TWI651677B - Log-in method for network bank account and netwok bank system apply log-in method thereof - Google Patents

Abstract

The invention discloses a method for logging in an online banking account, which is applied to an online banking system. The online banking system includes an account management server and a billing center server. The account management server is connected to a user device and a credential management center server through the network. The login method includes the following steps: the account management server receives a login account request from the user device; the account management server transmits a check account request to the account center server; and the account center server checks the authorization of the one of the use device The status of the voucher; the account center server transmits a failure status message to the account management server; and the account management server transmits the failure status information and a delete authorization voucher command to the use device.

Description

Online banking account login method and online banking system using the login method

The present invention relates to an internet financial method and system, and more particularly to an online banking account login method and an online banking system using the login method.

The high development of communications and network-related industries has also led to the booming of e-commerce, and consumers are increasingly demanding the electronic business of financial services. The financial industry has launched online banking for such needs, and financial institutions such as commercial banks provide various financial services to their users through the Internet. In recent years, due to the improvement of the performance of smart phones, mobile banking has been further proposed for use in electronic devices such as smart phones or tablet computers. Users can download online banking applications (Application, App) by operating a smart phone or tablet to conduct financial transactions such as transfer, audit, payment, and remittance.

When making financial transactions over the Internet, the most important thing is the security of the transaction. Regarding the technology of user identity authentication, it is currently mainly used to authorize credentials for user identity authentication. Specifically, the authorization certificate is issued by a credible third certification center, which is referred to as a credential management center server in this specification, and is issued after checking the identity of the user to indicate the identity and ability of the holder. Moreover, the issued authorization certificate is simultaneously stored in the credential management center server and the electronic device such as a smart phone or a tablet computer operated by the user, and is referred to as a use device.

When the user device operated by the user is lost, there may be other people (non-users) operating the user device to connect to the online banking system for financial transactions, which will seriously affect transaction security. The current practice is to send the lost message to the credential management center server by the online banking system after the user reports the loss, to cancel the authorization credential stored in the credential management center server. However, the authorization credentials stored by the end device still exist, so there is a risk of being violently cracked, which affects the security of the transaction. Therefore, there is a need for an online banking account login method. After the user reports that the user device is lost, if a non-user attempts to connect to the online banking account, the authorization certificate stored by the user device can be deleted. To avoid being hacked by violence.

The main purpose of the present invention is to provide an online banking account login method and an online banking system using the login method. When the online banking system receives the login account request, the authorization certificate corresponding to the user device can be checked first. If the status is invalid, the failure status information is sent and the authorization credential command is deleted to the user device to solve the problem that the authorization certificate stored by the user device cannot be deleted after the known user device is lost.

To achieve the above objective, the present invention provides a method for logging in an online banking account, which is applied to an online banking system including an account management server and a billing center server. The account management server is connected to a user device and a credential management center server through the network. The login method includes the following steps: the account management server receives a login account request from the user device; the account management server transmits a check account request to the account center server; and the account center server checks the authorization of the one of the use device The status of the voucher; the account center server transmits a failure status message to the account management server; and the account management server transmits the failure status information and a delete authorization voucher command to the use device.

To achieve the above object, the present invention further provides an online banking system for performing an online banking account login method. Internet banking system through a network and a user device and A credential management center server connection. The online banking system includes an account management server and a billing center server. The account management server is connected to the client device and the credential management center server through the network. The account management server includes a login operation module, and the login operation module receives a login account request from the user device and transmits a check account request. The account center server is electrically connected to the account management server and receives the check account request. The account center server includes a check module that checks the status of one of the authorization credentials corresponding to the user device and transmits a failure status message to the account management server. The account management server transmits the invalidation status information and a delete authorization credential command to the use device.

In an embodiment of the present invention, before the step of the account management server receiving a login account request from the user device, the method further includes the following steps: the account management server receives a device lost data from the user device, and transmits the data to the account. The central server; and the accounting center server change the authorization certificate corresponding to the user device to a failure state according to the lost data of the device.

In an embodiment of the present invention, the account management server further includes a report loss module, which receives a device lost data from the user device and transmits the data to the account center server.

In an embodiment of the present invention, the account center server includes a state change module, and the receiving device loses the data, and changes the authorization certificate corresponding to the user device to a failure state according to the device lost data.

In an embodiment of the present invention, the login method further includes the following steps: after receiving the failure status information by using the end device, executing the delete authorization credential instruction to delete the authorization credential stored in one of the user devices.

In an embodiment of the present invention, after the step of receiving the invalidation status information by the account management server, the method further includes the step of: transmitting a logout authorization credential request to the credential management center server.

In one embodiment of the invention, the report loss module transmits a logout authorization credential request to the credential management center server.

In an embodiment of the present invention, the accounting center server changes the authorization credential corresponding to the end device to an invalid state from an in-use state.

In an embodiment of the present invention, the state change module changes the authorization credential corresponding to the end device to an invalid state from an in-use state.

In an embodiment of the present invention, the online banking system further includes a customer service center server, and the account management server receives the lost data from the customer service center server.

In an embodiment of the present invention, the online banking system further includes a customer service center server, and after receiving a device lost message, the transmitting device loses the data to the account management server.

In one embodiment of the invention, the account management server receives device lost data from another consumer device.

According to the above, the online banking account login method and the online banking system using the login method can first check the authorization certificate corresponding to the user device when receiving the login account request through the online banking system. If the status is invalid, the failure status information is transmitted and the authorization credential command is deleted to the user device to prevent the internal authorization certificate from being violently cracked after the use device is lost, thereby improving the security of the online banking transaction.

1‧‧‧Internet Banking System

10‧‧‧Account Management Server

11‧‧‧Transmission module

12‧‧‧Memory Module

13‧‧‧ Login Operation Module

14‧‧‧Reporting Loss Module

20‧‧‧Accounting Center Server

21‧‧‧Transmission module

22‧‧‧Memory Module

23‧‧‧Check module

24‧‧‧State Change Module

30‧‧‧Customer Service Server

80, 80a, ..., 80n‧‧‧ use end device

81‧‧‧Authorization certificate

90‧‧‧Voucher Management Center Server

91‧‧‧Authorization certificate

S10~S284‧‧‧Steps

FIG. 1A is a schematic diagram of a usage environment of an embodiment of an online banking account system of the present invention.

FIG. 1B is a schematic diagram of an embodiment of the online banking account system shown in FIG. 1A.

2A and 2B are flow diagrams showing an embodiment of an online banking account login method according to an embodiment of the present invention.

FIG. 3 is a flow chart showing the steps of the online banking account login method performed by the terminal device.

In order to enable the reviewing committee to better understand the technical contents of the present invention, the preferred embodiments are described below.

First, because financial institutions have to deal with a large amount of accounting data, they usually have a core accounting server dedicated to processing accounting data, and additionally have a pre-job server. The pre-service server is connected to other servers and user devices as a platform for data transmission, and can handle general operations unrelated to accounting, such as online banking account login, problem elimination, etc., and related to accounting. The message is sent to the core accounting server and processed by the core accounting server.

The online banking system 1 of the present embodiment also includes two servers, an account management server 10 and a billing center server 20, as shown in FIG. 1A, and FIG. 1A is one of the online banking account systems of the present invention. A schematic diagram of the use environment of the embodiment. Among them, the account management server 10 is used as a pre-work server, and is mainly used for a platform for transmitting data, and the account center server 20 serves as a core accounting server for processing jobs related to the golden stream. Further, the account management server 10 and the account center server 20 are electrically connected to each other, and the hardware structure thereof will be described below.

FIG. 1B is a schematic diagram of an embodiment of the online banking account system shown in FIG. 1A. Please refer to FIG. 1A and FIG. 1B simultaneously. Specifically, the account management server 10 of the embodiment includes a transmission module 11, a memory module 12, a login operation module 13, and a loss reporting module 14. Similarly, the accounting center server 20 also includes a transmission module 21, a memory module 22, a verification module 23, and a state change module 24.

It should be noted that, in addition to being configurable as a hardware device, a software program, a firmware, or a combination thereof, each of the above modules may also be configured by a circuit loop or other suitable type; and, in addition, each module may be configured in a separate type. It can also be combined with the type configuration. In a preferred embodiment, each module is stored in a software program on a memory, and each module is executed by a processor (not shown) in the online banking system 1 to achieve the functions of the present invention. In addition, the present embodiment is merely illustrative of preferred embodiments of the present invention, and in order to avoid redundancy, all possible combinations of variations are not described in detail. However, those of ordinary skill in the art will appreciate that the various modules or components described above are not necessarily required. And be true The invention may also include other conventional modules or components of more detail. Each module or component may be omitted or modified as needed, and no other modules or components may exist between any two modules.

The account management server 10 and the account center server 20 are connected to each other by the transmission modules 11, 21 for data transmission. In addition to the data transfer within the online banking system 1, the account management server 10 can also be connected to the client devices 80, 80a, ..., 80n and the credential management center server 90 via the network. It should be noted that the account management server 10 can be connected to a plurality of user devices 80, 80a, ..., 80n. The following uses a user device 80 as an example for description.

In other words, the account management server 10 performs data transmission by the transmission module 11 with the user terminal device 80 and the voucher management center server 90. The manner of data transmission between the account management server 10 and the account center server 20, the user terminal device 80, and the voucher management center server 90 is different according to the hardware architecture of each other, specifically, It is compatible with transmission data technologies such as Ethernet, 3G, Wi-Fi or 4G LTE. Preferably, the account management server 10 can be connected to the account center server 20 and the credential management center server 90 via a virtual private network (VPN).

Moreover, the account management server 10 of the present embodiment can provide an operation interface of the online bank account for the user device 80 to operate in connection to apply for an online bank account and obtain the certificate issued by the certificate management center server 90. Authorization credentials. For clarity of explanation, FIG. 1A and the embodiment give the authorization certificate 81 stored in the use terminal device 80 to the reference numeral 81, and the authorization certificate 91 stored in the voucher management center server 90 is given the reference numeral 91. After the authorization device 81 is obtained by using the terminal device 80, the user U can operate the user device 80 to perform financial transactions such as transfer, audit, payment, and remittance. The user device U is an electronic device operated by the user U, and may be an electronic device that executes a computer software, such as a smart phone, a tablet computer (PAD), a personal computer, etc., which is not limited by the present invention. Take a smart phone as an example.

The login method of the online bank account of the present embodiment (hereinafter referred to as the login method) is applied to the online banking system 1 and the usage device 80. . 2A and 2B are flow diagrams showing an embodiment of an online banking account login method according to an embodiment of the present invention. It should be noted that the login method in this embodiment is to solve the problem that the authorization device 81 may be violently cracked after the use device 80 is lost. Therefore, FIG. 2A is a flow chart of the execution steps of the login method of the embodiment when the user U notifies the user device 80 that the user device 80 is lost, and FIG. 2B is the embodiment for the operation of the lost user device 80 to log in to the online bank account. A flow chart of the execution steps of the login method. Please refer to FIG. 1A, FIG. 1B and FIG. 2A for the purpose of understanding the present invention.

Step S10: The call center server 30 receives a device lost message.

The online banking system 1 further includes a customer service center server 30. When the user terminal 80 is lost, the user U usually directly calls the customer service center. FIG. 1A is indicated by a dotted line, and the customer service personnel assists in reporting the loss. In other words, when the customer service personnel receives the lost call and then confirms the identity of the user U, the user can enter the missing message from the user terminal 80 on the computer of the customer service center, and the service center server 30 can receive a device lost message.

Step S11: The customer service center server 30 generates a device lost data according to the device lost message, and transmits it to the account management server 10.

After receiving the device lost message, the customer service center server 30 may generate a device lost data according to the device lost message, which includes the code of the lost user device 80 or the number of the authorization certificate 81 stored therein. Next, the call center server 30 can transmit the device lost data to the account management server 10.

Step S12: The account management server 10 receives the device lost data.

In this embodiment, the user U notifies the user terminal 80 of the lost message through the customer service center, so the transmission module 11 of the account management server 10 can receive the device lost data from the customer service center server 30.

In other embodiments, the user U may also lose the data to the account management server 10 by using another electronic device having the identity verification device, for example, using the terminal device 80a. In other words, the transmission module 11 of the account management server 10 can also receive the lost data from the other device 80a, which is not limited by the present invention. After the account management server 10 confirms the identity of the user terminal 80a, that is, after confirming the authenticity of the lost device, the subsequent steps can be performed.

Step S13: The account management server 10 transmits the lost data to the account center server 20.

After receiving the lost data, the transmission module 11 transmits the data to the loss reporting module 14. As described above, the device lost data includes the code of the lost user device 80 or the number of the authorization certificate 81 stored therein, so that the report loss module 14 can know the online bank account corresponding to the user device 80, preferably. Can record the loss report. Moreover, the lost operation module 14 can transmit the device lost data to the account center server 20 through the transmission module 11.

Step S14: The account center server 20 updates the corresponding authorization certificate to a failure state according to the device lost data.

The device lost data is received by the transmission module 21 of the accounting center server 20 and transmitted to the state change module 24. Then, the state change module 24 searches the memory module 22 for the authorization corresponding to the user device 80 according to the device lost data, that is, the code of the user device 80 or the information of the number of the authorization certificate 81 stored therein. Document 81 and change it to a failed state.

Specifically, the memory module 22 stores the status of each authorization credential. For example, after the end device 80 obtains the authorization credential 81, the memory module 22 can store the information that the authorization credential 81 is in use state; After receiving the lost data of the device, the module 24 can update the data stored in the memory module 22 and change it to "the authorization certificate 81 is in a failed state". News. In short, after the state change module 24 receives the lost data, the state change module 24 can change the authorization credential 81 corresponding to the user device 80 to a failure state according to the device lost data.

Moreover, a specific state is generally indicated by a different flag. For example, the authorization credential 81 has an "in-use flag" to represent it as "in-use state"; if it has a "failed flag", it represents a "failed state". Therefore, when the state change module 24 receives the lost data of the device, the memory module 22 searches for the authorization credential 81 corresponding to the user device 80, and changes the "in-use flag" to the "failed flag".

In other embodiments, if the user U subsequently finds the user device 80, the method can be used to notify the cancellation of the loss by referring to the foregoing method (through the customer service center server 30 or other electronic device having the identity verification device), and the state change module 24 can The authorization credential 81 is changed from the failed state back to the in-use state.

However, after the end device 80 is reported to be lost, if the user device 80 is still connected to the account management server 10, the subsequent steps are performed (after step S20), please refer to FIG. 1A, FIG. 1B and FIG. 2B simultaneously.

Step S20: The use terminal device 80 transmits a login account request to the account management server 10.

When the user U operates the use device 80 to log in to the online bank account, the use terminal device 80 transmits a login account request to the account management server 10, which is a general operation for logging into the online bank account. However, after the end device 80 is reported to be lost, if the user device 80 is still connected to the account management server 10 and attempts to log in to the online bank account, it is highly probable that other people (non-users) operate the user device. 80. In order to prevent others from attempting to obtain the authorization credential 81 in an unlawful manner, the lost-end user device 80 can be prohibited from logging into the online banking account by the subsequent steps.

Step S21: The account management server 10 receives the login account request.

The transmission module 11 of the account management server 10 receives a login account request from the user device 80 and transmits it to the login operation module 13 to perform the login operation. It should be noted again that the use of the end device 80 has been reported to be lost.

Step S22: The account management server 10 transmits a check account request to the account center server.

In this embodiment, after the login operation module 13 receives the login account request, it does not directly connect the corresponding device (the use device 80) to the online banking system 1, but first transmits a check account request to Accounting Center Server 20. In other words, after receiving the login account request, the login operation module 13 of the present embodiment may first generate a verification account request, which includes information of the code of the user device 80 that is connected to request the login or the number of the authorization certificate 81 stored therein. Similarly, the login operation module 13 transmits the verification account request to the account center server 20 via the transmission module 11.

Step S23: The account center server 20 checks the status of the authorization credential corresponding to the user device 80.

In this embodiment, the account center server 20 receives the check account request through the transmission module 21, and transmits it to the checking module 23, and the checking module 23 checks the status of one of the authorization credentials corresponding to the user device 80. Specifically, the verification module 23 can request the verification account to request the code of the user device 80 that the connection request to log in, or the authorization certificate 81 number stored by the device (the use device 80) that requests the login. Then, the checking module 23 can query the memory module 22 for the status of the authorization credential 81 corresponding to the user device 80. This embodiment is a failure state.

Specifically, since the user terminal device 80 of the present embodiment is a device that has been reported to be lost, and in step S14 (FIG. 2B), the authorization certificate 81 has been changed to the invalid state. Therefore, in step S23, the checking module 23 can query the memory module 22 for the authorization corresponding to the user device 80. Certificate 81 is in a failed state. If the same flag indicates a specific state, it can be judged as a failure state by the "failure flag".

Step S24: The account center server 20 transmits a failure status message to the account management server 10.

The verification module 23 knows in step S23 that the authorization credential 81 corresponding to the user device 80 is in a failed state. Then, the verification module 23 can transmit a failure status information to the account management server 10 through the transmission module 21.

Step S25: The account management server 10 receives the failure status information.

The transmission module 11 of this embodiment receives the failure status information and transmits it to the login operation module 13. The login operation module 13 receives the failure status information, and knows that the authorization certificate of the user device 80 that the connection request is logged in is in a invalid state, and step S26 and step S27 can be performed.

It should be noted that, in other embodiments, if the authorization credential of the user device that is requested to log in to the connection is in the in-use state, the in-use status information is directly transmitted to the user device, and the connection is kept, so that the user U can operate the end device (not lost) to log in to the online bank account.

Step S26: The account management server 10 transmits a logout authorization credential request to the credential management center server 90.

After the login operation module 13 receives the failure status information, a logout authorization credential request can be generated, and the logout authorization credential request is transmitted to the credential management center server 90 through the transmission module 11 to request the credential management center server 90 to The stored authorization certificate 91 is cancelled. After the voucher management center server 90 cancels the authorization voucher 91, the user device 80 is also unable to log in to the online bank account by using the stored authorization voucher 81.

In other words, after the end device 80 is used to report the loss, and the voucher management center server 90 receives the logout authorization credential request from the account management server 10, and cancels the corresponding authorization credential 91, the use device 80 can no longer use the authorization credential 81. Log in to your online banking account. That is, the connection behavior of the end device 80 after the notification of the loss is invalid.

Further, the account management server 10 can transmit the failure status information to the use side device 80 in addition to transmitting the logout authorization voucher request to the voucher management center server 90 (step S26) (step S27). The present invention does not limit the sequence of steps S26 and S27, and can also be operated at the same time. For convenience of explanation, step S26 will be described first.

Step S27: The account management server 10 transmits the invalidation status information and a delete authorization credential command to the user device 80.

After the login operation module 13 receives the failure status information in step S25, the failure status information can be further transmitted to the use terminal device 80 that has requested the login and has been reported to be lost through the transmission module 11. In addition, the billing center server 20 also transmits a delete authorization credential command to the consumer device 80.

It should be noted that the failure status information and the deletion authorization certificate instruction may be transmitted to the user device 80 at the same time or at different times, and the present invention is not particularly limited. Taking the simultaneous transmission as an example, after the login operation module 13 receives the failure status information, the failure status information and the deletion authorization certificate instruction can be simultaneously transmitted to the user device 80. Taking the different time transfer as an example, the end device 80 is used to connect the account management server 10 and download the online banking application (App), and the application includes the delete authorization credential command. In other words, when the application device 80 downloads the application, the account management server 10 first transmits the delete authorization credential command to the user device 80, and stores the delete authorization credential command to the user device 80. After the use of the end device 80 is reported to be lost, the failure status information is transmitted to the use end device 80, and the use device 80 performs step S28.

Step S28: After receiving the failure status information by using the end device 80, executing the delete authorization credential instruction.

Regardless of whether the user device 80 receives the failure status information and deletes the authorization credential command at the same time, or uses the end device 80 to download the online banking application, the instruction to delete the authorization credential is received first, and the receiving device 80 receives the invalidation. After the status information, the delete authorization credential command is executed to delete the authorization credential 81 stored in the user device 80. Therefore, in use After the end device 80 is reported to be lost, the online banking system 1 of the present embodiment can still be transmitted when the user device 80 transmits the login account request to the account management server 10 (step S20) to attempt to log in to the online banking account. Steps S21 to S25 and S27 are executed to prompt the user terminal device 80 to delete the authorization credential 81 stored in the user device 80. Therefore, it is possible to prevent the interested person from obtaining the authorization device 81 by violently cracking after using the terminal device 80, thereby improving the security of the online banking transaction.

In general, steps S20 and S28 of the login method are the steps performed by the end device 80, and the application using the login method executed by the end device 80 is as shown in FIG. That is, FIG. 3 is a flow chart showing the steps of the online bank account login method performed by the terminal device, which will be further described below with reference to FIG. 3.

First, the user device 80 also transmits a login account request to the account management server 20 (step S20), and requests to log in to the online bank account by connecting, and step S28 can be further divided into four sub-steps (steps S281-S284), indicating as follows.

The use terminal device 80 receives the authorization voucher status information from the account management server 20 (step S281), and then determines whether the authorization voucher status information is invalid (step S282). Specifically, the authorization credential status information includes invalid status information and in-use status information (refer to the foregoing step S14). If the authorization credential status information is the invalid status information, it indicates that the use end device 80 has reported the loss, and the authorized credential 81 has the risk of being stolen, and then proceeds to step S283 to execute the delete authorization credential command, and deletes the stored on the use end device. 80 authorization certificate 81. In other embodiments, if the authorization credential status information is the in-use status information, the user device requesting the login is in a normal use state, and step S284 may be performed to continue to log in to the online banking account.

In addition, due to the login method of this embodiment, after the use device 80 is reported to be lost, the request is sent to the voucher management center server 90 by transmitting the logout authorization credential (step S26), and the invalidation status information and the deletion authorization credential command are transmitted to the use end. Device 80 (step S27), to avoid After the use of the device 80 is avoided, the intent-free person attempts to obtain the authorization certificate 81 by means of brute force. Therefore, after the user U newly acquires a new user device, the user can re-download the online banking application, and after obtaining the identity authentication by operating the new user device, the voucher management center server 90 can be deleted and restored. The authority of the authorization certificate 91, and the verification module 23 of the account center server 20 can also change the status of the authorization certificate 81 from "invalid state" to "re-open state" to facilitate the opening and use of the new user device. .

In summary, the online banking account login method and the online banking system using the login method according to the present invention can first check the authorization certificate corresponding to the user device when receiving the login account request through the online banking system. If the status is invalid, the failure status information is transmitted and the authorization credential command is deleted to the user device to prevent the internal authorization certificate from being violently cracked after the use device is lost, thereby improving the security of the online banking transaction.

It should be noted that the above is only an embodiment, and is not limited to the embodiment. Therefore, those who do not depart from the basic structure of the present invention should be bound by the scope of the patent, and the scope of the patent application shall prevail.

Claims (9)

An online banking account login method is applied to an online banking system, which includes an account management server and a billing center server, the account management server through the network and a user device and a credential management center The server is connected. The login method includes the following steps: the account management server receives a device lost data from another user device and transmits the lost data to the account center server; the account center server loses data according to the device. Changing the authorization credential corresponding to the user device to a failed state; the account management server receives a login account request from the user device; the account management server transmits a check account request to the account center server; The account center server checks the status of one of the authorization credentials corresponding to the user device; the account center server transmits a failure status message to the account management server; and the account management server transmits the failure status information and a The authorization credential command is deleted to the user device. The method for logging in an online banking account as described in claim 1 further includes the following steps: after receiving the invalidation status information, the using device performs the delete authorization credential instruction to delete the device stored in the user device. An authorization credential. The method for logging in an online banking account according to claim 1, wherein the step of the account management server receiving the invalidation status information further comprises the step of: transmitting a cancellation authorization certificate request to the credential management center servo Device. The method for logging in an online banking account according to claim 1, wherein the online banking system further comprises a customer service center server, and the account management server receives the lost data of the device from the customer service center server. The method for logging in to an online banking account according to claim 1, wherein the accounting center server changes the authorization credential corresponding to the user device from an in-use state to the invalid state. An online banking system for performing an online banking account login method, the online banking system is connected to a user terminal device and a credential management center server through a network, the online banking system comprising: an account management system The server is connected to the user device and the credential management center server through a network, and the account management server includes a report loss operation module and a login operation module, and the report loss operation module is received from another use end device. A device loses the data and transmits it to the account center server, the login operation module receives a login account request from the user device, and transmits a check account request; and a account center server, and the account management The server is electrically connected, and receives the check account request, the account center server includes a state change module and a check module, and the state change module receives the lost data of the device, and changes the use according to the lost data of the device. The authorization device corresponds to the authorization certificate to a failure state, and the verification module checks the authorization certificate corresponding to the one of the use device State, and sends a failure status information to the account management server, the management server transmits the account status information, and a failure to delete command to the authorization ticket end use device. The online banking system of claim 6, wherein the state change module changes the authorization credential corresponding to the user device from an in-use state to the invalid state. The online banking system of claim 6, wherein the loss management module of the account management server transmits a logout authorization credential request to the credential management center server. For example, the online banking system described in claim 6 of the patent scope further includes: A customer service center server receives the lost information of the device from the other user terminal device, and then transmits the device lost data to the account management server.