CN116228245A - Electronic direct payment authorization method, device, electronic equipment and medium - Google Patents

Electronic direct payment authorization method, device, electronic equipment and medium Download PDF

Info

Publication number
CN116228245A
CN116228245A CN202310225898.1A CN202310225898A CN116228245A CN 116228245 A CN116228245 A CN 116228245A CN 202310225898 A CN202310225898 A CN 202310225898A CN 116228245 A CN116228245 A CN 116228245A
Authority
CN
China
Prior art keywords
field
login request
payment authorization
direct payment
electronic direct
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202310225898.1A
Other languages
Chinese (zh)
Inventor
夏晓鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Industrial and Commercial Bank of China Ltd ICBC
Original Assignee
Industrial and Commercial Bank of China Ltd ICBC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Industrial and Commercial Bank of China Ltd ICBC filed Critical Industrial and Commercial Bank of China Ltd ICBC
Priority to CN202310225898.1A priority Critical patent/CN116228245A/en
Publication of CN116228245A publication Critical patent/CN116228245A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/10Payment architectures specially adapted for electronic funds transfer [EFT] systems; specially adapted for home banking systems

Landscapes

  • Business, Economics & Management (AREA)
  • Accounting & Taxation (AREA)
  • Finance (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present disclosure provides an electronic direct payment authorization method, which relates to the internet and financial field. The method comprises the following steps: responding to an online banking login request initiated by a payer, wherein the online banking login request is used for requesting to execute money information to be paid, and carrying out field analysis on the online banking login request to obtain a request analysis field; judging whether the online banking login request belongs to a login request of the electronic direct payment authorization protocol according to a first specified field in the request analysis field, and judging whether the electronic direct payment authorization protocol is signed according to a second specified field in the request analysis field if the online banking login request belongs to the login request of the electronic direct payment authorization protocol; and under the condition that the electronic direct payment authorization protocol is confirmed to be signed, carrying out deduction payment operation according to the electronic direct payment authorization protocol and the payment information. The present disclosure also provides an electronic direct payment authorization apparatus, device, storage medium, and program product.

Description

Electronic direct payment authorization method, device, electronic equipment and medium
Technical Field
The present disclosure relates to the internet and financial arts, and more particularly, to an electronic direct payment authorization method, apparatus, device, medium and program product.
Background
With the vigorous development of information technology and electronic commerce, the payment transfer on a network banking wire becomes the mainstream of personal transactions. Meanwhile, electronic direct payment authority (eDDA) allows the payee to directly collect money to the payer, who can set up an electronic direct payment authority indication to the designated payee, determine its highest amount, effective date length and period, and can be validated immediately after the establishment is completed.
However, in the existing overseas personal customers, on the basis of payment and transfer on a network banking line, an eDDA service account needs to be opened separately, so that the operation is complex, and security risks and property losses are easily caused.
Disclosure of Invention
In view of the foregoing, the present disclosure provides an electronic direct payment authorization method, apparatus, device, medium, and program product.
According to a first aspect of the present disclosure, there is provided an electronic direct payment authorization method comprising: responding to an online banking login request initiated by a payer, wherein the online banking login request is used for requesting to execute money information to be paid, and carrying out field analysis on the online banking login request to obtain a request analysis field; judging whether the online banking login request belongs to a login request of the electronic direct payment authorization protocol according to a first specified field in the request analysis field, and judging whether the electronic direct payment authorization protocol is signed according to a second specified field in the request analysis field if the online banking login request belongs to the login request of the electronic direct payment authorization protocol; and under the condition that the electronic direct payment authorization protocol is confirmed to be signed, carrying out deduction payment operation according to the electronic direct payment authorization protocol and the payment information.
According to an embodiment of the present disclosure, the request parsing field includes a plurality of sets of key value pairs each composed of a field name and a parameter value; the two adjacent key value pairs are connected by a preset separator, and a first specified field or a second specified field is extracted from the request analysis field according to the separator.
According to an embodiment of the present disclosure, the parameter value of the first specified field comprises null or non-null, wherein: when the parameter value of the first appointed field is non-empty, determining that the online banking login request belongs to a login request of an electronic direct payment authorization protocol; and when the parameter value of the first designated field is empty, determining that the online banking login request belongs to a common online banking login request.
According to an embodiment of the present disclosure, the parameter value of the second specified field comprises a first parameter value, a second parameter value or a third parameter value, wherein: determining to sign an electronic direct payment authorization protocol when the parameter value of the second specified field is the first parameter value; determining to cancel the electronic direct payment authorization protocol when the parameter value of the second specified field is the second parameter value; and when the parameter value of the second designated field is a third parameter value, determining an electronic direct payment authorization protocol customization column which jumps to the branch, wherein the third parameter value represents the area number of the branch.
In accordance with an embodiment of the present disclosure, in the case where it is determined that the online banking login request belongs to a login request of an electronic direct payment authorization protocol, the method further comprises: performing first type authentication on the online banking login request; after the first type authentication is passed, judging whether to perform second type authentication according to the state of the control switch, and if so, performing second type authentication on the internet banking login request, wherein the intensity of the second type authentication is higher than that of the first type authentication; and after the second type authentication is passed, judging whether an electronic direct payment authorization protocol is signed according to a second designated field in the request analysis field.
According to an embodiment of the present disclosure, the first type of authentication includes a static password check, and the second type of authentication includes at least one of medium authentication and short message authentication.
According to an embodiment of the present disclosure, in the case where it is determined that the second type authentication is not performed according to the state of the control switch, it is determined whether to sign the electronic direct payment authority protocol according to the second specified field in the request resolution field.
According to an embodiment of the present disclosure, the online banking login request is initiated when the payer logs in using the personal online banking framework.
According to a second aspect of the present disclosure, there is provided an electronic direct payment authorisation device comprising: the request analysis module is used for responding to an online banking login request initiated by a payer, wherein the online banking login request is used for requesting to execute money information to be paid, and carrying out field analysis on the online banking login request to obtain a request analysis field; the authorization protocol determining module is used for judging whether the online banking login request belongs to a login request of the electronic direct payment authorization protocol according to a first specified field in the request analysis field, and judging whether the electronic direct payment authorization protocol is signed according to a second specified field in the request analysis field if the online banking login request belongs to the login request of the electronic direct payment authorization protocol; and the deduction payment module is used for carrying out deduction payment operation according to the electronic direct payment authorization protocol and the payment information under the condition that the electronic direct payment authorization protocol is confirmed to be signed.
According to a third aspect of the present disclosure, there is provided an electronic device comprising: one or more processors; and a memory for storing one or more programs, wherein the one or more programs, when executed by the one or more processors, cause the one or more processors to perform the electronic direct payment authorization method described above.
According to a fourth aspect of the present disclosure, there is provided a computer readable storage medium having stored thereon executable instructions that, when executed by a processor, cause the processor to perform the above-described electronic direct payment authorization method.
According to a fifth aspect of the present disclosure, there is provided a computer program product comprising a computer program which, when executed by a processor, implements the electronic direct payment authorization method described above.
Drawings
The foregoing and other objects, features and advantages of the disclosure will be more apparent from the following description of embodiments of the disclosure with reference to the accompanying drawings, in which:
FIG. 1 schematically illustrates a system architecture suitable for electronic direct payment authorization methods and apparatus in accordance with embodiments of the present disclosure;
FIG. 2 schematically illustrates a flow chart of an electronic direct payment authorization method in accordance with an embodiment of the present disclosure;
FIG. 3 schematically illustrates a schematic diagram of an electronic direct payment authorization method in accordance with an embodiment of the present disclosure;
FIG. 4 schematically illustrates a flow chart of an online banking login authentication process, according to an embodiment of the present disclosure;
FIG. 5 schematically illustrates a block diagram of an electronic direct payment authorization device in accordance with an embodiment of the present disclosure;
fig. 6 schematically illustrates a block diagram of an electronic device adapted to implement an electronic direct payment authorization method in accordance with an embodiment of the present disclosure.
Detailed Description
Hereinafter, embodiments of the present disclosure will be described with reference to the accompanying drawings. It should be understood that the description is only exemplary and is not intended to limit the scope of the present disclosure. In the following detailed description, for purposes of explanation, numerous specific details are set forth in order to provide a thorough understanding of the embodiments of the present disclosure. It may be evident, however, that one or more embodiments may be practiced without these specific details. In addition, in the following description, descriptions of well-known structures and techniques are omitted so as not to unnecessarily obscure the concepts of the present disclosure.
The terminology used herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the disclosure. The terms "comprises," "comprising," and/or the like, as used herein, specify the presence of stated features, steps, operations, and/or components, but do not preclude the presence or addition of one or more other features, steps, operations, or components.
All terms (including technical and scientific terms) used herein have the same meaning as commonly understood by one of ordinary skill in the art unless otherwise defined. It should be noted that the terms used herein should be construed to have meanings consistent with the context of the present specification and should not be construed in an idealized or overly formal manner.
Where expressions like at least one of "A, B and C, etc. are used, the expressions should generally be interpreted in accordance with the meaning as commonly understood by those skilled in the art (e.g.," a system having at least one of A, B and C "shall include, but not be limited to, a system having a alone, B alone, C alone, a and B together, a and C together, B and C together, and/or A, B, C together, etc.).
Some of the block diagrams and/or flowchart illustrations are shown in the figures. It will be understood that some blocks of the block diagrams and/or flowchart illustrations, or combinations of blocks in the block diagrams and/or flowchart illustrations, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus, such that the instructions, when executed by the processor, create means for implementing the functions/acts specified in the block diagrams and/or flowchart. The techniques of this disclosure may be implemented in hardware and/or software (including firmware, microcode, etc.). Additionally, the techniques of this disclosure may take the form of a computer program product on a computer-readable storage medium having instructions stored thereon, the computer program product being for use by or in connection with an instruction execution system.
In the technical scheme of the disclosure, the related processes of collecting, storing, using, processing, transmitting, providing, disclosing, applying and the like of the personal information of the user all conform to the regulations of related laws and regulations, necessary security measures are adopted, and the public order harmony is not violated.
In the technical scheme of the disclosure, the authorization or consent of the user is obtained before the personal information of the user is obtained or acquired.
Existing electronic direct payment authority (eDDA) allows payees to collect money directly to payees who can set up an electronic direct payment authority indication to a designated payee, which can be validated immediately after the set up is completed. However, the eDDA requires individual customers to individually open an eDDA service account to do so.
Embodiments of the present disclosure provide an electronic direct payment authorization method, apparatus, device, storage medium and program product, relating to the internet and financial fields, which may be used in the financial field or other fields. The method comprises the following steps: responding to an online banking login request initiated by a payer, wherein the online banking login request is used for requesting to execute money information to be paid, and carrying out field analysis on the online banking login request to obtain a request analysis field; judging whether the online banking login request belongs to a login request of the electronic direct payment authorization protocol according to a first specified field in the request analysis field, and judging whether the electronic direct payment authorization protocol is signed according to a second specified field in the request analysis field if the online banking login request belongs to the login request of the electronic direct payment authorization protocol; and under the condition that the electronic direct payment authorization protocol is confirmed to be signed, carrying out deduction payment operation according to the electronic direct payment authorization protocol and the payment information.
Fig. 1 schematically illustrates an application scenario suitable for an electronic direct payment authorization method and apparatus according to an embodiment of the present disclosure. It should be noted that fig. 1 illustrates only an example of an application scenario in which the embodiments of the present disclosure may be applied to help those skilled in the art understand the technical content of the present disclosure, but it does not mean that the embodiments of the present disclosure may not be applied to other devices, systems, environments, or scenarios.
As shown in fig. 1, an application scenario 100 according to this embodiment may include a payer terminal 110, a transaction server 120, and a payee terminal 130, the application scenario 100 being primarily for individual customers and implemented in a private business process. The network, which may include various connection types such as wired, wireless communication links, or fiber optic cables, etc., is used to provide a medium of communication links between the payer terminal 110 and the transaction server 120, and between the transaction server 120 and the payee terminal 130.
The payer user may interact with the transaction server 120 through a network using the payer terminal 110 to receive or send messages, etc. The payee user may interact with the transaction server 120 over a network using the payee terminal 130 to receive or send messages, etc.
The payer terminal 110 and payee terminal 130 may each be various electronic devices having a display screen and supporting web browsing, including but not limited to smartphones, tablets, laptop and desktop computers, and the like.
The transaction server 120 may be a server providing various services, such as a background management server providing support for websites browsed by payer users using the payer terminal 110, such as a personal internet banking framework of a commercial bank. The background management server may analyze and process the received data such as the user request, and feed back the processing result (e.g., web page, information, data, etc., acquired or generated according to the user request) to the payer terminal 110.
It should be noted that the electronic direct payment authorization method provided by the embodiments of the present disclosure may be generally performed by the transaction server 120. Accordingly, the electronic direct payment authorization device provided by the embodiments of the present disclosure may be generally disposed in the transaction server 120.
It should be understood that the number of payer terminals, transaction servers, and payee terminals in fig. 1 are merely illustrative. There may be any number of payer terminals, transaction servers, and payee terminals, as desired for implementation.
The electronic direct payment authorization method according to the embodiments of the present disclosure will be described in detail below with reference to fig. 2 to 4 based on the application scenario described in fig. 1.
Fig. 2 schematically illustrates a flow chart of an electronic direct payment authorization method in accordance with an embodiment of the present disclosure. Fig. 3 schematically illustrates a schematic diagram of an electronic direct payment authorization method in accordance with an embodiment of the present disclosure.
As shown in fig. 2 and 3, the electronic direct payment authorization method of this embodiment may include operations S210 to S230.
In operation S210, in response to the online banking login request initiated by the payer, the online banking login request is used for requesting to execute the payment information to be paid, and field analysis is performed on the online banking login request to obtain a request analysis field.
In the disclosed embodiments, the online banking login request is initiated when the payer logs in using the personal online banking framework. For example, a payer user initiates the online banking login request when logging in using the personal online banking framework of a commercial bank. The payer may be, for example, an overseas personal customer.
It should be noted that, before field parsing is performed on the online banking login request, approval or authorization of the payer user may be obtained. For example, before operation S210, a request to acquire user information may be issued to the payer user. In case that the user agrees or authorizes that the user information can be acquired, operation S210 is performed.
In the disclosed embodiment, the request parsing field includes a plurality of sets of key value pairs each consisting of a field name and a parameter value. The two adjacent key value pairs are connected by a preset separator, and a first specified field or a second specified field is extracted from the request analysis field according to the separator.
For example, the separator may be set to &, and then the key pairs of each group are connected. Each set of key-value pairs takes the format keyname = value, where keyname represents a field name and value represents a parameter value. The field names and parameter values are each represented in the form of a string.
In operation S220, it is determined whether the online banking login request belongs to a login request of the electronic direct payment authorization protocol according to the first specified field in the request resolution field, and if so, it is determined whether to sign the electronic direct payment authorization protocol according to the second specified field in the request resolution field.
In an embodiment of the present disclosure, the parameter value of the first specified field includes null or non-null, wherein: when the parameter value of the first appointed field is non-empty, determining that the online banking login request belongs to a login request of an electronic direct payment authorization protocol; and when the parameter value of the first designated field is empty, determining that the online banking login request belongs to a common online banking login request.
By the electronic direct payment authorization method provided by the embodiment of the disclosure, the eDDA login request can be simply and efficiently identified, and the eDDA login request can be conveniently processed in time so as to be distinguished from the ordinary online banking login request.
For example, the field name of the first specified field may be set to applicant bankcode, which is a content that must be set, as a flag that identifies the eDDA login request. When the parameter value of the applicant BankCode is empty, determining that the online banking login request belongs to a common online banking login request. When the parameter value of the applicant BankCode is not null, the network bank login request is determined to belong to the login request of the electronic direct payment authorization protocol, and the processing flow of the eDDA can be enabled.
In an embodiment of the present disclosure, the parameter value of the second specified field comprises a first parameter value, a second parameter value or a third parameter value, wherein: determining to sign an electronic direct payment authorization protocol when the parameter value of the second specified field is the first parameter value; determining to cancel the electronic direct payment authorization protocol when the parameter value of the second specified field is the second parameter value; and when the parameter value of the second designated field is a third parameter value, determining an electronic direct payment authorization protocol customization column which jumps to the branch, wherein the third parameter value represents the area number of the branch.
For example, the field name of the second specified field may be set to the requestType as a flag for the eDDA protocol authorization or cancellation operation. The first parameter value may be designated as Creation, the second parameter value may be designated as cancelation, and the third parameter value may be designated as cancel. Therefore, when the requesttype=creation, the electronic direct payment authorization protocol can be determined to be signed, and the personal internet banking framework jumps to a signing interface showing the eDDA protocol; when the requesttype=accounting, the electronic direct payment authorization protocol can be determined to be canceled, and the personal internet banking framework jumps to a canceling interface displaying the eDDA protocol; when requestType =, the electronic direct payment authorization protocol customization column for jumping to the branch may be determined, wherein the third parameter value characterizes the area number of the branch.
According to the electronic direct payment authorization method provided by the embodiment of the invention, the eDDA protocol authorization can be signed and cancelled according to the second designated field, or the eDDA related column with the characteristic of jumping and branching can be customized, the eDDA protocol can be customized in a personalized way, the eDDA protocol authorization flow is simplified, and the use experience of a user is improved.
For example, the request resolution field corresponding to the online banking login request may be expressed as follows, if the condition of determining to sign up the electronic direct payment authorization protocol is satisfied:
https://myebank.icbc.com.cn/icbc/perbank/index.jspareaCode=0103
&applicantBankCode=XYZBANK
&boDDARefNo=A0012334455
&boName=SingHub
&boTransactionRefNo=BOSIN199201624D20210303101010123456
&clientID=BOSIN199201624D
&purpose=UBIL
&requestID=a6bfc2c0-3d46-11eb-adc1-0242ac120002
&requestType=Creation
&segment=Retail
&nonce=79399129924850509749
&timestamp=1604536682681
&signKeyAlias=AGK1
&signature=PemX81KmjVt3VsLm2T8gGDovEeFaePe…
conversely, for example, the request resolution field corresponding to the internet banking login request may be expressed as follows without signing on the electronic direct payment authorization protocol:
https://myebank.icbc.com.cn/icbc/perbank/index.jspareaCode=0103
&applicantBankCode=XYZBANK
&boDDARefNo=A0012334455
&boName=SingHub
&boTransactionRefNo=BOSIN199201624D2
0210303101010123456
&clientID=BOSIN199201624D
&requestID=a6bfc2c0-3d46-11eb-adc1-0242ac120002
&requestType=Cancellation
&segment=Retail
&nonce=79399129924850509749
&timestamp=1604536682681
&signKeyAlias=AGK1
&signature=PemX81KmjVt3VsLm2T8gGDovEeFaePe…
it should be noted that, when it is determined that the online banking login request belongs to a login request of the electronic direct payment authorization protocol, a request analysis field corresponding to the online banking login request may be stored in the session variable pub_edda_text for use in eDDA transactions. For example, when the first or second specified field is used, the variable pub_edda_text may be divided and taken using a separator.
In operation S230, in case it is determined that the electronic direct payment authority protocol is signed, a deduction payment operation is performed according to the electronic direct payment authority protocol and the money information.
According to the electronic direct payment authorization method provided by the embodiment of the disclosure, the identification authentication of the eDDA protocol is realized through the online banking login request initiated by the payer using the personal online banking framework to log in, and then the authorization of the eDDA protocol is opened through the appointed field, so that a user of the payer does not need to independently open an eDDA service account, the operation flow of opening, canceling or other eDDA protocol services of the user of the payer is simplified, safer and more convenient services are provided, and the security risk and property loss are avoided.
Fig. 4 schematically illustrates a flowchart of an online banking login authentication process according to an embodiment of the present disclosure.
As shown in fig. 3 and 4, in the embodiment of the disclosure, in the case where the above-mentioned operation S220 determines that the internet banking login request belongs to a login request of an electronic direct payment authorization protocol, the electronic direct payment authorization method may further include operations S2201 to S2203.
In operation S2201, a first type authentication is performed on an online banking login request.
In operation S2202, after the first type authentication is passed, it is determined whether the second type authentication is performed according to the state of the control switch, and if so, the second type authentication is performed on the internet banking login request. Wherein the second type of authentication is stronger than the first type of authentication.
For example, when the state of the control switch is on, determining that a second type of authentication is required; otherwise, when the state of the control switch is off, the second type authentication is not required.
In operation S2203, after the second type authentication is passed, it is determined whether to sign the electronic direct payment authorization protocol according to the second specified field in the request resolution field.
By the electronic direct payment authorization method provided by the embodiment of the disclosure, the authentication security of the eDDA protocol is improved by two types of authentication. The method shortens the service flow, improves the safety and provides safety guarantee for clients to transact online services.
In an embodiment of the disclosure, the first type of authentication includes a static password check, and the second type of authentication includes at least one of a media authentication and a short message authentication.
In the embodiment of the present disclosure, in the case where it is determined that the second type of authentication is not performed according to the state of the control switch in operation S2202 described above, it is determined whether to sign the electronic direct payment authority protocol according to the second specified field in the request resolution field.
According to the electronic direct payment authorization method provided by the embodiment of the disclosure, the first type authentication is the necessary authentication item, the second type authentication is the optional authentication item, so that a payer user can freely select the authentication item, and the use experience of the user is fully considered while the authentication security is improved.
For example, as shown in fig. 3, after determining that the internet banking login request belongs to the login request of the electronic direct payment authorization protocol, static password verification is required first, after the verification is passed, whether to perform second type authentication is judged according to the state of the control switch, when the state of the control switch is on, the second type authentication is required, and when the second type authentication comprises both medium authentication and short message authentication, after the medium authentication and the short message authentication pass, whether to sign the electronic direct payment authorization protocol can be judged according to the second designated field. Any authentication mode in the second type authentication is not passed, and the login flow is terminated. And when the state of the control switch is off, the second type authentication can be skipped, and whether the electronic direct payment authorization protocol is signed or not can be judged directly according to the second designated field.
It should be noted that, since the strength of the second type of authentication is higher than that of the first type of authentication, the manner of the second type of authentication may be freely specified or selected by the client of the payer, including but not limited to medium authentication and short message authentication, and the invention is not limited in particular.
After the authentication is passed, basic information of the payer client, such as client number, certificate number, authentication mobile phone number and the like, can be obtained through the personal internet banking framework, and the basic information and fields in the variable pub_eDDA_text are used for the subsequent client operation.
Based on the electronic direct payment authorization method, the disclosure also provides an electronic direct payment authorization device. The device will be described in detail below in connection with fig. 5.
Fig. 5 schematically illustrates a block diagram of an electronic direct payment authorization device in accordance with an embodiment of the present disclosure.
As shown in fig. 5, the electronic direct payment authorization device 500 of this embodiment includes a request resolution module 510, an authorization protocol determination module 520, and a deduction payment module 530.
The request parsing module 510 is configured to respond to an online banking login request initiated by a payer, where the online banking login request is used for requesting to execute money information to be paid, and perform field parsing on the online banking login request to obtain a request parsing field. In some embodiments, the request parsing module 510 may be used to perform the operation S210 described above, which is not described herein.
The authorization protocol determining module 520 is configured to determine whether the online banking login request belongs to a login request of the electronic direct payment authorization protocol according to a first specified field in the request parsing field, and if so, determine whether to sign the electronic direct payment authorization protocol according to a second specified field in the request parsing field. In some embodiments, the authorization protocol determining module 520 may be configured to perform the operation S220 described above, which is not described herein.
And the deduction payment module 530 is configured to perform a deduction payment operation according to the electronic direct payment authorization protocol and the payment information when it is determined to sign the electronic direct payment authorization protocol. In some embodiments, the deduction payment module 530 may be used to perform the operation S230 described above, which is not described herein.
According to the embodiment of the invention, the identification authentication of the eDDA protocol is realized through the online banking login request initiated by the payer using the personal online banking framework login, and then the authorization of the eDDA protocol is opened through the appointed field, so that the user of the payer does not need to independently open an eDDA service account, the operation flow of opening, canceling or other eDDA protocol services by the user of the payer is simplified, safer and more convenient services are provided, and the security risk and property loss are avoided.
It should be noted that, the embodiment mode of the apparatus portion is similar to the embodiment mode of the method portion, and the achieved technical effects are also similar, and specific details refer to the embodiment mode portion of the method and are not repeated herein.
Any of the plurality of modules of request resolution module 510, authorization protocol determination module 520, and deduction payment module 530 may be combined in one module or any of the plurality of modules may be split into a plurality of modules according to embodiments of the present disclosure. Alternatively, at least some of the functionality of one or more of the modules may be combined with at least some of the functionality of other modules and implemented in one module. At least one of the request resolution module 510, the authorization protocol determination module 520, and the payoff module 530 may be implemented, at least in part, as hardware circuitry, such as a Field Programmable Gate Array (FPGA), a Programmable Logic Array (PLA), a system on a chip, a system on a substrate, a system on a package, an Application Specific Integrated Circuit (ASIC), or in hardware or firmware, such as any other reasonable way of integrating or packaging circuitry, or in any one of or a suitable combination of three of software, hardware, and firmware, according to embodiments of the present disclosure. Alternatively, at least one of the request resolution module 510, the authorization protocol determination module 520, and the deduction payment module 530 may be at least partially implemented as a computer program module, which when executed may perform the corresponding functions.
Fig. 6 schematically illustrates a block diagram of an electronic device adapted to implement an electronic direct payment authorization method in accordance with an embodiment of the present disclosure.
As shown in fig. 6, an electronic device 600 according to an embodiment of the present disclosure includes a processor 601 that can perform various appropriate actions and processes according to a program stored in a Read Only Memory (ROM) 602 or a program loaded from a storage section 608 into a Random Access Memory (RAM) 603. The processor 601 may include, for example, a general purpose microprocessor (e.g., a CPU), an instruction set processor and/or an associated chipset and/or a special purpose microprocessor (e.g., an Application Specific Integrated Circuit (ASIC)), or the like. Processor 601 may also include on-board memory for caching purposes. The processor 601 may comprise a single processing unit or a plurality of processing units for performing different actions of the method flows according to embodiments of the disclosure.
In the RAM603, various programs and data necessary for the operation of the electronic apparatus 600 are stored. The processor 601, the ROM 602, and the RAM603 are connected to each other through a bus 604. The processor 601 performs various operations of the method flow according to the embodiments of the present disclosure by executing programs in the ROM 602 and/or the RAM 603. Note that the program may be stored in one or more memories other than the ROM 602 and the RAM 603. The processor 601 may also perform various operations of the method flow according to embodiments of the present disclosure by executing programs stored in the one or more memories.
According to an embodiment of the present disclosure, the electronic device 600 may also include an input/output (I/O) interface 605, the input/output (I/O) interface 605 also being connected to the bus 604. The electronic device 600 may also include one or more of the following components connected to the I/O interface 605: an input portion 606 including a keyboard, mouse, etc.; an output portion 607 including a Cathode Ray Tube (CRT), a Liquid Crystal Display (LCD), and the like, a speaker, and the like; a storage section 608 including a hard disk and the like; and a communication section 609 including a network interface card such as a LAN card, a modem, or the like. The communication section 609 performs communication processing via a network such as the internet. The drive 610 is also connected to the I/O interface 605 as needed. Removable media 611 such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, or the like is installed as needed on drive 610 so that a computer program read therefrom is installed as needed into storage section 608.
The present disclosure also provides a computer-readable storage medium that may be embodied in the apparatus/device/system described in the above embodiments; or may exist alone without being assembled into the apparatus/device/system. The computer-readable storage medium carries one or more programs which, when executed, implement an electronic direct payment authorization method according to an embodiment of the present disclosure.
According to embodiments of the present disclosure, the computer-readable storage medium may be a non-volatile computer-readable storage medium, which may include, for example, but is not limited to: a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the context of this disclosure, a computer-readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device. For example, according to embodiments of the present disclosure, the computer-readable storage medium may include ROM 602 and/or RAM603 and/or one or more memories other than ROM 602 and RAM603 described above.
Embodiments of the present disclosure also include a computer program product comprising a computer program containing program code for performing the methods shown in the flowcharts. The program code means for causing a computer system to carry out the electronic direct payment authorization method provided by the embodiments of the present disclosure when the computer program product is run on the computer system.
The above-described functions defined in the system/apparatus of the embodiments of the present disclosure are performed when the computer program is executed by the processor 601. The systems, apparatus, modules, units, etc. described above may be implemented by computer program modules according to embodiments of the disclosure.
In one embodiment, the computer program may be based on a tangible storage medium such as an optical storage device, a magnetic storage device, or the like. In another embodiment, the computer program may also be transmitted, distributed in the form of signals over a network medium, and downloaded and installed via the communication section 609, and/or installed from the removable medium 611. The computer program may include program code that may be transmitted using any appropriate network medium, including but not limited to: wireless, wired, etc., or any suitable combination of the foregoing.
In such an embodiment, the computer program may be downloaded and installed from a network through the communication portion 609, and/or installed from the removable medium 611. The above-described functions defined in the system of the embodiments of the present disclosure are performed when the computer program is executed by the processor 601. The systems, devices, apparatus, modules, units, etc. described above may be implemented by computer program modules according to embodiments of the disclosure.
According to embodiments of the present disclosure, program code for performing computer programs provided by embodiments of the present disclosure may be written in any combination of one or more programming languages, and in particular, such computer programs may be implemented in high-level procedural and/or object-oriented programming languages, and/or assembly/machine languages. Programming languages include, but are not limited to, such as Java, c++, python, "C" or similar programming languages. The program code may execute entirely on the user's computing device, partly on the user's device, partly on a remote computing device, or entirely on the remote computing device or server. In the case of remote computing devices, the remote computing device may be connected to the user computing device through any kind of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or may be connected to an external computing device (e.g., connected via the Internet using an Internet service provider).
The flowcharts and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present disclosure. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code, which comprises one or more executable instructions for implementing the specified logical function(s). It should also be noted that, in some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams or flowchart illustration, and combinations of blocks in the block diagrams or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
Those skilled in the art will appreciate that the features recited in the various embodiments of the disclosure and/or in the claims may be provided in a variety of combinations and/or combinations, even if such combinations or combinations are not explicitly recited in the disclosure. In particular, the features recited in the various embodiments of the present disclosure and/or the claims may be variously combined and/or combined without departing from the spirit and teachings of the present disclosure. All such combinations and/or combinations fall within the scope of the present disclosure.
The embodiments of the present disclosure are described above. However, these examples are for illustrative purposes only and are not intended to limit the scope of the present disclosure. Although the embodiments are described above separately, this does not mean that the measures in the embodiments cannot be used advantageously in combination. The scope of the disclosure is defined by the appended claims and equivalents thereof. Various alternatives and modifications can be made by those skilled in the art without departing from the scope of the disclosure, and such alternatives and modifications are intended to fall within the scope of the disclosure.

Claims (12)

1. An electronic direct payment authorization method, comprising:
responding to an online banking login request initiated by a payer, wherein the online banking login request is used for requesting to execute money information to be paid, and carrying out field analysis on the online banking login request to obtain a request analysis field;
judging whether the online banking login request belongs to a login request of an electronic direct payment authorization protocol according to a first appointed field in the request analysis field, if so, judging whether the electronic direct payment authorization protocol is signed according to a second appointed field in the request analysis field; and
and under the condition that the electronic direct payment authorization protocol is confirmed to be signed, carrying out deduction payment operation according to the electronic direct payment authorization protocol and the money information.
2. The method of claim 1, wherein the request resolution field comprises a plurality of sets of key value pairs each consisting of a field name and a parameter value;
and connecting two adjacent groups of key value pairs by a preset separator, and extracting the first specified field or the second specified field from the request analysis field according to the separator.
3. The method of claim 2, wherein the parameter value of the first specified field comprises null or non-null, wherein:
when the parameter value of the first appointed field is non-null, determining that the online banking login request belongs to a login request of an electronic direct payment authorization protocol;
and when the parameter value of the first appointed field is empty, determining that the internet banking login request belongs to a common internet banking login request.
4. The method of claim 2, wherein the parameter value of the second specified field comprises a first parameter value, a second parameter value, or a third parameter value, wherein:
determining to sign the electronic direct payment authorization protocol when the parameter value of the second specified field is the first parameter value;
determining to cancel the electronic direct payment authorization protocol when the parameter value of the second specified field is a second parameter value;
and when the parameter value of the second designated field is a third parameter value, determining an electronic direct payment authorization protocol customization column which jumps to the branch, wherein the third parameter value represents the area number of the branch.
5. The method of claim 1, wherein in the event that the online banking login request is determined to belong to a login request of an electronic direct payment authorization protocol, the method further comprises:
performing first type authentication on the online banking login request;
after the first type authentication is passed, judging whether to perform second type authentication according to the state of a control switch, and if so, performing second type authentication on the online banking login request, wherein the intensity of the second type authentication is higher than that of the first type authentication; and
and after the second type authentication is passed, judging whether the electronic direct payment authorization protocol is signed according to a second designated field in the request analysis field.
6. The method of claim 5, wherein the first type of authentication comprises a static password check and the second type of authentication comprises at least one of a media authentication and a short message authentication.
7. The method of claim 5, wherein in the event that it is determined that the second type of authentication is not performed according to the state of the control switch, determining whether to sign the electronic direct payment authority protocol according to a second specified field of the request resolution fields.
8. A method according to claim 3, wherein the internet banking login request is initiated when the payer logs in using a personal internet banking framework.
9. An electronic direct payment authorization device comprising:
the request analysis module is used for responding to an online banking login request initiated by a payer, wherein the online banking login request is used for requesting to execute money information to be paid, and carrying out field analysis on the online banking login request to obtain a request analysis field;
the authorization protocol determining module is used for judging whether the online banking login request belongs to a login request of an electronic direct payment authorization protocol according to a first specified field in the request analysis field, and judging whether the electronic direct payment authorization protocol is signed according to a second specified field in the request analysis field if the online banking login request belongs to the login request of the electronic direct payment authorization protocol; and
and the deduction payment module is used for carrying out deduction payment operation according to the electronic direct payment authorization protocol and the money information under the condition that the electronic direct payment authorization protocol is confirmed to be signed.
10. An electronic device, comprising:
one or more processors;
storage means for storing one or more programs,
wherein the one or more programs, when executed by the one or more processors, cause the one or more processors to perform the method of any of claims 1-8.
11. A computer readable storage medium having stored thereon executable instructions which, when executed by a processor, cause the processor to perform the method according to any of claims 1-8.
12. A computer program product comprising a computer program which, when executed by a processor, implements the method according to any one of claims 1 to 8.
CN202310225898.1A 2023-03-02 2023-03-02 Electronic direct payment authorization method, device, electronic equipment and medium Pending CN116228245A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310225898.1A CN116228245A (en) 2023-03-02 2023-03-02 Electronic direct payment authorization method, device, electronic equipment and medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202310225898.1A CN116228245A (en) 2023-03-02 2023-03-02 Electronic direct payment authorization method, device, electronic equipment and medium

Publications (1)

Publication Number Publication Date
CN116228245A true CN116228245A (en) 2023-06-06

Family

ID=86580379

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202310225898.1A Pending CN116228245A (en) 2023-03-02 2023-03-02 Electronic direct payment authorization method, device, electronic equipment and medium

Country Status (1)

Country Link
CN (1) CN116228245A (en)

Similar Documents

Publication Publication Date Title
US11669841B2 (en) Systems and methods for blockchain based payment networks
US10783545B2 (en) Reward point redemption for cryptocurrency
US11620621B2 (en) Enrolling a payer by a merchant server operated by or for the benefit of a payee and processing a payment from the payer by a secure server
CA3017744C (en) Systems and methods for bill payment with dynamic loan capacity
US20210209684A1 (en) System and method for transferring currency using blockchain
US20230385865A1 (en) Systems and methods for electronic payment using loyalty rewards
CN110401630B (en) Transaction certificate verification method, device, electronic equipment and medium
US11978047B2 (en) Network data management and data security
US20230115996A1 (en) System and method for closing pre-authorization amounts on a virtual token account
CA3048719A1 (en) Systems and methods for operating a service to monitor and adjust a booked flight
CN112348326A (en) Bank business processing method and system
US20230222502A1 (en) System and method for creating and issuing virtual transaction instruments
US20220253822A1 (en) System and method for group payments
CN111915285B (en) Cash withdrawing method and device and electronic equipment
US20230046688A1 (en) Pre-Authorization of Non-Activated Payment Instruments at Specific Merchants
CN111626729A (en) Transaction method, apparatus, computing device and medium executed by target institution
CN116228245A (en) Electronic direct payment authorization method, device, electronic equipment and medium
CN114462991A (en) Method and apparatus for conditional transactions based on digital currency
US20230206197A1 (en) Card to bank payments solution
WO2023061285A1 (en) Digital currency sub-wallet-based payment tokenization method, apparatus and system
US20230281624A1 (en) Framework free integration
CN114862395A (en) Transaction speed improving method, device, equipment and medium
CN116503066A (en) Payment method and device
CN114971620A (en) Card information management, apparatus, device, medium, and program product
CN116167843A (en) Directional transaction method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination