[go: up one dir, main page]

WO2015176364A1 - Payment method, mobile terminal and subscriber identity module, and computer storage medium - Google Patents

Payment method, mobile terminal and subscriber identity module, and computer storage medium Download PDF

Info

Publication number
WO2015176364A1
WO2015176364A1 PCT/CN2014/081630 CN2014081630W WO2015176364A1 WO 2015176364 A1 WO2015176364 A1 WO 2015176364A1 CN 2014081630 W CN2014081630 W CN 2014081630W WO 2015176364 A1 WO2015176364 A1 WO 2015176364A1
Authority
WO
WIPO (PCT)
Prior art keywords
payment
mobile terminal
key
subscriber identity
payment key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/CN2014/081630
Other languages
French (fr)
Chinese (zh)
Inventor
杨立敏
王余雷
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Publication of WO2015176364A1 publication Critical patent/WO2015176364A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards

Definitions

  • the present invention relates to the field of payment, and in particular, to a payment method, a mobile terminal, a user identification card, and a computer storage medium. Background technique
  • the main technical problem to be solved by the present invention is to provide a payment method, a mobile terminal, a user identification card, and a computer storage medium, which solves the problem of low security factor of the existing mobile payment.
  • an embodiment of the present invention provides a payment method, which is applied to a mobile terminal, and includes:
  • the corresponding payment key is obtained from the secure element chip of the user identification card according to the payment account information input by the user.
  • the method when the detecting the payment operation, the method further includes: acquiring a clear text payment password input by the user;
  • the method further includes:
  • the embodiment of the present invention further provides a payment method, which is applied to a user identification card, and includes:
  • the corresponding payment key is obtained from the secure element chip and then transmitted to the mobile terminal.
  • the method further includes:
  • the access authority of the mobile terminal When receiving the payment key acquisition request of the mobile terminal, the access authority of the mobile terminal is authenticated; after the authentication is passed, the corresponding payment key is obtained from the secure component chip, and then sent to the mobile terminal.
  • the subscriber identity card is a one-line protocol subscriber identity card.
  • an embodiment of the present invention further provides a mobile terminal, including: an account management module, and a first information acquisition module.
  • the account management module is configured to store the payment account information and the corresponding payment key in the secure element chip of the user identification card;
  • the information obtaining module is configured to acquire a corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user when the payment is detected.
  • the method further includes a second information acquiring module and a payment processing module, where the second information acquiring module is configured to acquire a plaintext payment password input by the user when the payment is detected;
  • the payment processing module is configured to encrypt the plaintext payment password and the obtained payment key into a ciphertext and send the payment to the network side for payment authentication.
  • an embodiment of the present invention further provides a user identification card, including a storage module and a sending module;
  • the storage module is configured to store payment account information and a corresponding payment key in a secure element chip of the user identification card;
  • the sending module is configured to, after receiving the payment key acquisition request of the mobile terminal, acquire the corresponding payment key from the secure element chip, and then send the corresponding payment key to the mobile terminal.
  • the method further includes an authentication module configured to authenticate the access authority of the mobile terminal when receiving the payment key acquisition request of the mobile terminal.
  • the subscriber identity card is a one-line protocol subscriber identity card.
  • an embodiment of the present invention further provides a computer storage medium storing computer executable instructions for executing the above method.
  • the payment method, the mobile terminal, the user identification card, and the computer storage medium provided by the embodiment of the present invention pre-store the payment account information and the corresponding payment key into the secure component chip of the user identification card; when paying, according to the payment input by the user
  • the account information is obtained from the secure element chip of the user identification card, and then the payment is completed according to the obtained payment key. Since the payment key is stored in the secure component chip of the user identification card, the access of the malware can be effectively blocked, and the security of the mobile payment is improved; and the implementation of the solution does not require an additional encryption chip, and does not increase. Hardware cost; At the same time, if the mobile terminal is lost, other users can be blocked from obtaining the payment key by reporting the loss of the user identification card at the operator.
  • the embodiment of the present invention encrypts the plaintext payment password and the payment key into a ciphertext and exchanges with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen, which can further improve the security of the payment.
  • FIG. 1 is a schematic flowchart of a payment method according to Embodiment 1 of the present invention.
  • FIG. 2 is a schematic diagram of a mobile payment process according to Embodiment 1 of the present invention.
  • FIG. 3 is a schematic structural diagram of a payment system according to Embodiment 2 of the present invention.
  • FIG. 4 is a schematic structural diagram 1 of a mobile terminal according to Embodiment 2 of the present invention.
  • FIG. 5 is a schematic structural diagram of a user identification card according to Embodiment 2 of the present invention - detailed description
  • the invention pre-stores the payment account information and the corresponding payment key into the secure element chip (Secure Element, SE chip, which can be packaged in the SWP-SIM card and can run the java virtual machine) of the user identification card; Obtaining a corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user, and then completing the payment according to the obtained payment key.
  • the payment key is stored in the security component chip of the user identification card, which can effectively block the access of the malware and improve the security of the mobile payment; and the implementation of the solution does not require an additional encryption chip, and does not increase the hardware cost; If the mobile terminal is lost, other users can be blocked from obtaining the payment key by reporting the loss of the subscriber identity card at the operator.
  • the embodiment of the present invention encrypts the plaintext payment password and the payment key into a ciphertext by using a key to interact with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen, and the payment may be further improved. safety.
  • Embodiment 1 is a diagrammatic representation of Embodiment 1:
  • the payment method provided in this embodiment includes the following steps:
  • Step 101 The payment account information and the corresponding payment key are stored in a secure component chip (ie, a SE chip) of the user identification card (SIM card);
  • a secure component chip ie, a SE chip
  • SIM card user identification card
  • Step 102 When paying, obtain a corresponding payment key from the security element chip of the user identification card according to the payment account information input by the user;
  • Step 103 Complete the payment according to the obtained payment key.
  • the SIM card may be a single-line protocol subscriber identity card (SWP-SIM card).
  • SWP-SIM card single-line protocol subscriber identity card
  • NFC mobile terminal such as a mobile phone
  • the authentication step may be further included. Specifically, the access to the current acquisition payment key is performed. Authority judgment.
  • the client authenticated by the operator the client can be set in various mobile terminals
  • the client has legal access rights, and other clients have no right to access, so that the malicious client can prevent the user from identifying the card. Threat. Further improve the security of mobile payments.
  • the user inputs the payment account information and the plaintext payment password, and then finds the corresponding payment key according to the payment account information to the SE chip; and then encrypts the plaintext password and the payment key into encrypted ciphertexts by encryption to the financial server.
  • the complete specific process illustrated by mobile payment as an example, as shown in Figure 2, including:
  • Step 201 When the mobile phone pays, the user inputs the payment account information and the clear text payment password to confirm the payment;
  • Step 202 Determine the access authority of the mobile phone in response to the client, if there is permission, go to step 203; otherwise, go to step 206;
  • Step 203 Acquire a corresponding payment key from the SE chip of the SIM card according to the account information input by the user;
  • Step 204 Encrypt the plaintext payment password and the payment key into a ciphertext, and send the message to the financial server.
  • Step 205 The financial server performs payment authentication and completes the payment.
  • Step 206 No access, denied access, prompt "Payment failed.”
  • Embodiment 2
  • the payment system in this embodiment is shown in FIG. 3, and includes a financial server and a mobile terminal.
  • the mobile terminal includes an account management module, a first information acquiring module, and a payment processing module.
  • the account management module is configured to store the payment account information and the corresponding payment key into the secure component chip of the user identification card;
  • the first information acquiring module is configured to acquire, according to the payment account information input by the user, a corresponding payment key from the secure component chip of the user identification card;
  • the payment processing module is configured to complete the payment according to the obtained payment key.
  • the SIM card may be a single-line protocol subscriber identity card (SWP-SIM card).
  • SWP-SIM card single-line protocol subscriber identity card
  • NFC mobile terminal such as a mobile phone
  • an additional encryption chip is not needed, and the hardware cost is not increased.
  • the mobile terminal further includes a second information obtaining module configured to receive the user input plaintext payment password before acquiring the corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user.
  • the payment processing module includes an encryption sub-module and a transmission sub-module; the encryption sub-module is configured to encrypt the plaintext payment password and the obtained payment key into a ciphertext; the sending sub-module is configured to send the ciphertext to The financial server performs payment authentication.
  • the embodiment further provides a user identification card, which can be applied to various mobile terminals.
  • a user identification card which can be applied to various mobile terminals.
  • it includes a storage processing module and a sending module.
  • the storage processing module is configured to The payment account information and the corresponding payment key are stored in the secure element chip of the user identification card;
  • the sending module is configured to, after receiving the payment key acquisition request of the mobile terminal, acquire the corresponding payment key from the secure element chip, and then send the corresponding payment key to the mobile terminal; the first information obtaining module of the mobile terminal receives the payment key.
  • the user identification card further includes an authentication module configured to access the mobile terminal when receiving the payment key acquisition request sent by the first information acquiring module of the mobile terminal. Perform authentication;
  • the access permission of the first information acquiring module is authenticated.
  • the access permission of the first information acquiring module is authenticated.
  • only the first information acquiring module that has been authenticated by the operator has legal access rights, and other clients have no right to access, thereby preventing malicious clients.
  • Threat to the user identification card. Further improve the security of mobile payments.
  • Embodiments of the present invention also provide a computer storage medium in which computer executable instructions are stored, the computer executable instructions being used to perform the above method. It can be seen that the solution provided by the embodiment of the present invention has the following advantages:
  • the account management module described in the embodiment of the present invention can completely prevent the illegal access of the malware. If the mobile terminal is lost, you can report the loss of the SIM card at the carrier.
  • the plaintext payment password is encrypted by the key into a ciphertext and interacts with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen.
  • Each of the above modules may be implemented by a central processing unit (CPU), a digital signal processor (DSP) or a Field-Programmable Gate Array (FPGA) in the electronic device.
  • CPU central processing unit
  • DSP digital signal processor
  • FPGA Field-Programmable Gate Array
  • embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of a hardware embodiment, a software embodiment, or an embodiment of a combination of software and hardware. Moreover, the invention can be embodied in the form of a computer program product embodied on one or more computer usable storage media (including but not limited to disk storage and optical storage, etc.) including computer usable program code.
  • These computer program instructions can also be stored in a bootable computer or other programmable data processing
  • the apparatus is readable in a computer readable memory in a particular manner, such that instructions stored in the computer readable memory produce an article of manufacture comprising an instruction device implemented in one or more flows and/or block diagrams of the flowchart The function specified in the box or in multiple boxes.
  • These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device.
  • the instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.
  • the payment method, the mobile terminal, the user identification card, and the computer storage medium provided by the embodiments of the present invention deposit the payment account information and the corresponding payment key into the secure component chip of the user identification card in advance;
  • the input payment account information is obtained from the secure element chip of the user identification card, and then the payment is completed according to the obtained payment key.
  • the embodiment of the present invention encrypts the plaintext payment password and the payment key into a ciphertext and exchanges with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen, which can further improve the security of the payment.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

Disclosed are a payment method, a mobile terminal and a subscriber identity module, and a computer storage medium. One method is applied to the mobile terminal, comprising: pre-storing payment account information and a corresponding payment key in a security element chip of the subscriber identity module; during payment, obtaining the corresponding payment key from the security element chip of the subscriber identity module according to the payment account information input by a user, and then finishing payment according to the payment key obtained. Another method is applied to the subscriber identity module, comprising: storing the payment account information and the corresponding payment key in the security element chip; and when receiving a payment key obtaining request from the mobile terminal, obtaining the corresponding payment key from the security element chip and then sending the payment key to the mobile terminal. Accordingly, also disclosed in the embodiment are a mobile terminal, a subscriber identity module and a computer storage medium.

Description

支付方法、 移动终端及用户识别卡、 计算机存储介质 技术领域  Payment method, mobile terminal and user identification card, computer storage medium

本发明涉及支付领域, 具体涉及一种支付方法、 移动终端及用户识别 卡、 计算机存储介质。 背景技术  The present invention relates to the field of payment, and in particular, to a payment method, a mobile terminal, a user identification card, and a computer storage medium. Background technique

随着智能手机的普及, 及电子商务的发展, 使用手机等移动终端进行 支付的场景越来越多, 支付的安全性越来越重要。 传统的通过键盘输入密 钥及短信获得验证码的方式容易被恶意程序截获, 不法分子在其他终端上 可以轻易盗用, 安全系数太低, 容易给用户造成损失。 发明内容  With the popularization of smart phones and the development of e-commerce, there are more and more scenes for payment using mobile terminals such as mobile phones, and the security of payment is becoming more and more important. The traditional way of obtaining a verification code by inputting a key and a short message through a keyboard is easily intercepted by a malicious program, and the criminals can be easily stolen on other terminals, and the safety factor is too low, which is easy to cause loss to the user. Summary of the invention

本发明要解决的主要技术问题是, 提供一种支付方法、 移动终端及用 户识别卡、 计算机存储介质, 解决现有移动支付安全系数低的问题。  The main technical problem to be solved by the present invention is to provide a payment method, a mobile terminal, a user identification card, and a computer storage medium, which solves the problem of low security factor of the existing mobile payment.

为解决上述技术问题, 本发明实施例提供种支付方法 , 应用于移动终 端, 包括:  To solve the above technical problem, an embodiment of the present invention provides a payment method, which is applied to a mobile terminal, and includes:

将支付账号信息及相对应的支付密钥存入用户识别卡的安全元件芯片 中;  Depositing the account information and the corresponding payment key into the secure component chip of the subscriber identity card;

检测到支付操作时, 根据用户输入的支付账号信息从所述用户识别卡 的安全元件芯片中获取对应的支付密钥。  When the payment operation is detected, the corresponding payment key is obtained from the secure element chip of the user identification card according to the payment account information input by the user.

在本发明的一种实施例中, 所述检测到支付操作时, 还包括: 获取用户输入的明文支付密码;  In an embodiment of the present invention, when the detecting the payment operation, the method further includes: acquiring a clear text payment password input by the user;

所述获取安全元件芯片中支付密钥后还包括:  After obtaining the payment key in the secure element chip, the method further includes:

将所述明文支付密码和获取的所述支付密钥加密成密文发送给网络侧 进行支付认证。 Encrypting the plaintext payment password and the obtained payment key into a ciphertext and sending the message to the network side Make payment certification.

为了解决上述问题, 本发明实施例还提供了一种支付方法, 应用于用 户识别卡, 包括:  In order to solve the above problem, the embodiment of the present invention further provides a payment method, which is applied to a user identification card, and includes:

将支付账号信息及相对应的支付密钥存入安全元件芯片中;  Depositing the account information and the corresponding payment key into the secure element chip;

当接收到移动终端的支付密钥获取请求时, 从所述安全元件芯片中获 取对应的支付密钥后, 发送给移动终端。  When receiving the payment key acquisition request of the mobile terminal, the corresponding payment key is obtained from the secure element chip and then transmitted to the mobile terminal.

在本发明的一种实施例中, 还包括:  In an embodiment of the present invention, the method further includes:

当接收到移动终端的支付密钥获取请求时, 对移动终端的访问权限进 行鉴权; 鉴权通过后, 从所述安全元件芯片中获取对应的支付密钥后, 发 送给移动终端。  When receiving the payment key acquisition request of the mobile terminal, the access authority of the mobile terminal is authenticated; after the authentication is passed, the corresponding payment key is obtained from the secure component chip, and then sent to the mobile terminal.

在本发明的一种实施例中, 所述用户识别卡为单线协议用户识别卡。 为了解决上述问题, 本发明实施例还提供了一种移动终端, 包括: 账 户管理模块、 第一信息获取模  In an embodiment of the invention, the subscriber identity card is a one-line protocol subscriber identity card. In order to solve the above problem, an embodiment of the present invention further provides a mobile terminal, including: an account management module, and a first information acquisition module.

块;  Piece;

所述账户管理模块配置为将支付账号信息及对应的支付密钥存入用户 识别卡的安全元件芯片中;  The account management module is configured to store the payment account information and the corresponding payment key in the secure element chip of the user identification card;

所述信息获取模块配置为在检测到支付时, 根据用户输入的支付账号 信息从所述用户识别卡的安全元件芯片中获取对应的支付密钥。  The information obtaining module is configured to acquire a corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user when the payment is detected.

在本发明的一种实施例中, 还包括第二信息获取模块和支付处理模块; 所述第二信息获取模块配置为在检测到支付时, 获取用户输入的明文 支付密码;  In an embodiment of the present invention, the method further includes a second information acquiring module and a payment processing module, where the second information acquiring module is configured to acquire a plaintext payment password input by the user when the payment is detected;

所述支付处理模块配置为将所述明文支付密码和获取的所述支付密钥 加密成密文发送给网络侧进行支付认证。  The payment processing module is configured to encrypt the plaintext payment password and the obtained payment key into a ciphertext and send the payment to the network side for payment authentication.

为了解决上述问题, 本发明实施例还提供了一种用户识别卡, 包括存 储模块和发送模块; 所述存储模块配置为将支付账号信息以及对应的支付密钥存储在所述 用户识别卡的安全元件芯片中; In order to solve the above problem, an embodiment of the present invention further provides a user identification card, including a storage module and a sending module; The storage module is configured to store payment account information and a corresponding payment key in a secure element chip of the user identification card;

所述发送模块配置为在收到移动终端的支付密钥获取请求时, 从所述 安全元件芯片中获取对应的支付密钥后, 发送给移动终端。  The sending module is configured to, after receiving the payment key acquisition request of the mobile terminal, acquire the corresponding payment key from the secure element chip, and then send the corresponding payment key to the mobile terminal.

在本发明的一种实施例中, 还包括鉴权模块, 配置为在接收到移动终 端的支付密钥获取请求时, 对移动终端的访问权限进行鉴权。  In an embodiment of the present invention, the method further includes an authentication module configured to authenticate the access authority of the mobile terminal when receiving the payment key acquisition request of the mobile terminal.

在本发明的一种实施例中, 所述用户识别卡为单线协议用户识别卡。 为了解决上述问题, 本发明实施例还提供了一种计算机存储介质, 其 中存储有计算机可执行指令, 所述计算机可执行指令用于执行上述的方法。  In an embodiment of the invention, the subscriber identity card is a one-line protocol subscriber identity card. In order to solve the above problems, an embodiment of the present invention further provides a computer storage medium storing computer executable instructions for executing the above method.

本发明实施例提供的支付方法、 移动终端及用户识别卡、 计算机存储 介质, 将支付账号信息及对应的支付密钥预先存入用户识别卡的安全元件 芯片中; 支付时, 根据用户输入的支付账号信息从用户识别卡的安全元件 芯片中获取对应的支付密钥, 然后根据获取的支付密钥完成支付。 由于本 发明实施例将支付密钥存储在用户识别卡的安全元件芯片中, 可有效阻断 恶意软件的访问, 提高移动支付的安全性; 且该方案的实现不需要额外的 加密芯片, 不增加硬件成本; 同时, 如果移动终端遗失, 通过在运营商挂 失用户识别卡即可阻断其他用户获取支付密钥。 另外, 本发明实施例将明 文支付密码和支付密钥通过密钥加密成密文与金融服务器交互; 就算明文 密码被恶意软件截获, 也不会被盗刷, 可进一步提升支付的安全性。 附图说明  The payment method, the mobile terminal, the user identification card, and the computer storage medium provided by the embodiment of the present invention pre-store the payment account information and the corresponding payment key into the secure component chip of the user identification card; when paying, according to the payment input by the user The account information is obtained from the secure element chip of the user identification card, and then the payment is completed according to the obtained payment key. Since the payment key is stored in the secure component chip of the user identification card, the access of the malware can be effectively blocked, and the security of the mobile payment is improved; and the implementation of the solution does not require an additional encryption chip, and does not increase. Hardware cost; At the same time, if the mobile terminal is lost, other users can be blocked from obtaining the payment key by reporting the loss of the user identification card at the operator. In addition, the embodiment of the present invention encrypts the plaintext payment password and the payment key into a ciphertext and exchanges with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen, which can further improve the security of the payment. DRAWINGS

图 1为本发明实施例一提供的支付方法流程示意图  FIG. 1 is a schematic flowchart of a payment method according to Embodiment 1 of the present invention;

图 2为本发明实施例一提供的手机支付流程示意图  FIG. 2 is a schematic diagram of a mobile payment process according to Embodiment 1 of the present invention;

图 3为本发明实施例二提供的支付系统结构示意图  FIG. 3 is a schematic structural diagram of a payment system according to Embodiment 2 of the present invention;

图 4为本发明实施例二提供的移动终端结构示意图一;  4 is a schematic structural diagram 1 of a mobile terminal according to Embodiment 2 of the present invention;

图 5为本发明实施例二提供的用户识别卡结构示意图- 具体实施方式 FIG. 5 is a schematic structural diagram of a user identification card according to Embodiment 2 of the present invention - detailed description

本发明将支付账号信息及对应的支付密钥预先存入用户识别卡的安全 元件芯片 ( Secure Element, SE芯片, 其可以封装在 SWP-SIM卡内, 能运 行 java虚拟机) 中; 支付时, 根据用户输入的支付账号信息从用户识别卡 的安全元件芯片中获取对应的支付密钥, 然后根据获取的支付密钥完成支 付。 将支付密钥存储在用户识别卡的安全元件芯片中, 可有效阻断恶意软 件的访问, 提高移动支付的安全性; 且该方案的实现不需要额外的加密芯 片, 不增加硬件成本; 同时, 如果移动终端遗失, 通过在运营商挂失用户 识别卡即可阻断其他用户获取支付密钥。 另外, 在支付时, 本发明实施例 将明文支付密码和支付密钥通过密钥加密成密文与金融服务器交互; 就算 明文密码被恶意软件截获, 也不会被盗刷, 可进一步提升支付的安全性。  The invention pre-stores the payment account information and the corresponding payment key into the secure element chip (Secure Element, SE chip, which can be packaged in the SWP-SIM card and can run the java virtual machine) of the user identification card; Obtaining a corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user, and then completing the payment according to the obtained payment key. The payment key is stored in the security component chip of the user identification card, which can effectively block the access of the malware and improve the security of the mobile payment; and the implementation of the solution does not require an additional encryption chip, and does not increase the hardware cost; If the mobile terminal is lost, other users can be blocked from obtaining the payment key by reporting the loss of the subscriber identity card at the operator. In addition, at the time of payment, the embodiment of the present invention encrypts the plaintext payment password and the payment key into a ciphertext by using a key to interact with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen, and the payment may be further improved. safety.

下面通过具体实施方式结合附图对本发明作进一步详细说明。  The present invention will be further described in detail below with reference to the accompanying drawings.

实施例一:  Embodiment 1:

请参考图 1, 本实施例提供的支付方法包括以下步骤:  Please refer to FIG. 1. The payment method provided in this embodiment includes the following steps:

步骤 101 :将支付账号信息及对应的支付密钥存入用户识别卡( SIM卡) 的安全元件芯片 (即 SE芯片) 中;  Step 101: The payment account information and the corresponding payment key are stored in a secure component chip (ie, a SE chip) of the user identification card (SIM card);

步骤 102: 支付时,根据用户输入的支付账号信息从所述用户识别卡的 安全元件芯片中获取对应的支付密钥;  Step 102: When paying, obtain a corresponding payment key from the security element chip of the user identification card according to the payment account information input by the user;

步骤 103: 根据获取的支付密钥完成支付。  Step 103: Complete the payment according to the obtained payment key.

本实施例中, SIM卡可具体为单线协议用户识别卡(SWP-SIM卡), 对于 SWP-SIM卡方案的 NFC移动终端(例如手机 ), 不需要额外的加密芯 片, 不增加硬件成本。  In this embodiment, the SIM card may be a single-line protocol subscriber identity card (SWP-SIM card). For an NFC mobile terminal (such as a mobile phone) of the SWP-SIM card solution, no additional encryption chip is needed, and the hardware cost is not increased.

在本实施例中, 为了进一步提升移动支付的安全性, 在支付时, 根据 用户输入的支付账号信息从用户识别卡的安全元件芯片中获取对应的支付 密钥之前, 还可包括鉴权步骤, 具体包括对当前获取支付密钥的访问进行 权限判断。 本实施例中只有经过运营商认证的客户端 (该客户端可设置在 各种移动终端中) 才有合法的访问权限, 其他客户端无权访问, 这样可以 防止恶意客户端对用户识别卡的威胁。 进一步提升移动支付的安全性。 In this embodiment, in order to further improve the security of the mobile payment, before the payment, according to the payment account information input by the user, before the corresponding payment key is obtained from the secure component chip of the user identification card, the authentication step may be further included. Specifically, the access to the current acquisition payment key is performed. Authority judgment. In this embodiment, only the client authenticated by the operator (the client can be set in various mobile terminals) has legal access rights, and other clients have no right to access, so that the malicious client can prevent the user from identifying the card. Threat. Further improve the security of mobile payments.

在支付时, 用户输入支付账户信息和明文支付密码, 然后根据支付账 户信息到 SE芯片中查找到对应的支付密钥; 然后对明文密码和支付密钥通 过加密算加密成密文发送给金融服务器完成支付, 其完整的具体过程(以 手机支付为例进行说明 )请参见图 2所示, 包括:  At the time of payment, the user inputs the payment account information and the plaintext payment password, and then finds the corresponding payment key according to the payment account information to the SE chip; and then encrypts the plaintext password and the payment key into encrypted ciphertexts by encryption to the financial server. Complete the payment, the complete specific process (illustrated by mobile payment as an example), as shown in Figure 2, including:

步骤 201 : 手机支付时用户输入支付账号信息和明文支付密码, 确认支 付;  Step 201: When the mobile phone pays, the user inputs the payment account information and the clear text payment password to confirm the payment;

步骤 202: 判断该手机中响应客户端的访问权限, 如果有权限, 转至步 骤 203; 否则, 转至步骤 206;  Step 202: Determine the access authority of the mobile phone in response to the client, if there is permission, go to step 203; otherwise, go to step 206;

步骤 203:根据用户输入的账户信息从 SIM卡的 SE芯片中获取对应的 支付密钥;  Step 203: Acquire a corresponding payment key from the SE chip of the SIM card according to the account information input by the user;

步骤 204:将明文支付密码和支付密钥加密成密文,发送到金融服务器; 步骤 205: 金融服务器进行支付认证, 完成支付。  Step 204: Encrypt the plaintext payment password and the payment key into a ciphertext, and send the message to the financial server. Step 205: The financial server performs payment authentication and completes the payment.

步骤 206: 无访问权限, 拒绝访问, 提示 "支付失败"。 实施例二:  Step 206: No access, denied access, prompt "Payment failed." Embodiment 2:

本实施例中的支付系统请参见图 3所示, 包括金融服务器和移动终端。 其中, 请参见图 4所示, 移动终端包括账户管理模块、 第一信息获取模块 以及支付处理模块;  The payment system in this embodiment is shown in FIG. 3, and includes a financial server and a mobile terminal. As shown in FIG. 4, the mobile terminal includes an account management module, a first information acquiring module, and a payment processing module.

账户管理模块, 配置为将支付账号信息及对应的支付密钥存入用户识 别卡的安全元件芯片中;  The account management module is configured to store the payment account information and the corresponding payment key into the secure component chip of the user identification card;

第一信息获取模块, 配置为在支付时, 根据用户输入的支付账号信息 从所述用户识别卡的安全元件芯片中获取对应的支付密钥;  The first information acquiring module is configured to acquire, according to the payment account information input by the user, a corresponding payment key from the secure component chip of the user identification card;

支付处理模块, 配置为根据获取的所述支付密钥完成支付。 本实施例中, SIM卡可具体为单线协议用户识别卡(SWP-SIM卡), 对于 SWP-SIM卡方案的 NFC移动终端(例如手机 ), 不需要额外的加密芯 片, 不增加硬件成本。 The payment processing module is configured to complete the payment according to the obtained payment key. In this embodiment, the SIM card may be a single-line protocol subscriber identity card (SWP-SIM card). For an NFC mobile terminal (such as a mobile phone) of the SWP-SIM card solution, an additional encryption chip is not needed, and the hardware cost is not increased.

在本实施例中, 移动终端还包括第二信息获取模块, 配置为在根据用 户输入的支付账号信息从用户识别卡的安全元件芯片中获取对应的支付密 钥之前, 接收用户输入明文支付密码。  In this embodiment, the mobile terminal further includes a second information obtaining module configured to receive the user input plaintext payment password before acquiring the corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user.

在本实施例中, 支付处理模块包括加密子模块和发送子模块; 加密子 模块配置为将明文支付密码和获取的支付密钥加密成密文; 发送子模块配 置为将所述密文发送给金融服务器进行支付认证。  In this embodiment, the payment processing module includes an encryption sub-module and a transmission sub-module; the encryption sub-module is configured to encrypt the plaintext payment password and the obtained payment key into a ciphertext; the sending sub-module is configured to send the ciphertext to The financial server performs payment authentication.

请参见图 5 所示, 本实施例还提供了一种用户识别卡, 该用户识别卡 可应用于各种移动终端中, 相应的, 其包括存储处理模块和发送模块; 存储处理模块配置为将支付账号信息以及对应的支付密钥存储在用户 识别卡的安全元件芯片中;  Referring to FIG. 5, the embodiment further provides a user identification card, which can be applied to various mobile terminals. Correspondingly, it includes a storage processing module and a sending module. The storage processing module is configured to The payment account information and the corresponding payment key are stored in the secure element chip of the user identification card;

发送模块配置为在收到移动终端的支付密钥获取请求时, 从安全元件 芯片中获取对应的支付密钥后, 发送给移动终端; 移动终端的第一信息获 取模块接收该支付密钥。  The sending module is configured to, after receiving the payment key acquisition request of the mobile terminal, acquire the corresponding payment key from the secure element chip, and then send the corresponding payment key to the mobile terminal; the first information obtaining module of the mobile terminal receives the payment key.

请参见图 5 所示, 在本实施例中, 用户识别卡还包括鉴权模块, 配置 为在接收到移动终端的第一信息获取模块发送的支付密钥获取请求时, 对 移动终端的访问权限进行鉴权;  Referring to FIG. 5, in this embodiment, the user identification card further includes an authentication module configured to access the mobile terminal when receiving the payment key acquisition request sent by the first information acquiring module of the mobile terminal. Perform authentication;

具体为对第一信息获取模块的访问权限进行鉴权, 本实施例中只有经 过运营商认证的第一信息获取模块才有合法的访问权限, 其他客户端无权 访问, 这样可以防止恶意客户端对用户识别卡的威胁。 进一步提升移动支 付的安全性。  Specifically, the access permission of the first information acquiring module is authenticated. In this embodiment, only the first information acquiring module that has been authenticated by the operator has legal access rights, and other clients have no right to access, thereby preventing malicious clients. Threat to the user identification card. Further improve the security of mobile payments.

本发明实施例还提供了一种计算机存储介质, 其中存储有计算机可执 行指令, 所述计算机可执行指令用于执行上述的方法。 可见, 本发明实施例提供的方案具有以下优点: Embodiments of the present invention also provide a computer storage medium in which computer executable instructions are stored, the computer executable instructions being used to perform the above method. It can be seen that the solution provided by the embodiment of the present invention has the following advantages:

对于 SWP-SIM卡方案的 NFC移动终端, 不需要额外的加密芯片, 不 增加硬件成本。  For the NFC mobile terminal of the SWP-SIM card solution, no additional encryption chip is required, and the hardware cost is not increased.

在移动终端非遗失情况下, 本发明实施例所述的账户管理模块可以完 全杜绝恶意软件的非法访问。 如果移动终端遗失, 通过在运营商挂失 SIM 卡即可。  In the case that the mobile terminal is not lost, the account management module described in the embodiment of the present invention can completely prevent the illegal access of the malware. If the mobile terminal is lost, you can report the loss of the SIM card at the carrier.

本发明实施例将明文支付密码通过密钥加密成密文与金融服务器交 互; 就算明文密码被恶意软件截获, 也不会被盗刷。  In the embodiment of the present invention, the plaintext payment password is encrypted by the key into a ciphertext and interacts with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen.

上述各模块可以由电子设备中的中央处理器( Central Processing Unit, CPU ), 数字信号处理器 (Digital Signal Processor, DSP )或可编程逻辑阵 列 (Field - Programmable Gate Array, FPGA ) 实现。  Each of the above modules may be implemented by a central processing unit (CPU), a digital signal processor (DSP) or a Field-Programmable Gate Array (FPGA) in the electronic device.

本领域内的技术人员应明白, 本发明的实施例可提供为方法、 系统、 或计算机程序产品。 因此, 本发明可釆用硬件实施例、 软件实施例、 或结 合软件和硬件方面的实施例的形式。 而且, 本发明可釆用在一个或多个其 中包含有计算机可用程序代码的计算机可用存储介质 (包括但不限于磁盘 存储器和光学存储器等 )上实施的计算机程序产品的形式。  Those skilled in the art will appreciate that embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of a hardware embodiment, a software embodiment, or an embodiment of a combination of software and hardware. Moreover, the invention can be embodied in the form of a computer program product embodied on one or more computer usable storage media (including but not limited to disk storage and optical storage, etc.) including computer usable program code.

本发明是参照根据本发明实施例的方法、 设备(系统)、 和计算机程序 产品的流程图和 /或方框图来描述的。 应理解可由计算机程序指令实现流程 图和 /或方框图中的每一流程和 /或方框、以及流程图和 /或方框图中的流程和 /或方框的结合。 可提供这些计算机程序指令到通用计算机、 专用计算机、 嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器, 使得 在流程图一个流程或多个流程和 /或方框图一个方框或多个方框中指定的功 能的装置。  The present invention has been described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (system), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flowchart and/or block diagrams, and combinations of flow and / or blocks in the flowcharts and / or block diagrams can be implemented by computer program instructions. These computer program instructions can be provided to a general purpose computer, a special purpose computer, an embedded processor or other programmable data processing device processor to produce a machine such that a flow or a block diagram of a flow or a block diagram or A device that has multiple functions specified in the box.

这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理 设备以特定方式工作的计算机可读存储器中, 使得存储在该计算机可读存 储器中的指令产生包括指令装置的制造品, 该指令装置实现在流程图一个 流程或多个流程和 /或方框图一个方框或多个方框中指定的功能。 These computer program instructions can also be stored in a bootable computer or other programmable data processing The apparatus is readable in a computer readable memory in a particular manner, such that instructions stored in the computer readable memory produce an article of manufacture comprising an instruction device implemented in one or more flows and/or block diagrams of the flowchart The function specified in the box or in multiple boxes.

这些计算机程序指令也可装载到计算机或其他可编程数据处理设备 上, 使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机 实现的处理, 从而在计算机或其他可编程设备上执行的指令提供用于实现 在流程图一个流程或多个流程和 /或方框图一个方框或多个方框中指定的功 能的步骤。  These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device. The instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.

以上内容是结合具体的实施方式对本发明所作的进一步详细说明, 不 能认定本发明的具体实施只局限于这些说明。 对于本发明所属技术领域的 普通技术人员来说, 在不脱离本发明构思的前提下, 还可以做出若干简单 推演或替换, 都应当视为属于本发明的保护范围。 工业实用性 本发明实施例提供的支付方法、 移动终端及用户识别卡、 计算机存储 介质, 将支付账号信息及对应的支付密钥预先存入用户识别卡的安全元件 芯片中; 支付时, 根据用户输入的支付账号信息从用户识别卡的安全元件 芯片中获取对应的支付密钥, 然后根据获取的支付密钥完成支付。 由于本 发明实施例将支付密钥存储在用户识别卡的安全元件芯片中, 可有效阻断 恶意软件的访问, 提高移动支付的安全性; 且该方案的实现不需要额外的 加密芯片, 不增加硬件成本; 同时, 如果移动终端遗失, 通过在运营商挂 失用户识别卡即可阻断其他用户获取支付密钥。 另外, 本发明实施例将明 文支付密码和支付密钥通过密钥加密成密文与金融服务器交互; 就算明文 密码被恶意软件截获, 也不会被盗刷, 可进一步提升支付的安全性。  The above is a further detailed description of the present invention in connection with the specific embodiments, and the specific embodiments of the present invention are not limited to the description. It is to be understood by those skilled in the art that the present invention may be practiced without departing from the spirit and scope of the invention. Industrial Applicability The payment method, the mobile terminal, the user identification card, and the computer storage medium provided by the embodiments of the present invention deposit the payment account information and the corresponding payment key into the secure component chip of the user identification card in advance; The input payment account information is obtained from the secure element chip of the user identification card, and then the payment is completed according to the obtained payment key. Since the payment key is stored in the secure component chip of the user identification card, the access of the malware can be effectively blocked, and the security of the mobile payment is improved; and the implementation of the solution does not require an additional encryption chip, and does not increase. Hardware cost; At the same time, if the mobile terminal is lost, other users can be blocked from obtaining the payment key by reporting the loss of the user identification card at the operator. In addition, the embodiment of the present invention encrypts the plaintext payment password and the payment key into a ciphertext and exchanges with the financial server; even if the plaintext password is intercepted by the malware, it will not be stolen, which can further improve the security of the payment.

Claims

权利要求书 Claim 1、 一种支付方法, 应用于移动终端, 其中, 包括:  A payment method, applied to a mobile terminal, wherein: 将支付账号信息及相对应的支付密钥存入用户识别卡的安全元件芯片 中;  Depositing the account information and the corresponding payment key into the secure component chip of the subscriber identity card; 检测到支付操作时, 根据用户输入的支付账号信息从所述用户识别卡 的安全元件芯片中获取对应的支付密钥。  When the payment operation is detected, the corresponding payment key is obtained from the secure element chip of the user identification card according to the payment account information input by the user. 2、 如权利要求 1所述的支付方法, 其中, 所述检测到支付操作时, 还 包括:  2. The payment method according to claim 1, wherein, when the detecting operation is detected, the method further comprises: 获取用户输入的明文支付密码;  Obtain the plaintext payment password entered by the user; 所述获取安全元件芯片中支付密钥后, 还包括:  After obtaining the payment key in the secure element chip, the method further includes: 将所述明文支付密码和获取的所述支付密钥加密成密文发送给网络侧 进行支付认证。  The plaintext payment password and the obtained payment key are encrypted into a ciphertext and sent to the network side for payment authentication. 3、 一种支付方法, 应用于用户识别卡, 其中, 包括:  3. A payment method applied to a user identification card, wherein: 将支付账号信息及相对应的支付密钥存入安全元件芯片中;  Depositing the account information and the corresponding payment key into the secure element chip; 当接收到移动终端的支付密钥获取请求时, 从所述安全元件芯片中获 取对应的支付密钥后, 发送给移动终端。  When receiving the payment key acquisition request of the mobile terminal, the corresponding payment key is obtained from the secure element chip and then transmitted to the mobile terminal. 4、 如权利要求 3所述的支付方法, 其中, 还包括:  4. The payment method according to claim 3, further comprising: 当接收到移动终端的支付密钥获取请求时, 对移动终端的访问权限进 行鉴权; 鉴权通过后, 从所述安全元件芯片中获取对应的支付密钥后, 发 送给移动终端。  When receiving the payment key acquisition request of the mobile terminal, the access authority of the mobile terminal is authenticated; after the authentication is passed, the corresponding payment key is obtained from the secure component chip, and then sent to the mobile terminal. 5、 如权利要求 3或 4所述的支付方法, 其中, 所述用户识别卡为单线 协议用户识别卡。  The payment method according to claim 3 or 4, wherein the subscriber identity card is a one-line protocol subscriber identity card. 6、 一种移动终端, 其中, 包括: 账户管理模块、 第一信息获取模块; 所述账户管理模块配置为将支付账号信息及对应的支付密钥存入用户 识别卡的安全元件芯片中; 所述信息获取模块配置为在检测到支付操作时, 根据用户输入的支付 账号信息从所述用户识别卡的安全元件芯片中获取对应的支付密钥。 A mobile terminal, comprising: an account management module, a first information acquisition module; the account management module configured to store payment account information and a corresponding payment key in a secure component chip of the user identification card; The information obtaining module is configured to acquire a corresponding payment key from the secure element chip of the user identification card according to the payment account information input by the user when the payment operation is detected. 7、 如权利要求 6所述的支付终端, 其中, 还包括第二信息获取模块和 支付处理模块;  7. The payment terminal according to claim 6, further comprising a second information acquisition module and a payment processing module; 所述第二信息获取模块配置为在检测到支付时, 获取用户输入的明文 支付密码;  The second information acquiring module is configured to acquire a plaintext payment password input by the user when the payment is detected; 所述支付处理模块配置为将所述明文支付密码和获取的所述支付密钥 加密成密文发送给网络侧进行支付认证。  The payment processing module is configured to encrypt the plaintext payment password and the obtained payment key into a ciphertext and send the payment to the network side for payment authentication. 8、 一种用户识别卡, 其中, 包括存储处理模块和发送模块; 所述存储处理模块, 配置为将支付账号信息以及对应的支付密钥存储 在所述用户识别卡的安全元件芯片中;  A user identification card, comprising: a storage processing module and a sending module; the storage processing module configured to store payment account information and a corresponding payment key in a secure component chip of the user identification card; 所述发送模块, 配置为在收到移动终端的支付密钥获取请求时, 从所 述安全元件芯片中获取对应的支付密钥后, 发送给移动终端。  The sending module is configured to, after receiving the payment key acquisition request of the mobile terminal, obtain a corresponding payment key from the secure element chip, and then send the corresponding payment key to the mobile terminal. 9、 如权利要求 8所述的用户识别卡, 其中, 还包括鉴权模块, 配置为 在接收到移动终端的支付密钥获取请求时, 对移动终端的访问权限进行鉴 权。  9. The subscriber identity card of claim 8, further comprising an authentication module configured to authenticate the access rights of the mobile terminal upon receiving the payment key acquisition request of the mobile terminal. 10、 如权利要求 8或 9所述的用户识别卡, 其中, 所述用户识别卡为 单线协议用户识别卡。  The subscriber identity card according to claim 8 or 9, wherein the subscriber identity card is a one-line agreement subscriber identity card. 11、 一种计算机存储介质, 其中存储有计算机可执行指令, 所述计算 机可执行指令用于执行所述权利要求 1或 2、权利要求 3至 5任一项所述的 方法。  A computer storage medium storing computer executable instructions, the computer executable instructions for performing the method of claim 1 or 2, any one of claims 3 to 5.
PCT/CN2014/081630 2014-05-19 2014-07-04 Payment method, mobile terminal and subscriber identity module, and computer storage medium Ceased WO2015176364A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201410211182.7A CN105096116A (en) 2014-05-19 2014-05-19 Payment method, mobile terminal and user identification card
CN201410211182.7 2014-05-19

Publications (1)

Publication Number Publication Date
WO2015176364A1 true WO2015176364A1 (en) 2015-11-26

Family

ID=54553280

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2014/081630 Ceased WO2015176364A1 (en) 2014-05-19 2014-07-04 Payment method, mobile terminal and subscriber identity module, and computer storage medium

Country Status (2)

Country Link
CN (1) CN105096116A (en)
WO (1) WO2015176364A1 (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12501267B2 (en) 2022-07-08 2025-12-16 T-Mobile Usa, Inc. Secure messaging framework for preventing SIM swap fraud

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106330888B (en) * 2016-08-19 2019-08-27 中国银行股份有限公司 The method and device of payment safety in a kind of guarantee the Internet line

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101216915A (en) * 2008-01-21 2008-07-09 深圳市路通网络技术有限公司 A secured mobile payment method
CN101261708A (en) * 2008-04-21 2008-09-10 中兴通讯股份有限公司 Online payment method and system based on the mobile terminal supporting eNFC function
EP2216742A1 (en) * 2009-02-09 2010-08-11 C. Patrick Reich Mobile payment method and devices
CN103679444A (en) * 2012-09-26 2014-03-26 浙江省公众信息产业有限公司 System and method for realizing mobile phone payment by using smart mobile phone card

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101252729A (en) * 2008-04-10 2008-08-27 上海柯源软件有限公司 Method for enhancing payment chip functions with SIM card
CN102194175A (en) * 2010-03-16 2011-09-21 中国移动通信集团公司 Safety payment method and safety payment terminal
CN103093353A (en) * 2011-10-31 2013-05-08 深圳光启高等理工研究院 Account security protection method and device based on radio frequency identification (RFID)-subscriber identity module (SIM) card
CN102737308B (en) * 2012-06-08 2015-08-12 中兴通讯股份有限公司 The method and system of a kind of mobile terminal and inquiry smart card information thereof
CN103164738B (en) * 2013-02-06 2015-09-30 厦门盛华电子科技有限公司 A kind of cellphone subscriber's identification card based on the certification of mobile payment multi-channel digital

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101216915A (en) * 2008-01-21 2008-07-09 深圳市路通网络技术有限公司 A secured mobile payment method
CN101261708A (en) * 2008-04-21 2008-09-10 中兴通讯股份有限公司 Online payment method and system based on the mobile terminal supporting eNFC function
EP2216742A1 (en) * 2009-02-09 2010-08-11 C. Patrick Reich Mobile payment method and devices
CN103679444A (en) * 2012-09-26 2014-03-26 浙江省公众信息产业有限公司 System and method for realizing mobile phone payment by using smart mobile phone card

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US12501267B2 (en) 2022-07-08 2025-12-16 T-Mobile Usa, Inc. Secure messaging framework for preventing SIM swap fraud

Also Published As

Publication number Publication date
CN105096116A (en) 2015-11-25

Similar Documents

Publication Publication Date Title
US20210367795A1 (en) Identity-Linked Authentication Through A User Certificate System
US11501294B2 (en) Method and device for providing and obtaining graphic code information, and terminal
CN110299996B (en) Authentication method, equipment and system
EP3100171B1 (en) Client authentication using social relationship data
US9780950B1 (en) Authentication of PKI credential by use of a one time password and pin
US10445487B2 (en) Methods and apparatus for authentication of joint account login
US20190173873A1 (en) Identity verification document request handling utilizing a user certificate system and user identity document repository
US20170208049A1 (en) Key agreement method and device for verification information
US20120254960A1 (en) Connecting mobile devices, internet-connected vehicles, and cloud services
US20140281493A1 (en) Provisioning sensitive data into third party
TWI632798B (en) Server, mobile terminal, and network real-name authentication system and method
CN109039652B (en) Digital certificate generation and application method
US11146554B2 (en) System, method, and apparatus for secure identity authentication
WO2015180689A1 (en) Method and apparatus for acquiring verification information
CN105516066B (en) A method and device for identifying the existence of a middleman
WO2017050147A1 (en) Information registration and authentication method and device
CN110838919B (en) Communication method, storage method, operation method and device
CN108768941B (en) Method and device for remotely unlocking safety equipment
CN108900595B (en) Method, apparatus, device and computing medium for accessing cloud storage server data
CN104994498A (en) Method and system for interaction between terminal application and mobile phone card application
WO2015176364A1 (en) Payment method, mobile terminal and subscriber identity module, and computer storage medium
US20250379724A1 (en) Password hardening for elliptic curve integrated encryption schemes
Oliveira Dynamic QR codes for Ticketing Systems
US20170012973A1 (en) Trust framework for secured digital interactions between entities
HK1235559B (en) Information registration and authentication method and device

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 14892620

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 14892620

Country of ref document: EP

Kind code of ref document: A1