CN105956858B - Payment method and electronic equipment - Google Patents
Payment method and electronic equipment Download PDFInfo
- Publication number
- CN105956858B CN105956858B CN201610286544.8A CN201610286544A CN105956858B CN 105956858 B CN105956858 B CN 105956858B CN 201610286544 A CN201610286544 A CN 201610286544A CN 105956858 B CN105956858 B CN 105956858B
- Authority
- CN
- China
- Prior art keywords
- current
- payment
- information
- identifier
- matched
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/38—Payment protocols; Details thereof
- G06Q20/40—Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
- G06Q20/401—Transaction verification
- G06Q20/4014—Identity check for transactions
- G06Q20/40145—Biometric identity checks
Landscapes
- Business, Economics & Management (AREA)
- Engineering & Computer Science (AREA)
- Accounting & Taxation (AREA)
- Computer Security & Cryptography (AREA)
- Finance (AREA)
- Strategic Management (AREA)
- Physics & Mathematics (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Theoretical Computer Science (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)
Abstract
The invention discloses a payment method and electronic equipment, which are used for detecting whether a payment hardware environment in the electronic equipment is safe or not when a network payment instruction corresponding to a network transaction is obtained, obtaining current biological characteristic information of a user when the payment hardware environment is safe, and determining whether the network payment instruction is executed or not by confirming whether the current biological characteristic information is matched with a pre-stored biological characteristic information template or not. Therefore, the technical scheme in the embodiment of the application can detect whether the payment hardware environment is safe or not, so that the technical effect of further improving the safety of the financial account of the user by detecting whether the hardware environment is safe or not is achieved.
Description
Technical Field
The present invention relates to the field of electronic technologies, and in particular, to a payment method and an electronic device.
Background
At present, the living style of online shopping is increasingly accepted by the wide range of users and is applied to a wide range, and the demand of adopting network payment is increased. In the process of adopting the network payment, security holes of various application programs form security threats to the financial accounts of the users to a greater extent, and various economic loss events caused by the network payment are layered endlessly.
In the prior art, although a digital security certificate or a U shield service of a financial institution can be used to improve the security guarantee of a user in the network payment process. However, the approach of using digital certificates tends to make the operating system browser incompatible with the digital certificates. Moreover, the adoption of the U shield mode can cause the situation that different U shields need to be accessed when payment is carried out through accounts provided by different financial institutions, and the payment efficiency is seriously influenced.
Therefore, the technical problem that the financial account of the user is unsafe due to application program bugs exists in the prior art in the process of carrying out financial payment through a network.
Disclosure of Invention
The application provides a payment method and electronic equipment, which are used for solving the technical problem that in the prior art, in the process of financial payment through a network, a financial account of a user is easy to be unsafe due to application program bugs.
One aspect of the present application provides a payment method applied to an electronic device, including:
obtaining a network payment instruction corresponding to a network transaction;
detecting whether the payment hardware environment in the electronic equipment is safe or not to obtain a detection result;
when the detection result is yes, obtaining the current biological characteristic information of the user;
matching the current biological characteristic information with a biological characteristic information template prestored in the electronic equipment to obtain a matching result;
and when the matching result is yes, executing the network payment instruction to complete the network transaction.
Optionally, the detecting whether the payment hardware environment in the electronic device is safe or not to obtain a detection result includes:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current system identifier corresponding to a basic input/output system in the electronic equipment;
detecting whether the current chip identification is matched with a first chip identification prestored in a security engine in the electronic equipment or not and whether the current system identification is matched with a first system identification prestored in the security engine or not, and obtaining a detection result;
and when the current chip identification is matched with the first chip identification and the current system identification is matched with the first system identification, determining that the detection result is yes.
Optionally, the detecting whether the payment hardware environment in the electronic device is safe or not to obtain a detection result includes:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current engine identifier corresponding to a security engine in the electronic equipment;
detecting whether the current chip identification is matched with a second chip identification prestored in a basic input and output system in the electronic equipment and whether the current engine identification is matched with a first engine identification prestored in the basic input and output system, and obtaining the detection result;
and when the current chip identification is matched with the second chip identification and the current engine identification is matched with the first engine identification, determining that the detection result is yes.
Optionally, after the detecting whether the payment hardware environment in the electronic device is safe or not is performed, and the detection result is obtained, the method further includes:
and when the detection result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
Optionally, the matching the current biometric information with a biometric information template pre-stored in the electronic device to obtain a matching result includes:
matching the current fingerprint information with a fingerprint information template prestored in a security engine in the electronic equipment to obtain a matching result;
and when the current fingerprint information is matched with the fingerprint information template, confirming that the matching result is yes.
Optionally, after the matching the current fingerprint information with a fingerprint information template pre-stored in a security engine in the electronic device to obtain a matching result, the method further includes:
and when the matching result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
Optionally, before the obtaining network payment instructions corresponding to a network transaction, the method further comprises:
and acquiring the biological characteristic information template.
Optionally, the acquiring the biometric information template includes:
determining first token information corresponding to first account information of a first user;
acquiring to-be-stored biological characteristic information of the first user;
and processing the first token information and the to-be-stored biological characteristic information to obtain first preset biological characteristic information corresponding to the first token information, wherein the first preset biological characteristic information is the biological characteristic information template.
Optionally, the encrypting the first token information and the biometric information to be stored to obtain first preset biometric information corresponding to the first token information includes:
and encrypting the first token information and the fingerprint information to be stored through a security engine in the electronic equipment to obtain the first preset biological characteristic information comprising the encrypted first token information and the encrypted fingerprint information to be stored.
On the other hand, an embodiment of the present application further provides an electronic device, including:
the payment device is used for obtaining a network payment instruction corresponding to a network transaction, detecting whether a payment hardware environment is safe or not, obtaining a detection result, matching the current biological characteristic information obtained by the authentication device with a biological characteristic information template prestored in the payment device to obtain a matching result, and executing the network payment instruction to finish the network transaction when the matching result is yes;
and the authentication device is connected with the payment device and used for obtaining the current biological characteristic information of the user when the detection result is yes.
Optionally, the payment device comprises:
the security engine is used for acquiring a current chip identification in the authentication equipment and acquiring a current system identification corresponding to a basic input and output system in the payment equipment, detecting whether the current chip identification is matched with a first chip identification prestored in the security engine, and whether the current system identification is matched with a first system identification prestored in the security engine, and acquiring a detection result, wherein when the current chip identification is matched with the first chip identification and the current system identification is matched with the first system identification, the detection result is confirmed to be yes.
Optionally, the payment device comprises:
the basic input and output system is used for acquiring a current chip identifier in the authentication device, acquiring a current engine identifier corresponding to a security engine in the payment device, detecting whether the current chip identifier is matched with a second chip identifier prestored in the basic input and output system, and whether the current engine identifier is matched with a first engine identifier prestored in the basic input and output system, and acquiring the detection result, wherein when the current chip identifier is matched with the second chip identifier and the current engine identifier is matched with the first engine identifier, the detection result is determined to be yes.
Optionally, the payment device is further configured to generate and execute an interruption payment instruction for interrupting the network transaction when the detection result is negative.
Optionally, the payment device is configured to match the current fingerprint information with a fingerprint information template pre-stored in a security engine in the payment device to obtain a matching result, where if the current fingerprint information matches the fingerprint information template, it is determined that the matching result is yes.
Optionally, the payment device is configured to generate and execute an interruption payment instruction for interrupting the network transaction when the matching result is negative.
Optionally, the payment device is configured to obtain the biometric information template.
Optionally, the payment device is configured to determine first token information corresponding to first account information of a first user, acquire biometric information to be stored of the first user through the authentication device, process the first token information and the biometric information to be stored, and acquire first preset biometric information corresponding to the first token information, where the first preset biometric information is the biometric information template.
Optionally, the payment device is configured to encrypt the first token information and the to-be-stored biometric information through a security engine in the payment device, so as to obtain the first preset biometric information including the encrypted first token information and the encrypted to-be-stored fingerprint information.
One or more technical solutions provided in the embodiments of the present application have at least the following technical effects or advantages:
according to the technical scheme, when the network payment instruction corresponding to the network transaction is obtained, whether the payment hardware environment in the electronic equipment is safe or not is detected, the current biological characteristic information of the user is obtained only when the payment hardware environment is safe, and whether the network payment instruction is executed or not is determined by confirming whether the current biological characteristic information is matched with a pre-stored biological characteristic information template or not. Therefore, the technical scheme in the embodiment of the application can detect whether the payment hardware environment is safe or not, so that the technical effect of further improving the safety of the financial account of the user by detecting whether the hardware environment is safe or not is achieved.
The embodiment of the application at least has the following technical effects or advantages:
further, according to the technical scheme in the embodiment of the application, whether a chip in hardware equipment relied on when the network payment instruction is executed is a preset chip pre-stored in the non-modifiable security engine or not and whether a currently used basic input/output system is a preset basic input/output system pre-stored in the non-modifiable security engine or not can be detected, so that the technical effects of ensuring the safety and reliability of the electronic equipment when the network payment instruction is executed are achieved.
Furthermore, the technical scheme in the embodiment of the application can further achieve mutual authentication of a ring among a chip, a basic input output system and a security engine in the electronic device, thereby further improving the security and reliability of network payment achieved through the electronic device.
Further, in the technical scheme in the embodiment of the application, the unique characteristic corresponding to the user is used as the biological characteristic information, and the biological characteristic information of the current user is compared with the pre-stored biological characteristic information, so that whether the user currently performing the network transaction operation is a predetermined user is determined, and whether the current network payment instruction is executed is further determined, and therefore, the technical effect of further improving the network payment safety is achieved.
Furthermore, the technical scheme in the embodiment of the application can also use a manner of binding the biometric information with the token information corresponding to the account as the biometric information template corresponding to the specific account, so that one piece of biometric information can be used corresponding to a plurality of accounts, and therefore, the technical effect of improving the utilization rate of the biometric information is achieved.
Further, according to the technical scheme in the embodiment of the application, when the system binds the token information of the account with the biometric information corresponding to the account, the bound data, that is, the biometric information template, may also be encrypted and stored in the security engine. Therefore, the cracking difficulty and the modification and compiling difficulty of the biological characteristic information template by a hacker can be further improved, and the technical effect of further improving the safety of the electronic equipment in the network payment process is achieved.
Drawings
Fig. 1 is a flowchart of a payment method according to an embodiment of the present invention;
fig. 2 is a structural diagram of an electronic device according to an embodiment of the present invention.
Detailed Description
The application provides a payment method and electronic equipment, which are used for solving the technical problem that in the prior art, in the process of financial payment through a network, a financial account of a user is easy to be unsafe due to application program bugs.
