201124921 * 六、發明說明: 【發明所屬之技術領域】 本發明是有關於一種付款方法及系統,特別是指一種利 用電話帳單來收取貨款之線上付款方法及系統。 【先前技術】 隨著宅經濟的興起,商家紛紛設置網頁來提供實體商品 或諸如線上軸之類的虛擬商品的銷售。目前線上商品的付 款方式除線上刷卡、匯款、貨到付款外,還有提供利用電話 » 帳單來收取交易費㈣方式,如台灣第513651號發明專利 『購物之電子付款方法』。然而’台灣第5刪號需透過簡 訊回覆確認’存在使用者需透過行動電話付款與安全性較差 之疑慮。 因此’申請人曾於台灣第13〇9392號發明專利『網路付 款方法及系統』提出於數據網路初步驗證後提供—交易認證 碼後,可利絲用電話或行動電話撥打—認證電話以輸入交 易認證碼來再次驗證通過後始完成交易。 ’然而,金融詐欺情況時有所聞,先前電話付款方式難以 預防蓄㈣網料麟為,糾_他人撥打電話付款等行 為的㈣行為或以竊取他人f話頻繁進行;肖費的行為等 等’而目前發展㈣熟的信料之類的金融交易於收到交易 授權要㈣先崎交易風險評估再蚊是Μ意授權,以降 低呆帳的產生機率。 【發明内容】 因此本發明之目的’即在提供一種更安全性的線上 201124921 付款方法及系統。 本發明之另一目的,即在提供一種能有效降低金融詐欺 風險之線上付款方法及系統。 本案發明人思及將交易風險評估整合至電話付款機制 内,且將認證交易碼的傳送改用隱私性更高之電信網路,以 利用三階段的認證方式,以確保安全更高與有效預防金融詐 欺的發生。 於是,本發明線上交易付款方法,係包含以下步驟: (A) 若經數據網路收到一電話號碼,認證該電話號碼 是否通過一交易風險評估; (B) 若認證通過,經數據網路提供一認證電話號碼並 要求經電信網路撥打該認證電話以取得交易認證碼回覆,若 認證未通過則結束交易; (C) 當該認證電話被接通時,認證撥打的該認證電話 之電話號碼與前述接收的電話號碼相符,並於認證無誤時對 應產生交易認證碼並以語音告知;及 (D) 若經數據網路收到該交易認證碼,認證該交易認 證碼並於認證無誤時完成交易。 再者,為確認使用者的身分,更可於經數據網路認證交 易風險評估或經電信網路認證撥打的電話號碼時中的至少 一者一併認證使用者專屬的身分識別資料,此身分識別資料 可為使用者的身分證號碼或約定密碼或生曰等等。 【實施方式】 有關本發明之前述及其他技術内容、特點與功效,在以 201124921 下配合參考圖式之兩個較佳實施例賴細說明中將可清楚 的呈現。201124921 * VI. Description of the Invention: [Technical Field of the Invention] The present invention relates to a payment method and system, and more particularly to an online payment method and system for collecting payment by telephone bill. [Prior Art] With the rise of the home economy, merchants have set up web pages to provide sales of physical goods or virtual goods such as online axes. At present, in addition to online credit card, remittance, and cash on delivery, there are also ways to use the telephone » bill to collect transaction fees (4), such as Taiwan Patent No. 513651, “Electronic Payment Method for Shopping”. However, the '5th deletion of Taiwan's need to reply through the newsletter confirms that there are doubts that users need to pay by mobile phone and have poor security. Therefore, the applicant’s invention patent “Internet payment method and system” in Taiwan No. 13392 was proposed after the initial verification of the data network. After the transaction authentication code, Kelly dialed by telephone or mobile phone. Enter the transaction authentication code to verify the pass and complete the transaction. 'However, the financial fraud situation has been heard, the previous telephone payment method is difficult to prevent storage (4) network materials, correcting _ others to make phone payments, etc. (4) behavior or stealing others frequently; Xiao Fei's behavior, etc. 'And the current development (four) familiar financial transactions such as the receipt of transaction authorization (four) Sakisaki transaction risk assessment and mosquitoes are freely authorized to reduce the incidence of bad debts. SUMMARY OF THE INVENTION Therefore, the object of the present invention is to provide a more secure online payment method and system for 201124921. Another object of the present invention is to provide an online payment method and system that can effectively reduce the risk of financial fraud. The inventor of this case thought of integrating the transaction risk assessment into the telephone payment mechanism, and changing the transmission of the authentication transaction code to a more flexible telecommunications network to take advantage of the three-stage authentication method to ensure safer and effective prevention. The occurrence of financial fraud. Thus, the online transaction payment method of the present invention comprises the following steps: (A) if a telephone number is received via the data network, whether the telephone number is authenticated through a transaction risk assessment; (B) if the authentication is passed, via the data network Providing an authentication telephone number and requesting the authentication telephone to be dialed via the telecommunication network to obtain a transaction authentication code reply, and if the authentication fails, the transaction is terminated; (C) when the authentication telephone is connected, the telephone number of the authentication telephone dialed is authenticated The number matches the previously received telephone number, and correspondingly generates a transaction authentication code and is voiced when the authentication is correct; and (D) if the transaction authentication code is received via the data network, the transaction authentication code is authenticated and the authentication is correct. Seal the deal. Furthermore, in order to confirm the identity of the user, it is also possible to authenticate the user-specific identity identification data at least one of the data network authentication transaction risk assessment or the telephone number dialed by the telecommunications network authentication. The identification data may be the user's identity card number or the agreed password or oyster. The above and other technical contents, features and effects of the present invention will be apparent from the following description of the preferred embodiments of the present invention.
:閱圖卜本發明線上交易付款系統i係與網路商家2 和電信業者3配合,讓使用者終端4可利用電話付故方式支 付貨款。網路商家2可為諸如線上賴網站或料㈣等 等,而於網路商家2的網頁嵌人-可經數據網路連線至交易 付款系統丨的電話付款程式,以於使用者終端4選擇電話付 款時即可對應產生-電話付款要求至線上^付款系統i 並連結至線上交易付款系統i以由線上交易付款系W來進 行付款與否的評估’而此電話付款要求含有使用者終端4 已選定商品資訊’如商家、商品品項與金額。數據網路可為 A隐網路、數據專線、WiFi、WiMAX或行動電話系統的 3G、3.5G與4G中的數據傳輸架構。 使用者終端4擁有可連線數據網路與電信網路的電子 設備’為說明方便’本實施例中使用者終端4擁有—可連線 數據網路以進行數據傳輸的終端設備41與一可連線電信網 路的電話42(諸如家用電話或行動電話)為例來說明:當 然’使用者_ 4亦可利用其他電子設備來進行此電話付 款,例如兼具連線數據網路與電信網路的智慧型行動電話, 終端設備41 T為此終端設備41可為桌上型電腦、可攜式電 腦、個人數位助理機(PDA)、智慧型行動電話等等之類可連 線數據網路的電子設備。 線電信網路與數據網路。線上交易付款系 線上交易付款系統1係由— 4 司服器來架構形成並可連 統1大致具有一通 201124921 訊單元11、一交易風險評估單元12、一驗證單元13、一帳 務單元14、一使用者資料庫15、一交易資料庫μ,以及— 帳務資料庫17。 通訊單元11用以連線網際網路與電信網路,以經網際 網路或電信網路接收或傳送資料。通訊單元丨〗儲存一組或 多組專屬的認證電話號碼,此認證電話號碼係向電信業者所 租用的電話號碼,以於此認證電話被撥打時可透過電信業者 經電彳§網路撥接至通訊單元11。通訊單元11經網際網路或 電信網路接收資料更會分別傳送至對應單元,如交易風險評 估單元12、驗證單元13等等。 使用者資料庫15儲存各使用者終端4的用戶資料,各 筆用戶資料含有一電信業者提供給使用者4使用之電話號 碼及身分識別資料,身分識別資料可為使用者之身分證號碼 或生日或約定密碼等等。 交易資料庫16儲存相關交易資訊,含有每一次交易產 生的交易中繼資料與因應每一次交易完成後所產生的交易 紀錄。交易中繼資料含有交易認證碼、商品f訊與電話號碼 等資料。各筆交易紀錄含有交易時間、身分識別資料、付款 的電話號碼、商品資訊以及此次交易使用終端使用1?等 等’以供交易風險評估單元12分析使用。 帳款資料庫17儲存多數筆筆帳務資料,各筆帳務資料 含有消費的商品資訊、電話號碼與用戶識別資料等等,以提 供給電信業者3進行帳務請款與支付款用給網路商家2等用 途》 201124921 交易風險評估單元12係於到收到一電話付款要求時, 要长使用者”端4提供一電話號碼,而後依據此電話號碼與 交易資料庫16内的歷史交易紀錄來進行交易風險評估。交 易風險評估單元12依預建的預定規則來進行風險分析,此 預定規則為先前金融蚱欺時所分析的㈣規則,例如盘交胃 密集度過高、同一電話號碼於一定時間内被多個不同⑺使 '、同-個IP以一定時間内被多個不同電話號碼使用、此 電送號碼於時間内累積消f金額過高等等。交易風險評 估單元12評估風險高於預定值判斷為未通過,則結束交 易。反之,若交易風險評估單元12評估通過,通知驗證單 元13進行後續認證並將商品資訊與電話號碼整合於一筆交 易中繼資料儲存於交易資料庫16,讓驗證單元13或帳務單 元14使用。 驗證單元13於收到交易風險評估單元12通知後繼續認 證。驗證單元13純供-要求使时終端4以先前輸入電 話號碼的電話撥打-認證電話以取得—交易認證碼來輸入 的訊息,並提供-介©,可供❹者終端4輸人經認證電話 所取得的交易認證碼。通訊單元U的認證電話經電信網路 被接通將以資料傳送至驗證單元13,驗證單元13先確認撥 話端的電話號碼是否先前輸入電話號碼相符後,始對應產生 一交易認證碼以語音回傳給使用者終端4,反之。若不相 符,逕自結束父易。本實施例中交易認證碼為隨機產生的一 次性密碼,而驗證單凡13更會將此交易驗證碼整合於對應 筆交易中繼資料内以待後續認證。 201124921 再者,為增加安全性,驗證單元丨3於產生交易認證碼 前,更會要求使用者終端4提供一身分識別資料,例如身分 證號碼或約定密碼等等,來與使用者資料庫15對應使用者 資料作驗證,以利用電話號碼與身分識別資料作雙重驗證通 過後,始提供交易認證碼給使用者終端4讓輸入前述介面。 驗證單元13於收到使用者終端4輸入的交易認證碼將與先 刖產生的父易認證碼作比對,並於相符時,通知帳務單元 14並對應依交易中繼資料產生一筆新的交易紀錄儲存至交 易資料庫16。 帳務單元14於收到驗證單元13的通知後,帳務單元 14利用交易中繼資料對應形成一筆帳務資料,以提供給電 k業者3進行帳務請款與支付款用給網路商家2,並告知網 路商家2交易完成可提供使用者終端4購買的商品給使用者 終端4。 依據上述架構,配合參閱圖4來介紹本實施例的線上交 易付款系統1的執行流程。 在以下說明中先假設,使用者終端4以終端設備41經 數據網路瀏覽網路商家2並決定購買特定商品,如線上遊戲 的點數、實體商品等等。此刻,網路商家2的網頁會對應顯 示夕種付ή·欠方式供用戶3選擇,其中一選項係電話付款選 項。若此選項被點選,對應產生一電話付款要求至線上交易 付款系統1並導引使用者終端4以終端設備41經數據網路 連線至線上交易付款系統丨,此電話付款要求含有已選定商 品資訊。在以下實施例說明中並假設線上交易付款系統t 201124921 - 的通訊單元11已自網路商家2收到此電話付款要求,而通 訊單70 11將電話付款要求傳送給交易風險評估單元12。 首先,在步驟201中’交易風險評估單元12於線上服 務網站2之網頁上對應顯示一介面(圖未示),以$求使用者 終端3以終端設備41經數據網路輸入一預備作為以電話帳 單付款的電話號碼,在此假設使用者終端i輸人為他的電話 42的電話號碼。 其次,在步驟201中,交易風險評估單元12將電話付 籲#要求内的商品資訊與輸人電話號碼作為交易中繼資料儲 存於交易資料庫16,並依此電話號碼與交易資料庫16内的 歷史交易紀錄以預定規則來進行交易風險評估,並於評估未 通過時,透過通訊單元n經通知網路商家2與使用者終端 4 °平估未通過結束交易。反之,交易風險評估單元12評估 通過時通知驗證單元13以繼續步驟2〇3。 在步驟203中’驗證單元13透過通訊單元丨丨經數據網 4以一介面(圖未示)於使用者終端4的終端設備41顯示以 藝 #求使歸終端4以先前輸人電話號狀電話撥打一認證 電話,來取得一交易認證碼再經網路網路回傳。此介面更提 供一攔位以供使用者終端4輸入所取得的交易認證碼。此 刻,驗證單元13更自交易資料庫16擷取對應交易中繼資料 來供後續認證用並等待認證電話被接通。 而後在步驟204中,使用者終端4以電話42撥接驗證 電話號碼以經電信網路接通至通訊單元u,則通訊單元u 將此電話接通至驗證單元丨3。 201124921 當認證電話被接通時,驗證單元13先執行步驟, 利用交易中繼資料中的輸人的電話號碼來與撥話端的使用 者終端4的電話號媽比對是否相符。若步驟期判斷相符, 繼續執行步驟206。反之,若步驟2()5判斷不相符時,主知 使用者終端4與網路商家2交易失敗的訊息並逕自結:交 易。 在步驟206 +,驗證單元13更要求使用者終端*提供 身分識別資料,例如身分證號碼或約定密碼。其次,於步驟 2〇7中,驗證單元13將收到身分識別資料與使用者資料庫 15内對應身分朗資料作_,以確認資料正魏。 若步驟207判斷不相符時’驗證單元13累積錯誤次數 並執行步驟211以判斷錯誤次數是否超過-預設值(例如3 次)。若步驟2U判斷為是時,驗證單元U回覆交易失敗的 訊息予使用者終端4並中斷通話以結束交易。反之,若步驟 211判斷為否時,驗證單元13跳时驟寫, 供身分識別資料。 ^ 若步驟2〇7判斷相符時’驗證單元13執行步驟208以 對應產生-交易認證碼細語音傳送至❹者終端4的電 =2’更提醒使用者終端4回到線上交易付款系^的網 以輸入此父易認證碼。此刻,驗證單元Π更將此交易認 證碼整合於先前那筆交易中繼資料内並儲存至交易資料庫 16,以等待制者終端4回傳確認。 而後’在步驟2G9中’驗證單元13確認經數據網 接收來自使用者終端4的交易認證碼與先前產生交易認證The electronic transaction payment system i of the present invention cooperates with the Internet merchant 2 and the carrier 3 to allow the user terminal 4 to pay for the payment by telephone. The online merchant 2 can be a website such as an online website or a material (4), and the webpage of the online merchant 2 can be embedded into a telephone payment program that can be connected to the transaction payment system via the data network for the user terminal 4. When the telephone payment is selected, the corresponding payment-telephone payment request can be made to the online payment system i and linked to the online transaction payment system i to evaluate the payment by the online transaction payment system, and the telephone payment request includes the user terminal. 4 Selected product information 'such as merchants, merchandise items and amounts. The data network can be a data transmission architecture in 3G, 3.5G and 4G of A hidden network, data private line, WiFi, WiMAX or mobile phone system. The user terminal 4 has an electronic device capable of connecting the data network and the telecommunication network. 'For convenience of description, the user terminal 4 in the embodiment has a terminal device 41 capable of connecting the data network for data transmission and one can The telephone 42 (such as a home phone or a mobile phone) connected to the telecommunication network is taken as an example to illustrate: Of course, the user _ 4 can also use other electronic devices to make payment for this phone, for example, a wired data network and a telecommunication network. The smart mobile phone of the road, the terminal device 41 T can be a connectable data network such as a desktop computer, a portable computer, a personal digital assistant (PDA), a smart mobile phone, etc. for this terminal device 41. Electronic equipment. Line telecommunications network and data network. The online transaction payment system 1 is formed by a 4 server, and the system 1 has a general number 201122921 unit 11, a transaction risk evaluation unit 12, a verification unit 13, and a accounting unit 14. A user database 15, a transaction database μ, and a billing database 17. The communication unit 11 is used to connect the Internet and the telecommunications network to receive or transmit data via the Internet or telecommunications network. The communication unit 储存 stores one or more sets of exclusive authentication telephone numbers, which are telephone numbers rented by the carrier, so that the dial-up can be dialed through the telecommunications provider when the authenticated telephone is dialed. To the communication unit 11. The communication unit 11 receives the data via the Internet or the telecommunication network and transmits the data to the corresponding unit, such as the transaction risk assessment unit 12, the verification unit 13, and the like. The user database 15 stores the user data of each user terminal 4. Each user data contains a telephone number and identity identification data provided by the operator to the user 4, and the identity identification data can be the user's identity card number or birthday. Or agree on a password and so on. The transaction database 16 stores relevant transaction information, including the transaction relay data generated by each transaction and the transaction records generated after each transaction is completed. The transaction relay data contains the transaction authentication code, product information and telephone number. Each transaction record contains the transaction time, the identity identification data, the telephone number of the payment, the product information, and the transaction using the terminal 1 or the like for the transaction risk evaluation unit 12 to analyze and use. The account database 17 stores a plurality of pen account information, each account information contains consumer product information, telephone numbers and user identification data, etc., to be provided to the telecommunications operator 3 for account payment and payment for the network Road Merchant 2 and other uses" 201124921 The transaction risk assessment unit 12 is required to provide a telephone number to the user 4 when receiving a telephone payment request, and then based on the telephone number and the historical transaction record in the transaction database 16. To conduct a transaction risk assessment, the transaction risk assessment unit 12 performs a risk analysis according to a pre-built predetermined rule, which is a (four) rule analyzed in the previous financial fraud, for example, the stomach is too dense, the same phone number is A certain period of time is caused by a plurality of different (7), the same IP is used by a plurality of different telephone numbers in a certain period of time, the number of the transmission number is excessively accumulated in the time, etc. The transaction risk evaluation unit 12 evaluates the risk higher than If the predetermined value is judged to be unsuccessful, the transaction is ended. Conversely, if the transaction risk evaluation unit 12 evaluates the approval, the notification verification unit 13 performs subsequent authentication. The product information and the phone number are integrated into a transaction relay data and stored in the transaction database 16 for use by the verification unit 13 or the account unit 14. The verification unit 13 continues the authentication after receiving the notification from the transaction risk evaluation unit 12. 13 pure supply - requires the terminal 4 to dial the phone number of the phone number previously entered to authenticate the phone to obtain the transaction authentication code to enter the message, and provide the information - available for the terminal 4 to enter the authenticated phone The transaction authentication code. The authentication phone of the communication unit U is connected to the verification unit 13 via the telecommunication network, and the verification unit 13 first confirms whether the phone number of the dialing terminal matches the previously entered phone number, and then generates a transaction. The authentication code is transmitted back to the user terminal 4 by voice, and vice versa. If it does not match, the transaction is terminated by the parent. In this embodiment, the transaction authentication code is a randomly generated one-time password, and the verification ticket 13 will further verify the transaction code. It is integrated into the corresponding transaction relay data for subsequent certification. 201124921 Furthermore, in order to increase security, the verification unit 于3 generates the transaction authentication code. In the meantime, the user terminal 4 is required to provide a personal identification data, such as an identity card number or an appointment password, to verify the user data corresponding to the user database 15 to verify the use of the phone number and the identity identification data. After the pass, the transaction authentication code is provided to the user terminal 4 to input the interface. The transaction authentication code input by the verification unit 13 after receiving the user terminal 4 is compared with the parent authentication code generated by the first order, and is matched. At the same time, the accounting unit 14 is notified and correspondingly generates a new transaction record according to the transaction relay data and stores it in the transaction database 16. After receiving the notification from the verification unit 13, the accounting unit 14 uses the transaction relay data. Corresponding to form a billing data, to provide the electricity k-operator 3 to use the account payment and payment for the online merchant 2, and inform the online merchant 2 that the transaction completion can provide the user terminal 4 to purchase the merchandise to the user terminal 4 . According to the above architecture, the execution flow of the online transaction payment system 1 of the present embodiment will be described with reference to Fig. 4 . In the following description, it is assumed that the user terminal 4 browses the network merchant 2 via the data network with the terminal device 41 and decides to purchase a specific item, such as points of online games, physical goods, and the like. At this moment, the webpage of the web merchant 2 will be displayed for the user 3 in accordance with the display method, one of which is a telephone payment option. If this option is selected, a telephone payment request is generated to the online transaction payment system 1 and the user terminal 4 is directed to connect the terminal device 41 via the data network to the online transaction payment system. The telephone payment request contains the selected Product information. In the description of the following embodiments, it is assumed that the communication unit 11 of the online transaction payment system t 201124921 - has received the telephone payment request from the network merchant 2, and the communication list 70 11 transmits the telephone payment request to the transaction risk evaluation unit 12. First, in step 201, the transaction risk evaluation unit 12 displays an interface (not shown) on the webpage of the online service website 2, so that the user terminal 3 inputs the preparation by the terminal device 41 via the data network. The telephone number of the telephone bill payment, here assumes that the user terminal i inputs the telephone number of his telephone 42. Next, in step 201, the transaction risk assessment unit 12 stores the product information and the input telephone number in the telephone call request # as the transaction relay data in the transaction database 16, and according to the telephone number and the transaction database 16 The historical transaction record is based on a predetermined rule for conducting a transaction risk assessment. When the evaluation fails, the communication unit n notifies the network merchant 2 and the user terminal that the unfinished transaction is closed. Conversely, the transaction risk assessment unit 12 evaluates the pass-time notification verification unit 13 to proceed to step 2〇3. In step 203, the verification unit 13 displays the interface 4 through the communication unit via the data network 4 to the terminal device 41 of the user terminal 4 via an interface (not shown). The phone dials an authentication phone to obtain a transaction authentication code and then returns it via the network. The interface further provides a block for the user terminal 4 to input the obtained transaction authentication code. At this point, the verification unit 13 retrieves the corresponding transaction relay data from the transaction database 16 for subsequent authentication and waits for the authentication phone to be turned on. Then, in step 204, the user terminal 4 dials the verification telephone number by telephone 42 to connect to the communication unit u via the telecommunication network, and the communication unit u connects the call to the verification unit 丨3. 201124921 When the authentication phone is turned on, the verification unit 13 first performs a step of using the phone number of the person in the transaction relay data to match the phone number of the user terminal 4 of the dialing terminal. If the determination of the step period is consistent, proceed to step 206. On the other hand, if the judgment of step 2 () 5 is not consistent, the message that the user terminal 4 and the online merchant 2 fail to trade is determined to be self-contained: transaction. At step 206+, the verification unit 13 further requests the user terminal* to provide identity identification information, such as an identity card number or an appointment password. Next, in step 2〇7, the verification unit 13 will receive the identity identification data and the corresponding identity data in the user database 15 as _ to confirm that the data is positive. If the step 207 judges that there is no match, the verification unit 13 accumulates the number of errors and executes step 211 to determine whether the number of errors exceeds a preset value (for example, three times). If the determination in step 2U is YES, the verification unit U replies to the message that the transaction has failed to the user terminal 4 and interrupts the call to end the transaction. On the other hand, if the determination in step 211 is negative, the verification unit 13 skips and writes for identification of the identity. ^ If step 2〇7 determines the match, the verification unit 13 performs step 208 to correspond to the generation-transaction authentication code and the fine voice transmission to the terminal terminal 4's power=2' to remind the user terminal 4 to return to the online transaction payment system. Net to enter this parent easy authentication code. At this point, the verification unit further integrates the transaction authentication code into the previous transaction relay data and stores it in the transaction database 16 to wait for the manufacturer terminal 4 to return the confirmation. Then, in step 2G9, the verification unit 13 confirms receipt of the transaction authentication code from the user terminal 4 via the data network and the previously generated transaction authentication.
201124921 :: = 4。若步驟2。9判斷相符通知帳 山易。同樣的,若步驟209 _未相符時 - ⑽先判斷錯誤讀是否超過_預 = -判斷為否時,驗證單元13執行步驟212,以要)求 入父易遇證碼後’跳回步驟209重新確認。反之,1 為疋時’結束交易並告知網路商家2與使用者終端 4交易失敗的訊息。 '端 帳務單元14再收到驗證單元13交易成功的通知後,自 交易貝料4 16掏取交易中繼資料來對應形成—筆帳務資 料以提供給電信業者3進行帳務請款列人電話42的電話 帳單以支付款用給網路商家2並告知網路商家2交易成功的 訊息。 如此,本實施例中透過三階段的認證,第一階段(步驟 2〇2)利用電賤碼進行以風險評估以降低金融砟欺發生 的機會且讓損失可被維持在可控制範圍;而後於第二階段 (步驟205)要求使用者終端4以輸入電話號碼撥打認證電 治,以確認使用者終端4的輸入電話號碼的有效性,且經確 e忍後始經電信網路提供交易認證密碼,因電信網路專線的特 性’更能確保交易認證密碼傳輸的安全性,以降低他人有意 竊取的機會;最後,於第三階段確認經數據網路回傳的交易 認證密碼,以確保回覆的使用者終端4應是擁有此電話42 在手邊’以提高交易安全性。同時,此三階段驗證交替使用 數據網路與電信網路’更能確保交易安全性。再者,為確保 使用者終端4的使用者確實為擁有此電話的真實使用者,於 11 201124921 第二階段驗證除確認電話號碼的真偽外,更要求驗證身分識 別資料(如步驟206〜207),更可提高交易安全性。 當然,此身分識別資料亦可於其他階段作認證,如圖3 的第二實施例將身分識別資料改由第一階段認證。 在收到電話付款要求後,於步驟301中,交易風險評估 單元12即要求使用者終端4提供電話號碼與身分識別資 料,交易風險評估單元12先於步驟302確認此電話號碼是 否可通過交易風險評估。若步驟302,判斷未通過結束交 易。若步驟302風險評估單元12判斷通過,將商品資訊、 此電話號碼與身分識別資料作為交易中繼資料儲存於交易 資料庫16並通知驗證單元13,讓驗證單元13執行步驟303 以進行身分識別資料確認。若步驟303判斷正確時,驗證單 元13於步驟306中要求使用者終端4以步驟301輸入電話 號碼之電話撥打一認證電話,以取得一交易認證碼,再經網 路網路回傳。反之,若步驟303判斷錯誤時,驗證單元13 亦透過步驟304、305、303來確認錯誤次數是否超過預設 值,若未超過,要求使用者終端4重新輸入身分識別資料再 確認,若超過亦結束交易。 而後進行第二階段的驗證,驗證單元13於步驟307中 認證電話被接通後,以步驟308確認接通電話是否與先前輸 入電話號碼相符,若未相符亦結束交易,若相符,則亦於步 驟309產生交易認證碼並以語音經電信網路告知以等待使 用者終端4經數據網路回傳;最後進行第三階段的驗證,驗 證單元13透過步驟310〜312以確認使用者終端4經數據網 12 201124921 ' 路回傳交易認證碼是否於未超過預設值的次數内輪入正 確,若確認是驗證單元13通知帳務單元14完成交易以進行 帳務處理’若確認超過亦結束交易。 综上所述,本發明透過數據網路以電話號碼來進行交易 風險評估,並經電信網路確認此電話號碼的有效性後始經電 心網路以語音提供交易認證碼,讓用戶3可使用各種電話來 付款,如家用電話,以達到更增加便利性之功效;最後,更 透過網路網路確認回傳交易認證碼的正確性’以有效降低金 # 融詐欺的風險與提高交易的安全性。 惟以上所述者,僅為本發明之較佳實施例而已,當不能 以此限定本發明實施之範圍,即大凡依本發明申請專利範圍 及發明說明内容所作之簡單的等效變化與修飾,皆仍屬本發 明專利涵蓋之範圍内。 【圖式簡單說明】 圖1是本發明線上交易付款系統的較佳實施例; 圖2疋本發明線上交易付款方法的一實施例的流程 • 圖;以及 圖3是本發明線上交易付款方法的另一實施例的流程 圖。 13 201124921 【主要元件符號說明】 1線上交易付款系統 11通訊單元 12交易風險評估單元 13驗證單元 14帳務單元 15使用者資料庫 16交易資料庫 17帳務資料庫 2網路商家 3電信業者 4使用者終端 41終端設備 42電話 201 〜212、301 〜312 步驟201124921 ::= 4. If step 2. 9 judges the coincidence notification account. Similarly, if the step 209 _ is not consistent - (10) first determine whether the erroneous reading exceeds _ pre = - the determination is no, the verification unit 13 performs step 212 to "enter the parent easy identification code" and then jump back to step 209 reconfirm. On the other hand, when 1 is 疋, the transaction is terminated and the message that the online merchant 2 and the user terminal 4 have failed to be notified is notified. After receiving the notification that the verification unit 13 has succeeded in the transaction, the terminal accounting unit 14 retrieves the transaction relay data from the transaction information to form the accounting information to provide the telecommunications provider 3 for the accounting request. The telephone bill of the person phone 42 is used to pay the money to the online merchant 2 and inform the online merchant 2 that the transaction is successful. In this way, in the embodiment, through the three-stage authentication, the first stage (step 2〇2) uses the electric weight code to perform risk assessment to reduce the chance of financial fraud and allow the loss to be maintained within a controllable range; The second phase (step 205) requires the user terminal 4 to dial the authentication power by inputting the telephone number to confirm the validity of the input telephone number of the user terminal 4, and to provide the transaction authentication password via the telecommunication network after confirming Because of the characteristics of the telecommunication network line, it can ensure the security of transaction authentication password transmission to reduce the chance of others' intentional stealing. Finally, in the third stage, the transaction authentication password returned via the data network is confirmed to ensure the reply. The user terminal 4 should have this phone 42 at hand' to improve transaction security. At the same time, this three-stage verification alternates between using data networks and telecommunications networks to ensure transaction security. Furthermore, in order to ensure that the user of the user terminal 4 is indeed the real user who owns the phone, in the second phase of 201112, 921, 21, in addition to verifying the authenticity of the phone number, it is required to verify the identity identification data (steps 206 to 207). ), which can improve transaction security. Of course, the identity identification data can also be authenticated at other stages. In the second embodiment of FIG. 3, the identity identification data is changed to the first stage certification. After receiving the telephone payment request, in step 301, the transaction risk assessment unit 12 requests the user terminal 4 to provide the telephone number and the identity identification information, and the transaction risk assessment unit 12 confirms in step 302 whether the telephone number can pass the transaction risk. Evaluation. If step 302, it is judged that the transaction has not passed. If the risk assessment unit 12 determines in step 302, the product information, the phone number and the identity identification data are stored as transaction relay data in the transaction database 16 and notified to the verification unit 13, and the verification unit 13 executes step 303 to perform identity identification data. confirm. If the determination in step 303 is correct, the verification unit 13 in step 306 requests the user terminal 4 to dial a telephone number by dialing the telephone number in step 301 to obtain a transaction authentication code, and then return it via the network network. On the other hand, if the error is determined in step 303, the verification unit 13 also confirms whether the number of errors exceeds the preset value through steps 304, 305, and 303. If not, the user terminal 4 is required to re-enter the identity identification data and re-confirm. End the transaction. Then, the verification of the second stage is performed. After the authentication unit is turned on in step 307, the verification unit 13 confirms whether the connected telephone matches the previously input telephone number in step 308, and terminates the transaction if it does not match, if it matches, it also Step 309 generates a transaction authentication code and informs the voice through the telecommunication network to wait for the user terminal 4 to transmit back through the data network. Finally, the third stage of verification is performed, and the verification unit 13 passes the steps 310-312 to confirm the user terminal 4 Data Network 12 201124921 'The round-back transaction authentication code is rounded correctly within the number of times that the preset value is not exceeded. If the confirmation is that the verification unit 13 notifies the accounting unit 14 to complete the transaction for accounting processing, the transaction is terminated if the confirmation exceeds. In summary, the present invention conducts a transaction risk assessment by using a telephone number through a data network, and after confirming the validity of the telephone number via the telecommunication network, the transaction authentication code is provided by voice over the electronic network, so that the user 3 can Use a variety of phones to pay, such as home phones, to achieve more convenience; finally, through the network to confirm the correctness of the return transaction authentication code 'to effectively reduce the risk of gold fraud and improve transactions safety. The above is only the preferred embodiment of the present invention, and the scope of the invention is not limited thereto, that is, the simple equivalent changes and modifications made by the scope of the invention and the description of the invention are All remain within the scope of the invention patent. BRIEF DESCRIPTION OF THE DRAWINGS FIG. 1 is a preferred embodiment of an online transaction payment system of the present invention; FIG. 2 is a flow chart of an embodiment of an online transaction payment method of the present invention; FIG. A flow chart of another embodiment. 13 201124921 [Main component symbol description] 1 online transaction payment system 11 communication unit 12 transaction risk evaluation unit 13 verification unit 14 accounting unit 15 user database 16 transaction database 17 accounting database 2 network merchant 3 telecommunications operator 4 User terminal 41 terminal device 42 telephone 201 to 212, 301 to 312 steps
1414