WO2011094995A1 - System, near field communication terminal and method for implementing the security of electronic payment - Google Patents

System, near field communication terminal and method for implementing the security of electronic payment Download PDF

Info

Publication number
WO2011094995A1
WO2011094995A1 PCT/CN2010/074734 CN2010074734W WO2011094995A1 WO 2011094995 A1 WO2011094995 A1 WO 2011094995A1 CN 2010074734 W CN2010074734 W CN 2010074734W WO 2011094995 A1 WO2011094995 A1 WO 2011094995A1
Authority
WO
WIPO (PCT)
Prior art keywords
terminal
loss
nfc
report
lost
Prior art date
Application number
PCT/CN2010/074734
Other languages
French (fr)
Chinese (zh)
Inventor
梁国和
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2011094995A1 publication Critical patent/WO2011094995A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3224Transactions dependent on location of M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/327Short range or proximity payments by means of M-devices
    • G06Q20/3278RFID or NFC payments by means of M-devices
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0873Details of the card reader
    • G07F7/0893Details of the card reader the card reader reading the card in a contactless manner

Definitions

  • the present invention relates to a near field communication (NFC) terminal electronic payment technology, and more particularly to a system for implementing electronic payment security, an NFC terminal and a method.
  • NFC near field communication
  • Integrated circuit (IC) cards especially non-contact IC cards, have been widely used in public transportation, access control, and small-scale electronic payment after more than ten years of development.
  • Mobile phones are becoming more powerful and have the tendency to integrate more features.
  • Combining mobile phones and contactless IC card technology to enable mobile phones to be used in the field of electronic payment will further expand the use of mobile phones and bring convenience to people's lives.
  • NFC technology a technical solution for combining a mobile phone with a contactless IC card in the prior art, which is called NFC technology.
  • NFC technology is a short-range wireless communication technology that evolved from the integration of contactless radio frequency identification (RFID) technology and interconnect technology.
  • RFID radio frequency identification
  • the NFC terminal such as a mobile phone adopts the NFC scheme, it can simulate a contactless IC card to implement an electronic payment related application.
  • NFC terminals use NFC solutions, and NFC analog front-end chips, NFC antennas, and security control chips need to be added to NFC terminals.
  • SIM Subscriber Identification Card
  • SWP NFC Single Wire Protocol
  • eNFC Enhanced NFC
  • the RFID protocols supported by the NFC analog front-end chip include ISO 14443 Type A/Type B, Felica, IS015693, etc., which can be simulated into corresponding cards.
  • the development of the technology enables the NFC terminal to support the power-off card. That is, when the NFC terminal is powered off, the energy generated by the working magnetic field of the sensing contactless card reader can be simulated as a contactless card and normally interact with the card reader.
  • the power loss conditions referred to here include the shutdown of the NFC terminal, the exhaustion of the battery, and the absence of a battery. After the NFC terminal supports electronic payment, it is necessary to consider the security of electronic payment. At present, the NFC function is mostly used to control the NFC function through the communication network or the terminal.
  • the network side After the user reports the loss, the network side sends the loss information to the NFC terminal through the wireless link. At this time, the NFC terminal needs to be powered on to receive the report loss information. Report loss. If the terminal enters the shutdown state after the NFC terminal is lost or stolen, the terminal cannot report the loss, but the electronic payment can still be used normally because the terminal supports the power-off card-swapping function, which will cause economic loss and electronic to the legitimate user of the NFC terminal. A leak of payment information.
  • the defects of the prior art are: Since the NFC terminal is in the off state, that is, the electronic payment can still be realized after the power is turned off, but the NFC terminal can only report the loss in the power-on state, and if the NFC terminal is obtained by the illegal user, The electronic payment can be completed when the NFC terminal is in the off state, thereby causing an incalculable loss to the legitimate user of the NFC terminal.
  • the main object of the present invention is to provide a system for implementing electronic payment security, an NFC terminal, and a method, so that the NFC terminal can realize the loss in time regardless of whether it is in the power-on state or the power-off state.
  • a system for implementing electronic payment security comprising: an acceptance terminal, a payment platform, and a near field communication (NFC) terminal;
  • NFC near field communication
  • the lost platform user information is stored in the payment platform
  • the receiving terminal is configured to detect that the NFC terminal matches the loss of user information, and the NFC terminal controls the NFC terminal to set the report loss flag when the NFC terminal does not set the loss flag.
  • the NFC terminal is configured to: when the receiving terminal detects that the NFC terminal matches the lost user information, and the NFC terminal does not set the loss flag, the flag is set under the control of the receiving terminal.
  • the receiving terminal is further configured to use the NFC detected in the electronic payment process.
  • the electronic payment service identification (ID) information in the terminal is matched with the electronic payment service ID information in the lost user information, so that the NFC terminal matches the lost user information.
  • the system further includes: an accepting terminal management device, configured to receive the reported loss user information from the payment platform, and synchronously update the lost user information to one or more receiving terminals according to the lost paging management policy.
  • the method for reporting the lost paging includes the method of delivering the delivery according to the delivery range, or the manner of delivering the delivery according to the delivery period;
  • the method of delivering the information according to the delivery range includes: transmitting the entire network of the user terminal that has been reported to the terminal management device for reporting loss, or sending the user information to the part of the acceptance terminal managed by the terminal management device Issued;
  • the method of delivering the information according to the delivery period includes: the user information of the loss reporting is sent immediately upon update; or, after the user information is updated, the information is sent every preset time period.
  • the payment platform is configured to: after the lost user information is saved in the local loss reporting database, update the lost user information to the receiving terminal management device.
  • the lost user information is stored in the loss reporting database of the payment platform, and the payment platform is further configured to freeze the account of the lost user stored in the local loss reporting database; when the NFC terminal of the lost user successfully reports the loss, When the receiving terminal informs the payment platform that the NFC terminal of the lost user of the payment platform is reported to be lost by the receiving terminal management device, the payment platform clears the lost user information in the local loss reporting database, and unfreezes the frozen lost user account.
  • a short-range communication (NFC) terminal for implementing electronic payment security, wherein the NFC terminal is provided with a loss flag bit for each NFC service/function, and when the NFC terminal is detected by the terminal, it is reported to be lost from the network side.
  • the report of the loss flag is set under the control of the receiving terminal to implement the loss reporting.
  • the NFC terminal when a single service/function is reported, the NFC terminal is detected by the receiving terminal and the slave network.
  • the electronic payment service ID information acquired by the side matches, and the service/function identified by the electronic payment service ID information is lost.
  • the NFC terminal is detected by the receiving terminal to match any one of the electronic payment service ID information acquired from the network side, and all services/functions are lost.
  • a method for implementing electronic payment security comprising: when the receiving terminal detects that the NFC terminal matches the loss reporting user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, the receiving terminal controls The NFC terminal sets the loss flag bit to implement loss reporting on the NFC terminal.
  • the receiving terminal detects that the NFC terminal matches the loss reporting user information in the report of the loss reporting information, specifically: the receiving terminal first knows the loss reporting page list according to the loss reporting page of the receiving terminal management device, and then according to the lost paging list. Query whether the NFC terminal user is a lost user.
  • the method further includes: after the user accepts the user to report the loss, the account of the lost user is frozen by the payment platform.
  • the method further includes: when the NFC terminal of the lost user implements the loss reporting, and the receiving terminal notifies the payment platform of the NFC terminal that the user is reporting the loss of the NFC terminal by the receiving terminal management device, the payment platform clears the loss in the local loss reporting database.
  • the user's lost user information is unfrozen from the frozen lost user's account, and the remaining balance of the lost user's original card is returned by the account platform.
  • the NFC terminal of the present invention realizes the loss reporting when the receiving terminal detects that the NFC terminal matches the lost user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, and sets the loss reporting flag under the control of the receiving terminal. Thereby achieving loss reporting.
  • the NFC terminal can realize the loss in time in the power-on state or the power-off state, thereby avoiding the risk that the NFC terminal can not be reported in time for the electronic user to use the electronic payment, thereby avoiding the legitimate user of the NFC terminal. loss.
  • FIG. 1 is a schematic structural diagram of a system embodiment of the present invention. detailed description
  • the basic idea of the present invention is: The receiving terminal detects that the NFC terminal matches the loss reporting user information in the report of the loss reporting, and the NFC terminal does not set the loss flag bit, and the receiving terminal controls the NFC terminal to set the loss flag bit, thereby implementing the loss reporting.
  • the present invention provides a system for implementing electronic payment security, the system comprising: an acceptance terminal and an NFC terminal.
  • the receiving terminal is configured to detect that the NFC terminal matches the lost user information in the loss reporting list, and the NFC terminal sets the loss reporting flag when the NFC terminal does not set the loss flag.
  • the NFC terminal sets the loss reporting flag under the control of the receiving terminal to implement the loss reporting.
  • the receiving terminal After the receiving terminal completes the control of setting the NFC terminal set loss reporting flag, it updates the loss reporting information list on the receiving terminal.
  • the receiving terminal includes POS machines, readers, alarm machines and other equipment.
  • the lost user information includes an NFC terminal number, user information, and electronic payment service ID information.
  • the electronic payment service ID is a service ID that the receiving terminal can recognize, and the NFC terminal number can correspond to one or more electronic payment service IDs.
  • the system for realizing electronic payment security of the present invention further includes an acceptance terminal management device.
  • the terminal management equipment also has a loss reporting function and a positioning function.
  • the terminal management device can comprehensively determine the report of the loss of paging according to the number of the lost users, the device flow control, and the urgency of the loss reporting, and can also perform the positioning paging in combination with the positioning function.
  • the so-called location paging is based on the mobile network location of the NFC terminal or the electronic payment service consumption history information to perform paging, so as to alleviate the system load caused by the loss reporting service, but there is a risk of loss reporting failure.
  • the receiving terminal management device is configured to implement the loss paging management of one or more receiving terminals managed by the receiving terminal management device according to the lost paging management policy.
  • the existing terminal equipment hierarchical management architecture is used, that is, one receiving terminal management device manages multiple receiving terminals, and it can be expected that the receiving terminal management device can also be omitted, that is, directly paid.
  • the platform corresponds to a number of receiving terminals.
  • the receiving terminal management device is further configured to synchronously update the lost user information to one or more receiving terminals according to the lost paging management policy, thereby implementing loss reporting management.
  • the report mechanism for reporting loss reports includes:
  • the entire terminal that manages the management of the terminal management device can be sent to the entire network for reporting the loss of the user information; or the part of the acceptance terminal managed by the terminal management device can be reported for the loss of the user information;
  • the information can be sent immediately after the update of the user information; or, after the user information is updated, the delivery mode is sent every preset time period. For example, after the loss of user information is updated, according to 2:00 every day. When the network service is small, this preset fixed period is issued. This can reduce the impact on the existing network, and can also be processed in batches, but it will have a certain time delay than the direct update mode.
  • the system for implementing electronic payment security of the present invention also includes a payment platform.
  • the payment platform is a business platform for e-commerce operations such as consumption, recharge, transfer/remittance, and inquiry.
  • the payment platform includes a loss reporting database for saving and saving user information. After the payment platform saves the lost user information in the local loss reporting database, the lost user information is synchronously updated to the receiving terminal management device.
  • the payment platform is further used to freeze the account of the lost user who saves the lost user information in the local loss reporting database; after the user's account is frozen, the account platform freezes the original card balance of the user in the account and related services; when the NFC terminal of the lost user has been implemented Reporting the loss, and the receiving terminal notifies the payment of the NFC terminal of the user who reported the loss of the lost platform by the receiving terminal management device, and pays The platform clears the lost user information of the lost user in the local loss database, and unfreezes the frozen lost user account, and the account platform returns the lost user original card balance.
  • the account platform transfers the balance of the original card to the newly opened analog card. That is to say, the payment platform will only release the frozen state of the user's account after knowing that the NFC terminal is reported to be lost, and the user's account is frozen for the account platform to restore the card balance. Conversely, if the NFC terminal is not reported to be lost, the payment platform will not release the frozen state of the user's account, and the account platform cannot return the card balance.
  • the recovery platform cannot be used for recovery services. If the user LY sells the lost service, the NFC terminal is not reported to be successful at this time. Although the service can be re-processed, the balance of the original card user account is invalid, and the card balance cannot be restored.
  • the system for realizing electronic payment security of the present invention further includes a manual receiving station, and the manual receiving station mainly processes the loss reporting processing from the user.
  • the manual receiving station is used to accept the user's loss reporting request, and after the identity is recognized, the user information is saved, and the user's account is frozen. When the loss is successful or the user cancels the loss or re-services, the freezing ends.
  • the manual receiving station interacts with the payment platform to notify the payment platform of the user's loss reporting information.
  • the present invention also provides an NFC terminal for implementing electronic payment security.
  • the NFC terminal is configured to: when the receiving terminal detects that the NFC terminal matches the lost user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, The loss reporting flag is set under the control of the receiving terminal to achieve loss reporting.
  • the NFC terminal is further configured to: when the lost user information is synchronously updated to the receiving terminal via the payment platform and the receiving terminal management device, the lost reporting flag is set under the control of the receiving terminal based on the updated lost user information, thereby implementing the loss reporting.
  • the NFC terminal is further used for successfully reporting the loss, via the receiving terminal and the receiving terminal tube.
  • the device is notified to the payment platform.
  • the loss flag bit can be set in the NFC control chip or the security chip, and the security chip can also be a subscriber identity card (SIM).
  • SIM subscriber identity card
  • the report of the loss flag is based on the information of the lost user, and the update of the report flag is performed in real time by the control of the terminal, and the NFC terminal is set to the loss mode.
  • the NFC terminal performs normal electronic payment, it first determines whether the loss flag is set to enter the loss reporting mode, and if it is not the loss reporting mode, the electronic payment service can be performed; otherwise, the electronic payment service is terminated.
  • the multi-service application loss reporting function can be flexibly adopted according to the user's loss request. If multiple services are implemented on the NFC terminal, not only can multiple services be reported together, but also multiple services can be reported separately, so that user loss control is minimized. In other words, the loss flag can be defined differently to indicate which type of loss mode the terminal enters.
  • the loss reporting mode specifically includes: a single service loss reporting mode combined with a certain service, or all the loss reporting modes that are reported together with all services.
  • the NFC terminal When the single service is reported to be lost, the NFC terminal is detected by the receiving terminal to match the information of the electronic payment service ID obtained from the network side, and the service/function is lost. When all services are reported to be lost, the NFC terminal is detected by the receiving terminal and the slave side. If any of the electronic payment service ID information is matched, all services are lost.
  • the present invention also provides a method for implementing electronic payment security, the method comprising: when the receiving terminal detects that the NFC terminal matches the loss reporting user information in the report of the loss reporting, and the NFC terminal does not set the loss reporting flag, the receiving terminal Control the NFC terminal to set the loss flag bit to achieve loss reporting.
  • the method further includes: the receiving terminal management device implements the loss paging management of the one or more receiving terminals managed by the receiving terminal management device according to the lost paging management policy.
  • implementing the report of the loss of paging specifically includes: synchronously updating the reported loss information to one or more receiving terminals according to the report of the lost paging management.
  • the report of the report of the loss of the paging includes: transmitting the entire network of the lost terminal user information to all the receiving terminals managed by the terminal management device; or performing the synchronous updating of the lost user information for the part of the receiving terminal managed by the terminal management device; Partially issued. You can use the method of reporting the loss of the user information as soon as it is updated; or, after the loss of the user information is updated, the method is sent every preset time period.
  • the method further includes: after the payment platform saves the lost user information in the local loss reporting database, and synchronously updates the lost user information to the receiving terminal management device.
  • the payment platform freezes the account of the lost user who saved the lost user information in the local loss database.
  • the method further includes: when the NFC terminal of the lost user implements the loss reporting, and the receiving terminal notifies the NFC terminal of the loss of the user of the payment platform by the terminal management device, the payment platform clears the lost user information of the lost user in the local loss reporting database.
  • the account of the frozen report loss user is unfrozen, and the account platform returns the remaining balance of the lost user original card.
  • a mobile operator can carry out value-added services. For example, the operator can provide an additional service for the user to selectively report the loss based on the request of the lost user. Because the operator must add additional servers and send the lost user information to the receiving terminal, it can charge a certain fee according to the success of the loss reporting service. In this way, the operator can make better profit by providing the user with such additional services. .
  • the user can decide to use a single service loss report or all business loss reports according to multiple applications. You can also choose whether to report the loss or the partial loss of the entire network according to the range of the loss, or choose to send it immediately or periodically according to the delivery period. It can also support the function of location loss reporting.
  • the NFC terminal herein is a generic short-range communication terminal, including a narrow NFC terminal and an eNFC terminal.
  • the loss flag can be set in the control chip or In the whole chip, for the eNFC terminal, the loss flag bit can be set in the control chip or in the SIM.
  • POS sales terminal
  • the popularity of the network technology and the receiving terminal having the wireless communication module enables the receiving terminal management device to effectively control the receiving terminal, and then the receiving terminal controls the NFC terminal. It can be seen that: based on the acceptance of the terminal management device, the link of the terminal, the NFC terminal, and the popularity of the network technology and the acceptance terminal having the wireless communication module, the invention provides a technical possibility for the NFC terminal to complete the loss reporting function in the transaction process. Sex.
  • the receiving terminal controls the NFC terminal
  • the loss reporting control in the NFC terminal transaction process is realized.
  • the NFC terminal of the NFC terminal can be transmitted to the receiving terminal through the terminal management device, and the receiving terminal detects that the NFC terminal of the transaction matches the reported loss information in the report of the loss information, and the NFC terminal does not set the report loss flag. Bit, the receiving terminal controls the NFC terminal to set the loss reporting flag, terminates the transaction, and completes the loss reporting function.
  • the NFC terminal sets the loss reporting flag by the receiving terminal, because the receiving terminal and the receiving terminal.
  • the communication between the NFC terminals can be performed under the NFC shutdown or power-off state, so that the NFC terminal is shut down or reported in the power-off state, which ensures the secure transaction under the NFC terminal power-down credit card, thereby ensuring the electronic payment of the NFC terminal.
  • the invention is illustrated by way of example below.
  • the system specifically includes: a manual receiving station, a payment platform, an account platform, an acceptance terminal management device, a plurality of receiving terminals, and an NFC terminal.
  • the report loss database can also be reported as a loss report service.
  • the form of the device exists, based on the loss database, the account of the lost user can be frozen and the account of the lost user is thawed.
  • the purpose of the failure is that if the lost user successfully reports the loss through the NFC terminal, the payment platform can freeze the previously frozen user.
  • the account of the lost user is thawed, so that the account platform can successfully return the balance of the original card of the lost user to the user.
  • the call terminal management device has a report mechanism for reporting loss, which is used to implement an acceptance policy managed by the terminal management device, and the lost user information acquired by the terminal management device from the payment platform is synchronously updated to the terminal.
  • the receiving terminal has a report of the loss reporting information, which is used for saving the lost user information obtained from the receiving terminal management device, and can update the lost user information at any time or periodically, and the loss reporting information list is used when the receiving terminal detects the NFC terminal and reports the loss.
  • the terminal controls the NFC terminal to set the loss flag, thereby reporting the loss of the NFC terminal, that is, the loss of the user holding the NFC terminal. Report loss.
  • This embodiment is a loss reporting process of an NFC terminal of a bus, including the following steps:
  • Step 101 The user loses the NFC terminal, and reports the loss through the manual receiving station.
  • Step 102 After the manual receiving station is authenticated, the user's loss reporting request is accepted.
  • Step 104 The terminal management device is determined to determine a loss reporting policy.
  • the report of the loss of paging management can be set to locate loss or priority loss.
  • Step 105 The receiving terminal management device determines the receiving terminal managed by the terminal management device according to the managed terminal list, and sends the lost user information to the corresponding receiving terminal.
  • the lost user information can be updated in batches.
  • Step 106 The receiving terminal updates the report of the loss reporting information of the terminal itself according to the information of the lost user from the terminal management device.
  • Step 107 When the NFC terminal that has registered the loss report, that is, the NFC terminal that matches the loss of the user information in the report of the loss report, performs the transaction, the receiving terminal determines whether the report flag of the NFC terminal has been set before the transaction. If it has been set, the transaction is terminated, ending the current loss reporting process; if not set, then step 108 is performed.
  • Step 108 Perform a loss reporting operation, and the receiving terminal updates the lost user information in the loss reporting information list, controls the NFC terminal to set the loss reporting flag, and reports to the receiving terminal management device 4 that the NFC terminal is successfully reported.
  • Step 109 The receiving terminal management device notifies the payment platform that the NFC terminal is successfully reported, and the payment platform clears the lost user information in the loss reporting database, and thaws the user of the NFC terminal.
  • Step 110 When the NFC terminal reports the loss successfully and re-applies for the service, the account platform transfers the remaining balance of the original card of the NFC terminal to the newly opened analog card.
  • the SIM card described in the above method embodiment is only for the purpose of description and can expand other smart cards.
  • the terminal includes POS machines, readers, gates, etc.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Accounting & Taxation (AREA)
  • General Business, Economics & Management (AREA)
  • Strategic Management (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A system for implementing the security of electronic payment is disclosed. Within the system, an acceptance terminal is used to detect that when the report of loss user information in a near field communication (NFC) terminal and a report of a loss information list are matched and a report of a loss flag bit of the NFC terminal is not set, the acceptance terminal controls the NFC terminal to set the report of a loss flag bit. A near field communication terminal for implementing the security of electronic payment is also disclosed, which is used for that when an acceptance terminal detects the report of loss user information in a NFC terminal and a report of the loss information list are matched and a report of a loss flag bit of the NFC terminal is not set, setting the report of a loss flag bit controlled by the acceptance terminal to achieve a report of loss. A method for implementing the security of electronic payment is also disclosed, and the method includes: an acceptance terminal controls a NFC terminal to set a report of a loss flag bit to achieve a report of loss. A NFC terminal can be made to achieve a report of loss in time no matter it is under a state of power on or power off by using the system, the NFC terminal and the method of the solution.

Description

一种实现电子支付安全的***、 近距离通信终端及方法 技术领域  System, short-distance communication terminal and method for realizing electronic payment security
本发明涉及近距离通信( NFC, Near Field Communication )终端电子支 付技术, 尤其涉及一种实现电子支付安全的***、 NFC终端及方法。 背景技术  The present invention relates to a near field communication (NFC) terminal electronic payment technology, and more particularly to a system for implementing electronic payment security, an NFC terminal and a method. Background technique
集成电路(IC, Integrated Circuit )卡, 特别是非接触式 IC卡经过十多 年的发展, 已经被广泛应用于公交、 门禁、 小额电子支付等领域。 手机的 功能越来越强大, 并存在集成更多功能的趋势。 将手机和非接触式 IC卡技 术结合, 使手机应用于电子支付领域, 会进一步扩大手机的使用范围, 给 人们的生活带来便捷。 目前, 现有技术中存在一种将手机与非接触式 IC卡 结合的技术方案, 称为 NFC技术。  Integrated circuit (IC) cards, especially non-contact IC cards, have been widely used in public transportation, access control, and small-scale electronic payment after more than ten years of development. Mobile phones are becoming more powerful and have the tendency to integrate more features. Combining mobile phones and contactless IC card technology to enable mobile phones to be used in the field of electronic payment will further expand the use of mobile phones and bring convenience to people's lives. At present, there is a technical solution for combining a mobile phone with a contactless IC card in the prior art, which is called NFC technology.
NFC技术工作于 13.56MHz,是一种近距离无线通信技术, 由非接触式 射频识别 (RFID )技术及互连技术融合演变而来。 手机等 NFC 终端采用 NFC 方案后, 可以模拟非接触式 IC 卡, 实现电子支付的相关应用。 NFC 终端采用 NFC方案, 需要在 NFC终端中增加 NFC模拟前端芯片、 NFC天 线和安全控制芯片。 把用户识别卡(SIM )卡作为安全芯片, 并且通过 C6 管脚硬件相连, 通过 NFC单线协议( SWP )协议与 NFC控制芯片相连, 也称为增强型 NFC ( eNFC )。  Working at 13.56 MHz, NFC technology is a short-range wireless communication technology that evolved from the integration of contactless radio frequency identification (RFID) technology and interconnect technology. After the NFC terminal such as a mobile phone adopts the NFC scheme, it can simulate a contactless IC card to implement an electronic payment related application. NFC terminals use NFC solutions, and NFC analog front-end chips, NFC antennas, and security control chips need to be added to NFC terminals. The Subscriber Identification Card (SIM) card is used as a security chip and is connected through the C6 pin hardware and connected to the NFC control chip through the NFC Single Wire Protocol (SWP) protocol, also known as Enhanced NFC (eNFC).
NFC模拟前端芯片支持的 RFID协议包括 ISO 14443 Type A/Type B、 Felica、 IS015693等, 可以模拟成相应的卡。 同时技术的发展使 NFC终端 可以支持掉电刷卡, 即 NFC终端在掉电时, 能够通过感应非接触读卡器的 工作磁场产生的能量模拟为非接触卡, 并和读卡器正常进行交互。 这里所 指的掉电的情况包括 NFC终端关机、电池电量耗尽和没有装入电池等情况。 NFC终端支持电子支付后, 需要考虑电子支付的安全性。 目前 NFC功 能挂失方法大都是通过通信网络或终端本地控制 NFC功能, 用户报失后, 网络侧将通过无线链路向 NFC终端下发挂失信息,此时,需要 NFC终端开 机才能接收该挂失信息、 完成挂失。 如果 NFC终端丟失或被盗后终端进入 关机状态后, 终端无法挂失, 但因终端支持掉电刷卡功能使得电子支付仍 能正常使用, 这样会给该 NFC终端的合法用户造成经济上的损失和电子支 付信息的泄漏。 The RFID protocols supported by the NFC analog front-end chip include ISO 14443 Type A/Type B, Felica, IS015693, etc., which can be simulated into corresponding cards. At the same time, the development of the technology enables the NFC terminal to support the power-off card. That is, when the NFC terminal is powered off, the energy generated by the working magnetic field of the sensing contactless card reader can be simulated as a contactless card and normally interact with the card reader. The power loss conditions referred to here include the shutdown of the NFC terminal, the exhaustion of the battery, and the absence of a battery. After the NFC terminal supports electronic payment, it is necessary to consider the security of electronic payment. At present, the NFC function is mostly used to control the NFC function through the communication network or the terminal. After the user reports the loss, the network side sends the loss information to the NFC terminal through the wireless link. At this time, the NFC terminal needs to be powered on to receive the report loss information. Report loss. If the terminal enters the shutdown state after the NFC terminal is lost or stolen, the terminal cannot report the loss, but the electronic payment can still be used normally because the terminal supports the power-off card-swapping function, which will cause economic loss and electronic to the legitimate user of the NFC terminal. A leak of payment information.
综上所述, 现有技术的缺陷是: 由于 NFC终端处于关机状态, 即掉电 后仍能实现电子支付, 但是 NFC 终端却只能在开机状态实现挂失, 如果 NFC终端被非法用户获得,则可以在 NFC终端处于关机状态时完成电子支 付, 从而给 NFC终端的合法用户造成难以估量的损失。 发明内容  In summary, the defects of the prior art are: Since the NFC terminal is in the off state, that is, the electronic payment can still be realized after the power is turned off, but the NFC terminal can only report the loss in the power-on state, and if the NFC terminal is obtained by the illegal user, The electronic payment can be completed when the NFC terminal is in the off state, thereby causing an incalculable loss to the legitimate user of the NFC terminal. Summary of the invention
有鉴于此, 本发明的主要目的在于提供一种实现电子支付安全的***、 NFC终端及方法,使 NFC终端无论在开机状态还是关机状态都能及时实现 挂失。  In view of this, the main object of the present invention is to provide a system for implementing electronic payment security, an NFC terminal, and a method, so that the NFC terminal can realize the loss in time regardless of whether it is in the power-on state or the power-off state.
为达到上述目的, 本发明的技术方案是这样实现的:  In order to achieve the above object, the technical solution of the present invention is achieved as follows:
一种实现电子支付安全的***, 所述***包括: 受理终端、 支付平台 和近距离通信(NFC )终端; 其中,  A system for implementing electronic payment security, the system comprising: an acceptance terminal, a payment platform, and a near field communication (NFC) terminal;
支付平台中存储有挂失用户信息;  The lost platform user information is stored in the payment platform;
受理终端, 用于检测到 NFC终端与所述挂失用户信息相匹配, 且所述 NFC终端未置位挂失标志位时, 控制所述 NFC终端置位所述挂失标志位; The receiving terminal is configured to detect that the NFC terminal matches the loss of user information, and the NFC terminal controls the NFC terminal to set the report loss flag when the NFC terminal does not set the loss flag.
NFC终端,用于当受理终端检测到 NFC终端与所述挂失用户信息相匹 配, 且所述 NFC终端未置位挂失标志位时, 在所述受理终端的控制下置位 所述挂失标志位。 The NFC terminal is configured to: when the receiving terminal detects that the NFC terminal matches the lost user information, and the NFC terminal does not set the loss flag, the flag is set under the control of the receiving terminal.
其中, 所述受理终端, 进一步用于根据电子支付过程中检测到的 NFC 终端中的电子支付业务标识(ID )信息, 与挂失用户信息中的电子支付业 务 ID信息相匹配, 实现所述 NFC终端与所述挂失用户信息的相匹配。 The receiving terminal is further configured to use the NFC detected in the electronic payment process. The electronic payment service identification (ID) information in the terminal is matched with the electronic payment service ID information in the lost user information, so that the NFC terminal matches the lost user information.
其中, 所述***还包括: 受理终端管理设备, 用于从支付平台接收所 述挂失用户信息, 并根据挂失寻呼管理策略, 将所述挂失用户信息同步更 新到一个或多个受理终端。  The system further includes: an accepting terminal management device, configured to receive the reported loss user information from the payment platform, and synchronously update the lost user information to one or more receiving terminals according to the lost paging management policy.
其中, 所述挂失寻呼管理策略包括依据下发范围下发的方式、 或依据 下发周期下发的方式; 其中,  The method for reporting the lost paging includes the method of delivering the delivery according to the delivery range, or the manner of delivering the delivery according to the delivery period;
所述依据下发范围下发的方式包括: 对受理终端管理设备管理的所有 受理终端进行挂失用户信息的全网下发; 或者, 对受理终端管理设备管理 的部分受理终端进行挂失用户信息的部分下发;  The method of delivering the information according to the delivery range includes: transmitting the entire network of the user terminal that has been reported to the terminal management device for reporting loss, or sending the user information to the part of the acceptance terminal managed by the terminal management device Issued;
所述依据下发周期下发的方式包括: 挂失用户信息一有更新就即时下 发; 或者, 挂失用户信息更新后, 每隔预设时间周期下发。  The method of delivering the information according to the delivery period includes: the user information of the loss reporting is sent immediately upon update; or, after the user information is updated, the information is sent every preset time period.
其中, 所述支付平台用于将挂失用户信息保存在本地挂失数据库后, 将挂失用户信息同步更新到所述受理终端管理设备。  The payment platform is configured to: after the lost user information is saved in the local loss reporting database, update the lost user information to the receiving terminal management device.
其中, 所述挂失用户信息存储在支付平台的挂失数据库中, 所述支付 平台进一步用于将保存在本地的挂失数据库中的挂失用户的账户冻结; 当 挂失用户的 NFC终端成功挂失后, 且所述受理终端通过所述受理终端管理 设备通知支付平台挂失用户的 NFC终端挂失成功时, 支付平台清除本地挂 失数据库内的挂失用户信息, 对已冻结的挂失用户的账户解除冻结。  The lost user information is stored in the loss reporting database of the payment platform, and the payment platform is further configured to freeze the account of the lost user stored in the local loss reporting database; when the NFC terminal of the lost user successfully reports the loss, When the receiving terminal informs the payment platform that the NFC terminal of the lost user of the payment platform is reported to be lost by the receiving terminal management device, the payment platform clears the lost user information in the local loss reporting database, and unfreezes the frozen lost user account.
一种实现电子支付安全的近距离通信(NFC )终端, 所述 NFC终端针 对每个 NFC业务 /功能设置有挂失标志位, 当所述 NFC终端被受理终端检 测到其与从网络侧获取的挂失信息列表中的挂失用户信息相匹配, 且所述 NFC终端未置位挂失标志位时, 在所述受理终端的控制下置位所述挂失标 志位, 实现挂失。  A short-range communication (NFC) terminal for implementing electronic payment security, wherein the NFC terminal is provided with a loss flag bit for each NFC service/function, and when the NFC terminal is detected by the terminal, it is reported to be lost from the network side. When the lost user information in the information list matches, and the NFC terminal does not set the loss flag, the report of the loss flag is set under the control of the receiving terminal to implement the loss reporting.
其中, 单一业务 /功能挂失时, NFC终端被受理终端检测到其与从网络 侧获取的电子支付业务 ID信息相匹配, 挂失所述电子支付业务 ID信息所 标识的业务 /功能。 Wherein, when a single service/function is reported, the NFC terminal is detected by the receiving terminal and the slave network. The electronic payment service ID information acquired by the side matches, and the service/function identified by the electronic payment service ID information is lost.
其中, 所有业务 /功能挂失时, NFC终端被受理终端检测到其与从网络 侧获取的任何一个电子支付业务 ID信息相匹配, 挂失所有业务 /功能。  When all services/functions are reported to be lost, the NFC terminal is detected by the receiving terminal to match any one of the electronic payment service ID information acquired from the network side, and all services/functions are lost.
一种实现电子支付安全的方法, 该方法包括: 当受理终端检测到 NFC 终端与挂失信息列表中的挂失用户信息相匹配, 且所述 NFC终端未置位挂 失标志位时, 所述受理终端控制所述 NFC终端置位所述挂失标志位, 实现 对所述 NFC终端的挂失。  A method for implementing electronic payment security, the method comprising: when the receiving terminal detects that the NFC terminal matches the loss reporting user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, the receiving terminal controls The NFC terminal sets the loss flag bit to implement loss reporting on the NFC terminal.
其中, 所述受理终端检测 NFC终端与挂失信息列表中的挂失用户信息 相匹配, 具体为: 受理终端根据受理终端管理设备的挂失寻呼先获知挂失 寻呼列表, 再根据所述挂失寻呼列表查询 NFC终端用户是否为挂失用户。  The receiving terminal detects that the NFC terminal matches the loss reporting user information in the report of the loss reporting information, specifically: the receiving terminal first knows the loss reporting page list according to the loss reporting page of the receiving terminal management device, and then according to the lost paging list. Query whether the NFC terminal user is a lost user.
其中, 该方法还包括: 在人工受理台完成用户报失后, 挂失用户的账 户由支付平台冻结。  The method further includes: after the user accepts the user to report the loss, the account of the lost user is frozen by the payment platform.
其中, 该方法还包括: 当挂失用户的 NFC终端实现挂失, 且所述受理 终端通过所述受理终端管理设备通知支付平台挂失用户的 NFC终端挂失成 功时, 所述支付平台清除本地挂失数据库内挂失用户的挂失用户信息, 对 已冻结的挂失用户的账户解除冻结, 并由帐户平台返还挂失用户原卡剩余 余额。  The method further includes: when the NFC terminal of the lost user implements the loss reporting, and the receiving terminal notifies the payment platform of the NFC terminal that the user is reporting the loss of the NFC terminal by the receiving terminal management device, the payment platform clears the loss in the local loss reporting database. The user's lost user information is unfrozen from the frozen lost user's account, and the remaining balance of the lost user's original card is returned by the account platform.
本发明的 NFC终端实现挂失是当受理终端检测到 NFC终端与挂失信息 列表中的挂失用户信息相匹配, 且 NFC终端未置位挂失标志位时, 在受理 终端的控制下置位挂失标志位, 从而实现挂失。  The NFC terminal of the present invention realizes the loss reporting when the receiving terminal detects that the NFC terminal matches the lost user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, and sets the loss reporting flag under the control of the receiving terminal. Thereby achieving loss reporting.
采用本发明, 使 NFC终端无论在开机状态还是关机状态都能及时实现 挂失, 从而避免了 NFC终端不能及时挂失所导致被非法用户冒用进行电子 支付的风险, 避免了给 NFC终端的合法用户造成损失。 附图说明 By adopting the invention, the NFC terminal can realize the loss in time in the power-on state or the power-off state, thereby avoiding the risk that the NFC terminal can not be reported in time for the electronic user to use the electronic payment, thereby avoiding the legitimate user of the NFC terminal. loss. DRAWINGS
图 1为本发明***实施例的组成结构示意图。 具体实施方式  FIG. 1 is a schematic structural diagram of a system embodiment of the present invention. detailed description
本发明的基本思想是: 受理终端检测到 NFC终端与挂失信息列表中的 挂失用户信息相匹配, 且 NFC终端未置位挂失标志位, 受理终端控制 NFC 终端置位挂失标志位, 从而实现挂失。  The basic idea of the present invention is: The receiving terminal detects that the NFC terminal matches the loss reporting user information in the report of the loss reporting, and the NFC terminal does not set the loss flag bit, and the receiving terminal controls the NFC terminal to set the loss flag bit, thereby implementing the loss reporting.
下面结合图 1对技术方案的实施作进一步的详细描述。  The implementation of the technical solution will be further described in detail below with reference to FIG.
本发明提供了一种实现电子支付安全的***, 该***包括: 受理终端 和 NFC终端。其中,受理终端用于检测到 NFC终端与挂失信息列表中的挂 失用户信息相匹配,且 NFC终端未置位挂失标志位时,控制 NFC终端置位 挂失标志位。 NFC终端用于当受理终端检测到 NFC终端与挂失信息列表中 的挂失用户信息相匹配, 且 NFC终端未置位挂失标志位时, 在受理终端的 控制下置位挂失标志位, 实现挂失。  The present invention provides a system for implementing electronic payment security, the system comprising: an acceptance terminal and an NFC terminal. The receiving terminal is configured to detect that the NFC terminal matches the lost user information in the loss reporting list, and the NFC terminal sets the loss reporting flag when the NFC terminal does not set the loss flag. When the receiving terminal detects that the NFC terminal matches the lost user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, the NFC terminal sets the loss reporting flag under the control of the receiving terminal to implement the loss reporting.
这里, 受理终端完成对该 NFC终端置位挂失标志置位的控制后, 更新 受理终端上的挂失信息列表。 受理终端包括 POS机、 阅读器、 闹机等设备。  Here, after the receiving terminal completes the control of setting the NFC terminal set loss reporting flag, it updates the loss reporting information list on the receiving terminal. The receiving terminal includes POS machines, readers, alarm machines and other equipment.
其中, 挂失用户信息包括 NFC终端号码、 用户信息、 电子支付业务 ID 信息等。 电子支付业务 ID是受理终端能够识别的业务 ID, NFC终端号码 可以与一个或多个电子支付业务 ID对应。  The lost user information includes an NFC terminal number, user information, and electronic payment service ID information. The electronic payment service ID is a service ID that the receiving terminal can recognize, and the NFC terminal number can correspond to one or more electronic payment service IDs.
本发明实现电子支付安全的***还包括受理终端管理设备。 受理终端 管理设备除完成传统受理终端服务与管理功能外, 还具有挂失寻呼管理功 能和定位功能。 根据挂失寻呼管理功能, 受理终端管理设备可以根据挂失 用户多少, 设备流量控制, 以及挂失的紧急程度, 综合决定挂失寻呼策略, 也可以结合定位功能进行定位寻呼。 所谓的定位寻呼就是根据 NFC终端所 处移动网络位置或电子支付业务消费历史信息进行定位寻呼, 以緩解挂失 业务带来***负荷, 但存在挂失失败风险。 这里, 受理终端管理设备用于根据挂失寻呼管理策略, 实现对受理终 端管理设备所管理的一个或多个受理终端的挂失寻呼管理。 需说明的是, 本发明中沿用了现有的终端设备分级管理架构, 即由一个受理终端管理设 备管理多个受理终端, 而可以预料的是, 受理终端管理设备也可以省略, 即直接由支付平台对应若干受理终端。 The system for realizing electronic payment security of the present invention further includes an acceptance terminal management device. In addition to the traditional receiving terminal service and management functions, the terminal management equipment also has a loss reporting function and a positioning function. According to the report management function of the lost call, the terminal management device can comprehensively determine the report of the loss of paging according to the number of the lost users, the device flow control, and the urgency of the loss reporting, and can also perform the positioning paging in combination with the positioning function. The so-called location paging is based on the mobile network location of the NFC terminal or the electronic payment service consumption history information to perform paging, so as to alleviate the system load caused by the loss reporting service, but there is a risk of loss reporting failure. Here, the receiving terminal management device is configured to implement the loss paging management of one or more receiving terminals managed by the receiving terminal management device according to the lost paging management policy. It should be noted that, in the present invention, the existing terminal equipment hierarchical management architecture is used, that is, one receiving terminal management device manages multiple receiving terminals, and it can be expected that the receiving terminal management device can also be omitted, that is, directly paid. The platform corresponds to a number of receiving terminals.
这里, 受理终端管理设备进一步用于根据挂失寻呼管理策略, 将挂失 用户信息同步更新到一个或多个受理终端, 实现挂失寻呼管理。  Here, the receiving terminal management device is further configured to synchronously update the lost user information to one or more receiving terminals according to the lost paging management policy, thereby implementing loss reporting management.
其中, 挂失寻呼管理策略包括:  Among them, the report mechanism for reporting loss reports includes:
根据下发范围可采用: 对受理终端管理设备管理的所有受理终端进行 挂失用户信息的全网下发; 或者, 对受理终端管理设备管理的部分受理终 端进行挂失用户信息的部分下发;  According to the delivery scope, the entire terminal that manages the management of the terminal management device can be sent to the entire network for reporting the loss of the user information; or the part of the acceptance terminal managed by the terminal management device can be reported for the loss of the user information;
根据下发周期可采用: 挂失用户信息一有更新就即时下发方式; 或者, 挂失用户信息更新后, 每隔预设时间周期下发方式, 例如, 挂失用户信息 更新后, 按照每天凌晨 2点网络业务少时这个预设的固定周期下发, 这样 可以减少对现有网络的影响, 还可以批量处理, 但会比直接即时更新的下 发方式有一定的时间延迟。  According to the delivery period, the information can be sent immediately after the update of the user information; or, after the user information is updated, the delivery mode is sent every preset time period. For example, after the loss of user information is updated, according to 2:00 every day. When the network service is small, this preset fixed period is issued. This can reduce the impact on the existing network, and can also be processed in batches, but it will have a certain time delay than the direct update mode.
本发明实现电子支付安全的***还包括支付平台。 支付平台是进行消 费、 充值、 转账 /汇款、 查询等电子商务操作的业务平台。 支付平台中包括 挂失数据库, 用以实现挂失用户信息保存及状态控制。 支付平台用于将挂 失用户信息保存在本地挂失数据库后, 将挂失用户信息同步更新到受理终 端管理设备。  The system for implementing electronic payment security of the present invention also includes a payment platform. The payment platform is a business platform for e-commerce operations such as consumption, recharge, transfer/remittance, and inquiry. The payment platform includes a loss reporting database for saving and saving user information. After the payment platform saves the lost user information in the local loss reporting database, the lost user information is synchronously updated to the receiving terminal management device.
这里, 支付平台进一步用于将挂失用户信息保存在本地挂失数据库的 挂失用户的账户冻结; 用户的账户冻结后, 账户平台冻结账户内用户原卡 余额及相关业务; 当挂失用户的 NFC终端已实现挂失, 且受理终端通过所 述受理终端管理设备通知支付平台挂失用户的 NFC终端挂失成功时, 支付 平台清除本地挂失数据库内挂失用户的挂失用户信息, 对已冻结的挂失用 户的账户解除冻结, 帐户平台返还挂失用户原卡余额。 Here, the payment platform is further used to freeze the account of the lost user who saves the lost user information in the local loss reporting database; after the user's account is frozen, the account platform freezes the original card balance of the user in the account and related services; when the NFC terminal of the lost user has been implemented Reporting the loss, and the receiving terminal notifies the payment of the NFC terminal of the user who reported the loss of the lost platform by the receiving terminal management device, and pays The platform clears the lost user information of the lost user in the local loss database, and unfreezes the frozen lost user account, and the account platform returns the lost user original card balance.
这里, 通知支付平台挂失用户的 NFC终端挂失成功后, NFC终端重新 申请业务时, 帐户平台将原卡余额转到新开模拟卡上。 也就是说, 支付平 台只有在知道 NFC终端挂失成功后, 才会解除用户的账户的冻结状态, 而 解除用户的账户的冻结状态是为了帐户平台返还原卡余额。反之,如果 NFC 终端未挂失成功, 支付平台不会解除用户的账户的冻结状态, 从而帐户平 台不能返还原卡余额。  Here, after the NFC terminal that reports the loss of the lost user of the payment platform is successfully reported, when the NFC terminal re-applies for the service, the account platform transfers the balance of the original card to the newly opened analog card. That is to say, the payment platform will only release the frozen state of the user's account after knowing that the NFC terminal is reported to be lost, and the user's account is frozen for the account platform to restore the card balance. Conversely, if the NFC terminal is not reported to be lost, the payment platform will not release the frozen state of the user's account, and the account platform cannot return the card balance.
这里需要指出的是: 在 NFC终端业务冻结过程中, 不能通过支付平台 进行恢复办理业务。 如果用户 ·ί敦销挂失业务, 相当于此时 NFC终端未挂失 成功, 虽然可以重新办理业务, 但原卡用户帐户余额无效, 无法返还原卡 余额。  It should be pointed out here that: During the NFC terminal service freeze process, the recovery platform cannot be used for recovery services. If the user LY sells the lost service, the NFC terminal is not reported to be successful at this time. Although the service can be re-processed, the balance of the original card user account is invalid, and the card balance cannot be restored.
本发明实现电子支付安全的***还包括人工受理台, 人工受理台主要 处理来自用户的报失处理。 人工受理台用于接受用户的挂失请求, 进行身 份识别后, 保存该用户信息, 同时冻结该用户的账户, 在挂失成功或用户 取消挂失或重新办理业务时, 冻结结束。 人工受理台与支付平台实现交互, 用于将用户的报失信息通知给支付平台。  The system for realizing electronic payment security of the present invention further includes a manual receiving station, and the manual receiving station mainly processes the loss reporting processing from the user. The manual receiving station is used to accept the user's loss reporting request, and after the identity is recognized, the user information is saved, and the user's account is frozen. When the loss is successful or the user cancels the loss or re-services, the freezing ends. The manual receiving station interacts with the payment platform to notify the payment platform of the user's loss reporting information.
本发明还提供了一种实现电子支付安全的 NFC终端,该 NFC终端用于 当受理终端检测到 NFC终端与挂失信息列表中的挂失用户信息相匹配, 且 NFC终端未置位挂失标志位时, 在受理终端的控制下置位挂失标志位, 实 现挂失。  The present invention also provides an NFC terminal for implementing electronic payment security. The NFC terminal is configured to: when the receiving terminal detects that the NFC terminal matches the lost user information in the loss reporting information list, and the NFC terminal does not set the loss reporting flag, The loss reporting flag is set under the control of the receiving terminal to achieve loss reporting.
这里, NFC终端进一步用于当挂失用户信息经由支付平台和受理终端 管理设备同步更新到受理终端时, 基于更新的挂失用户信息在受理终端的 控制下置位挂失标志位, 实现挂失。  Here, the NFC terminal is further configured to: when the lost user information is synchronously updated to the receiving terminal via the payment platform and the receiving terminal management device, the lost reporting flag is set under the control of the receiving terminal based on the updated lost user information, thereby implementing the loss reporting.
这里, NFC终端进一步用于成功挂失后, 经由受理终端和受理终端管 理设备通知给支付平台。 Here, the NFC terminal is further used for successfully reporting the loss, via the receiving terminal and the receiving terminal tube. The device is notified to the payment platform.
这里, 可以在 NFC控制芯片或安全芯片中设置挂失标志位, 安全芯片 也可是用户识别卡(SIM )。 该挂失标志位根据挂失用户信息, 通过受理终 端的控制, 进行实时更新挂失标志位, 并将 NFC终端设置为挂失模式。 当 NFC终端进行正常电子支付时, 首先判断是否置位挂失标志位进入挂失模 式, 如果不是挂失模式才能进行电子支付业务; 否则终止本次电子支付业 务。  Here, the loss flag bit can be set in the NFC control chip or the security chip, and the security chip can also be a subscriber identity card (SIM). The report of the loss flag is based on the information of the lost user, and the update of the report flag is performed in real time by the control of the terminal, and the NFC terminal is set to the loss mode. When the NFC terminal performs normal electronic payment, it first determines whether the loss flag is set to enter the loss reporting mode, and if it is not the loss reporting mode, the electronic payment service can be performed; otherwise, the electronic payment service is terminated.
这里, 如果 NFC终端包括多业务应用, 可以根据用户挂失要求, 灵活 采取多业务应用挂失功能。 如果 NFC终端上实现多业务, 不仅可以将多业 务一起挂失, 而且可以将多业务分别单独挂失, 使用户损失控制到最小。 也就是说, 挂失标志位可以采用不同的定义, 以表示终端进入哪一种挂失 模式。 挂失模式具体包括: 结合某一个业务进行单一业务挂失模式、 或者 结合所有业务一起挂失的所有业务挂失模式。  Here, if the NFC terminal includes a multi-service application, the multi-service application loss reporting function can be flexibly adopted according to the user's loss request. If multiple services are implemented on the NFC terminal, not only can multiple services be reported together, but also multiple services can be reported separately, so that user loss control is minimized. In other words, the loss flag can be defined differently to indicate which type of loss mode the terminal enters. The loss reporting mode specifically includes: a single service loss reporting mode combined with a certain service, or all the loss reporting modes that are reported together with all services.
单一业务挂失时, NFC终端被受理终端检测到其与从网络侧获取电子 支付业务 ID信息相匹配, 则挂失该业务 /功能; 所有业务挂失时, NFC终 端被受理终端检测到其与从网络侧获取任何一个电子支付业务 ID信息相匹 配, 则挂失所有业务。  When the single service is reported to be lost, the NFC terminal is detected by the receiving terminal to match the information of the electronic payment service ID obtained from the network side, and the service/function is lost. When all services are reported to be lost, the NFC terminal is detected by the receiving terminal and the slave side. If any of the electronic payment service ID information is matched, all services are lost.
本发明还提供了一种实现电子支付安全的方法, 该方法包括: 当受理 终端检测到 NFC 终端与挂失信息列表中的挂失用户信息相匹配, 且 NFC 终端未置位挂失标志位时, 受理终端控制 NFC终端置位挂失标志位, 实现 挂失。  The present invention also provides a method for implementing electronic payment security, the method comprising: when the receiving terminal detects that the NFC terminal matches the loss reporting user information in the report of the loss reporting, and the NFC terminal does not set the loss reporting flag, the receiving terminal Control the NFC terminal to set the loss flag bit to achieve loss reporting.
这里, 该方法还包括: 受理终端管理设备根据挂失寻呼管理策略, 实 现对受理终端管理设备所管理的一个或多个受理终端的挂失寻呼管理。  Here, the method further includes: the receiving terminal management device implements the loss paging management of the one or more receiving terminals managed by the receiving terminal management device according to the lost paging management policy.
这里, 实现挂失寻呼管理具体包括: 根据挂失寻呼管理策略, 将挂失 用户信息同步更新到一个或多个受理终端。 其中, 挂失寻呼管理策略包括: 对受理终端管理设备管理的所有受理 终端进行挂失用户信息同步更新的全网下发; 或者, 对受理终端管理设备 管理的部分受理终端进行挂失用户信息同步更新的部分下发。 可以采用挂 失用户信息一有更新就即时下发的方式; 或者, 挂失用户信息更新后, 每 隔预设时间周期下发的方式。 Here, implementing the report of the loss of paging specifically includes: synchronously updating the reported loss information to one or more receiving terminals according to the report of the lost paging management. The report of the report of the loss of the paging includes: transmitting the entire network of the lost terminal user information to all the receiving terminals managed by the terminal management device; or performing the synchronous updating of the lost user information for the part of the receiving terminal managed by the terminal management device; Partially issued. You can use the method of reporting the loss of the user information as soon as it is updated; or, after the loss of the user information is updated, the method is sent every preset time period.
这里, 该方法还包括: 支付平台将挂失用户信息保存在本地挂失数据 库后, 将挂失用户信息同步更新到所述受理终端管理设备。 其中, 支付平 台将挂失用户信息保存在本地挂失数据库的挂失用户的账户冻结。  Here, the method further includes: after the payment platform saves the lost user information in the local loss reporting database, and synchronously updates the lost user information to the receiving terminal management device. The payment platform freezes the account of the lost user who saved the lost user information in the local loss database.
这里, 该方法还包括: 当挂失用户的 NFC终端实现挂失, 且受理终端 通过受理终端管理设备通知支付平台挂失用户的 NFC终端挂失成功时, 支 付平台清除本地挂失数据库内挂失用户的挂失用户信息, 对已冻结的挂失 用户的账户解除冻结, 帐户平台返还挂失用户原卡剩余余额。  Here, the method further includes: when the NFC terminal of the lost user implements the loss reporting, and the receiving terminal notifies the NFC terminal of the loss of the user of the payment platform by the terminal management device, the payment platform clears the lost user information of the lost user in the local loss reporting database. The account of the frozen report loss user is unfrozen, and the account platform returns the remaining balance of the lost user original card.
根据本发明, 移动运营商可以开展增值业务。 例如, 运营商可以为用 户提供一种附加服务, 根据挂失用户的要求, 有选择的进行挂失业务。 因 为运营商必须增加额外的服务器及下发挂失用户信息到受理终端, 因此, 可以根据挂失业务的成功收取一定费用, 如此一来, 运营商通过为用户提 供这种附加业务, 可以更好的盈利。  According to the present invention, a mobile operator can carry out value-added services. For example, the operator can provide an additional service for the user to selectively report the loss based on the request of the lost user. Because the operator must add additional servers and send the lost user information to the receiving terminal, it can charge a certain fee according to the success of the loss reporting service. In this way, the operator can make better profit by providing the user with such additional services. .
这里, 用户可以根据多应用决定采用单一业务挂失或所有业务挂失。 也可根据挂失范围选择是否全网挂失或部分挂失, 或根据下发周期选择即 时下发或周期下发; 还可以支持定位挂失等功能。  Here, the user can decide to use a single service loss report or all business loss reports according to multiple applications. You can also choose whether to report the loss or the partial loss of the entire network according to the range of the loss, or choose to send it immediately or periodically according to the delivery period. It can also support the function of location loss reporting.
这里需要指出的是: 采用本发明, 不仅适用于掉电刷卡和离线交易, 同时也适用于开机刷卡和在线交易的场景。  It should be pointed out here that: With the invention, it is not only suitable for power-off credit card and offline transactions, but also suitable for scenes of booting and online transactions.
这里,对本文所涉及的 NFC终端进行阐述。本文中的 NFC终端是泛指 的近距离通信终端, 包括狭义的 NFC终端和 eNFC终端。 根据电子支付实 现方式不同, 对于狭义的 NFC终端, 挂失标志位可设置于控制芯片中或安 全芯片中, 对于 eNFC终端, 挂失标志位可设置于控制芯片中或者 SIM中。 综上所述, 目前, 在例如销售终端 (POS )等受理终端的交易环境中, 从受理终端管理设备一受理终端一 NFC终端这个方向的链路上信息交互很 少, 如果本发明在这个方向的链路上交互控制信息, 并不会导致链路上信 息交互过多形成链路上信息拥塞。 同时网络技术和具有无线通信模块的受 理终端的普及, 使受理终端管理设备可以有效地控制受理终端, 再由受理 终端控制 NFC终端。 可见: 基于受理终端管理设备一受理终端一 NFC终端 这个方向的链路, 以及网络技术和具有无线通信模块的受理终端的普及, 为本发明实现 NFC终端在交易过程中完成挂失功能提供了技术可能性。 Here, the NFC terminal referred to herein is explained. The NFC terminal herein is a generic short-range communication terminal, including a narrow NFC terminal and an eNFC terminal. According to different implementations of electronic payment, for narrow NFC terminals, the loss flag can be set in the control chip or In the whole chip, for the eNFC terminal, the loss flag bit can be set in the control chip or in the SIM. In summary, at present, in a transaction environment of an acceptance terminal such as a sales terminal (POS), there is little information interaction on the link in the direction in which the terminal management device-accepting terminal-NFC terminal is in the direction, if the present invention is in this direction The interaction control information on the link does not cause excessive information exchange on the link to form information congestion on the link. At the same time, the popularity of the network technology and the receiving terminal having the wireless communication module enables the receiving terminal management device to effectively control the receiving terminal, and then the receiving terminal controls the NFC terminal. It can be seen that: based on the acceptance of the terminal management device, the link of the terminal, the NFC terminal, and the popularity of the network technology and the acceptance terminal having the wireless communication module, the invention provides a technical possibility for the NFC terminal to complete the loss reporting function in the transaction process. Sex.
本发明提供的实现电子支付安全的解决方案中, 基于受理终端控制 NFC终端的思路, 实现 NFC终端交易过程中的挂失控制。 可以通过受理终 端管理设备将 NFC终端的挂失用户信息传递到受理终端, 当受理终端检测 到本次交易的 NFC终端与挂失信息列表中的挂失用户信息相匹配, 并且该 NFC终端未置位挂失标志位 ,则受理终端控制该 NFC终端置位挂失标志位 , 终止本次交易, 完成挂失功能。  In the solution for realizing electronic payment security provided by the present invention, based on the idea that the receiving terminal controls the NFC terminal, the loss reporting control in the NFC terminal transaction process is realized. The NFC terminal of the NFC terminal can be transmitted to the receiving terminal through the terminal management device, and the receiving terminal detects that the NFC terminal of the transaction matches the reported loss information in the report of the loss information, and the NFC terminal does not set the report loss flag. Bit, the receiving terminal controls the NFC terminal to set the loss reporting flag, terminates the transaction, and completes the loss reporting function.
可见, 采用本发明提供的实现电子支付安全的解决方案, 非法用户持 已被 4艮失的 NFC终端在受理终端上刷卡使用时,由受理终端控制 NFC终端 置位挂失标志位,因为受理终端与 NFC终端之间的通信可以在 NFC关机或 掉电状态下进行, 所以实现了 NFC终端关机或掉电状态下的挂失, 保证了 NFC终端掉电刷卡下的安全交易,从而保证了 NFC终端电子支付的安全性。  It can be seen that, by using the solution for realizing electronic payment security provided by the present invention, when an illegal user holds a NFC terminal that has been lost by 4, the NFC terminal sets the loss reporting flag by the receiving terminal, because the receiving terminal and the receiving terminal The communication between the NFC terminals can be performed under the NFC shutdown or power-off state, so that the NFC terminal is shut down or reported in the power-off state, which ensures the secure transaction under the NFC terminal power-down credit card, thereby ensuring the electronic payment of the NFC terminal. Security.
以下对本发明进行举例阐述。  The invention is illustrated by way of example below.
***实施例:  System embodiment:
如图 1 所示, 本实施例中, ***具体包括: 人工受理台、 支付平台、 帐户平台、 受理终端管理设备、 多个受理终端和 NFC终端。  As shown in FIG. 1 , in this embodiment, the system specifically includes: a manual receiving station, a payment platform, an account platform, an acceptance terminal management device, a plurality of receiving terminals, and an NFC terminal.
其中, 支付平台中有挂失数据库, 该挂失数据库也可以采取挂失服务 器的形式存在, 基于该挂失数据库可以冻结挂失用户的账户和对该挂失用 户的账户进行解冻, 这样做的目的是: 如果该挂失用户通过 NFC终端挂失 成功后, 支付平台可以对之前已经冻结的挂失用户的账户进行解冻, 从而 帐户平台可以将该挂失用户的原卡余额成功返回给用户。 受理终端管理设 备中有挂失寻呼管理策略, 是用于实现对受理终端管理设备所管理的受理 策略, 将受理终端管理设备从支付平台获取的挂失用户信息, 同步更新到 受理终端。 受理终端中有挂失信息列表, 用于保存从受理终端管理设备获 取的挂失用户信息, 并可以随时或定期对挂失用户信息进行更新, 挂失信 息列表, 是用于当受理终端检测到 NFC终端与挂失信息列表中的挂失用户 信息相匹配,且 NFC终端未置位挂失标志位时, 由受理终端控制 NFC终端 置位挂失标志位,从而实现 NFC终端的挂失, 即: 持有 NFC终端的挂失用 户的挂失。 Among them, there is a loss report database in the payment platform, and the report loss database can also be reported as a loss report service. The form of the device exists, based on the loss database, the account of the lost user can be frozen and the account of the lost user is thawed. The purpose of the failure is that if the lost user successfully reports the loss through the NFC terminal, the payment platform can freeze the previously frozen user. The account of the lost user is thawed, so that the account platform can successfully return the balance of the original card of the lost user to the user. The call terminal management device has a report mechanism for reporting loss, which is used to implement an acceptance policy managed by the terminal management device, and the lost user information acquired by the terminal management device from the payment platform is synchronously updated to the terminal. The receiving terminal has a report of the loss reporting information, which is used for saving the lost user information obtained from the receiving terminal management device, and can update the lost user information at any time or periodically, and the loss reporting information list is used when the receiving terminal detects the NFC terminal and reports the loss. When the loss of the user information in the information list matches, and the NFC terminal does not set the loss flag, the terminal controls the NFC terminal to set the loss flag, thereby reporting the loss of the NFC terminal, that is, the loss of the user holding the NFC terminal. Report loss.
方法实施例: 本实施例是公交一^ ^通的 NFC终端的挂失过程, 包括以 下步驟:  Method Embodiment: This embodiment is a loss reporting process of an NFC terminal of a bus, including the following steps:
步驟 101、 用户丟失 NFC终端, 通过人工受理台报失。  Step 101: The user loses the NFC terminal, and reports the loss through the manual receiving station.
步驟 102、 人工受理台经过身份验证后, 受理用户的挂失请求。  Step 102: After the manual receiving station is authenticated, the user's loss reporting request is accepted.
步驟 103、录入挂失用户信息到挂失数据库,并通知受理终端管理设备, 公交一^ ^通业务进入冻结状态。  Step 103: Entering the lost user information to the loss reporting database, and notifying the receiving terminal management device that the public transit service enters a frozen state.
步驟 104、 受理终端管理设备确定挂失寻呼管理策略。  Step 104: The terminal management device is determined to determine a loss reporting policy.
这里, 有特殊要求的话, 比如根据挂失用户多少, 设备流量控制, 以 及挂失的紧急程度, 可将挂失寻呼管理策略设置为定位挂失或优先挂失。  Here, if there are special requirements, such as the number of users who are lost, the flow control of the device, and the urgency of the loss, the report of the loss of paging management can be set to locate loss or priority loss.
步驟 105、 受理终端管理设备根据所管理的受理终端列表, 确定受理终 端管理设备所管理的受理终端, 将挂失用户信息下发到相应的受理终端。  Step 105: The receiving terminal management device determines the receiving terminal managed by the terminal management device according to the managed terminal list, and sends the lost user information to the corresponding receiving terminal.
这里, 如果是地铁闸机、 或有无线连接公交阅读器的情况, 可以实时 发送挂失用户信息; 如果是定期回收的、 且又没有无线接口的公交受理终 端对帐时, 可以批量更新挂失用户信息。 Here, if it is a subway gate or a wireless connection bus reader, it can be real time. Sending the lost user information; If the bus receiving terminal that is periodically recycled and does not have a wireless interface reconciles, the lost user information can be updated in batches.
步驟 106、 受理终端根据来自于受理终端管理设备的挂失用户信息, 更 新受理终端自身的挂失信息列表。  Step 106: The receiving terminal updates the report of the loss reporting information of the terminal itself according to the information of the lost user from the terminal management device.
步驟 107、 当已登记挂失的 NFC终端, 即与挂失信息列表中挂失用户 信息相匹配的 NFC终端进行交易时, 受理终端会在交易前, 先判断该 NFC 终端的挂失标志位是否已经置位, 如果已经置位, 则终止交易, 结束当前 挂失过程; 如果未置位, 则执行步驟 108。  Step 107: When the NFC terminal that has registered the loss report, that is, the NFC terminal that matches the loss of the user information in the report of the loss report, performs the transaction, the receiving terminal determines whether the report flag of the NFC terminal has been set before the transaction. If it has been set, the transaction is terminated, ending the current loss reporting process; if not set, then step 108 is performed.
步驟 108、进行挂失操作, 受理终端更新挂失信息列表中的挂失用户信 息, 控制该 NFC终端置位挂失标志位, 向受理终端管理设备 4艮告该 NFC 终端挂失成功。  Step 108: Perform a loss reporting operation, and the receiving terminal updates the lost user information in the loss reporting information list, controls the NFC terminal to set the loss reporting flag, and reports to the receiving terminal management device 4 that the NFC terminal is successfully reported.
步驟 109、 受理终端管理设备通知支付平台该 NFC终端挂失成功, 支 付平台清除挂失数据库中的挂失用户信息,对该 NFC终端的用户进行解冻。  Step 109: The receiving terminal management device notifies the payment platform that the NFC terminal is successfully reported, and the payment platform clears the lost user information in the loss reporting database, and thaws the user of the NFC terminal.
步驟 110、 当 NFC终端挂失成功, 且重新申请业务时, 帐户平台将该 NFC终端的原卡剩余余额转到新开的模拟卡上。  Step 110: When the NFC terminal reports the loss successfully and re-applies for the service, the account platform transfers the remaining balance of the original card of the NFC terminal to the newly opened analog card.
这里需要指出的是, 以上本方法实施例所描述的 SIM卡只是为描述直 观, 可扩展其它智能卡。 同时受理终端包括 POS机、 阅读器、 闸机等。  It should be noted here that the SIM card described in the above method embodiment is only for the purpose of description and can expand other smart cards. At the same time, the terminal includes POS machines, readers, gates, etc.
以上所述, 仅为本发明的较佳实施例而已, 并非用于限定本发明的保 护范围。  The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims

权利要求书 Claim
1、 一种实现电子支付安全的***, 其特征在于, 所述***包括: 受理 终端、 近距离通信(NFC )终端和存储有挂失用户信息的支付平台; 其中, 受理终端, 用于检测到 NFC终端与所述挂失用户信息相匹配, 且所述 NFC终端未置位挂失标志位时, 控制所述 NFC终端置位所述挂失标志位; A system for implementing electronic payment security, characterized in that: the system comprises: an acceptance terminal, a short-range communication (NFC) terminal, and a payment platform storing the lost user information; wherein, the acceptance terminal is configured to detect the NFC When the terminal matches the lost user information, and the NFC terminal does not set the loss flag, the NFC terminal is controlled to set the report loss flag;
NFC终端,用于当受理终端检测到 NFC终端与所述挂失用户信息相匹 配, 且所述 NFC终端未置位挂失标志位时, 在所述受理终端的控制下置位 所述挂失标志位。 The NFC terminal is configured to: when the receiving terminal detects that the NFC terminal matches the lost user information, and the NFC terminal does not set the loss flag, the flag is set under the control of the receiving terminal.
2、 根据权利要求 1所述的***, 其特征在于, 所述受理终端, 进一步 用于根据电子支付过程中检测到的 NFC终端中的电子支付业务标识( ID ) 信息, 与挂失用户信息中的电子支付业务 ID信息相匹配, 实现所述 NFC 终端与所述挂失用户信息的相匹配。  The system according to claim 1, wherein the receiving terminal is further configured to use the electronic payment service identification (ID) information in the NFC terminal detected in the electronic payment process, and the information in the lost user information. The electronic payment service ID information is matched to match the NFC terminal and the lost user information.
3、 根据权利要求 1所述的***, 其特征在于, 所述***还包括: 受理 终端管理设备, 用于从支付平台接收所述挂失用户信息, 并根据挂失寻呼 管理策略, 将所述挂失用户信息同步更新到一个或多个受理终端。  The system according to claim 1, wherein the system further comprises: an acceptance terminal management device, configured to receive the report loss information from a payment platform, and report the report loss according to a report loss management policy User information is updated synchronously to one or more receiving terminals.
4、 根据权利要求 3所述的***, 其特征在于, 所述挂失寻呼管理策略 包括依据下发范围下发的方式、 或依据下发周期下发的方式; 其中,  The system of claim 3, wherein the report of the report of the loss of paging includes the method of delivering the report according to the delivery range, or the manner of delivering the delivery according to the delivery period;
所述依据下发范围下发的方式包括: 对受理终端管理设备管理的所有 受理终端进行挂失用户信息的全网下发; 或者, 对受理终端管理设备管理 的部分受理终端进行挂失用户信息的部分下发;  The method of delivering the information according to the delivery range includes: transmitting the entire network of the user terminal that has been reported to the terminal management device for reporting loss, or sending the user information to the part of the acceptance terminal managed by the terminal management device Issued;
所述依据下发周期下发的方式包括: 挂失用户信息一有更新就即时下 发; 或者, 挂失用户信息更新后, 每隔预设时间周期下发。  The method of delivering the information according to the delivery period includes: the user information of the loss reporting is sent immediately upon update; or, after the user information is updated, the information is sent every preset time period.
5、 根据权利要求 2至 4任一项所述的***, 其特征在于, 所述支付平 台用于将挂失用户信息保存在本地挂失数据库后, 将挂失用户信息同步更 新到所述受理终端管理设备。 The system according to any one of claims 2 to 4, wherein the payment platform is configured to update the lost user information to the receiving terminal management device after saving the lost user information in the local loss reporting database. .
6、 根据权利要求 5所述的***, 其特征在于, 所述挂失用户信息存储 在支付平台的挂失数据库中, 所述支付平台进一步用于将保存在本地的挂 失数据库中的挂失用户的账户冻结; 当挂失用户的 NFC终端成功挂失后, 且所述受理终端通过所述受理终端管理设备通知支付平台挂失用户的 NFC 终端挂失成功时, 支付平台清除本地挂失数据库内的挂失用户信息, 对已 冻结的挂失用户的账户解除冻结。 The system according to claim 5, wherein the lost user information is stored in a loss report database of the payment platform, and the payment platform is further configured to freeze the account of the lost user stored in the local loss report database. After the NFC terminal of the lost user successfully reports the loss, and the receiving terminal notifies the payment platform of the NFC terminal that the user is reporting the loss of the NFC terminal by the receiving terminal management device, the payment platform clears the information of the lost user in the local loss reporting database, and the frozen information is frozen. The account of the lost user is unfrozen.
7、 一种实现电子支付安全的近距离通信(NFC )终端, 其特征在于, 所述 NFC终端针对每个 NFC业务 /功能设置有挂失标志位, 当所述 NFC终 端被受理终端检测到其与从网络侧获取的挂失信息列表中的挂失用户信息 相匹配, 且所述 NFC终端未置位挂失标志位时, 在所述受理终端的控制下 置位所述挂失标志位, 实现挂失。  7. A near field communication (NFC) terminal for implementing electronic payment security, wherein the NFC terminal is provided with a loss flag bit for each NFC service/function, and when the NFC terminal is detected by the terminal, When the loss reporting user information in the loss reporting information list obtained from the network side matches, and the NFC terminal does not set the loss reporting flag, the reporting loss flag is set under the control of the receiving terminal to implement the loss reporting.
8、 根据权利要求 7所述的终端, 其特征在于, 单一业务 /功能挂失时, NFC终端被受理终端检测到其与从网络侧获取的电子支付业务 ID信息相匹 配, 挂失所述电子支付业务 ID信息所标识的业务 /功能。  The terminal according to claim 7, wherein, when the single service/function is reported to be lost, the NFC terminal is detected by the receiving terminal to match the electronic payment service ID information acquired from the network side, and the electronic payment service is reported to be lost. The service/function identified by the ID information.
9、 根据权利要求 7所述的终端, 其特征在于, 所有业务 /功能挂失时, NFC终端被受理终端检测到其与从网络侧获取的任何一个电子支付业务 ID 信息相匹配, 挂失所有业务 /功能。  9. The terminal according to claim 7, wherein when all services/functions are reported to be lost, the NFC terminal is detected by the receiving terminal to match any one of the electronic payment service ID information acquired from the network side, and all services are reported to be lost/ Features.
10、 一种实现电子支付安全的方法, 其特征在于, 该方法包括: 当受 理终端检测到 NFC终端与挂失信息列表中的挂失用户信息相匹配, 且所述 NFC终端未置位挂失标志位时,所述受理终端控制所述 NFC终端置位所述 挂失标志位, 实现对所述 NFC终端的挂失。  A method for implementing electronic payment security, the method comprising: when the receiving terminal detects that the NFC terminal matches the loss of user information in the report of the loss reporting, and the NFC terminal does not set the loss flag The receiving terminal controls the NFC terminal to set the loss flag bit to implement reporting loss to the NFC terminal.
11、 根据权利要求 10 所述的方法, 其特征在于, 所述受理终端检测 NFC终端与挂失信息列表中的挂失用户信息相匹配为: 受理终端根据受理 终端管理设备的挂失寻呼先获知挂失寻呼列表, 再根据所述挂失寻呼列表 查询 NFC终端用户是否为挂失用户。 The method according to claim 10, wherein the receiving terminal detects that the NFC terminal matches the lost user information in the report of the loss reporting information to: the receiving terminal first learns to report the loss based on the loss reporting of the terminal management device. And calling the list, and querying, according to the report of the lost paging, whether the NFC terminal user is a report loss user.
12、 根据权利要求 10所述的方法, 其特征在于, 该方法还包括: 在人 工受理台完成用户报失后, 挂失用户的账户由支付平台冻结。 12. The method according to claim 10, wherein the method further comprises: after the user accepts the completion of the user report, the account of the lost user is frozen by the payment platform.
13、 根据权利要求 12所述的方法, 其特征在于, 该方法还包括: 当挂 失用户的 NFC终端实现挂失, 且所述受理终端通过所述受理终端管理设备 通知支付平台挂失用户的 NFC终端挂失成功时, 所述支付平台清除本地挂 失数据库内挂失用户的挂失用户信息, 对已冻结的挂失用户的账户解除冻 结, 并由帐户平台返还挂失用户原卡剩余余额。  The method according to claim 12, wherein the method further comprises: when the NFC terminal of the lost user implements the loss reporting, and the receiving terminal notifies the payment platform of the NFC terminal that the user is reporting the loss of the loss through the receiving terminal management device Upon successful, the payment platform clears the lost user information of the lost user in the local loss reporting database, unfreezes the frozen lost user account, and returns the remaining balance of the lost user original card by the account platform.
PCT/CN2010/074734 2010-02-05 2010-06-29 System, near field communication terminal and method for implementing the security of electronic payment WO2011094995A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN 201010112529 CN101794421A (en) 2010-02-05 2010-02-05 System, near field communication (NFC) terminal and method for realizing electronic payment security
CN201010112529.4 2010-02-05

Publications (1)

Publication Number Publication Date
WO2011094995A1 true WO2011094995A1 (en) 2011-08-11

Family

ID=42587096

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2010/074734 WO2011094995A1 (en) 2010-02-05 2010-06-29 System, near field communication terminal and method for implementing the security of electronic payment

Country Status (2)

Country Link
CN (1) CN101794421A (en)
WO (1) WO2011094995A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013152845A1 (en) * 2012-04-12 2013-10-17 Giesecke & Devrient Gmbh Contactless transaction
US10033435B2 (en) 2014-06-26 2018-07-24 Intel IP Corporation Apparatus, system and method of detecting an activity of a wireless communication device

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
PT106125A (en) * 2012-01-31 2013-07-31 Orlando Fernandes De Sousa Cruz PORTABLE DEVICE FOR ELECTRONIC PAYMENTS
CN104318431B (en) * 2014-10-20 2018-03-16 惠州Tcl移动通信有限公司 A kind of wireless payment position information processing method and system based on NFC
CN105225105A (en) * 2015-09-24 2016-01-06 广东欧珀移动通信有限公司 The method for security protection that NFC pays and system
CN107872451B (en) * 2017-09-30 2022-03-01 深圳壹账通智能科技有限公司 User identity authentication method and identity authentication device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040004117A1 (en) * 2001-03-14 2004-01-08 Hitachi, Ltd. Method and system to prevent fraudulent payment in credit/debit card transactions, and terminals therefor
CN1717082A (en) * 2004-07-02 2006-01-04 乐金电子(中国)研究开发中心有限公司 Anti-theft method and system of mobile communication terminal
CN1991926A (en) * 2005-12-30 2007-07-04 中兴通讯股份有限公司 RFID mobile phone small payment loss register handling system and realization method
CN101183469A (en) * 2006-11-14 2008-05-21 中兴通讯股份有限公司 Method of loss report and anti-fraudulent use for electronic purse

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040004117A1 (en) * 2001-03-14 2004-01-08 Hitachi, Ltd. Method and system to prevent fraudulent payment in credit/debit card transactions, and terminals therefor
CN1717082A (en) * 2004-07-02 2006-01-04 乐金电子(中国)研究开发中心有限公司 Anti-theft method and system of mobile communication terminal
CN1991926A (en) * 2005-12-30 2007-07-04 中兴通讯股份有限公司 RFID mobile phone small payment loss register handling system and realization method
CN101183469A (en) * 2006-11-14 2008-05-21 中兴通讯股份有限公司 Method of loss report and anti-fraudulent use for electronic purse

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2013152845A1 (en) * 2012-04-12 2013-10-17 Giesecke & Devrient Gmbh Contactless transaction
US10033435B2 (en) 2014-06-26 2018-07-24 Intel IP Corporation Apparatus, system and method of detecting an activity of a wireless communication device

Also Published As

Publication number Publication date
CN101794421A (en) 2010-08-04

Similar Documents

Publication Publication Date Title
US20210174325A1 (en) Nfc mobile payments using tokenization
US8559987B1 (en) Wireless bidirectional communications between a mobile device and associated secure element
EP2689614B1 (en) Method and apparatus for battery with secure element
CN101587612B (en) System and method for providing mobile payment through combining non-contact IC card
US20160335620A1 (en) Vending machine transactions
CN101996446B (en) Method and system for remotely controlling intelligent card
WO2011094995A1 (en) System, near field communication terminal and method for implementing the security of electronic payment
US20130137367A1 (en) Non-wireless bidirectional communication between a mobile device and associated secure element using an audio port
US8768300B2 (en) Remote control method and system for smart card
EP2224375B1 (en) Power supply for a system including chip card connected to a host device
US8532619B2 (en) System for authorizing the use of communication devices by proximity
US10445729B2 (en) Method and apparatus for dynamically changed identifiers in an RFID tag device
CN101345793B (en) Near-field communication terminal and method for implementing application of non-contact card by power-failure
CN101923757A (en) Mobile payment management system
CN102426658B (en) Dual-protocol supporting contact-less communication smart card
CN102402744A (en) Data processing method and system for mobile equipment and mobile equipment
JP2023524538A (en) Near Field Communication NFC Communication Method, Apparatus and Electronic Equipment
US20150339658A1 (en) Method of authentication between a mobile terminal and a processing terminal
WO2011022914A1 (en) Method and system for smart card remote control
US20100287095A1 (en) Portable Terminal Device, Charging Management Component, and Program for Controlling Portable Terminal
Kolev Designing a NFC system
CA2820414C (en) Method for managing the level of charge of at least two batteries, corresponding device and computer program
CN102892096B (en) System, method, business operation support system (BOSS) and equipment for realizing account recharge
EP3892034A1 (en) Proximity device network
CN206402217U (en) A kind of card reader for integrating speech talkback bluetooth NFC

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10845078

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10845078

Country of ref document: EP

Kind code of ref document: A1