CN102610045B - Trustable mobile payment system and mobile payment method - Google Patents
Trustable mobile payment system and mobile payment method Download PDFInfo
- Publication number
- CN102610045B CN102610045B CN201210077261.4A CN201210077261A CN102610045B CN 102610045 B CN102610045 B CN 102610045B CN 201210077261 A CN201210077261 A CN 201210077261A CN 102610045 B CN102610045 B CN 102610045B
- Authority
- CN
- China
- Prior art keywords
- mobile
- mobile payment
- mobile terminal
- credible
- platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention relates to a trustable mobile payment system and a mobile payment method. The trustable mobile payment system comprises a mobile terminal and a mobile payment platform. The mobile terminal comprises a mobile terminal trustable module, and a mobile payment applying terminal and a mobile payment client, which are connected with the mobile terminal trustable module respectively, wherein the mobile payment applying terminal is installed in a mobile payment chip. The mobile payment platform comprises a platform trustable server and a mobile payment application server which is connected with the platform trustable server. The mobile payment applying terminal is in remote wireless communication connection with the mobile payment application server, and the mobile terminal trustable module is in remote wireless communication connection with the platform trustable server. The trustable mobile payment system and the mobile payment method have the advantages that: malicious attacks and cheating and eavesdropping over a human-computer interface, a communication channel and the like can be prevented, so that others can be prevented from stealing personal information and wealth or interfering with a financial order, and a mobile payment service can be implemented under the conditions of safety and no interference.
Description
Technical field
The present invention relates to a kind of credible mobile-payment system and method for mobile payment, belong to safe mobile payment technical field.
Background technology
The development of infotech makes people can replace with portable mobile termianls such as mobile phones various Stored Values or deposit card and the credits card such as bank card, mass transit card.
The development in two generations has roughly been passed through in mobile payment.First generation mobile-payment system be take voice and note and is carried out the transmission of payment information as carrier.This transmission mode efficiency and security are all very low.Second generation mobile-payment system be take WAP technology as basis, and the mobile phone browser of take carries out data transmission as terminal, can be encrypted transferring content, but the security of cell phone system itself is still more fragile.
At present, mobile payment technology just further updates.The mobile-payment system of a new generation, by implant special-purpose mobile payment chip on mobile terminal, is responsible for the enforcement of mobile payment service specially, thereby makes supported mobile payment application more abundant and practical.For example: allow mobile terminal to replace the payment of swiping the card of traditional magnetic stripe card or IC-card, or carry out long-range wholesale payment etc., and can need to carry out the individualized customization of mobile payment service according to user, the needed mobile payment service of remote download, or delete unwanted mobile payment service.
But, only the processing of mobile payment service is transferred to the demand that still can not meet security chip from cell phone software system.The attack of malice still can, by infecting mobile terminal software, deception and eavesdropping are implemented in the aspects such as man-machine interface, communication port, thereby walking around mobile payment chip reach steal personal information and wealth, or disturb the object of financial order.
Summary of the invention
The object of the invention is to, a kind of credible mobile-payment system and method for mobile payment based on safety is provided, guarantee that mobile payment service carries out under the glitch-free condition of safety.
The technical scheme of a kind of credible mobile-payment system of the present invention is: comprise mobile terminal and mobile payment platform; Wherein:
Described mobile terminal comprises mobile terminal trusted module, and the mobile payment application end and the mobile payment client that connect with this mobile terminal trusted module respectively; Described mobile payment application end is arranged in mobile payment chip;
The mobile payment application service end that described mobile payment platform comprises platform credible service end and connects with this platform credible service end;
Between mobile payment application end and mobile payment application service end, and all with remote radio communication, connect between mobile terminal trusted module and platform credible service end.
Further technical scheme is:
Described credible mobile-payment system, its mobile terminal trusted module is a trusted module with calculation function, for passing through to calculate cryptographic hash the expressing information integrality of mobile payment application end and mobile payment client, described Hash information content comprises code and static data and the dynamic memory data of each mobile payment application end and mobile payment client.
Described credible mobile-payment system, its mobile terminal trusted module also comprises PKI and the credible report of all available clients of the current platform credible certificate writing; More new authentication is installed in mobile payment chip.
The method of mobile payment carrying out with credible mobile-payment system of the present invention, comprises the steps:
Authentic authentication when A, mobile terminal start: mobile terminal trusted module starts and check the integrality of mobile payment application end and the integrality of mobile payment client of each installation in mobile payment chip automatically;
Authentic authentication when B, mobile payment client terminal start-up: mobile payment client checks the integrality of mobile payment chip when starting;
Authentic authentication in C, mobile payment application process: the mobile payment platform trusted certificates that service end that mobile terminal trusted module receiving platform when mobile payment application end starts is credible sends; Platform credible service end sends platform credible certificate to mobile terminal trusted module in mobile payment application process, and the mobile terminal integrity report of mobile terminal receive trusted module transmission.
Further technical scheme is:
The method of mobile payment of described credible mobile-payment system, authentic authentication when its mobile terminal starts, the steps include:
The integrality of A1, the calculating of mobile terminal trusted module and storing mobile payment client terminal, if complete, carries out A2, if imperfect, carries out A5;
A2, calculating and storing mobile pay the integrality of application end, if complete, carry out A4, if imperfect, carry out A3;
A3, delete this application and to user report, carry out A4;
A4, determine whether to also have other application, if having then carry out A2, do not start complete;
A5, forbid all mobile payment functions, start complete.
The method of mobile payment of described credible mobile-payment system, authentic authentication during its mobile payment client terminal start-up, step is:
B1, open mobile payment chip, if successful execution B2, unsuccessful execution B5;
B2, accept user input, check whether user closes mobile payment client, if close, carry out B4, do not close and carry out B3;
B3, execution user instruction, authenticate complete;
B4, forbid all mobile payment functions, mobile payment client is closed;
B5, report mobile payment function disabled, mobile payment client is closed.
The method of mobile payment of described credible mobile-payment system, the authentic authentication in its mobile payment application process, step is:
C1, mobile terminal trusted module transmit mobile payment platform certificate to platform credible service end, platform credible service end Receipt Validation certificate, and the result is passed to mobile terminal trusted module, if the credible execution of certificate C2, the insincere application of certificate finishes;
C2, mobile terminal trusted module are to platform credible service end report mobile terminal 1 integrality;
C3, platform credible service end checking mobile terminal integrality;
C4, platform credible service end report mobile terminal integrality, be confirmed whether credible, credible execution C5, insincere application finishes;
C5, mobile terminal trusted module carry out mobile payment application;
C6, mobile terminal trusted module calculate and storing mobile pays application end integrality;
The integrality of C7, the calculating of mobile terminal trusted module and storing mobile payment client terminal, application finishes.
The present invention has significant technique effect: can prevent the attack of malice and deception and the eavesdropping that the aspects such as man-machine interface, communication port are implemented, stop other people to reach steal personal information and wealth, or the object of interference financial order, guarantee that mobile payment service carries out under the glitch-free condition of safety.
Accompanying drawing explanation
Fig. 1 is the structural representation of mobile-payment system;
Authentic authentication process flow diagram when Fig. 2 is mobile terminal startup;
Authentic authentication process flow diagram when Fig. 3 is mobile payment client terminal start-up;
Fig. 4 is the authentic authentication process flow diagram in mobile payment application process.
Embodiment
Below in conjunction with the drawings and specific embodiments, the present invention is described in further detail.
embodiment 1:
As shown in Figure 1, be the embodiment of a kind of credible mobile-payment system of the present invention.A kind of technical scheme of credible mobile-payment system is: comprise mobile terminal 1 and mobile payment platform 2; Wherein: described mobile terminal 1 comprises mobile terminal trusted module 11, and the mobile payment application end 12 and the mobile payment client 13 that connect with this mobile terminal trusted module 11 respectively; Described mobile payment application end 12 is arranged in mobile payment chip 100; The mobile payment application service end 22 that described mobile payment platform 2 comprises platform credible service end 21 and connects with this platform credible service end 21; Between mobile payment application end 12 and mobile payment application service end 22, and all with remote radio communication, connect between mobile terminal trusted module 11 and platform credible service end 21.Described mobile terminal trusted module 11 is trusted modules with calculation function, for passing through to calculate cryptographic hash the expressing information integrality of mobile payment application end 12 and mobile payment client 13, described Hash information content comprises code and static data and the dynamic memory data of each mobile payment application end 12 and mobile payment client 13.Described mobile terminal trusted module 11 also comprises PKI and the credible report of all available clients of the current platform credible certificate writing; More new authentication is installed in mobile payment chip 100.
embodiment 2:
The embodiment of the method for mobile payment carrying out with credible mobile-payment system of the present invention, step is as follows:
Authentic authentication when A, mobile terminal 1 start: mobile terminal trusted module 11 starts and check the integrality of mobile payment application end 12 and the integrality of mobile payment client 13 of each installation in mobile payment chip 100 automatically;
Authentic authentication when B, mobile payment client 13 start: mobile payment client 13 checks the integrality of mobile payment chip 100 when starting;
Authentic authentication in C, mobile payment application process: the mobile payment platform trusted certificates that service end 21 that mobile terminal trusted module 11 receiving platform when mobile payment application end 12 starts is credible sends; Platform credible service end 21 sends platform credible certificate to mobile terminal trusted module 11 in mobile payment application process, and mobile terminal 1 integrity report of mobile terminal receive trusted module 11 transmissions.
As shown in Figure 2, in described step, authentic authentication step when mobile terminal 1 starts is:
The integrality of A1,11 calculating of mobile terminal trusted module and storing mobile payment client terminal 13, if complete, carries out A2, if imperfect, carries out A5;
A2, calculating and storing mobile pay the integrality of application end 13, if complete, carry out A4, if imperfect, carry out A3;
A3, delete this application and to user report, carry out A4;
A4, determine whether to also have other application, if having then carry out A2, do not start complete;
A5, forbid all mobile payment functions, start complete.
As shown in Figure 3, in described step, authentic authentication when mobile payment client 13 starts, step is:
B1, open mobile payment chip 100, if successful execution B2, unsuccessful execution B5;
B2, accept user input, check whether user closes mobile payment client 13, if close, carry out B4, do not close and carry out B3;
B3, execution user instruction, authenticate complete;
B4, forbid all mobile payment functions, mobile payment client 13 is closed;
B5, report mobile payment function disabled, mobile payment client 13 is closed.
As shown in Figure 4, in described step, the authentic authentication step in mobile payment application process is:
C1, mobile terminal trusted module 11 transmit mobile payment platform certificate to platform credible service end 21, platform credible service end 21 Receipt Validation certificates, and the result is passed to mobile terminal trusted module 11, if the credible execution of certificate C2, the insincere application of certificate finishes;
C2, mobile terminal trusted module 11 are to platform credible service end 21 report mobile terminal 1 integralities;
C3, platform credible service end 21 checking mobile terminal 1 integralities; C4, platform credible service end 21 report mobile terminal 1 integralities, be confirmed whether credible, credible execution C5, insincere application finishes;
C5, mobile terminal trusted module 11 carry out mobile payment application;
C6, mobile terminal trusted module 11 calculate and storing mobile pays application end 12 integralities;
The integrality of C7,11 calculating of mobile terminal trusted module and storing mobile payment client terminal 13, application finishes.
Claim protection domain of the present invention is not limited to above-described embodiment.
Claims (5)
1. a credible mobile-payment system, is characterized in that, comprises mobile terminal (1) and mobile payment platform (2); Wherein:
Described mobile terminal (1) comprises mobile terminal trusted module (11), and the mobile payment application end (12) and the mobile payment client (13) that connect with this mobile terminal trusted module (11) respectively; Described mobile payment application end (12) is arranged in mobile payment chip (100);
The mobile payment application service end (22) that described mobile payment platform (2) comprises platform credible service end (21) and connects with this platform credible service end (21);
Between mobile payment application end (12) and mobile payment application service end (22), and all with remote radio communication, connect between mobile terminal trusted module (11) and platform credible service end (21);
Described mobile terminal trusted module (11) is a trusted module with calculation function, for passing through to calculate cryptographic hash the expressing information integrality of mobile payment application end (12) and mobile payment client (13), described Hash information content comprises code and static data and the dynamic memory data of each mobile payment application end (12) and mobile payment client (13); Described mobile terminal trusted module (11) also comprises PKI and the credible report of all available clients of the current platform credible certificate writing; Mobile payment chip is provided with more new authentication in (100).
2. a method of mobile payment for credible mobile-payment system as claimed in claim 1, is characterized in that, comprises the steps:
Authentic authentication when A, mobile terminal (1) start: mobile terminal trusted module (11) starts and check the integrality of mobile payment application end (12) and the integrality of mobile payment client (13) of each installation in mobile payment chip (100) automatically;
Authentic authentication when B, mobile payment client (13) start: mobile payment client (13) checks the integrality of mobile payment chip (100) when starting;
Authentic authentication in C, mobile payment application process: mobile terminal trusted module (11) the mobile payment platform trusted certificates that the credible service end of receiving platform (21) sends when mobile payment application end (12) starts; Platform credible service end (21) sends platform credible certificate to mobile terminal trusted module (11) in mobile payment application process, and mobile terminal (1) integrity report of mobile terminal receive trusted module (11) transmission.
3. the method for mobile payment of credible mobile-payment system according to claim 2, is characterized in that, authentic authentication when described mobile terminal (1) starts, the steps include:
The integrality of A1, mobile terminal trusted module (11) calculating and storing mobile payment client terminal (13), if complete, carries out A2, if imperfect, carries out A5;
A2, calculating and storing mobile pay the integrality of application end (12), if complete, carry out A4, if imperfect, carry out A3;
A3, delete this application and to user report, carry out A4;
A4, determine whether to also have other application, if having then carry out A2, do not start complete;
A5, forbid all mobile payment functions, start complete.
4. the method for mobile payment of credible mobile-payment system according to claim 2, is characterized in that, authentic authentication when described mobile payment client (13) starts, the steps include:
B1, open mobile payment chip (100), if successful execution B2, unsuccessful execution B5;
B2, accept user input, check whether user closes mobile payment client (13), if close, carry out B4, do not close and carry out B3;
B3, execution user instruction, authenticate complete;
B4, forbid all mobile payment functions, mobile payment client (13) is closed;
B5, report mobile payment function disabled, mobile payment client (13) is closed.
5. the method for mobile payment of credible mobile-payment system according to claim 2, is characterized in that, the authentic authentication in described mobile payment application process, the steps include:
C1, mobile terminal trusted module (11) transmit mobile payment platform certificate to platform credible service end (21), platform credible service end (21) Receipt Validation certificate, and the result is passed to mobile terminal trusted module (11), if certificate is credible execution C2, the insincere application of certificate finishes;
C2, mobile terminal trusted module (11) are to platform credible service end (21) report mobile terminal (1) integrality;
C3, platform credible service end (21) checking tolerance mobile terminal (1) integrality;
C4, platform credible service end (21) report mobile terminal (1) integrality, be confirmed whether credible, credible execution C5, insincere application finishes;
C5, mobile terminal trusted module (11) carry out mobile payment application;
C6, mobile terminal trusted module (11) calculate and storing mobile pays application end (12) integrality;
The integrality of C7, mobile terminal trusted module (11) calculating and storing mobile payment client terminal (13), application finishes.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210077261.4A CN102610045B (en) | 2012-03-22 | 2012-03-22 | Trustable mobile payment system and mobile payment method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201210077261.4A CN102610045B (en) | 2012-03-22 | 2012-03-22 | Trustable mobile payment system and mobile payment method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102610045A CN102610045A (en) | 2012-07-25 |
| CN102610045B true CN102610045B (en) | 2014-11-26 |
Family
ID=46527382
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201210077261.4A Expired - Fee Related CN102610045B (en) | 2012-03-22 | 2012-03-22 | Trustable mobile payment system and mobile payment method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102610045B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWI719216B (en) | 2016-07-18 | 2021-02-21 | 開曼群島商創新先進技術有限公司 | Graphic code information provision and acquisition method, device and terminal |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103761645A (en) * | 2013-12-31 | 2014-04-30 | 瑞达信息安全产业股份有限公司 | Method and system for controlling mobile terminal near field payment channel to be opened and closed by means of short messages |
| CN104008351B (en) * | 2014-05-06 | 2017-03-15 | 武汉天喻信息产业股份有限公司 | Window application completeness check system, method and device |
| CN104537537A (en) * | 2014-12-24 | 2015-04-22 | 深圳市小兵智能科技有限公司 | Safety payment method based on Android system |
| CN106295350B (en) * | 2015-06-04 | 2019-12-10 | 摩托罗拉移动通信软件(武汉)有限公司 | identity verification method and device of trusted execution environment and terminal |
| CN105260890A (en) * | 2015-09-25 | 2016-01-20 | 镇江明泰信息科技有限公司 | On-line secure payment method based on multi-domain user information big data analysis |
| CN105306490B (en) * | 2015-11-23 | 2018-04-24 | 小米科技有限责任公司 | Payment verifying system, method and device |
Family Cites Families (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB2340344A (en) * | 1998-07-29 | 2000-02-16 | Nokia Mobile Phones Ltd | Bilateral Data Transfer Verification for Programming a Cellular Phone |
| JP2002056325A (en) * | 2000-08-08 | 2002-02-20 | Nec Corp | Electronic liquidation method, system, liquidation center device, individual information input terminal, and storage medium recording program |
| US8666801B2 (en) * | 2006-06-06 | 2014-03-04 | ErgonoTech, Inc. | Long-range location-specific menu-driven mobile payment platform mounted on vehicle dashtop |
| CN101216915B (en) * | 2008-01-21 | 2012-07-25 | 深圳市路通网络技术有限公司 | A secured mobile payment method |
| JP4656458B1 (en) * | 2009-11-09 | 2011-03-23 | Necインフロンティア株式会社 | Handy terminal and payment method by handy terminal |
| CN101719250B (en) * | 2009-12-10 | 2013-07-24 | 中国联合网络通信集团有限公司 | Payment authentication method, platform and system |
| CN101834946A (en) * | 2010-05-11 | 2010-09-15 | 丁峰 | Method for performing safe mobile phone payment and mobile phone for performing safe payment |
| CN101986641A (en) * | 2010-10-20 | 2011-03-16 | 杭州晟元芯片技术有限公司 | Trusted computing platform chip applicable to mobile communication equipment and authentication method thereof |
| CN102103778B (en) * | 2011-02-23 | 2014-04-30 | 中兴通讯股份有限公司 | Mobile payment system, mobile terminal and method for realizing mobile payment service |
| CN102184495B (en) * | 2011-04-21 | 2016-09-28 | 天地融科技股份有限公司 | A kind of method of network payment and system |
-
2012
- 2012-03-22 CN CN201210077261.4A patent/CN102610045B/en not_active Expired - Fee Related
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TWI719216B (en) | 2016-07-18 | 2021-02-21 | 開曼群島商創新先進技術有限公司 | Graphic code information provision and acquisition method, device and terminal |
| US11501294B2 (en) | 2016-07-18 | 2022-11-15 | Advanced New Technologies Co., Ltd. | Method and device for providing and obtaining graphic code information, and terminal |
Also Published As
| Publication number | Publication date |
|---|---|
| CN102610045A (en) | 2012-07-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102610045B (en) | Trustable mobile payment system and mobile payment method | |
| US10237072B2 (en) | Signatures for near field communications | |
| CN102202306B (en) | Mobile security authentication terminal and method | |
| CN103404099B (en) | Be coupled to the management of the communication pipe in the telecommunication apparatus of NFC circuit | |
| CN101916388B (en) | Smart SD card and method for using same for mobile payment | |
| CN202004846U (en) | Cellphone shield capable of protecting mobile payment security | |
| CN103098503B (en) | The method and apparatus of the data in the security module of the protection equipment containing NFC router | |
| CN109039652B (en) | Digital certificate generation and application method | |
| CN101651675A (en) | Method and system for enhancing security of network transactions | |
| CN101729502A (en) | Method and system for distributing key | |
| CN102932333A (en) | Safety equipment with mobile payment function, system and method | |
| CN104579649A (en) | Identity recognition method and system | |
| CN102521743B (en) | Mobile phone safety payment method and system on basis of wireless channel | |
| CN103999426A (en) | Test of the resistance of a security module of a telecommunication device coupled to an NFC circuit against communication channel diversion attacks | |
| CN102710611A (en) | Network security authentication method and system | |
| CN101668288A (en) | Identity authenticating method, identity authenticating system and terminal | |
| CN102523095A (en) | User digital certificate remote update method with intelligent card protection function | |
| CN104363589A (en) | Identity authentication method, device and terminal | |
| CN109146468B (en) | Backup and recovery method for digital certificate | |
| CN105704092A (en) | User identity authentication method, device and system | |
| CN102665208B (en) | Mobile terminal, terminal banking safety certifying method and system | |
| WO2015117323A1 (en) | Method and device for achieving remote payment | |
| CN102819799A (en) | Multi-channel safety authenticating system and authenticating method based on U-Key | |
| CN105427102A (en) | Financial IC card based authentication method and corresponding device and system | |
| CN103854177A (en) | Safe E-bank implementation method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20141126 Termination date: 20190322 |