-end system use PKI digital envelope encryption for direct communication.

在上述银行卡支付方法中,安全控件前置系统与银行交易系统采用专线来进行连接。In the above bank card payment method, the security control front-end system and the bank transaction system are connected by a dedicated line.

根据本申请的另一个方面,还提供了一种银行卡支付系统,包括:移动智能终端中的安全控件,安全控件前置系统以及银行交易系统,所述安全控件与所述安全控件前置系统采用PKI数字信封加密来进行直接通讯并且所述安全控件前置系统与所述银行交易系统采用专线来进行连接,其中:所述安全控件用于接收银行卡信息、持卡人身份信息以及短信验证码,并向安全控件前置系统发送支付请求消息,所述支付请求消息包含银行卡信息、持卡人身份信息以及短信验证码;所述安全控件前置系统从所述支付请求消息中提取短信验证码,并对其进行验证;在短信验证码验证通过之后,所述安全控件前置系统将所述银行卡信息和持卡人信息转发给所述银行交易系统;所述银行交易系统根据从安全控件前置系统所转发的银行卡信息和持卡人信息来进行身份认证;并且当身份认证通过之后,所述银行交易系统进行交易授权。According to another aspect of the present application, a bank card payment system is also provided, including: a security control in a mobile smart terminal, a security control front-end system and a bank transaction system, the security control and the security control front-end system Use PKI digital envelope encryption for direct communication and the security control front-end system is connected with the bank transaction system using a dedicated line, wherein: the security control is used to receive bank card information, cardholder identity information and SMS verification code, and send a payment request message to the security control front-end system, the payment request message includes bank card information, cardholder identity information and SMS verification code; the security control front-end system extracts the short message from the payment request message verification code, and verify it; after the SMS verification code is verified, the security control front-end system forwards the bank card information and cardholder information to the bank transaction system; the bank transaction system according to the The bank card information and cardholder information forwarded by the security control front-end system are used for identity authentication; and when the identity authentication is passed, the bank transaction system authorizes the transaction.

与现有技术相比,本申请可以有效解决移动互联网的支付瓶颈,实现一种安全、便捷、无需开通、易于推广的支付方式。Compared with the prior art, the application can effectively solve the payment bottleneck of the mobile Internet, and realize a safe, convenient, unopened and easy-to-promote payment method.

附图说明 Description of drawings

图1是根据本申请的一个实施例的银行卡支付系统的示意图;Fig. 1 is a schematic diagram of a bank card payment system according to an embodiment of the present application;

图2是根据本申请的一个实施例的银行卡支付方法的示意图。Fig. 2 is a schematic diagram of a bank card payment method according to an embodiment of the present application.

具体实施方式 Detailed ways

下面介绍的是本发明的多个可能实施例中的一些,旨在提供对本发明的基本了解,并不旨在确认本发明的关键或决定性的要素或限定所要保护的范围。容易理解,根据本发明的技术方案,在不变更本发明的实质精神下,本领域的一般技术人员可以提出可相互替换的其它实现方式。因此,以下具体实施方式以及附图仅是对本发明的技术方案的示例性说明,而不应当视为本发明的全部或者视为对本发明技术方案的限定或限制。The following introduces some of the possible embodiments of the present invention, which are intended to provide a basic understanding of the present invention, but are not intended to identify key or decisive elements of the present invention or limit the scope of protection. It is easy to understand that, according to the technical solution of the present invention, those skilled in the art may propose other alternative implementation manners without changing the essence and spirit of the present invention. Therefore, the following specific embodiments and drawings are only exemplary descriptions of the technical solution of the present invention, and should not be regarded as the entirety of the present invention or as a limitation or restriction on the technical solution of the present invention.

本申请提出了一种基于银行卡卡号、手机号、短信验证码、有效期、CVN(Card Verification Number,卡确认码/安全码)、密码等验证要素信息,实现安全、低门槛、高效率、无需开通、易推广的支付模式,并全面支持手机支付、IVR(Interactive Voice Response,互动式语音应答)语音支付、电视支付等全方位、一体化的移动互联网支付。This application proposes a verification element information based on bank card number, mobile phone number, SMS verification code, validity period, CVN (Card Verification Number, card confirmation code/security code), password, etc., to achieve security, low threshold, high efficiency, and no need to Open and easy-to-promote payment mode, and fully support mobile payment, IVR (Interactive Voice Response, Interactive Voice Response) voice payment, TV payment and other all-round and integrated mobile Internet payments.

图1是根据本申请的一个实施例的银行卡支付系统的示意图。如图1所示,该银行卡支付系统包括移动智能终端110中的安全控件120、安全控件前置系统130以及银行交易系统140。并且,从图1中还可以看出,安全控件前置系统130和银行交易系统140移动智能终端110的外部。安全控件120与安全控件前置系统130直接通讯,而不经过任何第三方系统。Fig. 1 is a schematic diagram of a bank card payment system according to an embodiment of the present application. As shown in FIG. 1 , the bank card payment system includes a security control 120 in a smart mobile terminal 110 , a security control front-end system 130 and a bank transaction system 140 . Moreover, it can also be seen from FIG. 1 that the security control front-end system 130 and the bank transaction system 140 move outside the smart terminal 110 . The security control 120 communicates directly with the security control front-end system 130 without going through any third-party system.

在一个具体的实现中,安全控件120安装在移动智能终端110中。在用户在商户(例如京东商城)中选中欲购买的物品之后,激活移动智能终端110中的安全控件120。该安全控件120可以由商户程序、用户自身等来激活。安全控件120与安全控件前置系统130之间采用PKI(Public Key Infrastructure,公钥基础设施)数字信封加密技术来实现支付信息安全传输,从而有效防范被截取、篡改、抵赖、钓鱼等交易风险。数字信封是PKI在实际中的一个应用,是用加密技术来保证只有规定的特定收信人才能阅读通信的内容。在数字信封中,信息发送方采用对称密钥来加密信息内容,然后将此对称密钥用接收方的公开密钥来加密(这部分称数字信封)之后,将它和加密后的信息一起发送给接收方。接收方则先利用相应的私有密钥打开数字信封,得到对称密钥,然后使用对称密钥解开加密信息。这样,数据传输的真实性和完整性得到保证。同样,为了保证信息传输安全,安全控件前置系统130和银行交易系统140之间可以采用专线连接。In a specific implementation, the security control 120 is installed in the smart mobile terminal 110 . After the user selects an item to be purchased in a merchant (such as JD.com), the security control 120 in the mobile smart terminal 110 is activated. The security control 120 may be activated by a merchant program, the user itself, or the like. The PKI (Public Key Infrastructure, public key infrastructure) digital envelope encryption technology is used between the security control 120 and the security control front-end system 130 to realize the secure transmission of payment information, thereby effectively preventing transaction risks such as interception, tampering, repudiation, and phishing. The digital envelope is an application of PKI in practice, which uses encryption technology to ensure that only specified recipients can read the content of the communication. In the digital envelope, the information sender uses a symmetric key to encrypt the content of the information, and then encrypts the symmetric key with the receiver's public key (this part is called a digital envelope), and sends it together with the encrypted information to the recipient. The recipient first uses the corresponding private key to open the digital envelope to obtain the symmetric key, and then uses the symmetric key to decrypt the encrypted information. In this way, the authenticity and integrity of data transmission are guaranteed. Similarly, in order to ensure the security of information transmission, a dedicated line connection can be used between the security control front-end system 130 and the bank transaction system 140 .

在本申请中,安全控件120负责持卡人身份信息和支付信息的采集和加密。安全控件前置系统130负责交易转接、安全控件管理、商户管理和系统安全控制,并通过验证短信验证码来验证手机号码的有效性。银行交易系统140则负责持卡人身份认证和交易授权。具体来说,安全控件120用于接收银行卡信息、持卡人身份信息以及短信验证码,并向安全控件前置系统130发送支付请求消息,所述支付请求消息包含银行卡信息、持卡人身份信息以及短信验证码。安全控件前置系统130从所述支付请求消息中提取短信验证码,并对其进行验证。在短信验证码验证通过之后,安全控件前置系统130将所述银行卡信息和持卡人信息转发给银行交易系统140。银行交易系统140根据从安全控件前置系统130所转发的银行卡信息和持卡人信息来进行身份认证;并且当身份认证通过之后,银行交易系统140进行交易授权。In this application, the security control 120 is responsible for collecting and encrypting cardholder identity information and payment information. The security control front-end system 130 is responsible for transaction transfer, security control management, merchant management and system security control, and verifies the validity of the mobile phone number by verifying the SMS verification code. The bank transaction system 140 is responsible for cardholder identity authentication and transaction authorization. Specifically, the security control 120 is used to receive bank card information, cardholder identity information and SMS verification code, and send a payment request message to the security control front-end system 130, and the payment request message includes bank card information, cardholder Identity information and SMS verification code. The security control front-end system 130 extracts the SMS verification code from the payment request message, and verifies it. After the SMS verification code is verified, the security control front-end system 130 forwards the bank card information and cardholder information to the bank transaction system 140 . The bank transaction system 140 performs identity authentication according to the bank card information and cardholder information forwarded from the security control front-end system 130; and when the identity authentication is passed, the bank transaction system 140 performs transaction authorization.

在一个具体的实现中,安全控件前置系统130通过如下步骤来实现上文所述“安全控件管理”:In a specific implementation, the security control front-end system 130 implements the above-mentioned "security control management" through the following steps:

1.在安全控件120向安全控件前置系统130发送支付请求消息之前,安全控件120先向安全控件前置系统130发送包含其商户ID、安全控件版本号以及开发商ID等标识信息;1. Before the security control 120 sends a payment request message to the security control front-end system 130, the security control 120 first sends identification information including its merchant ID, security control version number, and developer ID to the security control front-end system 130;

2.安全控件前置系统130对该标识信息进行验证;2. The security control front-end system 130 verifies the identification information;

3.如果验证通过,则允许安全控件120向其发送支付请求消息;否则,拒绝安全控件120向其发送支付请求消息。3. If the verification is passed, allow the security control 120 to send the payment request message; otherwise, deny the security control 120 to send the payment request message.

在一个具体的实现中,安全控件前置系统130通过如下步骤来实现上文所述“商户管理”:In a specific implementation, the security control front-end system 130 implements the above-mentioned "merchant management" through the following steps:

1.在安全控件前置系统中存储的商户列表中,某一商户被列为不受欢迎;1. In the list of merchants stored in the security control front-end system, a certain merchant is listed as unwelcome;

2.确定与该商户关联的安全控件;2. Determine the security controls associated with the merchant;

3.安全控件前置系统屏蔽与该安全控件的一切交易。3. The security control front-end system shields all transactions with the security control.

图2是根据本申请的一个实施例的银行卡支付方法的示意图。Fig. 2 is a schematic diagram of a bank card payment method according to an embodiment of the present application.

在步骤S210中,持卡人210向安全控件220输入银行卡信息和持卡人身份信息。可以理解,银行卡信息可包括银行卡卡号、有效期、CVN2和密码中的一种或多种,而持卡人身份信息可包括身份证号和/或手机号。In step S210 , the cardholder 210 inputs bank card information and cardholder identity information to the security control 220 . It can be understood that the bank card information may include one or more of bank card number, expiration date, CVN2 and password, and the cardholder's identity information may include ID card number and/or mobile phone number.

接着,在步骤S220中,持卡人210从安全控件前置系统230获取短信验证码。本领域技术人员可以理解,短信验证码可以采用多种形式,例如数字、字母、文字、语音等或其组合。另外,触发安全控件前置系统230向持卡人210提供短信验证码的方式也可以有多种,例如持卡人210直接向安全控件前置系统230发送短消息以请求获得短信验证码,或者安全控件220将持卡人信息转发给安全控件前置系统230,从而触发安全控件前置系统230向持卡人210提供短信验证码。Next, in step S220 , the cardholder 210 obtains the SMS verification code from the security control front-end system 230 . Those skilled in the art can understand that the short message verification code can take various forms, such as numbers, letters, text, voice, etc. or a combination thereof. In addition, there can be multiple ways to trigger the security control front-end system 230 to provide the SMS verification code to the cardholder 210. For example, the cardholder 210 directly sends a short message to the security control front-end system 230 to request a SMS verification code, or The security control 220 forwards the cardholder information to the security control front-end system 230 , thereby triggering the security control front-end system 230 to provide the cardholder 210 with an SMS verification code.

在步骤230中,持卡人210向安全控件220输入短信验证码。并且,在步骤240中,安全控件220向安全控件前置系统230提交支付请求。在支付请求消息中,包括持卡人210向安全控件220提供的银行卡信息、持卡人身份信息以及短信验证码。在一个优选的实现方式中,安全控件220采用PKI数字信封加密技术来向安全控件前置系统230提交支付请求。在安全控件220向安全控件前置系统230发送支付请求之前,它先用对称密钥来加密银行卡信息、持卡人身份信息以及短信验证码等。接着,它将此对称密钥用安全控件前置系统230的公开密钥来加密。随后,再将加密后的对称密钥和加密后的信息一起发送给安全控件前置系统230。安全控件前置系统230利用私有密钥来解密得到对称密钥,然后在利用该对称密钥来解密得出银行卡信息、持卡人身份信息以及短信验证码等。这样,该方式可以有效防范信息被截取、篡改、抵赖、钓鱼等交易风险。In step 230 , the cardholder 210 enters the SMS verification code into the security control 220 . Moreover, in step 240 , the security control 220 submits a payment request to the security control front-end system 230 . The payment request message includes bank card information, cardholder identity information and SMS verification code provided by the cardholder 210 to the security control 220 . In a preferred implementation manner, the security control 220 uses the PKI digital envelope encryption technology to submit the payment request to the security control front-end system 230 . Before the security control 220 sends a payment request to the security control front-end system 230, it uses a symmetric key to encrypt bank card information, cardholder identity information, and SMS verification codes. Next, it encrypts this symmetric key with the public key of the security control front-end system 230 . Subsequently, the encrypted symmetric key and the encrypted information are sent to the security control front-end system 230 together. The security control front-end system 230 uses the private key to decrypt to obtain a symmetric key, and then uses the symmetric key to decrypt to obtain bank card information, cardholder identity information, and SMS verification codes. In this way, this method can effectively prevent transaction risks such as information interception, tampering, repudiation, and phishing.

在步骤S250中,安全控件前置系统230对短信验证码进行验证。在验证通过之后,在步骤S260中,安全控件前置系统230将交易信息(包括银行卡信息、持卡人身份信息等)转发给银行交易系统240。如步骤S270所示,银行交易系统240进行验证,并在验证通过之后进行交易授权。最后,在步骤S280、S290以及S300中,交易结果依次被返回至安全控件前置系统230、安全控件220以及持卡人210。In step S250, the security control front-end system 230 verifies the SMS verification code. After the verification is passed, in step S260, the security control front-end system 230 forwards the transaction information (including bank card information, cardholder identity information, etc.) to the bank transaction system 240 . As shown in step S270, the bank transaction system 240 performs verification, and authorizes the transaction after the verification is passed. Finally, in steps S280 , S290 and S300 , the transaction result is returned to the security control front-end system 230 , the security control 220 and the cardholder 210 in sequence.

至此,根据本申请的一个实施例的银行卡支付方法介绍完毕。该支付方法可实现安全、低门槛、高效率、无需开通、易推广的支付模式,并且可用于手机支付、IVR语音支付、电视支付等全方位、一体化的移动互联网支付。So far, the introduction of the bank card payment method according to an embodiment of the present application is completed. This payment method can realize a safe, low-threshold, high-efficiency, non-opening, and easy-to-promote payment mode, and can be used for all-round and integrated mobile Internet payments such as mobile phone payment, IVR voice payment, and TV payment.

为了使本申请所包含的内容更为清晰,以下以银联手机在线支付产品为例给出了在智能手机上实现安全支付的流程:In order to make the content contained in this application clearer, the following takes the UnionPay mobile online payment product as an example to give the process of realizing secure payment on smart phones:

1、持卡人在银联手机在线支付插件上输入银行卡卡号、有效期(信用卡)、CVN2(信用卡)、密码(借记卡)和手机号;1. The cardholder enters the bank card number, validity period (credit card), CVN2 (credit card), password (debit card) and mobile phone number on the UnionPay mobile online payment plug-in;

2、持卡人从前置系统获取短信验证码,并在银联手机在线支付插件上输入短信验证码;2. The cardholder obtains the SMS verification code from the front-end system, and enters the SMS verification code on the UnionPay mobile online payment plug-in;

3、持卡人在银联手机在线支付插件上提交支付请求;3. The cardholder submits a payment request on the UnionPay mobile online payment plug-in;

4、银联手机在线支付前置系统通过验证短信验证码来验证手机号码的有效性;4. The UnionPay mobile online payment front-end system verifies the validity of the mobile phone number by verifying the SMS verification code;

5、银联手机在线支付前置系统把交易转发给银联无卡支付通道,无卡支付通道把交易信息转发给发卡行;5. The UnionPay mobile online payment front-end system forwards the transaction to the UnionPay card-free payment channel, and the card-free payment channel forwards the transaction information to the issuing bank;

6、发卡银行验证银行卡卡号与手机号是否存在绑定关系,验证通过后再验证有效期、CVN2、密码是否正确,全部验证通过后承兑交易;6. The issuing bank verifies whether there is a binding relationship between the bank card number and the mobile phone number, and then verifies whether the validity period, CVN2, and password are correct after the verification is passed, and accepts the transaction after all verifications are passed;

7、发卡银行把交易结果返回给银联手机在线支付前置系统;7. The card issuing bank returns the transaction result to the UnionPay mobile online payment front-end system;

8、银联手机在线支付前置系统返回交易结果给银联手机在线支付插件;8. The UnionPay mobile online payment front-end system returns the transaction result to the UnionPay mobile online payment plug-in;

9、银联手机在线支付插件显示支付结果。9. The UnionPay mobile online payment plug-in displays the payment result.

在上述实施方式中,银联手机在线支付产品利用银联无卡通道,结合支付验证要素及银联安全认证,以安全插件形式嵌入商户的客户端产品中,为用户提供了在手机上实现无需开通、用银行卡完成安全支付的手段。In the above implementation, the UnionPay mobile online payment product uses the UnionPay card-free channel, combines payment verification elements and UnionPay security certification, and is embedded in the merchant's client product in the form of a security plug-in, providing users with a mobile phone that does not need to open, use Bank cards are the means of completing secure payments.

以上例子主要说明了本申请的银行卡支付方法及系统的实现。尽管只对其中一些具体实施例进行了描述,但是本领域普通技术人员应当了解,本发明可以在不偏离其主旨与范围内以许多其他的形式实施。举例来说,本申请的方法可以多种方式——硬件、软件或软硬件结合的方式来实现。The above examples mainly illustrate the implementation of the bank card payment method and system of the present application. Although only some specific embodiments have been described, those skilled in the art should understand that the present invention can be implemented in many other forms without departing from the spirit and scope thereof. For example, the method of the present application can be implemented in various ways—hardware, software, or a combination of software and hardware.

综上所述,本申请提出了一种金融数据处理方法,包括:安全控件接收银行卡信息、持卡人身份信息以及短信验证码等待处理数据信息;安全控件向安全控件前置系统发送请求消息,所述请求消息包含银行卡信息、持卡人身份信息以及短信验证码等待处理数据信息;安全控件前置系统从所述请求消息中提取短信验证码,并对其进行验证处理;在短信验证码验证通过之后,安全控件前置系统将所述银行卡信息和持卡人信息转发给银行交易系统;银行交易系统根据从安全控件前置系统所转发的银行卡信息和持卡人信息来进行数据处理。To sum up, this application proposes a method for processing financial data, including: the security control receives bank card information, cardholder identity information, and SMS verification code to wait for data information to be processed; the security control sends a request message to the security control front-end system , the request message includes bank card information, cardholder identity information and SMS verification code waiting to process data information; the safety control front-end system extracts the SMS verification code from the request message, and verifies it; After the code verification is passed, the security control front-end system forwards the bank card information and cardholder information to the bank transaction system; the bank transaction system proceeds according to the bank card information and cardholder information forwarded from the security control front-end system data processing.

在上述金融数据处理方法中,所述安全控件设置在移动智能终端中。In the above financial data processing method, the security control is set in the smart mobile terminal.

在上述金融数据处理方法中,所述银行卡信息包括银行卡卡号、有效期、CVN2和密码中的一种或多种。In the above financial data processing method, the bank card information includes one or more of bank card number, validity period, CVN2 and password.

在上述所述金融数据处理方法中,所述持卡人身份信息包括身份证号和/或手机号。In the above financial data processing method, the cardholder identity information includes an ID card number and/or a mobile phone number.

在上述金融数据处理方法中,还包括在进行数据处理后,银行交易系统将处理结果返回给安全控件前置系统。In the above financial data processing method, after the data processing, the bank transaction system returns the processing result to the security control front-end system.

在上述金融数据处理方法中,还包括在银行交易系统将处理结果返回给安全控件前置系统后,安全控件前置系统将处理结果返回给安全控件。In the above financial data processing method, after the bank transaction system returns the processing result to the security control front-end system, the security control front-end system returns the processing result to the security control.

在上述金融数据处理方法中,还包括在安全控件前置系统将处理结果返回给安全控件后,安全控件向持卡人展示处理结果。In the above financial data processing method, after the security control front-end system returns the processing result to the security control, the security control displays the processing result to the cardholder.

在上述金融数据处理方法中,所述短信验证码由安全控件前置系统提供给持卡人。In the above financial data processing method, the SMS verification code is provided to the cardholder by the security control front-end system.

在上述金融数据处理方法中,安全控件与安全控件前置系统采用PKI数字信封加密来进行直接通讯。In the above financial data processing method, the security control and the security control front-end system adopt PKI digital envelope encryption for direct communication.

在上述金融数据处理方法中,安全控件前置系统与银行交易系统采用专线来进行连接。In the above financial data processing method, the security control front-end system and the bank transaction system are connected by a dedicated line.

以上所展示的例子与实施方式被视为示意性的而非限制性的,在不脱离权利要求所定义的精神及范围的情况下,本申请可能涵盖各种的修改与替换。The examples and implementations shown above are regarded as illustrative rather than restrictive, and the present application may cover various modifications and substitutions without departing from the spirit and scope defined in the claims.

Claims (19)

1. a bank card method of payment is characterized in that, comprising:
Safe control receives bank card information, holder's identity information and short-message verification sign indicating number;
Safe control sends payment request message to safe control front-end system, and described payment request message contains bank's card information, holder's identity information and short-message verification sign indicating number;
Safe control front-end system extracts the short-message verification sign indicating number from described payment request message, and it is verified;
After the checking of short-message verification sign indicating number was passed through, safe control front-end system was transmitted to bank transaction system with described bank card information and cardholder information;
Bank transaction system carries out authentication according to bank card information and the cardholder information transmitted from safe control front-end system; And
After authentication was passed through, bank transaction system carried out Trading Authorization.
2. bank card method of payment as claimed in claim 1, wherein, described safe control is arranged in the mobile intelligent terminal.
3. bank card method of payment as claimed in claim 1, wherein, described bank card information comprises one or more in bank card number, the term of validity, CVN2 and the password.
4. bank card method of payment as claimed in claim 1, wherein, described holder's identity information comprises identification card number and/or cell-phone number.
5. bank card method of payment as claimed in claim 1 wherein, also comprises:
After carrying out Trading Authorization, bank transaction system returns to safe control front-end system with transaction results.
6. bank card method of payment as claimed in claim 5 wherein, also comprises:
After bank transaction system returned to transaction results safe control front-end system, safe control front-end system returned to safe control with transaction results.
7. bank card method of payment as claimed in claim 6 wherein, also comprises:
After safe control front-end system returned to safe control with transaction results, safe control was showed transaction results to the holder.
8. bank card method of payment as claimed in claim 1, wherein, described short-message verification sign indicating number offers the holder by safe control front-end system.
9. bank card method of payment as claimed in claim 1, wherein, safe control and safe control front-end system adopt the PKI digital envelope to encrypt to carry out direct communication, and safe control front-end system manages safe control.
10. bank card method of payment as claimed in claim 1, wherein, safe control front-end system adopts special line to be connected with bank transaction system.
11. bank card paying system, it is characterized in that, comprise: the safe control in the mobile intelligent terminal, safe control front-end system and bank transaction system, described safe control adopts the PKI digital envelope to encrypt to carry out direct communication with described safe control front-end system and described safe control front-end system adopts special line to be connected with described bank transaction system, wherein:
Described safe control is used for receiving bank card information, holder's identity information and short-message verification sign indicating number, and to safe control front-end system transmission payment request message, described payment request message contains bank's card information, holder's identity information and short-message verification sign indicating number;
Described safe control front-end system extracts the short-message verification sign indicating number from described payment request message, and it is verified; After the checking of short-message verification sign indicating number was passed through, described safe control front-end system was transmitted to described bank transaction system with described bank card information and cardholder information;
Described bank transaction system carries out authentication according to bank card information and the cardholder information transmitted from safe control front-end system; And after authentication was passed through, described bank transaction system carried out Trading Authorization.
12. bank card paying system as claimed in claim 11, wherein, described bank card information comprises one or more in bank card number, the term of validity, CVN2 and the password.
13. bank card paying system as claimed in claim 11, wherein, described holder's identity information comprises identification card number and/or cell-phone number.
14. bank card paying system as claimed in claim 11, wherein, after carrying out Trading Authorization, described bank transaction system returns to described safe control front-end system with transaction results.
15. bank card paying system as claimed in claim 14, wherein, after described bank transaction system returned to transaction results described safe control front-end system, described safe control front-end system returned to described safe control with transaction results.
16. bank card paying system as claimed in claim 15, wherein, after described safe control front-end system returned to transaction results described safe control, described safe control was showed transaction results to the holder.
17. bank card paying system as claimed in claim 11, wherein, described short-message verification sign indicating number offers the holder by described safe control front-end system.
18. safe control front-end system carries out the method that trade company manages in the bank card paying system, comprising:
In trade company's tabulation of storing in safe control front-end system, a certain trade company is listed in and is out of favour;
Determine the safe control related with this trade company;
All transaction of safe control front-end system shielding and this safe control.
19. safe control front-end system carries out the method for trade company's management in the bank card paying system as claimed in claim 18, also comprises: after mask steps, safe control front-end system upgrades its trade company's tabulation.
CN2011104608027A 2011-12-31 2011-12-31 Bank card payment method and system Pending CN103186857A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2011104608027A CN103186857A (en) 2011-12-31 2011-12-31 Bank card payment method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2011104608027A CN103186857A (en) 2011-12-31 2011-12-31 Bank card payment method and system

Publications (1)

Publication Number Publication Date
CN103186857A true CN103186857A (en) 2013-07-03

Family

ID=48678016

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2011104608027A Pending CN103186857A (en) 2011-12-31 2011-12-31 Bank card payment method and system

Country Status (1)

Country Link
CN (1) CN103186857A (en)

Cited By (14)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103902740A (en) * 2014-04-22 2014-07-02 锤子科技(北京)有限公司 Short message authentication code residing method and device
CN104009977A (en) * 2014-05-09 2014-08-27 北京奇虎科技有限公司 A method and system for information protection
CN104065812A (en) * 2014-03-27 2014-09-24 上海工程技术大学 A method for recharging mobile phone charges
CN104299130A (en) * 2013-07-17 2015-01-21 中国银联股份有限公司 Security payment system and security payment method based on internet
WO2015067038A1 (en) * 2013-11-06 2015-05-14 Tencent Technology (Shenzhen) Company Limited System and method for authenticating,associating and storing secure information
CN105354708A (en) * 2015-11-23 2016-02-24 湖北文理学院 Anti-counterfeiting system and method of on-line transaction of credit card
CN105787711A (en) * 2014-12-24 2016-07-20 阿里巴巴集团控股有限公司 Message authentication method, message authentication device, and message authentication system based on confirmation code
CN106060000A (en) * 2016-05-06 2016-10-26 青岛海信移动通信技术股份有限公司 Method and device of identifying verification information
CN106060791A (en) * 2016-07-05 2016-10-26 Tcl集团股份有限公司 Method and system for sending and obtaining short message verification code
CN107274179A (en) * 2017-06-13 2017-10-20 广州顶新时代电子系统科技有限公司 A kind of bank card identity identifying method, system and Cloud Server
CN110390530A (en) * 2019-07-31 2019-10-29 中国工商银行股份有限公司 The safe payment method and relevant apparatus of chip bank card
US10528946B2 (en) 2013-11-06 2020-01-07 Tencent Technology (Shenzhen) Company Limited System and method for authenticating, associating and storing secure information
CN110691265A (en) * 2019-10-10 2020-01-14 四川虹微技术有限公司 Television payment method and system based on voiceprint recognition
CN114760315A (en) * 2022-01-28 2022-07-15 上海皓卡网络技术有限公司 Method for comprehensively solving security of bank card end to end

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1635525A (en) * 2003-12-31 2005-07-06 中国银联股份有限公司 A secure online payment system and a secure online payment authentication method
CN1753011A (en) * 2005-09-22 2006-03-29 邵军利 New type electronic payment system and its realization method
CN1835012A (en) * 2006-04-14 2006-09-20 侯万春 Safety, non-secret electronic transferring accounts service device and transferring accounts card and method
CN1941009A (en) * 2005-09-29 2007-04-04 普天信息技术研究院 Method for realizing fee payment by mobile telecommunication terminal
CN101833726A (en) * 2010-04-19 2010-09-15 昆山科大宏威软件科技有限公司 BPC (Business-to-Platform-to-Customer) hardware architecture and BPC data center server
CA2796393A1 (en) * 2010-04-16 2011-10-20 Artists Known As Pty. Ltd. A method of processing payments

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1635525A (en) * 2003-12-31 2005-07-06 中国银联股份有限公司 A secure online payment system and a secure online payment authentication method
CN1753011A (en) * 2005-09-22 2006-03-29 邵军利 New type electronic payment system and its realization method
CN1941009A (en) * 2005-09-29 2007-04-04 普天信息技术研究院 Method for realizing fee payment by mobile telecommunication terminal
CN1835012A (en) * 2006-04-14 2006-09-20 侯万春 Safety, non-secret electronic transferring accounts service device and transferring accounts card and method
CA2796393A1 (en) * 2010-04-16 2011-10-20 Artists Known As Pty. Ltd. A method of processing payments
CN101833726A (en) * 2010-04-19 2010-09-15 昆山科大宏威软件科技有限公司 BPC (Business-to-Platform-to-Customer) hardware architecture and BPC data center server

Cited By (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104299130A (en) * 2013-07-17 2015-01-21 中国银联股份有限公司 Security payment system and security payment method based on internet
WO2015007198A1 (en) * 2013-07-17 2015-01-22 中国银联股份有限公司 Internet-based secure payment system and secure payment method
US10528946B2 (en) 2013-11-06 2020-01-07 Tencent Technology (Shenzhen) Company Limited System and method for authenticating, associating and storing secure information
WO2015067038A1 (en) * 2013-11-06 2015-05-14 Tencent Technology (Shenzhen) Company Limited System and method for authenticating,associating and storing secure information
CN104065812A (en) * 2014-03-27 2014-09-24 上海工程技术大学 A method for recharging mobile phone charges
CN103902740A (en) * 2014-04-22 2014-07-02 锤子科技(北京)有限公司 Short message authentication code residing method and device
US10795942B2 (en) 2014-04-22 2020-10-06 Beijing Bytedance Network Technology Co Ltd. Method and device for residing short message verification code
CN103902740B (en) * 2014-04-22 2017-07-18 锤子科技(北京)有限公司 The staying method and device of short message identifying code
CN104009977A (en) * 2014-05-09 2014-08-27 北京奇虎科技有限公司 A method and system for information protection
CN105787711A (en) * 2014-12-24 2016-07-20 阿里巴巴集团控股有限公司 Message authentication method, message authentication device, and message authentication system based on confirmation code
CN105354708A (en) * 2015-11-23 2016-02-24 湖北文理学院 Anti-counterfeiting system and method of on-line transaction of credit card
CN106060000A (en) * 2016-05-06 2016-10-26 青岛海信移动通信技术股份有限公司 Method and device of identifying verification information
CN106060000B (en) * 2016-05-06 2020-02-07 青岛海信移动通信技术股份有限公司 Method and equipment for identifying verification information
CN106060791A (en) * 2016-07-05 2016-10-26 Tcl集团股份有限公司 Method and system for sending and obtaining short message verification code
CN106060791B (en) * 2016-07-05 2021-01-12 Tcl科技集团股份有限公司 Method and system for sending and obtaining short message verification code
CN107274179A (en) * 2017-06-13 2017-10-20 广州顶新时代电子系统科技有限公司 A kind of bank card identity identifying method, system and Cloud Server
CN110390530A (en) * 2019-07-31 2019-10-29 中国工商银行股份有限公司 The safe payment method and relevant apparatus of chip bank card
CN110691265A (en) * 2019-10-10 2020-01-14 四川虹微技术有限公司 Television payment method and system based on voiceprint recognition
CN114760315A (en) * 2022-01-28 2022-07-15 上海皓卡网络技术有限公司 Method for comprehensively solving security of bank card end to end

Similar Documents

Publication Publication Date Title
CN103186857A (en) Bank card payment method and system
JP6713081B2 (en) Authentication device, authentication system and authentication method
US9129269B2 (en) Secured point-of-sale transaction system
US9501773B2 (en) Secured transaction system
US11556929B2 (en) Method and corresponding proxy server, system, computer-readable storage medium and computer program
CN101098371B (en) Financial data processing method and mobile terminal device
US20140164254A1 (en) Authenticating Remote Transactions Using a Mobile Device
WO2018040653A1 (en) Nfc-based off-line payment method
US20130073463A1 (en) Issuer trusted party system
CN107784499B (en) Secure payment system and method of near field communication mobile terminal
AU2020200743B2 (en) Real time EFT network-based person-to-person transactions
CN102722816B (en) A kind of method, system and device of mobile payment
US11750368B2 (en) Provisioning method and system with message conversion
CN108234385A (en) A kind of method for authenticating user identity and device
US20220060889A1 (en) Provisioning initiated from a contactless device
CN105809417A (en) Safe reliable real-time electronic payment settlement merchant terminal, user terminal, bank front-end system, system, and method
TW201135619A (en) Electronic transaction method and system utilizing QR code
CN101308557A (en) Method for implementing secured electronic charging
CN101790166A (en) Digital signing method based on mobile phone intelligent card
CN106033571A (en) Trading method of electronic signature devices, electronic signature devices and trading system
CN104200365A (en) Writing and paying method for electronic check
CN101097645B (en) Method for completing financial data processing through visual terminal and public payment server
US20210390546A1 (en) Systems and Methods for Secure Transaction Processing
US8290870B2 (en) Method and device for exchanging values between personal portable electronic entities
TWI528302B (en) System and Method of Application for Wallet

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20130703

RJ01 Rejection of invention patent application after publication