In order to solve the technical problems, the general idea of the embodiment of the application is as follows:
according to the technical scheme, when the network payment instruction corresponding to the network transaction is obtained, whether the payment hardware environment in the electronic equipment is safe or not is detected, the current biological characteristic information of the user is obtained only when the payment hardware environment is safe, and whether the network payment instruction is executed or not is determined by confirming whether the current biological characteristic information is matched with a pre-stored biological characteristic information template or not. Therefore, the technical scheme in the embodiment of the application can detect whether the payment hardware environment is safe or not, so that the technical effect of further improving the safety of the financial account of the user by detecting whether the hardware environment is safe or not is achieved.
The technical solutions of the present application are described in detail below with reference to the drawings and specific embodiments, and it should be understood that the specific features in the embodiments and examples of the present application are detailed descriptions of the technical solutions of the present application, and are not limitations of the technical solutions of the present application, and the technical features in the embodiments and examples of the present application may be combined with each other without conflict.
The term "and/or" herein is merely an association describing an associated object, meaning that three relationships may exist, e.g., a and/or B, may mean: a exists alone, A and B exist simultaneously, and B exists alone. In addition, the character "/" herein generally indicates that the former and latter related objects are in an "or" relationship.
Example one
Referring to fig. 1, an embodiment of the present application provides a payment method applied in an electronic device, including:
step 101: network payment instructions corresponding to a network transaction are obtained.
The electronic device may be a computer, a mobile phone, a tablet computer, a consumption payment terminal, and the like, and any device that can be used for making a data fund payment may be used as the electronic device.
The network payment instruction may be a network transfer instruction corresponding to a certain fund account issued by an application program on the electronic device, a confirmation transfer instruction of a set amount issued by an application program on another electronic device on the other side of the network, and the like. Any instruction generated or forwarded by the electronic device to pay money may be used as the network payment instruction.
Step 102: and detecting whether the payment hardware environment in the electronic equipment is safe or not to obtain a detection result.
The payment hardware environment refers to one or more hardware devices that need to be relied on when the network payment instruction is executed, for example, the payment hardware environment may refer to each functional device in the electronic device when the network payment instruction is executed, for example, if the electronic device is a computer, the payment hardware environment may include each functional hardware device such as a motherboard, a video card, a network card, a display and the like of the computer.
The payment hardware environment may also refer to a hardware device that transmits payment auxiliary information and is connected to the electronic device when executing the network payment instruction, for example, if the electronic device is a consumption payment terminal, the payment hardware environment may include a bank card receiving device, a fingerprint detection device, a password input device, and the like, which are connected to the consumption payment terminal.
In the execution process of this step, it may be determined whether the payment hardware environment is safe by detecting whether each functional device in the electronic device is a predetermined device, or it may be determined whether the payment hardware environment is safe by detecting whether a hardware facility connected to the electronic device is a predetermined device. Of course, it may also be determined whether the payment hardware environment is safe by detecting whether the operation state of the hardware device currently associated with the electronic device is normal, and the like. This step may be performed as long as it is a method to determine whether the hardware facilities associated with the electronic device or with the network payment instructions are secure and trusted.
Step 103: when the detection result is yes, the current biological characteristic information of the user is obtained
The current biometric information may refer to fingerprint information, iris information, facial feature information, etc. of the user, and biometric information for confirming the identity of the user.
When the network payment instruction is executed, in order to confirm whether the user currently performing the network payment operation is the predetermined user, the current biological characteristic information of the user can be acquired when the network payment instruction is executed, and whether the user currently performing the operation is the predetermined user is judged based on the current biological characteristic information, so that the safety of network transaction can be improved, and the fund safety of the user can be guaranteed.
In the execution process of the step, when the payment hardware environment depended on when the network payment instruction is executed is checked and determined to be safe, the biological characteristic information of the user currently performing the network payment operation can be obtained.
Step 104: matching the current biological characteristic information with a biological characteristic information template prestored in the electronic equipment to obtain a matching result
Step 105: and when the matching result is yes, executing the network payment instruction to complete the network transaction.
That is to say, in the technical solution of the present application, only when it is confirmed that the current payment hardware environment is safe, the biometric information of the user who performs the network payment operation is further acquired, and when the biometric information matches with the pre-stored biometric information template, the network payment instruction can be executed, and the network transaction is completed.
Even in the network transaction process, a hacker acquires payment information such as a payment password of a user due to a bug of a network payment program, and as long as the payment hardware environment of the hacker is detected to be inconsistent with the preset hardware environment in the payment process, the network payment instruction cannot be executed.
Therefore, according to the technical scheme in the embodiment of the application, when the network payment instruction corresponding to the network transaction is obtained, whether the payment hardware environment in the electronic equipment is safe is detected, the current biological characteristic information of the user is obtained only when the payment hardware environment is safe, and whether the network payment instruction is executed or not is determined by confirming whether the current biological characteristic information is matched with the pre-stored biological characteristic information template or not. Therefore, the technical scheme in the embodiment of the application can detect whether the payment hardware environment is safe or not, so that the technical effect of further improving the safety of the financial account of the user by detecting whether the hardware environment is safe or not is achieved.
Optionally, the detecting whether the payment hardware environment in the electronic device is safe or not to obtain a detection result includes:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current system identifier corresponding to a basic input/output system in the electronic equipment;
detecting whether the current chip identification is matched with a first chip identification prestored in a security engine in the electronic equipment or not and whether the current system identification is matched with a first system identification prestored in the security engine or not, and obtaining a detection result;
and when the current chip identification is matched with the first chip identification and the current system identification is matched with the first system identification, determining that the detection result is yes.
The current authentication chip may be a chip in the electronic device, or may be a chip of a device connected to the electronic device and used for inputting auxiliary information when executing a network payment instruction. For example, when the electronic device is a computer, the current authentication chip may be a CPU chip in the computer, and the current authentication chip may also be a processing chip of a fingerprint authentication machine connected to the electronic device. The device can be set automatically according to requirements in the actual operation process.
Similarly, the bios may be a bios in the electronic device, or may be a bios of a device connected to the electronic device and configured to input auxiliary information when executing a network payment instruction. For example, when the electronic device is a computer, the BIOS may be a BIOS system of the computer, and the BIOS may also be a BIOS system of another computer connected to the electronic device. Of course, the BIOS system of the electronic device may be preferred in the actual operation process.
The security engine may be a non-modifiable engine system stored in the electronic device, whereby the security of the electronic device may be further improved.
Therefore, the technical scheme in the embodiment of the application can achieve the technical effect of ensuring the safety and reliability of the electronic device when executing the network payment instruction by detecting whether a chip in the hardware device relied on when executing the network payment instruction is a preset chip pre-stored in the non-modifiable security engine and detecting whether a currently used basic input/output system is a preset basic input/output system pre-stored in the non-modifiable security engine.
Further optionally, the detecting whether the payment hardware environment in the electronic device is safe or not to obtain a detection result includes:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current engine identifier corresponding to a security engine in the electronic equipment;
detecting whether the current chip identification is matched with a second chip identification prestored in a basic input and output system in the electronic equipment and whether the current engine identification is matched with a first engine identification prestored in the basic input and output system, and obtaining the detection result;
and when the current chip identification is matched with the second chip identification and the current engine identification is matched with the first engine identification, determining that the detection result is yes.
That is to say, in the technical scheme of this application embodiment, not only need with chip identification in the electronic equipment compares with the chip identification of prestoring in the security engine, still need with chip identification in the electronic equipment compares with the chip identification of prestoring in the basic input/output system of electronic equipment. Similarly, not only the basic input/output system identifier of the electronic device needs to be compared with the pre-stored basic input/output system identifier pre-stored in the security engine, but also the identifier of the security engine needs to be compared with the pre-stored security engine identifier pre-stored in the basic input/output system of the electronic device.
Therefore, the technical scheme in the embodiment of the application can further achieve mutual authentication of the ring among the chip, the basic input and output system and the security engine in the electronic device, and has the technical effect of further improving the security and reliability of network payment achieved through the electronic device.
Optionally, after the detecting whether the payment hardware environment in the electronic device is safe or not is performed, and the detection result is obtained, the method further includes:
and when the detection result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
That is, the network transaction is interrupted when the system detects that the payment hardware environment of the electronic device is not secure, thereby securing the user's funding account.
Optionally, the matching the current biometric information with a biometric information template pre-stored in the electronic device to obtain a matching result includes:
matching the current fingerprint information with a fingerprint information template prestored in a security engine in the electronic equipment to obtain a matching result;
and when the current fingerprint information is matched with the fingerprint information template, confirming that the matching result is yes.
That is to say, in the technical solution of the embodiment of the present application, a fingerprint of a user may be acquired as the biometric information. Of course, in the actual operation process, it is also possible to use, as the biometric information, iris information, facial feature information, and the like of the user having uniqueness corresponding to the user.
Optionally, after the matching the current fingerprint information with a fingerprint information template pre-stored in a security engine in the electronic device to obtain a matching result, the method further includes:
and when the matching result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
That is, when the biometric information of the current user does not match the preset biometric information, the system will immediately interrupt the current network transaction operation.
Therefore, according to the technical scheme in the embodiment of the application, the characteristic with the uniqueness corresponding to the user is used as the biological characteristic information, and the biological characteristic information of the current user is compared with the pre-stored biological characteristic information, so that whether the user currently performing the network transaction operation is a predetermined user is determined, and whether the current network payment instruction is executed is further determined, and therefore, the technical effect of further improving the network payment safety is achieved.
Optionally, before the obtaining network payment instructions corresponding to a network transaction, the method further comprises:
and acquiring the biological characteristic information template.
Further optionally, the acquiring the biometric information template includes:
determining first token information corresponding to first account information of a first user;
acquiring to-be-stored biological characteristic information of the first user;
and processing the first token information and the to-be-stored biological characteristic information to obtain first preset biological characteristic information corresponding to the first token information, wherein the first preset biological characteristic information is the biological characteristic information template.
The first token information may refer to identification information corresponding to a specific bank account, and when a user inputs biometric information such as fingerprint information and iris information of the user in advance to be used as a matching template, the biometric information may be bound with the first token information, so that the first token information may be used as a biometric information template when the user performs network transaction through the specific bank account.
For example, when the user a needs to input fingerprint template information into the business bank account of the user a, the fingerprint information of the right index finger of the user a can be input, and the fingerprint information of the right index finger and the token information of the business bank account of the user a are encrypted and bound, and then the system stores the data obtained by encrypting and binding the fingerprint information of the right index finger and the token information into the security engine. When the user carries out network transaction through the bank account of the industrial and commercial enterprises, the right-hand index finger fingerprint corresponding to the token information of the bank account of the industrial and commercial enterprises can be extracted from the security engine to be used as a matching template, and whether the network payment instruction carried out through the bank account of the industrial and commercial enterprises is executed or not is determined by detecting whether the fingerprint input by the current user is matched with the right-hand index finger fingerprint or not.
