KR102543497B1 - Smishing phone number automatic blocking system and the method - Google Patents

Abstract

The present invention relates to a system and method for automatically blocking smishing phone numbers, in which a SIM card transmits a first incoming phone number input by a user for a first outgoing call to a user terminal from a service server. Receiving, by the SIM card, receiving a first envelope command including a second incoming phone number for the first outgoing call from the user terminal, wherein the SIM card receives the first incoming call comparing the number and the second received telephone number to generate data including a comparison result value on whether or not they match, wherein the comparison result value indicates that the first received telephone number and the second received telephone number do not match. If so, transmitting the second received telephone number from the SIM card to the service server.

Description

Smishing phone number automatic blocking system and method {SMISHING PHONE NUMBER AUTOMATIC BLOCKING SYSTEM AND THE METHOD}

The present invention relates to a system and method for automatically blocking smishing phone numbers, which collects phone numbers changed due to a malicious program through interworking with a modem and a subscriber identification module (SIM) card of a user terminal, and the changed phone number It relates to an automatic smishing call blocking system and method for automatically blocking outgoing and receiving calls.

Recently, as the number of smartphone users increases, the damage caused by smishing, which induces the installation of malicious applications by linking to Short Message Service (SMS) containing contents such as parcel inquiry, gift certificate receipt, and wedding invitation, is increasing. there is.

For example, after installing a malicious application on the victim's terminal through the above-mentioned short message, the criminal group calls the victim and the account information in the victim's name was leaked or impersonates a public institution to tell the victim the balance of the account to another When transferring to an account or requesting money transfer, and the victim suspects that the call is fraudulent and calls the police station or bank, the installed malicious application changes the actual caller number to the phone number of the criminal group, resulting in financial damage. can happen

Accordingly, in order to prevent damage caused by smishing, telecommunication companies or public institutions remove malicious programs through anti-virus programs or provide information to customers on how to prevent smishing damage, but do not use anti-virus programs or new ones even if they are used. This type of malicious program can be installed in the user terminal, and there is a limit to indirectly providing customers with information on how to prevent smishing damage.

KR 10-2015-0124868 A

The problem to be solved by the present invention is to provide an automatic smishing call blocking system and method for collecting a phone number changed by a malicious program installed through smishing and using it to automatically block outgoing and receiving calls to the corresponding phone number. that you want to provide.

The technical problems of the present invention are not limited to the technical problems mentioned above, and other technical problems not mentioned will be clearly understood by those skilled in the art from the description below.

A method for automatically blocking a smishing phone number according to an embodiment includes receiving a first incoming phone number input by a user for a first outgoing call to a user terminal by a SIM card from a service server, the SIM card using the user terminal. Receiving a first envelope command including a second incoming phone number for the first outgoing call from the SIM card, comparing the first incoming phone number and the second incoming phone number in the SIM card Generating data including a comparison result value on whether or not they match, wherein the service server in the SIM card when the comparison result value means that the first destination phone number and the second destination phone number do not match and transmitting the second received telephone number to

storing the second incoming phone number in the SIM card; receiving, in the SIM card, a third incoming phone number input by the user for a second outgoing call from a service server; and receiving the second incoming phone number from the user terminal. Receiving a second envelope command including a fourth incoming phone number for outgoing calls, and the SIM card transmitting the third incoming phone number and/or the fourth incoming phone number and the second incoming phone number. A comparison step may be further included.

When the third incoming phone number and/or the fourth incoming phone number match the second incoming phone number, the SIM card generates a response message indicating that the second outgoing call is not allowed, and the user terminal can be sent to

If the third received telephone number and/or the fourth received telephone number do not match the second received telephone number, the SIM card compares the third received telephone number with the fourth received telephone number to determine whether or not they match. It is possible to generate data including the comparison result value for .

A method for automatically blocking a smishing phone number according to an embodiment includes receiving a second incoming phone number from a SIM card and storing the received phone number as a smishing phone number in a service server, the service server interworking with a user terminal so that the user receives the second incoming phone number. Generating data including a third incoming phone number input for outgoing calls and determining, by the service server, whether the third incoming phone number and the smishing phone number match, The phone number is a received phone number collected from a SIM card in a process for a first call before the second call of the user terminal, and the SIM card is input by the user for the first call of the user terminal. A first received phone number is received from the service server, and a first envelope command including the second received phone number for the first call is received from the user terminal, and the first received call is received. number and the second destination phone number, and if the first destination phone number and the second destination phone number are not the same, the second destination phone number may be transmitted to the service server.

When the third received phone number and the smishing phone number match, the service server blocks the second call and provides a warning message to the user terminal informing that the second call is blocked according to the risk of smishing. can do.

When the third received telephone number and the smishing telephone number do not match, the service server may transmit the third received telephone number to the SIM card.

Receiving, by the service server, a fourth incoming phone number included in a second envelope command for a second outgoing call from the user terminal; and the service server matching the fourth incoming phone number with the smishing phone number. It may further include determining whether or not.

When the fourth incoming phone number and the smishing phone number match, the service server blocks the second call and provides a warning message to the user terminal informing that the second call is blocked according to the risk of smishing. can do.

When the fourth received telephone number and the smishing telephone number do not match, the service server may transmit an outgoing command including the fourth received telephone number to the user terminal.

When the user terminal receives a call or short message from the first outgoing phone number, the service server receiving received data including the first outgoing phone number from the user terminal, and the service server receiving the first outgoing phone number. The method may further include determining whether the outgoing phone number matches the smishing phone number.

If the first outgoing phone number and the smishing phone number match, the service server blocks the call or short message received from the first outgoing phone number, and sends the user terminal from the first outgoing phone number. A warning message notifying that the received phone call or short message has been blocked according to the risk of smishing may be provided.

A service server according to an embodiment is a service server that controls outgoing or receiving of a user terminal through interworking with a user terminal and a SIM card, and stores a smishing phone number list including at least one smishing phone number. a storage unit, an input/output interface unit receiving a plurality of key data from the user terminal and generating data including a first received telephone number for a first outgoing call, and the first received telephone number and the at least one smishing telephone number and a blocking unit for determining whether a match exists, wherein the at least one smishing phone number is a smishing phone number collected from the SIM card in a process for a second call prior to the first call of the user terminal, wherein the The SIM card receives a fourth reception included in a third received phone number collected for the second call from the input/output interface unit and a second envelope command transmitted for the second call from the user terminal. Phone numbers are compared, and if the third received phone number is different from the fourth received phone number, the fourth received phone number is transmitted to the service server, and the storage unit stores the fourth received phone number as the smishing phone number. save as number

The blocking unit may block the first call when the first received phone number and the at least one smishing phone number are the same.

The blocking unit receives a second incoming phone number included in the first envelope command for the first outgoing call from the user terminal, and determines whether the second incoming phone number matches the at least one smishing phone number. can judge

The blocking unit may block the first call when the first incoming phone number and/or the second incoming phone number are the same as the at least one smishing phone number.

When the user terminal receives a call or short message from a first outgoing phone number, the input/output interface unit receives received data including the first outgoing phone number from the user terminal, and the blocking unit receives the first outgoing phone number. It is determined whether the number and the at least one smishing phone number match, and if the first outgoing phone number and the at least one smishing phone number are the same, a call or short message received from the first outgoing phone number is sent. can block

The SIM card according to an embodiment receives a first incoming phone number input by a user for a first outgoing call from a service server, and includes an envelope including a second incoming phone number for the first outgoing call from a user terminal. A communication unit that receives a command (Envelope command), a comparison unit that compares the first received phone number and the second received phone number to generate a comparison result value on whether or not they match, and generates a response message according to the comparison result value , Including a response unit for providing the response message to the user terminal, and a control unit for transmitting the second received telephone number to the service server when the response message does not permit an outgoing call to the second received telephone number. .

A storage unit for storing at least one smishing phone number is further included, wherein the control unit stores the second incoming phone number in the storage unit when the response message does not permit an outgoing call to the second incoming phone number. You can save it as a smishing phone number.

The communication unit receives the third incoming phone number input by the user for the second outgoing call from the service server, and transmits an envelope command including the fourth incoming phone number for the second outgoing call from the user terminal. If received, the comparator may determine whether the third received telephone number and/or the fourth received telephone number match the smishing telephone number.

A service server according to an embodiment is a service server that controls transmission or reception of each of a plurality of user terminals through interworking with a plurality of user terminals and a plurality of SIM cards, and includes at least one smishing phone number. A storage unit for storing a missing phone number list, an input/output interface unit for receiving a plurality of key data from a first user terminal among the plurality of user terminals and generating data including a first received telephone number for a first outgoing call, and the above and a blocking unit for determining whether a first received phone number matches the at least one smishing phone number, wherein the at least one smishing phone number is used to detect a second call from one of the plurality of user terminals. is a smishing phone number collected from a SIM card installed in any one of the user terminals in the process for calling, and the SIM card is a third received phone number collected for the second outgoing call from the input/output interface unit and the one By comparing the fourth received telephone number included in the second envelope command transmitted from the user terminal for the second outgoing call, and when the third received telephone number is different from the fourth received telephone number, the The fourth received telephone number is transmitted to the service server, and the storage unit stores the fourth received telephone number as the smishing telephone number.

Other embodiment specifics are included in the detailed description and drawings.

According to the system and method for automatically blocking smishing calls according to embodiments, by collecting phone numbers changed by a malicious program installed through smishing, the phone number used for smishing is managed and outgoing to the collected phone number and Users can be prevented from receiving damage due to smishing by automatically blocking reception.

Effects according to the embodiments of the present invention are not limited by the contents exemplified above, and more diverse effects are included in the present specification.

1 is a diagram schematically illustrating a system for automatically blocking smishing phone numbers according to an embodiment of the present invention.
2 is a block diagram schematically illustrating the configuration of a user terminal according to an embodiment of the present invention.
3 is a block diagram schematically illustrating the configuration of a SIM card according to an embodiment of the present invention.
4 is a block diagram schematically illustrating the configuration of a service server according to an embodiment of the present invention.
5 is a flowchart illustrating a method for blocking smishing phone calls and collecting smishing phone numbers according to an embodiment of the present invention.
6 is a flowchart illustrating a method of generating a response message in a SIM card according to the present invention.
7 is a flowchart illustrating a method of automatically blocking outgoing calls to a smishing phone number according to an embodiment of the present invention.
8 is a flowchart illustrating a method for automatically blocking reception of a smishing phone number according to an embodiment of the present invention.

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings in order to clarify the technical spirit of the present invention. In describing the present invention, if it is determined that a detailed description of a related known function or component may unnecessarily obscure the subject matter of the present invention, the detailed description will be omitted. Elements having substantially the same functional configuration in the drawings are assigned the same reference numerals and reference numerals as much as possible, even though they are displayed on different drawings. For convenience of description, the device and method are described together if necessary.

Although first, second, etc. are used to describe various components, these components are not limited by these terms, of course. These terms are only used to distinguish one component from another. Accordingly, it goes without saying that the first element mentioned below may also be the second element within the technical spirit of the present invention.

1 is a diagram schematically illustrating a system for automatically blocking smishing phone numbers according to an embodiment of the present invention.

Referring to FIG. 1 , a system for automatically blocking smishing calls according to an embodiment may include a plurality of user terminals 100, a plurality of SIM cards 200, a service server 300, and a network 400. .

Hereinafter, for convenience of description, the service server 300 interlocks with one user terminal 100 and one SIM card 200 to collect smishing phone numbers and provide a service for automatically blocking smishing calls. It mainly describes what is provided, but is not limited thereto. The service server 300 interworks with a plurality of user terminals 100 and a plurality of SIM cards 200 to collect a plurality of smishing phone numbers, centrally manages the collected plurality of smishing phone numbers, and based on this The plurality of user terminals 100 may automatically block smishing calls and text transmission and reception.

The user terminal 100 is a smart device possessed by a user that includes sending and receiving functions. For example, the user terminal 100 includes a mobile phone, a smart phone, a smart pad, and a notebook computer (notebook). computers), digital broadcasting terminals, personal digital assistants (PDAs), portable multimedia players (PMPs), navigation devices, tablet PCs, and various wearable devices such as smart watches and smart bands.

The user terminal 100 may install and run applications and/or applications provided by the service server 300 . The user terminal 100 may make and receive a call by interworking with the application and/or the application. In addition, the user terminal 100 may exchange data with the service server 300 through the network 400 .

The service server 300 may transmit, to the SIM card 200 , the first received phone number input through interworking with the input unit ( 120 in FIG. 2 ) of the user terminal 100 . The service server 300 may provide a function of receiving or sending a call by interworking with the modem unit ( 130 in FIG. 2 ) of the user terminal 100 . The service server 300 automatically blocks incoming or outgoing calls through the user terminal 100 by comparing the incoming or outgoing phone number with the phone number of the first smishing phone number list (or first black list). function can be provided. The first smishing phone number list (or first black list) may be stored in the service server 300 and centrally managed.

The service server 300 may exchange data with the user terminal 100 and/or the SIM card 200 through the network 400 . In addition, the service server 300 provides an application program or applications to the user terminal 100 and can transmit/receive data with the SIM card 200 through the user terminal 100 .

When the user terminal 100 makes an outgoing call by interlocking with the service server 300, the modem unit (130 in FIG. 2 ) of the user terminal 100 receives a call number including the second received phone number, which is the actual outgoing target phone number. An envelope may be provided to the SIM card 200 .

The SIM card 200 may be a smart card that can be attached to and detached from the user terminal 100, includes a microprocessor and a memory chip, and stores and manages various user information. For example, the SIM card 200 may be a Universal Integrated Circuit Card (UICC) including a Card Application Toolkit (CAT), but is not limited thereto. Hereinafter, a case in which one SIM card 200 is mounted in the user terminal 100 will be mainly described, but the present invention is not limited thereto, and a case in which a plurality of SIM cards 200 are mounted in the user terminal 100 will also be described below. The described technical solutions may be applied practically the same.

When the SIM card 200 is installed in the user terminal 100, the SIM card 200 can exchange data with the modem unit (130 in FIG. 2) of the user terminal 100. In addition, the SIM card 200 may transmit and receive data through the service server 300 and the network 400 and/or the user terminal 100 . The SIM card 200 compares the first incoming phone number transmitted from the service server 300 with the second incoming phone number transmitted from the user terminal 100, and responds to whether or not the outgoing call is in progress according to the comparison result. A message may be provided to the user terminal 100 . In addition, the SIM card 200 may provide the first incoming phone number to the modem unit 130 of the user terminal 100 and the second incoming phone number to the service server 300 .

Accordingly, when the first incoming phone number and the second incoming phone number are different, the modem unit (130 in FIG. 2 ) of the user terminal 100 suspends (or blocks) the corresponding outgoing call or calls from the SIM card 200. Calling may be performed by changing the received first received phone number to an actual received phone number. In addition, the service server 300 may register the second incoming phone number as a smishing phone number (or a blacklist phone number) and automatically block incoming and outgoing calls of the second incoming phone number.

The network 400 is a communication network in which the user terminal 100 and the service server 300 communicate with each other, and may be configured regardless of communication aspect. For example, it may be composed of various communication networks such as a personal area network (PAN), a local area network (LAN), a metropolitan area network (MAN), and a wide area network (WAN). However, it is not limited thereto.

As described above, according to the system for automatically blocking smishing calls according to an embodiment, a malicious program is installed in the user terminal 100, and the malicious program uses the incoming phone number input by the user during the outgoing process of the user terminal 100. Even if is changed, by checking whether the incoming phone number entered by the user and the incoming phone number of the modem (130 in FIG. 2) of the user terminal 100 match, blocking the call to the phone number changed by the malicious program, A phone number changed by the malicious program can be stored and managed. Accordingly, the stored and managed phone number is used to block smishing, spam, and illegal numbers in the future to provide a function to automatically block incoming and outgoing phone numbers, and to prevent user damage caused by smishing. can

In addition, in the case of the automatic blocking system for smishing calls according to an embodiment, by managing a plurality of smishing phone numbers collected by a plurality of SIM cards 200, the user terminal 100 is warned against smishing. It can be more advantageous to prevent malicious programs from being installed in the user terminal 100 or to prevent user damage caused by smishing by automatically blocking incoming and outgoing phone numbers of a plurality of smishing phone numbers. .

2 is a block diagram schematically illustrating the configuration of a user terminal according to an embodiment of the present invention.

Referring to FIG. 2 , the user terminal 100 may include a first communication unit 110, an input unit 120, a modem unit 130, a first storage unit 140, and a first control unit 150. The configuration of the user terminal 100 may include configurations known to those skilled in the art (eg, a display unit, a camera, a battery, a microphone, etc.), which are self-evident, so a detailed description thereof is omitted.

The first communication unit 110 may perform data communication with the service server 300 by wire or wirelessly. The first communication unit 110 is a wired Internet communication method supporting TCP/IP (Transmission Control Protocol/Internet Protocol), etc. or WCMDA (Wideband Code Division Multiple Access), LTE (Long Term Evolution), WiBro (Wireless Broadband Internet) and Data may be transmitted and received between the service server 300 and the user terminal 100 through at least one of various wireless communication methods such as WiFi (Wireless Fidelity).

Also, the first communication unit 110 may perform data communication with other user terminals (not shown). For example, the first communication unit 110 may perform data communication with other user terminals via a base station or a core network. However, it is not limited thereto, and the first communication unit 110 may directly perform data communication with other user terminals through a cellular network without going through a base station.

The first communication unit 110 may include an interface function capable of transmitting and receiving data or commands between the user terminal 100 and the SIM card 200 . However, the present invention is not limited thereto, and transmission and reception of data or commands between the user terminal 100 and the SIM card 200 may be performed by electrically and physically connecting the modem unit 130 and the SIM card 200.

The input unit 120 may include a plurality of keys capable of inputting an outgoing phone number. The input unit 120 displays a keypad that includes a plurality of keys and outputs a signal corresponding to a key being pressed and a soft keypad corresponding to the keypad on a screen, and generates key data in response to a key touched on the screen. It may include at least one of the screens.

The modem unit 130 may provide a function of converting an analog signal transmitted from a communication line into a digital signal or converting a digital signal transmitted from the user terminal 100 into an analog signal to transmit information.

When a specific event occurs in the user terminal 100, the modem unit 130 may provide information about the corresponding event to the SIM card 200 through an envelope (Call Control by NAA) command. . Here, the envelope command is for the modem unit 130 to provide event and update-related information to the SIM card 200, and the modem unit 130 responds when an event such as sending or receiving a call or text message occurs. Corresponding information may be provided to the SIM card 200 through an envelope command. For example, the envelope command may include at least one of a received telephone number, a caller's mobile country code, a mobile network code, a location area code, and a cell identity value, but is not limited thereto.

In some embodiments, the modem unit 130 transmits data including an incoming phone number for outgoing to the service server 300 before providing an envelope command for outgoing a call or short message to the SIM card 200 . can provide In this case, the modem unit 130 may provide the SIM card 200 with an envelope command for the transmission after receiving the transmission command from the service server 300 .

The modem unit 130 may receive a response corresponding to the envelope command from the SIM card 200 . For example, when a user makes an outgoing call using the user terminal 100, the modem unit 130 transmits an envelope command including call information to the SIM card 200, and sends a response corresponding thereto. The transmission may proceed or be stopped by receiving the signal from the SIM card 200 . In addition, the modem unit 130 may perform an outgoing call by changing the received phone number included in the response to a phone number for an actual outgoing call.

2 illustrates that the first communication unit 110 and the modem unit 130 are separate components, but is not limited thereto, and the first communication unit 110 and the modem unit 130 may be implemented as one configuration. there is.

The first storage unit 140 may store application programs and/or applications provided from the service server 300 . The first storage unit 140 may store phone calls and text messages sent and received, a plurality of contact information, etc. of the user terminal 100 in conjunction with the service server 300, but is not limited thereto. The first storage unit 140 is a database of the user terminal 100 and can be implemented in a manner known to those skilled in the art to store various types of data.

The first controller 150 may control overall operations of each component of the user terminal 100 . The first control unit 150 may perform data sharing, transfer, and linkage functions between each component of the user terminal 100 and the service server 300 . For example, when receiving a call request (or command) from the service server 300, the first control unit 150 may transmit call information or a command including a received phone number to the modem unit 130. In addition, when a call or text message is received through the modem unit 130, the first control unit 150 may transmit received information or a command including an outgoing phone number to the service server 300. The first control unit 150 may transmit key data acquired through the input unit 120 to the service server 300 .

3 is a block diagram schematically illustrating the configuration of a SIM card 200 according to an embodiment of the present invention.

Referring to FIG. 3 , the SIM card 200 may include a second communication unit 210, a second control unit 220, a comparison unit 230, a response unit 240, and a second storage unit 250. .

The second communication unit 210 may include an interface capable of exchanging data with the user terminal 100 . In some embodiments, the second communication unit 210 may support a wireless communication function using a radio frequency signal as a communication medium within a predetermined distance (eg, within 10 m). For example, the second communication unit 210 may include a function of transmitting/receiving data with a card reader or other user terminal through Near Field Communication (NFC) or Radio Frequency Identification (RFID).

The second controller 220 may control and manage overall operations of each component of the SIM card 200 . For example, the second control unit 220 classifies various types of data transmitted through the second communication unit 210 and stores them in the second storage unit 250, or stores the data stored in the second storage unit 250 as a comparison unit. (230). In addition, the second control unit 220 may support transmission of the response message generated by the response unit 240 to the user terminal 100 through the second communication unit 210 . The second controller 220 may include a micro controller unit (MCU) in the form of a printed circuit or chip, but is not limited thereto.

The comparator 230 compares the first received phone number received from the service server 300 and stored in the second storage unit 250 with the second received phone number received from the modem unit 130 of the user terminal 100. can For example, the comparison unit 230 may compare the first received phone number and the second received phone number to determine whether they match.

The comparator 230 may provide the response unit 240 with data (or a comparison result value) on whether the first received telephone number and the second received telephone number match. The comparator 230 may provide the second received telephone number to the second storage unit 250 when the first received telephone number is different from the second received telephone number.

Also, in some embodiments, the comparison unit 230 may include the first received phone number and/or the second received phone number and at least one smishing phone number stored in the second smishing phone number list of the second storage unit 250. You can compare phone numbers to see if they match.

When the first received phone number and/or the second received phone number match the at least one smishing phone number, the comparator 230 provides data for this. That is, a comparison result value meaning that the first received phone number and/or the second received phone number match the at least one smishing phone number may be provided to the response unit 240 .

If the first received phone number and/or the second received phone number do not match the at least one smishing phone number, the comparator 230 compares the first received phone number with the second received phone number. Matching may be confirmed by comparing phone numbers, but is not limited thereto.

The comparison unit 230 may provide the comparison result value and the second received telephone number to the response unit 240 and the second storage unit 250 through the second control unit 220, respectively. For example, the comparison unit 230 provides the second destination phone number to the second storage unit 250 when the comparison result value is different from the first destination phone number and the second destination phone number. may be However, it is not limited thereto.

The response unit 240 may generate a response message (or data) according to the comparison result value provided from the comparison unit 230 . For example, when the comparison result value means that the first called phone number and the second called phone number match, the response unit 240 generates a response message indicating permission for outgoing calls, and the comparison result value If this means that the first called phone number and the second called phone number do not match, a response message indicating that calling is not allowed may be generated.

In addition, the response unit 240 indicates that the comparison result value means that the first received telephone number and the second received telephone number do not match, but the first received telephone number matches a preset received telephone number. , it is possible to generate a response message allowing outgoing to the first incoming telephone number without allowing outgoing to the second incoming telephone number. In this case, the response message may include the first received call number.

Here, the preset incoming phone number may mean a incoming phone number set by the service server 300 and/or the user. For example, the preset incoming phone number may be a phone number of a government agency such as a police station, a prosecutor, a financial supervisor, a bank, etc., but is not limited thereto.

As another example, when the data received from the modem unit 130 of the user terminal 100 includes data requesting to proceed with an outgoing call to the first incoming phone number regardless of the comparison result, the response unit 240 returns the comparison result. Even if the value means that the first called phone number and the second called phone number do not match, a response message allowing an outgoing call to the first called phone number may be generated. Similarly in this case, the response message may include the first received phone number.

In some embodiments, when the comparison result value means that the first received telephone number and/or the second received telephone number match the at least one smishing telephone number, the response unit 240 determines that an outgoing call has occurred. You can create a response message meaning not allowed.

The response message generated by the response unit 240 may include coded data as a response value. For example, the response value may be as shown in Table 1 below, but is not limited thereto.

Coding Contents first response value 00 Allowed, no modification Second response value 01 Not allowed Third response value 02 Allowed with modification

Specifically, coded data '00' as the first response value may mean allowed, no modification, that is, phone outgoing is allowed without modification. The response unit 240 may generate a response message including a first response value when the comparison result value provided from the comparison unit 230 means that the first received telephone number and the second received telephone number match. there is.

Coded data '01' as the second response value may mean not allowed, that is, call outgoing is not allowed. The response unit 240 may generate a response message including a second response value when the result of the comparison means that the first received telephone number and the second received telephone number do not match.

In some embodiments, the response unit 240 makes a second response when the comparison result value means that the first received telephone number and/or the second received telephone number match the at least one smishing telephone number. A response message containing a value can be created.

Coded data '02' as the third response value may mean allowed with modification, that is, allow outgoing calls but modify the received phone number. The response unit 240 indicates that the comparison result value indicates that the first received telephone number and the second received telephone number do not match, but when the first received telephone number matches the preset telephone number, the third received telephone number A response message including a response value and the first received phone number (or a preset phone number) may be generated.

The response message generated by the response unit 240 may be transmitted to the modem unit 130 of the user terminal 100 through the second communication unit 210 . For example, the response message generated by the response unit 240 may be transmitted to the modem unit 130 through the second communication unit 210 under the control of the second control unit 220, but is not limited thereto.

Also, the second control unit 220 may store the second received phone number in the second storage unit 250 and provide it to the service server 300 . The second control unit 220 determines whether the response message generated by the response unit 240 does not allow outgoing calls or allows outgoing calls to the first incoming phone number, that is, the response message has a second response value or a third When the response value is included, the second received phone number may be stored in the second storage unit 250 and provided to the service server 300 .

For example, the second controller 220 may provide the second received phone number to the service server 300 through Bearer Independent Protocol (BIP). Here, BIP may be a protocol that supports data communication between an external node and the SIM card 200 regardless of a data barrier using a packet network supported by the user terminal 100 and the network 400 . However, it is not limited thereto.

The second storage unit 250 may store identification information unique to the SIM card 200 (Integrated Circuit Card Identifier, ICCID), user identification information (International Mobile Subscriber Identifier, IMSI), network information, authentication information, and the like. In addition, the second storage unit 250 may store contact information transmitted from the user terminal 100 , various media data, and call records.

The second storage unit 250 stores a security key for encrypting and decrypting communication between the user terminal 100 and the network 400, a secret key shared with an Authentication Center (AuC) for authenticating WCDMA subscribers, and the like. can be saved. In addition, the second storage unit 250 may receive and store at least one preset incoming phone number and the second incoming phone number from the user terminal 100 and/or the service server 300 .

When the second storage unit 250 stores the preset incoming phone number and the second incoming phone number, it can create, store, and manage directories for each. For example, when the second storage unit 250 stores the second incoming phone number, a directory such as a second smishing phone number list (or a second black list) separate from the preset incoming phone number. can be created and managed.

Since the second storage unit 250 receives the second incoming phone number from the second controller 220 whenever the response message does not allow outgoing calls or allows outgoing calls to the first incoming phone number, A plurality of second received phone numbers may be stored as a plurality of smishing phone numbers in the second smishing phone number list.

In some embodiments, the second storage unit 250 may store at least one application that provides various application services such as banking, securities, credit cards, and electronic money.

As such, the SIM card 200 according to an embodiment compares the first incoming phone number input by the user with the second incoming phone number transmitted from the modem unit 130 of the user terminal 100, and responds accordingly. By generating a message and transmitting it to the modem unit 130, it is checked whether the incoming phone number intended by the user has been changed by the malicious program of the user terminal 100, and the second incoming phone number changed by the malicious program. It is possible to prevent user damage due to smishing by blocking outgoing.

In addition, the SIM card 200 according to an embodiment stores and manages the plurality of second received phone numbers, so that a call to one of the plurality of smishing phone numbers by the user terminal 100 and a short message may be received later. It may be advantageous to prevent user damage by automatically blocking outgoing calls.

4 is a block diagram schematically illustrating the configuration of a service server according to an embodiment of the present invention.

Referring to FIG. 4 , the service server 300 according to an embodiment includes a third communication unit 310, an input/output interface unit 320, a third control unit 330, a third storage unit 340, and a blocking unit 350. ) and a notification unit 360.

The third communication unit 310 may perform data communication with the user terminal 100 by wire or wirelessly through the network 400 . Since a communication method of the third communication unit 310 may be substantially the same as that of the first communication unit 110, a detailed description thereof will be omitted.

The input/output interface unit 320 may receive key data from the user terminal 100 and generate data and/or commands for making a phone call or transmitting a short message (SMS). For example, the input/output interface unit 320 interlocks with the input unit 120 of the user terminal 100 to receive a plurality of key data, and data including a received phone number corresponding thereto, the contents of a short message, and/or the like. Or you can create a command. Data and/or commands including the received phone number generated by the input/output interface unit 320 may be transmitted to the blocking unit 350 .

In addition, the input/output interface unit 320 may receive an outgoing phone number, short message reception data, and the like from the modem unit 130 and generate output data including the outgoing phone number in response thereto. Here, the output data displays at least one of an outgoing phone number including a user UI (User Interface), contact information corresponding to the outgoing phone number, and the contents of a short message on a display unit (not shown) of the user terminal 100. It may be data for doing, but is not limited thereto. The output data generated by the input/output interface unit 320 may be transmitted to the blocking unit 350 .

The third controller 330 may manage and control each component of the service server 300 . In addition, the third control unit 330 may manage and control interworking between each component of the service server 300 and each component of the user terminal 100, data transmission and reception, and the like.

For example, the third control unit 330 interlocks the input unit 120 of the user terminal 100 with the input/output interface unit 320 and transfers key data generated by the input unit 120 to the input/output interface unit 320. Alternatively, data and/or command transmission/reception may be controlled by interlocking the modem unit 130 and the blocking unit 350 of the user terminal 100 .

The third controller 330 imports data (eg, contact information, media data, call history, etc.) stored in the user terminal 100 or exports data stored in the third storage unit 340 to the user terminal 100 function may be provided.

In addition, when the third controller 330 transmits the key data generated by the input unit 120 of the user terminal 100 to the input/output interface unit 320, the received phone number corresponding to the key data is sent to the SIM card ( 200) can be transmitted. However, it is not limited thereto, and for example, when the third control unit 330 transmits data and/or a command including the received telephone number to the modem unit 130, the received telephone number is sent to a SIM card ( 200) may be transmitted.

The third controller 330 may generate at least one incoming phone number data for setting the preset incoming phone number by interworking with the input unit 120 of the user terminal 100 and transmit it to the SIM card 200. .

In this way, the service server 300 according to an embodiment is interworked with the user terminal 100 through the network 400, and the application program provided by the service server 300 and the application stored and stored in the user terminal 100 It is driven and transmits the incoming phone number input by the user to the user terminal 100 to the SIM card 200, so that it is possible to check whether the incoming phone number has been changed during the outgoing process by the user terminal 100. .

The third storage unit 340 may store contact information, media data, communication records, communication contents, and the like. The third storage unit 340 blocks outgoing calls from the modem unit 130 in response to a response message transmitted from the SIM card 200, or the incoming phone number to be outgoing from the modem unit 130 (e.g., the second reception When a call is made to an incoming phone number (eg, the first incoming phone number) different from the phone number), a blocking record or a call outgoing record may be separately classified or displayed and stored, but is not limited thereto.

The third storage unit 340 may store and manage a plurality of second received phone numbers transmitted from the SIM card 200, that is, a plurality of smishing phone numbers. For example, the third storage unit 340 includes a directory such as a first smishing phone number list (or a first smishing phone number list), and stores the plurality of smishing phone numbers in the first smishing phone number list. can be saved

In addition, when the user server 300 provides an automatic smishing call blocking service to the plurality of user terminals 100 and/or the SIM cards 200, the third storage unit 340 stores the plurality of user terminals 100 And/or a sub-directory for each SIM card 200 may be created to store and manage the plurality of smishing phone numbers received from each user terminal 100 and/or SIM card 200, but is limited thereto. It is not.

The blocking unit 350 may compare the calling or receiving phone number with the plurality of smishing phone numbers, and block outgoing or receiving based on the result. For example, when the blocking unit 350 receives data and/or a command including the first incoming telephone number from the input/output interface unit 320, and/or the blocking unit 350 receives data from the modem unit 130 When data including the second incoming phone number is received, the blocking unit 350 determines whether the first incoming phone number and/or the second incoming phone number are the same as at least one of the plurality of smishing phone numbers. can determine whether Here, the second incoming phone number may be a incoming phone number included in an envelope command that the modem unit 130 transmits to the SIM card 200 for outgoing calls.

As a specific example, when the first received phone number and/or the second received phone number are the same as at least one of the plurality of smishing phone numbers, the blocking unit 350 blocks the first received phone number and/or the second received phone number. Determining that data and/or commands including the second destination phone number are invalid, and blocking the data and/or commands including the first destination phone number and/or the second destination phone number, that is, the user terminal It may not be transmitted to the modem unit 130 of (100). In this case, the blocking unit 350 transmits data indicating that data and/or commands including the first incoming phone number or the second incoming phone number are blocked according to the risk of smishing together with the incoming phone number to the notification unit. (360).

Conversely, when the first received telephone number and/or the second received telephone number are not identical to at least one of the plurality of smishing telephone numbers, the blocking unit 350 blocks the first received telephone number and/or the second received telephone number. It is determined that data and/or commands including the second destination phone number are valid, and data including the first destination phone number is transmitted to the SIM card 200, and/or the second destination phone number is transmitted. Included data and/or commands (or outgoing commands) may be transmitted to the modem unit 130 of the user terminal 100 . Accordingly, the modem unit 130 may proceed with a process of sending a call or short message to the second received phone number.

In addition, when the blocking unit 350 receives the output data including the calling phone number from the input/output interface unit 320, the blocking unit 350 determines that the calling phone number is at least one of the plurality of smishing phone numbers. It can be determined whether it is the same as either one.

If the outgoing phone number is the same as at least one of the plurality of smishing phone numbers, the blocking unit 350 may block output data including the outgoing phone number, that is, may not transmit the output data to the user terminal 100. . In this case, the blocking unit 350 may provide the notification unit 360 with data indicating that the output data including the calling phone number is blocked according to the risk of smishing along with the calling phone number.

If the outgoing phone number is not the same as at least one of the plurality of smishing phone numbers, the blocking unit 350 may transmit output data including the outgoing phone number to the user terminal 100 . Accordingly, the user can determine whether or not to receive a call from the calling phone number or check a short message received from the calling phone number through the user terminal 100 .

In this way, the service server 300 according to an embodiment centrally manages a plurality of smishing phone numbers collected by a plurality of SIM cards 200, and allows each of a plurality of users to receive or send a phone call or short message. In this case, it may be advantageous to prevent user damage due to smishing by automatically blocking incoming or outgoing calls by determining whether the corresponding outgoing phone number or received phone number matches at least one of the plurality of smishing phone numbers. . In addition, it is possible to prevent malicious programs from being installed in the user terminal 100 by blocking the reception of smishing short messages in advance.

The notification unit 360 indicates that the response message received by the modem unit 130 from the SIM card 200 means that outgoing calls are not allowed, or the modem unit 130 transmits the message to the SIM card 200 while allowing outgoing calls. A notification may be sent to the user terminal 100 when it means that calling is allowed by modifying one incoming phone number to another incoming phone number.

For example, when the notification unit 360 receives the response message from the modem unit 130 or directly receives the response message from the SIM card 200, and the response message means that outgoing calls are not allowed A notification including that an outgoing call is blocked may be provided to the user terminal 100 through a notification popup or a short message.

In addition, when the response message allows outgoing, but means that the outgoing is allowed by modifying the incoming phone number to be different from the incoming phone number transmitted to the SIM card 200 by the modem unit 130, the notification unit 360 A notification including that a change in the received phone number input by the user to the user terminal 100 by a malicious program is detected may be provided through a notification pop-up or a short message. Here, the notification may include the blocked second incoming phone number, and may provide a notification before outgoing a call by the modem unit 130, but is not limited thereto.

In some embodiments, the notification unit 360 may provide the user terminal 100 with a notification including a confirmation of whether or not to proceed with an outgoing call to the received phone number input by the user. For example, the notification unit 360 provides a notification to the user terminal 100 including a button UI related to whether or not the call is in progress, that is, the progress of the call and the cancellation of the call, and the third control unit 330 provides a notification about whether or not the call is in progress. A function of controlling outgoing calls by the modem unit 130 according to a user's selection may be provided. However, the form of the notification including the notification unit 360 confirming whether or not the transmission is in progress is not limited thereto, and may be implemented in various ways.

The notification unit 360 may receive data indicating the risk of smishing from the blocking unit 350 and provide a warning message (or notification) to the user terminal 100 notifying that a call or short message has been blocked. Here, the warning message may be provided in the form of a notification pop-up or short message, but is not limited thereto.

For example, when the notification unit 360 receives data including a received phone number and/or data indicating that a command has been blocked due to the risk of smishing from the blocking unit 350, the notification unit 360 sends the user A warning message may be provided to the terminal 100 informing that transmission of a corresponding call or short message is blocked according to the risk of smishing. Here, the warning message may include the received phone number, but is not limited thereto.

In addition, when the notification unit 360 receives data indicating that the output data including the outgoing phone number is blocked according to the risk of smishing from the blocking unit 350, the notification unit 360 blocks the user terminal 100 A warning message may be provided indicating that reception of the corresponding phone call or short message has been blocked according to the risk of smishing. Here, the warning message may include the outgoing phone number, but is not limited thereto.

As such, the notification unit 360 provides a notification to the user, so that the user can indirectly confirm that the user has been exposed to a malicious program due to smishing. In addition, the notification unit 360 provides a warning message including a blocked incoming or outgoing phone number to the user terminal 100, so that the user can check the blocked incoming or outgoing phone number. It may be advantageous to reduce the risk of being exposed to criminal acts by smishing again.

5 is a flowchart illustrating a method for blocking smishing phone calls and collecting smishing phone numbers according to an embodiment of the present invention. 6 is a flowchart illustrating a method of generating a response message in a SIM card according to the present invention. In addition, FIG. 6 shows a method of automatically blocking outgoing calls using a SIM card according to the present invention.

1 to 6, the service server 300 receives a plurality of key data from the user terminal 100 (S100), generates a call command corresponding thereto, and transmits it to the user terminal 100 (S100). S200).

The service server 300 receives key data according to user input through interworking with the input unit 120 of the user terminal 100, generates a call command (or data) including a corresponding received phone number, and It can be provided to the modem unit 130 of the user terminal 100.

Then, the service server 300 transmits the first received phone number to the SIM card 200 (S300).

Here, the first incoming phone number may be a incoming phone number generated by interworking with the input unit 120 of the user terminal 100 . That is, the first received phone number may correspond to the received phone number input by the user.

In FIG. 5 , transmission of the first received phone number from the service server 300 to the SIM card 200 proceeds after the step of transmitting a call outgoing command from the service server 300 to the user terminal 100 (S200). Although illustrated, it is not limited thereto. For example, the service server 300 may transmit the first received phone number to the SIM card 200 before transmitting the call origination command to the user terminal 100, and may transmit the call origination command to the user terminal 100. ), the first received phone number may be transmitted to the SIM card 200 at the same time.

In some embodiments, the process of transmitting the first incoming phone number from the service server 300 to the SIM card 200 may be performed through the user terminal 100, but is not limited thereto.

Thereafter, the user terminal 100 transmits an envelope command to the SIM card 200 (S400).

The modem unit 130 of the user terminal 100 may transmit, to the SIM card 200, an envelope command including a second received phone number that is actually an outgoing target in response to the call outgoing command.

Here, the envelope command is for the modem unit 130 to provide event and update-related information to the SIM card 200, and the modem unit 130 responds when an event such as sending or receiving a call or text message occurs. Corresponding information may be provided to the SIM card 200 through an envelope command. For example, the envelope command may include at least one of a received telephone number, a caller's mobile country code, a mobile network code, a location area code, and a cell identity value, but is not limited thereto.

Next, the SIM card 200 determines whether the first and second received telephone numbers match at least one of a plurality of smishing telephone numbers and whether the first received telephone number and the second received telephone number match. It is checked whether or not (S500), and a response message (or command) corresponding thereto is generated and transmitted to the user terminal 100 (S600).

Specifically, referring to FIG. 6 , the comparison unit 230 of the SIM card 200 determines whether the first received phone number and/or the second received phone number match at least one of a plurality of smishing phone numbers. Check (S510).

Here, the plurality of smishing phone numbers are stored and managed in the second smishing phone number list of the second storage unit 250, and as a result of comparison in the comparison unit 230, the incoming call input by the user It may include at least one incoming telephone number identified as different from the number.

When the first received phone number and/or the second received phone number match the at least one smishing phone number, the comparator 230 provides data for this. That is, a comparison result value meaning that the first received phone number and/or the second received phone number match the at least one smishing phone number may be provided to the response unit 240 .

If the first received phone number and/or the second received phone number do not match the at least one smishing phone number, the comparator 230 compares the first received phone number with the second received phone number. Phone numbers may be compared to determine whether they match (S520), and data (or comparison result values) on whether they match may be provided to the response unit 240.

The response unit 240 generates a response message corresponding to the comparison result value, and the response message may be transmitted to the modem unit 130 of the user terminal 100 through the second communication unit 210, but is limited thereto. it is not going to be

When the comparison result value generated by the comparator 230 means that the first incoming phone number and the second incoming phone number match, the response unit 240 includes a first response value meaning that the outgoing call is allowed. A response message is generated and the corresponding response message is provided to the modem unit 130 (S610).

If the comparison result value means that the first received telephone number and the second received telephone number do not match, the response unit 240 checks whether a preset telephone number exists (S530).

Here, the preset phone number is a phone number stored in the second storage unit 250 and may mean a received phone number set by the service server 300 and/or the user. For example, the preset incoming phone number may be a phone number of a government agency such as a police station, a prosecutor's office, the Financial Supervisory Service, a bank, etc., but is not limited thereto.

When the preset phone number does not exist or when the result of the comparison means that the first incoming phone number and/or the second incoming phone number match the at least one smishing phone number, a response unit Step 240 generates a response message including a second response value indicating that transmission is not permitted, and provides the corresponding response message to the modem unit 130 (S630).

If the preset phone number exists, the response unit 240 checks whether the first received phone number matches at least one preset phone number (S540), and matches the first received phone number with at least one preset phone number. If any one preset phone number matches, a response message including a third response value indicating that calling to the first incoming phone number is allowed without allowing outgoing to the second called phone number and provides the corresponding response message to the modem unit 130 (S620).

The response message including the third response value may include the first received phone number.

In addition, when the first received phone number and at least one preset phone number do not match, the response unit 240 generates a response message including a second response value indicating that outgoing calls are not allowed, and the corresponding A response message is provided to the modem unit 130 (S630).

The first to third response values generated by the response unit 240 may include coded data, and for example, the response values may be as shown in Table 1 described above, but are not limited thereto.

In FIG. 6 , the process for generating the first to third response values by the responder 240 includes the comparison result value received from the comparator 230, the presence or absence of a preset phone number, and the first received phone number and the preset phone number. It is exemplified that it is determined according to whether the phone number matches, but is not limited thereto.

For example, if the user sets the service server 300 in advance to make a call to the first incoming phone number even when the first incoming phone number and the second incoming phone number are different, the response unit 240 ) may generate a response message including the third response value regardless of the presence or absence of a preset phone number.

The SIM card 200 may transmit the second received phone number to the service server 300 (S700).

The second control unit 220 may store the second received phone number in the second storage unit 250 and provide it to the service server 300 . The second control unit 220 determines whether the response message generated by the response unit 240 does not allow outgoing calls or allows outgoing calls to the first incoming phone number, that is, the response message has a second response value or a third When the response value is included, the second received phone number may be stored in the second storage unit 250 and provided to the service server 300 .

For example, the second controller 220 may provide the second received phone number to the service server 300 through Bearer Independent Protocol (BIP). Here, BIP may be a protocol that supports data communication between an external node and the SIM card 200 regardless of a data barrier using a packet network supported by the user terminal 100 and the network 400 . However, it is not limited thereto.

Finally, the user terminal 100 proceeds or blocks outgoing calls according to the response message received from the SIM card 200 (S800).

The modem unit 130 of the user terminal 100 may make or block a call according to a response message received from the SIM card 200 .

For example, when the first response value is included in the response message, the modem unit 130 may initiate a call without modifying the call target number, that is, make a call to the second received phone number.

When the second response value is included in the response message, the modem unit 130 may block outgoing calls.

In addition, when the response message includes the third response value, the modem unit 130 may change the call destination number to the first received phone number included in the response message and make an outgoing call.

In this way, according to the method for blocking outgoing smishing calls and collecting smishing phone numbers according to an embodiment, even if the incoming phone number input by the user is changed in the process of outgoing a call, outgoing calls to the changed incoming phone number may be blocked or Alternatively, it is possible to prevent damage to the user due to smishing by a criminal group by making a call to the incoming phone number input by the user.

In addition, whenever a call is made by the user terminal 100, it is checked whether the phone number input by the user and the phone number in the modem match, and if they do not match, the second received phone number is stored in the second storage. By storing and managing the second smishing phone number list of the unit 250, it is possible to automatically block outgoing calls by smishing in the future. Accordingly, it may be more advantageous to prevent user damage.

In some embodiments, the modem unit 130 of the user terminal 100 provides the response message to the service server 300, and the notification unit 360 of the service server 300 sends a notification corresponding to the response message. It can be provided to the user terminal 100 .

For example, when the notification unit 360 receives the response message from the modem unit 130 or directly receives the response message from the SIM card 200, and the response message means that outgoing calls are not allowed A notification including that an outgoing call is blocked may be provided to the user terminal 100 through a notification popup or a short message. The notification may include information warning damage caused by smishing, but is not limited thereto.

In addition, when the response message allows outgoing, but means that the outgoing is allowed by modifying the incoming phone number to be different from the incoming phone number transmitted to the SIM card 200 by the modem unit 130, the notification unit 360 A notification including that a change in the received phone number input by the user to the user terminal 100 by a malicious program is detected may be provided through a notification pop-up or a short message. Here, the notification may include a blocked second incoming phone number, and may provide a notification before outgoing a call by the modem unit 130, but is not limited thereto.

The notification unit 360 may provide the user terminal 100 with a notification including a confirmation as to whether or not to continue calling the received phone number input by the user. For example, the notification unit 360 provides a notification to the user terminal 100 including a button UI related to whether or not the call is in progress, that is, the progress of the call and the cancellation of the call, and the third control unit 330 provides a notification about whether or not the call is in progress. A function of controlling outgoing calls by the modem unit 130 according to a user's selection may be provided. However, the form of the notification including the notification unit 360 confirming whether or not the transmission is in progress is not limited thereto, and may be implemented in various ways.

As such, the notification unit 360 provides a notification to the user, so that the user can indirectly confirm that the user has been exposed to a malicious program due to smishing. In addition, when the notification unit 360 provides a notification including the blocked second incoming phone number, the user can recognize the second incoming phone number as a phone number of a criminal group and report it to the police station or the Financial Supervisory Service.

7 is a flowchart illustrating a method of automatically blocking outgoing calls to a smishing phone number according to an embodiment of the present invention.

Referring to FIG. 7 , the service server 300 first receives data including a plurality of key data and/or a second receiving phone number from the user terminal 100 (S110), and responds to the plurality of key data Data and/or commands for sending a phone call or short message are generated (S120).

For example, the input/output interface unit 320 interworks with the input unit 120 of the user terminal 100 to receive a plurality of key data, and data including a first received phone number corresponding thereto, the contents of a short message, and the like. and/or commands. Also, the data and/or commands generated by the input/output interface unit 320 may be transferred to the blocking unit 350 .

In some embodiments, the blocking unit 350 may further receive data including the second incoming telephone number from the modem unit 130 . Here, the second incoming phone number may be a incoming phone number included in an envelope command that the modem unit 130 transmits to the SIM card 200 for outgoing calls.

Thereafter, the service server 300 checks whether the received phone number matches the plurality of smishing phone numbers (S130).

When the blocking unit 350 receives data and/or a command including the first incoming phone number from the input/output interface unit 320, the first incoming phone number is at least one of the plurality of smishing phone numbers. You can check whether it matches the . Here, the plurality of smishing phone numbers may be phone numbers received from the SIM card 200 and stored in the first smishing phone number list of the third storage unit 340 .

In addition, when the blocking unit 350 receives data including the second incoming phone number from the modem unit 130, the blocking unit 350 determines that the second incoming phone number is among the plurality of smishing phone numbers. You can check whether it matches at least one of them.

When the first received phone number and/or the second received phone number are the same as at least one of the plurality of smishing phone numbers, the blocking unit 350 blocks the first received phone number and/or the second received phone number. Determining that the data and/or command including the phone number is invalid, and blocking the data and/or command including the first incoming phone number and/or the second incoming phone number, that is, the user terminal 100 may not be transmitted to the modem unit 130 of In this case, the blocking unit 350 transmits data indicating that data and/or commands including the first incoming phone number or the second incoming phone number are blocked according to the risk of smishing together with the incoming phone number to the notification unit. (360).

Accordingly, the notification unit 360 provides the user terminal 100 with a warning message informing that outgoing of the corresponding phone call or short message is blocked according to the risk of smishing (S140). Here, the warning message may include the first incoming phone number and/or the second incoming phone number, but is not limited thereto.

In addition, when the first received phone number and/or the second received phone number are not identical to at least one of the plurality of smishing phone numbers, the blocking unit 350 blocks the first received phone number and/or the second received phone number. It is determined that data and/or commands including the second destination phone number are valid, and data including the first destination phone number is transmitted to the SIM card 200, and/or the second destination phone number is transmitted. Included data and/or commands (or outgoing commands) may be transmitted to the modem unit 130 of the user terminal 100 . Accordingly, the modem unit 130 may proceed with a process of sending a call or short message to the second received phone number.

8 is a flowchart illustrating a method for automatically blocking reception of a smishing phone number according to an embodiment of the present invention.

Referring to FIG. 8 , the service server 300 first receives received data including an outgoing phone number from the user terminal 100 (S910) and generates output data corresponding thereto (S920).

For example, the input/output interface unit 320 may receive an outgoing phone number, received short message contents, etc. from the modem unit 130, and generate output data including the received telephone number and contents of the short message corresponding thereto. can Also, the output data generated by the input/output interface unit 320 may be transmitted to the blocking unit 350 .

Then, the service server 300 checks whether the outgoing phone number matches the plurality of smishing phone numbers (S930).

When receiving the output data including the outgoing phone number from the input/output interface unit 320, the blocking unit 350 checks whether the outgoing phone number matches at least one of the plurality of smishing phone numbers. can

When the outgoing phone number is identical to at least one of the plurality of smishing phone numbers, the blocking unit 350 determines that the output data including the outgoing phone number is invalid, and includes the outgoing phone number. The output data to be blocked may not be transmitted to the user terminal 100 . In this case, the blocking unit 350 may provide the notification unit 360 with data indicating that the output data is blocked according to the risk of smishing together with the outgoing phone number.

Accordingly, the notification unit 360 provides a warning message notifying the user terminal 100 that reception of the corresponding phone call or short message has been blocked according to the risk of smishing (S940).

Conversely, when the outgoing phone number is not the same as at least one of the plurality of smishing phone numbers, the blocking unit 350 transmits the output data including the outgoing phone number to the user terminal 100 ( S950).

Through the user terminal 100, the user can determine whether or not to receive a call from the calling phone number or check a short message received from the calling phone number.

In this way, in the case of the method of automatically blocking outgoing and incoming calls to smishing phone numbers according to an embodiment, an outgoing phone number or an incoming call is detected through comparison with at least one smishing phone number collected from the SIM card 200. It is possible to prevent user damage caused by smishing by determining whether the number corresponds to a smishing phone number and automatically blocking outgoing or receiving a phone call or short message of the user terminal 100 .

In addition, the smishing phone number is a phone number that has been changed by a malicious program when calling from any one user terminal 100 before, and is received from a plurality of SIM cards 200 and centrally managed by the service server 300. , The service server 300 may block reception of a phone call or short message by the smishing phone number of any one user terminal 100 and another user terminal 100, and accordingly, of the corresponding user terminal 100 Exposing a user to smishing or installing a malicious program in the user terminal 100 can be prevented in advance.

So far, the present invention has been looked at in detail, focusing on preferred embodiments shown in the drawings. These embodiments are merely illustrative rather than limiting of this invention, and should be considered in an illustrative rather than a limiting sense. The true technical scope of protection of the present invention should be determined by the technical spirit of the appended claims rather than the foregoing description. Although specific terms have been used in this specification, they are only used for the purpose of explaining the concept of the present invention, and are not used to limit the scope of the present invention described in the meaning or claims. Each step of the present invention need not necessarily be performed in the order described and may be performed in parallel, selectively or separately. Those skilled in the art to which the present invention pertains will understand that various modifications and other equivalent embodiments are possible without departing from the essential technical spirit of the present invention claimed in the claims. Equivalents should be understood to include currently known equivalents as well as equivalents developed in the future, that is, all elements invented to perform the same function regardless of structure.

100: user terminal 200: SIM card
300: service server 110: first communication unit
120: input unit 130: modem unit
140: first storage unit 150: first control unit
230: comparison unit 240: response unit
320: input/output interface unit 350: blocking unit
360: notification unit

Claims (21)

receiving, by a SIM card, a first received phone number input by a user for a first call to a user terminal from a service server;
receiving, by the SIM card, a first envelope command including a second incoming phone number for the first outgoing call from the user terminal;
comparing the first incoming phone number and the second incoming phone number in the SIM card to generate data including a comparison result value on whether or not they match;
transmitting the second destination phone number from the SIM card to the service server when the comparison result value means that the first destination phone number and the second destination phone number do not match;
storing the second incoming telephone number by the SIM card;
receiving, by the SIM card, a third received phone number input by the user for a second call from a service server;
receiving a second envelope command including a fourth incoming telephone number for the second outgoing call from the user terminal; and
Comparing, by the SIM card, the third incoming phone number and/or the fourth incoming phone number and the second incoming phone number; delete According to claim 1,
When the third incoming phone number and/or the fourth incoming phone number match the second incoming phone number, the SIM card generates a response message indicating that the second outgoing call is not allowed, and the user terminal How to automatically block smishing phone numbers you send to According to claim 1,
If the third received telephone number and/or the fourth received telephone number do not match the second received telephone number, the SIM card compares the third received telephone number with the fourth received telephone number to determine whether or not they match. How to automatically block smishing phone numbers for generating data including the comparison result value receiving, by the service server, the second incoming phone number from the SIM card and storing the received phone number as a smishing phone number;
generating data including a third incoming phone number input by the user for a second outgoing call by the service server interworking with the user terminal; and
The service server determining whether the third received phone number and the smishing phone number match; Including,
The second incoming telephone number is a received telephone number collected from a SIM card in a process for a first outgoing call prior to the second outgoing call of the user terminal;
The SIM card receives the first incoming telephone number input by the user for the first outgoing call from the service server and includes the second incoming telephone number for the first outgoing call from the user terminal. When a first envelope command is received and the first received phone number and the second called phone number are compared, and the first called phone number and the second called phone number are not the same Method for automatically blocking smishing phone number for transmitting the second received phone number to the service server According to claim 5,
When the third received phone number and the smishing phone number match, the service server blocks the second call and provides a warning message to the user terminal informing that the second call is blocked according to the risk of smishing. How to automatically block phishing phone numbers from According to claim 5,
Method for automatically blocking smishing phone numbers, wherein the service server transmits the third incoming phone number to the SIM card when the third incoming phone number and the smishing phone number do not match. According to claim 5,
receiving, by the service server, a fourth incoming telephone number included in a second envelope command for a second outgoing call from the user terminal; and
The method of automatically blocking smishing phone numbers further comprising determining, by the service server, whether the fourth received phone number and the smishing phone number match. According to claim 8,
When the fourth incoming phone number and the smishing phone number match, the service server blocks the second call and provides a warning message to the user terminal informing that the second call is blocked according to the risk of smishing. How to automatically block phishing phone numbers from According to claim 8,
When the fourth incoming phone number and the smishing phone number do not match, the service server transmits an outgoing command including the fourth incoming phone number to the user terminal. According to claim 5,
When the user terminal receives a call or short message from the first outgoing phone number, the service server receiving received data including the first outgoing phone number from the user terminal; and
The method of automatically blocking smishing phone numbers, further comprising determining, by the service server, whether the first outgoing phone number matches the smishing phone number. According to claim 11,
If the first outgoing phone number and the smishing phone number match, the service server blocks the call or short message received from the first outgoing phone number, and sends the user terminal from the first outgoing phone number. A method for automatically blocking a smishing phone number for providing a warning message informing that the received call or short message has been blocked according to the risk of smishing. A service server that controls transmission or reception of the user terminal through interworking with the user terminal and the SIM card,
a storage unit for storing a smishing phone number list including at least one smishing phone number;
an input/output interface unit receiving a plurality of key data from the user terminal and generating data including a first received phone number for a first outgoing call; and
A blocking unit determining whether the first received phone number and the at least one smishing phone number match;
The at least one smishing phone number is a smishing phone number collected from the SIM card in a process for a second call before the first call of the user terminal,
The SIM card includes a third received phone number collected for the second call from the input/output interface unit and a fourth envelope command included in the second envelope command transmitted from the user terminal for the second call. Comparing the received phone numbers, and transmitting the fourth received phone number to the service server when the third received phone number and the fourth received phone number are different,
The service server of claim 1 , wherein the storage unit stores the fourth received phone number as the smishing phone number. According to claim 13,
The service server of claim 1 , wherein the blocking unit blocks the first call when the first received phone number and the at least one smishing phone number are the same. According to claim 13,
The blocking unit receives a second incoming phone number included in the first envelope command for the first outgoing call from the user terminal, and determines whether the second incoming phone number matches the at least one smishing phone number. Service server to judge. According to claim 15,
The service server of claim 1 , wherein the blocking unit blocks the first call when the first incoming phone number and/or the second incoming phone number are the same as the at least one smishing phone number. According to claim 13,
When the user terminal receives a call or short message from a first outgoing phone number, the input/output interface unit receives received data including the first outgoing phone number from the user terminal;
The blocking unit determines whether the first outgoing phone number and the at least one smishing phone number match, and if the first outgoing phone number and the at least one smishing phone number are the same, the first outgoing phone number A service server that blocks calls or short messages received from A communication unit that receives the first incoming phone number input by the user for the first outgoing call from the service server and receives an envelope command including the second incoming phone number for the first outgoing call from the user terminal. ;
a comparison unit which compares the first received telephone number with the second received telephone number and generates a comparison result value on whether or not they match;
a response unit generating a response message according to the comparison result value and providing the response message to the user terminal;
a control unit for transmitting the second incoming phone number to the service server when the response message does not permit an outgoing call to the second incoming phone number; and
A storage unit for storing at least one smishing phone number;
The control unit stores the second received telephone number as the smishing telephone number in the storage unit when the response message does not permit an outgoing call to the second received telephone number;
The communication unit receives the third incoming phone number input by the user for the second outgoing call from the service server, and transmits an envelope command including the fourth incoming phone number for the second outgoing call from the user terminal. If received,
wherein the comparator determines whether the third received telephone number and/or the fourth received telephone number match the smishing telephone number. delete delete A service server that controls transmission or reception of each of the plurality of user terminals through interworking with a plurality of user terminals and a plurality of SIM cards,
a storage unit for storing a smishing phone number list including at least one smishing phone number;
an input/output interface unit receiving a plurality of key data from a first user terminal among the plurality of user terminals and generating data including a first received telephone number for a first outgoing call; and
A blocking unit determining whether the first received phone number and the at least one smishing phone number match;
The at least one smishing phone number is a smishing phone number collected from a SIM card installed in one of the plurality of user terminals in a process for making a second call of any one user terminal among the plurality of user terminals,
The SIM card is included in a third received phone number collected for the second call from the input/output interface unit and a second envelope command transmitted for the second call from any one of the user terminals. Compare the fourth received phone number, and transmit the fourth received phone number to the service server when the third received phone number and the fourth received phone number are different,
wherein the storage unit stores the fourth received phone number as the smishing phone number.

Images