KR102606701B1 - Method of implementing technology to prevent smishing text fraud crimes related to congratulations and condolences - Google Patents

Abstract

The present invention is a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences. The present invention verifies the safety of URL addresses and account information included in text messages related to family events and condolences, and provides a verification code and identification code in the verified text messages. technology to prevent smishing text fraud crimes related to family events and condolences by verifying whether the text message received by the recipient terminal matches the verified text message sent by the sender terminal. The purpose is to provide an implementation method.

Description

{Method of implementing technology to prevent smishing text fraud crimes related to congratulations and condolences}

The present invention is a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences. The present invention verifies the safety of URL addresses and account information included in text messages related to family events and condolences, and provides a verification code and identification code in the verified text messages. technology to prevent smishing text fraud crimes related to family events and condolences by verifying whether the text message received by the recipient terminal matches the verified text message sent by the sender terminal. It's about implementation method.

Smishing refers to including a URL address containing malicious code in a text message and encouraging the user to access the URL address, thereby installing an application containing malicious code on the user's terminal to control the terminal's permissions or steal the user's personal information. It is a criminal method of leaking information.

In general, smishing text messages are disguised as messages from trusted organizations such as public institutions, banks, or companies, or as messages from acquaintances such as family or friends, leading users to access malicious web pages without suspicion. As a result, damage caused by smishing is continuously increasing.

As smishing crimes increase, it is recommended to delete text messages containing URL addresses without opening them. However, there are many cases where text messages containing URL addresses are sent, such as for congratulations or condolences, so from the user's perspective, the URL address is Even if you receive a text message containing , there is a problem in that it is difficult to check whether the text message is a malicious message intended to steal personal information.

Therefore, before the sender sends a text message containing a URL address, it is verified whether the URL address is the address of a normal web page, and before the recipient views the text message, the verification server is notified of the text message. There is a need to quickly establish a method to prevent smishing crimes by requesting confirmation of safety.

The present invention is a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences. The present invention verifies the safety of URL addresses and account information included in text messages related to family events and condolences, and provides a verification code and identification code in the verified text messages. technology to prevent smishing text fraud crimes related to family events and condolences by verifying whether the text message received by the recipient terminal matches the verified text message sent by the sender terminal. The purpose is to provide an implementation method.

In order to solve the above problems, as a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences performed on the sender terminal, recipient terminal, and verification server,

A verification request step of requesting verification of whether the text message is safe by sending a text message to the verification server by the sender terminal, including account information for receiving a congratulatory or condolence payment and a URL address providing information on the congratulatory or condolence event;

The verification server connects to the URL address included in the text message to verify whether it contains malicious code. If the URL address is a URL address for application installation, the verification server installs the application to check whether it contains malicious code. A URL address verification step of verifying whether the URL address is safe or not;

The verification server identifies account information in the text included in the text message, identifies whether the account information is included in the whitelist and blacklist previously stored in the database of the verification server, and identifies the account information. Account verification step to verify safety;

An identification code granting step of assigning an identification code to a text message in which the safety of the URL address and the account information has been verified by the verification server and storing the text message in the database of the verification server;

A verification code generation step of generating a verification code in the form of a hash code by inputting data combining the URL address and the identification code into a hash generation algorithm by the verification server;

A verification code transmission step of sending a text message with a verification code assigned to the text message received from the sender terminal by the verification server;

A text sending step of sending a text message with a verification code assigned by the sender terminal to the receiver terminal, and sending the URL address and verification code received from the sender terminal to the verification server by the receiver terminal; and

Data combining the URL address received from the recipient terminal by the verification server and the identification code stored in the database of the verification server are entered into a hash generation algorithm to generate a verification confirmation code in the form of a hash code, and the verification confirmation is performed. Provides a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences, including a code verification step of checking whether the text message is safe by checking whether the code matches the verification code received from the recipient terminal. .

In one embodiment of the present invention, the account verification step identifies text and account information for congratulations and condolences information in text messages received from one or more sender terminals, and identifies the type, party, location, date, and time of the congratulations and condolences. If one or more pieces of information are different, but the account information for receiving the congratulations and condolences is identical, the method may further include determining that all text messages corresponding to the case are less secure.

In one embodiment of the present invention, the method of implementing the technology for preventing smishing text fraud crimes related to congratulations and condolences is to install the same anti-smishing application on the sender terminal and the recipient terminal and send a text message from the anti-smishing application. A verification request step and a text sending step in which text messages are sent and received are performed, and the text sending step further includes providing information about the installation path and installation method for the anti-smishing application to the recipient terminal. can do.

In one embodiment of the present invention, the verification server stores the identification code for each text message in a database, and inputs data combining the URL address received from the sender terminal and the identification code into the hash generation algorithm. , generate a verification code in the form of a hash code, input data combining the URL address and the identification code received from the recipient terminal into the hash generation algorithm, generate a verification confirmation code in the form of a hash code, and generate the verification code. The stability of the text message can be verified by determining whether the verification confirmation code matches the above.

In one embodiment of the present invention, the verification server stores a web page image for a screen displayed on the terminal when accessing the URL address in the database of the verification server, and the code verification step is installed in the recipient terminal. The smishing prevention application may display the web page image and provide a screen displayed on the recipient terminal when the recipient terminal accesses the URL address.

According to one embodiment of the present invention, before sending a text message for congratulatory or condolence information, the sender terminal requests the verification server to verify whether the text message is safe, and transmits a text message whose safety has been verified to the recipient terminal. can do.

According to one embodiment of the present invention, the verification server can detect whether the text message has been altered by assigning an identification code in the form of a hash code to the text message whose safety has been verified.

According to one embodiment of the present invention, the verification server can verify whether the text message is safe using only the URL address and verification code received from the recipient terminal.

According to one embodiment of the present invention, the verification server may provide a web page image for the URL address to the recipient terminal before the recipient terminal accesses the URL address included in the text message.

According to one embodiment of the present invention, the verification server can identify text and account information included in text messages received from a plurality of sender terminals and verify whether the text messages are safe.

Figure 1 illustrates the components of technology for preventing smishing text fraud crimes related to congratulations and condolences according to an embodiment of the present invention.
Figure 2 schematically shows the implementation steps of technology for preventing smishing text fraud crimes related to family events and condolences according to an embodiment of the present invention.
Figure 3 schematically illustrates the process of determining whether a text message is safe based on congratulatory/condolence information and account information according to an embodiment of the present invention.
Figure 4 shows that a verification code and a verification confirmation code are generated based on the URL addresses received from the sender terminal and the recipient terminal according to an embodiment of the present invention, and the text message is confirmed by checking whether the verification code and the verification confirmation code match. This schematically shows the process of verifying safety.
Figure 5 schematically shows the process of displaying a screen when accessing a URL address in an anti-smishing application installed on a recipient terminal according to an embodiment of the present invention.

BRIEF DESCRIPTION OF THE DRAWINGS Various embodiments and/or aspects are now disclosed with reference to the drawings. In the following description, for purposes of explanation, numerous specific details are set forth to facilitate a general understanding of one or more aspects. However, it will also be appreciated by those skilled in the art that this aspect(s) may be practiced without these specific details. The following description and accompanying drawings set forth in detail certain example aspects of one or more aspects. However, these aspects are illustrative and some of the various methods in the principles of the various aspects may be utilized, and the written description is intended to encompass all such aspects and their equivalents.

Additionally, various aspects and features may be presented by a system that may include multiple devices, components and/or modules, etc. It is also understood that various systems may include additional devices, components and/or modules, etc. and/or may not include all of the devices, components, modules, etc. discussed in connection with the drawings. It must be understood and recognized.

As used herein, “embodiments,” “examples,” “aspects,” “examples,” etc. may not be construed to mean that any aspect or design described is better or advantageous over other aspects or designs. . The terms '~part', 'component', 'module', 'system', 'interface', etc. used below generally refer to computer-related entities, such as hardware, hardware, etc. A combination of and software, it can mean software.

Additionally, the terms “comprise” and/or “comprising” mean that the feature and/or element is present, but exclude the presence or addition of one or more other features, elements and/or groups thereof. It should be understood as not doing so.

Additionally, terms including ordinal numbers, such as first, second, etc., may be used to describe various components, but the components are not limited by the terms. The above terms are used only for the purpose of distinguishing one component from another. For example, a first component may be named a second component, and similarly, the second component may also be named a first component without departing from the scope of the present invention. The term and/or includes any of a plurality of related stated items or a combination of a plurality of related stated items.

In addition, in the embodiments of the present invention, unless otherwise defined, all terms used herein, including technical or scientific terms, are generally understood by those skilled in the art to which the present invention pertains. It has the same meaning as Terms defined in commonly used dictionaries should be interpreted as having a meaning consistent with the meaning in the context of the related technology, and unless clearly defined in the embodiments of the present invention, have an ideal or excessively formal meaning. It is not interpreted as

Figure 1 illustrates the components of technology for preventing smishing text fraud crimes related to congratulations and condolences according to an embodiment of the present invention.

As shown in Figure 1, the technology for preventing smishing text fraud crimes related to congratulations and condolences according to the present invention includes a sender terminal that sends a text message, a recipient terminal that receives the text message, and whether the text message is safe. It can be implemented by a verification server that verifies.

The sender terminal is the entity that sends text messages related to congratulations and condolences. In general, text messages are sent to request attendance by providing information on congratulations and condolences such as funerals, weddings, and first birthday parties, or to provide account information to transfer congratulations and condolences such as congratulations and condolences. can be sent.

Specifically, information about congratulations and condolences and account information may be transmitted in text form through text messages, but recently, in order to provide more information, URL addresses that can access external web pages such as funeral home and wedding hall homepages are included. It is often sent.

However, when sending a text message including a URL address as described above, it is difficult for the recipient to identify whether the web page in question is a web page intended to steal personal information, and even if the web page is accessed, the web page is intended to provide information on family events or condolences. There is a problem in that it is difficult to identify whether it is a normal web page or a forged web page to be used for smishing crimes.

Therefore, before sending a text message for congratulatory or condolence information to the recipient terminal, the sender terminal can transmit a text message with guaranteed reliability by requesting verification of whether the text message is safe from the verification server.

The verification server can perform verification on the text message verification request received from the sender terminal and can confirm whether the text message received from the receiver terminal is safe.

Specifically, the verification server verifies the URL address and account information included in the text message received from the sender terminal, and if the text message is safe, it can generate an identification code and verification code for the text message. Preferably, the verification code is retransmitted to the sender's terminal in the form of a text message, and the identification code can be encrypted and stored in the database of the verification server.

The recipient terminal can receive a text message for congratulations and condolences from the sender terminal, and can request verification from the verification server whether the text message is a safe text message verified by the verification server. Specifically, the text message that the recipient terminal receives from the sender terminal includes a URL address and verification code, and the recipient terminal can check whether the text message is safe by sending only the URL address and verification code of the text message to the verification server. there is.

As a result, even when receiving a text message with a large data volume such as a video, image, or audio file, the recipient terminal can request verification of the text message in a data efficient manner using only the URL address and verification code, which are data in text format.

Meanwhile, the technology for preventing smishing text fraud crimes of the present invention can be implemented in an anti-smishing application installed on the sender terminal and the recipient terminal. Specifically, the anti-smishing application installed on the sender terminal and the receiver terminal may be the same application, and the verification request for the text message and the sending and receiving steps of the text message may be performed in the anti-smishing application.

Preferably, when the anti-smishing application is not installed in the recipient terminal, the sender terminal can transmit a text message containing information about the installation path and installation method of the anti-smishing application to the recipient terminal.

Figure 2 schematically shows the implementation steps of technology for preventing smishing text fraud crimes related to family events and condolences according to an embodiment of the present invention.

As shown in Figure 2, as a method of implementing technology to prevent smishing text fraud crimes related to congratulations and condolences performed in the sender terminal, the recipient terminal, and the verification server, a person who wishes to receive congratulatory or condolence money from the verification server by the sender terminal A verification request step of requesting verification of whether the text message is safe by sending a text message containing a URL address providing account information and information on family events and condolences; The verification server connects to the URL address included in the text message to verify whether it contains malicious code. If the URL address is a URL address for application installation, the verification server installs the application to check whether it contains malicious code. A URL address verification step of verifying whether the URL address is safe or not; The verification server identifies account information in the text included in the text message, identifies whether the account information is included in the whitelist and blacklist previously stored in the database of the verification server, and identifies the account information. Account verification step to verify safety; An identification code granting step of assigning an identification code to a text message in which the safety of the URL address and the account information has been verified by the verification server and storing the text message in the database of the verification server; A verification code generation step of generating a verification code in the form of a hash code by inputting data combining the URL address and the identification code into a hash generation algorithm by the verification server; A verification code transmission step of sending a text message with a verification code assigned to the text message received from the sender terminal by the verification server; A text sending step of sending a text message with a verification code assigned by the sender terminal to the receiver terminal, and sending the URL address and verification code received from the sender terminal to the verification server by the receiver terminal; And data combining the URL address received from the recipient terminal by the verification server and the identification code stored in the database of the verification server is input into a hash generation algorithm to generate a verification confirmation code in the form of a hash code, and the verification is performed. It may include a code verification step of checking whether the text message is safe by checking whether the verification code matches the verification code received from the recipient terminal.

The sender terminal may perform a verification request step (S10) in which it transmits the text message to the verification server to request verification of the text message related to the congratulations and condolences to the verification server. Specifically, before sending a text message for congratulatory or condolence information to the recipient terminal, the sender terminal requests the verification server to determine whether the URL address and account information included in the text message are safe, thereby sending a text message with guaranteed reliability to the recipient terminal. It can be sent to .

Preferably, an anti-smishing application is installed on the sender's terminal, and the sender who wishes to send a text message related to congratulations or condolences enters the text message to be sent on the interface provided by the anti-smishing application and reports the text message to the verification server. Verification can be requested.

Subsequently, the verification server verifies whether the text message received from the sender terminal is safe and can assign a unique identification code and verification code to the text message whose safety has been verified (S11 to S14).

The verification server may perform a URL address verification step (S11) to verify the URL address included in the text message. Specifically, blacklists and whitelists for URL addresses are pre-stored in the database of the verification server, and when a URL address is included in a text message received from the sender terminal, the verification server places the URL address in the blacklist and whitelist. You can first verify whether it is included or not.

Meanwhile, as described above, simply checking the blacklist and whitelist stored in the verification server for the URL address included in the text message is an appropriate response in the case where personal information is stolen from a newly created URL address by an attacker. It's hard to do.

Therefore, in the present invention, it is possible to verify whether the URL address is a safe address by performing a black box test on the URL address. Specifically, the verification server can perform a black box test on the URL address, including a virtual machine that can connect to the URL address or install an application.

Preferably, the virtual machine of the verification server can access the URL address included in the text message for which the sender terminal has requested verification and verify whether the URL address contains malicious code.

In addition, if the URL address is a URL address for installing a specific application, the virtual machine installs the application and verifies whether the application contains malicious code, or extracts the authorization information requested by the application from the terminal and installs the application. You can verify whether this is a malicious application intended to steal personal information.

Specifically, the types of permissions that an application can request from a terminal may include permissions such as 'read and write SMS', 'check terminal location information by GPS or Wi-Fi', 'read address book', and 'camera and audio control'. The virtual machine can verify whether the URL address is safe by identifying what type of permission the application to be installed is requesting from the terminal from the URL address.

Specifically, applications that have been altered to steal personal information are likely to request unnecessary permissions that are unrelated to family and condolence information, such as 'camera and audio control', and the verification server determines the number of permissions required by the application based on the type and number of permission information required by the application. The safety of the product can be verified.

Additionally, in the URL address verification step (S11), it is possible to determine whether the text message is a normal text message related to congratulations or condolences by viewing not only the URL address but also the video, image, and audio files included in the text message. Specifically, malicious text messages may contain files in the form of videos, images, and audio to induce access to illegal web pages such as gambling sites or pornography sites. By viewing the file included in the text message, the verification server can verify whether the text message is safe by identifying whether the file is a normal file for congratulatory or condolence information.

Meanwhile, the verification server can access the URL address and store the web page image for the screen displayed on the terminal in the verification server's database. Specifically, if the URL address is a URL address for a malicious web page, the verification server can store a web page image for the URL address.

As a result, when the recipient terminal requests verification of a text message containing a malicious URL address, the verification server transmits a web page image for the URL address to the recipient terminal without the recipient terminal accessing the URL address. It can be recognized that the URL address is a URL address for a malicious web page.

Next, the verification server may perform an account verification step (S12) to verify the account information included in the text message. Specifically, text messages related to congratulations and condolences often include account information for receiving congratulations and condolences, and the verification server can verify whether the text message is safe by verifying the account information.

Specifically, just as the blacklist and whitelist for URL addresses are stored, the blacklist and whitelist for account information may be pre-stored in the database of the verification server.

If the text message received from the sender's terminal includes account information, the verification server can verify whether the account information is safe by first verifying whether the account information corresponds to a blacklist or whitelist.

Preferably, account information that has a history of being used for smishing crimes or similar financial crimes in the past is stored as a blacklist in the database of the verification server, and if the account information included in the text message is included in the blacklist, the text message It can be determined that the safety of is low.

In addition, the verification server can identify the text about the congratulations and condolences information in the text message being verified, and analyze the text to verify the reliability of the account information.

Specifically, the text for the congratulatory or condolence information may include information about the type of congratulatory or condolence event, identity information of the congratulatory or condolence party and relatives, and the location, date, time, etc. of the congratulatory or condolence event. In the general case of smishing crime, text messages are often sent to multiple recipient terminals with only the above-described congratulatory/condolence information being different, and the account information for receiving congratulatory/condolence funds being the same.

Therefore, in the case where multiple text messages received from multiple sender terminals have different information on congratulations or condolences, but the account information for receiving the congratulations or condolences matches, the verification server will send all text messages corresponding to those cases. Regarding this, it can be determined that the security of text messages is low.

Meanwhile, the verification server can determine whether the text message for which verification has been requested by the sender terminal is safe based on information on the server from which the sender terminal sent the text message. Specifically, when the sender's terminal requests verification of a text message from overseas, it can be determined that the security of the text message is low.

Preferably, when the sender's terminal sends a text message from overseas, the preset number of times in the account verification step (if the family or condolence information is different, but the account information matches) is set low to verify the safety of the text message. can do.

In this way, the verification server is not limited to the URL address and account information included in the text message, but can verify whether the text message is safe by referring to the location of the sender's terminal (server information).

As a result, the verification server can determine whether the text message for which verification has been requested by the sender terminal is safe by performing the URL address verification step (S11) and the account verification step (S12).

Next, the verification server may perform an identification code granting step (S13) in which an identification code is assigned to the text message whose safety has been verified. Specifically, the identification code is an element that is given differently to each text message to identify whether the text message has been altered, and can be used in combination with the URL address to generate a verification code and verification confirmation code.

Preferably, the identification code may include information about the sender terminal that sent the text message.

Additionally, the identification code is data used to determine whether the text message verified by the verification server has been tampered with, and may be stored in the database of the verification server rather than being transmitted to the sender terminal or recipient terminal.

Preferably, the identification code can be encrypted and stored on the verification server in a form that maintains security.

Next, the verification server may perform a verification code generation step (S14) in which a verification code is generated based on data that combines the URL address of the text message whose safety has been verified and the identification code assigned to each text message. Specifically, the verification code can be generated in the form of a hash code by a hash generation algorithm.

Preferably, the hash generation algorithm is an algorithm that receives data combining a URL address and an identification code and generates a hash code. By receiving a different URL address and identification code for each text message and generating a verification code, the hash code is generated in a different form for each text message. A verification code can be given.

Additionally, the verification code can be given in text form to a text message and transmitted to the sender's terminal. Specifically, the sender terminal sends a text message with a verification code to the receiver terminal, and the receiver terminal transmits only data about the verification code and URL address of the text message to the verification server, thereby performing a verification request for the safety of the text message. You can.

As a result, the verification code determines whether the text message has been tampered with, and the safety of the text message is confirmed only with the verification code in text form, rather than sending the entire large text message, including photos, videos, and sound files, to the verification server. The safety of text messages can be verified data efficiently.

Additionally, as described above, the URL address verification step and the account verification step for the text message are performed after a verification request is made from the sender terminal, and can be completed before the text message is sent to the recipient terminal.

Next, the verification server may perform a verification code transmission step (S15) in which a text message with a verification code is sent to the sender terminal. Specifically, the verification code can be included on one side of the text message or sent to the sender's terminal in a form that can be searched in an anti-smishing application.

Subsequently, the sender terminal can transmit a text message that has been verified by the verification server to the recipient terminal (S16). Specifically, the sender terminal and the receiver terminal can send and receive text messages with a verification code given in the anti-smishing application.

Meanwhile, if the anti-smishing application is not installed on the recipient terminal, the sender terminal can send a separate text message containing information about the installation path and installation method of the anti-smishing application to the recipient terminal.

Subsequently, the recipient terminal may transmit the URL address and verification code included in the text message received from the sender terminal to the verification server (S17). Specifically, the recipient terminal copies only the URL address and verification code in text form, excluding large data such as photos, videos, and sound files, among the text messages received from the sender terminal, and sends them to the verification server to verify the text message. Verification can be requested.

The verification server is a code that verifies the text message by checking whether the text message received from the recipient terminal matches the text message whose safety was verified in the text verification step based on the URL address and verification code received from the recipient terminal. Verification steps (S18 to S19) can be performed.

The verification server can generate a verification confirmation code by combining the URL address included in the text message received from the recipient terminal and the identification code assigned to each text message in the identification code granting step (S13). (S18) Specifically verification. The verification code may be data in the form of a hash code generated by the same algorithm as the hash generation algorithm that generates the verification code.

Subsequently, the verification server can verify whether the text message is safe by verifying whether the verification code matches the verification confirmation code. (S19) Specifically, the verification server verifies the verification generated from the URL address received from the sender terminal. By checking whether the code matches the verification confirmation code generated from the URL address received from the recipient terminal, it can be determined whether the URL address has been altered.

Preferably, when the verification code and the verification confirmation code do not match, the URL address received by the recipient terminal is different from the URL address verified by the verification server, so that the corresponding URL address is an unverified URL address in the recipient terminal. I can guide you.

In the same way as above, the verification server allows the smishing crime attacker to receive the verification code for the text message through a normal URL address, and when sending a text message to the recipient terminal, the URL address is modified into a malicious web page and the recipient receives the verification code. You can prevent cases where the terminal is prompted to access a malicious web page.

Additionally, the step of checking whether the verification code matches the verification confirmation code is a step of checking whether data in text form matches, and can be performed with a small amount of data calculation.

Specifically, the verification of relatively large video, image, and audio files was performed in the URL verification step and the account verification step, and the verification of the text message received from the recipient terminal was consistent with the text message that was verified in the above step. Safety verification of text messages can be performed in a data- and time-efficient manner by simply determining whether or not the text message is being used.

As a result, the verification server determines whether the identification code containing information about the sender terminal matches the URL address sent by the sender terminal, so that the text message sent by the same sender terminal and the text message verified by the verification server are matched. You can verify whether it is or not.

Figure 3 schematically illustrates the process of determining whether a text message is safe based on congratulatory/condolence information and account information according to an embodiment of the present invention.

As shown in Figure 3, the verification server analyzes the text information for congratulations and condolences, which is text information about congratulations and condolences, and the account information for receiving congratulations and condolences money for a plurality of text messages received from a plurality of sender terminals to determine whether the text messages are safe. It can be verified.

In the case of smishing crimes, in most cases, a small number of attackers send malicious text messages to a large number of attack targets, so the account information identified in multiple malicious text messages, that is, in the case of malicious text messages, account information for collecting crime proceeds. may match.

Therefore, in the present invention, the congratulatory/condolence information and account information included in a plurality of text messages for which verification requests have been made by a plurality of sender terminals are identified, and information on different congratulations/condolences is provided, but only the account information for receiving the congratulatory/condolence money matches. If multiple cases are identified, the security of the text message corresponding to those cases can be determined to be low.

Figure 4 shows that a verification code and a verification confirmation code are generated based on the URL addresses received from the sender terminal and the recipient terminal according to an embodiment of the present invention, and the text message is confirmed by checking whether the verification code and the verification confirmation code match. This schematically shows the process of verifying safety.

As shown in Figure 4, the verification server can determine whether the text message has been altered by checking whether the URL address included in the text message received from the sender terminal matches the URL address received from the recipient terminal.

Specifically, the verification server grants an identification code to identify text messages for which the safety of URL addresses and account information has been verified, and data combining the identification code and the URL address included in the text message is used to generate a hash. You can generate a verification code by entering it.

Additionally, the recipient terminal can request confirmation of whether the text message is safe by sending the URL address and verification code included in the text message received from the sender terminal to the verification server.

Specifically, the verification server can generate a verification confirmation code by combining the URL address received from the recipient terminal and the identification code for the corresponding text message and inputting it into the same hash generation algorithm as the algorithm for generating the verification code.

The verification server can check whether the text message is safe by checking whether the verification code received from the recipient terminal matches the verification confirmation code generated by the verification server.

In one embodiment of the present invention, an attacker enters a normal URL address, requests the verification server to verify a text message, receives a text message with a verification code, and sends the URL address requested for verification to a specific web page for smishing crime. When altering a text message and sending it to the recipient terminal, the recipient terminal requests verification of the URL address (in this case, a web page for smishing crime) and verification code received from the sender terminal, so that the URL address is verified. You can check whether it matches the URL address verified on the server.

In addition, the verification code and verification confirmation code are hash code-type data generated by a hash generation algorithm, and the task of checking whether the verification code and the verification confirmation code match can be performed through a simple calculation operation.

As a result, verification steps that require a lot of data operations, such as checking whether a text message is safe, that is, connecting to a URL address performed by a virtual machine or installing an application to identify the presence of malicious code, are performed on the sender terminal. After the verification request is made, the verification request is completed, and the step of verifying whether the text message is safe by determining whether the verification confirmation code matches the verification code is performed with relatively small data operations, so the recipient terminal can respond to the text message within a short period of time. You can check the verification results for safety.

Figure 5 schematically shows the process of displaying a screen when accessing a URL address in an anti-smishing application installed on a recipient terminal according to an embodiment of the present invention.

As shown in FIG. 5, the verification server stores a web page image for the screen displayed on the terminal when accessing the URL address in the database of the verification server, and the code verification step is performed using a code installed on the recipient terminal. The web page image can be displayed in the anti-sewing application to provide a screen displayed on the recipient terminal when the recipient terminal accesses the URL address.

Meanwhile, as described above, the technology for preventing smishing text fraud crimes of the present invention can be implemented in an anti-smishing application. Specifically, the recipient terminal can install the anti-smishing application to receive a text message with a verification code from the sender terminal, and copy the verification code and the URL address included in the text message and enter it into the anti-smishing application. You can request verification of the text message from the verification server.

If the verification code and verification confirmation code match and the text message is determined to have not been tampered with by the verification server, the verification server provides information about the case to the recipient terminal, allowing the recipient terminal to view the text message and URL address. can do.

Meanwhile, if the safety of the text message has not been verified because the verification code and verification confirmation code do not match, the verification server can provide information about the case to the recipient terminal. Specifically, in the step of verifying the URL address, if the URL address is identified as a URL address for an illegal web page such as a gambling or pornographic site, the verification server provides a web page image for the web page to the recipient terminal. can do.

As a result, if a text message contains a URL address that is expressed in text form and it is difficult to clearly identify which web page the URL address is for, the URL address can be identified as the URL address for any web page without the recipient terminal accessing the URL address. By clearly recognizing the recognition, you can prevent damage that may occur when the recipient accesses a malicious web page.

According to one embodiment of the present invention, before sending a text message for congratulatory or condolence information, the sender terminal requests the verification server to verify whether the text message is safe, and transmits a text message whose safety has been verified to the recipient terminal. can do.

According to one embodiment of the present invention, the verification server can detect whether the text message has been altered by assigning an identification code in the form of a hash code to the text message whose safety has been verified.

According to one embodiment of the present invention, the verification server can verify whether the text message is safe using only the URL address and verification code received from the recipient terminal.

According to one embodiment of the present invention, before the recipient terminal accesses the URL address included in the text message, a web page image for the URL address may be provided to the recipient terminal.

According to one embodiment of the present invention, it is possible to identify text and account information included in text messages received from a plurality of sender terminals and verify whether the text messages are safe.

As described above, although the embodiments have been described with limited examples and drawings, various modifications and variations can be made by those skilled in the art from the above description. For example, the described techniques are performed in a different order than the described method, and/or components of the described system, structure, device, circuit, etc. are combined or combined in a different form than the described method, or other components are used. Alternatively, appropriate results may be achieved even if substituted or substituted by an equivalent. Therefore, other implementations, other embodiments, and equivalents of the claims also fall within the scope of the claims described below.

Claims (5)

As a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences performed on the sender terminal, recipient terminal, and verification server,
A verification request step of requesting verification of whether the text message is safe by sending a text message to the verification server by the sender terminal, including account information for receiving a congratulatory or condolence payment and a URL address providing information on the congratulatory or condolence event;
The verification server connects to the URL address included in the text message to verify whether it contains malicious code. If the URL address is a URL address for application installation, the verification server installs the application to check whether it contains malicious code. A URL address verification step of verifying whether the URL address is safe or not;
The verification server identifies account information in the text included in the text message, identifies whether the account information is included in the whitelist and blacklist previously stored in the database of the verification server, and identifies the account information. Account verification step to verify safety;
An identification code granting step of assigning an identification code to a text message in which the safety of the URL address and the account information has been verified by the verification server and storing the text message in the database of the verification server;
A verification code generation step of generating a verification code in the form of a hash code by inputting data combining the URL address and the identification code into a hash generation algorithm by the verification server;
A verification code transmission step of sending a text message with a verification code assigned to the text message received from the sender terminal by the verification server;
A text sending step of sending a text message with a verification code assigned by the sender terminal to the receiver terminal, and sending the URL address and verification code received from the sender terminal to the verification server by the receiver terminal; and
Data combining the URL address received from the recipient terminal by the verification server and the identification code stored in the database of the verification server are entered into a hash generation algorithm to generate a verification confirmation code in the form of a hash code, and the verification confirmation is performed. A code verification step of confirming whether the text message is safe by checking whether the code matches the verification code received from the recipient terminal. A method of implementing technology to prevent smishing text fraud crimes related to family events and condolences, including.
In claim 1,
The account verification step is,
By identifying the text and account information for congratulatory and condolence information in text messages received from one or more sender terminals, one or more pieces of information regarding the type, party, location, date, and time of the congratulation or condolence are different, but the account information for receiving the congratulatory or condolence money is If a matching case is identified more than a preset number of times, a method of implementing technology to prevent smishing text fraud crimes related to family events and condolences, further comprising the step of determining that the entire text message corresponding to the case is of low security.
In claim 1,
The method of implementing technology to prevent the smishing text fraud crime related to congratulations and condolences is,
The same anti-smishing application is installed on the sender terminal and the receiver terminal, and the anti-smishing application performs a verification request step for a text message and a text sending step in which the text message is sent and received,
The text sending step is,
A method of implementing technology for preventing smishing text fraud crimes related to family events and condolences, further comprising providing information about an installation path and installation method for the anti-smishing application to the recipient terminal.
In claim 1,
The verification server stores the identification code for each text message in a database,
Input data combining the URL address received from the sender terminal and the identification code into the hash generation algorithm to generate a verification code in the form of a hash code,
Input data combining the URL address received from the recipient terminal and the identification code into the hash generation algorithm to generate a verification confirmation code in the form of a hash code,
A method of implementing technology to prevent smishing text fraud crimes related to family events and condolences, which verifies the stability of a text message by determining whether the verification code matches the verification confirmation code.
In claim 1,
The verification server is,
When accessing the URL address, a web page image of the screen displayed on the terminal is stored in the database of the verification server,
The code verification step is,
Smishing text fraud crime related to congratulations and condolences, characterized in that the web page image is displayed in the anti-smishing application installed on the recipient terminal and a screen displayed on the recipient terminal is provided when the recipient terminal accesses the URL address. How to implement technology for prevention.

Images