Of course, in actual operation, one biometric information template may be cryptographically bound with token information of multiple accounts.
Therefore, the technical scheme in the embodiment of the application can also use the binding mode of the biological characteristic information and the token information corresponding to the account as the biological characteristic information template corresponding to the specific account, so that the use of one piece of biological characteristic information corresponding to a plurality of accounts can be realized, and the technical effect of improving the utilization rate of the biological characteristic information is achieved.
Further optionally, the processing the first token information and the biometric information to be stored to obtain first preset biometric information corresponding to the first token information includes:
and encrypting the first token information and the fingerprint information to be stored through a security engine in the electronic equipment to obtain the first preset biological characteristic information comprising the encrypted first token information and the encrypted fingerprint information to be stored.
That is, when the system binds the token information of the account with the biometric information corresponding to the account, the bound data, that is, the biometric information template, may be encrypted and stored in the security engine. Therefore, the cracking difficulty and the modification and compiling difficulty of the biological characteristic information template by a hacker can be further improved, and the technical effect of further improving the safety of the electronic equipment in the network payment process is achieved.
Example two
Referring to fig. 2, an embodiment of the present application provides an electronic device, including:
the payment device 201 is used for obtaining a network payment instruction corresponding to a network transaction, detecting whether a payment hardware environment is safe or not, obtaining a detection result, matching current biological characteristic information obtained through an authentication device with a biological characteristic information template prestored in the payment device to obtain a matching result, and executing the network payment instruction to complete the network transaction when the matching result is yes;
and the authentication device 202 is connected with the payment device and used for obtaining the current biological characteristic information of the user when the detection result is yes.
Specifically, the payment device 201 includes a processor, which is configured to execute the steps required by the payment device, and the processor may be a general-purpose Central Processing Unit (CPU), an Application Specific Integrated Circuit (ASIC), or one or more Integrated circuits for controlling the execution of the program.
Further, the electronic device may further include a memory, and the number of the memories may be one or more. The Memory may include a Read Only Memory (ROM), a Random Access Memory (RAM), and a disk Memory.
Optionally, the payment device 201 includes:
the security engine is used for acquiring a current chip identification in the authentication equipment and acquiring a current system identification corresponding to a basic input and output system in the payment equipment, detecting whether the current chip identification is matched with a first chip identification prestored in the security engine, and whether the current system identification is matched with a first system identification prestored in the security engine, and acquiring a detection result, wherein when the current chip identification is matched with the first chip identification and the current system identification is matched with the first system identification, the detection result is confirmed to be yes.
Optionally, the payment device 201 includes:
the basic input and output system is used for acquiring a current chip identifier in the authentication device, acquiring a current engine identifier corresponding to a security engine in the payment device, detecting whether the current chip identifier is matched with a second chip identifier prestored in the basic input and output system, and whether the current engine identifier is matched with a first engine identifier prestored in the basic input and output system, and acquiring the detection result, wherein when the current chip identifier is matched with the second chip identifier and the current engine identifier is matched with the first engine identifier, the detection result is determined to be yes.
Optionally, the payment device 201 is further configured to generate and execute an interruption payment instruction for interrupting the network transaction when the detection result is negative.
Optionally, the payment device 201 is configured to match the current fingerprint information with a fingerprint information template pre-stored in a security engine of the payment device to obtain a matching result, where if the current fingerprint information matches the fingerprint information template, it is determined that the matching result is yes.
Optionally, the payment device 201 is configured to generate and execute an interruption payment instruction for interrupting the network transaction when the matching result is negative.
Optionally, the payment device 201 is configured to obtain the biometric information template.
Optionally, the payment device 201 is configured to determine first token information corresponding to first account information of a first user, obtain biometric information to be stored of the first user through the authentication device, process the first token information and the biometric information to be stored, and obtain first preset biometric information corresponding to the first token information, where the first preset biometric information is the biometric information template.
Optionally, the payment device 201 is configured to encrypt the first token information and the to-be-stored biometric information by using a security engine in the payment device, so as to obtain the first preset biometric information including the encrypted first token information and the encrypted to-be-stored fingerprint information.
Various changes and specific examples in the payment method in the foregoing embodiment of fig. 1 are also applicable to the electronic device in this embodiment, and a person skilled in the art can clearly know the implementation method of the electronic device in this embodiment through the foregoing detailed description of the payment method, so for the brevity of the description, detailed descriptions are not provided here.
Therefore, according to the technical scheme in the embodiment of the application, when the network payment instruction corresponding to the network transaction is obtained, whether the payment hardware environment in the electronic equipment is safe is detected, the current biological characteristic information of the user is obtained only when the payment hardware environment is safe, and whether the network payment instruction is executed or not is determined by confirming whether the current biological characteristic information is matched with the pre-stored biological characteristic information template or not. Therefore, the technical scheme in the embodiment of the application can detect whether the payment hardware environment is safe or not, so that the technical effect of further improving the safety of the financial account of the user by detecting whether the hardware environment is safe or not is achieved.
The embodiment of the application at least has the following technical effects or advantages:
further, according to the technical scheme in the embodiment of the application, whether a chip in hardware equipment relied on when the network payment instruction is executed is a preset chip pre-stored in the non-modifiable security engine or not and whether a currently used basic input/output system is a preset basic input/output system pre-stored in the non-modifiable security engine or not can be detected, so that the technical effects of ensuring the safety and reliability of the electronic equipment when the network payment instruction is executed are achieved.
Furthermore, the technical scheme in the embodiment of the application can further achieve mutual authentication of a ring among a chip, a basic input output system and a security engine in the electronic device, thereby further improving the security and reliability of network payment achieved through the electronic device.
Further, in the technical scheme in the embodiment of the application, the unique characteristic corresponding to the user is used as the biological characteristic information, and the biological characteristic information of the current user is compared with the pre-stored biological characteristic information, so that whether the user currently performing the network transaction operation is a predetermined user is determined, and whether the current network payment instruction is executed is further determined, and therefore, the technical effect of further improving the network payment safety is achieved.
Furthermore, the technical scheme in the embodiment of the application can also use a manner of binding the biometric information with the token information corresponding to the account as the biometric information template corresponding to the specific account, so that one piece of biometric information can be used corresponding to a plurality of accounts, and therefore, the technical effect of improving the utilization rate of the biometric information is achieved.
Further, according to the technical scheme in the embodiment of the application, when the system binds the token information of the account with the biometric information corresponding to the account, the bound data, that is, the biometric information template, may also be encrypted and stored in the security engine. Therefore, the cracking difficulty and the modification and compiling difficulty of the biological characteristic information template by a hacker can be further improved, and the technical effect of further improving the safety of the electronic equipment in the network payment process is achieved.
As will be appreciated by one skilled in the art, embodiments of the present application may be provided as a method, system, or computer program product. Accordingly, the present application may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present application may take the form of a computer program product embodied on one or more computer-usable storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present application is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the application. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Specifically, the computer program instructions corresponding to a payment method in the embodiments of the present application may be stored on a storage medium such as an optical disc, a hard disc, a usb disk, or the like, and when the computer program instructions corresponding to a payment method in the storage medium are read or executed by an electronic device, the method includes the following steps:
obtaining a network payment instruction corresponding to a network transaction;
detecting whether the payment hardware environment in the electronic equipment is safe or not to obtain a detection result;
when the detection result is yes, obtaining the current biological characteristic information of the user;
matching the current biological characteristic information with a biological characteristic information template prestored in the electronic equipment to obtain a matching result;
and when the matching result is yes, executing the network payment instruction to complete the network transaction.
Optionally, the step of storing in the storage medium: detecting whether a payment hardware environment in the electronic device is safe, and when a computer program instruction corresponding to a detection result is obtained, the method specifically comprises the following steps:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current system identifier corresponding to a basic input/output system in the electronic equipment;
detecting whether the current chip identification is matched with a first chip identification prestored in a security engine in the electronic equipment or not and whether the current system identification is matched with a first system identification prestored in the security engine or not, and obtaining a detection result;
and when the current chip identification is matched with the first chip identification and the current system identification is matched with the first system identification, determining that the detection result is yes.
Optionally, the step of storing in the storage medium: detecting whether a payment hardware environment in the electronic device is safe, and when a computer program instruction corresponding to a detection result is obtained, the method specifically comprises the following steps:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current engine identifier corresponding to a security engine in the electronic equipment;
detecting whether the current chip identification is matched with a second chip identification prestored in a basic input and output system in the electronic equipment and whether the current engine identification is matched with a first engine identification prestored in the basic input and output system, and obtaining the detection result;
and when the current chip identification is matched with the second chip identification and the current engine identification is matched with the first engine identification, determining that the detection result is yes.
Optionally, after the detecting whether the payment hardware environment in the electronic device is secure and obtaining a detection result, the computer program instructions stored in the storage medium, when executed, further include the following steps:
and when the detection result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
Optionally, the step of storing in the storage medium: when the computer program instruction corresponding to the matching result obtained by matching the current biometric information with the biometric information template prestored in the electronic device is executed, the method specifically includes the following steps:
matching the current fingerprint information with a fingerprint information template prestored in a security engine in the electronic equipment to obtain a matching result;
and when the current fingerprint information is matched with the fingerprint information template, confirming that the matching result is yes.
Optionally, after the current fingerprint information is matched with a fingerprint information template pre-stored in a security engine in the electronic device to obtain a matching result, when executed, the computer program instructions stored in the storage medium further include the following steps:
and when the matching result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
Optionally, before the obtaining the network payment instruction corresponding to a network transaction, the computer program instructions stored in the storage medium, when executed, further include the following steps:
and acquiring the biological characteristic information template.
Optionally, the step of storing in the storage medium: when executed, the computer program instruction for acquiring the biological characteristic information template specifically includes the following steps:
determining first token information corresponding to first account information of a first user;
acquiring to-be-stored biological characteristic information of the first user;
and processing the first token information and the to-be-stored biological characteristic information to obtain first preset biological characteristic information corresponding to the first token information, wherein the first preset biological characteristic information is the biological characteristic information template.
Optionally, the step of storing in the storage medium: the processing of the first token information and the biometric information to be stored to obtain a computer program instruction corresponding to first preset biometric information corresponding to the first token information specifically includes the following steps when executed:
and encrypting the first token information and the fingerprint information to be stored through a security engine in the electronic equipment to obtain the first preset biological characteristic information comprising the encrypted first token information and the encrypted fingerprint information to be stored.
While the preferred embodiments of the present application have been described, additional variations and modifications in those embodiments may occur to those skilled in the art once they learn of the basic inventive concepts. Therefore, it is intended that the appended claims be interpreted as including preferred embodiments and all alterations and modifications as fall within the scope of the application.
It will be apparent to those skilled in the art that various changes and modifications may be made in the present application without departing from the spirit and scope of the application. Thus, if such modifications and variations of the present application fall within the scope of the claims of the present application and their equivalents, the present application is intended to include such modifications and variations as well.
Claims (14)
1. A payment method is applied to an electronic device and comprises the following steps:
obtaining a network payment instruction corresponding to a network transaction;
detecting whether the payment hardware environment in the electronic equipment is safe or not to obtain a detection result;
when the detection result is yes, obtaining the current biological characteristic information of the user;
matching the current biological characteristic information with a biological characteristic information template prestored in the electronic equipment to obtain a matching result;
when the matching result is yes, executing the network payment instruction to complete the network transaction;
wherein, whether the payment hardware environment in the electronic device is detected to be safe or not is detected, and a detection result is obtained, and the method comprises the following steps:
acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current system identifier corresponding to a basic input/output system in the electronic equipment;
detecting whether the current chip identification is matched with a first chip identification prestored in a security engine in the electronic equipment or not and whether the current system identification is matched with a first system identification prestored in the security engine or not, and obtaining a detection result;
when the current chip identifier is matched with the first chip identifier and the current system identifier is matched with the first system identifier, determining that the detection result is yes; or
Acquiring a current chip identifier corresponding to a current authentication chip in the electronic equipment, and acquiring a current engine identifier corresponding to a security engine in the electronic equipment;
detecting whether the current chip identification is matched with a second chip identification prestored in a basic input and output system in the electronic equipment and whether the current engine identification is matched with a first engine identification prestored in the basic input and output system, and obtaining the detection result;
and when the current chip identification is matched with the second chip identification and the current engine identification is matched with the first engine identification, determining that the detection result is yes.
2. The method of claim 1, wherein after the detecting whether the payment hardware environment in the electronic device is secure, obtaining the detection result, the method further comprises:
and when the detection result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
3. The method of claim 1, wherein the current biometric information is current fingerprint information, and the matching the current biometric information with a biometric information template pre-stored in the electronic device to obtain a matching result comprises:
matching the current fingerprint information with a fingerprint information template prestored in a security engine in the electronic equipment to obtain a matching result;
and when the current fingerprint information is matched with the fingerprint information template, confirming that the matching result is yes.
4. The method of claim 3, wherein after matching the current fingerprint information with a fingerprint information template pre-stored in a security engine in the electronic device to obtain a matching result, the method further comprises:
and when the matching result is negative, generating and executing an interruption payment instruction for interrupting the network transaction.
5. The method of claim 1, wherein prior to said obtaining network payment instructions corresponding to a network transaction, the method further comprises:
and acquiring the biological characteristic information template.
6. The method of claim 5, wherein the obtaining the biometric information template comprises:
determining first token information corresponding to first account information of a first user;
acquiring to-be-stored biological characteristic information of the first user;
and processing the first token information and the to-be-stored biological characteristic information to obtain first preset biological characteristic information corresponding to the first token information, wherein the first preset biological characteristic information is the biological characteristic information template.
7. The method of claim 6, wherein the processing the first token information and the biometric information to be stored to obtain first preset biometric information corresponding to the first token information comprises:
and encrypting the first token information and the fingerprint information to be stored through a security engine in the electronic equipment to obtain the first preset biological characteristic information comprising the encrypted first token information and the encrypted fingerprint information to be stored.
8. An electronic device, comprising:
the payment device is used for obtaining a network payment instruction corresponding to a network transaction, detecting whether a payment hardware environment is safe or not, obtaining a detection result, matching the current biological characteristic information obtained by the authentication device with a biological characteristic information template prestored in the payment device to obtain a matching result, and executing the network payment instruction to finish the network transaction when the matching result is yes;
the authentication device is connected with the payment device and used for obtaining the current biological characteristic information of the user when the detection result is yes;
wherein, the payment equipment includes:
the security engine is used for acquiring a current chip identifier in the authentication device, acquiring a current system identifier corresponding to a basic input/output system in the payment device, detecting whether the current chip identifier is matched with a first chip identifier prestored in the security engine, and whether the current system identifier is matched with a first system identifier prestored in the security engine, and acquiring a detection result, wherein when the current chip identifier is matched with the first chip identifier and the current system identifier is matched with the first system identifier, the detection result is determined to be yes; or
The basic input and output system is used for acquiring a current chip identifier in the authentication device, acquiring a current engine identifier corresponding to a security engine in the payment device, detecting whether the current chip identifier is matched with a second chip identifier prestored in the basic input and output system, and whether the current engine identifier is matched with a first engine identifier prestored in the basic input and output system, and acquiring the detection result, wherein when the current chip identifier is matched with the second chip identifier and the current engine identifier is matched with the first engine identifier, the detection result is determined to be yes.
9. The device of claim 8, wherein the payment device is further configured to generate and execute an interrupt payment instruction for interrupting the network transaction if the detection result is negative.
10. The device of claim 8, wherein the payment device is configured to match current fingerprint information with a fingerprint information template pre-stored in a security engine of the payment device to obtain a matching result, and wherein the matching result is confirmed to be yes when the current fingerprint information matches the fingerprint information template.
11. The device of claim 8, wherein the payment device is configured to generate and execute an interrupt payment instruction for interrupting the network transaction if the matching result is negative.
