CN111092719B - Label data refreshing method and system, payment method and system - Google Patents

Label data refreshing method and system, payment method and system Download PDF

Info

Publication number
CN111092719B
CN111092719B CN201811236428.0A CN201811236428A CN111092719B CN 111092719 B CN111092719 B CN 111092719B CN 201811236428 A CN201811236428 A CN 201811236428A CN 111092719 B CN111092719 B CN 111092719B
Authority
CN
China
Prior art keywords
data
tag
label
ciphertext
public key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201811236428.0A
Other languages
Chinese (zh)
Other versions
CN111092719A (en
Inventor
王琪
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Unionpay Co Ltd
Original Assignee
China Unionpay Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Unionpay Co Ltd filed Critical China Unionpay Co Ltd
Priority to CN201811236428.0A priority Critical patent/CN111092719B/en
Publication of CN111092719A publication Critical patent/CN111092719A/en
Application granted granted Critical
Publication of CN111092719B publication Critical patent/CN111092719B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0891Revocation or update of secret information, e.g. encryption key update or rekeying
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3821Electronic credentials
    • G06Q20/38215Use of certificates or encrypted proofs of transaction rights
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3825Use of electronic signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Accounting & Taxation (AREA)
  • Signal Processing (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Finance (AREA)
  • General Engineering & Computer Science (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • Storage Device Security (AREA)

Abstract

The invention relates to a tag data refreshing method. The method comprises the following steps: the user terminal reads NFC label data from the NFC label; the user terminal verifies whether the read public key certificate of the organization is legal or not by utilizing the prestored CA root certificate, and sends the label identification and the ciphertext data to a background system after the verification is passed; the background system analyzes the ciphertext data by using a pre-stored label private key, encrypts and signs the analyzed ciphertext data, generates updated NFC label data and sends the updated NFC label data to the user terminal; and the user terminal writes the updated NFC label data into the NFC label. According to the invention, the NFC tag data can be dynamically updated and payment can be realized based on the dynamically updated NFC tag, so that the payment safety can be ensured and the payment efficiency and the user experience can be improved.

Description

Label data refreshing method and system, payment method and system
Technical Field
The invention relates to a computer technology, in particular to a tag data refreshing method and a system thereof for an NFC tag, and a payment method and a system thereof based on tag data.
Background
In the product design based on NFC tag payment, it is found that optimization can be performed on the use flow and the payment method:
(1) The industry generally considers that the static mode has copy or replacement risks, and the NFC tag payment has the same security risk of the static two-dimension code when being seen for a long time although the limitation of the static quota does not exist in the short time. However, different from the dynamic two-dimensional code which needs additional equipment, the NFC tag has the reading and writing capabilities, and therefore the same capability of the dynamic two-dimensional code can be achieved by utilizing the writable characteristic of the NFC tag.
(2) At present, the generation of the NFC label needs special equipment or App to operate, which is not beneficial to the acceptance of users, increases the complexity of the process, and can realize remote management and optimize the transaction process based on the read-write capability of the NFC label.
The existing NFC label manufacturing process comprises merchant online application, NFC label manufacturing and NFC label payment, after label data are written in, the label data are set to be read only, the unique ID number of the label is read during transaction, and the unique ID number and the merchant label data are compared in the background, so that the legality of the label is ensured.
Because the data in the NFC tag is not changed after the initial writing, the data is used as static readable data, the risk that the data is cracked or copied exists, and the transaction faces the risk; since static data is used, the merchant information is not changed every time it is read.
The information disclosed in this background section is only for enhancement of understanding of the general background of the invention and should not be taken as an acknowledgement or any form of suggestion that this information forms the prior art already known to a person skilled in the art.
Disclosure of Invention
In order to solve the above problems, the present patent proposes a tag data refreshing method and system for dynamically updating an NFC tag, and a payment method and system based on tag data.
A tag data refresh method according to an aspect of the present invention is a tag data refresh method including:
reading, namely reading NFC label data from an NFC label by a user terminal, wherein the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a label public key;
verifying, namely verifying whether the read public key certificate of the organization is legal or not by using a prestored CA root certificate by the user terminal, and sending the label identification and the ciphertext data to a background system after the verification is passed;
analyzing, namely analyzing the ciphertext data by using a pre-stored label private key by using a background system;
refreshing, namely encrypting and signing the analyzed ciphertext data by a background system to generate updated NFC label data and sending the updated NFC label data to a user terminal; and
and writing, namely writing the updated NFC tag data into the NFC tag by the user terminal.
Optionally, the refreshing step comprises:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using an organization private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and sending the first signature information and the second signature information as updated NFC label data and a label public key to the user terminal.
Optionally, in the parsing step, after the background system parses the ciphertext data by using a pre-stored tag private key, the validity of the tag is further verified, and the refreshing step is performed after the validity verification is passed.
Optionally, in the step of refreshing, the step of refreshing comprises:
the background system encrypts by using a tag public key according to the merchant identifier and the tag identifier to generate a new tag data ciphertext, and signs by using an organization private key;
the background system signs the merchant information by using a label private key; and
and sending the new tag data cipher text and signature information, the merchant information and the signature information as the updated NFC tag data and the tag public key to the user terminal.
Optionally, the writing step includes:
a user terminal initiates a write request to an NFC tag;
the NFC tag verifies the signature of the ciphertext information in the written updated NFC tag data by adopting an organization public key certificate, and verifies whether the written tag identification is consistent with the existing tag identification;
and writing the updated NFC tag data into the NFC tag under the condition of passing the verification.
A tag data refresh method according to an aspect of the present invention includes:
reading NFC tag data from an NFC tag, wherein the NFC tag data comprises a tag identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a tag public key;
verifying, namely verifying whether the read public key certificate of the organization is legal or not by utilizing a prestored CA root certificate, and sending the label identification and the ciphertext data after the verification is passed; and
and a writing step, receiving updated NFC label data from the outside and writing the updated NFC label data into the NFC label.
A tag data refresh method according to an aspect of the present invention is a tag data refresh method including:
a receiving step of receiving a tag identifier and ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is encrypted by using a tag public key;
analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
a refreshing step, namely encrypting and signing the analyzed ciphertext data to generate updated NFC tag data; and
and a sending step of sending the updated NFC label data.
Optionally, the refreshing step comprises:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using a pre-stored mechanism private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and taking the first signature information and the second signature information as updated NFC label data.
The payment method based on the tag data in one aspect of the present invention is characterized by including:
reading, namely reading NFC label data from an NFC label by a user terminal, wherein the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a label public key;
verifying, namely verifying whether the read public key certificate of the organization is legal or not by using a prestored CA root certificate by the user terminal, and sending the label identification and the ciphertext data to a background system after the verification is passed;
analyzing, namely analyzing the ciphertext data by using a pre-stored label private key by using a background system;
refreshing, namely encrypting and signing the analyzed ciphertext data by the background system to generate updated NFC tag data and sending the updated NFC tag data to the user terminal;
writing, namely writing the updated NFC tag data into an NFC tag by the user terminal;
a payment information generation step, wherein the user terminal generates payment information related to payment and sends the payment information to a background system; and
and a payment executing step, wherein the background system executes payment according to the payment information and returns a response to the user terminal.
The payment method based on the tag data in one aspect of the present invention is characterized by including:
reading NFC tag data from an NFC tag, wherein the NFC tag data comprises a tag identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a tag public key;
a verification step, namely verifying whether the read public key certificate of the organization is legal or not by utilizing a prestored CA root certificate, and sending the label identification and the ciphertext data after the verification is passed;
a first receiving step of receiving updated NFC tag data from the outside;
writing the updated NFC tag data into an NFC tag;
a payment information generation step of generating and transmitting payment information related to payment; and
a second receiving step of receiving a response of the payment performed based on the payment information.
The payment method based on the tag data in one aspect of the present invention is characterized by including:
a first receiving step of receiving a tag identifier and ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is data encrypted by a tag public key;
analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
a refreshing step, namely encrypting and signing the analyzed ciphertext data to generate updated NFC tag data; and
a sending step of sending the updated NFC tag data;
a second receiving step of receiving and transmitting payment information related to payment from the outside; and
and a payment executing step, executing payment according to the payment information, and returning a response.
Optionally, the refreshing step comprises:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using a pre-stored mechanism private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and taking the first signature information and the second signature information as updated NFC label data.
The label generation method of an aspect of the present invention is characterized by including:
the background system generates an organization public key certificate and an organization private key;
the merchant terminal sends merchant information and the label identification to the background system;
the background system generates a tag public key and a tag private key according to the tag identification, encrypts the merchant information and the tag identification by adopting the tag public key and obtains ciphertext data;
the merchant terminal downloads and acquires the public key certificate of the organization and the ciphertext data from the background system;
and the merchant terminal takes the public key certificate of the organization and the ciphertext data as NFC label data to write the NFC label data into the NFC label.
Optionally, before writing the NFC tag data into the NFC tag, determining whether data exists in a tag security area of the NFC tag, if the data exists in the tag security area, writing an organization public key certificate and a tag public key, if the data exists, the writing is not allowed, and at the same time, writing the ciphertext data into the tag data area, where the tag security area of the NFC tag is used to store the organization public key certificate and the tag public key, and the tag data area of the NFC tag is used to store the ciphertext data.
Optionally, after the NFC tag data is successfully written into the NFC tag, notification information indicating that the writing is successful is sent to the background system.
A computer-readable medium of an aspect of the present invention, on which a computer program is stored, characterized in that the computer program, when executed by a processor, implements the tag data refresh method described; or the computer program when executed by a processor implements said tag data based payment method; or the computer program is executed by a processor for the label generation method.
A computer device according to an aspect of the present invention includes a memory, a processor, and a computer program stored in the memory and executable on the processor, wherein the processor implements the tag data refresh method when executing the computer program; or implementing the payment method based on the tag data; or implementing the label generation method.
The tag data refresh system according to an aspect of the present invention is a system for refreshing an NFC tag, including: user terminal and background system
The user terminal includes:
the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, wherein the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a label public key;
a verification module for verifying whether the read public key certificate of the organization is legal by using a prestored CA root certificate and sending the label identification and the ciphertext data to a background system after the verification is passed,
the first receiving module is used for receiving updated NFC label data from the outside; and
and the writing module writes the updated NFC label data into the NFC label.
The background system comprises:
the second receiving module is used for receiving the tag identification and the ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is encrypted by using a tag public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key; and
and the refreshing module is used for encrypting and signing the analyzed ciphertext data, generating updated NFC tag data and sending the updated NFC tag data to the user terminal.
Optionally, the refresh module includes:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and the sending module is used for sending the first signature information and the second signature information as updated NFC label data together with the label public key to the user terminal.
Optionally, the background system further comprises:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the pre-stored label private key.
A user terminal according to an aspect of the present invention includes:
the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, wherein the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a label public key;
the verification module is used for verifying whether the read public key certificate of the organization is legal or not by utilizing the prestored CA root certificate and sending the label identification and the ciphertext data after the verification is passed; and
the receiving module is used for receiving updated NFC label data from the outside;
and the writing module writes the updated NFC label data into the NFC label.
A backend system according to an aspect of the present invention includes:
the NFC tag comprises a receiving module, a sending module and a receiving module, wherein the receiving module receives NFC tag data from the outside, the NFC tag data comprises a tag identification and ciphertext data, and the ciphertext data is data encrypted by a tag public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
and the refreshing module is used for encrypting and signing the analyzed ciphertext data to generate updated NFC tag data.
Optionally, the refresh module includes:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and the sending module is used for sending the first signature information and the second signature information as the updated NFC label data and the label public key to the user terminal.
Optionally, the background system further comprises:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the pre-stored label private key.
A tag data-based payment system of an aspect of the present invention is characterized by comprising: a user terminal and a background system are arranged in the system,
the user terminal includes:
the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, wherein the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a label public key;
the verification module is used for verifying whether the read public key certificate of the organization is legal or not by utilizing the prestored CA root certificate and sending the label identification and the ciphertext data to a background system after the verification is passed;
the writing module is used for writing the updated NFC tag data into the NFC tag; and
a payment information generation module for obtaining payment related payment information and sending the payment information to a background system,
the background system comprises:
the receiving module is used for receiving a tag identifier and ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is data encrypted by a tag public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key;
the refreshing module is used for encrypting and signing the analyzed ciphertext data, generating updated NFC tag data and sending the updated NFC tag data to the user terminal; and
and the payment execution module is used for executing payment according to the payment information received from the user terminal and returning a response to the user terminal.
A user terminal according to an aspect of the present invention includes:
the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, wherein the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information by using a label public key;
the verification module is used for verifying whether the read public key certificate of the organization is legal or not by utilizing the prestored CA root certificate and sending the label identification and the ciphertext data after the verification is passed;
the writing module receives updated NFC tag data from the outside and writes the updated NFC tag data into an NFC tag; and
and the payment information generation module is used for acquiring payment related payment information.
A backend system according to an aspect of the present invention includes:
the NFC tag comprises a receiving module, a sending module and a receiving module, wherein the receiving module receives NFC tag data from the outside, the NFC tag data comprises a tag identification and ciphertext data, and the ciphertext data is data encrypted by a tag public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
the refreshing module is used for encrypting and signing the analyzed ciphertext data to generate updated NFC tag data; and
and the payment execution module is used for executing payment according to the received payment information and returning a response to the user terminal.
Optionally, the refresh module includes:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and the sending module is used for sending the first signature information and the second signature information to the outside as the updated NFC label data together with the label public key.
Optionally, the background system further comprises:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the label private key stored in advance.
As described above, according to the payment method and system for dynamically refreshing NFC tag data of the present invention, a process of completing payment to a merchant by means of dynamically refreshing tag data after a user terminal (e.g., a mobile phone) approaches an NFC tag is achieved. The method comprises the steps of manufacturing a label, verifying the NFC label and the user terminal, dynamically updating NFC label data to complete payment, and realizing the mutual authentication process of the NFC label and the user terminal through a public key and a private key and an authentication mechanism of a certificate chain. According to the invention, the data in the NFC label is dynamically refreshed through a public and private key encryption mechanism, mutual authentication between the NFC label and the user terminal is realized, the payment process and steps are optimized, and the payment efficiency and the user experience are improved.
Other features and advantages of the methods and apparatus of the present invention will be more particularly apparent from or elucidated with reference to the drawings described herein, and the following detailed description of the embodiments used to illustrate certain principles of the invention.
Drawings
FIG. 1 is a schematic view showing the structure of a label of the present invention.
Fig. 2 is a schematic diagram illustrating the public key mechanism of the present invention.
Fig. 3 is a schematic flowchart showing a tag data refresh method according to the present invention.
Fig. 4 is a schematic flow chart showing the NFC tag-based payment method of the present invention.
Fig. 5 is a flowchart showing a tag data refresh method according to an embodiment of the present invention.
Fig. 6 is a flowchart illustrating an NFC tag-based payment method according to an embodiment of the present invention.
Fig. 7 is a block diagram showing a configuration of a tag data refresh system according to an embodiment of the present invention.
Fig. 8 is a block diagram showing a configuration of a payment system based on tag data according to an embodiment of the present invention.
Detailed Description
The following description is of some of the various embodiments of the invention and is intended to provide a basic understanding of the invention. It is not intended to identify key or critical elements of the invention or to delineate the scope of the invention.
First, the structure of the label of the present invention will be described.
FIG. 1 is a schematic view showing the structure of a label of the present invention.
As shown in fig. 1, an NFC tag according to an embodiment of the present invention includes a tag identification 10, a tag data area 20, and a tag security area 30.
The tag identifier 10 is an identity identifier of the tag when the tag leaves the factory, and is unique and read only after leaving the factory. The tag security zone 30 is used to store the authority public key certificate and tag public key certificate information. The tag data area 20 is a data storage module for merchant information, and has read-write permission, in which ciphertext data encrypted by using a tag public key is stored, where the information of a tag identifier (tag ID), merchant information (e.g., merchant ID, etc.), an account, etc.
Fig. 2 is a schematic diagram illustrating the public key mechanism of the present invention.
As shown in fig. 2, a CA (Certification authority) Certification center generates a CA public key and a CA private key, a background system (or a acquirer) generates an organization public key and an organization private key, submits the organization public key to the CA Certification center, and the CA Certification center issues an organization public key certificate. On the other hand, a label public key and a label private key of the NFC label are generated by a background system, wherein the label public key is signed by the organization private key to obtain organization authorization information. Moreover, the tag security area 30 of the NFC tag stores the authority public key certificate, and the user terminal stores the CA root certificate.
Next, a process of manufacturing the NFC tag of the present invention will be described.
The NFC tag generation method comprises the following steps:
step S1: the background system automatically generates a root CA certificate and a private key, and generates an organization public key certificate and an organization private key through the root CA;
step S2: a merchant terminal (for example, an APP arranged in a merchant system) registers merchant information in a background system, and after verification is successful, tag public key and tag private key information are generated according to an NFC tag identifier;
and step S3: after the NFC tag is successfully registered, when the NFC tag is manufactured, the merchant terminal downloads and acquires an organization public key certificate and ciphertext data containing a merchant identifier and a tag identifier from the background system (namely ciphertext data encrypted by using a tag public key stored in the background system), and writes the ciphertext data into the NFC tag;
and step S4: when writing for the first time, judging whether data exist in the label safety area, if the data exist in the label safety area, writing an organization public key certificate and label public key information; if there is already data, then no write is allowed. Simultaneously, writing the ciphertext data into a tag data area;
step S5: after the writing is successful, the successful information is sent to the background system to prevent the NFC tag information from being copied (whether the tag is successfully activated needs to be judged during merchant registration).
Next, a description will be given of an NFC tag data refresh method and a payment method implemented based on the tag data refresh method of the present invention.
Fig. 3 is a schematic flowchart showing a tag data refresh method according to the present invention.
As shown in fig. 3, the tag data refreshing method of the present invention mainly includes:
reading step S100: the method comprises the steps that a user terminal reads NFC label data from an NFC label, wherein the NFC label data comprise a label identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data are data obtained by encrypting merchant information through the label public key;
a verification step S200: the user terminal verifies whether the read public key certificate of the organization is legal or not by utilizing the prestored CA root certificate, and sends the label identification and the ciphertext data to a background system after the verification is passed;
an analysis step S300: the background system analyzes the ciphertext data by utilizing a pre-stored label private key;
a refresh step S400: the background system encrypts and signs the analyzed ciphertext data, generates updated NFC label data and sends the updated NFC label data to the user terminal; and
a writing step S500: and the user terminal writes the updated NFC label data into the NFC label.
Next, a description will be given of a payment method based on an NFC tag that is realized based on the tag data refresh method of the present invention.
Fig. 4 is a schematic flow diagram illustrating an NFC tag based payment method of the present invention.
Steps S100 to S500 in fig. 4 are the same as those in fig. 3, and the description is omitted here. Further comprising after step S500:
payment information generation step S600: the user terminal generates payment information related to payment and sends the payment information to the background system; and
payment execution step S700: and the background system executes payment according to the payment information and returns a response to the user terminal.
Next, a tag data refresh method and an NFC tag-based payment method according to the present invention will be described with reference to specific embodiments.
Fig. 5 is a flowchart showing a tag data refresh method according to an embodiment of the present invention.
The NFC tag data refreshing method of the embodiment is realized by utilizing interaction among the NFC tag, the user terminal and the background system.
Specifically, as shown in fig. 5, the NFC tag data refreshing method according to an embodiment of the present invention includes the following steps:
step S10: after the user terminal touches the NFC label, a request for reading label data is initiated to the NFC label so as to request for reading the label identification, the data of the label data area and the mechanism public key;
step S11: a user terminal reads a label identification of an NFC label, data of a label data area and an organization public key;
step S12: the user terminal verifies whether the public key of the authority is legal or not by using the pre-stored CA root certificate;
step S13: after the verification is passed, the user terminal sends the tag identification and the data of the tag data area to a background system to request to analyze the NFC tag data;
step S14: the background system analyzes the received data of the tag data area by using the stored NFC tag private key, and verifies the validity of the tag through information such as tag identification, merchant identification and the like;
step S15: after the validity verification is passed, firstly, the background system encrypts by using an NFC tag public key according to information such as a merchant identifier, a tag identifier and the like to generate a new tag data ciphertext and signs by using a mechanism private key, and secondly, the background system analyzes the merchant information and signs by using the NFC tag private key;
step S16: the background system sends new tag data ciphertext and signature information thereof, merchant information and signature information thereof, an NFC tag public key and other information to the user terminal;
step S17: a user terminal initiates a write request to an NFC tag to request that NFC tag data (including a new tag data ciphertext and signature information thereof, merchant information and signature information thereof, an NFC tag public key and the like) regenerated by a background system is written into the NFC tag;
step S18: and the NFC label adopts an organization public key certificate to verify the signature written in the ciphertext information so as to determine that the information is not tampered, and meanwhile, the consistency of the written label identification information and the existing label identification information is verified, and if the written label identification information is consistent with the existing label identification information, data is allowed to be written in.
The tag data refresh method according to an embodiment of the present invention is explained above. Next, a payment method according to an embodiment implemented by the tag data refresh method of the present invention will be described.
Fig. 6 is a flowchart illustrating an NFC tag-based payment method according to an embodiment of the present invention.
Steps S10 to S18 in fig. 6 are the same as steps S10 to S18 in fig. 5, and explanation thereof is omitted. Here, the steps subsequent to step S18 will be described.
Step S19: after the user terminal successfully writes data into the NFC label and verifies that the information is not tampered by using the NFC label public key, merchant information and a payment interface are displayed according to merchant information returned by the background system, and user amount is input;
step S20: after the user confirms the payment account and the amount and inputs the password, the user terminal sends payment information to the background system;
step S21: and the background system generates an order and completes payment, and returns a payment response to the user terminal, so that the user terminal completes payment.
As a conversion manner, the writing of the NFC tag data may be performed before the payment transaction, or may be performed after the payment transaction is successful.
Next, a description will be given of a tag data refresh system of the present invention and a payment system realized based on the tag data of the present invention.
Fig. 7 is a block diagram showing a configuration of a tag data refresh system according to an embodiment of the present invention.
As shown in fig. 7, the tag data refreshing system according to an embodiment of the present invention refreshes the NFC tag by using the interaction between the user terminal 100 and the backend system 200.
Wherein, the user terminal 100 includes:
the reading module 110 is configured to read NFC tag data from an NFC tag, where the NFC tag data includes a tag identifier, ciphertext data, and an organization public key certificate, where the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information with a tag public key;
a first verification module 120, configured to verify whether the read public key certificate of the organization is legal by using a pre-stored CA root certificate, and send the tag identifier and the ciphertext data to a background system after the verification is passed, and
a first receiving module 130, configured to receive updated NFC tag data described below;
a writing module 140, configured to write the updated NFC tag data described below into the NFC tag,
the backend system 200 includes:
a second receiving module 210, configured to receive, from the user terminal 100, a tag identifier and ciphertext data in the NFC tag data, where the ciphertext data is data encrypted by using a tag public key;
the parsing module 220 is configured to parse the ciphertext data by using a pre-stored tag private key;
a second verifying module 230 for verifying the validity of the label;
the refreshing module 240 is configured to encrypt and sign the parsed ciphertext data, generate updated NFC tag data, and send the updated NFC tag data to the user terminal.
The refresh module 240 includes:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and the sending module is used for sending the first signature information and the second signature information as updated NFC label data together with the label public key to the user terminal.
Fig. 8 is a block diagram showing a configuration of a payment system based on tag data according to an embodiment of the present invention.
As shown in fig. 8, the tag data refreshing system according to an embodiment of the present invention refreshes the NFC tag by using the interaction of the user terminal 100 and the backend system 200.
Wherein, the user terminal 100 includes:
the reading module 110 is configured to read NFC tag data from an NFC tag, where the NFC tag data includes a tag identifier, ciphertext data, and an organization public key certificate, where the organization public key is issued by a CA root certificate, and the ciphertext data is data obtained by encrypting merchant information with a tag public key;
a first verification module 120, configured to verify whether the read public key certificate of the organization is legal by using a prestored CA root certificate, and send the tag identifier and the ciphertext data to a background system after the verification is passed, and
a first receiving module 130, configured to receive updated NFC tag data described below;
a writing module 140, configured to write the updated NFC tag data described below into the NFC tag; and
and the payment information generation module 150 is configured to obtain payment information related to payment and send the payment information to the background system.
The backend system 200 includes:
a second receiving module 210, configured to receive, from the user terminal 100, a tag identifier and ciphertext data in the NFC tag data, where the ciphertext data is data encrypted by using a tag public key;
the parsing module 220 is configured to parse the ciphertext data by using a pre-stored tag private key;
a second verifying module 230 for verifying the validity of the tag;
the refreshing module 240 is configured to encrypt and sign the parsed ciphertext data, generate updated NFC tag data, and send the updated NFC tag data to the user terminal; and
and a payment executing module 250, configured to execute payment according to the payment information received from the user terminal, and return a response to the user terminal.
Wherein the reading module 110, the first verifying module 120, the first receiving module 130, and the writing module 140 of the user terminal 100, and the second receiving module 210, the parsing module 220, the second verifying module 230, and the refreshing module 240 of the backend system 200 have the same functions as the same modules shown in fig. 7, and therefore, the same reference numerals are used herein.
In addition, the present invention also provides a computer-readable medium, on which a computer program is stored, which, when executed by a processor, implements the above-described tag data refreshing method.
The present invention also provides a computer-readable medium having stored thereon a computer program which, when executed by a processor, implements the above-described tag data-based payment method.
The present invention also provides a computer-readable medium having stored thereon a computer program which, when executed by a processor, implements the label generation method described above.
The invention also provides a computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the tag data refreshing method when executing the computer program.
The invention also provides a computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor executes the computer program to perform the above-mentioned payment method based on tag data.
The present invention also provides a computer device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, wherein the processor implements the label generation method described above when executing the computer program.
The above examples mainly illustrate the tag generation method, the tag data refreshing method, the payment method based on the tag data, the system thereof, the user terminal, and the background system of the present invention. Although only a few embodiments of the present invention have been described in detail, those skilled in the art will appreciate that the present invention may be embodied in many other forms without departing from the spirit or scope thereof. Accordingly, the present examples and embodiments are to be considered as illustrative and not restrictive, and various modifications and substitutions may be made therein without departing from the spirit and scope of the present invention as defined by the appended claims.

Claims (13)

1. A tag data refreshing method is characterized by comprising the following steps:
reading, namely reading NFC label data from an NFC label by a user terminal, wherein the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data encrypted by using a label public key;
verifying, namely verifying whether the read public key certificate of the organization is legal or not by using a prestored CA root certificate by the user terminal, and sending the label identification and the ciphertext data to a background system after the verification is passed;
analyzing, namely analyzing the ciphertext data by using a pre-stored label private key through a background system;
refreshing, namely, encrypting and signing the analyzed ciphertext data again by the background system to generate updated NFC label data, and sending the updated NFC label data to the user terminal; and
a writing step, in which the user terminal writes the updated NFC tag data into an NFC tag, wherein in the analyzing step, the background system further verifies the validity of the tag after analyzing the ciphertext data by using a pre-stored tag private key, and the refreshing step is carried out after the validity is verified,
wherein the refreshing step comprises:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using an organization private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and fusing the first signature information and the second signature information to serve as updated NFC label data and send the updated NFC label data and the label public key to the user terminal.
2. The tag data refreshing method according to claim 1,
in the step of refreshing, comprising:
the background system encrypts a merchant identifier and a tag identifier obtained by analyzing the ciphertext data by using a tag public key to generate a new tag data ciphertext, and signs by using an organization private key;
the background system uses a label private key to sign the merchant information obtained by analyzing the ciphertext data; and
and sending the new tag data cipher text and signature information, the merchant information and the signature information as the updated NFC tag data and the tag public key to the user terminal.
3. The tag data refreshing method according to claim 2,
the writing step includes:
a user terminal initiates a write request to an NFC tag;
the NFC tag verifies the signature of the ciphertext information in the written updated NFC tag data by adopting an organization public key certificate, and verifies whether the written tag identification is consistent with the existing tag identification;
and writing the updated NFC tag data into the NFC tag under the condition of passing the verification.
4. A tag data refreshing method is characterized by comprising the following steps:
a receiving step, receiving a tag identification and ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is data encrypted by a tag public key;
analyzing, namely analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
a refreshing step, namely encrypting and signing the analyzed ciphertext data to generate updated NFC tag data; and
a transmission step of transmitting the updated NFC tag data,
wherein, in the analysis step, after the ciphertext data is analyzed by utilizing a pre-stored label private key, the validity of the label is further verified, the refreshing step is carried out after the validity verification is passed,
wherein the refreshing step comprises:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using a pre-stored mechanism private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and taking the first signature information and the second signature information as updated NFC label data.
5. A payment method based on tag data, comprising:
reading, namely reading NFC label data from an NFC label by a user terminal, wherein the NFC label data comprises a label identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data encrypted by using a label public key;
verifying, namely verifying whether the read public key certificate of the organization is legal or not by using a prestored CA root certificate by the user terminal, and sending the label identification and the ciphertext data to a background system after the verification is passed;
analyzing, namely analyzing the ciphertext data by using a pre-stored label private key through a background system;
refreshing, namely encrypting and signing the analyzed ciphertext data by a background system to generate updated NFC label data and sending the updated NFC label data to a user terminal;
writing, namely writing the updated NFC tag data into an NFC tag by the user terminal;
a payment information generation step, wherein the user terminal generates payment information related to payment and sends the payment information to a background system; and
a payment executing step, the background system executes payment according to the payment information and returns a response to the user terminal,
wherein, in the analysis step, the background system further verifies the validity of the label after analyzing the ciphertext data by using a pre-stored label private key, and the refreshing step is carried out after the validity is verified,
the refreshing step includes:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using a pre-stored mechanism private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and taking the first signature information and the second signature information as updated NFC label data.
6. A payment method based on tag data, comprising:
reading NFC tag data from an NFC tag, wherein the NFC tag data comprises a tag identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data encrypted by the tag public key;
verifying, namely verifying whether the read public key certificate of the organization is legal or not by utilizing a prestored CA root certificate, and sending the label identification and the ciphertext data after the verification is passed;
a first receiving step of receiving updated NFC tag data from the outside, where the updated NFC tag data is composed of first signature information and second signature information, where a first part of data in the ciphertext data after analysis is encrypted with a tag public key to generate a new tag data ciphertext and signed with a pre-stored organization private key to obtain first signature information, and a second part of data in the ciphertext data after analysis is signed with a tag private key to obtain second signature information;
writing the updated NFC tag data into an NFC tag;
a payment information generation step of generating and transmitting payment information related to payment; and
a second receiving step of receiving a response of the payment performed based on the payment information.
7. A payment method based on tag data, comprising:
a first receiving step of receiving a tag identifier and ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is data encrypted by a tag public key;
analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
a refreshing step, namely encrypting and signing the analyzed ciphertext data to generate updated NFC tag data; and
a sending step of sending the updated NFC tag data;
a second receiving step of receiving and transmitting payment information related to payment from the outside; and
a payment execution step of executing payment according to the payment information and returning a response, wherein,
the refreshing step includes:
encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext, and signing by using a pre-stored mechanism private key to obtain first signature information;
signing a second part of the analyzed ciphertext data by using a tag private key to obtain second signature information; and
and taking the first signature information and the second signature information as updated NFC label data.
8. A computer-readable medium, having stored thereon a computer program,
the computer program when executed by a processor implementing the tag data refresh method of any one of claims 1~4; or which computer program, when executed by a processor, implements a method for payment based on tag data as claimed in any one of claims 5~7.
9. A computer device comprising a memory, a processor, and a computer program stored on the memory and executable on the processor, wherein the processor when executing the computer program implements the tag data refresh method of any one of claims 1~4; or implementing the tag data-based payment method of any one of claims 5~7.
10. A tag data refresh system for refreshing an NFC tag, comprising: a user terminal and a background system,
the user terminal includes:
the NFC tag comprises a reading module, a verification module and a verification module, wherein the reading module is used for reading NFC tag data from an NFC tag, the NFC tag data comprises a tag identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data encrypted by a tag public key;
a verification module for verifying whether the read public key certificate of the organization is legal by using a prestored CA root certificate and sending the label identification and the ciphertext data to a background system after the verification is passed,
the first receiving module is used for receiving updated NFC label data from the outside; and
a write module that writes the updated NFC tag data into an NFC tag,
the background system comprises:
the second receiving module is used for receiving the tag identification and the ciphertext data in the NFC tag data from the outside, wherein the ciphertext data is encrypted by using a tag public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key; and
a refresh module for encrypting and signing the parsed ciphertext data, generating updated NFC tag data and transmitting the updated NFC tag data to a user terminal, wherein,
the refresh module includes:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
a sending module, configured to send the first signature information and the second signature information to the user terminal together with the tag public key as updated NFC tag data, where the background system further includes:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the pre-stored label private key.
11. A backend system, comprising:
the NFC tag comprises a receiving module, a sending module and a receiving module, wherein the receiving module receives NFC tag data from the outside, the NFC tag data comprises a tag identification and ciphertext data, and the ciphertext data is data encrypted by a tag public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
a refresh module for encrypting and signing the analyzed ciphertext data to generate updated NFC tag data, wherein,
the refresh module includes:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
a sending module, configured to send the first signature information and the second signature information to a user terminal together with a tag public key as updated NFC tag data, where the background system further includes:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the pre-stored label private key.
12. A payment system based on tag data, comprising: a user terminal and a background system are arranged in the system,
the user terminal includes:
the NFC tag comprises a reading module, a verification module and a verification module, wherein the reading module is used for reading NFC tag data from an NFC tag, the NFC tag data comprises a tag identification, ciphertext data and an organization public key certificate, the organization public key is issued by a CA root certificate, and the ciphertext data is data encrypted by a tag public key;
the verification module is used for verifying whether the read public key certificate of the organization is legal or not by utilizing the prestored CA root certificate and sending the label identification and the ciphertext data to a background system after the verification is passed;
a write module, configured to write the updated NFC tag data into an NFC tag; and
the payment information generating module is used for acquiring payment information related to payment and sending the payment information to the background system,
the background system comprises:
the NFC label data processing device comprises a receiving module, a sending module and a receiving module, wherein the receiving module receives label identification and ciphertext data in the NFC label data from the outside, and the ciphertext data is data encrypted by a label public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key;
the refreshing module is used for encrypting and signing the analyzed ciphertext data, generating updated NFC tag data and sending the updated NFC tag data to the user terminal; and
a payment execution module for executing payment according to the payment information received from the user terminal and returning a response to the user terminal,
wherein the refresh module comprises:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
a sending module, configured to send the first signature information and the second signature information to the outside as updated NFC tag data together with a tag public key,
wherein the background system further comprises:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the label private key stored in advance.
13. A backend system, comprising:
the NFC label data comprises a label identification and ciphertext data, wherein the ciphertext data is data encrypted by a label public key;
the analysis module is used for analyzing the ciphertext data by utilizing a pre-stored label private key, wherein the label public key and the label private key are a pair of public private keys;
the refreshing module is used for encrypting and signing the analyzed ciphertext data to generate updated NFC tag data; and
a payment execution module for executing payment according to the received payment information and returning a response to the user terminal,
wherein the refresh module comprises:
the first signature module is used for encrypting a first part of data in the analyzed ciphertext data by using a tag public key to generate a new tag data ciphertext and signing by using an organization private key to obtain first signature information;
the second signature module is used for signing a second part of data in the analyzed ciphertext data by using a tag private key to obtain second signature information; and
a sending module, configured to send the first signature information and the second signature information to the outside as updated NFC tag data together with a tag public key, where the background system further includes:
and the verification module is used for further verifying the validity of the label after the ciphertext data is analyzed by using the label private key stored in advance.
CN201811236428.0A 2018-10-23 2018-10-23 Label data refreshing method and system, payment method and system Active CN111092719B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811236428.0A CN111092719B (en) 2018-10-23 2018-10-23 Label data refreshing method and system, payment method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811236428.0A CN111092719B (en) 2018-10-23 2018-10-23 Label data refreshing method and system, payment method and system

Publications (2)

Publication Number Publication Date
CN111092719A CN111092719A (en) 2020-05-01
CN111092719B true CN111092719B (en) 2022-11-15

Family

ID=70391908

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811236428.0A Active CN111092719B (en) 2018-10-23 2018-10-23 Label data refreshing method and system, payment method and system

Country Status (1)

Country Link
CN (1) CN111092719B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111783914A (en) * 2020-07-01 2020-10-16 Oppo广东移动通信有限公司 Information processing method, information processing device and mobile terminal
CN113379412A (en) * 2021-02-26 2021-09-10 ***股份有限公司 Readable and writable electronic tag, payment method and device based on tag
CN115630656B (en) * 2022-08-18 2023-06-27 芯电智联(北京)科技有限公司 Processing method for activating NFC label issuing data
CN115633338B (en) * 2022-08-18 2023-07-14 芯电智联(北京)科技有限公司 NFC tag data updating processing method, NFC tag data updating processing equipment and storage medium

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103795546A (en) * 2014-02-18 2014-05-14 广东数字证书认证中心有限公司 Generating method and authentication method of data label and system of generating method and authentication method

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102236773A (en) * 2010-04-30 2011-11-09 航天信息股份有限公司 Radio frequency identification (RFID) encryption verification system and method
CN103839088A (en) * 2012-11-22 2014-06-04 汉朗科技(北京)有限责任公司 Electronic label system based on near-distance wireless communication technology, and electronic label updating method
KR101449611B1 (en) * 2013-07-19 2014-10-14 숭실대학교산학협력단 System for authenticating rfid(radio frequency identification) tag
CN104951837A (en) * 2014-03-31 2015-09-30 中国电信股份有限公司 Order generation method through short-distance wireless communication tag and system thereof
CN107547472A (en) * 2016-06-27 2018-01-05 中国电信股份有限公司 Identity authentication method, user terminal and system are realized based on RFID
CN108334927B (en) * 2018-04-25 2024-03-26 江苏恒宝智能***技术有限公司 NFC (near field communication) receipt tag and payment method thereof

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103795546A (en) * 2014-02-18 2014-05-14 广东数字证书认证中心有限公司 Generating method and authentication method of data label and system of generating method and authentication method

Also Published As

Publication number Publication date
CN111092719A (en) 2020-05-01

Similar Documents

Publication Publication Date Title
US11877213B2 (en) Methods and systems for asset obfuscation
CN110692214B (en) Method and system for ownership verification using blockchain
US11323272B2 (en) Electronic identification verification methods and systems with storage of certification records to a side chain
TWI697842B (en) Two-dimensional barcode processing method, device and system
US20220342973A1 (en) Systems, apparatus and methods for secure electrical communication of biometric personal identification information to validate the identity of an individual
CN111092719B (en) Label data refreshing method and system, payment method and system
CN102713922B (en) For the method whenever confirmed to checking token
KR101863953B1 (en) System and method for providing electronic signature service
CN113572715B (en) Data transmission method and system based on block chain
TR201810238T4 (en) The appropriate authentication method and apparatus for the user using a mobile authentication application.
CN109120395B (en) Tag data generation method, tag and data processing based on NFC tag
US20200196143A1 (en) Public key-based service authentication method and system
CN105515783A (en) Identity authentication method, server and authentication terminal
TWI529641B (en) System for verifying data displayed dynamically by mobile and method thereof
CN107995200B (en) Certificate issuing method, identity authentication method and system based on smart card
CN109818965B (en) Personal identity verification device and method
JP2018530054A (en) Payment authentication method and apparatus for mobile terminal and mobile terminal
CN111709747B (en) Intelligent terminal authentication method and system
KR102348823B1 (en) System and Method for Identification Based on Finanace Card Possessed by User
KR102122555B1 (en) System and Method for Identification Based on Finanace Card Possessed by User
KR101666591B1 (en) One time password certifacation system and method
JPWO2011058629A1 (en) Information management system
KR102160892B1 (en) Public key infrastructure based service authentication method and system
KR20140063256A (en) Payment method and system
CN111489211A (en) Billing processing method, billing processing device and billing processing medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant