200529625 五、發明說明(1) 【發明所屬之技術領域】 本發明係有關一種身分識別卡之應用技術,特別是關 於一種運用動態密碼之身分確認方法及其架構。 【先前技術】 按,在塑膠貨幣活絡的時代,各種偽卡及盜刷事件層 出不窮,在不失便利性的考量下,具有安全性且多功能性 的I C晶片卡於焉而生,I C晶片卡係為一種與一般常用的信 用卡或提款卡或金融卡相同大小的塑膠卡片,其上增設有 一片I C晶片,若要對I C晶片卡内部進行存取則必須透過權 限控管及專用的讀卡機(Reader)才能完成;並可在1C晶 片卡上劃分許多區域,每個區域各具有一種功能,包含電 子錢、打電話等功能,使其應用更為廣泛。 且隨著多樣化的時代來臨,I C晶片卡亦因具有彈性的 記憶空間,可因應不同的需求,並結合不同產業的功能整 合在一張卡片上,真正達到「一卡在手,行遍天下」的理 想,所以發展空間無限。又因網路通訊的蓬勃發展與無遠 弗屆,我們的生活型態已逐漸朝向”網路時代”發展;以網 路線上系統而言,使用者可以直接連上網路銀行進行轉帳 消費等行為;或是使用者係先以現金購買點數之後,再利 用此些點數在線上進行購物、遊戲、查詢等交易,其最大 的優點就是使用上的便利性與無區域性,在任何地方皆可 使用,然而,其最大的缺點就是每一次的交易都是單純以 密碼在線上進行身分驗證,一但密碼遭到他人窺知或盜錄 等不法使用時,則無法保障使用者的權益,且使用者所購200529625 V. Description of the invention (1) [Technical field to which the invention belongs] The present invention relates to an application technology of an identity card, and in particular, to an identity confirmation method using dynamic password and its architecture. [Previous technology] According to the era of active plastic currency, a variety of counterfeit cards and stolen cards have emerged endlessly. Under the consideration of convenience, IC chip cards with security and versatility have emerged. IC chip cards It is a plastic card of the same size as a commonly used credit card, debit card or debit card. An IC chip is added on it. If you want to access the IC chip card, you must pass the authority control and a special card reader. Can only be completed by a reader; and can be divided into many areas on the 1C chip card, each area has a function, including functions such as electronic money, making phone calls, making it more widely used. And with the advent of diversified times, IC chip cards also have flexible memory space, which can be integrated into one card in accordance with different needs and combined with the functions of different industries. ", So there is no limit to development. Due to the booming development of Internet communication and the incomparable future, our life style has gradually developed towards the "Internet era". As far as the online system is concerned, users can directly connect to online banks for transfer and consumption. ; Or the user first purchases points in cash, and then uses these points to make online purchases, games, queries and other transactions, the biggest advantage is the convenience of use and no regionality, anywhere Can be used, however, its biggest disadvantage is that each transaction is simply a password for online identity verification. Once the password is illegally used by others to snoop or record, it cannot protect the rights and interests of users, and Purchased by users
200529625 五、發明說明(2) 買之點數亦如同被偷走了。 因此,本發明係針對上述問題而提出一種運用動態密 碼進行身分確認之方法及其架構,其不僅可改善習知線上 交易易被盜刷及盜錄之缺點,又可使I C晶片卡同時兼具有 身分辨識及與銀行所發行金融卡之功能。 【發明内容】 本發明之主要目的係在提供一種運用動態密碼進行身 分確認之方法及其架構,其係在使用晶片識別卡之際,先 透過一組自動產生之動態密碼來進行身分驗證,故具有絕 對的正確性與安全性,以保障使用者權益。 本發明之另一目的係在提供一種運用動態密碼進行身 分確認之方法及其架構,其係可在晶片識別卡上劃分一個 或多個獨立區域,包含電子錢、線上遊戲點數或網路銀行 等功能,以利用動態密碼確認身分而連線至各系統業者進 行交易行為,使晶片識別卡同時兼具有身分辨識之行動證 、金融卡或遊戲點數卡之功能。 本發明之再一目的係在提供一種運用動態密碼進行身 分確認之方法及其架構,其係具有使用上的便利性、安全 性及多功能性等之優點。 為達到上述之目的,本發明提出一種運用動態密碼進 行身分確認之方法及其架構,其内容係包含一用戶端透過 一晶片識別卡連線至一系統業者,且此晶片識別卡係内建 有至少一系統作業模組;接著,用戶端輸入晶片識別卡之 帳號及密碼,若其輸入為正確者,則晶片辨識卡即會自動200529625 V. Description of the invention (2) The points bought are also stolen. Therefore, the present invention is directed to the above-mentioned problems and proposes a method and a framework for identity verification using dynamic passwords, which can not only improve the shortcomings of the conventional online transactions that are easy to be stolen and stolen, but also enable IC chip cards to have both It has the functions of identity identification and financial cards issued by banks. [Summary of the Invention] The main purpose of the present invention is to provide a method and a framework for identity verification using a dynamic password. When using a chip identification card, identity verification is performed through a set of automatically generated dynamic passwords. Absolute correctness and security to protect user rights. Another object of the present invention is to provide a method and structure for identity verification using a dynamic password, which can divide one or more independent areas on the chip identification card, including electronic money, online game points or online banking. And other functions to use dynamic passwords to confirm identity and connect to various system operators for transaction behavior, so that the chip identification card also has the function of identity identification mobile ID, financial card or game credit card. Another object of the present invention is to provide a method and a framework for identity verification using a dynamic password, which have the advantages of convenience, security and versatility in use. In order to achieve the above object, the present invention proposes a method and a framework for identity verification using a dynamic password. The content includes a client connected to a system operator through a chip identification card, and the chip identification card has a built-in At least one system operation module; then, the client terminal enters the account number and password of the chip identification card. If the input is correct, the chip identification card will automatically
200529625 五、發明說明(3) ------ f產生一組動態密碼經系統業者傳送至一管理單位,使其確 認此組動態密碼之正確性以進行身分驗證,若動態密碼有 誤丄則用戶端無法透過亨晶片識別卡登入系統業者,若動 態密碼為正確者,則管理單位會傳送一確認信號至系統業 者,使用戶端可登入系統業者並連線至一預設網址,以進 行任何線上交易。 底下藉由具體實施例配合所附的圖式詳加說明’當更 容易瞭解本發明之目的、技術内容、特點及其所達成之功 效。 【實施方式】 本發明係提出一種運用動態密碼進行身分確認之方法 及其架構,其係在使用晶片識別卡進行線上交易之前,先 透過晶片識別卡自動產生一組動態密碼來進行身分驗證, 而後才能登入系統業者之網址網站順利進行線上交易,故 具有絕對的正確性與安全性,以有效保障使用者權益。 第一圖所示為本發明進行身分確認之架構示意圖,如 圖所示’ 一晶片識別卡1 〇内建有至少一系統作業模組,且 每一晶片識別卡1 0各具有一唯一的識別序號,其係提供一 用戶、1 2透過此晶片識別卡1 〇連線至一系統業者1 4,當用 戶端1 2利用此晶片識別卡丨〇透過網路連線至一系統業者j 4 時’即可輸入晶片識別卡i 〇之正確帳號及密碼,使晶片辨 識卡1 0離線辨識密碼成功後,便會自動產生一組動態密碼 (冗TP)經系統業者14傳送至一管理單位16,以藉由此管 理單位1 6接收並判斷此動態密碼之正確性以進行身分驗證200529625 V. Description of the invention (3) ------ f Generate a set of dynamic passwords to be transmitted to a management unit by the system operator to make it confirm the correctness of this set of dynamic passwords for identity verification. If the dynamic passwords are incorrect? Then the client cannot log in to the system operator through the Heng chip identification card. If the dynamic password is correct, the management unit will send a confirmation signal to the system operator, so that the client can log in to the system operator and connect to a default URL to perform Any online transaction. In the following, detailed descriptions will be given through specific embodiments in conjunction with the accompanying drawings' to make it easier to understand the purpose, technical content, features and functions of the present invention. [Embodiment] The present invention proposes a method and a framework for identity verification using a dynamic password. Before using a chip identification card for online transactions, a set of dynamic passwords are automatically generated through the chip identification card for identity verification, and then In order to log in to the system operator's website, online transactions can be performed smoothly, so it has absolute accuracy and security to effectively protect the rights and interests of users. The first figure shows a schematic diagram of the identity verification architecture of the present invention. As shown in the figure, a chip identification card 10 has at least one system operation module, and each chip identification card 10 has a unique identification. The serial number is to provide a user, 12 to connect to a system operator 14 through the chip identification card 10, and when the client 12 uses this chip identification card to connect to a system operator j 4 through the network 'You can enter the correct account number and password of the chip identification card i 〇, after the chip identification card 10 offline identification password is successful, a set of dynamic passwords (redundant TP) will be automatically generated and transmitted to a management unit 16 by the system operator 14, Receive and judge the correctness of this dynamic password by this management unit 16 for identity verification
200529625 五、發明說明(4) 並決定是否讓用戶 !設網址來進行線上交 如後。 | 其中,上述之系 者、遊戲業者或是銀 線上購物、線上遊戲 系統業者1 4及連線至一預 構之詳細流程將詳細說明 為網略業者、行動通訊業 且所提及之線上交易包含 、線上訂票及線上聊天等 組動態密碼炎直接使用 別卡的確認之外’亦可藉 之,將用戶端之晶片熾別 、、且動態密碼,ϋ透過電話 動態密碼來進行身分確認 其係為本發明進行身分確認之流程示 si〇所示,用戶端先透過一晶片識別 業者,此系统業者係對應該晶片 組。接著如步驟S12輸入晶片識別 入為正確者,則進行步驟si4; 則如步驟Sl6所示,無法繼續進 確帳號及密碼之後即可進 產生一組動態密碼經系統業者值14 收此組動態密螞。 ^者傳送出 態密碼之正確杻 y S Ϊ 8所示, 性以進行身分驗證,若 端1 2登入該 易;整個架 統業者係可 行業者等; 、線上轉帳 統自動產生 進行晶片識 另外,除了由系 網路連線至系統業者 由用戶輸入^一組動態密碼’洋言 卡先插設在一讀卡機中以顯示一 |語音確認系統輸入顯 示出之該組 如第二圖所示, 意圖,首先參閱步驟 |卡網路連線至一系統 卡内建之系統作業模 之帳號及密碼,若輸 若輸入為不正確者, I入。 當用戶端輸入正 晶片辨識卡會自動 1去,使一管理單位接 I管理單位雄認此組動 第8頁 200529625 五、發明說明(5) 此組動態密碼有誤,管理單位會傳送一錯誤之確認信號給 系統業者,則用戶端如步驟S 1 6所示無法透過晶片識別卡 登入該系統業者;若此組動態密碼為正確者,則管理單位 會傳送一正確之確認信號至系統業者,使用戶端可如步驟 S 2 0登入此系統業者並連線至其預設網址網站,以進行步 驟S22之線上交易。 其中,在用戶端使用晶片識別卡之步驟前更包括一開 卡作業,其係先連線至管理單位,並輸入此晶片識別卡預 設之帳號與密碼進行開卡,並可同時變更用戶端之帳號與 密碼;管理單位處理此開卡作業,並記錄該用戶端變更之 資料,完成後回復用戶端一處理成功之信號,使用戶端可 透過晶片識別卡可進行登入及線上交易等行為。 現就最盛行之線上遊戲再次說明本發明之技術,如第 三圖所示,一晶片識別卡1 0係同時内建有一組遊戲系統作 業模組1 0 2及一組銀行作業模組1 0 4,提供用戶端1 2可透過 晶片識別卡1 0内之遊戲系統作業模組1 0 2連線登入至其相 對應之遊戲業者1 42,且晶片識別卡1 0產生之動態密碼係 經遊戲業者1 42傳送至管理單位進行確認,詳細流程與前 述内容相同,故於此不再贅述;當用戶端1 2順利登入並連 線至遊戲業者1 4之後,遊戲業者1 4亦會傳送一確認遊戲電 子錢或點數之信號給用戶端,使用戶端可知道其有多少剩 餘電子錢或點數,以進行線上遊戲;此晶片識別卡除了作 為遊戲卡使用之外’更可透過其内建之銀行作業模組1〇4 連線至銀行業者進行網路交易或是透過提款機進行交易等200529625 V. Description of invention (4) and decide whether to let users set up a website for online communication. Among them, the above-mentioned system, game industry or online shopping, online game system industry 14 and the detailed process of connecting to a pre-structured will be explained in detail as online strategy industry, mobile communications industry and mentioned online transactions Contains, online booking, online chat and other groups of dynamic passwords. In addition to the use of other cards for confirmation, you can also use it to change the client's chip, and the dynamic password, and confirm the identity through the phone's dynamic password. This is shown in the process of identifying the identity of the present invention. The client first identifies the operator through a chip, and the system operator corresponds to the chipset. Then, if the input chip is identified as correct in step S12, proceed to step si4; as shown in step S16, after the account and password cannot be confirmed, a set of dynamic passwords can be generated. The system operator value 14 receives this set of dynamic passwords ant. ^ The correct password of the password sent by the user is shown in SS Ϊ 8. The identity is used for identity verification. If the terminal 12 logs in to the account, the entire system operator can be an industry operator, etc .; The online transfer system automatically generates the chip identification. In addition, In addition to being connected to the system by the network operator, the user enters a set of dynamic passwords. 'Yangyan cards are first inserted in a card reader to display a voice input system. The set shown in the voice confirmation system is shown in the second figure. Intent, first refer to the steps | card network connection to the system operation mode account and password built in a system card. If the input is incorrect, enter it. When the user terminal enters the positive chip identification card, it will automatically go 1 to make a management unit connect to I. The management unit recognizes this group of activities. Page 8 200529625 V. Description of the invention (5) The management unit will send an error If the confirmation signal is sent to the system operator, the client cannot log in to the system operator through the chip identification card as shown in step S 16. If the dynamic password is correct, the management unit will send a correct confirmation signal to the system operator. The client can log in to this system operator and connect to its default URL website as in step S20 to perform online transactions in step S22. Among them, the step of using the chip identification card before the client includes a card opening operation, which is connected to the management unit first, and enters the preset account and password of the chip identification card to open the card, and the client can be changed at the same time. Account number and password; the management unit handles this card opening operation and records the changed information of the client. After the completion, it responds to the client with a signal of successful processing, so that the client can use the chip identification card to perform login and online transactions. Now the technology of the present invention will be explained again with respect to the most popular online games. As shown in the third figure, a chip identification card 10 is simultaneously built with a set of game system operation modules 102 and a set of bank operation modules 10 4. Provide the client 1 2 to log in to its corresponding game operator 1 42 through the game system operation module 10 2 in the chip identification card 10, and the dynamic password generated by the chip identification card 10 is the game. The operator 1 42 sends the confirmation to the management unit. The detailed process is the same as the previous content, so it will not be repeated here. After the client 12 has successfully logged in and connected to the game operator 14, the game operator 14 will also send a confirmation. The game electronic money or points signal to the client, so that the client can know how much remaining electronic money or points it has to play online games; this chip identification card can not only be used as a game card, but also through its built-in Bank operation module 104 connects to bankers for online transactions or transactions through cash machines, etc.
第9頁 200529625 五、發明說明(6) 作用。 由於本發明可在晶片識 域’包含電子錢、線上遊戲 用動悲ί&、碼確§忍身分而連線 使晶片識別卡同時兼具有身 戲點數卡之功能。因此,本 、安全性及多功能性等之優 ,故可有效解決存在於先前 以上所述之實施例僅係 點,其目的在使熟習此項技 容並據以實施,當不能以之 凡依本發明所揭示之精神所 蓋在本發明之專利範圍内。 【圖號說明】 別卡上劃分一個或多個獨立區 點數或網路銀行等功能,並利 至各系統業者進行交易行為, 刀辨識之行動證、金融卡或遊 發明確實具有使用上的便利性 點’應用相當廣泛且不受限制 技術中之該等缺點。 為說明本發明之技術思想及特 藝之人士能夠瞭解本發明之内 限定本發明之專利範圍,即大 作之均等變化或修飾,仍應涵Page 9 200529625 V. Description of the invention (6) Function. Since the present invention can include electronic money in online chip recognition, online gaming, mobile gaming, code confirmation, and identity connection, the chip identification card also has the function of a game point card. Therefore, the advantages of this book, security, and versatility can effectively solve the problems existing in the previous embodiments described above. The purpose is to familiarize yourself with this skill and implement it accordingly. It is covered by the patent of the present invention according to the spirit disclosed by the present invention. [Illustration of the drawing number] Do not divide the card into one or more independent area points or online banking and other functions, and benefit the system operators to carry out transaction behaviors. The identification card, debit card, or game invention does have the use of Convenience points' are widely used and these disadvantages in unrestricted technology. In order to explain the technical ideas and special features of the present invention, those who can understand the scope of the present invention, limit the patent scope of the present invention, that is, equal changes or modifications of major works, should still be covered.
10 晶 片 識 別 卡 102 遊 戲 系 統 作業模組 12 用 戶 端 14 系 統 業 者 142 遊 戲 業 者 16 管 理 單 位 1 0 4 銀行作業模組10 wafer identification card 102 game system operation module 12 user terminal 14 system operator 142 game operator 16 management unit 1 0 4 bank operation module
第10頁 200529625 圊式簡單說明 第一圖為本發明進行身分確認之架構示意圖。 第二圖為本發明進行身分確認之流程示意圖。 第三圖為本發明應用在線上遊戲之架構示意圖。 Η·» 第11頁Page 10 200529625 Simple description of the formula The first diagram is a schematic diagram of the identity verification architecture of the present invention. The second figure is a schematic flow chart of identity verification according to the present invention. The third figure is a schematic diagram of the architecture of an online game applied in the present invention. Η · »page 11