12. The device of claim 8, wherein the payment device is to obtain the biometric information template.
13. The device of claim 12, wherein the payment device is configured to determine first token information corresponding to first account information of a first user, obtain biometric information to be stored of the first user through the authentication device, process the first token information and the biometric information to be stored, and obtain first preset biometric information corresponding to the first token information, where the first preset biometric information is the biometric information template.
14. The device of claim 13, wherein the payment device is configured to encrypt the first token information and the to-be-stored fingerprint information by a security engine in the payment device to obtain the first preset biometric information including the encrypted first token information and the encrypted to-be-stored fingerprint information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610286544.8A CN105956858B (en) | 2016-05-03 | 2016-05-03 | Payment method and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610286544.8A CN105956858B (en) | 2016-05-03 | 2016-05-03 | Payment method and electronic equipment |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105956858A CN105956858A (en) | 2016-09-21 |
| CN105956858B true CN105956858B (en) | 2020-02-21 |
Family
ID=56914963
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610286544.8A Active CN105956858B (en) | 2016-05-03 | 2016-05-03 | Payment method and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105956858B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106651355A (en) * | 2016-11-08 | 2017-05-10 | 北京小米移动软件有限公司 | Payment method and device, and virtual reality helmet |
| CN106779717B (en) * | 2016-11-30 | 2021-03-30 | 宇龙计算机通信科技(深圳)有限公司 | Payment authentication method and device |
| CN108108974A (en) * | 2017-12-04 | 2018-06-01 | 阿里巴巴集团控股有限公司 | Method of payment and device and electronic equipment |
| CN113129004A (en) * | 2021-05-18 | 2021-07-16 | 中国银行股份有限公司 | Transaction security detection method and device |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101072100A (en) * | 2006-05-12 | 2007-11-14 | 联想(北京)有限公司 | Authenticating system and method utilizing reliable platform module |
| CN104598793A (en) * | 2015-01-08 | 2015-05-06 | 百度在线网络技术(北京)有限公司 | Fingerprint authentication method and fingerprint authentication device |
| CN104732390A (en) * | 2015-04-20 | 2015-06-24 | 广东欧珀移动通信有限公司 | NFC (near field communication) based payment method and device |
| CN105049945A (en) * | 2015-08-13 | 2015-11-11 | 中国科学院信息工程研究所 | Safety payment system and method based on smart TV multi-screen interaction |
| CN105184561A (en) * | 2015-08-24 | 2015-12-23 | 小米科技有限责任公司 | Safety payment method and device |
| CN105488680A (en) * | 2015-11-27 | 2016-04-13 | 东莞酷派软件技术有限公司 | Payment method and device |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20100161488A1 (en) * | 2008-12-22 | 2010-06-24 | Paul Michael Evans | Methods and systems for biometric verification |
| CN102456102A (en) * | 2010-10-26 | 2012-05-16 | 镇江精英软件科技有限公司 | Method for carrying out identity recertification on particular operation of information system by using Usb key technology |
-
2016
- 2016-05-03 CN CN201610286544.8A patent/CN105956858B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101072100A (en) * | 2006-05-12 | 2007-11-14 | 联想(北京)有限公司 | Authenticating system and method utilizing reliable platform module |
| CN104598793A (en) * | 2015-01-08 | 2015-05-06 | 百度在线网络技术(北京)有限公司 | Fingerprint authentication method and fingerprint authentication device |
| CN104732390A (en) * | 2015-04-20 | 2015-06-24 | 广东欧珀移动通信有限公司 | NFC (near field communication) based payment method and device |
| CN105049945A (en) * | 2015-08-13 | 2015-11-11 | 中国科学院信息工程研究所 | Safety payment system and method based on smart TV multi-screen interaction |
| CN105184561A (en) * | 2015-08-24 | 2015-12-23 | 小米科技有限责任公司 | Safety payment method and device |
| CN105488680A (en) * | 2015-11-27 | 2016-04-13 | 东莞酷派软件技术有限公司 | Payment method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105956858A (en) | 2016-09-21 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10068076B1 (en) | Behavioral authentication system using a behavior server for authentication of multiple users based on their behavior | |
| CN109196539B (en) | System and method for processing transactions with secure authentication | |
| WO2016092318A1 (en) | Systems and method for enabling secure transaction | |
| US20230410087A1 (en) | System and method of operating a secure contactless transaction | |
| KR20160092020A (en) | Card settlement terminal and card settlement system | |
| CN110807624A (en) | Digital currency hardware cold wallet system and transaction method thereof | |
| CN105956858B (en) | Payment method and electronic equipment | |
| US12165155B2 (en) | Dynamic verification method and system for card transactions | |
| US20230185898A1 (en) | Systems and methods for authentication code entry using mobile electronic devices | |
| US20200226608A1 (en) | Dynamic verification method and system for card transactions | |
| US20240378583A1 (en) | System and method of operating a consumer device as a payment device | |
| Yu et al. | Security issues of in-store mobile payment | |
| US20220164429A1 (en) | Touchless authentication at resource distribution systems | |
| WO2019062220A1 (en) | Fingerprint payment method and apparatus therefor, and user terminal | |
| CN105427143B (en) | Method and device for carrying out system security control | |
| CN111614642A (en) | Method, device and system for registration authentication | |
| CN108768658B (en) | Intelligent security chip | |
| CN119558852A (en) | Card-free transaction method, system, device and medium based on multi-factor identity authentication | |
| KR20210023172A (en) | Method for Additional Authentication of Abroad Residents |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |