[go: up one dir, main page]

CN105205666B - Face-to-face payment method and system based on bluetooth - Google Patents

Face-to-face payment method and system based on bluetooth Download PDF

Info

Publication number
CN105205666B
CN105205666B CN201410268901.9A CN201410268901A CN105205666B CN 105205666 B CN105205666 B CN 105205666B CN 201410268901 A CN201410268901 A CN 201410268901A CN 105205666 B CN105205666 B CN 105205666B
Authority
CN
China
Prior art keywords
payee
signature
transaction
client
payer
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410268901.9A
Other languages
Chinese (zh)
Other versions
CN105205666A (en
Inventor
吴金坛
曹麒
沈玺
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Unionpay Co Ltd
Original Assignee
China Unionpay Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Unionpay Co Ltd filed Critical China Unionpay Co Ltd
Priority to CN201410268901.9A priority Critical patent/CN105205666B/en
Publication of CN105205666A publication Critical patent/CN105205666A/en
Application granted granted Critical
Publication of CN105205666B publication Critical patent/CN105205666B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

本发明公开了一种基于蓝牙的面对面支付方法,所述方法包括:付款人客户端接收由收款人客户端通过蓝牙广播的收款人信息,所述收款人信息包括收款人的用户标识和签名;根据所接收的收款人信息,所述付款人客户端向第三方后台发送交易报文,所述交易报文中包含所述收款人的用户标识和所述签名;所述第三方后台根据所述收款人的用户标识和预先存储的签名生成时间,验证所述交易报文中的所述签名的有效性;所述第三方后台在交易成功后,将经过验证的所述签名作为密钥对交易标识进行加密,并将加密后的交易标识通过所述付款人客户端转发给所述收款人客户端;以及所述收款人客户端解密得出所述交易标识并向所述第三方后台查询交易结果。本发明还公开了一种基于蓝牙的面对面支付系统。

The invention discloses a face-to-face payment method based on bluetooth. The method comprises: the payer client receives the payee information broadcast by the payee client through bluetooth, and the payee information includes the payee's user Identification and signature; according to the received payee information, the payer client sends a transaction message to the third-party background, and the transaction message contains the payee's user identification and the signature; the The third-party background verifies the validity of the signature in the transaction message according to the payee's user ID and the pre-stored signature generation time; after the transaction is successful, the third-party background sends all verified The signature is used as a key to encrypt the transaction identifier, and the encrypted transaction identifier is forwarded to the payee client through the payer client; and the payee client decrypts to obtain the transaction identifier And query the transaction result to the third-party background. The invention also discloses a bluetooth-based face-to-face payment system.

Description

基于蓝牙的面对面支付方法及系统Face-to-face payment method and system based on bluetooth

技术领域technical field

本发明涉及面对面支付领域,更具体来说,涉及基于蓝牙的面对面支付方法及系统。The invention relates to the field of face-to-face payment, and more specifically, relates to a bluetooth-based face-to-face payment method and system.

背景技术Background technique

现有的面对面支付方式主要包括声波支付和条形码支付两种方式。在声波支付中,付款方通过声波识别获取收款方信息,再发起支付,由于声波易受环境干扰,因此支付双方的手机需要放置在很近的范围内以保证支付成功。在条码支付中,由于付款人通过扫描二维码获取收款人信息,需收款人使用手机生成二维码,对收款人的参与度要求较高。The existing face-to-face payment methods mainly include sound wave payment and bar code payment. In the sonic payment, the payer obtains the payee’s information through sonic recognition, and then initiates the payment. Since the sonic is susceptible to environmental interference, the mobile phones of both payers need to be placed within a very close range to ensure the payment is successful. In barcode payment, since the payer obtains the payee's information by scanning the QR code, the payee needs to use the mobile phone to generate the QR code, which requires high participation of the payee.

另外,由于距离要求近的限制,声波支付在应用到出租车收款或停车场付费场景时,需要出租车司机或收费员将手机与付款人手机靠近,并在付款人获取收款人信息后,才能继续自己的工作,影响了收款的便捷性。而条码支付对收款人参与度的要求影响了付款的便捷性,适用的场景有限。In addition, due to the short distance requirement, when sonic payment is applied to taxi payment or parking lot payment scenarios, the taxi driver or toll collector needs to bring the mobile phone close to the payer's mobile phone, and after the payer obtains the payee's information, , in order to continue their work, which affects the convenience of collection. However, the requirement of the payee's participation in barcode payment affects the convenience of payment, and the applicable scenarios are limited.

发明内容Contents of the invention

为了解决目前面对面支付解决方案中存在的距离近、收款人参与度高等限制,本发明提出通过低功率蓝牙来广播收款方信息,由付款方接收信息后发起支付。由于蓝牙可以在50M范围内建立连接进行通讯,本发明的技术方案可以满足在中远距离上付款的需求。但是由于广播存在信息泄露风险和安全隐患,本提案考虑了多种机制来提高支付过程中的信息及交易安全。In order to solve the limitations of short distance and high participation of the payee in the current face-to-face payment solution, the present invention proposes to broadcast the payee information through low-power Bluetooth, and the payer initiates the payment after receiving the information. Since the bluetooth can establish a connection within a range of 50M for communication, the technical solution of the invention can meet the demand for payment in the middle and long distances. However, due to the risk of information leakage and security risks in broadcasting, this proposal considers various mechanisms to improve information and transaction security during the payment process.

根据本发明的一个方面,提供了一种基于蓝牙的面对面支付方法,所述方法包括:付款人客户端接收由收款人客户端通过蓝牙广播的收款人信息,所述收款人信息包括收款人的用户标识和签名;根据所接收的收款人信息,所述付款人客户端向第三方后台发送交易报文,所述交易报文中包含所述收款人的用户标识和所述签名;所述第三方后台根据所述收款人的用户标识和预先存储的签名生成时间,验证所述交易报文中的所述签名的有效性;所述第三方后台在交易成功后,将经过验证的所述签名作为密钥对交易标识进行加密,并将加密后的交易标识通过所述付款人客户端转发给所述收款人客户端;以及所述收款人客户端解密得出所述交易标识并向所述第三方后台查询交易结果。According to one aspect of the present invention, a Bluetooth-based face-to-face payment method is provided, the method comprising: the payer client receives the payee information broadcast by the payee client through Bluetooth, and the payee information includes The payee's user ID and signature; according to the received payee information, the payer client sends a transaction message to the third-party background, and the transaction message includes the payee's user ID and the the signature; the third-party background verifies the validity of the signature in the transaction message according to the payee's user ID and the pre-stored signature generation time; after the transaction is successful, the third-party background, Encrypting the transaction identifier with the verified signature as a key, and forwarding the encrypted transaction identifier to the payee client through the payer client; and decrypting the payee client to obtain Generate the transaction identification and query the transaction result from the third-party background.

在上述方法中,所述收款人信息还包括服务有效距离。In the above method, the payee information also includes service effective distance.

上述方法还可包括:所述付款人客户端对接收到的广播消息按照所述服务有效距离进行过滤。The above method may further include: the payer client filtering the received broadcast message according to the effective service distance.

在上述方法中,所述收款人信息中的签名根据所述收款人的用户标识和签名生成时间两者来确定。In the above method, the signature in the payee information is determined according to both the payee's user identification and signature generation time.

上述方法还可包括:所述第三方后台在交易成功后生成第二签名并发送给所述收款人客户端。The above method may further include: the third-party background generates a second signature after the transaction is successful and sends it to the payee client.

上述方法还可包括:如果成功进行的交易所使用的签名不是最新的签名,则即使交易成功,所述第三方后台也不生成所述第二签名。The above method may further include: if the signature used in the successful transaction is not the latest signature, the third-party background does not generate the second signature even if the transaction is successful.

根据本发明的另一方面,提供了一种基于蓝牙的面对面支付系统,所述系统包括:付款人客户端,所述付款人客户端配置成接收由收款人客户端通过蓝牙广播的收款人信息,所述收款人信息包括收款人的用户标识和签名;根据所接收的收款人信息,向第三方后台发送交易报文,所述交易报文中包含所述收款人的用户标识和所述签名;所述第三方后台,所述第三方后台配置成根据所述收款人的用户标识和预先存储的签名生成时间,验证所述交易报文中的所述签名的有效性;在交易成功后,将经过验证的所述签名作为密钥对交易标识进行加密,并将加密后的交易标识通过所述付款人客户端转发给所述收款人客户端;以及所述收款人客户端,所述收款人客户端配置成解密并得出所述交易标识并向所述第三方后台查询交易结果。According to another aspect of the present invention, a bluetooth-based face-to-face payment system is provided, the system comprising: a payer client, the payer client configured to receive payment received by the payee client via bluetooth broadcast Person information, the payee information includes the payee's user ID and signature; according to the received payee information, send a transaction message to the third party background, the transaction message contains the payee's User ID and the signature; the third-party background, the third-party background is configured to verify the validity of the signature in the transaction message according to the payee's user ID and the pre-stored signature generation time After the transaction is successful, the verified signature is used as a key to encrypt the transaction identifier, and the encrypted transaction identifier is forwarded to the payee client through the payer client; and the The payee client, the payee client is configured to decrypt and obtain the transaction identifier and query the transaction result from the third-party background.

在上述系统中,所述收款人信息还包括服务有效距离。In the above system, the payee information also includes service effective distance.

在上述系统中,所述付款人客户端还配置成对接收到的广播消息按照所述服务有效距离进行过滤。In the above system, the payer client is further configured to filter the received broadcast message according to the effective service distance.

在上述系统中,所述收款人信息中的签名根据所述收款人的用户标识和签名生成时间两者来确定。In the above system, the signature in the payee information is determined based on both the payee's user identification and signature generation time.

在上述系统中,所述第三方后台还配置成在交易成功后生成第二签名并发送给所述收款人客户端。In the above system, the third-party background is further configured to generate a second signature and send it to the payee client after the transaction is successful.

在上述系统中,所述第三方后台还配置成:如果成功进行的交易所使用的签名不是最新的签名,则即使交易成功,也不生成所述第二签名。In the above system, the third-party background is further configured: if the signature used in the successful transaction is not the latest signature, the second signature will not be generated even if the transaction is successful.

由于蓝牙在广播时,有效距离可达50M,因此本发明的技术方案的应用相当广泛,包括出租车付款、停车场自动收费、聚餐AA付款等。Since the bluetooth has an effective distance of up to 50M when it is broadcasting, the technical solution of the present invention is widely used, including taxi payment, automatic toll collection in parking lots, and AA payment for dinner parties.

附图说明Description of drawings

在参照附图阅读了本发明的具体实施方式以后,本领域技术人员将会更清楚地了解本发明的各个方面。本领域技术人员应当理解的是:这些附图仅仅用于配合具体实施方式说明本发明的技术方案,而并非意在对本发明的保护范围构成限制。Those skilled in the art will understand various aspects of the present invention more clearly after reading the detailed description of the present invention with reference to the accompanying drawings. Those skilled in the art should understand that: these drawings are only used to describe the technical solutions of the present invention in conjunction with specific implementation methods, and are not intended to limit the protection scope of the present invention.

图1和图2是根据本发明的实施例、基于蓝牙的面对面支付方法的流程示意图。Fig. 1 and Fig. 2 are schematic flow charts of a Bluetooth-based face-to-face payment method according to an embodiment of the present invention.

