TWM586414U - User login location GPS detection alert device of mobile internet banking application - Google Patents

User login location GPS detection alert device of mobile internet banking application Download PDF

Info

Publication number
TWM586414U
TWM586414U TW108208306U TW108208306U TWM586414U TW M586414 U TWM586414 U TW M586414U TW 108208306 U TW108208306 U TW 108208306U TW 108208306 U TW108208306 U TW 108208306U TW M586414 U TWM586414 U TW M586414U
Authority
TW
Taiwan
Prior art keywords
user
mobile
unit
login
location
Prior art date
Application number
TW108208306U
Other languages
Chinese (zh)
Inventor
宋俊慶
Original Assignee
臺灣銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 臺灣銀行股份有限公司 filed Critical 臺灣銀行股份有限公司
Priority to TW108208306U priority Critical patent/TWM586414U/en
Publication of TWM586414U publication Critical patent/TWM586414U/en

Links

Landscapes

  • Position Fixing By Use Of Radio Waves (AREA)
  • Telephonic Communication Services (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

一種行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,係設於一具有全球定位系統(Global Positioning System,GPS)功能之行動裝置中,並與行動網路銀行連結,其包括一處理單元、一驗證單元、一定位單元、一登入位置誤差設定單元、一儲存單元、一位置比對單元、以及一位置結果產製單元所構成。藉此,可為用戶以行動裝置登入行動網路銀行時,除了使用者帳號、密碼以外,更提供使用者安全警示機制,自動以使用者之目前所在之地理位置資料作為加強使用者身分驗證,無須強制再驗證其他身份確認機制,並可簡訊通知用戶其行動網路銀行正被非法使用者嘗試登入的同時,立即收到非法使用者現在所在之地理位置資料,進而可提供政府偵辦網路犯罪之相關單位佐證資訊。 A GPS detection and warning device for a mobile Internet banking application user login location is provided in a mobile device with a Global Positioning System (GPS) function, and is connected to a mobile online bank, which includes a processing unit , A verification unit, a positioning unit, a login position error setting unit, a storage unit, a position comparison unit, and a position result production unit. In this way, when users log in to Mobile Internet Banking with a mobile device, in addition to the user account and password, a user security alert mechanism is also provided to automatically use the user's current geographical location data as a way to strengthen user identity verification. There is no need to force re-authentication of other identity confirmation mechanisms, and users can be notified by text message that their mobile online banking is being attempted by an illegal user, and immediately receive the geographic location information of the illegal user, which can provide government investigation of cyber crimes Relevant units to support the information.

Description

行動網路銀行應用程式用戶登入位置GPS偵測警示裝置 Mobile Internet Banking App User Login Location GPS Detection Warning Device

本創作有關於一種行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,尤指涉及一種以行動裝置登入行動網路銀行,特別係指除了使用者帳號、密碼以外,能提供使用者安全警示機制,以加強使用者身分驗證者。 This creation relates to a GPS detection warning device for a mobile Internet banking application user's login location, and in particular relates to a mobile Internet banking login with a mobile device, in particular, it can provide user security alerts in addition to user accounts and passwords Mechanism to strengthen user identity verification.

行動裝置之便利性大大改變新世代民眾之生活,為提供更貼近民眾生活所需之功能,行動裝置也相對儲存了大量個人之隱密資訊,更多人亦以行動裝置為帳務理財工具,登入行動網路銀行辦理轉帳繳費等作業。現行各金融機構提供之行動網路銀行,皆以使用者代號及密碼為登入要件,而行動裝置上之資訊安全與否,因個別使用者之習慣而異。換言之,使用者代號及密碼可能因為安裝來路不明之軟體,而被有心人士竊取,造成個人財物或權益損失。 The convenience of mobile devices has greatly changed the lives of the people of the new generation. In order to provide functions that are closer to the lives of people, mobile devices also relatively store a large amount of confidential information of individuals. More people also use mobile devices as accounting tools. Log in to your mobile Internet bank for payment transfers and other operations. The current mobile internet banking provided by various financial institutions takes user IDs and passwords as login requirements, and whether the information on mobile devices is secure or not depends on the habits of individual users. In other words, user codes and passwords may be stolen by people with intentional installation of software from unknown sources, resulting in loss of personal property or rights.

以現階段來看,各銀行提供予客戶使用之行動網路銀行應用程式(APP),於客戶輸入錯誤之使用者代號或密碼時,會以電子信箱(e-mail)或簡訊通知申請人,以利申請人知悉並預作防範(例如:建議儘速更改代號或密碼)。但是申請人只能知道有人試圖登入自己之網路銀行帳戶,卻無從得知是由何處試圖登入,無法提供偵辦網路犯罪之相關單位作為佐證資訊。故,一般習用者係無法符合使用者於實際使用時之所需。 At the current stage, the mobile Internet banking application (APP) provided by each bank to the customer will notify the applicant by e-mail or text message when the customer enters the wrong user code or password. In order for the applicant to know and take precautions (for example, it is recommended to change the code or password as soon as possible). However, the applicant can only know that someone is trying to log in to their online bank account, but they cannot know where they are trying to log in, and they cannot provide relevant units for investigating online crimes as supporting information. Therefore, the general user cannot meet the needs of the user in actual use.

本創作之主要目的係在於,克服習知技藝所遭遇之上述問題並提 供一種可為用戶以行動裝置登入行動網路銀行時,除了使用者帳號、密碼以外,更提供使用者安全警示機制,自動以使用者之目前所在之地理位置資料作為加強使用者身分驗證,無須強制再驗證其他身份確認機制,並可簡訊通知用戶其行動網路銀行正被非法使用者嘗試登入的同時,立即收到非法使用者現在所在之地理位置資料,進而可提供政府偵辦網路犯罪之相關單位佐證資訊之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置。 The main purpose of this creation is to overcome the above problems encountered in conventional techniques and to raise Provides a way for users to log in to Mobile Internet Banking with a mobile device. In addition to the user account and password, it also provides a user security alert mechanism to automatically use the user's current geographic location data to strengthen user identity verification without the need for Forced re-authentication of other identity confirmation mechanisms, and can inform users that their mobile Internet banking is being attempted by an illegal user, and immediately receive the geographic location information of the illegal user's current location, which can provide government investigation of cyber crimes. Mobile Internet banking application users who corroborate information from relevant units. GPS detection warning device.

為達以上之目的,本創作係一種行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,係設於一行動裝置中,並與行動網路銀行連結,其包括:一處理單元,可作為該行動網路銀行應用程式用戶登入位置GPS偵測警示裝置運作時之處理與控制;一驗證單元,其連接該處理單元,用於驗證登入該行動網路銀行之帳號及密碼;一定位單元,其連接該處理單元,用於登入該行動網路銀行時,自動偵測目前所在之地理位置資料;一登入位置誤差設定單元,其連接該處理單元,可供設定一允許登入來源地理位置之誤差值;一儲存單元,其連接該處理單元,至少可儲存註冊該行動網路銀行之行動裝置之行動門號、登入該行動網路銀行之帳號及密碼、目前所在之地理位置資料、以及允許登入來源地理位置之誤差值,其中該目前所在之地理位置資料包含歷次成功登入之地理位置資料;一位置比對單元,其連接該處理單元,可於每一次登入時,將現在所在之地理位置資料與該儲存單元中之歷次成功登入之地理位置資料作一比對以產生一差異值,並判斷該差異值是否於該誤差值範圍內;以及一位置結果產製單元,其連接該處理單元,可依據該位置比對單元之比對內容產製登入位置結果,並依據該登入位置結果判斷是否允許使用者登入,其中,當該差異值在該誤差值範圍內,係允許該使用者登入,當該差異值在該誤差值範圍外,係 產生一次性密碼(One Time Password,OTP),並依據該儲存單元中之行動裝置之行動門號,以一驗證簡訊將該OTP密碼及該現在所在之地理位置資料發送至該使用者註冊之行動門號,使非法使用者無法取得該OTP密碼難以登入該行動網路銀行,而合法使用者可經由該驗證簡訊取得該OTP密碼並輸入至該驗證單元,該驗證單元則透過該OTP密碼驗證該使用者之身份為合法使用者後允許該使用者登入,同時詢問該使用者是否將該現在所在之地理位置資料記錄至該儲存單元中,並提供合法使用者經由該驗證簡訊發現該行動網路銀行正被非法使用者嘗試登入時,可自動產生註記並提供警示通知政府單位。 In order to achieve the above purpose, this creation is a mobile internet banking application user login location GPS detection warning device, which is set in a mobile device and connected with mobile internet banking, which includes: a processing unit, which can be used as The processing and control of the mobile Internet banking application user's login location when the GPS detection and warning device operates; an authentication unit connected to the processing unit for verifying the account and password for logging in to the mobile online banking; a positioning unit, It is connected to the processing unit and is used to automatically detect the current geographic location data when logging in to the mobile internet bank. A login location error setting unit is connected to the processing unit and can be used to set an error that allows the geographical location of the login source. Value; a storage unit connected to the processing unit, which can at least store the mobile door number of the mobile device that registered the mobile internet bank, the account and password for logging in to the mobile internet bank, the current geographic location information, and allowed login The error value of the source geographic location, where the current geographic location data includes previous successful logins Geographical location data; a location comparison unit connected to the processing unit that can compare the current geographic location data with the geographical location data of previous successful logins in the storage unit at each login to generate a The difference value, and determine whether the difference value is within the range of the error value; and a position result production unit, which is connected to the processing unit, can produce the registration position result based on the comparison of the position comparison unit, and according to the The result of the login position determines whether the user is allowed to log in. When the difference value is within the error value range, the user is allowed to log in. When the difference value is outside the error value range, the system Generate a One Time Password (OTP), and send the OTP password and the current geographic location data to the registered action of the user with a verification message based on the mobile door number of the mobile device in the storage unit The door number makes it impossible for an illegal user to obtain the OTP password and log in to the mobile internet bank, and a legitimate user can obtain the OTP password through the verification message and enter it into the verification unit, and the verification unit verifies the After the user ’s identity is a legitimate user, the user is allowed to log in. At the same time, the user is asked whether to record the current geographic location data in the storage unit, and provide the legitimate user to discover the mobile network through the verification message. When a bank is being tried to log in by an illegal user, it can automatically generate a note and provide a warning to notify the government unit.

於本創作上述實施例中,該行動裝置係為一具有全球定位系統(Global Positioning System,GPS)功能之智慧型手機、平板電腦、筆記型電腦、或穿戴式裝置者。 In the above-mentioned embodiment of the present invention, the mobile device is a smart phone, a tablet computer, a notebook computer, or a wearable device with a Global Positioning System (GPS) function.

於本創作上述實施例中,該驗證簡訊發送至該使用者註冊之行動門號後,該處理單元係指示該驗證單元顯示簡訊驗證碼輸入頁面供該使用者輸入該OTP密碼。 In the above-mentioned embodiment of the present invention, after the verification message is sent to the mobile gate number registered by the user, the processing unit instructs the verification unit to display a message verification code entry page for the user to enter the OTP password.

於本創作上述實施例中,該誤差值範圍設定為30~200公尺。 In the above embodiment of the present invention, the range of the error value is set to 30 ~ 200 meters.

於本創作上述實施例中,該處理單元於接收到由該行動裝置之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置首次傳送之註冊資訊時,自動記錄目前所在之地理位置資料至該儲存單元。 In the above embodiment of the present invention, when the processing unit receives the registration information transmitted by the mobile internet banking application user login location GPS detection warning device for the first time from the mobile device, it automatically records the current geographical location data to the Storage unit.

於本創作上述實施例中,該定位單元為一全球定位系統,用於接收一衛星定位訊號,該處理單元依據該衛星定位訊號以產生該地理位置資料,該地理位置資料包含經度與緯度之屬性資料。 In the above embodiment of the present invention, the positioning unit is a global positioning system for receiving a satellite positioning signal, and the processing unit generates the geographic position data according to the satellite positioning signal, and the geographic position data includes attributes of longitude and latitude data.

於本創作上述實施例中,該處理單元為中央處理器。 In the above embodiment of the present invention, the processing unit is a central processing unit.

於本創作上述實施例中,該儲存單元至少包括有一使用者與行動裝置資料庫、一地理位置資料庫、以及一允許誤差值資料庫。 In the above embodiment of the present invention, the storage unit includes at least a user and mobile device database, a geographic location database, and an allowable error value database.

於本創作上述實施例中,該使用者與行動裝置資料庫可儲存註冊該行動網路銀行之行動裝置之行動門號、與登入該行動網路銀行之帳號及密碼,該地理位置資料庫可儲存目前所在之地理位置資料,該允許誤差值資料庫可儲存允許登入來源地理位置之誤差值。 In the above-mentioned embodiment of the present invention, the user and mobile device database can store the mobile door number of the mobile device registered with the mobile online bank, and the account and password for logging in to the mobile online bank. The geographical location database can Store the current geographical location data. The allowable error value database can store the error value of the allowed login source geographic location.

於本創作上述實施例中,該位置結果產製單元至少包括一簡訊產製模組及一非法註記產製模組。 In the above-mentioned embodiment of the present creation, the location-result production unit includes at least one SMS production module and an illegal annotation production module.

於本創作上述實施例中,該簡訊產製模組可依據驗證使用者所需之OTP密碼及該使用者現在所在之地理位置資料產製驗證簡訊,該非法註記產製模組可依據該驗證簡訊對該使用者是合法使用者或非法使用者註記警示,並依註記結果,產製非法使用者現在所在之地理位置資料,並將產製之非法使用者現在所在之地理位置資料作為通知政府單位之佐證。 In the above-mentioned embodiment of this creation, the SMS production module can produce a verification message based on the OTP password required for verifying the user and the geographic location data of the user's current location. The illegal annotation production module can be based on the verification The newsletter warns the user whether it is a legal user or an illegal user, and according to the result of the note, the current geographical location information of the illegal user is produced, and the current geographical location information of the illegal user is produced as a notification to the government Proof of the unit.

1‧‧‧處理單元 1‧‧‧ processing unit

2‧‧‧驗證單元 2‧‧‧verification unit

3‧‧‧定位單元 3‧‧‧ positioning unit

4‧‧‧登入位置誤差設定單元 4‧‧‧ Login position error setting unit

5‧‧‧儲存單元 5‧‧‧Storage unit

51‧‧‧使用者與行動裝置資料庫 51‧‧‧User and mobile device database

52‧‧‧地理位置資料庫 52‧‧‧Geographic database

53‧‧‧允許誤差值資料庫 53‧‧‧Allowable error database

6‧‧‧位置比對單元 6‧‧‧Position matching unit

7‧‧‧位置結果產製單元 7‧‧‧ position result production unit

71‧‧‧簡訊產製模組 71‧‧‧News Production Module

72‧‧‧非法註記產製模組 72‧‧‧ Illegal annotation production module

第1圖,係本創作之方塊示意圖。 Figure 1 is a block diagram of this creation.

請參閱『第1圖』所示,係本創作之方塊示意圖。如圖所示:本創作係一種行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,係設於一行動裝置中,該行動裝置可為一具有全球定位系統(Global Positioning System,GPS)功能之智慧型手機、平板電腦、筆記型電腦、或穿戴式裝置者。本創作所提行 動網路銀行應用程式用戶登入位置GPS偵測警示裝置,係包括一處理單元1、一驗證單元2、一定位單元3、一登入位置誤差設定單元4、一儲存單元5、一位置比對單元6、以及一位置結果產製單元7所構成。 Please refer to "Figure 1" for a block diagram of this creation. As shown in the figure: this creation is a GPS detection and warning device for the mobile Internet banking application user's login location. It is set in a mobile device. The mobile device can have a Global Positioning System (GPS) function. Smartphones, tablets, laptops, or wearables. References in this creation Mobile Internet banking application user login location GPS detection warning device, which includes a processing unit 1, a verification unit 2, a positioning unit 3, a login position error setting unit 4, a storage unit 5, a position comparison unit 6, and a position-resulting production unit 7.

上述所提之處理單元1可為中央處理器,用以作為該驗證單元2、該定位單元3、該登入位置誤差設定單元4、該儲存單元5、該位置比對單元6與該位置結果產製單元7,運作時之運算、控制、處理、編碼、解碼與各式驅動指令之下達。 The processing unit 1 mentioned above may be a central processing unit, used as the verification unit 2, the positioning unit 3, the login position error setting unit 4, the storage unit 5, the position comparison unit 6 and the position result. The control unit 7 provides operation, control, processing, encoding, decoding, and various driving instructions.

該驗證單元2連接該處理單元1,用於驗證登入該行動網路銀行之帳號及密碼。 The verification unit 2 is connected to the processing unit 1 and is used to verify the account and password for logging in to the mobile internet bank.

該定位單元3連接該處理單元1,用於登入該行動網路銀行時,自動偵測目前所在之地理位置資料。該定位單元3為一全球定位系統,用於接收一衛星定位訊號,該處理單元1依據該衛星定位訊號以產生該地理位置資料,該地理位置資料包含經度與緯度之屬性資料。 The positioning unit 3 is connected to the processing unit 1 and is used to automatically detect the current geographic location data when logging in to the mobile internet bank. The positioning unit 3 is a global positioning system for receiving a satellite positioning signal. The processing unit 1 generates the geographical position data according to the satellite positioning signal, and the geographical position data includes attribute data of longitude and latitude.

該登入位置誤差設定單元4連接該處理單元1,可供設定一允許登入來源地理位置之誤差值,且該誤差值範圍設定為30~200公尺。 The login position error setting unit 4 is connected to the processing unit 1 and can be used to set an error value for the geographical location of the allowed login source, and the error value range is set to 30 ~ 200 meters.

該儲存單元5連接該處理單元1,其至少包括有一使用者與行動裝置資料庫51、一地理位置資料庫52、以及一允許誤差值資料庫53。該使用者與行動裝置資料庫51可儲存註冊該行動網路銀行之行動裝置之行動門號、與登入該行動網路銀行之帳號及密碼,該地理位置資料庫52可儲存目前所在之地理位置資料,該允許誤差值資料庫53可儲存允許登入來源地理位置之誤差值,其中該目前所在之地理位置資料包含歷次成功登入之地理位置資料。 The storage unit 5 is connected to the processing unit 1 and includes at least a user and mobile device database 51, a geographic location database 52, and an allowable error value database 53. The user and mobile device database 51 can store the mobile door number of the mobile device registered with the mobile online bank, and the account and password for logging in to the mobile online bank, and the geographical location database 52 can store the current geographical location Data, the allowable error value database 53 may store the allowable error of the geographical location of the log-in source, wherein the current geographical location data includes the geographical location data of previous successful logins.

該位置比對單元6連接該處理單元1,可於每一次登入時,將現 在所在之地理位置資料與該儲存單元5中之歷次成功登入之地理位置資料作一比對以產生一差異值,並判斷該差異值是否於該誤差值範圍內。 The position comparison unit 6 is connected to the processing unit 1 and can be displayed at each login. A comparison is made between the geographical location data in the location and the geographical location data of previous successful logins in the storage unit 5 to generate a difference value, and it is determined whether the difference value is within the error value range.

該位置結果產製單元7連接該處理單元1,可依據該位置比對單元6之比對內容產製登入位置結果,並依據該登入位置結果判斷是否允許使用者登入。該位置結果產製單元7至少包括一簡訊產製模組71及一非法註記產製模組72,當該差異值在該誤差值範圍內,係允許該使用者登入,當該差異值在該誤差值範圍外,係產生一次性密碼(One Time Password,OTP),並依據該儲存單元5中之行動裝置之行動門號,由該簡訊產製模組71依據驗證使用者所需之OTP密碼及該使用者現在所在之地理位置資料產製一驗證簡訊,以該驗證簡訊將該OTP密碼及該現在所在之地理位置資料發送至該使用者註冊之行動門號,該處理單元1係指示該驗證單元2顯示簡訊驗證碼輸入頁面供該使用者輸入該OTP密碼,俾使非法使用者無法取得該OTP密碼難以登入該行動網路銀行,而合法使用者可經由該驗證簡訊取得該OTP密碼並輸入至該驗證單元2,該驗證單元2則透過該OTP密碼驗證該使用者之身份為合法使用者後允許該使用者登入,同時詢問該使用者是否將該現在所在之地理位置資料記錄至該儲存單元5中,該非法註記產製模組72則可依據該驗證簡訊對該使用者是合法使用者或非法使用者註記警示,並依註記結果,產製非法使用者現在所在之地理位置資料,並將產製之非法使用者現在所在之地理位置資料作為通知政府單位之佐證,藉此提供合法使用者經由該驗證簡訊發現該行動網路銀行正被非法使用者嘗試登入時,可自動產生註記並提供警示通知政府單位。如是,藉由上述揭露之裝置構成一全新之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置。 The location result production unit 7 is connected to the processing unit 1 and can generate a login location result based on the comparison of the location comparison unit 6 and determine whether to allow a user to log in based on the login location result. As a result, the production unit 7 includes at least one SMS production module 71 and an illegal annotation production module 72. When the difference value is within the error value range, the user is allowed to log in. When the difference value is in the Outside the error value range, a one-time password (OTP) is generated, and according to the mobile door number of the mobile device in the storage unit 5, the SMS production module 71 verifies the OTP password required by the user And the user ’s current geographic location data produces a verification message, and the verification message is used to send the OTP password and the current geographic location data to the mobile number registered by the user, and the processing unit 1 instructs the The verification unit 2 displays a text message verification code input page for the user to enter the OTP password, so that an illegal user cannot obtain the OTP password and it is difficult to log in to the mobile internet bank, and a legitimate user can obtain the OTP password through the verification text message and Input to the authentication unit 2, the authentication unit 2 verifies the user's identity through the OTP password, and then allows the user to log in, and asks the user whether Record the current geographic location data into the storage unit 5, and the illegal annotation production module 72 can note the warning to the user as a legal user or an illegal user according to the verification message, and according to the annotation result, Produce the current geographic location information of the illegal user, and use the current geographic location information of the illegal user as the evidence to notify the government unit, so as to provide the legitimate user to find that the mobile Internet bank is authenticating through the verification message. When an illegal user attempts to log in, he can automatically generate a note and provide a warning to notify the government unit. If so, a new mobile internet banking application user login location GPS detection warning device is constituted by the disclosed device.

當本創作於運用時,本創作之行動網路銀行應用程式用戶登入位 置GPS偵測警示裝置可實施於一智慧型手機中,並與行動網路銀行連結,而該處理單元1為智慧型手機之中央處理器,該驗證單元2、該定位單元3、該登入位置誤差設定單元4、該儲存單元5、該位置比對單元6與該位置結果產製單元7為智慧型手機中之程式,並儲存於記憶體中,且該儲存單元5可為記憶體,並進一步具有觸控螢幕作為相關之輸出與操作。 When this creation is in use, the mobile internet banking application user login for this creation The GPS detection and warning device can be implemented in a smart phone and connected to a mobile internet bank. The processing unit 1 is the central processing unit of the smart phone, the verification unit 2, the positioning unit 3, and the login position. The error setting unit 4, the storage unit 5, the position comparison unit 6, and the position result production unit 7 are programs in a smart phone, and are stored in a memory, and the storage unit 5 may be a memory, and It also has a touch screen for related output and operation.

於實際使用時,首先安裝本創作行動網路銀行應用程式用戶登入位置GPS偵測警示裝置時,須同意開放應用程式(APP)存取GPS位置資訊。當使用者(用戶)首次以智慧型手機登入行動網路銀行時,處理單元1於接收到該行動網路銀行應用程式用戶登入位置GPS偵測警示裝置首次傳送之註冊資訊時,會自動記錄使用者目前所在之地理位置資料至儲存單元5,且用戶可自行設定允許誤差值(距離)。每次登入行動網路銀行時,驗證單元2於使用者帳號及密碼驗證成功後,再由位置比對單元6自動比對現在所在之地理位置資料與歷次成功登入之地理位置資料以產生一差異值。位置結果產製單元7將現在所在之地理位置資料與歷次成功登入位置資訊比對後產生之差異值,如在誤差值以內,允許使用者登入;如在誤差值以外,以驗證簡訊傳送OTP密碼及現在登入所在之地理位置資料,至使用者註冊之行動門號。此時合法使用者取得OTP密碼後,於驗證單元2顯示的簡訊驗證碼輸入頁面輸入後可正常登入,本創作同時詢問是否要記錄現在登入所在之地理位置資料,以供未來登入時比對。而非法使用者因無法取得OTP密碼,故無法登入行動網路銀行。 In actual use, first, when installing this creative mobile internet banking application, the user must agree to open the application (APP) to access the GPS location information when logging in to the GPS detection warning device. When the user (user) logs in to the mobile internet banking with a smart phone for the first time, the processing unit 1 will automatically record the use of the registration information transmitted by the GPS detection warning device of the mobile internet banking application user login location for the first time. The current geographic location data is stored in the storage unit 5, and the user can set the allowable error value (distance) by himself. Each time you log in to Mobile Internet Banking, after the verification of the user account and password is successful, the verification unit 2 then automatically compares the current location data with the location data of previous successful logins to generate a difference. value. The location result production unit 7 compares the current geographical location data with the previous successful login location information. If the error value is within the error value, the user is allowed to log in. If it is outside the error value, the verification message is used to send the OTP password. And the location data where you are currently logged in, to the mobile door number where the user is registered. At this time, after the legal user obtains the OTP password, he can log in normally after entering the SMS verification code input page displayed on the verification unit 2. The author also asks if he wants to record the geographic location information of the current login for comparison in future logins. Illegal users cannot log in to Mobile Internet Banking because they cannot obtain OTP passwords.

藉此,採用本裝置所具有之優點及好處如下: The advantages and benefits of using this device are as follows:

1.除了使用者帳號、密碼以外,提供使用者安全警示機制,以加強使用者身分驗證。 1. In addition to the user account and password, provide a user security alert mechanism to strengthen user identity verification.

2.每次登入行動網路銀行時,自動以使用者之目前所在之地理位置資料作為加強驗證機制,無須強制再驗證其他身份確認機制。 2. Each time you log in to Mobile Internet Banking, the user's current geographical location data is automatically used as a strengthened authentication mechanism, and there is no need to force re-verification of other identity confirmation mechanisms.

3.當有非法使用者在其他國家或地區,嘗試登入他人行動網路銀行時,作為原申請人的合法使用者可立即收到帶有現在所在之地理位置資料之簡訊通知,可藉以提供政府偵辦網路犯罪之相關單位佐證資訊。 3. When there is an illegal user in other countries or regions trying to log in to others' mobile Internet banking, the legal user as the original applicant can immediately receive a text notification with the current geographical location information, which can provide the government Corroborative information from relevant units investigating cybercrime.

綜上所述,本創作係一種行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,可有效改善習用之種種缺點,可為用戶以行動裝置登入行動網路銀行時,除了使用者帳號、密碼以外,更提供使用者安全警示機制,自動以使用者之目前所在之地理位置資料作為加強使用者身分驗證,無須強制再驗證其他身份確認機制,並可簡訊通知用戶其行動網路銀行正被非法使用者嘗試登入的同時,立即收到非法使用者現在所在之地理位置資料,從而可提供政府偵辦網路犯罪之相關單位佐證資訊,進而使本創作之產生能更進步、更實用、更符合使用者之所須,確已符合新型專利申請之要件,爰依法提出專利申請。 To sum up, this creation is a GPS detection warning device for the user's login location of a mobile online banking application, which can effectively improve the shortcomings of habituation. When users log in to mobile online banking with a mobile device, in addition to the user account, In addition to the password, it also provides a user security alert mechanism, which automatically uses the user's current geographic location data as an enhanced user identity verification, without the need to force re-verification of other identity confirmation mechanisms, and can inform users that their mobile online banking is being When an illegal user tries to log in, he immediately receives the geographic location information of the illegal user, so that he can provide corroborative information of relevant units in the government's investigation of cybercrime, so that the creation of this creation can be more progressive, practical and consistent. The needs of users have indeed met the requirements for new patent applications, and they have filed patent applications in accordance with the law.

惟以上所述者,僅為本創作之較佳實施例而已,當不能以此限定本創作實施之範圍;故,凡依本創作申請專利範圍及新型說明書內容所作之簡單的等效變化與修飾,皆應仍屬本創作專利涵蓋之範圍內。 However, the above are only the preferred embodiments of the creation, and the scope of the implementation of the creation cannot be limited by this; therefore, any simple equivalent changes and modifications made in accordance with the scope of the patent application for the creation and the contents of the new specification , Should still fall within the scope of this creative patent.

Claims (11)

一種行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,係設於一行動裝置中,並與行動網路銀行連結,其包括:一處理單元,可作為該行動網路銀行應用程式用戶登入位置GPS偵測警示裝置運作時之處理與控制;一驗證單元,其連接該處理單元,用於驗證登入該行動網路銀行之帳號及密碼;一定位單元,其連接該處理單元,用於登入該行動網路銀行時,自動偵測目前所在之地理位置資料;一登入位置誤差設定單元,其連接該處理單元,可供設定一允許登入來源地理位置之誤差值;一儲存單元,其連接該處理單元,至少可儲存註冊該行動網路銀行之行動裝置之行動門號、登入該行動網路銀行之帳號及密碼、目前所在之地理位置資料、以及允許登入來源地理位置之誤差值,其中該目前所在之地理位置資料包含歷次成功登入之地理位置資料;一位置比對單元,其連接該處理單元,可於每一次登入時,將現在所在之地理位置資料與該儲存單元中之歷次成功登入之地理位置資料作一比對以產生一差異值,並判斷該差異值是否於該誤差值範圍內;以及一位置結果產製單元,其連接該處理單元,可依據該位置比對單元之比對內容產製登入位置結果,並依據該登入位置結果判斷是否允許使用者登入,其中,當該差異值在該誤差值範圍內,係允許該使用者登入,當該差異值在該誤差值範圍外,係產生一次性密碼(One Time Password,OTP),並依據該儲存單元中之行動裝置之行動門號,以一驗證簡訊將該OTP密碼及該現在所在之地理位置資料發送至該使用者註冊之行動門號,使非法使用者無法取得該OTP密碼難以登入該行動網路銀行,而合法使用者可經由該驗證簡訊取得該OTP密碼並輸入至該驗證單元,該驗證單元則透過該OTP密碼驗證該使用者之身份為合法使用者後允許該使用者登入,同時詢問該使用者是否將該現在所在之地理位置資料記錄至該儲存單元中,並提供合法使用者經由該驗證簡訊發現該行動網路銀行正被非法使用者嘗試登入時,可自動產生註記並提供警示通知政府單位。A GPS detection and warning device for a mobile internet banking application user login location is provided in a mobile device and is connected to the mobile internet banking, and includes: a processing unit, which can be used as the mobile internet banking application user login Processing and control of the position GPS detection and warning device during operation; an authentication unit connected to the processing unit for verifying the account and password for logging in to the mobile internet bank; a positioning unit connected to the processing unit for logging in When the mobile internet bank is located, it automatically detects the current geographic location data; a login location error setting unit, which is connected to the processing unit, can be used to set an error value for the allowed geographic location of the login source; a storage unit, which is connected to the The processing unit can at least store the mobile door number of the mobile device that registered the mobile online bank, the account and password for logging in to the mobile online bank, the current geographical location data, and the error value of the geographical location from which the login is allowed. The current geographical location information includes the geographical location information of previous successful logins; a location ratio A unit, which is connected to the processing unit, can compare the geographical location data of the current location with the geographical location data of previous successful logins in the storage unit at each login to generate a difference value, and judge the difference value Whether it is within the range of the error value; and a position result production unit connected to the processing unit, which can produce the login position result based on the comparison of the position comparison unit, and judge whether to allow the user based on the login position result Login, when the difference value is within the error value range, the user is allowed to log in. When the difference value is outside the error value range, a one-time password (OTP) is generated and stored according to the The mobile door number of the mobile device in the unit sends an OTP password and the current geographic location data to the mobile door number registered by the user with a verification message, making it impossible for illegal users to obtain the OTP password and log in to the operation Internet banking, and legal users can obtain the OTP password through the verification message and enter it into the verification unit, and the verification unit passes the The OTP password allows the user to log in after verifying the user ’s identity as a legitimate user, and asks the user whether to record the current geographic location data in the storage unit, and provides the legitimate user to find out through the verification message When the mobile internet bank is being tried to log in by an illegal user, it can automatically generate a note and provide a warning to notify the government unit. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該行動裝置係為一具有全球定位系統(Global Positioning System,GPS)功能之智慧型手機、平板電腦、筆記型電腦、或穿戴式裝置者。According to the mobile Internet banking application user login location GPS detection warning device described in item 1 of the scope of patent application, wherein the mobile device is a smart phone with Global Positioning System (GPS) function, Tablet, laptop, or wearable. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該驗證簡訊發送至該使用者註冊之行動門號後,該處理單元係指示該驗證單元顯示簡訊驗證碼輸入頁面供該使用者輸入該OTP密碼。The mobile Internet banking application user's login location GPS detection warning device according to item 1 of the scope of the patent application, wherein the processing unit instructs the verification unit after the verification message is sent to the mobile gate number registered by the user Display the SMS verification code entry page for the user to enter the OTP password. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該誤差值範圍設定為30~200公尺。According to the mobile Internet banking application user login location GPS detection warning device described in item 1 of the scope of the patent application, the error value range is set to 30 ~ 200 meters. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該處理單元於接收到由該行動裝置之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置首次傳送之註冊資訊時,自動記錄目前所在之地理位置資料至該儲存單元。The mobile Internet banking application user login location GPS detection warning device according to item 1 of the scope of the patent application, wherein the processing unit receives GPS detection of the mobile online banking application user login location GPS detection of the mobile device When the registration information sent by the warning device for the first time, it automatically records the current geographical location data to the storage unit. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該定位單元為一全球定位系統,用於接收一衛星定位訊號,該處理單元依據該衛星定位訊號以產生該地理位置資料,該地理位置資料包含經度與緯度之屬性資料。According to the mobile Internet banking application user login position GPS detection warning device according to item 1 of the scope of patent application, wherein the positioning unit is a global positioning system for receiving a satellite positioning signal, and the processing unit is based on the satellite The positioning signal is used to generate the geographic position data, and the geographic position data includes attribute data of longitude and latitude. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該處理單元為中央處理器。According to the mobile Internet banking application user login location GPS detection warning device described in the first patent application scope, wherein the processing unit is a central processing unit. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該儲存單元至少包括有一使用者與行動裝置資料庫、一地理位置資料庫、以及一允許誤差值資料庫。The mobile Internet banking application user's login location GPS detection warning device according to item 1 of the scope of patent application, wherein the storage unit includes at least a database of users and mobile devices, a database of geographic locations, and a permission Database of error values. 依申請專利範圍第8項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該使用者與行動裝置資料庫可儲存註冊該行動網路銀行之行動裝置之行動門號、與登入該行動網路銀行之帳號及密碼,該地理位置資料庫可儲存目前所在之地理位置資料,該允許誤差值資料庫可儲存允許登入來源地理位置之誤差值。The mobile Internet banking application user's login location GPS detection warning device according to item 8 of the scope of the patent application, wherein the user and the mobile device database can store the mobile door number of the mobile device in which the mobile online bank is registered , And the login account and password of the mobile internet bank, the geographic location database can store the current geographic location data, and the allowable error value database can store the deviation value of the allowed login source geographic location. 依申請專利範圍第1項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該位置結果產製單元至少包括一位置GPS偵測警示裝置,其中,該位置結果產製單元至少包括一簡訊產製模組及一非法註記產製模組。According to the mobile Internet banking application user's login location GPS detection warning device according to item 1 of the scope of patent application, the location result production unit includes at least one location GPS detection warning device, wherein the location result production system The unit includes at least one SMS production module and one illegal annotation production module. 依申請專利範圍第10項所述之行動網路銀行應用程式用戶登入位置GPS偵測警示裝置,其中,該簡訊產製模組可依據驗證使用者所需之OTP密碼及該使用者現在所在之地理位置資料產製驗證簡訊,該非法註記產製模組可依據該驗證簡訊對該使用者是合法使用者或非法使用者註記警示,並依註記結果,產製非法使用者現在所在之地理位置資料,並將產製之非法使用者現在所在之地理位置資料作為通知政府單位之佐證。According to the mobile Internet banking application user login location GPS detection warning device described in item 10 of the scope of the patent application, the SMS production module can verify the OTP password required by the user and the user's current location Geolocation data production verification newsletter, the illegal annotation production module can note the warning to the user as a legal user or illegal user according to the verification newsletter, and according to the result of the annotation, the production location of the illegal user is now located Data, and use the geographical location information of the illegal users of the production system as evidence to notify the government unit.
TW108208306U 2019-06-27 2019-06-27 User login location GPS detection alert device of mobile internet banking application TWM586414U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW108208306U TWM586414U (en) 2019-06-27 2019-06-27 User login location GPS detection alert device of mobile internet banking application

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW108208306U TWM586414U (en) 2019-06-27 2019-06-27 User login location GPS detection alert device of mobile internet banking application

Publications (1)

Publication Number Publication Date
TWM586414U true TWM586414U (en) 2019-11-11

Family

ID=69189961

Family Applications (1)

Application Number Title Priority Date Filing Date
TW108208306U TWM586414U (en) 2019-06-27 2019-06-27 User login location GPS detection alert device of mobile internet banking application

Country Status (1)

Country Link
TW (1) TWM586414U (en)

Similar Documents

Publication Publication Date Title
US20210014210A1 (en) Environment-Aware Security Tokens
US11647023B2 (en) Out-of-band authentication to access web-service with indication of physical access to client device
US11870769B2 (en) System and method for identifying a browser instance in a browser session with a server
US10911440B2 (en) Timing array as credentials
US11310224B2 (en) Enhanced security authentication system
US20150178494A1 (en) Method and system for verifying an access request
JP2016181242A (en) System and method for enabling multi-party and multi-level authorization for accessing confidential information
CA2970338C (en) System and method for replacing common identifying data
US20190213306A1 (en) System and method for identity authentication
CA2955448C (en) Using timing of character input to verify password
TW202101343A (en) GPS detection and warning method for user login location of mobile online banking applications capable of automatically using the geographical data of the user's current login to strengthen user's identity verification
TWM586414U (en) User login location GPS detection alert device of mobile internet banking application
US10491391B1 (en) Feedback-based data security
KR101937476B1 (en) User hierarchical authentication apparatus and method for the same
US20230153415A1 (en) Alternative identity verification and authorization method
US20220237629A1 (en) System, method, and computer-accessible medium for determining the veracity of a bank fraud call
Singh et al. Towards a Two Factor Authentication Method Using Zero-Knowledge Protocol in Online Banking Services
Noor FIDO: Fast IDentity Online.
Otrokh et al. Two-factor Authentication System Using Audio Signal Analysis
US20200334343A1 (en) Monitoring access
Coffie MonitR: A mobile application for monitoring online accounts’ security
CN109284615A (en) Mobile device digital resource method for managing security