A method, device, equipment and medium for judging illegal migration of a payment host

Abstract

The application discloses a judgment method, device and equipment for illegal machine migration of an acquirer, and a medium, and relates to the field of computers.The method comprises the following steps: signing position request data to obtain a first signature, creating a position request message based on the first signature and a current machine tool identifier and sending the position request message to a target machine tool, so that the target machine tool verifies the first signature based on the current machine tool identifier, generates response data when the verification is passed, and signs the response data to obtain a second signature; obtaining a response message returned by the target machine tool based on a target machine tool identifier and the second signature; verifying the second signature based on the target machine tool identifier, and sending a data upload request message created based on current machine tool position information and a device identifier, the first signature, the target machine tool identifier and the second signature to a remote cloud service to determine whether the target machine tool has been illegally migrated after the positioning module of the current machine tool is cracked.

Description

Technical Field

[0001] This invention relates to the field of computers, and in particular to a method, apparatus, equipment, and medium for determining the illegal relocation of a payment acquiring machine. Background Technology

[0002] To regulate the use of acquiring devices (such as POS machines), payment service companies will restrict the use of certain acquiring devices by merchants to a limited scope when signing contracts. Furthermore, payment service companies need to use certain methods to determine whether merchants are using acquiring devices beyond the permitted scope.

[0003] Most smart payment terminals are currently equipped with location modules. Payment service companies collect this location data to determine whether these terminals are being used legally and to investigate instances of merchants illegally relocating their terminals. However, if the location module is compromised, payment service companies will be unable to ascertain the true location of the payment terminal.

[0004] Therefore, how to obtain the real location of a acquiring device even after its positioning module has been hacked, thereby preventing the acquiring device from being illegally moved, is an urgent problem to be solved in this field. Summary of the Invention

[0005] In view of this, the purpose of this invention is to provide a method, device, equipment, and medium for determining the illegal relocation of a payment acquiring machine, which can still obtain its true location even after the positioning module of the payment acquiring machine has been hacked, thereby preventing the payment acquiring machine from being illegally relocated. The specific solution is as follows:

[0006] In a first aspect, this application discloses a method for determining the illegal relocation of an acquiring device, applied to the current acquiring device, wherein the current acquiring device is a device in a preset peer-to-peer network, and the method includes:

[0007] Sign the location request data to obtain a first signature result, and create a location request message based on the first signature result and the device identifier of the current acquiring device;

[0008] The location request message is sent to the target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device. If the verification is successful, response data is generated and the response data is signed to obtain a second signature result. The target acquiring device is a device in the preset peer-to-peer network connected to the current acquiring device. The response data includes data including the location information of the target acquiring device.

[0009] Obtain the response message returned by the target acquiring device in response to the location request message based on the device identifier of the target acquiring device and the second signature result;

[0010] The second signature result is verified based on the device identifier of the target acquiring device. If the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0011] Optionally, signing the location request data to obtain a first signature result includes:

[0012] The location request data is signed using the first private key to obtain the first signature result.

[0013] Optionally, sending the location request message to the target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device, and when the verification is successful, generates response data and signs the response data to obtain a second signature result, includes:

[0014] The location request message is sent to the target acquiring device, so that the target acquiring device can query the first public key corresponding to the current acquiring device from the remote cloud service based on the device identifier of the current acquiring device, and use the first public key to verify the first signature result. When the verification is successful, response data is generated, and the response data is signed using the second private key to obtain the second signature result.

[0015] Optionally, the verification of the second signature result based on the device identifier of the target acquiring device includes:

[0016] Based on the device identifier of the target acquiring device, the second public key corresponding to the target acquiring device is queried from the remote cloud service, and the second public key is used to verify the second signature result.

[0017] Optionally, before signing the location request data to obtain the first signature result, the method further includes:

[0018] The communication module in the acquiring device is used to connect several acquiring devices to each other to form the preset peer-to-peer network.

[0019] Optionally, before sending the data upload request message created based on the current acquiring device's location information and device identifier, the first signature result, the target acquiring device's device identifier, and the second signature result to the remote cloud service, the method further includes:

[0020] Based on the positioning module in the current acquiring device, the location information of the current acquiring device is determined.

[0021] Secondly, this application discloses a method for determining the illegal relocation of a acquiring device, applied to a target acquiring device, wherein the target acquiring device is a device connected to the current acquiring device in a preset peer-to-peer network, and the current acquiring device is a device in the preset peer-to-peer network, the method comprising:

[0022] Obtain the location request message created by the current acquiring device based on the first signature result and the device identifier of the current acquiring device; the first signature result is the result obtained by the current acquiring device signing the location request data;

[0023] The first signature result is verified based on the device identifier of the current acquiring device. If the verification is successful, response data is generated and the response data is signed to obtain a second signature result. The response data includes the location information of the target acquiring device.

[0024] A response message for the location request message, created based on the device identifier of the target acquiring device and the second signature result, is sent to the current acquiring device. This allows the current acquiring device to verify the second signature result based on the device identifier of the target acquiring device. If the verification is successful, a data upload request message, created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result, is sent to the remote cloud service. This allows the remote cloud service to determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0025] Thirdly, this application discloses a device for determining the illegal relocation of a acquiring terminal, characterized in that it is applied to the current acquiring terminal, which is a terminal in a preset peer-to-peer network, and the device includes:

[0026] The location request message creation module is used to sign the location request data to obtain a first signature result, and to create a location request message based on the first signature result and the device identifier of the current acquiring device.

[0027] A location request message sending module is used to send the location request message to a target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device. If the verification is successful, response data is generated, and the response data is signed to obtain a second signature result. The target acquiring device is a device in the preset peer-to-peer network connected to the current acquiring device. The response data includes data including the location information of the target acquiring device.

[0028] The response message acquisition module is used to acquire the response message returned by the target acquiring device in response to the location request message based on the device identifier of the target acquiring device and the second signature result;

[0029] The data upload request message sending module is used to verify the second signature result based on the device identifier of the target acquiring device. When the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0030] Fourthly, this application discloses an electronic device, comprising:

[0031] Memory, used to store computer programs;

[0032] A processor is used to execute the computer program to implement the aforementioned method for determining the illegal relocation of acquiring equipment.

[0033] Fifthly, this application discloses a computer-readable storage medium for storing a computer program; wherein, when the computer program is executed by a processor, it implements the aforementioned method for determining the illegal relocation of a acquiring device.

[0034] As can be seen, this application proposes a method for determining the illegal relocation of a acquiring device, comprising: signing location request data to obtain a first signature result, and creating a location request message based on the first signature result and the device identifier of the current acquiring device; sending the location request message to a target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device; if the verification is successful, generating response data and signing the response data to obtain a second signature result; the target acquiring device is a device connected to the current acquiring device in the preset peer-to-peer network; the response data is... The data includes the location information of the target acquiring device; obtaining the response message returned by the target acquiring device based on its device identifier and the second signature result in response to the location request message; verifying the second signature result based on the device identifier of the target acquiring device; if the verification is successful, sending a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result to the remote cloud service, so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message. Therefore, both the current acquiring device and the target acquiring device in this application are acquiring devices in a peer-to-peer network, and the target acquiring device is the device connected to the current acquiring device. In this way, the target acquiring device and the current acquiring device can provide and verify location information to each other. Furthermore, the current acquiring device polls each target acquiring device that has established a connection with it and requests the target device to return its device information. Then, the device sends its own location information and the target acquiring device's location information to the payment service company's remote cloud service. The remote cloud service then analyzes the multiple sets of reported location information associated with the acquiring device and determines whether the acquiring device has been illegally moved. In other words, this application can obtain the true location of the acquiring device even if its positioning module is compromised, thereby preventing its illegal relocation. Attached Figure Description

[0035] To more clearly illustrate the technical solutions in the embodiments of the present invention or the prior art, the drawings used in the description of the embodiments or the prior art will be briefly introduced below. Obviously, the drawings described below are only embodiments of the present invention. For those skilled in the art, other drawings can be obtained based on the provided drawings without creative effort.

[0036] Figure 1 This application discloses a flowchart of a method for determining the illegal relocation of a acquiring device;

[0037] Figure 2This is a schematic diagram of a peer-to-peer network disclosed in this application;

[0038] Figure 3 This application discloses a flowchart of a method for determining the illegal relocation of a acquiring device;

[0039] Figure 4 This is a schematic diagram of the structure of a device for determining the illegal relocation of a acquiring machine, as disclosed in this application.

[0040] Figure 5 This is a structural diagram of an electronic device disclosed in this application. Detailed Implementation

[0041] The technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are only some embodiments of the present invention, and not all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative effort are within the scope of protection of the present invention.

[0042] Most smart payment terminals are currently equipped with location modules. Payment service companies collect this location data to determine whether these terminals are being used legally and to investigate instances of merchants illegally relocating their terminals. However, if the location module is compromised, payment service companies will be unable to ascertain the true location of the payment terminal.

[0043] Therefore, this application proposes a scheme for judging the illegal relocation of acquiring machines. Even after the positioning module of the acquiring machine is cracked, its true location can still be obtained, thereby preventing the acquiring machine from being illegally relocated.

[0044] This application discloses a method for determining the illegal relocation of an acquiring device, applied to the current acquiring device, which is a device in a preset peer-to-peer network. (See also...) Figure 1 As shown, the method includes:

[0045] Step S11: Sign the location request data to obtain a first signature result, and create a location request message based on the first signature result and the device identifier of the current acquiring device.

[0046] In this embodiment, the acquiring device is equipped with a communication module. This embodiment uses the communication module in the acquiring device to connect several acquiring devices to each other to construct the preset peer-to-peer (P2P) network. A schematic diagram of the preset peer-to-peer network is shown below. Figure 2 As shown, Figure 2 Machine 1, Machine 2, Machine 3, Machine 4, Machine 5, Machine 6, Machine 7 and Machine 8 are interconnected.

[0047] In this embodiment, the location request data is signed using a first private key to obtain a first signature result, and a location request message is created based on the first signature result and the device identifier of the current acquiring device.

[0048] Step S12: Send the location request message to the target acquiring device so that the target acquiring device can verify the first signature result based on the device identifier of the current acquiring device. If the verification is successful, generate response data and sign the response data to obtain a second signature result. The target acquiring device is a device in the preset peer-to-peer network that is connected to the current acquiring device. The response data includes data including the location information of the target acquiring device.

[0049] Specifically, the location request message is sent to the target acquiring device, so that the target acquiring device can query the first public key corresponding to the current acquiring device from the remote cloud service based on the device identifier of the current acquiring device, and use the first public key to verify the first signature result. When the verification is successful, response data is generated, and the response data is signed using the second private key to obtain the second signature result.

[0050] Step S13: Obtain the response message returned by the target acquiring device based on the device identifier of the target acquiring device and the second signature result in response to the location request message.

[0051] In this embodiment, the current acquiring device obtains the response message returned by the target acquiring device based on the device identifier of the target acquiring device and the second signature result in response to the location request message.

[0052] Step S14: Verify the second signature result based on the device identifier of the target acquiring device. If the verification is successful, send a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result to the remote cloud service so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0053] In this embodiment, the acquiring device is equipped with a positioning module, so that the location information of the current acquiring device can be determined based on the positioning module in the current acquiring device.

[0054] In this embodiment, verifying the second signature result based on the device identifier of the target acquiring device includes: querying the second public key corresponding to the target acquiring device from the remote cloud service based on the device identifier of the target acquiring device, and verifying the second signature result using the second public key. If the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service, so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0055] As can be seen, this application proposes a method for determining the illegal relocation of a acquiring device, comprising: signing location request data to obtain a first signature result, and creating a location request message based on the first signature result and the device identifier of the current acquiring device; sending the location request message to a target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device; if the verification is successful, generating response data and signing the response data to obtain a second signature result; the target acquiring device is a device connected to the current acquiring device in the preset peer-to-peer network; the response data is... The data includes the location information of the target acquiring device; obtaining the response message returned by the target acquiring device based on its device identifier and the second signature result in response to the location request message; verifying the second signature result based on the device identifier of the target acquiring device; if the verification is successful, sending a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result to the remote cloud service, so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message. Therefore, both the current acquiring device and the target acquiring device in this application are acquiring devices in a peer-to-peer network, and the target acquiring device is the device connected to the current acquiring device. In this way, the target acquiring device and the current acquiring device can provide and verify location information to each other. Furthermore, the current acquiring device polls each target acquiring device that has established a connection with it and requests the target device to return its device information. Then, the device sends its own location information and the target acquiring device's location information to the payment service company's remote cloud service. The remote cloud service then analyzes the multiple sets of reported location information associated with the acquiring device and determines whether the acquiring device has been illegally moved. In other words, this application can obtain the true location of the acquiring device even if its positioning module is compromised, thereby preventing its illegal relocation.

[0056] This application discloses a method for determining the illegal relocation of an acquiring device, applied to a target acquiring device. The target acquiring device is a device connected to the current acquiring device within a preset peer-to-peer network. The current acquiring device is a device within the preset peer-to-peer network. (See also...) Figure 3 As shown, the method includes:

[0057] Step S21: Obtain the location request message created by the current acquiring device based on the first signature result and the device identifier of the current acquiring device; the first signature result is the result obtained by the current acquiring device signing the location request data.

[0058] Step S22: Verify the first signature result based on the device identifier of the current acquiring device. If the verification is successful, generate response data and sign the response data to obtain a second signature result. The response data includes data including the location information of the target acquiring device.

[0059] Step S23: Send a response message for the location request message created based on the device identifier of the target acquiring device and the second signature result to the current acquiring device, so that the current acquiring device can verify the second signature result based on the device identifier of the target acquiring device, and when the verification is successful, send a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result to the remote cloud service, so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0060] As can be seen, in this embodiment, after receiving the location request message sent by the current acquiring device, the first signature result is verified based on the device identifier of the current acquiring device. When the verification is successful, response data is generated, and then the response data is signed to obtain a second signature result. Further, a response message for the location request message created based on the device identifier of the target acquiring device and the second signature result is sent to the current acquiring device, so that the current acquiring device can verify the second signature result based on the device identifier of the target acquiring device. When the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service, so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message. Therefore, both the current acquiring device and the target acquiring device in this application are acquiring devices in a peer-to-peer network, and the target acquiring device is the device connected to the current acquiring device. In this way, the target acquiring device and the current acquiring device can provide and verify each other's location information. Furthermore, the current acquiring device polls each target acquiring device that has established a connection with it and requests the target device to return its device information. Then, it sends its own location information and the target acquiring device's location information to the payment service company's remote cloud service. This allows the remote cloud service to analyze the multiple sets of reported location information associated with the current acquiring device and, after calculation and analysis, determine whether the current acquiring device has been illegally moved. That is, even if the current acquiring device's location module is cracked, this application can obtain its true location, thereby preventing its illegal relocation.

[0061] Taking a peer-to-peer network formed by device 1, device 2, and device 3 as an example, device 1 is the current device, and device 2 and device 3 are the target devices connected to device 1. Device 1 requests device 2 and device 3 to return its location information, as shown in Table 1: Device 1 sends a location information request message to device 2. The location information request message includes: device 1's device identifier, request initiation timestamp, GetDeviceInfo (request information), and device 1's signature on the location request data. It should be noted that device 1 uses the first private key to sign the location request data here. After receiving a location information request message, Device 2 obtains a first public key from the remote cloud service using the device identifier of Device 1, and verifies the signature of Device 1 on the request data using the first public key. If the verification is successful, response data is generated, and the response data is signed using a second private key. The response data includes the location information of Device 2. Then, a response message is returned to Device 1, which includes: the device identifier of Device 2, the timestamp of the response returned by Device 2, and the signature of Device 2 on the response data. The communication process between Device 1 and Device 3 is the same as that between Device 1 and Device 2. After receiving the responses from Device 2 and Device 3, Device 1 verifies the signature using the same method. If the verification is successful, it continues; otherwise, it discards the data.

[0062] Table 1

[0063]

[0064]

[0065] Once the signature verification is successful, the following data will be sent to the remote cloud service as shown in Table 2. The remote cloud service will verify multiple signatures in the reported data and then calculate and analyze the current location information of the device to determine whether the device has been illegally moved.

[0066] Table 2

[0067]

[0068]

[0069] In this way, even if the positioning module of the current acquiring machine is cracked, this application can still calculate its actual usage location. Furthermore, this application utilizes the existing hardware of the smart acquiring machine, making the modification difficult and cost-effective. In addition, the data provided by the machine is verified to prevent data forgery and repudiation, and to avoid interfering with the analysis results.

[0070] Accordingly, this application also discloses a device for determining the illegal relocation of a acquiring machine, see [link to relevant documentation]. Figure 4 As shown, the device includes:

[0071] The location request message creation module 11 is used to sign the location request data to obtain a first signature result, and to create a location request message based on the first signature result and the device identifier of the current acquiring device.

[0072] The location request message sending module 12 is used to send the location request message to the target acquiring device, so that the target acquiring device can verify the first signature result based on the device identifier of the current acquiring device. If the verification is successful, response data is generated and the response data is signed to obtain a second signature result. The target acquiring device is a device in the preset peer-to-peer network and connected to the current acquiring device. The response data includes data including the location information of the target acquiring device.

[0073] The response message acquisition module 13 is used to acquire the response message of the target acquiring device in response to the location request message based on the device identifier of the target acquiring device and the second signature result;

[0074] The data upload request message sending module 14 is used to verify the second signature result based on the device identifier of the target acquiring device. When the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message.

[0075] For more detailed information on the working process of each of the above modules, please refer to the relevant content disclosed in the foregoing embodiments, which will not be repeated here.

[0076] As can be seen, this application proposes a method for determining the illegal relocation of a acquiring device, comprising: signing location request data to obtain a first signature result, and creating a location request message based on the first signature result and the device identifier of the current acquiring device; sending the location request message to a target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device; if the verification is successful, generating response data and signing the response data to obtain a second signature result; the target acquiring device is a device connected to the current acquiring device in the preset peer-to-peer network; the response data is... The data includes the location information of the target acquiring device; obtaining the response message returned by the target acquiring device based on its device identifier and the second signature result in response to the location request message; verifying the second signature result based on the device identifier of the target acquiring device; if the verification is successful, sending a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result to the remote cloud service, so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message. Therefore, both the current acquiring device and the target acquiring device in this application are acquiring devices in a peer-to-peer network, and the target acquiring device is the device connected to the current acquiring device. In this way, the target acquiring device and the current acquiring device can provide and verify location information to each other. Furthermore, the current acquiring device polls each target acquiring device that has established a connection with it and requests the target device to return its device information. Then, the device sends its own location information and the target acquiring device's location information to the payment service company's remote cloud service. The remote cloud service then analyzes the multiple sets of reported location information associated with the acquiring device and determines whether the acquiring device has been illegally moved. In other words, this application can obtain the true location of the acquiring device even if its positioning module is compromised, thereby preventing its illegal relocation.

[0077] Furthermore, embodiments of this application also provide an electronic device. Figure 5 This is a structural diagram of an electronic device 20 according to an exemplary embodiment. The content of the diagram should not be construed as limiting the scope of this application.

[0078] Figure 5This is a schematic diagram of the structure of an electronic device 20 provided in an embodiment of this application. The electronic device 20 may specifically include: at least one processor 21, at least one memory 22, a display screen 23, an input / output interface 24, a communication interface 25, a power supply 26, and a communication bus 27. The memory 22 stores a computer program, which is loaded and executed by the processor 21 to implement the relevant steps in the method for determining illegal relocation of a acquiring machine disclosed in any of the foregoing embodiments. Alternatively, the electronic device 20 in this embodiment may specifically be a computer.

[0079] In this embodiment, the power supply 26 is used to provide operating voltage for each hardware device on the electronic device 20; the communication interface 25 can create a data transmission channel between the electronic device 20 and external devices, and the communication protocol it follows can be any communication protocol applicable to the technical solution of this application, and is not specifically limited here; the input / output interface 24 is used to acquire external input data or output data to the outside world, and its specific interface type can be selected according to specific application needs, and is not specifically limited here.

[0080] Furthermore, the memory 22, as a carrier for resource storage, can be a read-only memory, random access memory, disk, or optical disk, etc. The resources stored thereon may include computer programs 221, and the storage method may be temporary storage or permanent storage. In addition to including a computer program capable of performing the method for determining illegal relocation of the acquiring terminal as disclosed in any of the foregoing embodiments, the computer program 221 may further include computer programs capable of performing other specific tasks.

[0081] Furthermore, embodiments of this application also disclose a computer-readable storage medium for storing a computer program; wherein, when the computer program is executed by a processor, it implements the aforementioned method for determining the illegal relocation of a acquiring device.

[0082] For the specific steps of this method, please refer to the relevant content disclosed in the foregoing embodiments, which will not be repeated here.

[0083] The various embodiments in this application are described in a progressive manner, with each embodiment focusing on the differences from other embodiments. For the same or similar parts between the various embodiments, refer to each other. As for the apparatus disclosed in the embodiments, since it corresponds to the method disclosed in the embodiments, the description is relatively simple, and relevant parts can be referred to in the method section.

[0084] Those skilled in the art will further recognize that the units and algorithm steps of the various examples described in conjunction with the embodiments disclosed herein can be implemented in electronic hardware, computer software, or a combination of both. To clearly illustrate the interchangeability of hardware and software, the components and steps of the various examples have been generally described in terms of functionality in the foregoing description. Whether these functions are implemented in hardware or software depends on the specific application and design constraints of the technical solution. Those skilled in the art can use different methods to implement the described functions for each specific application, but such implementation should not be considered beyond the scope of this application.

[0085] The steps of the methods or algorithms described in conjunction with the embodiments disclosed herein can be implemented directly by hardware, a software module executed by a processor, or a combination of both. The software module can be located in random access memory (RAM), main memory, read-only memory (ROM), electrically programmable ROM, electrically erasable programmable ROM, registers, hard disk, removable disk, CD-ROM, or any other form of storage medium known in the art.

[0086] Finally, it should be noted that in this document, relational terms such as "first" and "second" are used only to distinguish one entity or operation from another, and do not necessarily require or imply any such actual relationship or order between these entities or operations. Furthermore, the terms "comprising," "including," or any other variations thereof are intended to cover non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements includes not only those elements but also other elements not expressly listed, or elements inherent to such a process, method, article, or apparatus. Without further limitations, an element defined by the phrase "comprising one..." does not exclude the presence of other identical elements in the process, method, article, or apparatus that includes said element.

[0087] The above provides a detailed description of the method, apparatus, equipment, and storage medium for determining the illegal relocation of acquiring machines provided in this application. Specific examples have been used to illustrate the principles and implementation methods of this application. The descriptions of the above embodiments are only for the purpose of helping to understand the method and core ideas of this application. At the same time, for those skilled in the art, there will be changes in the specific implementation methods and application scope based on the ideas of this application. Therefore, the content of this specification should not be construed as a limitation of this application.

Claims

1. A method for determining the illegal relocation of a payment acquiring device, characterized in that, Applied to the current acquiring device, wherein the current acquiring device is a device in a preset peer-to-peer network, the method includes: Sign the location request data to obtain a first signature result, and create a location request message based on the first signature result and the device identifier of the current acquiring device; The location request message is sent to the target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device. If the verification is successful, response data is generated and the response data is signed to obtain a second signature result. The target acquiring device is a device in the preset peer-to-peer network connected to the current acquiring device. The response data includes data including the location information of the target acquiring device. Obtain the response message returned by the target acquiring device in response to the location request message based on the device identifier of the target acquiring device and the second signature result; The second signature result is verified based on the device identifier of the target acquiring device. If the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message. The verification of the first signature result based on the device identifier of the current acquiring device includes: querying the first public key corresponding to the current acquiring device from the remote cloud service based on the device identifier of the current acquiring device, and using the first public key to verify the first signature result; The verification of the second signature result based on the device identifier of the target acquiring device includes: querying the second public key corresponding to the target acquiring device from the remote cloud service based on the device identifier of the target acquiring device, and using the second public key to verify the second signature result.

2. The method for determining illegal relocation of acquiring equipment according to claim 1, characterized in that, The step of signing the location request data to obtain a first signature result includes: The location request data is signed using the first private key to obtain the first signature result.

3. The method for determining illegal relocation of acquiring equipment according to claim 2, characterized in that, When the signature verification is successful, response data is generated, and the response data is signed to obtain a second signature result, including: Once the signature verification is successful, response data is generated, and the response data is signed using the second private key to obtain a second signature result.

4. The method for determining illegal relocation of acquiring equipment according to claim 1, characterized in that, Before signing the location request data to obtain the first signature result, the process further includes: The communication module in the acquiring device is used to connect several acquiring devices to each other to form the preset peer-to-peer network.

5. The method for determining illegal relocation of acquiring equipment according to any one of claims 1 to 4, characterized in that, Before sending the data upload request message created based on the current acquiring device's location information and device identifier, the first signature result, the target acquiring device's device identifier, and the second signature result to the remote cloud service, the method further includes: Based on the positioning module in the current acquiring device, the location information of the current acquiring device is determined.

6. A method for determining the illegal relocation of a payment acquiring device, characterized in that, The method is applied to a target acquiring device, which is a device connected to a current acquiring device in a preset peer-to-peer network, and the current acquiring device is a device in the preset peer-to-peer network. The method includes: Obtain the location request message created by the current acquiring device based on the first signature result and the device identifier of the current acquiring device; the first signature result is the result obtained by the current acquiring device signing the location request data; The first signature result is verified based on the device identifier of the current acquiring device. If the verification is successful, response data is generated and the response data is signed to obtain a second signature result. The response data includes the location information of the target acquiring device. A response message for the location request message, created based on the device identifier of the target acquiring device and the second signature result, is sent to the current acquiring device. This allows the current acquiring device to verify the second signature result based on the device identifier of the target acquiring device. If the verification is successful, a data upload request message, created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result, is sent to the remote cloud service. This allows the remote cloud service to determine whether the current acquiring device has been illegally moved based on the data upload request message. The verification of the first signature result based on the device identifier of the current acquiring device includes: querying the first public key corresponding to the current acquiring device from the remote cloud service based on the device identifier of the current acquiring device, and using the first public key to verify the first signature result; The verification of the second signature result based on the device identifier of the target acquiring device includes: querying the second public key corresponding to the target acquiring device from the remote cloud service based on the device identifier of the target acquiring device, and using the second public key to verify the second signature result.

7. A device for determining illegal relocation of a payment acquiring machine, characterized in that, Applied to the current acquiring device, wherein the current acquiring device is a device in a preset peer-to-peer network, the device includes: The location request message creation module is used to sign the location request data to obtain a first signature result, and to create a location request message based on the first signature result and the device identifier of the current acquiring device. A location request message sending module is used to send the location request message to a target acquiring device, so that the target acquiring device verifies the first signature result based on the device identifier of the current acquiring device. If the verification is successful, response data is generated, and the response data is signed to obtain a second signature result. The target acquiring device is a device in the preset peer-to-peer network connected to the current acquiring device. The response data includes data including the location information of the target acquiring device. The response message acquisition module is used to acquire the response message returned by the target acquiring device in response to the location request message based on the device identifier of the target acquiring device and the second signature result; The data upload request message sending module is used to verify the second signature result based on the device identifier of the target acquiring device. When the verification is successful, a data upload request message created based on the location information and device identifier of the current acquiring device, the first signature result, the device identifier of the target acquiring device, and the second signature result is sent to the remote cloud service so that the remote cloud service can determine whether the current acquiring device has been illegally moved based on the data upload request message. The verification of the first signature result based on the device identifier of the current acquiring device includes: querying the first public key corresponding to the current acquiring device from the remote cloud service based on the device identifier of the current acquiring device, and using the first public key to verify the first signature result; The verification of the second signature result based on the device identifier of the target acquiring device includes: querying the second public key corresponding to the target acquiring device from the remote cloud service based on the device identifier of the target acquiring device, and using the second public key to verify the second signature result.

8. An electronic device, characterized in that, include: Memory, used to store computer programs; A processor is configured to execute the computer program to implement the method for determining illegal relocation of acquiring equipment as described in any one of claims 1 to 6.

9. A computer-readable storage medium, characterized in that, Used to store computer programs; wherein, when the computer programs are executed by a processor, they implement the method for determining illegal relocation of acquiring equipment as described in any one of claims 1 to 6.

Images