TW201944311A - A system and a method for mobile transaction in enterprise - Google Patents

A system and a method for mobile transaction in enterprise

Info

Publication number
TW201944311A
TW201944311A TW107113440A TW107113440A TW201944311A TW 201944311 A TW201944311 A TW 201944311A TW 107113440 A TW107113440 A TW 107113440A TW 107113440 A TW107113440 A TW 107113440A TW 201944311 A TW201944311 A TW 201944311A
Authority
TW
Taiwan
Prior art keywords
passer
transaction
processing unit
mobile phone
item
Prior art date
Application number
TW107113440A
Other languages
Chinese (zh)
Other versions
TWI707285B (en
Inventor
蔡宗翰
陳美玲
Original Assignee
兆豐國際商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 兆豐國際商業銀行股份有限公司 filed Critical 兆豐國際商業銀行股份有限公司
Priority to TW107113440A priority Critical patent/TWI707285B/en
Publication of TW201944311A publication Critical patent/TW201944311A/en
Application granted granted Critical
Publication of TWI707285B publication Critical patent/TWI707285B/en

Links

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A system for mobile transaction in enterprise is provided. A processing unit of the system obtains a bank account of a releaser and a mobile number of the releaser which are corresponding to a network account of the releaser. The processing unit further provides a setting page of transaction confirmation code. When receiving a transaction confirmation code, the processing unit stores the transaction confirmation code into a storage unit of the system, where the transaction confirmation code is corresponding to the network account of the releaser. The processing unit further provides a to-be-confirmed list when receiving a login information corresponding to the network account of the releaser and a password of the releaser. The processing unit further performs a transaction procedure when receiving a to-be-confirmed item and the transaction confirmation code.

Description

應用於企業行動交易的系統及方法System and method applied to corporate mobile trading

本發明是有關於一種數位金融交易技術,且特別是有關於一種應用於企業行動交易的系統及方法。The present invention relates to a digital financial transaction technology, and more particularly, to a system and method applied to corporate mobile transactions.

在現有企業的行動銀行中僅能通過實體動態密碼載具(One Time Password,OTP),例如:實體動態密碼符記(Token)。然而實體動態密碼載具需要額外添購,且使用時必須要攜帶在身邊,不僅降低了便利性,且提升了動態密碼載具遺失的風險。因此,如何提升企業行動銀行的方便性,同時維持企業行動銀行的安全性為本領域技術人員所面對的課題。In the mobile banking of existing enterprises, only one entity time password (OTP) can be used, for example: entity dynamic password token (Token). However, the physical dynamic password vehicle needs to be purchased additionally, and it must be carried around when used, which not only reduces the convenience, but also increases the risk of losing the dynamic password vehicle. Therefore, how to improve the convenience of the enterprise mobile bank while maintaining the security of the enterprise mobile bank is a subject faced by those skilled in the art.

本發明提供一種應用於企業行動交易的系統及方法,以提供企業用戶通過行動銀行授權交易,進而完成交易。The invention provides a system and method applied to corporate mobile transactions, so as to provide corporate users to authorize transactions through mobile banks, and then complete the transactions.

本揭露的應用於企業行動交易的系統具有通訊單元、儲存單元以及處理單元。通訊單元接收與傳送資訊。儲存單元儲存待核清單、相應於放行者的放行者網路帳號、放行者網路密碼以及放行者銀行帳號。處理單元,連接於通訊單元與儲存單元。處理單元通過通訊單元接收相應於放行者網路帳號及放行者網路密碼的登入資訊,且判斷放行者帳號為首次登入時,獲取放行者網路帳號相應的放行者銀行帳號,且處理單元連接至銀行資料庫,以依據放行者銀行帳號於銀行資料庫中獲取放行者手機號碼,其中處理單元還傳送手機驗證碼至放行者手機號碼,且當處理單元通過通訊單元接收到手機驗證碼時,判斷接收到的手機驗證碼與傳送的手機驗證碼是否一致,處理單元還於接收到的手機驗證碼與傳送的手機驗證碼一致時,顯示交易確認碼設定頁面,並且於接收到交易確認碼時,將交易確認碼儲存於儲存單元中並相對應至放行者網路帳號。處理單元還於接收相應於放行者網路帳號、放行者密碼時的登入資訊時,提供待核清單。處理單元還於接收到待核清單中的待核項目及交易確認碼時,依據待核項目執行交易程序。The system applied in the enterprise mobile transaction disclosed in this disclosure has a communication unit, a storage unit, and a processing unit. The communication unit receives and transmits information. The storage unit stores a to-be-checked list, a passer network account number corresponding to the passer, a passer network password, and a passer bank account number. The processing unit is connected to the communication unit and the storage unit. The processing unit receives the login information corresponding to the passer's network account and the passer's network password through the communication unit, and determines that the passer's account is the first login, obtains the passer's bank account corresponding to the passer's online account, and the processing unit is connected Go to the bank database to obtain the mobile phone number of the passer from the bank database according to the bank account of the passer. The processing unit also sends the mobile phone verification code to the mobile phone number of the passer. Determine whether the received mobile phone verification code is the same as the transmitted mobile phone verification code. When the received mobile phone verification code is the same as the transmitted mobile phone verification code, the processing unit displays the transaction confirmation code setting page, and when the transaction confirmation code is received , Store the transaction confirmation code in the storage unit and correspond to the releaser's online account. The processing unit also provides a checklist when receiving login information corresponding to the passer's online account number and passer's password. The processing unit also executes the transaction procedure based on the items to be checked when it receives the items to be checked and the transaction confirmation code in the list to be checked.

本揭露的應用於企業行動交易的方法,適用於應用於企業行動交易的系統,其中系統儲存待核清單、相應於放行者的放行者網路帳號、放行者網路密碼以及放行者銀行帳號,此方法具有步驟:接收相應於放行者網路帳號及放行者網路密碼的登入資訊;判斷放行者帳號是否為首次登入;當放行者帳號為首次登入,獲取放行者網路帳號相應的放行者銀行帳號,並連接至銀行資料庫,以依據放行者銀行帳號於銀行資料庫中獲取放行者手機號碼;傳送手機驗證碼至放行者手機號碼;當接收到手機驗證碼時,判斷接收到的手機驗證碼與傳送的手機驗證碼是否一致;當接收到的手機驗證碼與傳送的手機驗證碼一致時,顯示交易確認碼設定頁面;當接收到交易確認碼時,將交易確認碼儲存於系統中,並將交易確認碼相對應至放行者網路帳號,其中,當接收相應於放行者網路帳號、放行者密碼時的登入資訊時,提供待核清單,且當接收到待核清單中的待核項目及交易確認碼時,依據待核項目執行交易程序。The method applied to corporate mobile transactions disclosed in this disclosure is applicable to a system applied to corporate mobile transactions, where the system stores a checklist, a passer's online account number corresponding to the passer, a passer's network password, and a passer's bank account. This method has the steps of: receiving login information corresponding to the passer's network account and passer's network password; determining whether the passer's account is the first login; when the passer's account is the first time login, obtaining the passer corresponding to the passer's online account Bank account number and connect to the bank database to obtain the mobile phone number of the passer from the bank database according to the bank account of the passer; send the mobile phone verification code to the mobile phone number of the passer; when the mobile phone verification code is received, determine the received mobile phone Whether the verification code is the same as the verification code sent by the mobile phone; when the received verification code is the same as the verification code sent by the mobile phone, the transaction confirmation code setting page is displayed; when the verification code is received, the transaction confirmation code is stored in the system And associate the transaction confirmation code to the passer ’s online account, where when receiving corresponds to Walker Internet account, when released by the time of login password, provide a list to be nuclear, and when receiving the list to be the nucleus of the pending nuclear program and transaction confirmation code based nuclear program to be executed transaction procedures.

基於上述,本揭露的應用於企業行動交易的系統及方法是藉由提供放行者通過銀行帳戶進行驗證,以將驗證使用者身分的依據延伸到銀行資料庫中已經查核的資料,進而增加身分認證的可靠度。基此,企業端不再需要花費額外的成本購置實體動態密碼符記,仍然能維持放行者在使用行動銀行的安全性完成交易程序。Based on the above, the disclosed system and method applied to corporate mobile transactions is to provide a passer to verify through a bank account, so as to extend the basis for verifying the user's identity to the verified data in the bank database, thereby increasing identity authentication. Reliability. Based on this, the enterprise side no longer needs to spend extra costs to purchase physical dynamic password tokens, and can still maintain the releaser to complete the transaction process using the security of the mobile bank.

為讓本發明的上述特徵和優點能更明顯易懂,下文特舉實施例,並配合所附圖式作詳細說明如下。In order to make the above features and advantages of the present invention more comprehensible, embodiments are hereinafter described in detail with reference to the accompanying drawings.

本揭露的應用於企業行動交易的系統及方法是用以提供企業通過行動銀行進行交易授權,以進而執行交易。The disclosed system and method applied to corporate mobile transactions are used to provide enterprises with transaction authorization through mobile banks to perform transactions.

詳細來說,為了協助企業進行內部的安全性控管,在企業網路銀行的運用中,會設置管理者、放行者以及經辦三種不同管理等級的角色。在安全性的考量之下,管理者權限與放行者權限必須向銀行申請,並通過銀行安全性檢核後才能設置相關權限。In detail, in order to assist enterprises with internal security control, in the use of corporate online banking, three roles of managerial level, releaser, and handling are set up. Under security considerations, administrator permissions and releaser permissions must be applied to the bank, and related permissions can only be set after passing the bank security check.

具有管理者權限的帳號可以設定經辦帳號的角色。舉例來說,當企業招聘了新近會計部員工,即可通過管理者權限的帳號賦予該名員工經辦的權限。Accounts with administrator privileges can set the role of managing accounts. For example, when a company recruits a new employee in the accounting department, it can give the employee permission to handle it through an account with administrator authority.

具有經辦權限的帳號可以替企業設定各種交易,例如設定在西元2018年4月2日轉出一筆薪資50,000元至戶名A,帳號OOOOOO中。然而,在此筆交易被設定之後,交易系統並不會真正的執行此筆交易程序。交易系統會等待此筆交易程序必須經過具有放行權限的帳號放行該筆交易,才會執行交易程序。Accounts with handling authority can set up various transactions for the enterprise, for example, set a transfer of 50,000 yuan in salary to account name A, account number OOOOOOO on April 2, 2018. However, after the transaction is set, the trading system will not actually execute the transaction procedure. The trading system will wait for this transaction program to release the transaction through an account with permission to execute the transaction program.

具有放行權限的帳號只有對交易放行的權限,不具有設定交易的權限。也就是說,具有放行權限帳號的使用者僅能同意交易或不同易交易。藉由管理者、放行者以及經辦三種角色相互權衡,進而提供企業內部進行內部安全控管。Accounts with permission to release only have permission to release transactions and do not have permission to set transactions. In other words, users with an account with permission to release can only agree to transactions or different transactions. The three roles of manager, releaser and manager are balanced to provide internal security control within the enterprise.

然而,在這之中,對於具有放行權限的帳號而言,由於放行交易會實質上對公司的資產進行處置,因此對於放行者在放行交易時所需的金融交易安全更須重視。基此,本揭露的應用於企業行動交易的系統及系統不僅提供放行者認證的機制,並同時兼顧放行者的便利性,並進而完成交易程序。However, among these accounts, for an account with release authority, since the release transaction will substantially dispose of the company's assets, it is necessary to pay more attention to the safety of financial transactions required by the releaser when releasing the transaction. Based on this, the disclosed system and system applied to corporate mobile transactions not only provide a mechanism for passer authentication, but also take into account the convenience of the passer and then complete the transaction process.

圖1繪示本揭露一實施例應用於企業行動交易的系統的示意圖。請參照圖1,應用於企業行動交易的系統100具有通訊單元110、儲存單元120以及處理單元130。FIG. 1 is a schematic diagram of a system for corporate mobile trading according to an embodiment of the disclosure. Referring to FIG. 1, a system 100 applied to a corporate mobile transaction includes a communication unit 110, a storage unit 120, and a processing unit 130.

通訊單元110用以接收與傳送資訊,並且以通訊晶片進行實作。舉例來說,通訊晶片可為支援全球行動通信(Global System for Mobile communication, GSM)、個人手持式電話系統(Personal Handy-phone System, PHS)、碼多重擷取(Code Division Multiple Access, CDMA)系統、寬頻碼分多址(Wideband Code Division Multiple Access, WCDMA)系統、長期演進(Long Term Evolution, LTE)系統、全球互通微波存取(Worldwide interoperability for Microwave Access, WiMAX)系統、無線保真(Wireless Fidelity, Wi-Fi)系統或藍牙的信號傳輸的元件。The communication unit 110 is used for receiving and transmitting information, and is implemented by a communication chip. For example, the communication chip may be a Global System for Mobile communication (GSM), a Personal Handy-phone System (PHS), or a Code Division Multiple Access (CDMA) system. Wideband Code Division Multiple Access (WCDMA) system, Long Term Evolution (LTE) system, Worldwide interoperability for Microwave Access (WiMAX) system, Wireless Fidelity , Wi-Fi) system or Bluetooth signal transmission components.

儲存單元120儲存運行應用於企業行動交易的系統100的各類程式碼與資料。儲存單元120例如是任何型態的固定或可移動隨機存取記憶體(Random Access Memory,RAM)、唯讀記憶體(Read-Only Memory,ROM)、快閃記憶體(flash memory)、硬碟(Hard Disk Drive,HDD)、固態硬碟(Solid State Drive,SSD)或類似元件或上述元件的組合。The storage unit 120 stores various codes and data for running the system 100 applied to corporate mobile transactions. The storage unit 120 is, for example, any type of fixed or removable random access memory (RAM), read-only memory (ROM), flash memory (flash memory), and hard disk. (Hard Disk Drive, HDD), solid state drive (Solid State Drive, SSD) or similar components or a combination of the above components.

處理單元130與通訊單元110及儲存單元120連接。處理單元130可以是中央處理單元(Central Processing Unit,CPU),或是其他可程式化之一般用途或特殊用途的微處理器(Microprocessor)、數位信號處理器(Digital Signal Processor,DSP)、可程式化控制器、特殊應用積體電路(Application Specific Integrated Circuit,ASIC)或其他類似元件或上述元件的組合,本揭露不限於此。The processing unit 130 is connected to the communication unit 110 and the storage unit 120. The processing unit 130 may be a Central Processing Unit (CPU), or other programmable general purpose or special purpose microprocessor (Microprocessor), digital signal processor (DSP), or programmable Controller, Application Specific Integrated Circuit (ASIC) or other similar components or a combination of the above components, this disclosure is not limited to this.

須說明的是,在本揭露的實施例中,儲存單元120會儲存相應於放行者的放行者網路帳號、放行者網路密碼以及放行者銀行帳號。詳細來說,承前述,放行者的權限必須由銀行協助授權,因此放行者網路帳號、放行者網路密碼將由銀行端設定,並預先儲存在儲存單元120中。It should be noted that, in the embodiment of the present disclosure, the storage unit 120 stores a passer network account number, a passer network password, and a passer bank account number corresponding to the passer. In detail, according to the foregoing, the authority of the releaser must be authorized by the assistance of the bank, so the online account of the releaser and the network password of the releaser will be set by the bank and stored in the storage unit 120 in advance.

放行者銀行帳號則由管理者通過第一電子裝置輸入並儲存在儲存單元120中。也就是說,在企業客戶欲採用應用於企業行動交易的系統100執行應用於企業行動交易的方法時,才需要將放行者銀行帳戶輸入並儲存在儲存單元120中。在本實施例中,第一電子裝置為使用者所使用的終端裝置,例如為個人電腦、筆記型電腦、手持裝置等,並且不限制型號、廠牌、作業系統,而放行者銀行帳戶為放行者個人在銀行開立的活期存款的帳號。The passer bank account number is entered by the administrator through the first electronic device and stored in the storage unit 120. That is, when a corporate customer wants to use the system 100 applied to corporate mobile transactions to execute the method applied to corporate mobile transactions, it is only necessary to enter and store the banker's bank account in the storage unit 120. In this embodiment, the first electronic device is a terminal device used by a user, such as a personal computer, a notebook computer, a handheld device, and the like, and does not restrict the model, brand, operating system, and the releaser's bank account is released Account of the current deposit opened by the individual in the bank.

除此之外,在本揭露的實施例中,處理單元130會通過通訊單元110存取銀行資料庫20。銀行資料庫20儲存每一個銀行業務往來對象(例如:個體戶、企業戶等)的基本資料,例如:名稱、身分證字號/統一編號、電話、業務記錄等。在本實施例中,銀行資料庫20獨立於應用於企業行動交易的系統100。然而,在本揭露的其他實施例中,銀行資料庫20亦可以架設在應用於企業行動交易的系統100之中,本揭露並不限於此。In addition, in the embodiment of the present disclosure, the processing unit 130 accesses the bank database 20 through the communication unit 110. The bank database 20 stores basic data of each bank transaction object (for example, self-employed, business, etc.), such as: name, identity card number / unified number, telephone, business records, and the like. In this embodiment, the bank database 20 is independent of the system 100 applied to corporate mobile transactions. However, in other embodiments of the present disclosure, the bank database 20 may also be set up in the system 100 applied to corporate mobile transactions, and the present disclosure is not limited thereto.

請進一步參照圖2,圖2繪示本揭露一實施例應用於企業行動交易的系統運行應用於企業行動交易的方法的流程圖。以下將搭配圖1與圖2說明本揭露應用於企業行動交易的系統運行應用於企業行動交易的方法的流程。Please further refer to FIG. 2. FIG. 2 is a flowchart illustrating a method for applying a system applied to an enterprise mobile transaction according to an embodiment of the present disclosure. The following describes the flow of the system operation method applied to the enterprise mobile transaction according to the disclosure applied to the enterprise mobile transaction in conjunction with FIG. 1 and FIG. 2.

在步驟S210,處理單元130通過通訊單元110接收相應於放行者網路帳號及放行者網路密碼的登入資訊。詳細來說,放行者會通過第二電子裝置的行動銀行應用程式輸入其被配給的放行者網路帳號及放行者網路密碼,以作為連接應用於企業行動交易的系統100的登入資訊。處理單元130在收到登入資訊後,會依據放行者網路帳號進而判斷接收到的放行者網路帳號與放行者網路密碼是否與儲存單元120所儲存的放行者網路帳號與放行者網路密碼一致。若不一致,則處理單元130會發送登入失敗的訊息至第二電子裝置的行動銀行應用程式,以通知使用者此登入事件被拒絕。若一致,則處理單元130會進行步驟S220。In step S210, the processing unit 130 receives the login information corresponding to the passer network account and the passer network password through the communication unit 110. In detail, the passer enters the assigned passer network account number and passer network password through the mobile banking application of the second electronic device as the login information of the system 100 connected to the enterprise mobile transaction. After receiving the login information, the processing unit 130 determines whether the received passer network account and passer network password are the same as the passer network account and passer network stored in the storage unit 120 according to the passer network account. The passwords are the same. If not, the processing unit 130 sends a login failure message to the mobile banking application of the second electronic device to notify the user that the login event is rejected. If they match, the processing unit 130 proceeds to step S220.

須說明的是,在下述的說明中,皆以第二電子裝置代表放行者所用來安裝行動銀行應用程式,並登入應用於企業行動交易的系統100的電子裝置。然而,放行者在實際的操作中,也會因為實際的需求更換自身所持有的裝置,本揭露並不加以限制。第二電子裝置的類型與第一電子裝置相似,於此即不贅述。It should be noted that, in the following description, the second electronic device represents the electronic device used by the lender to install the mobile banking application and log in to the system 100 applied to the enterprise mobile transaction. However, in actual operation, the releaser will also replace the device held by him due to actual needs, and this disclosure does not limit it. The type of the second electronic device is similar to that of the first electronic device, and details are not described herein.

在步驟S220,處理單元130會判斷此放行者帳號是否為首次登入。於本實施例中,首次登入意指放行者尚未完成首次登入的設定流程。也就是說,無論放行者第幾次登入應用於企業行動交易的系統100,只要放行者尚未完成首次登入的設定流程,處理單元130都將視為放行者是首次登入。舉例來說,首次登入的設定流程例如為設定交易確認碼。而處理單元130會在交易確認碼為空值或預設值時,判斷放行者為首次登入。In step S220, the processing unit 130 determines whether the passer account is the first login. In this embodiment, the first login means that the releaser has not completed the setup process of the first login. That is to say, no matter how many times the releaser logs in to the system 100 for corporate mobile transactions, as long as the releaser has not completed the first login setup flow, the processing unit 130 will consider the releaser to be the first login. For example, the setting process for the first login is, for example, setting a transaction confirmation code. When the transaction confirmation code is a null value or a preset value, the processing unit 130 determines that the releaser is logging in for the first time.

若此放行者是首次登入,在步驟S230,處理單元130會讀取儲存單元120中,相應於放行者網路帳號的放行者銀行帳戶,並且通過通訊單元110連接至銀行資料庫20,以依據放行者銀行帳戶獲取放行者手機號碼。詳細來說,當管理者通過第一電子裝置輸入放行者銀行帳戶後,處理單元130會將放行者銀行帳戶與放行者網路帳號相關聯。因此,當放行者通過放行者網路帳號登入應用於企業行動交易的系統100時,處理單元130即可通過放行者網路帳號找到相應的放行者銀行帳戶。If the releaser is logging in for the first time, in step S230, the processing unit 130 reads the releaser bank account corresponding to the releaser's online account in the storage unit 120, and connects to the bank database 20 through the communication unit 110, in accordance with Releaser bank account to obtain releaser mobile phone number. In detail, after the manager inputs the passer bank account through the first electronic device, the processing unit 130 associates the passer bank account with the passer network account. Therefore, when the releaser logs in to the system 100 applied to corporate mobile transactions through the releaser's online account, the processing unit 130 can find the corresponding releaser's bank account through the releaser's online account.

此外,處理單元130可以通過通訊單元110連接至銀行資料庫20。銀行資料庫20儲存了所有業務往來對象的基本資料,因此,處理單元130可以通過放行者銀行帳戶而在銀行資料庫20中找到相應於放行者銀行帳戶的基本資料。In addition, the processing unit 130 may be connected to the bank database 20 through the communication unit 110. The bank database 20 stores the basic data of all the objects of business transactions. Therefore, the processing unit 130 can find the basic data corresponding to the bank account of the banker in the bank database 20 through the banker's bank account.

在步驟S235,處理單元130會進一步依據銀行資料庫20中,相應於放行者銀行帳戶的放行者手機號碼,並傳送手機驗證碼至放行者手機號碼。在步驟S240,處理單元130會通過通訊單元110進而接收到手機驗證碼,並判斷接收到的手機驗證碼與傳送的手機驗證碼是否一致。詳細來說,放行者在通過其登記於銀行系統中的放行者手機號碼接收到此手機驗證碼後,必須通過第二電子裝置的行動銀行應用程式再次輸入此手機驗證碼,以驗證放行者身分。In step S235, the processing unit 130 further sends the mobile phone verification code to the mobile phone number of the mobile phone corresponding to the mobile phone number of the mobile phone banker in the bank database 20. In step S240, the processing unit 130 further receives the mobile phone verification code through the communication unit 110, and determines whether the received mobile phone verification code is consistent with the transmitted mobile phone verification code. In detail, after receiving the mobile phone verification code through the mobile phone number of the mobile phone registered in the banking system, the passer must re-enter the mobile phone verification code through the mobile banking application of the second electronic device to verify the identity of the passer. .

由於銀行資料庫20所儲存與放行者相關聯的基本資料是放行者在開戶時所經過查核的資料,因此在銀行資料庫20中所儲存的放行者手機號碼為可靠的資料。藉由通過銀行資料庫20中放行者銀行帳戶及相應的放行者手機號碼,可以進一步將驗證使用者身分的依據延伸到銀行資料庫20已經查核的資料,藉此以增加身分驗證的可靠性。Since the basic data associated with the releaser stored in the bank database 20 is the data that the releaser has checked when opening the account, the mobile phone number of the releaser stored in the bank database 20 is reliable data. By using the releaser's bank account in the bank database 20 and the corresponding releaser's mobile phone number, the basis for verifying the user's identity can be further extended to the data that the bank database 20 has checked, thereby increasing the reliability of the identity verification.

倘若接收到的手機驗證碼與處理單元130發送的手機驗證碼不一致,處理單元130會在一個預設時間(例如:5分鐘)之後,判斷手機驗證碼已失效,並且結束此首次登入的流程。此時,首次登入的設定流程為失敗。If the received mobile phone verification code is inconsistent with the mobile phone verification code sent by the processing unit 130, the processing unit 130 determines that the mobile phone verification code has expired after a preset time (for example, 5 minutes), and ends the first login process. At this time, the setup process for the first login fails.

在步驟S245,倘若接收到的手機驗證碼與處理單元130發送的手機驗證碼一致,處理單元130會導引第二電子裝置顯示交易確認碼設定頁面。交易確認碼是放行者所設定的並用於確認放行的密碼。為了確保交易的安全,在每一次放行前都必須要放行者再次輸入交易確認碼,以增加交易的安全性。交易確認碼例如為6位數字密碼、8位英數字混合密碼等,本揭露並不限於此。In step S245, if the received mobile phone verification code is consistent with the mobile phone verification code sent by the processing unit 130, the processing unit 130 will guide the second electronic device to display a transaction confirmation code setting page. The transaction confirmation code is a password set by the releaser and used to confirm the release. In order to ensure the security of the transaction, the releaser must enter the transaction confirmation code again before each release to increase the security of the transaction. The transaction confirmation code is, for example, a 6-digit password, an 8-digit alphanumeric password, etc., and the disclosure is not limited thereto.

在步驟S250,處理單元130在通過通訊單元110收到交易確認碼時,會將交易確認碼儲存在儲存單元120並對應至放行者網路帳號。爾後,放行者即可通過輸入交易確認碼放行交易。In step S250, when receiving the transaction confirmation code through the communication unit 110, the processing unit 130 stores the transaction confirmation code in the storage unit 120 and corresponds to the passer's online account. After that, the passer can release the transaction by entering the transaction confirmation code.

須說明的是,在本揭露的另一實施例中,處理單元130還會同時依據放行者銀行帳戶產生代符(token),並將代符傳送至第二電子裝置。爾後,放行者除了須輸入交易確認碼放行交易外,處理單元130還會請求第二電子裝置回傳代符的訊息。由於此代符只會儲存在第二電子裝置中,因此處理單元130通過檢驗第二電子裝置所持有的代符,可以進一步確認放行者所持有的第二電子裝置與首次登入時所使用的電子裝置一致,進而加強放行的安全性。It should be noted that, in another embodiment of the present disclosure, the processing unit 130 also generates a token according to the bank account of the releaser, and transmits the token to the second electronic device. After that, in addition to the passer having to enter a transaction confirmation code to release the transaction, the processing unit 130 also requests the second electronic device to return a message of a token. Since this token is only stored in the second electronic device, the processing unit 130 can further confirm the second electronic device held by the passer and used at the first login by checking the token held by the second electronic device. The same electronic devices are used to enhance the safety of release.

在本揭露的又一實施例中,處理單元130還會依據放行者的第二電子裝置的硬體資訊、其所安裝的行動銀行應用程式以及當下系統時間產生唯一的裝置識別碼,並記錄在儲存單元120中。爾後放行者通過第二電子裝置登入至應用於企業行動交易的系統100時,處理單元130會進一步驗證此登入資訊的來源與儲存單元120中記錄對應放行者的裝置識別碼是否一致,進而加強放行的安全性。In another embodiment of the present disclosure, the processing unit 130 further generates a unique device identification code based on the hardware information of the second electronic device of the releaser, the installed mobile banking application, and the current system time, and records it in the In the storage unit 120. When the releaser then logs in to the system 100 applied to corporate mobile transactions through the second electronic device, the processing unit 130 further verifies that the source of this login information is consistent with the device identification code of the corresponding releaser recorded in the storage unit 120, thereby enhancing the release Security.

請回到步驟S210至步驟S220,當使用者欲再次輸入登入資訊,以登入應用於企業行動交易的系統100放行交易時,在步驟S220時會判斷放行者帳號並非首次登入,基此,處理單元130執行步驟S285。Please return to step S210 to step S220. When the user wants to enter the login information again to log in to the system 100 applied to the enterprise mobile transaction to release the transaction, in step S220, it is judged that the account of the releaser is not the first time to log in. Based on this, the processing unit 130 executes step S285.

在步驟S285,處理單元130會提供並顯示待核清單於第二電子裝置中。待核清單具有多筆待核項目,每一筆待核項目是具有經辦權限的使用者通過第三電子裝置而傳送至應用於企業行動交易的系統100以建立的交易項目(例如:轉帳、付款、撥薪等金融行為),並等待放行者的批核才能完成的交易。放行者可以點選每一筆待核項目,以閱覽交易的交易金額、交易對象、交易用途等。並且,每一筆待核項目都有相應的放行選項。當放行者對待核項目的其中一筆點選放行選項時,第二電子裝置的行動銀行應用程式會顯示交易確認碼的輸入畫面,以提示放行者輸入交易確認碼。第三電子裝置是採用與第一電子裝置及第二電子裝置相似的硬體,於此不再贅述。In step S285, the processing unit 130 provides and displays the to-be-checked list in the second electronic device. The checklist has multiple items to be checked, and each item to be checked is a transaction item (for example: transfer, payment, etc.) established by a user with handling authority and transmitted to the system 100 applied to corporate mobile transactions through a third electronic device. Financial actions such as payroll, payroll, etc.), and transactions that are pending approval by the releaser. The releaser can click each item to be checked to view the transaction amount, transaction object, and transaction purpose of the transaction. In addition, each pending project has a corresponding release option. When the releaser selects one of the release options for the nuclear project, the mobile banking application of the second electronic device displays an input screen of the transaction confirmation code to prompt the releaser to enter the transaction confirmation code. The third electronic device uses hardware similar to the first electronic device and the second electronic device, and details are not described herein again.

在步驟S290,處理單元130會在接收到待核項目及交易確認碼時,依據待核項目執行交易程序。藉此,處理單元130會將被選擇的待核項目的交易金額撥款至交易對象,以完成待核項目的交易程序。處理單元130同時會將待核項目轉換成為已銷帳項目,並提供已銷帳項目閱覽頁面。放行者、經辦者或管理者皆可以通過已銷帳項目閱覽頁面閱覽已銷帳的項目。In step S290, the processing unit 130 executes a transaction procedure according to the item to be checked when the item to be checked and the transaction confirmation code are received. Thereby, the processing unit 130 allocates the transaction amount of the selected pending item to the transaction object to complete the transaction procedure of the pending item. At the same time, the processing unit 130 will convert the pending items into the written-off items and provide a read-out page for the written-out items. Releasers, managers, or managers can view the items that have been written off through the page for viewing written items.

值得一提的是,日後當放行者權限有所異動時,管理者權限的使用者可以通過第一電子裝置而於應用於企業行動交易的系統100中移除放行者的帳戶連結,藉此以利於企業內部進行控管。It is worth mentioning that when the permissions of the releaser are changed in the future, the user of the administrator's permission can remove the releaser's account link in the system 100 applied to corporate mobile transactions through the first electronic device, so as to use Facilitate internal control of the enterprise.

綜上所述,本揭露的應用於企業行動交易的系統及方法是藉由提供放行者通過銀行帳戶進行驗證,以將驗證使用者身分的依據延伸到銀行資料庫中已經查核的資料,進而增加身分認證的可靠度。不僅如此,在本揭露中,此應用於企業行動交易的系統及方法更可以進一步產生裝置驗證碼以及代符,藉此綁定放行者的電子裝置,以進一步提升放行者進行金融交易的安全性。除此之外,放行者也必須在放行交易前,進一步輸入交易確認碼,以再次查核使用者的身分。通過上述應用於企業行動交易的系統及方法的安全機制,企業端不再需要花費額外的成本購置實體動態密碼符記,但仍能在維持放行者在使用行動銀行的安全性的情形下完成交易程序。In summary, the disclosed system and method applied to corporate mobile transactions is to provide passers through bank account verification to extend the basis for verifying the identity of the user to the verified data in the bank database, thereby increasing Reliability of identity authentication. Not only that, in this disclosure, the system and method applied to corporate mobile transactions can further generate device verification codes and tokens, thereby binding the electronic devices of the passers to further enhance the security of the passers' financial transactions. . In addition, the releaser must further enter the transaction confirmation code before releasing the transaction to check the identity of the user again. Through the security mechanism of the above-mentioned system and method applied to corporate mobile transactions, the enterprise no longer needs to spend extra costs to purchase physical dynamic cryptographic tokens, but it can still complete the transaction while maintaining the security of the releaser using mobile banking. program.

雖然本發明已以實施例揭露如上,然其並非用以限定本發明,任何所屬技術領域中具有通常知識者,在不脫離本發明的精神和範圍內,當可作些許的更動與潤飾,故本發明的保護範圍當視後附的申請專利範圍所界定者為準。Although the present invention has been disclosed as above with the examples, it is not intended to limit the present invention. Any person with ordinary knowledge in the technical field can make some modifications and retouching without departing from the spirit and scope of the present invention. The protection scope of the present invention shall be determined by the scope of the attached patent application.

20‧‧‧銀行資料庫20‧‧‧Bank Database

100‧‧‧應用於企業行動交易的系統100‧‧‧ system applied to corporate mobile transactions

110‧‧‧通訊單元110‧‧‧ communication unit

120‧‧‧儲存單元120‧‧‧Storage unit

130‧‧‧處理單元130‧‧‧processing unit

S210~S290‧‧‧步驟S210 ~ S290‧‧‧step

圖1繪示本揭露一實施例應用於企業行動交易的系統的示意圖。 圖2繪示本揭露一實施例應用於企業行動交易的系統運行應用於企業行動交易的方法的流程圖。FIG. 1 is a schematic diagram of a system for corporate mobile trading according to an embodiment of the disclosure. FIG. 2 is a flowchart illustrating a method for applying a system applied to an enterprise mobile transaction according to an embodiment of the disclosure.

Claims (10)

一種應用於企業行動交易的系統,包括: 一通訊單元,接收與傳送資訊; 一儲存單元,儲存一待核清單、相應於一放行者的一放行者網路帳號、一放行者網路密碼以及一放行者銀行帳號;以及 一處理單元,連接於該通訊單元與該儲存單元,該處理單元通過該通訊單元接收相應於該放行者網路帳號及該放行者網路密碼的登入資訊,且判斷該放行者帳號為首次登入時,獲取該放行者網路帳號相應的該放行者銀行帳號,且該處理單元連接至一銀行資料庫,以依據該放行者銀行帳號於該銀行資料庫中獲取一放行者手機號碼,其中 該處理單元還傳送一手機驗證碼至該放行者手機號碼,且當該處理單元通過該通訊單元接收到該手機驗證碼時,判斷接收到的該手機驗證碼與傳送的該手機驗證碼是否一致, 該處理單元還於接收到的該手機驗證碼與傳送的該手機驗證碼一致時,顯示交易確認碼設定頁面,並且於接收到一交易確認碼時,將該交易確認碼儲存於該儲存單元中並相對應至該放行者網路帳號, 其中該處理單元還於接收相應於該放行者網路帳號、該放行者密碼時的登入資訊時,提供該待核清單,且 該處理單元還於接收到該待核清單中的一待核項目及該交易確認碼時,依據該待核項目執行交易程序。A system applied to corporate mobile transactions includes: a communication unit that receives and transmits information; a storage unit that stores a checklist, a passer network account corresponding to a passer, a passer network password, and A passer bank account number; and a processing unit connected to the communication unit and the storage unit, the processing unit receives login information corresponding to the passer network account number and the passer network password through the communication unit, and judges When the passer account is the first time to log in, the passer bank account corresponding to the passer network account is obtained, and the processing unit is connected to a bank database to obtain a bank information from the bank database based on the passer bank account. The mobile phone number of the passer, wherein the processing unit also transmits a mobile phone verification code to the mobile phone number of the passer, and when the processing unit receives the mobile phone verification code through the communication unit, it determines that the received mobile phone verification code and the transmitted Whether the verification code of the mobile phone is consistent, and the processing unit is further configured to: When the security codes are consistent, the transaction confirmation code setting page is displayed, and when a transaction confirmation code is received, the transaction confirmation code is stored in the storage unit and corresponding to the passer's online account, where the processing unit is also in When receiving the login information corresponding to the passer's online account number and the passer's password, the check list is provided, and the processing unit also receives a check item in the check list and the transaction confirmation code. , Execute the transaction procedure based on the item to be checked. 如申請專利範圍第1項所述的應用於企業行動交易的系統,其中該放行者銀行帳號是由一第一電子裝置通過該通訊單元傳送至該處理單元,該登入資訊是由一第二電子裝置通過該通訊單元傳送至該處理單元,其中該第一電子裝置與該第二電子裝置不同。The system applied to a corporate mobile transaction as described in item 1 of the scope of patent application, wherein the releaser's bank account number is transmitted to the processing unit by a first electronic device through the communication unit, and the login information is transmitted by a second electronic The device is transmitted to the processing unit through the communication unit, wherein the first electronic device is different from the second electronic device. 如申請專利範圍第2項所述的應用於企業行動交易的系統,其中該處理單元還於依據該放行者銀行帳戶產生一代符(token),並將該代符傳送至該第二電子裝置, 其中該處理單元還於接收到該待核項目、該交易確認碼以及該代符時,依據該待核項目執行交易程序。The system applied to a corporate mobile transaction as described in item 2 of the scope of patent application, wherein the processing unit further generates a token based on the lender's bank account and transmits the token to the second electronic device, When the processing unit receives the pending item, the transaction confirmation code, and the token, the processing unit executes a transaction procedure according to the pending item. 如申請專利範圍第2項所述的應用於企業行動交易的系統,其中該處理單元還依據該第二電子裝置的硬體資訊、該第二電子裝置的行動銀行應用程式以及該第二電子裝置的系統時間產生一裝置識別碼,並將該裝置識別碼儲存在該儲存單元中, 其中該處理單元還於接收到該待核項目、該交易確認碼以及該裝置識別碼時,依據該待核項目執行交易程序。The system applied to a corporate mobile transaction as described in item 2 of the patent application scope, wherein the processing unit is further based on hardware information of the second electronic device, a mobile banking application of the second electronic device, and the second electronic device Generates a device identification code at the system time of the device, and stores the device identification code in the storage unit, wherein the processing unit also receives the item to be checked, the transaction confirmation code, and the device identification code according to the item to be checked. Project execution trading procedures. 如申請專利範圍第1項所述的應用於企業行動交易的系統,其中該處理單元是依據一第三電子裝置所傳送的交易金額、交易對象以及交易用途建立該待核項目。The system for corporate mobile transactions described in item 1 of the scope of the patent application, wherein the processing unit establishes the pending item according to the transaction amount, the transaction object, and the transaction purpose transmitted by a third electronic device. 一種應用於企業行動交易的方法,適用於一應用於企業行動交易的系統,其中該系統儲存一待核清單、相應於一放行者的一放行者網路帳號、一放行者網路密碼以及一放行者銀行帳號,該方法包括: 接收相應於該放行者網路帳號及該放行者網路密碼的登入資訊; 判斷該放行者帳號是否為首次登入,且當該放行者帳號為首次登入,獲取該放行者網路帳號相應的該放行者銀行帳號,並連接至一銀行資料庫,以依據該放行者銀行帳號於該銀行資料庫中獲取一放行者手機號碼; 傳送一手機驗證碼至該放行者手機號碼; 當接收到該手機驗證碼時,判斷接收到的該手機驗證碼與傳送的該手機驗證碼是否一致; 當接收到的該手機驗證碼與傳送的該手機驗證碼一致時,顯示交易確認碼設定頁面;以及 當接收到一交易確認碼時,將該交易確認碼儲存於該系統中,並將該交易確認碼相對應至該放行者網路帳號, 其中,當接收相應於該放行者網路帳號、該放行者密碼時的登入資訊時,提供該待核清單,且當接收到該待核清單中的一待核項目及該交易確認碼時,依據該待核項目執行交易程序。A method applied to corporate mobile transactions is applicable to a system applied to corporate mobile transactions, where the system stores a checklist, a passer network account corresponding to a passer, a passer network password, and a The passer's bank account, the method includes: receiving login information corresponding to the passer's network account and the passer's network password; determining whether the passer's account is the first login, and when the passer's account is the first login, obtaining The releaser's bank account corresponding to the releaser's online account is connected to a bank database to obtain a releaser's mobile phone number in the bank's database based on the releaser's bank account; send a mobile phone verification code to the release The mobile phone number of the user; when the mobile phone verification code is received, determine whether the received mobile phone verification code is the same as the transmitted mobile phone verification code; when the received mobile phone verification code is the same as the mobile phone verification code transmitted, display Transaction confirmation code setting page; and when a transaction confirmation code is received, the transaction confirmation code is stored in the system, Correspond the transaction confirmation code to the passer's online account, where the checklist is provided when receiving login information corresponding to the passer's online account and the passer's password, and when the passer is received When a pending item in the checklist and the transaction confirmation code are executed, a transaction procedure is performed according to the pending item. 如申請專利範圍第6項所述的應用於企業行動交易的方法,其中該放行者銀行帳號是來自一第一電子裝置,該登入資訊是來自一第二電子裝置,且該第一電子裝置與該第二電子裝置不同。The method for applying to enterprise mobile transactions according to item 6 of the scope of patent application, wherein the passer bank account number is from a first electronic device, the login information is from a second electronic device, and the first electronic device and the The second electronic device is different. 如申請專利範圍第7項所述的應用於企業行動交易的方法,其中當接收到的該手機驗證碼與傳送的該手機驗證碼一致時,還依據該放行者銀行帳戶產生一代符(token),並將該代符傳送至該第二電子裝置; 其中當接收到該待核項目、該交易確認碼以及該代符時,還依據該待核項目執行交易程序。The method applied to corporate mobile transactions as described in item 7 of the scope of patent application, wherein when the received mobile phone verification code is consistent with the transmitted mobile phone verification code, a generation token is also generated according to the lender's bank account And transmitting the token to the second electronic device; wherein when the pending item, the transaction confirmation code, and the token are received, a transaction procedure is also executed according to the pending item. 如申請專利範圍第7項所述的應用於企業行動交易的方法,其中當接收到的該手機驗證碼與傳送的該手機驗證碼一致時,還依據該第二電子裝置的硬體資訊、該第二電子裝置的行動銀行應用程式以及該第二電子裝置的系統時間產生一裝置識別碼,並將該裝置識別碼儲存在該系統中; 其中當接收到該待核項目、該交易確認碼以及該裝置識別碼時,還依據該待核項目執行交易程序。The method applied to a corporate mobile transaction as described in item 7 of the scope of patent application, wherein when the received mobile phone verification code is consistent with the transmitted mobile phone verification code, it is also based on the hardware information of the second electronic device, the The mobile banking application of the second electronic device and the system time of the second electronic device generate a device identification code and store the device identification code in the system; wherein when the item to be verified, the transaction confirmation code, and When the device identification code is used, the transaction procedure is also executed according to the item to be checked. 如申請專利範圍第6項所述的應用於企業行動交易的方法,更包括:當接收到一第三電子裝置所傳送的交易金額、交易對象以及交易用途時,依據該交易金額、該交易對象以及該交易用途建立該待核項目。The method applied to a corporate mobile transaction as described in item 6 of the scope of patent application, further includes: when receiving the transaction amount, the transaction object, and the transaction purpose transmitted by a third electronic device, according to the transaction amount, the transaction object And the use of the transaction to establish the pending item.
TW107113440A 2018-04-20 2018-04-20 A system and a method for mobile transaction in enterprise TWI707285B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW107113440A TWI707285B (en) 2018-04-20 2018-04-20 A system and a method for mobile transaction in enterprise

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW107113440A TWI707285B (en) 2018-04-20 2018-04-20 A system and a method for mobile transaction in enterprise

Publications (2)

Publication Number Publication Date
TW201944311A true TW201944311A (en) 2019-11-16
TWI707285B TWI707285B (en) 2020-10-11

Family

ID=69184745

Family Applications (1)

Application Number Title Priority Date Filing Date
TW107113440A TWI707285B (en) 2018-04-20 2018-04-20 A system and a method for mobile transaction in enterprise

Country Status (1)

Country Link
TW (1) TWI707285B (en)

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1585330A (en) * 2003-08-18 2005-02-23 久津实业股份有限公司 Network identify certificating method and apparatus
CN102664903A (en) * 2012-05-16 2012-09-12 李明 Network user identifying method and system
CN103391197B (en) * 2013-07-19 2016-06-08 武汉大学 A kind of web identity authentication based on handset token and NFC technique
TWM540336U (en) * 2016-12-29 2017-04-21 Taiwan Business Bank Corporate mobile banking system
TWM554596U (en) * 2017-09-05 2018-01-21 Far Eastern Int Bank System of security mechanisms corresponding to multi-authentication

Also Published As

Publication number Publication date
TWI707285B (en) 2020-10-11

Similar Documents

Publication Publication Date Title
US11494780B2 (en) Methods and systems for verifying cardholder authenticity when provisioning a token
US11710055B2 (en) Processing machine learning attributes
US10044730B1 (en) Methods, systems, and articles of manufacture for implementing adaptive levels of assurance in a financial management system
US10565360B2 (en) Verifying a user's identity based on adaptive identity assurance levels
US9378491B1 (en) Payment transfer by sending E-mail
JP6698025B2 (en) System and method for money management
JP6046765B2 (en) System and method enabling multi-party and multi-level authorization to access confidential information
US8997194B2 (en) Using windows authentication in a workgroup to manage application users
US20140189835A1 (en) Systems and methods for efficient authentication of users
US20230036787A1 (en) Systems and methods for using multi-factor authentication
US11785008B1 (en) Passive authentication during mobile application registration
US11700129B2 (en) Systems and methods for tokenized data delegation and protection
US20240143712A1 (en) Digital identity lock
US20200167861A1 (en) Secure data acquisition and processing system
NO344678B1 (en) Identification system and method
US20200051072A1 (en) Verifying transaction address is whitelisted before allowing transfer to transaction address of self-regulating token requiring whitelisted transaction address to withdraw self-regulating token
US20210248600A1 (en) System and method to secure payment transactions
US10354303B1 (en) Verification of rental and mortgage payment history
US11244314B2 (en) Dual controls for processing electronic transactions
TW201913433A (en) Real person authentication method and device
US11966495B2 (en) Method and system for managing access to entity identity data
TWM564206U (en) A system for mobile transaction in enterprise
TWI707285B (en) A system and a method for mobile transaction in enterprise
US11888849B1 (en) Digital identity step-up
TWI665631B (en) Authentication server, authentication method and authentication system