具体实施方式Detailed ways

下面介绍的是本发明的多个可能实施例中的一些,旨在提供对本发明的基本了解,并不旨在确认本发明的关键或决定性的要素或限定所要保护的范围。容易理解,根据本发明的技术方案,在不变更本发明的实质精神下,本领域的一般技术人员可以提出可相互替换的其它实现方式。因此,以下具体实施方式以及附图仅是对本发明的技术方案的示例性说明,而不应当视为本发明的全部或者视为对本发明技术方案的限定或限制。The following introduces some of the possible embodiments of the present invention, which are intended to provide a basic understanding of the present invention, but are not intended to identify key or decisive elements of the present invention or limit the scope of protection. It is easy to understand that, according to the technical solution of the present invention, those skilled in the art may propose other alternative implementation manners without changing the essence and spirit of the present invention. Therefore, the following specific embodiments and drawings are only exemplary descriptions of the technical solution of the present invention, and should not be regarded as the entirety of the present invention or as a limitation or restriction on the technical solution of the present invention.

图1是根据本发明的一个实施例、基于蓝牙的面对面支付方法的流程示意图。如图1所示,收款人在使用前首先需要进行用户注册和登陆,并且广播用户标识、称谓、车牌等信息。在付款人接收到收款信息后,根据接收到的信息选择付款对象,之后输入金额并发起支付。支付成功时,付款人客户端上会出现支付成功的提示信息,收款人也会收到成功提醒,并且收款人客户端会通过语音提示交易状态、金额、付款人识别信息,保证了支付过程全程收款人无需参与,适合出租车收款或停车场付费的场景。Fig. 1 is a schematic flowchart of a Bluetooth-based face-to-face payment method according to an embodiment of the present invention. As shown in Figure 1, the payee first needs to register and log in as a user before using it, and broadcast user ID, title, license plate and other information. After receiving the payment information, the payer selects the payment object according to the received information, then enters the amount and initiates the payment. When the payment is successful, the payer's client will receive a successful payment prompt message, and the payee will also receive a successful reminder, and the payee's client will prompt the transaction status, amount, and payer's identification information through voice to ensure payment The payee does not need to participate in the whole process, which is suitable for taxi collection or parking lot payment scenarios.

以下将参考图1来进一步介绍本发明的技术方案。The technical solution of the present invention will be further introduced below with reference to FIG. 1 .

1.1 用户注册1.1 User registration

收款人在使用前应先进行用户注册,注册信息应包括身份信息、手机号码、称谓及其他用于识别的信息(比如出租车牌照等),此外,还应绑定银行卡用于付款或者收款。付款人对注册无硬性要求。The payee should register as a user before using it. The registration information should include identity information, mobile phone number, title and other information for identification (such as taxi license plate, etc.). In addition, a bank card should be bound for payment or collection. Payers have no hard requirements for registration.

1.2 用户登录1.2 User login

收款人在使用前,应先登录,登录后,服务器端将记录用户的登陆时间,并返回该用户标识和收款人签名。The payee should log in before using it. After logging in, the server will record the user's login time and return the user ID and payee's signature.

收款人签名由后台使用用户标识与当前时间生成,发送给收款人。后续在广播时,此签名与收款人标识一起发送给付款人,由付款人在发起交易时携带给后台。后台根据交易中指定的收款人标识和签名来验证收款人信息未经修改,并且通过签名中携带的时间信息防止长时间的重放攻击。The payee's signature is generated by the background using the user ID and the current time and sent to the payee. When broadcasting later, this signature is sent to the payer together with the payee ID, and the payer carries it to the background when initiating a transaction. The background verifies that the payee information has not been modified according to the payee ID and signature specified in the transaction, and prevents long-term replay attacks through the time information carried in the signature.

1.3 收款人信息广播1.3 Payee information broadcast

收款人启动收款功能,通过低功率蓝牙广播收款人信息。广播信息中包含用户标识、称谓、出租车牌照或卡号后4位等身份识别信息、收款人签名、服务有效距离、支付凭证。其中,用户标识、称谓、身份识别信息、收款人签名、服务有效距离设为只读参数,让付款人客户端读取;支付凭证设为可写和可订阅属性,让付款人客户端在完成支付后通知收款人客户端。The payee activates the payment collection function and broadcasts the payee information through low-power bluetooth. The broadcast information includes identification information such as user identification, title, the last 4 digits of the taxi license plate or card number, the signature of the payee, the effective distance of the service, and the payment certificate. Among them, the user ID, title, identification information, payee signature, and service effective distance are set as read-only parameters, allowing the payer client to read; the payment certificate is set as writable and subscribeable attributes, allowing the payer client to Notify the payee client after the payment is completed.

服务有效距离的设置,其原因是蓝牙广播距离较远,在客户端接收范围内可能存在多个广播源。如果广播服务根据实际需要设定其有效距离,可以将该服务实际接收范围缩小到指定的有效距离范围内,而有效距离外的客户端虽然可以接收到广播信息,但通过有效距离判断会将广播消息丢弃,从而大大减少客户端可选择的广播源个数。The reason for the setting of the service effective distance is that the Bluetooth broadcast distance is relatively long, and there may be multiple broadcast sources within the receiving range of the client. If the effective distance of the broadcast service is set according to the actual needs, the actual receiving range of the service can be narrowed to the specified effective distance range. Although the client outside the effective distance can receive the broadcast information, the judgment of the effective distance will result in the broadcast The message is discarded, thereby greatly reducing the number of broadcast sources that the client can choose.

为避免广播造成用户信息泄露,广播信息使用对称密钥加密,所有客户端上均内置此密钥。收款人客户端收到信息后解密以获取广播信息。In order to avoid leakage of user information caused by broadcasting, the broadcasting information is encrypted with a symmetric key, and this key is built into all clients. The payee client decrypts the information after receiving it to obtain the broadcast information.

1.4 接收广播,选择付款对象1.4 Receive the broadcast and select the payment object

付款人付款前打开客户端,接收广播信息。对接收到的消息按照有效距离范围进行过滤,对有效距离范围内的广播消息,进一步获取其用户标识、称谓、身份识别信息、收款人签名,并将称谓、身份识别信息显示在待选收款人列表上。当客户端搜索到多个有效广播服务时,按照距离远近排序,并按此顺序显示待选收款人信息。The payer opens the client before paying and receives the broadcast information. Filter the received messages according to the effective distance range, and further obtain the user ID, title, identification information, and payee signature for broadcast messages within the effective distance range, and display the title and identification information in the waiting list beneficiary list. When the client searches for multiple effective broadcast services, they are sorted according to the distance, and the payee information to be selected is displayed in this order.

付款人与收款人口头确认称谓及车牌号等身份识别信息,并在列表中选择对应的付款对象。付款人客户端与收款人手机建立蓝牙连接,并订阅广播消息中的“支付凭证”信息,以保持蓝牙连接。The payer and the payee verbally confirm the identification information such as title and license plate number, and select the corresponding payment object in the list. The payer client establishes a bluetooth connection with the payee's mobile phone, and subscribes to the "payment certificate" information in the broadcast message to maintain the bluetooth connection.

1.5 填写支付信息,发起转帐交易1.5 Fill in the payment information and initiate a transfer transaction

在确认收款人信息后,付款人点击“支付”按钮。After confirming the payee's information, the payer clicks the "Pay" button.

付款人在支付界面上选择或填写银行卡号,后台根据银行卡号返回相应的支付要素;付款人填写支付要素后点击“确定”按钮发起支付交易。The payer selects or fills in the bank card number on the payment interface, and the background returns the corresponding payment elements according to the bank card number; the payer fills in the payment elements and clicks the "OK" button to initiate the payment transaction.

为保护用户信息安全,在转帐交易报文中,对付款人,其转出卡号、密码、CVN2、有效期等信息加密;对收款人,报文中只包含用户标识和签名,不出现转入卡号等信息。In order to protect the security of user information, in the transfer transaction message, the payer, its transfer card number, password, CVN2, validity period and other information are encrypted; for the payee, the message only contains the user ID and signature, and no transfer Card number and other information.

1.6 转帐成功,通知收款人客户端1.6 If the transfer is successful, notify the payee client

后台在收到转帐交易后,根据报文中出现的收款人标识,查询生成签名的时间,以此验证签名的合法性,如果验证通过,即会使用收款人标识查询得到该收款人指定的收款帐号,并向银行发起转帐交易。After receiving the transfer transaction, the background checks the time when the signature was generated according to the payee ID appearing in the message, so as to verify the validity of the signature. If the verification is passed, the payee ID will be used to query the payee Specify the receiving account number, and initiate a transfer transaction to the bank.

在转帐交易成功后,后台将交易结果插入支付结果通知表中,用于通知收款人交易状态及金额。并将包括交易标识、交易时间、收款人用户标识、支付卡号(未登录)或付款人用户标识(已登录)、交易金额在内的交易信息保存在交易记录表中。后台以收款人签名作为密钥,对交易标识进行加密后返回给付款人客户端。After the transfer transaction is successful, the background inserts the transaction result into the payment result notification table to notify the payee of the transaction status and amount. And save the transaction information including transaction ID, transaction time, payee user ID, payment card number (not logged in) or payer user ID (logged in), and transaction amount in the transaction record table. The background uses the signature of the payee as the key, encrypts the transaction ID and returns it to the payer client.

付款人客户端在收到成功应答后,将在界面上提示支付成功,并将之前订阅的“支付凭证”信息修改成加密的交易标识,以通知付款人客户端确认支付结果。After receiving the successful response, the payer client will prompt on the interface that the payment is successful, and modify the previously subscribed "payment certificate" information into an encrypted transaction identifier to notify the payer client to confirm the payment result.

1.7 收款人客户端确认支付结果,并语音提示1.7 The payee client confirms the payment result and gives a voice prompt

收款人客户端在获取“支付凭证”被修改的消息后,用当前的签名对交易标识进行解密,并向后台发起交易结果确认请求。根据交易标识,在支付结果通知表中查询交易状态,并从交易记录表中获取交易相关信息。后台返回的信息包括交易时间,交易状态、金额、付款人称谓(登录情况下)、卡号后4位等用于身份识别的信息。After obtaining the message that the "payment certificate" has been modified, the payee client uses the current signature to decrypt the transaction ID, and initiates a transaction result confirmation request to the background. According to the transaction identifier, query the transaction status in the payment result notification table, and obtain transaction-related information from the transaction record table. The information returned by the background includes transaction time, transaction status, amount, payer’s title (in the case of login), and the last 4 digits of the card number for identification purposes.

后台返回查询结果后,语音提示交易状态、金额、付款人称谓(登录情况下)及身份识别信息。After the query result is returned in the background, the transaction status, amount, title of the payer (in the case of login) and identification information will be prompted by voice.

在查询支付结果后,后台重新根据当前时间和用户标识,生成新的签名,与查询结果应答报文一起,返回给收款人客户端。After querying the payment result, the background generates a new signature based on the current time and user ID, and returns it to the payee client together with the query result response message.

由于在整个支付过程中,收款人无须作任何操作,支付结果也通过语音提示,因此非常适合出租车付款的应用场景。Since the payee does not need to do anything during the entire payment process, and the payment result is also prompted by voice, it is very suitable for the application scenario of taxi payment.

以上结合图1介绍了基于蓝牙的面对面支付方法的流程示意图。考虑到蓝牙技术在安全性方面弱于https协议,在上述方案中优选地仅利用蓝牙完成付款人信息发现和交易结果查询触发,而支付及结果查询过程都通过http协议并利用SSL进行加密保护。由于蓝牙广播的信息易于泄露,在上述方案中优选地只通过蓝牙广播用户标识、称谓、身份识别信息等非核心信息。The schematic flow diagram of the Bluetooth-based face-to-face payment method is introduced above with reference to FIG. 1 . Considering that Bluetooth technology is weaker than https protocol in terms of security, in the above scheme, it is preferable to only use Bluetooth to complete payer information discovery and transaction result query triggering, while the payment and result query process are encrypted and protected by HTTP protocol and SSL. Since the information broadcast by Bluetooth is easy to leak, in the above solution, it is preferable to only broadcast non-core information such as user identification, title, and identification information through Bluetooth.

在上述方案中,通过蓝牙广播发出的用户标识用于指示转帐收款人,因此安全性的关键就在于如何防止收款人用户标识被篡改。为了提高安全性,在上述方案中,后台使用用户标识和时间生成收款人签名,在交易过程中将该签名转发给付款人,并在付款交易中携带该签名来保证付款交易报文中的收款人用户标识与签名一致。具体过程可参见图2并如下所示:In the above solution, the user ID sent through the Bluetooth broadcast is used to indicate the transfer payee, so the key to security lies in how to prevent the payee's user ID from being tampered with. In order to improve security, in the above scheme, the background uses the user ID and time to generate the payee's signature, forwards the signature to the payer during the transaction, and carries the signature in the payment transaction to ensure the payment transaction message. The beneficiary user ID is consistent with the signature. The specific process can be seen in Figure 2 and shown as follows:

1)在登陆时,后台根据登陆用户标识和当前时间生成签名,发送给收款人客户端,并记录每个用户标识生成签名的时间;1) When logging in, the background generates a signature based on the login user ID and the current time, sends it to the payee client, and records the time when each user ID generates a signature;

2)收款人客户端将签名与用户标识一起广播给付款人;2) The payee client broadcasts the signature together with the user ID to the payer;

3)付款人客户端选择并确认收款人后,发起付款交易,并在交易报文中,携带收款人标识和签名;3) After the payer client selects and confirms the payee, it initiates a payment transaction, and carries the payee's ID and signature in the transaction message;

4)后台根据收款人标识及记录的签名生成时间,验证签名有效性,如签名不一致,表明用户标识或签名被篡改,拒绝交易;如签名一致,但生成时间超过有效期控制值(比如5分钟),则可能是之前成功交易中签名信息的重放攻击,也将拒绝交易;4) The background verifies the validity of the signature based on the payee’s ID and the recorded signature generation time. If the signatures are inconsistent, it indicates that the user ID or signature has been tampered with, and the transaction is rejected; if the signatures are consistent, but the generation time exceeds the validity period control value (for example, 5 minutes ), it may be a replay attack of the signature information in the previous successful transaction, and the transaction will also be rejected;

5)交易成功后,后台将交易标识用签名作为密钥进行加密,通过付款人客户端转发给收款人客户端;5) After the transaction is successful, the background will encrypt the transaction ID with the signature as the key, and forward it to the payee client through the payer client;

6)收款人客户端利用有效密钥解密交易标识,查询交易结果;6) The payee client uses a valid key to decrypt the transaction identifier and query the transaction result;

7)后台生成新的密钥,发送给收款人客户端。为防止有效期控制值内有效密钥数量过多,如果当前交易使用非最新密钥,则不生成新密钥。7) Generate a new key in the background and send it to the payee client. To prevent too many valid keys in the validity period control value, if the current transaction uses a non-latest key, no new key will be generated.

由于在多付款人付款的场景中,多个付款人可能在同一时间发起付款交易,其交易中携带的签名信息可能相同,但当第一个付款交易完成时,签名被更新,此时其他进行中的交易的签名虽然不是最新的,也应在有效期内。因此,在上述4)和6)步中,对签名的验证和解密时,先利用最新的签名生成时间来进行计算,失败时,再使用有效期控制值内的其他签名生成时间进行计算。In the multi-payer payment scenario, multiple payers may initiate a payment transaction at the same time, and the signature information carried in the transaction may be the same, but when the first payment transaction is completed, the signature is updated, and at this time other The signature of the transaction in is not up-to-date, but should be within the validity period. Therefore, in the above steps 4) and 6), when verifying and decrypting the signature, the latest signature generation time is used for calculation first, and when it fails, other signature generation times within the validity period control value are used for calculation.

以下对一些典型的安全性攻击场景进行分析,来说明本发明的技术方案可以保证在这些场景下的交易安全性。Some typical security attack scenarios are analyzed below to illustrate that the technical solution of the present invention can ensure transaction security in these scenarios.

情形一:收款人客户端被篡改,发布第三者收款人信息或者收款人标识在广播时被篡改Scenario 1: The payee client is tampered with, and the third party payee information is released or the payee ID is tampered with during broadcasting

由于转帐交易根据收款人用户标识查询转入卡信息,如果收款人标识被篡改为第三者标识,转帐时将导致付款人向第三者转帐,造成财务损失。Since the information of the transfer-in card is queried according to the user ID of the payee in the transfer transaction, if the ID of the payee is tampered with the ID of a third party, the transfer will cause the payer to transfer money to the third party, resulting in financial losses.

如果只篡改收款人标识,后台在支付交易中,通过验签,可发现用户标识被修改,拒绝交易。If only the payee's ID is tampered with, the backend can find that the user ID has been modified through signature verification in the payment transaction and reject the transaction.

如果同时篡改收款人标识和签名,在有效期控制值内可完成交易;但是付款人客户端查询交易结果时,后台可根据登陆用户的SESSION信息发现付款人标识不符,根据收款人帐户信息进行追款。If the payee's ID and signature are tampered with at the same time, the transaction can be completed within the valid period control value; however, when the payer client queries the transaction result, the background can find that the payer's ID does not match according to the login user's SESSION information, and proceed according to the payee's account information chasing money.

