TW202211056A - System and method for personal information authorization - Google Patents
System and method for personal information authorization Download PDFInfo
- Publication number
- TW202211056A TW202211056A TW109131531A TW109131531A TW202211056A TW 202211056 A TW202211056 A TW 202211056A TW 109131531 A TW109131531 A TW 109131531A TW 109131531 A TW109131531 A TW 109131531A TW 202211056 A TW202211056 A TW 202211056A
- Authority
- TW
- Taiwan
- Prior art keywords
- authorization
- server
- data
- authentication
- mobile
- Prior art date
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
Description
本發明是有關於一種授權系統及授權方法,且特別是有關於一種個資授權系統及個資授權方法。The present invention relates to an authorization system and an authorization method, and in particular, to a personal asset authorization system and a personal asset authorization method.
一般而言,個人資料(簡稱為個資)泛指自然人之姓名、出生年月日、國民身分證統一編號、護照號碼、特徵、指紋、婚姻、家庭、教育、職業、病歷、醫療、基因、性生活、健康檢查、犯罪前科、聯絡方式、財務情況、社會活動及其他得以直接或間接方式識別該個人之資料。Generally speaking, personal data (referred to as personal data) generally refers to the natural person's name, date of birth, unified national identity card number, passport number, characteristics, fingerprints, marriage, family, education, occupation, medical records, medical treatment, genetics, Sex life, health check, criminal record, contact information, financial situation, social activities and other information that can directly or indirectly identify the individual.
現有授權技術下,透過電子簽章及存取權杖等技術,使用者無需將帳號及密碼提供給服務供應商,即可達成允許服務供應商存取個資提供伺服器上儲存的個資。但使用者須直接操作服務供應商的終端系統或網站,惡意之服務供應商終端可偽造授權範圍借此要求存取更多個資項目,而非僅存取其所需要的一小部分,造成個資之洩漏。Under the existing authorization technology, through technologies such as electronic signature and access token, the user does not need to provide the account number and password to the service provider, and then the service provider can allow the service provider to access the personal information stored on the server. However, the user must directly operate the terminal system or website of the service provider. Malicious service provider terminals can forge the authorization scope to request access to more data items, instead of only accessing a small part of what they need, resulting in Leakage of personal information.
有鑑於此,本發明提供一種個資授權系統及個資授權方法,其可用於解決上述技術問題。In view of this, the present invention provides a personal information authorization system and a personal information authorization method, which can be used to solve the above-mentioned technical problems.
本發明提供一種個資授權系統,其包括行動個資授權伺服器及行動認證伺服器。行動個資授權伺服器經配置以:從一應用服務伺服器接收一個資授權請求,其中個資授權請求係應用服務伺服器係因應於一使用者所要求的一特定應用服務而產生,且特定應用服務需要多個個資項目;反應於個資授權請求而回傳一個資授權票據至應用服務伺服器,其中應用服務伺服器將個資授權票據轉換為一授權圖片;反應於判定從使用者的一電子裝置接收一授權同意記錄及認證資訊,轉發授權同意記錄及認證資訊,其中授權同意記錄及認證資訊表示使用者同意提供對應於前述個資項目的多個特定個資。行動認證伺服器連接於行動個資授權伺服器,並經配置以:接收授權同意記錄及認證資訊,並驗證認證資訊;反應於判定認證資訊通過驗證,保存授權同意記錄,並透過行動個資授權伺服器提供一個資查詢指令至一個資提供伺服器,其中個資提供伺服器因應於個資查詢指令而將使用者的前述特定個資提供予行動個資授權伺服器,且行動個資授權伺服器將前述特定個資提供予應用服務伺服器,以執行特定應用服務。The present invention provides a personal information authorization system, which includes a mobile personal information authorization server and a mobile authentication server. The mobile personal data authorization server is configured to: receive a data authorization request from an application service server, wherein the personal data authorization request is generated by the application service server in response to a specific application service requested by a user, and the specific data authorization request is generated by the application service server. The application service requires a plurality of personal information items; in response to the personal information authorization request, an information authorization ticket is returned to the application service server, wherein the application service server converts the personal information authorization ticket into an authorization image; An electronic device of the device receives an authorization consent record and authentication information, and forwards the authorization consent record and authentication information, wherein the authorization consent record and authentication information indicate that the user agrees to provide a plurality of specific personal information corresponding to the aforementioned personal information items. The mobile authentication server is connected to the mobile data authorization server, and is configured to: receive the authorization consent record and authentication information, and verify the authentication information; in response to determining that the authentication information is verified, save the authorization consent record, and authorize the authorization through the mobile data The server provides a data inquiry command to a data providing server, wherein the data providing server provides the user's specific data to the mobile data authorization server in response to the data inquiry command, and the mobile data authorization server The server provides the above-mentioned specific information to the application service server to execute the specific application service.
本發明提供一種個資授權方法,適於包括一行動個資授權伺服器及一行動認證伺服器的一個資授權系統,所述方法包括:由行動個資授權伺服器從一應用服務伺服器接收一個資授權請求,其中個資授權請求係應用服務伺服器係因應於一使用者所要求的一特定應用服務而產生,且特定應用服務需要多個個資項目;由行動個資授權伺服器反應於個資授權請求而回傳一個資授權票據至應用服務伺服器,其中應用服務伺服器將個資授權票據轉換為一授權圖片;反應於判定從使用者的一電子裝置接收一授權同意記錄及認證資訊,由行動個資授權伺服器轉發授權同意記錄及認證資訊至行動認證伺服器,其中授權同意記錄及認證資訊表示使用者同意提供對應於前述個資項目的多個特定個資;以及由行動認證伺服器驗證認證資訊;反應於判定認證資訊通過驗證,由行動認證伺服器保存授權同意記錄,並透過行動個資授權伺服器提供一個資查詢指令至一個資提供伺服器,其中個資提供伺服器因應於個資查詢指令而將使用者的前述特定個資提供予行動個資授權伺服器;由行動個資授權伺服器將前述特定個資提供予應用服務伺服器,以執行特定應用服務。The present invention provides a personal information authorization method, which is suitable for a personal information authorization system including a mobile personal information authorization server and a mobile personal information authorization server. The method includes: the mobile personal information authorization server receives from an application server server. A data authorization request, wherein the data authorization request is generated by the application service server in response to a specific application service requested by a user, and the specific application service requires multiple data items; it is responded by the mobile data authorization server In response to the personal information authorization request, an information authorization ticket is returned to the application service server, wherein the application service server converts the personal information authorization ticket into an authorization image; in response to determining that an authorization consent record is received from an electronic device of the user, and Authentication information, the authorization consent record and authentication information are forwarded by the mobile personal information authorization server to the mobile authentication server, wherein the authorization consent record and the authentication information indicate that the user agrees to provide a plurality of specific information corresponding to the aforementioned personal information items; and The mobile authentication server verifies the authentication information; in response to determining that the authentication information is verified, the mobile authentication server saves the authorization and consent record, and provides an information query command to an information provision server through the mobile personal information authorization server, wherein the personal information provides The server provides the user's specific data to the mobile data authorization server in response to the data query command; the mobile data authorization server provides the above-mentioned specific data to the application service server to execute the specific application service .
請參照圖1,其是依據本發明之一實施例繪示的個資授權系統示意圖。如圖1所示,本發明的個資授權系統100包括應用服務伺服器100、電子裝置110、行動個資授權伺服器120、行動認證伺服器130及個資提供伺服器140。Please refer to FIG. 1 , which is a schematic diagram of a personal information authorization system according to an embodiment of the present invention. As shown in FIG. 1 , the personal
在不同的實施例中,應用服務伺服器100例如是可提供各式應用服務的伺服器,例如銀行系統(網路/臨櫃)、訂票系統等,而上述各式應用服務例如是需要使用者的一或多個個資方能使用的服務,例如借貸、訂票等,但可不限於此。為便於說明,以下將以銀行系統作為說明的實例,但其並非用以限定本發明可能的實施方式。In different embodiments, the
在一實施例中,應用服務伺服器100可透過設置於銀行櫃檯上的使用者互動介面101(例如是觸控式螢幕等)顯示銀行所提供的各式應用服務,而使用者可直接於其中選擇所需的應用服務(下稱特定應用服務)。舉例而言,假設某使用者欲在某銀行臨櫃申請借貸服務,則其可直接於使用者互動介面101中選取借貸服務作為上述特定應用服務,而應用服務伺服器100可相應地產生個資授權請求S1,並將資料授權請求S1轉發至行動個資授權伺服器120。In one embodiment, the
在其他實施例中,使用者互動介面101亦可實現為銀行系統的網頁。在此情況下,使用者可於銀行的網頁介面中選擇所需的特定應用服務,而應用服務伺服器100亦可相應地產生個資授權請求S1,並將資料授權請求S1轉發至行動個資授權伺服器120,但可不限於此。In other embodiments, the
相應地,行動個資授權伺服器120可反應於個資授權請求S1而回傳個資授權票據S2至應用服務伺服器100。在不同的實施例中,個資授權票據S2可包括應用服務商識別代碼(例如上述銀行的代碼)、操作流水號、個資授權欄位內容、票據發行時間、簽章的至少其中之一,但可不限於此。Correspondingly, the mobile personal
在一實施例中,在行動個資授權伺服器120接收到個資授權請求S1時,其中的個資授權請求驗證模組121可驗證應用服務伺服器100所傳送的個資授權請求S1的合法性,包括來源端驗證及個資授權請求S1之資料欄位驗證等,但不限於此。並且,在判定個資授權請求S1通過驗證之後,行動個資授權伺服器120可再相應地由其中的授權票據管理模組123發行並回傳個資授權票據S2至應用服務伺服器100,但可不限於此。In one embodiment, when the mobile personal
在一實施例中,在應用服務伺服器100接收個資授權票據S2之後,其中的授權條碼轉換模組102可將個資授權票據S2轉換為授權圖片S3,而使用者互動介面101則可用以顯示授權圖片S3。在不同的實施例中,授權圖片S3可呈現為一維條碼、二維條碼或其他可表徵個資授權票據S2的條碼圖片,但可不限於此。In one embodiment, after the
之後,使用者例如可透過其所持有的電子裝置110(例如是各式智慧型裝置)的授權圖片擷取模組111(例如是電子裝置110上的相機等取像模組)擷取S3授權圖片,並將授權圖片S3轉換為個資授權票據S2。After that, the user can, for example, capture S3 through the authorized image capture module 111 (for example, an image capture module such as a camera on the electronic device 110 ) of the electronic device 110 (for example, various smart devices) held by the user. Authorize the picture, and convert the authorized picture S3 into a personal information authorization note S2.
接著,電子裝置110中的授權票據驗證模組112可用以驗證個資授權票據S2,並在判定個資授權票據S2通過驗證之後,顯示上述特定應用服務所需的個資項目(例如地址、電話等)。在此情況下,電子裝置110的使用者可於電子裝置110上確認是否允許所選擇的特定應用服務取得對應於上述個資項目的特定個資。Next, the authorization
在一實施例中,反應於判定使用者同意授權上述特定個資予特定應用服務,電子裝置110可產生授權同意記錄S4及認證資訊S5(其例如可包括對應於上述使用者的特定使用者代碼及認證時間),並以認證金鑰加密認證資訊S5。In one embodiment, in response to determining that the user agrees to authorize the above-mentioned specific individual to use the specific application service, the
在一實施例中,在判定使用者同意授權上述特定個資予特定應用服務時,電子裝置110中的身分認證模組113可對使用者進行身分認證,例如密碼認證、指紋認證、人臉認證、或其他形式的生物特徵認證等,但不限於此。In one embodiment, when it is determined that the user agrees to authorize the above-mentioned specific individual to use the specific application service, the
之後,電子裝置110可再將授權同意記錄S4及加密後的認證資訊S5發送至行動個資授權伺服器120。相應地,行動個資授權伺服器120中的個資授權管理模組122可介接行動認證伺服器130以進行認證資訊S5的驗證。亦即,個資授權管理模組122可因應於授權同意記錄S4將加密後的認證資訊S5轉發至行動認證伺服器130,以由行動認證伺服器130進行認證資訊S5的驗證。Afterwards, the
在一實施例中,行動認證伺服器130中的認證金鑰管理模組132例如可用以管理多個使用者認證代碼與多個認證金鑰之對應關係。在此情況下,在行動認證伺服器130接收加密後的認證資訊S5之後,認證金鑰管理模組132可依據上述特定使用者代碼查詢對應的認證金鑰,但可不限於此。In one embodiment, the authentication
在取得對應於上述認證金鑰之後,行動認證伺服器130中的認證資訊驗證模組131可透過此認證金鑰解密認證資訊S5,以及驗證認證資訊S5的合法性。After obtaining the corresponding authentication key, the authentication
在一實施例中,反應於判定認證資訊S5通過驗證,行動認證伺服器130可通知行動個資授權伺服器120的使用者同意記錄儲存模組124保存授權同意記錄S4,並透過行動個資授權伺服器120提供個資查詢指令S6至個資提供伺服器140。具體而言,行動個資授權伺服器120可透個資授權管理模組122將個資查詢指令S6轉發至個資提供伺服器140,以由個資提供伺服器140查詢上述特定個資。In one embodiment, in response to determining that the authentication information S5 is verified, the
在一實施例中,個資提供伺服器140例如是戶政事務所或其他儲存有使用者的各式個資的伺服器,而上述各式個資例如可儲存於個資提供伺服器140的個資資料庫142。在一實施例中,在個資提供伺服器140接收個資查詢指令S6之後,其中的個資查詢處理模組141可驗證個資查詢指令S6,並可在判定個資查詢指令S6通過驗證後,提供使用者的特定個資S7予行動個資授權伺服器120。In one embodiment, the personal
相應地,行動個資授權伺服器120可透個資授權管理模組122將個資提供伺服器140提供的特定個資S7回傳至應用服務伺服器100。Correspondingly, the mobile personal
之後,應用服務伺服器100即可依據行動個資授權伺服器120提供的使用者的特定個資S7(例如電子裝置110的使用者的地址、電話等)執行電子裝置110的使用者所選的特定應用服務。After that, the
請參照圖2,其是依據本發明之一實施例繪示的個資授權方法流程圖。本實施例的方法可由圖1的個資授權系統10執行,以下即搭配圖1所示的元件說明圖2各步驟的細節。Please refer to FIG. 2 , which is a flowchart of a method for authorizing personal information according to an embodiment of the present invention. The method of this embodiment can be executed by the personal
首先,在步驟S210中,行動個資授權伺服器120可從一應用服務伺服器100接收個資授權請求S1,其中個資授權請求S1係應用服務伺服器110係因應於電子裝置110的使用者所要求的特定應用服務而產生,且特定應用服務需要多個個資項目。First, in step S210 , the mobile personal
在步驟S220中,行動個資授權伺服器120可反應於個資授權請求S1而回傳個資授權票據S2至應用服務伺服器100,其中應用服務伺服器100可將個資授權票據S2轉換為授權圖片S3。In step S220, the mobile personal
在步驟S230中,反應於判定從使用者的電子裝置110接收授權同意記錄S5及認證資訊S6,行動個資授權伺服器120可因應於授權同意記錄S5而轉發認證資訊S5至行動認證伺服器130,其中授權同意記錄S5及認證資訊S6表示使用者同意提供對應於前述個資項目的多個特定個資S7。In step S230, in response to determining that the authorization consent record S5 and the authentication information S6 are received from the user's
在步驟S240中,行動認證伺服器130可驗證認證資訊S6。在步驟S250中,反應於判定認證資訊S6通過驗證,行動認證伺服器130可通知行動個資授權伺服器120保存授權同意記錄S5,並透過行動個資授權伺服器120提供個資查詢指令S6至個資提供伺服器140,其中個資提供伺服器140可因應於個資查詢指令S6而將使用者的特定個資S7提供予行動個資授權伺服器120。In step S240, the
在步驟S260中,行動個資授權伺服器120可將特定個資S7提供予應用服務伺服器100,以由應用服務伺服器100據以執行特定應用服務。In step S260, the mobile personal
圖2中各步驟的細節可參照先前實施例中的說明,於此不另贅述。The details of the steps in FIG. 2 can be referred to the descriptions in the previous embodiments, and are not described herein again.
綜上所述,本發明的個資授權系統及方法可驗證應用服務伺服器所產生之個資授權請求合法性,若通過則將依個資授權請求發行一授權票據給該應用服務伺服器。若使用者於電子裝置中確認授權,則執行使用者授權同意紀錄及認證資訊之儲存及驗證程序,最後依個資授權請求回傳個資查詢結果給應用服務伺服器。To sum up, the personal information authorization system and method of the present invention can verify the legitimacy of the personal information authorization request generated by the application service server, and issue an authorization ticket to the application service server according to the personal information authorization request. If the user confirms the authorization in the electronic device, the procedure of storing and verifying the user's authorization consent record and authentication information is executed, and finally the personal information query result is returned to the application server according to the personal information authorization request.
對於使用者而言,其僅需在於使用者互動介面上選取所需的特定應用服務之後,使用電子裝置擷取使用者互動介面後續所顯示的授權圖片即可得知上述特定應用服務需要哪些個資項目,並可據以決定是否授權特定應用服務取得上述個資項目的特定個資。換言之,使用者可依其自身意願而決定授權哪些個資供所選的特定應用服務使用,因而可避免應用服務伺服器額外取得使用者未授權的個資。藉此,可進一步保證使用者個資的安全性,並避免使用者的個資被惡意的應用服務伺服器所取得。For the user, he only needs to select the desired specific application service on the user interface, and then use the electronic device to capture the authorized image displayed on the user interface to know which specific application services are required. information items, and can decide whether to authorize a specific application service to obtain the specific personal information of the above-mentioned personal information items. In other words, the user can decide which personal information to authorize for the selected specific application service according to his or her own wishes, thereby preventing the application service server from obtaining additional personal information that is not authorized by the user. Thereby, the security of the user's personal information can be further ensured, and the user's personal information can be prevented from being obtained by a malicious application server.
雖然本發明已以實施例揭露如上,然其並非用以限定本發明,任何所屬技術領域中具有通常知識者,在不脫離本發明的精神和範圍內,當可作些許的更動與潤飾,故本發明的保護範圍當視後附的申請專利範圍所界定者為準。Although the present invention has been disclosed above by the embodiments, it is not intended to limit the present invention. Anyone with ordinary knowledge in the technical field can make some changes and modifications without departing from the spirit and scope of the present invention. Therefore, The protection scope of the present invention shall be determined by the scope of the appended patent application.
10:個資授權系統 100:應用服務伺服器 101:使用者互動介面 102:授權條碼轉換模組 110:電子裝置 111:授權圖片擷取模組 112:授權票據驗證模組 113:身分認證模組 120:行動個資授權伺服器 121:個資授權請求驗證模組 122:個資授權管理模組 123:授權票據管理模組 124:使用者同意記錄儲存模組 130:行動認證伺服器 131:認證資訊驗證模組 132:認證金鑰管理模組 140:個資提供伺服器 141:個資查詢處理模組 142:個資資料庫 S1:個資授權請求 S2:個資授權票據 S3:授權圖片 S4:授權同意記錄 S5:認證資訊 S6:個資查詢指令 S7:特定個資 S210~S260:步驟10: Personal Information Authorization System 100: Application service server 101: User Interface 102: Authorized barcode conversion module 110: Electronic Devices 111: Authorized image capture module 112: Authorization ticket verification module 113: Identity authentication module 120:Mobile Personal Data Authorization Server 121: Personal information authorization request verification module 122: Personal Information Authorization Management Module 123: Authorized ticket management module 124: User agrees to record storage module 130: Mobile Authentication Server 131: Authentication information verification module 132: Authentication key management module 140: Personal information providing server 141: Personal information query processing module 142: Personal Information Database S1: Personal Information Authorization Request S2: Personal Assets Authorization Note S3: Licensed Image S4: Authorization Consent Record S5: Authentication Information S6: personal information query instruction S7: specific personal information S210~S260: Steps
圖1是依據本發明之一實施例繪示的個資授權系統示意圖。 圖2是依據本發明之一實施例繪示的個資授權方法流程圖。FIG. 1 is a schematic diagram of a personal information authorization system according to an embodiment of the present invention. FIG. 2 is a flowchart of a method for authorizing personal information according to an embodiment of the present invention.
10:個資授權系統10: Personal Information Authorization System
100:應用服務伺服器100: Application service server
101:使用者互動介面101: User Interface
102:授權條碼轉換模組102: Authorized barcode conversion module
110:電子裝置110: Electronic Devices
111:授權圖片擷取模組111: Authorized image capture module
112:授權票據驗證模組112: Authorization ticket verification module
113:身分認證模組113: Identity authentication module
120:行動個資授權伺服器120:Mobile Personal Data Authorization Server
121:個資授權請求驗證模組121: Personal information authorization request verification module
122:個資授權管理模組122: Personal Information Authorization Management Module
123:授權票據管理模組123: Authorized ticket management module
124:使用者同意記錄儲存模組124: User agrees to record storage module
130:行動認證伺服器130: Mobile Authentication Server
131:認證資訊驗證模組131: Authentication information verification module
132:認證金鑰管理模組132: Authentication key management module
140:個資提供伺服器140: Personal information providing server
141:個資查詢處理模組141: Personal information query processing module
142:個資資料庫142: Personal Information Database
S1:個資授權請求S1: Personal Information Authorization Request
S2:個資授權票據S2: Personal Assets Authorization Note
S3:授權圖片S3: Licensed Image
S4:授權同意記錄S4: Authorization Consent Record
S5:認證資訊S5: Authentication Information
S6:個資查詢指令S6: personal information query instruction
S7:特定個資S7: specific personal information
Claims (12)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW109131531A TWI742849B (en) | 2020-09-14 | 2020-09-14 | System and method for personal information authorization |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW109131531A TWI742849B (en) | 2020-09-14 | 2020-09-14 | System and method for personal information authorization |
Publications (2)
Publication Number | Publication Date |
---|---|
TWI742849B TWI742849B (en) | 2021-10-11 |
TW202211056A true TW202211056A (en) | 2022-03-16 |
Family
ID=80782499
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TW109131531A TWI742849B (en) | 2020-09-14 | 2020-09-14 | System and method for personal information authorization |
Country Status (1)
Country | Link |
---|---|
TW (1) | TWI742849B (en) |
Family Cites Families (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US8738027B2 (en) * | 2011-02-07 | 2014-05-27 | Qualcomm Incorporated | Methods and apparatus for identifying and authorizing location servers and location services |
CN105323064B (en) * | 2014-07-01 | 2018-07-10 | 柯呈翰 | In on line add instant file dynamic labels, encrypted system and method |
EP3430829B1 (en) * | 2016-03-17 | 2023-01-04 | Apple Inc. | Managing program credentials on electronic devices |
TWI647942B (en) * | 2017-12-28 | 2019-01-11 | 中華電信股份有限公司 | A system and method for accessing and authenticating an electronic certificate |
TWM601411U (en) * | 2020-06-23 | 2020-09-11 | 國泰世華商業銀行股份有限公司 | System for digital account application by using ATM to obtain authentication |
-
2020
- 2020-09-14 TW TW109131531A patent/TWI742849B/en active
Also Published As
Publication number | Publication date |
---|---|
TWI742849B (en) | 2021-10-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11956243B2 (en) | Unified identity verification | |
US11750617B2 (en) | Identity authentication and information exchange system and method | |
US11991175B2 (en) | User authentication based on device identifier further identifying software agent | |
US9608982B2 (en) | Identity validation system and associated methods | |
EP2605567B1 (en) | Methods and systems for increasing the security of network-based transactions | |
US20120191615A1 (en) | Secure Credit Transactions | |
CN115271731A (en) | System and method for secure processing of electronic identities | |
US11843599B2 (en) | Systems, methods, and non-transitory computer-readable media for secure biometrically-enhanced data exchanges and data storage | |
JP6538872B2 (en) | Common identification data replacement system and method | |
JP2016181242A (en) | System and method for enabling multi-party and multi-level authorization for accessing confidential information | |
US11521720B2 (en) | User medical record transport using mobile identification credential | |
US11580559B2 (en) | Official vetting using composite trust value of multiple confidence levels based on linked mobile identification credentials | |
US20140082748A1 (en) | User information management apparatus and user information management method | |
JP6566454B2 (en) | Authentication method, authentication apparatus, computer program, and system manufacturing method | |
US20140365366A1 (en) | System and device for receiving authentication credentials using a secure remote verification terminal | |
US11182777B2 (en) | Systems and methods using a primary account number to represent identity attributes | |
US20210110357A1 (en) | Digital notarization intermediary system | |
JP2020102741A (en) | Authentication system, authentication method, and authentication program | |
TWI742849B (en) | System and method for personal information authorization | |
JP2002229956A (en) | Biometrics certification system, biometrics certification autority, service provision server, biometrics certification method and program, and service provision method and program | |
US20200204377A1 (en) | Digital notarization station that uses a biometric identification service | |
US11823092B2 (en) | Coordination platform for generating and managing authority tokens | |
JP2023006478A (en) | Information processing device, user terminal, user medium, authentication method, authenticated method, and computer program | |
FR3081239A1 (en) | SYSTEM AND METHOD FOR AUTHENTICATION USING A SINGLE-USE TIME-LIMITED TIME TOKEN | |
KR20180120017A (en) | Finacial system and method managing security medium thereof |