阅读说明：本技术 注册方法、系统、电子设备及存储介质 (Registration method, system, electronic device and storage medium ) 是由 张垚 张帅 于 2021-06-30 设计创作，主要内容包括：本公开提供了一种注册方法、系统、电子设备及存储介质,其中,该方法包括：获取目标支付设备中预先设定的设备识别信息,以及目标支付设备对应的目标注册用户的用户识别信息；基于所述设备识别信息和所述用户识别信息对所述目标支付设备进行合法性验证；在确定所述目标支付设备具有合法性的情况下,生成合法性验证通过信息。本公开基于设备识别信息对目标支付设备本身进行了信息绑定,合法性验证的准确度较高,进而使得支付的安全性显著提高。(The present disclosure provides a registration method, a system, an electronic device and a storage medium, wherein the method comprises: acquiring preset equipment identification information in target payment equipment and user identification information of a target registered user corresponding to the target payment equipment; performing validity verification on the target payment device based on the device identification information and the user identification information; and generating validity verification passing information under the condition that the target payment device is determined to have validity. According to the method and the device, the target payment device is subjected to information binding based on the device identification information, the accuracy of validity verification is high, and therefore the payment safety is remarkably improved.)

1. A registration method, comprising:

acquiring preset equipment identification information in target payment equipment and user identification information of a target registered user corresponding to the target payment equipment;

performing validity verification on the target payment device based on the device identification information and the user identification information;

and generating validity verification passing information under the condition that the target payment device is determined to have validity.

2. A registration method according to claim 1, wherein the legality verifying the target payment device based on the device identification information and the user identification information comprises:

searching for payment equipment matched with the target registered user based on the pre-binding relationship between the user identification information of each registered user and each payment equipment;

and determining that the validity verification is passed under the condition that the searched equipment identification information of the payment equipment comprises the equipment identification number of the target payment equipment.

3. A registration method according to claim 1 or 2, wherein the legality verifying the target payment device based on the device identification information and the user identification information comprises:

acquiring a permanent geographical position pre-registered by the target registered user and the current geographical position of the target payment equipment;

and under the condition that the permanent geographic position pre-registered by the target registered user is consistent with the current geographic position of the target payment device, carrying out validity verification on the target payment device based on the device identification information and the user identification information.

4. A registration method according to any of claims 1-3, wherein the method further comprises:

acquiring a payment request; the payment request carries a face picture to be recognized of a user to be paid and payment information aiming at a target object;

comparing the face picture to be recognized with each pre-stored face picture in a preset face library, and paying based on the payment information under the condition that the face comparison is successful;

in case the payment is successful, payment confirmation information is generated.

5. The registration method according to claim 4, wherein the comparing the face picture to be recognized with each pre-stored face picture in a pre-stored face library comprises:

determining a face sub-library corresponding to the face picture to be recognized based on the user type of the user to be paid;

determining the similarity between the face picture to be recognized and each pre-stored face picture in the face sub-library;

determining that the face comparison is successful under the condition that a prestored face picture with the similarity larger than a preset threshold exists in the face sub-library; or determining that the face comparison fails under the condition that the pre-stored face picture with the similarity larger than the preset threshold does not exist in the face sub-library.

6. The registration method according to claim 5, wherein when there are a plurality of pre-stored face pictures with similarity greater than a preset threshold in the face sub-library; the method further comprises the following steps:

obtaining portrait description characteristics of a plurality of prestored face pictures;

respectively constructing user portraits on the basis of the portraits description characteristics by using the pre-stored face pictures;

and comparing the user portrait corresponding to the pre-stored face pictures with the user portrait of the user to be paid, and selecting the pre-stored face picture with the highest user portrait matching degree from the pre-stored face pictures as the successfully-compared face picture.

7. The registration method according to any one of claims 4 to 6, wherein the comparing the face picture to be recognized with each pre-stored face picture in a pre-stored face library comprises:

performing living body detection on the face picture to be recognized by using a living body detection network, and judging whether the face corresponding to the face picture to be recognized is a real human face;

under the condition that the face corresponding to the face picture to be recognized is determined to be a real human face, carrying out face comparison on the face picture to be recognized and each pre-stored face picture in a pre-stored face library;

the making of the payment based on the payment information includes:

under the condition that the face comparison is successful, judging whether the account balance of the user to be paid meets the payment amount pointed by the payment information or not to obtain a judgment result;

determining that the payment is successful under the condition that the judgment result indicates that the account balance of the user to be paid is greater than or equal to the payment amount pointed by the payment information; alternatively, the first and second electrodes may be,

and under the condition that the judgment result indicates that the account balance of the user to be paid is smaller than the payment amount pointed by the payment information, determining that the payment fails or generating payment amount compensation reminding information after the payment is successfully carried out based on the account balance of the user to be paid.

8. A registration method according to any of claims 4-7, wherein the making of the payment based on the payment information comprises:

judging whether the payment amount pointed by the payment information is larger than the highest payment amount or not;

responding to the fact that the payment amount pointed by the payment information is larger than the highest payment amount, obtaining payment environment information and user attribute information of the user to be paid, and judging whether the user to be paid has payment risks or not based on the payment environment information and the user attribute information;

and under the condition that the user to be paid has no payment risk, paying based on the payment information.

9. The registration method according to any one of claims 1 to 8, wherein the acquiring device identification information preset in the target payment device and user identification information of the target registered user corresponding to the target payment device comprises:

acquiring a sequencing ciphertext and two pieces of encrypted identification information; the encrypted two pieces of identification information are obtained by encrypting the device identification information and the user identification information respectively by the target payment device, and the sequencing ciphertext is used for indicating the transmission sequence between the two pieces of identification information;

the verifying the legitimacy of the target payment device based on the device identification information and the user identification information includes:

decrypting the two identification information according to the sequencing ciphertext to obtain a decryption result;

and carrying out validity verification on the target payment equipment based on the decryption result.

10. A registration method, comprising:

programming preset equipment identification information in a system memory of the target payment equipment;

responding to a validity verification request of a target registered user, and acquiring the equipment identification information and user identification information of the target registered user from the system memory;

transmitting the device identification information and the user identification information to a server, wherein the server is used for carrying out validity verification on the target payment device based on the device identification information and the user identification information, and generating validity verification passing information under the condition that the target payment device is determined to be legal;

and under the condition that the legality verification passing information is received, determining that the target payment device is legal.

11. The method of registration in accordance with claim 10, the method further comprising:

responding to the payment request, and acquiring a face picture to be recognized of the user to be paid;

and transmitting the face picture to be recognized to the server, wherein the server is used for paying based on the face picture to be recognized.

12. The registration method according to claim 10 or 11, wherein the transmitting the device identification information and the user identification information to a server comprises:

determining a ranking ciphertext based on a transmission order between the device identification information and the user identification information; encrypting the equipment identification information and the user identification information respectively to obtain two encrypted identification information;

and transmitting the sequencing cipher text and the two pieces of identification information to a server, wherein the server is used for carrying out validity verification on the target payment equipment after decrypting the two pieces of identification information according to the sequencing cipher text.

13. The registration method according to claim 12, wherein the encrypting the device identification information and the user identification information, respectively, comprises:

judging whether sensitive characters exist in the target identification information or not; the target identification information includes one or both of the device identification information and the user identification information;

responding to the sensitive characters in the target identification information, and then performing fuzzy processing on the sensitive characters to obtain target identification information comprising fuzzy characters;

and encrypting the target identification information comprising the fuzzy character.

14. A registration system, comprising: a server according to any one of claims 1-9, and a target payment device according to any one of claims 10-13.

15. An electronic device, comprising: a processor, a memory and a bus, the memory storing machine-readable instructions executable by the processor, the processor and the memory communicating over the bus when the electronic device is operating, the machine-readable instructions when executed by the processor performing the registration method of any of claims 1 to 13.

16. A computer-readable storage medium, having stored thereon a computer program which, when executed by a processor, performs the registration method according to any one of claims 1 to 13.

Technical Field

The present disclosure relates to the field of information security technologies, and in particular, to a registration method, a registration system, an electronic device, and a storage medium.

Background

With the development of internet technology, internet-based payment methods, such as code scanning payment, fingerprint payment, and face payment, have become very popular. Among them, face payment is a great concern because of the good experience that users do not need to carry their own mobile devices.

In the process of face payment, terminal equipment with a face payment function is often required to be accessed, and a face is displayed in the terminal equipment to perform payment operation. The legal validity of the terminal equipment is the first prerequisite for realizing safe payment.

In the related art, a verification method of registration and login is mostly adopted, which needs to grant an account number and a password to related personnel in advance, for example, in a large supermarket, a store owner can be given corresponding verification authority. However, in an actual scenario, it is inevitable that an account number and a password are leaked, which makes it difficult to ensure security of payment.

Disclosure of Invention

The embodiment of the disclosure at least provides a registration method, a registration system, electronic equipment and a storage medium, so as to improve the security of payment.

In a first aspect, an embodiment of the present disclosure further provides a registration method, including:

acquiring preset equipment identification information in target payment equipment and user identification information of a target registered user corresponding to the target payment equipment;

performing validity verification on the target payment device based on the device identification information and the user identification information;

and generating validity verification passing information under the condition that the target payment device is determined to have validity.

By adopting the registration method, under the condition that the preset device identification information in the target payment device and the user identification information of the target registered user are obtained, the server can carry out validity verification on the target payment device based on the obtained information, the validity verification is passed, and the target payment device can be the payment device bound with the registered user, so that the payment safety can be ensured under the condition that the subsequent payment operation is carried out based on the target payment device, and if the validity verification is not passed, at least one of the device identification information and the user identification information has a problem, the payment operation cannot be carried out continuously, and the payment safety is ensured. Compared with the existing account number and password mode, the target payment equipment is subjected to information binding based on the equipment identification information, the accuracy of validity verification is high, and therefore the payment safety is remarkably improved.

In a possible embodiment, the verifying the validity of the target payment device based on the device identification information and the user identification information includes:

searching for payment equipment matched with the target registered user based on the pre-binding relationship between the user identification information of each registered user and each payment equipment;

and determining that the validity verification is passed under the condition that the searched equipment identification information of the payment equipment comprises the equipment identification number of the target payment equipment.

Here, validity verification is performed based on the pre-binding relationship, operation is simple, and verification efficiency is high.

In a possible embodiment, the verifying the validity of the target payment device based on the device identification information and the user identification information includes:

acquiring a permanent geographical position pre-registered by the target registered user and the current geographical position of the target payment equipment;

and under the condition that the permanent geographic position pre-registered by the target registered user is consistent with the current geographic position of the target payment device, carrying out validity verification on the target payment device based on the device identification information and the user identification information.

In order to further improve the accuracy of the validity verification, before the validity verification is performed, the consistency between the permanent geographic position registered in advance by the target registered user and the current geographic position of the target payment device can be judged, and the consistency between the two positions ensures the validity of the validity verification to a certain extent.

In one possible embodiment, the method further comprises:

acquiring a payment request; the payment request carries a face picture to be recognized of a user to be paid and payment information aiming at a target object;

comparing the face picture to be recognized with each pre-stored face picture in a preset face library, and paying based on the payment information under the condition that the face comparison is successful;

in case the payment is successful, payment confirmation information is generated.

Here, the person face comparison may be performed first, and then the payment operation may be performed. The identity legality of the user to be paid can be determined through face comparison, and therefore the safety of follow-up payment is guaranteed.

In a possible implementation manner, the comparing the face picture to be recognized with each pre-stored face picture in a pre-stored face library includes:

determining a face sub-library corresponding to the face picture to be recognized based on the user type of the user to be paid;

determining the similarity between the face picture to be recognized and each pre-stored face picture in the face sub-library;

determining that the face comparison is successful under the condition that a prestored face picture with the similarity larger than a preset threshold exists in the face sub-library; or determining that the face comparison fails under the condition that the pre-stored face picture with the similarity larger than the preset threshold does not exist in the face sub-library.

In order to improve the efficiency of face comparison, the face sub-library can be divided in advance based on different user types, so that under the condition that the face picture to be recognized is obtained, the similarity between the face picture to be recognized and each pre-stored face picture in the face sub-library is calculated, and the comparison efficiency is obviously improved.

In a possible implementation manner, when a plurality of pre-stored face pictures with similarity degrees larger than a preset threshold exist in the face sub-library; the method further comprises the following steps:

obtaining portrait description characteristics of a plurality of prestored face pictures;

respectively constructing user portraits on the basis of the portraits description characteristics by using the pre-stored face pictures;

and comparing the user portrait corresponding to the pre-stored face pictures with the user portrait of the user to be paid, and selecting the pre-stored face picture with the highest user portrait matching degree from the pre-stored face pictures as the successfully-compared face picture.

Here, when it is determined that a plurality of pre-stored face pictures with relatively high similarity exist in the face sub-library, the most likely face picture can be determined based on the matching pair between the user figures, and the success rate of subsequent payment is further improved.

In a possible implementation manner, the comparing the face picture to be recognized with each pre-stored face picture in a pre-stored face library includes:

performing living body detection on the face picture to be recognized by using a living body detection network, and judging whether the face corresponding to the face picture to be recognized is a real human face;

under the condition that the face corresponding to the face picture to be recognized is determined to be a real human face, carrying out face comparison on the face picture to be recognized and each pre-stored face picture in a pre-stored face library;

the making of the payment based on the payment information includes:

under the condition that the face comparison is successful, judging whether the account balance of the user to be paid meets the payment amount pointed by the payment information or not to obtain a judgment result;

determining that the payment is successful under the condition that the judgment result indicates that the account balance of the user to be paid is greater than or equal to the payment amount pointed by the payment information; alternatively, the first and second electrodes may be,

and under the condition that the judgment result indicates that the account balance of the user to be paid is smaller than the payment amount pointed by the payment information, determining that the payment fails or generating payment amount compensation reminding information after the payment is successfully carried out based on the account balance of the user to be paid.

The face image to be recognized can be verified based on the living body detection, the face comparison can be carried out under the condition that the face image to be recognized corresponds to the real human face, the accuracy of the face comparison is ensured, in addition, the payment result can be determined based on the analysis of various conditions, the whole face payment process can be completed without any equipment carried by a user, and the face payment method is simple and easy to operate.

In one possible embodiment, the making of the payment based on the payment information includes:

judging whether the payment amount pointed by the payment information is larger than the highest payment amount or not;

responding to the fact that the payment amount pointed by the payment information is larger than the highest payment amount, obtaining payment environment information and user attribute information of the user to be paid, and judging whether the user to be paid has payment risks or not based on the payment environment information and the user attribute information;

and under the condition that the user to be paid has no payment risk, paying based on the payment information.

Here, considering that once the payment link is interfered by the external environment, property loss is likely to be caused, based on this, under the condition that the payment amount pointed by the payment information is determined to be greater than the highest payment amount, the payment risk verification can be performed based on the payment environment information and the user attribute information of the user to be paid, so that payment can be performed under the condition that no payment risk exists, and the payment safety problem existing in the process of performing payment under the condition that the payment risk exists is reduced.

In a possible implementation manner, the acquiring device identification information preset in a target payment device and user identification information of a target registered user corresponding to the target payment device includes:

acquiring a sequencing ciphertext and two pieces of encrypted identification information; the encrypted two pieces of identification information are obtained by encrypting the device identification information and the user identification information respectively by the target payment device, and the sequencing ciphertext is used for indicating the transmission sequence between the two pieces of identification information;

the verifying the legitimacy of the target payment device based on the device identification information and the user identification information includes:

decrypting the two identification information according to the sequencing ciphertext to obtain a decryption result;

and carrying out validity verification on the target payment equipment based on the decryption result.

Here, in order to ensure that the transmitted information may be tampered in the process of information transmission between the server and the target payment device, the two pieces of identification information may be transmitted based on an encryption operation, and the two pieces of identification information are decrypted by sorting the ciphertext, so that complete and accurate identification information can be obtained, and the security of information transmission is ensured.

In a second aspect, an embodiment of the present disclosure further provides a registration method, including:

programming preset equipment identification information in a system memory of the target payment equipment;

responding to a validity verification request of a target registered user, and acquiring the equipment identification information and the user identification information of the target registered user from the system content;

transmitting the device identification information and the user identification information to a server, wherein the server is used for carrying out validity verification on the target payment device based on the device identification information and the user identification information, and generating validity verification passing information under the condition that the target payment device is determined to be legal;

and under the condition that the legality verification passing information is received, determining that the target payment device is legal.

The device identification information can be written in advance, and cannot be changed after the writing is finished, so that the validity of validity verification is ensured, and the safety of payment operation is further ensured.

In one possible embodiment, the method further comprises:

responding to the payment request, and acquiring a face picture to be recognized of the user to be paid;

and transmitting the face picture to be recognized to the server, wherein the server is used for paying based on the face picture to be recognized.

In one possible embodiment, the transmitting the device identification information and the user identification information to a server includes:

determining a ranking ciphertext based on a transmission order between the device identification information and the user identification information; encrypting the equipment identification information and the user identification information respectively to obtain two encrypted identification information;

and transmitting the sequencing cipher text and the two pieces of identification information to a server, wherein the server is used for carrying out validity verification on the target payment equipment after decrypting the two pieces of identification information according to the sequencing cipher text.

In one possible embodiment, the encrypting the device identification information and the user identification information respectively includes:

judging whether sensitive characters exist in the target identification information or not; the target identification information includes one or both of the device identification information and the user identification information;

responding to the sensitive characters in the target identification information, and then performing fuzzy processing on the sensitive characters to obtain target identification information comprising fuzzy characters;

and encrypting the target identification information comprising the fuzzy character.

Here, fuzzy processing may be performed on the sensitive characters in the identification information to improve the security of subsequent information transmission.

In a third aspect, an embodiment of the present disclosure further provides a registration system, including: a server as described in the first aspect and any of its various embodiments, and a target payment device as described in the second aspect and any of its various embodiments.

In a fourth aspect, an embodiment of the present disclosure further provides a registration apparatus, including:

the system comprises an acquisition module, a processing module and a display module, wherein the acquisition module is used for acquiring preset equipment identification information in target payment equipment and user identification information input by a target registered user corresponding to the target payment equipment;

a verification module for verifying the legitimacy of the target payment device based on the device identification information and the user identification information;

and the generating module is used for generating legality verification passing information under the condition that the target payment equipment is determined to be legal.

In a fifth aspect, an embodiment of the present disclosure further provides a registration apparatus, including:

the programming module is used for programming preset equipment identification information into a system memory of the target payment equipment;

the acquisition module is used for responding to a validity verification request of a target registered user and acquiring the equipment identification information and the user identification information of the target registered user from the system memory;

a transmission module, configured to transmit the device identification information and the user identification information to a server, where the server is configured to perform validity verification on the target payment device based on the device identification information and the user identification information, and generate validity verification pass information when it is determined that the target payment device has validity;

and the determining module is used for determining that the target payment equipment has the legality under the condition that the legality verification passing information is received.

In a sixth aspect, an embodiment of the present disclosure further provides an electronic device, including: a processor, a memory and a bus, the memory storing machine-readable instructions executable by the processor, the processor and the memory communicating via the bus when the electronic device is running, the machine-readable instructions when executed by the processor performing the steps of the registration method according to any one of the first aspect and its various embodiments, the second aspect and its various embodiments.

In a seventh aspect, this disclosed embodiment also provides a computer-readable storage medium, where a computer program is stored on the computer-readable storage medium, and when the computer program is executed by a processor, the computer program performs the steps of the registration method according to any one of the first aspect and the various embodiments thereof, and the second aspect and the various embodiments thereof.

For the description of the effects of the above registration apparatus, system, electronic device, and computer-readable storage medium, reference is made to the description of the above registration method, which is not repeated here.

In order to make the aforementioned objects, features and advantages of the present disclosure more comprehensible, preferred embodiments accompanied with figures are described in detail below.

Drawings

In order to more clearly illustrate the technical solutions of the embodiments of the present disclosure, the drawings required for use in the embodiments will be briefly described below, and the drawings herein incorporated in and forming a part of the specification illustrate embodiments consistent with the present disclosure and, together with the description, serve to explain the technical solutions of the present disclosure. It is appreciated that the following drawings depict only certain embodiments of the disclosure and are therefore not to be considered limiting of its scope, for those skilled in the art will be able to derive additional related drawings therefrom without the benefit of the inventive faculty.

Fig. 1 illustrates a schematic diagram of a registration system provided by an embodiment of the present disclosure;

fig. 2 shows a flowchart of a registration method provided by an embodiment of the present disclosure;

fig. 3 shows a flowchart of another registration method provided by the embodiments of the present disclosure;

fig. 4 shows a flowchart of another registration method provided by the embodiments of the present disclosure;

fig. 5 is a schematic diagram illustrating a registration apparatus provided by an embodiment of the disclosure;

fig. 6 shows a schematic diagram of another registration apparatus provided by the embodiment of the present disclosure;

fig. 7 shows a schematic diagram of another registration apparatus provided by the embodiment of the present disclosure;

fig. 8 shows a schematic diagram of an electronic device provided by an embodiment of the present disclosure.

Detailed Description

In order to make the objects, technical solutions and advantages of the embodiments of the present disclosure more clear, the technical solutions of the embodiments of the present disclosure will be described clearly and completely with reference to the drawings in the embodiments of the present disclosure, and it is obvious that the described embodiments are only a part of the embodiments of the present disclosure, not all of the embodiments. The components of the embodiments of the present disclosure, generally described and illustrated in the figures herein, can be arranged and designed in a wide variety of different configurations. Thus, the following detailed description of the embodiments of the present disclosure, presented in the figures, is not intended to limit the scope of the claimed disclosure, but is merely representative of selected embodiments of the disclosure. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the disclosure without making creative efforts, shall fall within the protection scope of the disclosure.

It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, it need not be further defined and explained in subsequent figures.

The term "and/or" herein merely describes an associative relationship, meaning that three relationships may exist, e.g., a and/or B, may mean: a exists alone, A and B exist simultaneously, and B exists alone. In addition, the term "at least one" herein means any one of a plurality or any combination of at least two of a plurality, for example, including at least one of A, B, C, and may mean including any one or more elements selected from the group consisting of A, B and C.

Research shows that the related technologies mostly adopt a verification mode of registration and login, which requires that an account and a password are granted to related personnel in advance, for example, in a large supermarket, a store owner can be given corresponding verification authority. However, in an actual scenario, it is inevitable that an account number and a password are leaked, which makes it difficult to ensure security of payment. In addition, the account number and the password are bound with people, and cannot be known even if some illegal devices are accessed to the registration system, so that economic loss is brought to a high possibility.

Based on the research, the present disclosure provides a registration method, system, electronic device, and storage medium for implementing payment operation based on a dual validity verification manner of device identification information and user identification information, thereby improving the security of payment.

To facilitate understanding of the present embodiment, first, a registration system configured by a target payment device, a host computer, and a server will be described in detail.

As shown in fig. 1, the registration system provided by the embodiment of the present disclosure mainly includes a target payment device 101, an upper computer 102, and a server 103; in this case, the device identification information is programmed in advance in the target payment device 101, so that, when the registered user inputs the user identification information into the upper computer 102, the upper computer 102 can transmit the two pieces of identification information (i.e., the device identification information and the user identification information) to the server 103, so that the server 103 can perform validity verification on the target payment device 101. After the server 103 passes the legal verification, the payment operation for the target object can be realized through the face acquisition operation of the target payment device 101. The payment amount for the target item can be confirmed by the payment user after being determined by the upper computer 102.

The target payment device 101 and the upper computer 102 may be connected through a Universal Serial Bus (USB), and the upper computer 102 and the server 103 may be connected through a network, that is, the upper computer 102 may be used to implement communication between the target payment device 101 and the server 103.

It should be noted that, in the embodiment of the present disclosure, the registration of the target payment device 101 is to verify the legal usage right of a specific user (i.e. the target registered user) for the payment device, so as to ensure that the related fee deducted from the account of the user to be paid can be transferred to the account bound to the target payment device 101 in the subsequent payment operation. The registered user, the user identification information and the payment device may be pre-bound, the payment account information of the user to be paid and the user may be pre-bound, and the payment account information of the target payment device 101 and the payment device may be pre-bound.

In a specific application, the target payment device 101 may also be a payment device with an input function, that is, the target payment device 101 may be a device integrated with a specific function of the upper computer 102, so that the validity verification and the subsequent payment operation may be implemented through direct communication between the target payment device 101 and the server 103.

For convenience of description, the validity verification may be implemented by using a direct communication manner, and then, the two parties are also used as the executing subjects to further perform the explanation of the payment scheme.

Here, a detailed description is given of a registration method disclosed in the embodiments of the present disclosure, and an execution subject of the registration method provided in the embodiments of the present disclosure may be the server 103, which is generally a computer with certain computing capability. In some possible implementations, the registration method may be implemented by a processor calling computer readable instructions stored in a memory.

Referring to fig. 2, which is a flowchart of a registration method provided in the embodiment of the present disclosure, the method includes steps S201 to S203, where:

s201: acquiring preset equipment identification information in target payment equipment 101 and user identification information of a target registered user corresponding to the target payment equipment;

s202: performing validity verification on the target payment device 101 based on the device identification information and the user identification information;

s203: in a case where it is determined that the target payment device 101 has legitimacy, the legitimacy verification pass information is generated.

In order to further understand the registration method provided by the embodiments of the present disclosure, first, an application scenario of the registration method is briefly described below. The registration method can be mainly applied to various payment scenes, and can be mainly applied to face payment, which mainly considers that in an actual payment scene, corresponding verification strategies can be correspondingly used for realizing payment regardless of modes such as code scanning payment, card swiping payment and the like, in the face payment, the non-perception payment can be realized without carrying corresponding equipment by a user, the payment mode has higher requirements on the legality of the payment equipment, and the payment equipment with the legality is the fundamental premise for carrying out subsequent safe payment.

In the related art, the face-brushing payment can be realized through the verification of the account and the password, if the account and the password are leaked and lost, the amount of money of the face-brushing payment is possibly caused to fall into an illegal account, and in addition, due to the lack of the binding operation on the payment equipment, property loss can be caused under the condition of access of the illegal payment equipment.

Based on this, the registration method provided by the embodiment of the present disclosure provides a payment scheme based on the premise that the device identification information and the user identification information perform double validity verification, so as to improve the security of payment.

The device identification information may be pre-programmed in the target payment device 101 before the validity verification is performed, so that the device identification information programmed in the target payment device 101 can be read when the validity verification is performed.

In a specific application, the device identification information may be written before leaving a factory, and the written device identification information may be a pre-established serial number, and the serial number is globally unique. The serial number is programmed to a secure area of an internal chip (e.g., a hardware register) of the target payment device 101, the programming is only supported once, and the serial number cannot be changed after the programming is completed, otherwise, the serial number is invalid. In addition, only read operations are supported after the programming is completed, thereby ensuring the uniqueness of the serial number.

The user identification information may be identification information of a user name and a password, identification information of a fingerprint, identification information of a human face, and other relevant identification information capable of performing identity verification on the registered user, which is input by the target registered user in the target payment device 101, and is not limited in particular by the embodiment of the present disclosure. In a specific application, the identification information of the user name and the password can be used as the user identification information.

It should be noted that the user identification information may also be input by the target registered user in the upper computer 102, and specific contents of the identification information refer to the above description, which is not described herein again.

The registration method provided by the embodiment of the present disclosure may perform validity verification on the target payment device 101 based on the device identification information and the user identification information, and may generate validity verification pass information when it is determined that the target payment device 101 has validity. The validity verification passing information indicates that the currently registered user has a valid operation authority for the target payment device 101.

In the case where the registered user has legal operation authority, money based on face-brushing payment by the target payment device 101 may be transferred to the common account bound to the target registered user.

The server 103 may return the validity verification passing information to the target payment device, or return the validity verification passing information to the upper computer 102 at the same time, so that the target registered user may clarify the device validity, and may further complete the payment operation by using the target payment device 101.

It should be noted that, in the case that the validity verification fails, it is indicated that the target payment device 101 does not have validity, that is, the current registered user does not have a legal operation right for the target payment device 101, at this time, validity verification failure information may be returned, and the target registered user may initiate a validity verification request again based on the validity verification failure information.

In consideration of the key role of the validity verification process on the registration method provided by the embodiment of the present disclosure, the following detailed description of the process of verifying the validity of the target payment device 101 includes the following steps:

step one, searching payment equipment matched with a target registered user based on the pre-binding relationship between the user identification information of each registered user and each payment equipment;

and step two, determining that the validity verification is passed under the condition that the searched equipment identification information of the payment equipment comprises the equipment identification number of the target payment equipment 101.

The process of performing validity verification on the server 103 may be determined based on a pre-binding relationship between the user identification information of each registered user and each payment device, that is, if the relationship between the registered user and the target payment device 101 can be found in the pre-binding relationship, it may be stated that the target payment device 101 is valid, and the target payment device 101 with validity may perform secure face-brushing payment.

Here a many-to-many binding relationship may be involved between the registered user and the payment device. For example, in a large supermarket, there are 5 registered users with corresponding operation rights, there are 10 payment devices, and these 5 users may have operation rights for two of them, or 2 of the 5 users may have operation rights for one of them, and so on.

In the embodiment of the present disclosure, the binding relationship may be preset, and in a specific application, the binding relationship may be determined by combining different application scenarios, which is not limited herein.

In the embodiment of the present disclosure, validity verification may also be implemented based on a result of determining consistency between a standing geographic location of a user of a label book and a current geographic location of a target payment device, which may specifically be implemented by the following steps:

step one, acquiring a permanent geographic position pre-registered by a target registered user and a current geographic position of target payment equipment;

and secondly, under the condition that the permanent geographic position pre-registered by the target registered user is consistent with the current geographic position of the target payment device, carrying out validity verification on the target payment device based on the device identification information and the user identification information.

Here, if the standing geographic location of the target registered user coincides with the current geographic location of the target payment device 101, the validity of the validity verification performed on the target payment device 101 is described to some extent, for example, for the target payment device 101 set in a convenience store of a community, the target registered user may be a cashier of the convenience store of the community. Further, the target payment device 101 may be legally verified based on two pieces of identification information (i.e., device identification information and user identification information).

Considering the key role of information transmission security for subsequent validity verification, the target payment device 101 may encrypt the two identification information and transmit the encrypted identification information to the server 103, and the server 103 performs corresponding decryption operation and then performs validity verification, which may specifically be implemented by the following steps:

step one, acquiring a sequencing ciphertext and two pieces of encrypted identification information; the encrypted two pieces of identification information are obtained by encrypting the equipment identification information and the user identification information respectively by the target payment equipment, and the sequencing ciphertext is used for indicating the transmission sequence between the two pieces of identification information;

step two, decrypting the two pieces of identification information according to the sequencing ciphertext to obtain a decryption result;

and thirdly, verifying the legality of the target payment equipment based on the decryption result.

Here, considering that two pieces of identification information need to be transmitted, the transmission order of the two pieces of identification information is different, which results in a different subsequent decoding process. In order to further ensure the information transmission security, the target payment device 101 may encrypt not only the two identification information, but also the transmission sequence between the two identification information, so that the server 103 may decrypt the two identification information based on the sorted ciphertext to obtain a decryption result.

In the case where the server 103 receives the sort ciphertext, the transmission order may be decrypted based on the corresponding sort key. For example, the user identification information may be decrypted before and the device identification information after. Furthermore, the decryption may be performed based on decryption keys corresponding to the user identification information and the device identification information, respectively, so as to obtain two decrypted identification information.

In case the decryption is successful, a validity verification may be performed, and in case the decryption fails, the server 103 may initiate an information retransmission request to ensure that the two received identification information are original, untampered information.

After the target payment device 102 is validated by the server 103 in the embodiment of the present disclosure, the payment operation may be implemented by responding to the payment request, which may specifically be implemented by the following steps:

step one, obtaining a payment request; the payment request carries a face picture to be recognized of a payment user and payment information aiming at a target object;

step two, comparing the face picture to be recognized with each pre-stored face picture in a preset face library, and paying based on payment information under the condition that the face comparison is successful;

and step three, generating payment confirmation information under the condition that the payment is successful.

The payment request may be directly initiated by the target payment device 101 or initiated by the upper computer 102. The face picture to be recognized may be acquired by using a camera provided on the target payment device 101. In a specific application, the camera starts an acquisition operation to capture the face of the payment user to obtain a picture of the face to be recognized under the condition that the upper computer 102 sends a payment request for a target object.

It should be noted that, before responding to the payment request, the server 103 needs to determine that the currently connected target payment device 101 is a device that passes the validity verification, and therefore, in the process of transmitting the above-mentioned face picture to be recognized, the device identification information of the target payment device 101 may also be transmitted synchronously. Here, it may be determined that the target payment device 101 has validity based on the device identification information, and the validity verification process may be performed by performing mark determination on the relevant target payment device 101 after previous validity verification is passed, so that the identity of the payment user may be verified based on the face picture to be recognized.

In the embodiment of the disclosure, after the identity authentication of the payment user is completed based on the face picture to be recognized, the payment can be performed based on the payment information. The relevant authentication operation may be implemented based on face library comparison, and when the face comparison is successful, operations such as deduction of money from the account of the payment user may be performed in the server 103.

The face comparison method can be specifically realized through the following steps:

step one, determining a face sub-library corresponding to a face picture to be recognized based on a user type to which a user to be paid belongs;

determining the similarity between the face picture to be recognized and each pre-stored face picture in the face sub-library;

step three, determining that the face comparison is successful under the condition that prestored face pictures with the similarity larger than a preset threshold exist in the face sub-library; or determining that the face comparison fails under the condition that the pre-stored face picture with the similarity larger than the preset threshold does not exist in the face sub-library.

Here, the face sub-library corresponding to the user to be paid may be locked based on the user type, and then the similarity between each pre-stored face picture in the face sub-library and the face picture to be recognized is determined, where the higher the similarity is, the higher the probability in the description ratio is, and conversely, the lower the similarity is, the lower the probability in the description ratio is. Here, the comparison is determined to be successful to complete the identity comparison when the pre-stored face picture with the similarity greater than the preset threshold exists in the face sub-library, and the comparison is determined to be failed to initiate a request for performing comparison again to the server to complete the subsequent payment process when the pre-stored face picture with the similarity greater than the preset threshold does not exist in the face sub-library.

The similarity here corresponds to the picture similarity between the face picture to be recognized and the pre-stored face picture in the face sub-library. In specific application, image feature extraction can be performed on two images (namely a face image to be recognized and a pre-stored face image) respectively, and then the image similarity is determined based on the image feature similarity.

It should be noted that the face sub-library in the embodiment of the present disclosure may be created after clustering face features corresponding to each pre-stored face picture based on a user type.

Wherein the user type may be determined based on different application scenarios. Taking the scene of an unmanned supermarket as an example, the user types can be types of students, parents, old people and the like, and for different student types, the corresponding first face features are different, so that the face features can be put into different face sub-libraries.

In addition, in the process of face feature clustering, clustering can be performed by combining with information such as user preference, and clustering can be realized by adopting clustering methods such as K-means, and the like, which are not described herein repeatedly.

In practical application, if a plurality of prestored face pictures with relatively high similarity are searched from the face sub-library, in order to facilitate subsequent payment operation, user screening can be further performed in combination with a user portrait to determine a final comparative person, which can be specifically realized according to the following steps:

step one, obtaining image description characteristics of a plurality of prestored face pictures;

secondly, respectively constructing user portraits for a plurality of pre-stored face pictures based on the portraits description characteristics;

and step three, comparing the user portrait corresponding to the pre-stored face pictures with the user portrait of the user to be paid, and selecting the pre-stored face picture with the highest user portrait matching degree from the pre-stored face pictures as the successfully-compared face picture.

The portrait description features can describe each user from more feature dimensions, the feature comparison result is more targeted through more full-dimension description, and the comparison accuracy is improved.

In the embodiment of the disclosure, face comparison can be performed by combining living body detection. That is, the living body detection network may be utilized to perform living body detection on the face picture to be recognized, determine whether the face corresponding to the face picture to be recognized is a real human face, and perform face comparison on the face picture to be recognized and each pre-stored face picture in the preset face library under the condition that it is determined that the face corresponding to the face picture to be recognized is a real human face.

The living body detection network can be obtained by training based on each face picture sample and a living body label corresponding to each face picture sample. Under the condition that the face corresponding to the face picture to be recognized is determined to be a real human face, the face comparison is carried out, so that the accuracy of the face comparison can be ensured, and the safety of follow-up face payment can be improved.

In the embodiment of the present disclosure, the payment operation may be implemented according to the following steps:

step one, under the condition that face comparison is successful, judging whether the account balance of a user to be paid meets the payment amount pointed by payment information or not to obtain a judgment result;

step two, determining that the payment is successful under the condition that the judgment result indicates that the account balance of the user to be paid is greater than or equal to the payment amount pointed by the payment information; or, under the condition that the judgment result indicates that the account balance of the user to be paid is smaller than the payment amount pointed by the payment information, determining that the payment is failed or generating payment amount compensation reminding information after the payment is successfully carried out based on the account balance of the user to be paid.

Here, the identity validity of the payment user can be determined by comparing the face picture to be recognized with each pre-stored face picture in the pre-stored face library. Under the condition that the identity of the payment user is determined to be legal, a deduction application can be initiated to the account bound by the payment user, so that under the condition that the account balance of the payment user is determined to be larger than the payment amount pointed by the payment information, the corresponding payment amount can be directly deducted from the account bound by the payment user based on the previous identity legal verification to successfully complete the payment, payment confirmation information can be generated and returned to the target payment device 101 or the upper computer 102 to remind the payee of completing the payment, and subsequent other operations can be carried out.

Here, in the case where it is determined that the account balance of the payment user is less than the payment amount to which the payment information is directed, payment failure information may be generated and returned to the target payment device 101 or the upper computer 102 to remind the payee that the payment user needs to pay again. In addition, all balance in the account bound by the payment user can be directly deducted based on the prior identity authentication, and subsidy payment amount reminding information is generated to remind that part of balance is not paid.

In order to further ensure the security of payment, the registration method provided by the embodiment of the present disclosure may further implement payment based on the result of determining the payment risk, including the following steps:

step one, judging whether the payment amount pointed by the payment information is larger than the highest payment amount or not;

step two, in response to the fact that the payment amount pointed by the payment information is larger than the highest payment amount, obtaining payment environment information and user attribute information of the user to be paid, and judging whether the user to be paid has payment risks or not based on the payment environment information and the user attribute information;

and step three, under the condition that the user to be paid does not have payment risk, paying based on the payment information.

Here, different maximum payment amounts may be set for different user types, for example, the maximum payment amount may be set to 100 yuan for pupils, and the maximum payment amount may be set to 500 yuan for middle school students. In order to ensure the payment security of the user to be paid, whether the user to be paid has a payment risk may be determined based on the payment environment information and the user attribute information, so that in the case that it is determined that the payment amount pointed by the payment information is greater than the highest payment amount, the payment information indicates that the user to be paid has a payment requirement that does not meet the consumption capability of the user.

The payment environment information may refer to a network environment of payment, for example, a certain payment risk exists in a common network when payment is compared with mobile network payment, may refer to a communication environment between a payment server and the server, and may refer to other environment information related to payment, which is not limited specifically herein.

In addition, the user attribute information may refer to information such as gender and age of the user, and in a case that the user is younger, it may be determined that there is a certain payment risk, which may adopt a standby payment policy, for example, a payment confirmation link may be pushed to a bound guardian, so that in a case that the guardian confirms, a payment operation is performed.

Here, another registration method disclosed in the embodiments of the present disclosure is described in detail, and an execution subject of the registration method provided in the embodiments of the present disclosure may be the target payment device 101, which is generally a terminal device with certain computing capability, where the terminal device may be a User Equipment (UE), a mobile device, a User terminal, a cellular phone, a cordless phone, a Personal Digital Assistant (PDA), a handheld device, a computing device, a vehicle-mounted device, a wearable device, or the like. In some possible implementations, the registration method may be implemented by a processor calling computer readable instructions stored in a memory.

Referring to fig. 3, which is a flowchart of a registration method provided in the embodiment of the present disclosure, the method includes steps S301 to S304, where:

s301: programming preset equipment identification information in a system memory of the target payment equipment;

s302: responding to a validity verification request of a target registered user, and acquiring equipment identification information and user identification information of the target registered user from a system memory;

s303: transmitting the device identification information and the user identification information to a server, wherein the server is used for carrying out validity verification on the target payment device based on the device identification information and the user identification information, and generating validity verification passing information under the condition that the target payment device is determined to have validity;

s304: and in the case of receiving the validity verification passing information, determining that the target payment device is valid.

Here, the device identification information may be written in the system memory in advance, so that after responding to the validity verification request of the registered user, the written device identification information and the user identification information of the target registered user are transmitted to the server 103, so that the server 103 performs validity verification on the target payment device 101 based on the device identification information and the user identification information.

For the process of performing validity verification by using the server 103, reference may be made to the above description, and details are not described here.

After the validity verification is passed, the payment operation may be performed based on the target payment device 101, which may specifically be implemented by the following steps:

step one, responding to a payment request, and acquiring a face picture to be recognized of a user to be paid;

and step two, transmitting the face picture to be recognized to a server, wherein the server is used for paying based on the face picture to be recognized.

Here, for the process of performing identity verification and then performing a deduction operation of binding an account by using the face picture to be recognized acquired by the target payment device 101, reference may be made to the above description, and details are not repeated here.

In the embodiment of the present disclosure, in order to ensure the security of information transmission, encryption may be performed first on the target payment device 101 before transmission, which may specifically be implemented by the following steps:

step one, determining a sequencing ciphertext based on a transmission sequence between equipment identification information and user identification information; respectively encrypting the equipment identification information and the user identification information to obtain two encrypted identification information;

and step two, transmitting the sequencing ciphertext and the two pieces of identification information to a server, wherein the server is used for decrypting the two pieces of identification information according to the sequencing ciphertext and then verifying the legality of the target payment equipment.

The target payment device 101 herein may encrypt not only the two identification information, but also the transmission sequence between the two identification information, so that, when the server 103 receives the sort cipher text, the transmission sequence may be decrypted based on the corresponding sort key, and further, the transmission sequence may be decrypted based on the decryption keys corresponding to the user identification information and the device identification information, where the specific decryption process is described in the above, and is not described herein again.

In consideration of certain privacy of the identification information, the registration method provided by the embodiment of the disclosure can perform fuzzy processing on the identification information to reduce the risk of information leakage under the condition that information identification is ensured, and specifically includes the following steps:

judging whether sensitive characters exist in target identification information or not; the target identification information includes one or both of device identification information and user identification information;

step two, responding to the sensitive characters in the target identification information, performing fuzzy processing on the sensitive characters to obtain target identification information comprising the fuzzy characters;

and step three, encrypting the target identification information comprising the fuzzy characters.

The sensitive characters here may be set based on different identification information. For example, for the user identification information of the mobile phone number, the middle four digits can be used as sensitive characters, and the processed mobile phone number can be obtained by performing fuzzy processing on the sensitive characters. Therefore, even if the information is intercepted illegally, the information cannot be utilized illegally, and the information safety is improved.

Briefly introduced here is another registration method disclosed in the embodiments of the present disclosure, and an execution subject of the registration method provided in the embodiments of the present disclosure may be the upper computer 102, which is generally a terminal device with certain computing capability and input function. Referring to fig. 4, which is a flowchart of a registration method provided in the embodiment of the present disclosure, the method includes steps S401 to S403, where:

s401: acquiring preset equipment identification information in the target payment equipment 101 and user identification information input by a registered user;

s402: transmitting the device identification information and the user identification information to the server 103 for validity verification;

s403: and responding the payment request of the user to be paid after the validity verification is passed.

The registration method provided by the embodiment of the present disclosure may perform a payment operation based on the target payment device 101 after the device identification information and the user identification information are transmitted to the server 103 for validity verification.

For the process of validity verification by the server 103, reference is made to the above description, and details are not repeated here. Here, the relationship may be determined based on the pre-binding relationship between the user identification information of each registered user and each payment device, that is, if the relationship between the registered user and the target payment device 101 can be found in the pre-binding relationship, it may be stated that the target payment device 101 has validity, and the target payment device 101 having the validity may perform secure face-brushing payment.

The embodiment of the disclosure is face brushing payment realized based on recognition operation of a face picture to be paid of a payment user. In the process of face-brushing payment, it is still necessary to ensure that the accessed target payment device 101 is a payment device with legitimacy, and face payment can be realized according to the following steps:

step one, responding to a payment request, and acquiring a face picture to be recognized of a payment user acquired by a target payment device 101;

step two, sending the face picture to be recognized and the equipment identification information to the server 103, so that the server 103 responds to the payment request after completing identity authentication on the payment user based on the face picture to be recognized under the condition that the target payment equipment 101 is determined to be legal based on the equipment identification information;

and step three, confirming that the face payment is successful under the condition of receiving payment confirmation information returned by the server 103.

Here, in the case of responding to the payment request, the to-be-recognized face picture of the payment-related user collected by the target payment device 101 may be obtained, and then the to-be-recognized face picture and the device identification information may be sent to the server 103, so that, in the case of receiving the payment confirmation information returned by the server 103, the success of the face payment may be confirmed.

For the authentication of the face of the server 103 and the payment request response process, reference may be made to the relevant description of the above embodiments, which is not described herein again.

The registration method provided by the embodiment of the disclosure can also realize the secure transmission of information through channel encryption. On the one hand, the target payment device 101 and the upper computer 102 may perform information transmission based on a first encryption transmission channel, and on the other hand, the upper computer 102 and the server 103 may perform information transmission based on a second encryption transmission channel.

Here, it may be the case that the preset device identification information transmitted by the target payment device 101 through the first encrypted transmission channel is acquired in response to the validity verification request of the registered user.

In a specific application, the embodiment of the present disclosure reads the written serial number in the target payment device 101 in a trusted execution environment, and transmits the serial number to the upper computer 102 through an encrypted transmission path (i.e., a first encrypted transmission channel), so as to ensure the validity of subsequent validity verification.

In addition, the device identification information and the user identification information are transmitted to the server 103 through the second encrypted transmission channel. The information transmission can be realized by the following steps:

encrypting the equipment identification information and the user identification information through a second encryption transmission channel to obtain encrypted information;

and step two, transmitting the encrypted information to the server 103 so that the server 103 performs validity verification on the target payment device 101 after decrypting the encrypted information.

In a specific application, the upper computer 102 may encrypt the unique serial number and the user identification information through an encrypted channel (i.e., a second encryption transmission channel), and transmit the encrypted information obtained by encryption to the background server 103 for validity verification, thereby further ensuring validity of validity verification.

The process of encrypting through the second encryption transmission channel may also be an encryption combination mode combining the transmission sequence and the two identification information, and is not described herein again.

It should be noted that the decryption operation of the server 103 and the encryption operation of the upper computer 102 are implemented in pairs, and the server 103 successfully decrypts according to the agreed decryption policy, which indicates that the second encryption transmission channel is secure, and the transmitted information is not tampered, otherwise, indicates that the transmitted information has an insecurity problem, and needs to perform security evaluation on the whole payment environment.

It will be understood by those skilled in the art that in the method of the present invention, the order of writing the steps does not imply a strict order of execution and any limitations on the implementation, and the specific order of execution of the steps should be determined by their function and possible inherent logic.

Based on the same inventive concept, a registration apparatus corresponding to the registration method is also provided in the embodiments of the present disclosure, and since the principle of the apparatus in the embodiments of the present disclosure for solving the problem is similar to the above registration method in the embodiments of the present disclosure, the implementation of the apparatus may refer to the implementation of the method, and repeated details are not repeated.

Referring to fig. 5, a schematic diagram of a registration apparatus provided in an embodiment of the present disclosure is shown, where the apparatus includes: an acquisition module 501, a verification module 502 and a generation module 503; wherein the content of the first and second substances,

an obtaining module 501, configured to obtain device identification information preset in a target payment device and user identification information input by a target registered user corresponding to the target payment device;

a verification module 502 for performing validity verification on the target payment device based on the device identification information and the user identification information;

a generating module 503, configured to generate validity verification passing information if it is determined that the target payment device has validity.

By adopting the registration device, under the condition that the device identification information preset in the target payment device 101 and the user identification information input by the registered user are acquired, the server 103 can perform validity verification on the target payment device 101 based on the acquired information, the validity verification is passed, and it is indicated that the target payment device 101 can be a payment device bound with the registered user, so that the payment security can be ensured under the condition that the payment operation is performed based on the target payment device 101, and if the validity verification is not passed, it is indicated that at least one of the device identification information and the user identification information has a problem, and the payment operation cannot be continued, so that the payment security is ensured. Compared with the existing account and password mode, the target payment device 101 is subjected to information binding by combining the device identification information of the target payment device 101, so that the payment safety is obviously improved.

In one possible implementation, the verification module 502 is configured to perform validity verification on the target payment device based on the device identification information and the user identification information according to the following steps:

searching for payment equipment matched with a target registered user based on the pre-binding relationship between the user identification information of each registered user and each payment equipment;

and determining that the validity verification is passed under the condition that the searched equipment identification information of the payment equipment comprises the equipment identification number of the target payment equipment.

In one possible implementation, the verification module 502 is configured to perform validity verification on the target payment device based on the device identification information and the user identification information according to the following steps:

acquiring a permanent geographical position pre-registered by a target registered user and a current geographical position of target payment equipment;

and under the condition that the permanent geographic position registered in advance by the target registered user is consistent with the current geographic position of the target payment device, carrying out validity verification on the target payment device based on the device identification information and the user identification information.

In a possible embodiment, the above apparatus further comprises:

a payment module 504 for obtaining a payment request; the payment request carries a to-be-recognized face picture of a to-be-paid user and payment information aiming at a target object; comparing the face picture to be recognized with each pre-stored face picture in a preset face library, and paying based on payment information under the condition that the face comparison is successful; in case the payment is successful, payment confirmation information is generated.

In a possible implementation manner, the payment module 504 is configured to perform face comparison on the face picture to be recognized and each pre-stored face picture in a pre-stored face library according to the following steps:

determining a face sub-library corresponding to a face picture to be recognized based on the user type of the user to be paid;

determining the similarity between the face picture to be recognized and each pre-stored face picture in the face sub-library;

determining that the face comparison is successful under the condition that a prestored face picture with the similarity larger than a preset threshold exists in the face sub-library; or determining that the face comparison fails under the condition that the pre-stored face picture with the similarity larger than the preset threshold does not exist in the face sub-library.

In a possible implementation manner, when a plurality of pre-stored face pictures with similarity degrees larger than a preset threshold exist in the face sub-library; a payment module 504, further configured to:

acquiring image description characteristics of a plurality of prestored face images;

respectively constructing user figures for a plurality of pre-stored face pictures based on the figure description characteristics;

and comparing the user portrait corresponding to each of the pre-stored face pictures with the user portrait of the user to be paid, and selecting the pre-stored face picture with the highest user portrait matching degree from the pre-stored face pictures as the successfully compared face picture.

In one possible implementation, the payment module 504 is configured to make a payment based on the payment information according to the following steps:

performing living body detection on the face picture to be recognized by using a living body detection network, and judging whether the face corresponding to the face picture to be recognized is a real human face;

under the condition that the face corresponding to the face picture to be recognized is determined to be a real human face, carrying out face comparison on the face picture to be recognized and each pre-stored face picture in a pre-stored face library;

under the condition that the face comparison is successful, judging whether the account balance of the user to be paid meets the payment amount pointed by the payment information or not to obtain a judgment result;

determining that the payment is successful under the condition that the judgment result indicates that the account balance of the user to be paid is greater than or equal to the payment amount pointed by the payment information; alternatively, the first and second electrodes may be,

and under the condition that the judgment result indicates that the account balance of the user to be paid is smaller than the payment amount pointed by the payment information, determining that the payment is failed or generating payment amount compensation reminding information after the payment is successfully carried out based on the account balance of the user to be paid.

In one possible implementation, the payment module 504 is configured to make a payment based on the payment information according to the following steps:

judging whether the payment amount pointed by the payment information is larger than the highest payment amount or not;

in response to the fact that the payment amount pointed by the payment information is larger than the highest payment amount, obtaining payment environment information and user attribute information of the user to be paid, and judging whether the user to be paid has payment risks or not based on the payment environment information and the user attribute information;

and under the condition that the user to be paid has no payment risk, performing payment based on the payment information.

In a possible implementation manner, the obtaining module 501 is configured to obtain device identification information preset in a target payment device and user identification information of a target registered user corresponding to the target payment device according to the following steps:

acquiring a sequencing ciphertext and two pieces of encrypted identification information; the encrypted two pieces of identification information are obtained by encrypting the equipment identification information and the user identification information respectively by the target payment equipment, and the sequencing ciphertext is used for indicating the transmission sequence between the two pieces of identification information;

performing validity verification on the target payment device based on the device identification information and the user identification information, comprising:

decrypting the two pieces of identification information according to the sequencing ciphertext to obtain a decryption result;

and carrying out validity verification on the target payment device based on the decryption result.

Referring to fig. 6, a schematic diagram of another registration apparatus provided in an embodiment of the present disclosure is shown, where the apparatus includes: a programming module 601, an obtaining module 602, a transmission module 603 and a determining module 604; wherein the content of the first and second substances,

the programming module 601 is configured to program preset device identification information in a system memory of the target payment device;

an obtaining module 602, configured to respond to a validity verification request of a target registered user, and obtain device identification information and user identification information of the target registered user from a system memory;

a transmission module 603, configured to transmit the device identification information and the user identification information to a server, where the server is configured to perform validity verification on the target payment device based on the device identification information and the user identification information, and generate validity verification passing information when it is determined that the target payment device has validity;

a determining module 604, configured to determine that the target payment device is legitimate if the validity verification passing information is received.

The device identification information can be written in advance, and cannot be changed after the writing is finished, so that the validity of validity verification is ensured, and the safety of payment operation is further ensured.

In a possible embodiment, the above apparatus further comprises:

the payment module 605 is configured to respond to the payment request and obtain a to-be-recognized face picture of the to-be-paid user; and transmitting the face picture to be recognized to a server, wherein the server is used for paying based on the face picture to be recognized.

In one possible implementation, the transmitting module 603 is configured to transmit the device identification information and the user identification information to the server according to the following steps:

determining a ranking ciphertext based on a transmission order between the device identification information and the user identification information; respectively encrypting the equipment identification information and the user identification information to obtain two encrypted identification information;

and transmitting the sequencing ciphertext and the two pieces of identification information to a server, wherein the server is used for carrying out validity verification on the target payment equipment after decrypting the two pieces of identification information according to the sequencing ciphertext.

In one possible implementation, the transmission module 603 is configured to encrypt the device identification information and the user identification information according to the following steps, respectively, including:

judging whether sensitive characters exist in the target identification information or not; the target identification information includes one or both of device identification information and user identification information;

responding to the sensitive characters in the target identification information, and then performing fuzzy processing on the sensitive characters to obtain target identification information comprising the fuzzy characters;

the object identification information including the ambiguous characters is encrypted.

Referring to fig. 7, a schematic diagram of another registration apparatus provided in an embodiment of the present disclosure is shown, where the apparatus includes: an acquisition module 701, a transmission module 702 and a payment module 702; wherein the content of the first and second substances,

an obtaining module 701, configured to obtain device identification information preset in the target payment device 101 and user identification information input by a registered user;

a transmission module 702, configured to transmit the device identification information and the user identification information to the server 103 for validity verification;

and the payment module 702 is configured to respond to the payment request of the user to be paid after the validity verification passes.

The description of the processing flow of each module in the device and the interaction flow between the modules may refer to the related description in the above method embodiments, and will not be described in detail here.

An embodiment of the present disclosure further provides an electronic device, as shown in fig. 8, which is a schematic structural diagram of the electronic device provided in the embodiment of the present disclosure, and the electronic device includes: a processor 801, a memory 802, and a bus 803. The memory 802 stores machine-readable instructions executable by the processor 801 (for example, corresponding to the acquiring module 501, the verifying module 502, and the generating module 503 in the apparatus in fig. 5; further, corresponding to the programming module 601, the acquiring module 602, the transmitting module 603, and the determining module 604 in the apparatus in fig. 6; and corresponding to the acquiring module 701, the transmitting module 702, and the payment module 703 in the apparatus in fig. 7, for example), when the electronic device runs, the processor 801 communicates with the memory 802 through the bus 803, and when the machine-readable instructions are executed by the processor 801, the registration method shown in fig. 2, 3, or 4 is executed.

The embodiments of the present disclosure also provide a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, performs the steps of the registration method described in the above method embodiments. The storage medium may be a volatile or non-volatile computer-readable storage medium.

The embodiments of the present disclosure also provide a computer program product, where the computer program product carries a program code, and instructions included in the program code may be used to execute the steps of the registration method in the foregoing method embodiments, which may be referred to specifically for the foregoing method embodiments, and are not described herein again.

The computer program product may be implemented by hardware, software or a combination thereof. In an alternative embodiment, the computer program product is embodied in a computer storage medium, and in another alternative embodiment, the computer program product is embodied in a Software product, such as a Software Development Kit (SDK), or the like.

It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the system and the apparatus described above may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again. In the several embodiments provided in the present disclosure, it should be understood that the disclosed system, apparatus, and method may be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units is only one logical division, and there may be other divisions when actually implemented, and for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection of devices or units through some communication interfaces, and may be in an electrical, mechanical or other form.

The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.

In addition, functional units in the embodiments of the present disclosure may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit.

The functions, if implemented in the form of software functional units and sold or used as a stand-alone product, may be stored in a non-volatile computer-readable storage medium executable by a processor. Based on such understanding, the technical solution of the present disclosure may be embodied in the form of a software product, which is stored in a storage medium and includes several instructions for causing an electronic device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present disclosure. And the aforementioned storage medium includes: various media capable of storing program codes, such as a usb disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk, or an optical disk.

Finally, it should be noted that: the above-mentioned embodiments are merely specific embodiments of the present disclosure, which are used for illustrating the technical solutions of the present disclosure and not for limiting the same, and the scope of the present disclosure is not limited thereto, and although the present disclosure is described in detail with reference to the foregoing embodiments, those skilled in the art should understand that: any person skilled in the art can modify or easily conceive of the technical solutions described in the foregoing embodiments or equivalent technical features thereof within the technical scope of the present disclosure; such modifications, changes or substitutions do not depart from the spirit and scope of the embodiments of the present disclosure, and should be construed as being included therein. Therefore, the protection scope of the present disclosure shall be subject to the protection scope of the claims.