情形二:付款人客户端被篡改,利用第三者标识发起转帐Scenario 2: The payer's client is tampered with, and the transfer is initiated using a third-party ID

如果付款人客户端被篡改,虽然付款人选择的收款人信息都是真实的,但在转帐交易发起时,只要将付款人标识篡改成第三者标识,就会诱骗付款人向第三者转帐,造成财务损失。If the payer's client is tampered with, although the payee information selected by the payer is true, but when the transfer transaction is initiated, as long as the payer's ID is tampered with a third party's ID, the payer will be tricked into paying the third party transfer, resulting in financial loss.

收款人客户端在收到结果通知后,继续使用真实的用户标识查询交易状态,在发现金额未转入收款人帐户后,通过付款人联系客服人员进行交易核实和追款。After receiving the result notification, the payee client will continue to use the real user ID to query the transaction status, and after finding that the amount has not been transferred to the payee's account, contact the customer service personnel through the payer for transaction verification and payment recovery.

情形三:付款人客户端未完成支付,利用历史成功交易的“支付凭证”发送虚假成功通知给收款人Scenario 3: The payer client fails to complete the payment, and uses the "payment certificate" of historical successful transactions to send a false success notification to the payee

收款人客户端在收到成功通知后,根据用户标识和交易标识,通过交易结果通知表进行结果查询。对于已经成功通知过的历史成功交易,由于无法在结果通知表中查询到相关记录,收款人客户端将使用用户标识查询历史成功交易,让收款人人工确认是否交易成功,欺诈无法成功。After receiving the successful notification, the payee client will query the result through the transaction result notification table according to the user ID and transaction ID. For historically successful transactions that have been successfully notified, since the relevant records cannot be queried in the result notification table, the payee client will use the user ID to query historically successful transactions, allowing the payee to manually confirm whether the transaction is successful, and fraud cannot succeed.

此外,还可能存在付款人支付成功,但收款人查询交易状态无应答的异常情况。针对该异常情况,本发明提出如下解决方案:In addition, there may be an abnormal situation where the payer makes the payment successfully, but the payee does not respond to querying the transaction status. For this abnormal situation, the present invention proposes following solutions:

1)后台查询到交易结果,在应答过程中,由于网络通讯故障导致客户端未收到应答,再次查询时,由于在交易结果通知表查询不到相关记录,向客户端应答无记录。之后由客户端仅根据用户标识查询历史交易记录,人工确认是否成功;1) The transaction result was queried in the background. During the response process, the client did not receive a response due to network communication failure. When querying again, because no relevant records could be queried in the transaction result notification form, there was no response to the client. Afterwards, the client only queries the historical transaction records based on the user ID, and manually confirms whether it is successful;

2)在处理查询请求时,由于网络原因或者其他因素,后台未完成向交易结果通知表查询交易结果;再次查询时,后台重复正常查询操作;2) When processing the query request, due to network reasons or other factors, the background has not completed querying the transaction result from the transaction result notification table; when querying again, the background will repeat the normal query operation;

3)如果再次尝试查询时,依然超时,客户端将最多重试3次,之后仅根据用户标识查询历史交易记录,人工确认是否成功。3) If it still times out when trying to query again, the client will retry up to 3 times, and then only query the historical transaction records based on the user ID, and manually confirm whether it is successful.

以上结合图1和图2描述了本发明的技术方案。相比于现有的面对面支付方案,该技术方案可实现支付双方在更大距离(不小于20M)内完成支付。另外,在本发明所述的支付过程中,只需要使用例如手机等的客户端,而无需额外的设备;并且收款人无需额外操作(参与度低),十分适合出租车收款、自助停车场收款等场景。此外,本发明的技术方案通过对多密钥支持,同样适合多付款人同时发起支付的AA付款场景。The technical solution of the present invention is described above with reference to FIG. 1 and FIG. 2 . Compared with the existing face-to-face payment scheme, this technical scheme can realize the payment between the two parties within a larger distance (not less than 20M). In addition, in the payment process of the present invention, only a client such as a mobile phone needs to be used without additional equipment; and the payee does not need additional operations (low participation), which is very suitable for taxi collection and self-parking Field collection and other scenarios. In addition, the technical solution of the present invention is also suitable for the AA payment scenario where multiple payers simultaneously initiate payment by supporting multiple keys.

上文中,参照附图描述了本发明的具体实施方式。但是,本领域中的普通技术人员能够理解,在不偏离本发明的精神和范围的情况下,还可以对本发明的具体实施方式作各种变更和替换。这些变更和替换都落在本发明权利要求书所限定的范围内。Hereinbefore, specific embodiments of the present invention have been described with reference to the accompanying drawings. However, those skilled in the art can understand that without departing from the spirit and scope of the present invention, various changes and substitutions can be made to the specific embodiments of the present invention. These changes and substitutions all fall within the scope defined by the claims of the present invention.

Claims (10)

1.一种基于蓝牙的面对面支付方法,所述方法包括:1. A face-to-face payment method based on bluetooth, said method comprising: 第三方后台根据收款人客户端的用户标识和登陆时间生成签名,将所述签名发送给所述收款人客户端并记录每个用户标识的签名生成时间;The third-party background generates a signature according to the user ID and login time of the payee client, sends the signature to the payee client and records the signature generation time of each user ID; 所述第三方后台从付款人客户端接收交易报文,所述交易报文中包含所述收款人客户端通过蓝牙广播给所述付款人客户端的收款人信息,所述收款人信息包括所述用户标识和所述签名;The third-party background receives a transaction message from the payer client, and the transaction message includes the payee information that the payee client broadcasts to the payer client via Bluetooth, and the payee information including said user identification and said signature; 所述第三方后台根据所述用户标识和所记录的签名生成时间,验证所述交易报文中的所述签名的有效性;The third-party background verifies the validity of the signature in the transaction message according to the user ID and the recorded signature generation time; 所述第三方后台在交易成功后,将经过验证的所述签名作为密钥对交易标识进行加密,并将加密后的交易标识通过所述付款人客户端转发给所述收款人客户端,使得所述收款人客户端能够解密得出所述交易标识并向所述第三方后台查询交易结果。After the transaction is successful, the third-party background uses the verified signature as a key to encrypt the transaction identifier, and forwards the encrypted transaction identifier to the payee client through the payer client, The payee client can decrypt to obtain the transaction identifier and query the transaction result from the third-party background. 2.如权利要求1所述的方法,其中,所述收款人信息还包括服务有效距离。2. The method according to claim 1, wherein the payee information further includes service effective distance. 3.如权利要求2所述的方法,还包括:3. The method of claim 2, further comprising: 所述付款人客户端对接收到的广播消息按照所述服务有效距离进行过滤。The payer client filters the received broadcast message according to the service effective distance. 4.如权利要求1所述的方法,还包括:所述第三方后台在交易成功后生成第二签名并发送给所述收款人客户端。4. The method according to claim 1, further comprising: the third-party background generates a second signature after the transaction is successful and sends it to the payee client. 5.如权利要求4所述的方法,还包括:如果成功进行的交易所使用的签名不是最新的签名,则即使交易成功,所述第三方后台也不生成所述第二签名。5. The method according to claim 4, further comprising: if the signature used in the successful transaction is not the latest signature, the third-party background does not generate the second signature even if the transaction is successful. 6.一种基于蓝牙的面对面支付系统,所述系统包括:6. A face-to-face payment system based on bluetooth, said system comprising: 付款人客户端,所述付款人客户端配置成接收由收款人客户端通过蓝牙广播的收款人信息,所述收款人信息包括收款人客户端的用户标识和签名;根据所接收的收款人信息,向第三方后台发送交易报文,所述交易报文中包含所述用户标识和所述签名;The payer client, the payer client is configured to receive the payee information broadcast by the payee client via Bluetooth, the payee information includes the user identification and signature of the payee client; according to the received Payee information, sending a transaction message to the third-party background, the transaction message includes the user identification and the signature; 所述第三方后台,所述第三方后台配置成根据所述收款人客户端的用户标识和登陆时间生成签名,将所述签名发送给所述收款人客户端并记录每个用户标识的签名生成时间;根据所述用户标识和所记录的签名生成时间,验证所述交易报文中的所述签名的有效性;在交易成功后,将经过验证的所述签名作为密钥对交易标识进行加密,并将加密后的交易标识通过所述付款人客户端转发给所述收款人客户端;以及The third-party background, the third-party background is configured to generate a signature according to the user ID and login time of the payee client, send the signature to the payee client and record the signature of each user ID Generation time; according to the user identification and the recorded signature generation time, verify the validity of the signature in the transaction message; after the transaction is successful, use the verified signature as a key to perform transaction identification encrypting, and forwarding the encrypted transaction identifier to the payee client through the payer client; and 所述收款人客户端,所述收款人客户端配置成解密并得出所述交易标识并向所述第三方后台查询交易结果。The payee client, the payee client is configured to decrypt and obtain the transaction identifier, and query the transaction result from the third-party background. 7.如权利要求6所述的系统,其中,所述收款人信息还包括服务有效距离。7. The system according to claim 6, wherein the payee information further includes service effective distance. 8.如权利要求7所述的系统,其中,所述付款人客户端还配置成对接收到的广播消息按照所述服务有效距离进行过滤。8. The system according to claim 7, wherein the payer client is further configured to filter the received broadcast message according to the effective service distance. 9.如权利要求6所述的系统,其中,所述第三方后台还配置成在交易成功后生成第二签名并发送给所述收款人客户端。9. The system according to claim 6, wherein the third-party background is further configured to generate a second signature and send it to the payee client after the transaction is successful. 10.如权利要求9所述的系统,其中,所述第三方后台还配置成:如果成功进行的交易所使用的签名不是最新的签名,则即使交易成功,也不生成所述第二签名。10. The system according to claim 9, wherein the third-party background is further configured to: if the signature used in the successful transaction is not the latest signature, the second signature will not be generated even if the transaction is successful.
CN201410268901.9A 2014-06-17 2014-06-17 Face-to-face payment method and system based on bluetooth Active CN105205666B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410268901.9A CN105205666B (en) 2014-06-17 2014-06-17 Face-to-face payment method and system based on bluetooth

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410268901.9A CN105205666B (en) 2014-06-17 2014-06-17 Face-to-face payment method and system based on bluetooth

Publications (2)

Publication Number Publication Date
CN105205666A CN105205666A (en) 2015-12-30
CN105205666B true CN105205666B (en) 2019-10-25

Family

ID=54953331

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410268901.9A Active CN105205666B (en) 2014-06-17 2014-06-17 Face-to-face payment method and system based on bluetooth

Country Status (1)

Country Link
CN (1) CN105205666B (en)

Families Citing this family (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107545426A (en) * 2016-06-27 2018-01-05 李明 Determine the method and system and method for commerce and system of payment mechanism
CN107545421A (en) * 2016-06-27 2018-01-05 李明 Determine the method and system and method for commerce and system of payment mechanism
WO2018024242A1 (en) * 2016-08-05 2018-02-08 李明 Method and system for secure communication
CN106251410A (en) * 2016-08-16 2016-12-21 广西咪付网络技术有限公司 A kind of parking charge system combined based on bluetooth and sound wave
CN107122969A (en) * 2017-03-22 2017-09-01 深圳付贝科技有限公司 A kind of method of payment and its device, system and electronic equipment
CN110930143A (en) * 2019-11-21 2020-03-27 刘占飞 Electronic payment method, device and equipment
CN112669030A (en) * 2020-12-30 2021-04-16 南方科技大学 Mobile payment method, device, equipment and storage medium
CN112837047A (en) * 2021-01-26 2021-05-25 北京芯盾集团有限公司 Connection-free transaction method, system, device, electronic equipment and storage medium

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1830001A (en) * 2003-08-08 2006-09-06 倍酷国际有限公司 Method for facilitating authentication of financial transactions over a wireless communication network
CN101064033A (en) * 2006-04-26 2007-10-31 郑福烱 System and method for mobile payments
CN101295387A (en) * 2007-04-23 2008-10-29 北京数字证书认证中心有限公司 Method for implementing network transaction data text
CN101340289A (en) * 2008-08-19 2009-01-07 北京飞天诚信科技有限公司 Replay attack preventing method and method thereof
CN101960762A (en) * 2008-02-26 2011-01-26 巴特尔能源联合有限责任公司 Systems and methods for performing wireless financial transactions
CN102150448A (en) * 2008-09-12 2011-08-10 高通股份有限公司 Ticket-based spectrum authorization and access control
CN103745347A (en) * 2013-12-27 2014-04-23 厦门盛华电子科技有限公司 Mobile payment method between two mobile terminals on basis of digital certificate SIM (Subscriber Identity Module) cards
CN103824185A (en) * 2014-03-05 2014-05-28 平安付智能技术有限公司 mobile intelligent terminal payment method and system based on low-power-consumption Bluetooth

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7680738B2 (en) * 2000-11-22 2010-03-16 American Express Travel Related Services Company, Inc. System and method for executing cash payments via a computer network
CN1212716C (en) * 2002-07-16 2005-07-27 北京创原天地科技有限公司 Method of sharing subscriber confirming information in different application systems of internet
WO2004049273A1 (en) * 2002-11-27 2004-06-10 Institute For Infocomm Research Peer to peer electronic-payment system
SE524514C2 (en) * 2002-12-23 2004-08-17 Telia Ab Method and system for transmitting data
EP1833222A1 (en) * 2006-03-10 2007-09-12 Abb Research Ltd. Access control protocol for embedded devices
US8666368B2 (en) * 2010-05-03 2014-03-04 Apple Inc. Wireless network authentication apparatus and methods
US8442914B2 (en) * 2010-07-06 2013-05-14 Mastercard International Incorporated Virtual wallet account with automatic-loading
CN102651108A (en) * 2012-04-08 2012-08-29 徐彬 Non-connection-based Bluetooth mobile payment system
CN102932788A (en) * 2012-10-26 2013-02-13 南宁佰睿技术开发有限公司 Mobile phone-based identity identification and near-field payment method

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1830001A (en) * 2003-08-08 2006-09-06 倍酷国际有限公司 Method for facilitating authentication of financial transactions over a wireless communication network
CN101064033A (en) * 2006-04-26 2007-10-31 郑福烱 System and method for mobile payments
CN101295387A (en) * 2007-04-23 2008-10-29 北京数字证书认证中心有限公司 Method for implementing network transaction data text
CN101960762A (en) * 2008-02-26 2011-01-26 巴特尔能源联合有限责任公司 Systems and methods for performing wireless financial transactions
CN101340289A (en) * 2008-08-19 2009-01-07 北京飞天诚信科技有限公司 Replay attack preventing method and method thereof
CN102150448A (en) * 2008-09-12 2011-08-10 高通股份有限公司 Ticket-based spectrum authorization and access control
CN103745347A (en) * 2013-12-27 2014-04-23 厦门盛华电子科技有限公司 Mobile payment method between two mobile terminals on basis of digital certificate SIM (Subscriber Identity Module) cards
CN103824185A (en) * 2014-03-05 2014-05-28 平安付智能技术有限公司 mobile intelligent terminal payment method and system based on low-power-consumption Bluetooth

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
P2P-NetPay: An Off-line Micro-payment System for Content Sharing in P2P-Networks;Kaylash Chaudhary; Xiaoling Dai;《Journal of Emerging Technologies in Web Intelligence》;20090831;全文 *
P2P-Paid: A Peer-to-Peer Wireless Payment System;J Gao , K Edunuru , J Cai , S Shim;《IEEE International Workshop on Mobile Commerce & Services》;20050831;全文 *

Also Published As

Publication number Publication date
CN105205666A (en) 2015-12-30

Similar Documents

Publication Publication Date Title
CN105205666B (en) Face-to-face payment method and system based on bluetooth
JP6713081B2 (en) Authentication device, authentication system and authentication method
US20200336315A1 (en) Validation cryptogram for transaction
US9183549B2 (en) System and method of secure payment transactions
KR102646565B1 (en) Processing electronic tokens
US20170064554A1 (en) Secure data interaction method and system
US20120101951A1 (en) Method and System for Secure Financial Transactions Using Mobile Communications Devices
US20090172402A1 (en) Multi-factor authentication and certification system for electronic transactions
US10489565B2 (en) Compromise alert and reissuance
CN103049851A (en) Transaction data-based anti-fraud monitoring method and device
WO2019229761A1 (en) Virtual smart card for banking and payments
CN102790674A (en) Authentication method, equipment and system
CN111435914B (en) Method and apparatus for authentication with an offline device
CN103116844A (en) Near field communication payment method authenticated by both sides of deal
HK1206467A1 (en) Internet-based secure payment system and secure payment method
EP3731480B1 (en) Systems and methods for secure communication
KR20140125299A (en) Method for providing direct debit service through electronic signature authentication based by mobile messaging
Panjwani Practical receipt authentication for branchless banking
KR102296110B1 (en) Method for Managing Certificate
KR102198160B1 (en) Method for Managing Certificate
KR20150145208A (en) A mobile payment system and mobile payment method based on biometric authentication
KR102198153B1 (en) Method for Managing Certificate
US20230325520A1 (en) Alias directory
Saeed et al. Mobile Transactions over NFC and GSM
KR101267489B1 (en) Method and system for preventing phishing fraud using call authentication

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant