Intelligent verification decision method and system based on multi-end perception

By using a multi-terminal sensing intelligent verification decision-making method, first and second code coupon fragments are generated. Combined with message authentication codes and asymmetric digital signature algorithms, the security and convenience issues of electronic voucher verification in existing technologies are solved, realizing authenticity verification and efficient verification in on-site interactions between users and merchants.

CN122199055APending Publication Date: 2026-06-12XIAN YINCHUANG MULTIMEDIA CO LTD

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Applications(China)
Current Assignee / Owner
XIAN YINCHUANG MULTIMEDIA CO LTD
Filing Date
2026-05-15
Publication Date
2026-06-12

AI Technical Summary

Technical Problem

Existing electronic voucher verification methods struggle to balance security and convenience, failing to effectively prevent fraudulent activities involving unauthorized, off-site, or involuntary individuals. Furthermore, they cannot efficiently handle batch or cross-platform verification needs when network conditions are poor.

Method used

A multi-terminal perception-based intelligent verification decision-making method is adopted. By generating first and second code coupon fragments and combining message authentication code algorithm and asymmetric digital signature algorithm, the authenticity of the verification operation in the on-site interaction between the user and the merchant is ensured, and the identity verification is completed on the server side, reducing the user's operational burden.

Benefits of technology

It improves the security and reliability of the verification process, prevents attacks such as interception, copying and replay of coupon information, is suitable for scenarios with poor cellular mobile network environments, and ensures the consistency of verification data and the reliability of results.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure CN122199055A_ABST
    Figure CN122199055A_ABST
Patent Text Reader

Abstract

The application relates to the technical field of distributed cancellation, in particular to an intelligent cancellation decision method and system based on multi-end perception, which comprises the following steps: a server generates first and second code coupon fragments which are interrelated based on cancellation request information, and the first code coupon fragment is sent to a user terminal; a user and a merchant complete challenge verification by operating the user terminal and / or the merchant terminal, the user terminal acquires the second code coupon fragment after the challenge verification is completed, the user terminal combines the first and second code coupon fragments into to-be-signed data in a predetermined order, and a cancellation signature is obtained by signing the to-be-signed data by using a pre-stored user private key; the server performs signature verification after receiving the cancellation signature, and if the verification is passed and the to-be-cancelled code coupon is in an un-cancelled state, the code coupon cancellation is confirmed to be successful. The server, the user terminal and the merchant terminal are closely bound in the same cancellation transaction, and the security of the cancellation process is enhanced without excessively increasing the burden of the user.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This invention belongs to the field of distributed verification technology for electronic vouchers, and particularly relates to an intelligent verification decision-making method and system based on multi-terminal perception. Background Technology

[0002] In the retail, catering, and other service industries, the verification of electronic vouchers is a crucial link connecting online sales and offline services. Existing verification methods, such as the electronic voucher verification method disclosed in Chinese patent application CN114240436A, involve the user terminal presenting a verification code, the merchant terminal reading the code and uploading it to the server, which then performs a query and comparison for verification. While this verification method is convenient, its authentication strength is weak. Furthermore, since the server only obtains the verification voucher from the merchant terminal, the lack of user participation fails to prevent fraudulent verification of vouchers by unauthorized, non-on-site, and involuntary individuals, increasing the opportunity for merchants to forge verification requests for illegal profit.

[0003] While some specialized verification methods combine fingerprints, biometrics, or payment passwords for secondary verification, enhancing user authentication and security, they also increase user requirements, such as adding complexity to user operations. This can reduce the smoothness and convenience of the verification process, impacting user experience. For example, the anti-reselling electronic coupon verification method disclosed in Chinese patent application CN117911025A requires real-time collection of user location information, calculation of the distance between the user and merchant, and comparison with a set maximum distance threshold. If the distance exceeds the threshold, a blurred verification code is returned to the user, preventing the merchant from verifying the coupon; if the distance is less than or equal to the threshold, a clear verification code is returned, allowing the merchant to verify the coupon based on the displayed verification code and dynamic code. This method requires users to grant access to their personal information, which can make users feel monitored and uncomfortable, making it unsuitable for users sensitive to personal information. Furthermore, the real-time collection and uploading of location information makes it unsuitable for scenarios with poor network conditions.

[0004] Therefore, existing technologies lack intelligent decision-making and unified scheduling for reconciliation requests, and cannot securely and efficiently handle batch reconciliation or cross-platform reconciliation needs. How to treat dispersed reconciliation terminals such as PC web pages, mobile apps, POS machines, and user mobile phones as a whole sensing network, and introduce an intelligent decision center to process various reconciliation requests in a unified, real-time, and intelligent manner, is an urgent problem to be solved. Summary of the Invention

[0005] The purpose of this invention is to provide a smart verification decision-making method and system based on multi-terminal perception, so as to establish a transaction mechanism that enables users to collaborate with merchants and servers on multiple terminals to improve security without excessively increasing the burden on users.

[0006] To achieve the above objectives, this invention provides an intelligent reimbursement decision-making method based on multi-terminal perception, comprising the following steps: Based on the data bound to the user and merchant in the verification request information, the server uses a message authentication code algorithm to generate an interrelated first coupon fragment and a second coupon fragment. The key of the message authentication code algorithm is the server key stored on the server. The first coupon fragment is sent to the user terminal. The server generates challenge information based on the verification request information and returns it to the user terminal or merchant terminal. The user or merchant completes the challenge verification by operating the user terminal and / or merchant terminal. After the challenge verification is completed, the user terminal directly obtains the second coupon fragment from the server. Alternatively, the server sends the second coupon fragment as challenge information to the merchant terminal based on the verification request information. While the user or merchant completes the challenge verification by operating the user terminal and / or merchant terminal, the user terminal obtains the second coupon fragment as challenge information from the merchant terminal. The user terminal combines the first and second coupon fragments into data to be signed in a predetermined order. The user terminal uses a preset asymmetric digital signature algorithm and a pre-stored user private key to sign the data to be signed to obtain the verification signature, which is then submitted to the server. After receiving the verification signature, the server generates first and second verification fragments based on the verification request information. The generation method of the first and second verification fragments is the same as that of the first and second code coupon fragments. The server combines the first and second verification fragments into verification data in the same way as it combines the data to be signed. The server uses a preset asymmetric digital signature algorithm and a pre-stored user public key to verify the verification data and the verification signature. If the verification is successful and the code coupon to be verified is in an unverified state, the verification of the code coupon is confirmed as successful, and the code coupon to be verified is updated to be verified.

[0007] The beneficial effects of the above technical solution are as follows: This invention requires the user terminal and / or merchant terminal to complete a challenge verification process before the user terminal can obtain the second coupon fragment and combine it with the already held first coupon fragment data. This challenge verification method ensures that the verification operation is initiated in a real-world scenario of interaction between the user and the merchant, thus confirming the authenticity of the verification process. Subsequently, the user's private key is used to complete the verification signature and public key verification, thereby confirming the authenticity of the user's identity. Moreover, the digital signature verification operation is performed on the server; the user only needs to pre-store their public key on the server to complete all future digital signature verifications, thus avoiding additional user operations for each verification. The above mechanism of this invention tightly binds the server, user terminal, and merchant terminal in the same verification transaction, enhancing the security of the verification process without excessively increasing the user's burden. It can resist fraudulent activities such as interception, copying, theft, or replay attacks of coupon information, ensuring the consistency of verification data and the reliability of verification results.

[0008] Furthermore, the query information is a query code containing a QR code corresponding to the merchant. The user terminal sends a verification request to the server, the server sends the query code to the user terminal, and the merchant terminal obtains the QR code from the query code by scanning it and uploads it to the server to complete the verification. This query verification method of the present invention is a QR code verification, which is more convenient for users.

[0009] Furthermore, the query information is a query code containing a digital password corresponding to the merchant. The user terminal sends a verification request to the server, the server sends the query code to the user terminal, the user provides the digital password in the query code to the merchant's operator, and the merchant's operator enters the digital password in the corresponding interface window of the merchant's terminal's transaction application and uploads the digital password to the server. The server obtains the digital password and compares it with the query information to complete the query verification.

[0010] Furthermore, the query information is a query link corresponding to the merchant. The user terminal sends a verification request to the server, and the server sends the query link to the user terminal. The query link forms a query link entry in the transaction application on the user terminal. When the user clicks the query link entry, a verification dialog box pops up. The merchant's operator enters the merchant password in the verification dialog box displayed on the user terminal. The merchant password is uploaded to the server as merchant authentication information. The server uses the pre-stored merchant authentication information bound to the merchant to perform verification. After successful verification, the server sends the second coupon fragment to the user terminal.

[0011] Furthermore, the query information is a second coupon fragment. The user terminal sends a verification request to the server, and the server sends the second coupon fragment as query information to the merchant terminal. The merchant terminal encodes the received second coupon fragment to generate a query QR code and displays it on the display device's screen. The user terminal scans the query QR code with a camera and parses the scan result to obtain the second coupon fragment. This query verification method of the present invention allows the user to directly obtain the second coupon fragment by scanning a code with the merchant. Since the two coupon fragments are stored by the user and the merchant respectively, the process of the user scanning the code to obtain the second coupon fragment is an offline image recognition and decoding process. Moreover, the user terminal no longer needs to receive other query information generated by the server, reducing the user terminal's cellular network traffic consumption. Since the merchant terminal is usually connected to a wired network or a wireless LAN, it can be used in scenarios with poor cellular network environments. This interaction mode can ensure smooth verification in most cases.

[0012] Furthermore, the asymmetric digital signature algorithm is an elliptic curve digital signature algorithm. This invention employs an elliptic curve digital signature algorithm, which has a small key and signature data size, and its signing and verification efficiency is significantly higher than other asymmetric digital signature algorithms such as RSA. It is suitable for terminals and lightweight devices, and is beneficial for use in scenarios with limited bandwidth.

[0013] Furthermore, the redemption request information includes the coupon identifier, user identifier, merchant identifier, and timestamp of the coupon to be redeemed.

[0014] Furthermore, the generation method of the first and second coupon fragments includes: combining user identifier, merchant identifier, and timestamp strings in a preset order to form a transaction time sequence string; calculating a hash value using a hash algorithm on the transaction time sequence string; using the hash value as a redemption salt value bound to the redemption request information; combining the coupon identifier and the redemption salt value in a predetermined order to form a first message body; using a server key stored on the server as the key for a preset message authentication code algorithm; performing a message authentication code operation on the first message body using the preset message authentication code algorithm to generate the first coupon fragment; combining the first coupon fragment and the redemption salt value to form a second message body; using the server key as the key for the message authentication code algorithm; performing a message authentication code operation on the second message body using the preset message authentication code algorithm to generate the second coupon fragment. This invention generates a redemption salt value by binding user identifier, merchant identifier, and timestamp, which can prevent replay and forgery; the use of a server key and message authentication code algorithm to generate coupon fragments ensures that the key is not exposed and has strong anti-counterfeiting capabilities.

[0015] Furthermore, the message authentication code algorithm is a hash-based message authentication code algorithm. This invention employs a hash-based message authentication code algorithm, first concatenating the server key with the data and then performing a hash operation. The result simultaneously binds the content and the key, preventing both tampering and forgery.

[0016] The present invention also provides an intelligent verification decision system based on multi-terminal perception, including a user terminal, a merchant terminal, and a server. The user terminal, merchant terminal, and server are respectively configured to execute the intelligent verification decision method based on multi-terminal perception described above, and achieve the same effect as the method described above.

[0017] The beneficial effects of the above technical solution are as follows: This invention requires the user terminal and / or merchant terminal to complete a challenge verification process before the user terminal can obtain the second coupon fragment and combine it with the already held first coupon fragment data. This challenge verification method ensures that the verification operation is initiated in a real-world scenario of interaction between the user and the merchant, thus confirming the authenticity of the verification process. Subsequently, the user's private key is used to complete the verification signature and public key verification, thereby confirming the authenticity of the user's identity. Moreover, the digital signature verification operation is performed on the server; the user only needs to pre-store their public key on the server to complete all future digital signature verifications, thus avoiding additional user operations for each verification. The above mechanism of this invention tightly binds the server, user terminal, and merchant terminal in the same verification transaction, enhancing the security of the verification process without excessively increasing the user's burden. It can resist fraudulent activities such as interception, copying, theft, or replay attacks of coupon information, ensuring the consistency of verification data and the reliability of verification results.

[0018] Summary of the beneficial effects of this invention: Based on the verification request information, this invention generates first and second coupon fragments in a chain, using a message authentication code algorithm to ensure that the coupons are difficult to forge and tamper with. Furthermore, through challenge verification between the user terminal and the merchant terminal, it ensures that the verification is genuinely initiated on-site, effectively preventing replay attacks and theft. Simultaneously, it employs asymmetric digital signatures for identity verification, performed on the server side. Verification only requires pre-stored public keys, ensuring the non-repudiation and tamper-proof nature of the verification request information without adding extra user operations, resulting in security far exceeding traditional solutions. This solution binds the server, user terminal, and merchant terminal together, significantly improving verification security while maintaining lightweight interaction, ensuring a trustworthy verification process, data consistency, and reliable results. Attached Figure Description

[0019] Figure 1 This is a schematic diagram illustrating the configuration of the intelligent reimbursement decision-making method based on multi-terminal perception of the present invention on various terminals; Figure 2This is a flowchart of an embodiment of the intelligent reimbursement decision-making method based on multi-terminal perception of the present invention. Detailed Implementation

[0020] Embodiment 1 of the intelligent reimbursement decision-making method based on multi-terminal perception of the present invention, which relies on the following during implementation: Figure 1 The server, user terminal, and merchant terminal shown in this embodiment are both smartphones. The user's smartphone can display a QR code, and the merchant's smartphone is used to recognize the QR code. Users receive or purchase coupons through a transaction application installed on the user's terminal. Users need to register to use the transaction application, which uses elliptic curve cryptography to generate a key pair: a user private key and a user public key. The user private key is stored in a secure storage environment on the user terminal to ensure it cannot be exported. The user public key is uploaded to the server via a secure channel during user registration. The server binds the received user public key with the user identifier and stores it in a database. In other embodiments, the user terminal can also be a smartwatch, and the merchant terminal can be a barcode scanner.

[0021] like Figure 2 As shown, the method includes the following steps: S1, when a user wants to redeem a coupon from a merchant, the user terminal sends a redemption request to the server. The server generates redemption request information, which includes the coupon identifier, user identifier, merchant identifier, and timestamp of the coupon to be redeemed. The server uses a message authentication code algorithm to generate two interrelated coupon fragments, a first coupon fragment and a second coupon fragment, based on the redemption request information.

[0022] The code / voucher identifier, user identifier, and merchant identifier are the identifiers of the code / voucher to be redeemed, the user terminal, and the merchant terminal, respectively. The timestamp is the Unix time when the redemption request information was generated. The user identifier, merchant identifier, and timestamp are combined into a string in a preset order, i.e., the transaction sequence string. All three identifiers are in UTF-8 string format. For example, the user identifier is U-20230315-A87FF, the merchant identifier is M-SHOP-9988-B2, and the timestamp is 1678886400. The combination order is a fixed order with a separator: user identifier|merchant identifier|timestamp, resulting in the transaction sequence string: "U-20230315-A87FF|M-SHOP-9988-B2|1678886400". In other embodiments, the separator can also be ::, and the combination order is specified as user identifier::merchant identifier::timestamp.

[0023] After obtaining the transaction timeline, a hash algorithm is used to calculate the hash value, which is then used as the verification salt value bound to the verification request information. Specifically, the SHA-256 hash algorithm is used to calculate a 32-byte hash value from the transaction timeline, which serves as the verification salt value. A hash algorithm is a one-way hash function that can convert an input of arbitrary length into a fixed-length output. The calculation process is completed on the server. In this embodiment, the UTF-8 encoded transaction timeline is input into the hash function. The hash value output by this function represents the set of verification parameters for this verification request information, i.e., the verification salt value. Since the verification salt value is obtained based on three variables—user identifier, merchant identifier, and timestamp—using a hash algorithm, the one-way and irreversible nature of the hash algorithm ensures the uniqueness and one-time use of the verification salt value in a single verification, while also keeping the user identifier and merchant identifier confidential.

[0024] Then, using the verification salt value, the preset server key, and the voucher identifier, a first voucher fragment is generated through a message authentication code algorithm. Finally, using the first voucher fragment, the verification salt value, and the server key, a second voucher fragment is generated through the same message authentication code algorithm. Specifically, the message authentication code algorithm is a hash-based message authentication code algorithm: HMAC-SHA256.

[0025] To generate the first voucher fragment, the first round of calculation is performed: using the server key stored in the server's secure environment as the key for the message authentication code algorithm, the voucher identifier and the verification salt value are combined in a predetermined order to form the first message body. The first voucher fragment is then calculated using the HMAC-SHA256 algorithm. The voucher identifier is a string in UUID format, such as f47ac10b-58cc-4372-a567-0e02b2c3d479. Before combining it with the verification salt value, the voucher identifier needs to be converted into a UTF-8 encoded byte sequence. The server key is a high-entropy random number with a length of 256 bits or 512 bits. After UTF-8 encoding, the voucher identifier is 36 bytes, and the verification salt value is 32 bytes. Therefore, the length of the combined first message body is 68 bytes. The HMAC-SHA256 algorithm will output a 256-bit authentication code, which is the first voucher fragment sent to the user terminal.

[0026] To generate the second code coupon fragment, a second round of calculation is performed: the first code coupon fragment is combined with the redemption salt value to form the second message body, and the server key is still used to perform HMAC-SHA256 calculation on the second message body to calculate the second code coupon fragment.

[0027] Because the first voucher fragment is generated based on the voucher identifier, the verification salt value, and the server key, it is firmly bound to the voucher itself, the set of verification parameters, and the server key. The second voucher fragment is generated from the first, so both fragments are associated with the set of verification parameters, and there is a strong association between them. Furthermore, only a server with the correct server key can generate both fragments, ensuring their association with the server. And due to the one-way nature of the message authentication code algorithm, it is impossible to deduce the first voucher fragment from the second, thus enhancing security.

[0028] In other embodiments, the first and second code coupon segments can also be obtained in other ways. The server divides the 256-bit authentication code obtained in the first round using the message authentication code algorithm into half, with the first 128 bits as the first code coupon segment and the last 128 bits as the second code coupon segment.

[0029] S2, the server generates a challenge message based on the verification request information and returns it to the user terminal. The user and the merchant complete the challenge verification through the operation of the user terminal or the merchant terminal. After the verification is successful, the server sends the second code coupon fragment to the user terminal. The user terminal combines the first and second code coupon fragments into data to be signed in a predetermined order. The user terminal uses a preset asymmetric digital signature algorithm and a pre-stored user private key to sign the data to be signed to obtain the verification signature. The user terminal submits the verification signature to the server.

[0030] In this embodiment, the challenge information is a challenge code, which can be a dynamic or static QR code. The merchant terminal obtains the challenge code by scanning it and uploads it to the server for comparison and verification. This QR code verification method is existing technology, and details will not be elaborated here. The server uses pre-stored authentication information for comparison and verification. After successful verification, the server sends a second coupon fragment to the user terminal.

[0031] After obtaining the second voucher fragment, the user terminal combines the first and second voucher fragments in a predetermined order to form the data to be signed. The user terminal's transaction application accesses the user's private key stored in the secure element or system keystore through the system's secure application interface. This user private key is generated and securely stored during user registration or first login. After obtaining the data to be signed, the user terminal's transaction application loads the user's private key, calls the elliptic curve digital signature algorithm, uses the device system's built-in encryption library (such as calling Apple's security framework key creation and signing interface), and uses the user's private key to perform a signature operation on the data to be signed using an elliptic curve digital signature algorithm based on the secp256k1 curve to obtain the verification signature.

[0032] S3. After receiving the verification signature, the server generates the first and second verification fragments based on the verification request information. The generation method of the first and second verification fragments is the same as that of generating the first and second code coupon fragments in step S1. The server combines the first and second verification fragments into verification signature data. Then, the server uses a preset asymmetric digital signature algorithm and a pre-stored user public key to verify the verification signature data and the verification signature. If the verification is successful and the code coupon to be verified is in an unverified state, the code coupon is confirmed to be successfully verified, and the code coupon to be verified is updated to be verified.

[0033] Specifically, after receiving the verification signature, the server executes a query statement in the database based on the user identifier in the verification request information corresponding to the verification signature, and extracts the pre-stored user public key. At the same time, the server uses the same parameters as in step S1, namely the coupon identifier, user identifier, merchant identifier, and timestamp in the verification request information, as well as the same verification salt value, and adopts the exact same combination order and message authentication code algorithm to calculate the first and second segments to be verified.

[0034] The server combines the first and second segments to be verified in a predetermined order to form the combined data to be verified: the signature data to be verified. The predetermined order is that the first segment to be verified is placed first, followed by the second segment. The server calls the signature verification interface of the cryptographic library, inputting the user's public key, the verification signature submitted by the merchant terminal, and the signature data to be verified into the signature verification interface, and performs signature verification using the elliptic curve digital signature algorithm. If the signature verification interface returns a successful verification, it indicates that the signature is genuine. The cryptographic library is an OpenSecure Sockets Layer library or a Java cryptographic architecture.

[0035] After successful signature verification, the server initiates a database transaction, performing a database operation to query the coupon table and lock the corresponding record: it queries the coupon status based on the coupon identifier and exclusively locks the data row to prevent concurrent redemption. Once the coupon status is confirmed as unredeemed, it performs a database operation to update the coupon status to redeemed and records the redemption time. The database transaction is then committed, and a successful redemption response is returned to the merchant's terminal.

[0036] In the above process, after receiving the verification signature, the server regenerates the first and second verification fragments and the signature data to be verified, without relying on any intermediate data uploaded by other terminals, thus preventing tampering. The server uses its own verification request information parameters—user identifier, merchant identifier, timestamp, coupon identifier—and the server key stored locally, strictly following a process completely consistent with step S1 to regenerate the first and second verification fragments. This independent reconstruction process is crucial for verification, ensuring that the data source used for verification is trustworthy.

[0037] The elliptic curve digital signature algorithm used in steps S2 and S3 above is an asymmetric digital signature algorithm. The obtained signature is a 64-byte binary array composed of two 32-byte integers, r and s. In other embodiments, other asymmetric digital signature algorithms, such as the RSA digital signature algorithm, can also be used.

[0038] Example 2 The difference from Embodiment 1 is that the merchant terminal in Embodiment 2 is a computer. In step S2, the query information is a query code displayed on the user terminal. This query code corresponds to the merchant and contains a digital password. The user provides the digital password to the merchant's operator, who then enters the coupon number and the digital password in the corresponding interface window of the merchant terminal's transaction application. The digital password is then uploaded to the server, which retrieves the digital password and compares it with the query information to complete the verification. The operations performed by the user and merchant described above are called web page verification.

[0039] Example 3 The difference from Embodiment 1 is that the query information in Embodiment 3 is a query link corresponding to the merchant. This query link forms an entry point in the transaction application on the user terminal. When the user clicks the query link entry, a verification dialog box pops up. The merchant's operator enters the merchant password in the verification dialog box displayed on the user terminal. The merchant password, as merchant authentication information, is uploaded to the server. The server uses pre-stored merchant authentication information bound to the merchant for verification. After successful verification, the server sends the second coupon fragment to the user terminal. In this embodiment, the operation performed by the user and merchant is called the coupon verification operation. That is: the user clicks on the coupon to be verified, enters the number of coupons to be verified, clicks the OK button, and then the operator's username and password pop up. The user hands the user terminal to the merchant, and the merchant's operator enters the operator's username and password on the user terminal and clicks OK to successfully complete the verification. During this process, the merchant's operator participates in the query verification operation on behalf of the merchant terminal. Although the merchant terminal does not directly participate in the operation, it receives verification completion information from the server for confirmation.

[0040] Example 4 The difference from Embodiment 1 is that in step S2 of Embodiment 4, after the challenge is passed, the second coupon fragment is not sent from the server to the user terminal, but is transmitted from the merchant terminal to the user terminal. This embodiment ensures that the user terminal and the merchant terminal are in the same location through the data transmission process of IoT interaction, that is, the challenge verification is performed through the IoT transmission process, eliminating the need for the server to generate challenge information and saving the challenge verification process related to the challenge information.

[0041] Specifically, the server sends the second coupon fragment as a query message to the merchant terminal. When a user wants to redeem the coupon, the user terminal sends a redemption request to the server. The merchant terminal encodes the received second coupon fragment to generate a query QR code and displays it on a display device such as a mobile phone or computer screen. The user terminal scans the query QR code with its camera and parses the scan result to obtain the second coupon fragment. In the above process, after receiving the second coupon fragment from the server, the merchant terminal first encodes the second coupon fragment using the Base64URL encoding scheme. After encoding, the merchant terminal calls the QR code generation interface built into the device or a third-party library to generate a QR code image. The user terminal's transaction application initiates the scanning function, scans the QR code image on the merchant terminal screen with its camera, and then decodes it to obtain the second coupon fragment. In this embodiment, since the server sends the first and second coupon fragments to the user terminal and the merchant terminal respectively, the process of the user scanning the code to obtain the second coupon fragment is an offline image recognition and decoding process. Moreover, the user terminal no longer needs to receive other query information generated by the server, thereby reducing the data consumption of the user terminal's cellular mobile network. Since the merchant terminal is usually a wired network or a wireless local area network, this embodiment can be applied to scenarios with poor cellular mobile network environments.

[0042] Embodiments of the intelligent reimbursement decision system based on multi-terminal perception of the present invention, such as... Figure 1 As shown, the system includes a user terminal, a merchant terminal, and a server. The server includes a central processing unit, a secure storage area, and a database. The user terminal, merchant terminal, and server are configured to execute embodiments of the multi-terminal perception-based intelligent verification decision-making method described above. The usage of this multi-terminal intelligent verification decision-making system embodiment has been described in the above method embodiments and will not be repeated here.

Claims

1. A smart reimbursement decision-making method based on multi-terminal perception, characterized in that, Includes the following steps: Based on the data bound to the user and merchant in the verification request information, the server uses a message authentication code algorithm to generate an interrelated first coupon fragment and a second coupon fragment. The key of the message authentication code algorithm is the server key stored on the server. The first coupon fragment is sent to the user terminal. The server generates challenge information based on the verification request information and returns it to the user terminal or merchant terminal. The user or merchant completes the challenge verification by operating the user terminal and / or merchant terminal. After the challenge verification is completed, the user terminal directly obtains the second coupon fragment from the server. Alternatively, the server sends the second coupon fragment as challenge information to the merchant terminal based on the verification request information. While the user or merchant completes the challenge verification by operating the user terminal and / or merchant terminal, the user terminal obtains the second coupon fragment as challenge information from the merchant terminal. The user terminal combines the first and second coupon fragments into data to be signed in a predetermined order. The user terminal uses a preset asymmetric digital signature algorithm and a pre-stored user private key to sign the data to be signed to obtain the verification signature, which is then submitted to the server. After receiving the verification signature, the server generates first and second verification fragments based on the verification request information. The generation method of the first and second verification fragments is the same as that of the first and second code coupon fragments. The server combines the first and second verification fragments into verification signature data in the same way as the combination into signature data. The server uses a preset asymmetric digital signature algorithm and a pre-stored user public key to verify the signature data and the verification signature. If the verification is successful and the code coupon to be verified is in an unverified state, the code coupon is confirmed to have been successfully verified, and the code coupon to be verified is updated to be verified.

2. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 1, characterized in that, The query information is a query code containing a QR code corresponding to the merchant. The user terminal sends a verification request to the server, the server sends the query code to the user terminal, and the merchant terminal obtains the QR code in the query code by scanning the code and uploads it to the server to complete the verification.

3. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 1, characterized in that, The query information is a query code containing a digital password corresponding to the merchant. The user terminal sends a verification request to the server, the server sends the query code to the user terminal, the user provides the digital password in the query code to the merchant's operator, the merchant's operator enters the digital password in the corresponding interface window of the merchant terminal's transaction application, and uploads the digital password to the server. The server obtains the digital password and compares it with the query information to complete the query verification.

4. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 1, characterized in that, The query information is a query link corresponding to the merchant. The user terminal sends a verification request to the server, and the server sends the query link to the user terminal. The query link forms a query link entry in the transaction application on the user terminal. When the user clicks the query link entry, a verification dialog box pops up. The merchant's operator enters the merchant password in the verification dialog box displayed on the user terminal. The merchant password is uploaded to the server as merchant authentication information. The server uses the pre-stored merchant authentication information bound to the merchant to perform verification. After successful verification, the server sends the second coupon fragment to the user terminal.

5. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 1, characterized in that, The query information is a second coupon fragment. The user terminal sends a redemption request to the server, and the server sends the second coupon fragment as query information to the merchant terminal. The merchant terminal encodes the received second coupon fragment to generate a query QR code and displays it on the display device's screen. The user terminal scans the query QR code with a camera and parses the scan result to obtain the second coupon fragment.

6. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 1, characterized in that, The asymmetric digital signature algorithm is an elliptic curve digital signature algorithm.

7. The intelligent reimbursement decision-making method based on multi-terminal perception according to any one of claims 1-6, characterized in that, The redemption request information includes the coupon identifier, user identifier, merchant identifier, and timestamp of the coupon to be redeemed.

8. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 7, characterized in that, The generation methods for the first and second coupon fragments include: combining user identifier, merchant identifier, and timestamp strings in a preset order to form a transaction time sequence string; calculating a hash value using a hash algorithm on the transaction time sequence string; using the hash value as a redemption salt value bound to the redemption request information; combining the coupon identifier and the redemption salt value in a predetermined order to form a first message body; using a server key stored on the server as the key for a preset message authentication code algorithm; performing a message authentication code operation on the first message body using the preset message authentication code algorithm to generate the first coupon fragment; combining the first coupon fragment and the redemption salt value to form a second message body; using the server key as the key for the message authentication code algorithm; performing a message authentication code operation on the second message body using the preset message authentication code algorithm to generate the second coupon fragment.

9. The intelligent reimbursement decision-making method based on multi-terminal perception according to claim 8, characterized in that, The message authentication code algorithm is a hash-based message authentication code algorithm.

10. An intelligent reimbursement decision-making system based on multi-terminal perception, characterized in that, It includes a user terminal, a merchant terminal, and a server, wherein the user terminal, merchant terminal, and server are respectively configured to execute the intelligent verification decision method based on multi-terminal perception as described in any one of claims 1-9.