TWI399069B - Two - way authentication system and its method - Google Patents

Two - way authentication system and its method Download PDF

Info

Publication number
TWI399069B
TWI399069B TW99110680A TW99110680A TWI399069B TW I399069 B TWI399069 B TW I399069B TW 99110680 A TW99110680 A TW 99110680A TW 99110680 A TW99110680 A TW 99110680A TW I399069 B TWI399069 B TW I399069B
Authority
TW
Taiwan
Prior art keywords
login
telephone
confirmation code
server
voice
Prior art date
Application number
TW99110680A
Other languages
Chinese (zh)
Other versions
TW201136275A (en
Original Assignee
Gamania Digital Entertainment Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Gamania Digital Entertainment Co Ltd filed Critical Gamania Digital Entertainment Co Ltd
Priority to TW99110680A priority Critical patent/TWI399069B/en
Publication of TW201136275A publication Critical patent/TW201136275A/en
Application granted granted Critical
Publication of TWI399069B publication Critical patent/TWI399069B/en

Links

Description

電話雙向認證系統及其方法Telephone two-way authentication system and method thereof

本發明係關於一種電話雙向認證系統及其方法,主要應用在一網路服務伺服器及一語音伺服器,該語音伺服器透過語音通訊網路,以語音方式對一電話機發送一確認碼,再於掛斷電話後,撥號至該電話機,以要求使用者輸入該確認碼,當使用者輸入之確認碼正確時,該網路服務伺服器便允許使用者所操縱之終端機,登入至該網路服務伺服器。The invention relates to a telephone two-way authentication system and a method thereof, which are mainly applied to a network service server and a voice server, and the voice server sends a confirmation code to a telephone by voice through a voice communication network, and then After hanging up the phone, dial the phone to ask the user to enter the confirmation code. When the confirmation code entered by the user is correct, the network service server allows the terminal operated by the user to log in to the network. Service server.

近年來,隨著生活品質提升,人們日漸重視休閒活動,期能透過休閒活動釋放生活中的壓力,並增進人與人之間的情感交流,目前有大多數的使用者(尤其是年輕族群),會選擇網路遊戲作為休閒活動,以體驗豐富的視覺與聲音效果,以及網路社群的交流互動。隨著個人電腦的顯示效能及運算速度的提升,以及網路傳輸速率的大幅增進,聲光效果絕佳的各式網路遊戲已據獲許多使用者的心,使網路遊戲的市場蓬勃發展。根據台灣資策會的研究顯示,2011年台灣網路遊戲市場預計可達到134.74億元台幣,另,根據中國官方表示,2008年中國網路遊戲市場規模為183.8億人民幣,預估到2013年時可達到397.6億人民幣,其市場規模之龐大,由此可見一斑。In recent years, with the improvement of the quality of life, people are paying more and more attention to leisure activities. During the period, they can release the pressure of life through leisure activities and enhance the emotional communication between people. At present, most users (especially young people) Online games will be selected as a leisure activity to experience rich visual and sound effects, as well as the interaction of the online community. With the improvement of display performance and computing speed of personal computers, and the rapid increase of network transmission rate, various online games with excellent sound and light effects have won the hearts of many users, making the market of online games flourish. . According to research by the Taiwan Strategy Association, the online game market in Taiwan is expected to reach NT$ 13.474 billion in 2011. According to Chinese officials, the size of China’s online game market in 2008 was 18.38 billion yuan, estimated by 2013. It can reach 39.76 billion yuan, and its market size is huge.

正因為參與網路遊戲的使用者為數眾多,且絕大多數的使用者都希望獲取更多的虛擬貨幣及虛擬寶物,以提升遊戲角色的能力,進而取得成就感及他人的認同,因此,網路遊戲中的虛擬貨幣及虛擬寶物已演變成具有實質價值,許多使用者會以金錢購買虛擬貨幣及虛擬寶物,或者出售虛擬貨幣及虛擬寶物,以換取金錢,甚至有少數使用者會以網路遊戲為業,專職在網路遊戲中賺取虛擬貨幣及虛擬寶物,據以維生。因此,對於網路遊戲業者而言,如何提供有效的安全防護,避免使用者的虛擬貨幣及虛擬寶物被不肖人士盜取,即成為一重要課題。Because there are so many users participating in online games, and most of them want to acquire more virtual currency and virtual treasures to enhance the ability of the game characters, and thus achieve a sense of accomplishment and recognition of others, therefore, the network Virtual currency and virtual treasures in road games have evolved into real value. Many users will buy virtual currency and virtual treasures with money, or sell virtual currency and virtual treasures in exchange for money. Even a few users will use the Internet. The game is a profession that earns virtual currency and virtual treasures in online games to survive. Therefore, for online game operators, how to provide effective security protection and prevent users' virtual currency and virtual treasures from being stolen by unscrupulous people becomes an important issue.

按,目前部分網路遊戲業者在使用者註冊遊戲帳號時,會要求使用者設定一定長度以上的遊戲密碼,且為提高密碼的安全性,尚會要求遊戲密碼必須由數字及英文大小寫所組成,以防止盜取者蓄意破解。然而,卻有盜取者在公共電腦(如:網路咖啡廳的電腦)中安裝鍵盤側錄程式,紀錄使用者的按鍵歷程,而取得使用者的遊戲帳號及遊戲密碼,藉以盜取遊戲帳號內的虛擬貨幣。所謂鍵盤側錄程式,是當鍵盤上的按鍵被按壓時,該程式能記錄下被按壓的鍵碼值,並將記錄結果儲存到電腦中的預定路徑,或將記錄結果透過網際網路傳送到特定的電腦上。According to the current online game industry, when users register their game accounts, they will ask users to set a game password of a certain length or longer. In order to improve the security of the password, the game password must be composed of numbers and English. To prevent the thief from deliberately cracking. However, there are stealers who install a keyboard side-recording program in a public computer (such as a computer in a network cafe), record the user's key history, and obtain the user's game account and game password to steal the game account. Virtual currency inside. The so-called keyboard side recording program is that when the button on the keyboard is pressed, the program can record the pressed key code value, and store the recorded result in a predetermined path in the computer, or transmit the recorded result to the Internet through the network. On a specific computer.

為防範鍵盤側錄程式,乃有網路遊戲業者採用浮動鍵盤技術,當使用者欲登入網路遊戲時,電腦螢幕畫面上將顯示一按鍵為隨機排列之鍵盤,以供使用者以滑鼠點選的方式輸入遊戲密碼。然而,此一方法也未必能百分之百保障使用者的遊戲密碼不被盜取,故有網路遊戲業者開始使用通訊鎖技術,以電話認證的方式,提升遊戲帳號及遊戲密碼的安全性。以下茲搭配圖式,針對習知通訊鎖技術的原理及運作方式,進行說明:請參閱第1圖所示,習知通訊鎖技術主要係應用在一遊戲伺服器10及一語音伺服器11上,該遊戲伺服器10與該語音伺服器11係相互連接,且可互相傳遞資訊。該遊戲伺服器10內存有複數筆客戶資料,每筆客戶資料分別包含有一遊戲帳號、一遊戲密碼、一登錄電話號碼及其他遊戲資訊(如:虛擬貨幣的數量、遊戲角色狀態等),該登錄電話號碼係使用者在註冊(register)網路遊戲或通訊鎖服務時,提供給網路遊戲業者之電話號碼。當使用者欲以一終端機12(如:個人電腦)透過網際網路14連線至該遊戲伺服器10進行網路遊戲時,首先,使用者必須以電話號碼為該登錄電話號碼之電話機13,透過語音通訊網路15,撥號至該語音伺服器11,在該語音伺服器11接通電話後,該語音伺服器11便會擷取來電之電話號碼(即該登錄電話號碼),並將該電話號碼傳送至該遊戲伺服器10。當該遊戲伺服器10接收到該電話號碼後,即對該等客戶資料進行檢索比對,以找出對應於該電話號碼之客戶資料,並對該客戶資料設定一允許開放時間(如:30秒),嗣,使用者必須在此30秒內,操縱該終端機12(如:個人電腦),透過網際網路14向該遊戲伺服器10傳送遊戲帳號及遊戲密碼,方能順利通過該遊戲伺服器10的認證程序,而登入至該遊戲伺服器10進行遊戲,否則,若使用者在此30秒內未即時輸入遊戲帳號及遊戲密碼,待30秒過後,該使用者的客戶資料即進入鎖定狀態,無法由終端機12存取。若使用者欲解除上述鎖定狀態,僅需以該電話機13撥號至該語音伺服器11,再以遊戲帳號及遊戲密碼登入至該遊戲伺服器10即可。In order to prevent the keyboard side program, there is a floating keyboard technology for the online game industry. When the user wants to log in to the online game, a keyboard with a button arranged randomly will be displayed on the screen of the computer for the user to click the mouse. Select the method to enter the game password. However, this method may not be able to protect the user's game password from being stolen. Therefore, online game operators start to use the communication lock technology to enhance the security of the game account and game password by means of telephone authentication. The following is a description of the principle and operation mode of the conventional communication lock technology. Please refer to FIG. 1 , the conventional communication lock technology is mainly applied to a game server 10 and a voice server 11 . The game server 10 and the voice server 11 are connected to each other and can transmit information to each other. The game server 10 has a plurality of customer data stored therein, and each customer data includes a game account, a game password, a login phone number, and other game information (eg, the number of virtual currencies, game role status, etc.), the login The phone number is the phone number that the user provides to the online game provider when registering the online game or the communication lock service. When the user wants to connect to the game server 10 via the Internet 14 via a network terminal 14 (for example, a personal computer) to perform a network game, first, the user must use the phone number as the phone number of the login phone number. Dialing to the voice server 11 through the voice communication network 15, after the voice server 11 is connected to the phone, the voice server 11 will retrieve the phone number of the call (ie, the login phone number), and the The phone number is transmitted to the game server 10. After the game server 10 receives the phone number, the customer information is searched and compared to find the customer data corresponding to the phone number, and an allowable opening time is set for the customer data (eg, 30). Secondly, 嗣, the user must manipulate the terminal 12 (eg, a personal computer) within 30 seconds to transmit the game account and the game password to the game server 10 via the Internet 14, in order to successfully pass the game. The authentication process of the server 10 is logged in to the game server 10 to play the game. Otherwise, if the user does not immediately input the game account and the game password within 30 seconds, after 30 seconds, the user profile of the user enters. The locked state cannot be accessed by the terminal device 12. If the user wants to cancel the locked state, it is only necessary to dial the voice server 11 to the voice server 11, and then log in to the game server 10 with the game account and the game password.

透過上述通訊鎖技術,縱令盜取者以鍵盤側錄程式或其他方式取得使用者的遊戲帳號及遊戲密碼,由於盜取者並未持有使用者的電話機13,故無法藉由撥打電話至該語音伺服器11,解除客戶資料的鎖定狀態,以致無法以使用者的遊戲帳號及遊戲密碼登入至該遊戲伺服器10。然而,目前已有特殊的通訊設備及軟體可偽造來電顯示,意即,盜取者可使用特殊的通訊設備或軟體,將電話號碼偽裝成該登錄電話號碼,並撥號至該語音伺服器11,如此,該語音伺服器11便會將該偽裝電話號碼(與該登錄電話號碼相同)傳送至該遊戲伺服器10,使該遊戲伺服器10解除客戶資料之鎖定,此時,盜取者便能以使用者的遊戲帳號及遊戲密碼,成功登入至該遊戲伺服器10,進而竊取使用者的虛擬貨幣及虛擬寶物,令使用者蒙受嚴重的損失,十分不理想。Through the above communication lock technology, the pirate obtains the user's game account and game password by using the keyboard side program or other means. Since the pirate does not hold the user's telephone 13, it is impossible to make a call to the user. The voice server 11 unlocks the customer profile so that the game server 10 cannot be logged in with the user's game account and game password. However, there are special communication devices and software that can forge a caller ID, meaning that the thief can use a special communication device or software to disguise the phone number as the login phone number and dial the voice server 11. In this way, the voice server 11 transmits the spoofed telephone number (same as the login telephone number) to the game server 10, so that the game server 10 unlocks the customer data, and at this time, the pirate can The user's game account and game password are successfully logged into the game server 10, thereby stealing the user's virtual currency and virtual treasures, causing serious losses to the user, which is highly undesirable.

因此,如何改善習知通訊鎖技術的諸多問題,以加強遊戲帳號的安全性,避免盜取者以使用者的遊戲帳號及遊戲密碼登入至遊戲伺服器,並防止使用者的虛擬貨幣及虛擬寶物被竊取,即為本發明在此欲探討的一重要課題。Therefore, how to improve the problems of the conventional communication lock technology, in order to strengthen the security of the game account, to prevent the pirate from logging in to the game server with the user's game account and game password, and to prevent the user's virtual currency and virtual treasures Being stolen is an important subject for the present invention to be explored here.

有鑑於前揭諸多問題,發明人經過長久努力研究與實驗,終於開發設計出本發明之電話雙向認證系統及其方法,期增加系統的可靠性,進一步加強帳號的安全,避免被盜取者惡意破解盜取。In view of the many problems mentioned above, after long-term efforts and experiments, the inventors finally developed and designed the telephone two-way authentication system and method thereof, which increases the reliability of the system, further strengthens the security of the account, and avoids the malicious of the stolen. Crack theft.

本發明之一目的,係提供一種電話雙向認證方法,當使用者操縱一終端機對一網路服務伺服器傳送一登入訊息後,該網路服務伺服器即回應一初步確認碼及一確認電話號碼,令使用者以一電話機撥打該確認電話號碼,並將初步確認碼傳送至一語音伺服器。該語音伺服器擷取該電話機之電話號碼,且將該電話機傳來之初步確認碼傳送至該網路服務伺服器,俾便該網路服務伺服器確認該電話機傳來之初步確認碼及該電話機撥打之電話號碼是否正確,若為正確,該語音伺服器便透過語音對該電話機發送一確認碼,並掛斷電話,再以該電話機之電話號碼回撥給使用者,以便使用者以該電話機向該語音伺服器傳送該確認碼。若該電話機回傳之確認碼正確,該網路服務伺服器便允許該終端機之登入請求。如此,藉由真實的電話作使用者驗證,不僅能有效提高驗證的可靠性,更能避免不肖人士大量申請不實帳號。An object of the present invention is to provide a two-way authentication method for a telephone. When a user manipulates a terminal to transmit a login message to a network service server, the network service server responds with a preliminary confirmation code and a confirmation call. The number is such that the user dials the confirmation telephone number by a telephone and transmits the preliminary confirmation code to a voice server. The voice server retrieves the telephone number of the telephone, and transmits a preliminary confirmation code sent by the telephone to the network service server, and the network service server confirms the preliminary confirmation code sent by the telephone and the The phone number dialed by the telephone is correct. If it is correct, the voice server sends a confirmation code to the phone through voice, hangs up the phone, and then calls back to the user with the phone number of the phone, so that the user can The telephone transmits the confirmation code to the voice server. If the confirmation code returned by the telephone is correct, the network service server allows the terminal to log in. In this way, the user can be authenticated by the real phone, which not only can effectively improve the reliability of the verification, but also can prevent the unscrupulous people from applying for a large number of unreal accounts.

本發明之另一目的,係提供一種電話雙向認證系統,包括一網路服務伺服器及一語音伺服器,其中該網路服務伺服器係分別與一網際網路及該語音伺服器相連接,且該語音伺服器係與一語音通訊網路相連接,該網路服務伺服器內存有複數筆客戶資料,在該網路服務伺服器透過該網際網路接收一終端機傳來之登入訊息時,便將該登入訊息與該等客戶資料進行比對,並將對應於該登入訊息之登錄電話號碼傳送至該語音伺服器,同時,產生一對應於該登錄電話號碼之確認碼,亦將該確認碼傳送至該語音伺服器;該語音伺服器透過該語音通訊網路,接收到一電話機傳來之一來電訊息,並擷取對應於該來電訊息之電話號碼後,對該電話號碼與該登錄電話號碼進行比對,在該電話號碼與該登錄電話號碼相吻合的情況下,該語音伺服器即以語音方式對該電話機發送該確認碼,以便使用者(如:網路遊戲玩家)聽取該確認碼;嗣,該語音伺服器即掛斷電話,再以該登錄電話號碼撥號至該電話機,使用者在接通電話後,便能以該電話機向該語音伺服器傳送該確認碼,在該確認碼正確的情況下,該網路服務伺服器即允許該終端機之登入請求,使該終端機能成功登入至該網路服務伺服器。如此,由於該語音伺服器在發送該確認碼後,會重新撥號至使用者預先登錄的電話號碼,要求使用者輸入該確認碼,故縱令盜取者(如:盜取遊戲中的虛擬寶物者)以軟體偽裝使用者的電話號碼,撥號至該語音伺服器以騙取該確認碼,但由於盜取者並未持有使用者的電話機,故無法接到該語音伺服器的來電,自然不能對該語音伺服器傳送該確認碼,使盜取者無法成功登入至該網路服務伺服器。Another object of the present invention is to provide a two-way telephone authentication system, including a network service server and a voice server, wherein the network service server is respectively connected to an internet network and the voice server. And the voice server is connected to a voice communication network, where the network service server has a plurality of customer data, and when the network service server receives the login message from the terminal through the Internet, And comparing the login message with the customer data, and transmitting the login phone number corresponding to the login message to the voice server, and generating a confirmation code corresponding to the login phone number, and confirming the confirmation Transmitting to the voice server; the voice server receives a call message sent by a telephone through the voice communication network, and retrieves a phone number corresponding to the call message, and the phone number and the login phone The number is compared. When the phone number matches the login phone number, the voice server sends the phone to the phone in a voice manner. The confirmation code is such that the user (eg, a network game player) listens to the confirmation code; 嗣, the voice server hangs up the phone, and then dials the phone number to the phone, and after the user connects the phone, The confirmation code can be transmitted to the voice server by the telephone. If the confirmation code is correct, the network service server allows the terminal to log in to enable the terminal to successfully log in to the network service. server. In this way, after the voice server sends the confirmation code, it will dial the number to the user's pre-registered phone number, and ask the user to input the confirmation code, so the stealer (for example, stealing the virtual treasure in the game) The software masquerades the user's phone number, dials the voice server to defraud the confirmation code, but since the pirate does not hold the user's phone, it cannot receive the call from the voice server, naturally it cannot The voice server transmits the confirmation code so that the thief cannot successfully log in to the network service server.

本發明之又一目的,係提供一種電話雙向認證系統,包括一網路服務伺服器及一語音伺服器,其中該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼。在該網路服務伺服器透過網際網路接收一終端機傳來之登入訊息時,便將對應於該登入訊息之登錄電話號碼傳送至該語音伺服器,同時,產生一確認碼,並將該確認碼傳送至該終端機及該語音伺服器,令使用者能藉由該終端機得知該確認碼;該語音伺服器透過該語音通訊網路,依照該登錄電話號碼,撥號至使用者之電話機,並要求使用者輸入該確認碼;使用者以該電話機向該語音伺服器傳送該確認碼,在使用者傳送之確認碼正確的情況下,該網路服務伺服器即允許該終端機之登入請求。藉由本發明,不僅能防範盜取者竊取使用者的虛擬寶物,由於網路服務伺服器係以真實的電話號碼進行認證,更能防止盜取者或其他不肖人士大量申請不實帳號,有效杜絕網路內的非法行為。Another object of the present invention is to provide a two-way telephone authentication system, including a network service server and a voice server, wherein the network service server has a plurality of customer data, each of which includes a login telephone number. When the network service server receives the login message sent by the terminal through the Internet, the login phone number corresponding to the login message is transmitted to the voice server, and a confirmation code is generated, and the The confirmation code is transmitted to the terminal and the voice server, so that the user can know the confirmation code through the terminal; the voice server dials the user's telephone according to the login telephone number through the voice communication network. And requesting the user to input the confirmation code; the user transmits the confirmation code to the voice server by using the telephone, and the network service server allows the terminal to log in if the confirmation code transmitted by the user is correct. request. The invention can not only prevent the stealer from stealing the virtual treasure of the user, but because the network service server authenticates with the real telephone number, it can prevent theft or other unscrupulous people from applying for a large number of untrue accounts, effectively eliminating the problem. Illegal behavior within the network.

本發明之再一目的,係提供一種電話雙向認證系統,包括一網路服務伺服器及一語音伺服器,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼。在該網路服務伺服器接收一終端機傳來之登入訊息時,便將對應於該登入訊息之登錄電話號碼傳送至該語音伺服器,同時,產生一對應於該登錄電話號碼之確認碼,亦將該確認碼傳送至該語音伺服器,嗣,該語音伺服器以該登錄電話號碼撥號至使用者的電話機,以語音方式告知該確認碼,並掛斷電話,其後,使用者以該電話機撥號至該語音伺服器,並輸入該確認碼,在該電話號碼與該登錄電話號碼匹配,且該確認碼亦正確的情況下,該網路服務伺服器即允許該終端機登入至該網路服務伺服器。如此,由於該語音伺服器會主動撥號予使用者,並告知該確認碼,故僅有真實使用者能取得該確認碼,有效提高帳號之安全性。A further object of the present invention is to provide a two-way telephone authentication system, including a network service server and a voice server, wherein the network service server has a plurality of customer data, each of which includes a login phone. number. When the network service server receives the login message sent by the terminal, the login phone number corresponding to the login message is transmitted to the voice server, and a confirmation code corresponding to the login phone number is generated. The confirmation code is also transmitted to the voice server, and the voice server dials the user's telephone number with the login telephone number, and the confirmation code is voiced and the phone is hung up. Thereafter, the user uses the confirmation code. The telephone dials the voice server and enters the confirmation code. When the phone number matches the login phone number and the confirmation code is also correct, the network service server allows the terminal to log in to the network. Road service server. In this way, since the voice server actively dials the user and informs the confirmation code, only the real user can obtain the confirmation code, thereby effectively improving the security of the account.

為便 貴審查委員能對本發明之目的、結構及其功效,做更進一步之認識與瞭解,茲舉實施例配合圖式,詳細說明如下:For your convenience, the review committee can make a further understanding and understanding of the purpose, structure and efficacy of the present invention. The embodiments are described in conjunction with the drawings, which are described in detail as follows:

本發明係一種電話雙向認證系統及其方法,可應用在網路遊戲的登入驗證程序上,但並不以此為限,網路服務業者亦可將本發明應用至其他需要使用者認證之網路服務上。本發明之第一較佳實施例,請參閱第2圖所示,該電話雙向認證系統2包括一網路服務伺服器20及一語音伺服器21,其中該網路服務伺服器20係分別與一網際網路22及該語音伺服器21相連接,且該語音伺服器21係與一語音通訊網路23相連接,該電話雙向認證系統2係透過下列流程,對使用者進行認證,請參閱第3A、3B圖所示:The invention relates to a telephone two-way authentication system and a method thereof, which can be applied to a login verification program of an online game, but not limited thereto, and the network service provider can also apply the invention to other networks requiring user authentication. Road service. In the first preferred embodiment of the present invention, as shown in FIG. 2, the two-way authentication system 2 includes a network service server 20 and a voice server 21, wherein the network service server 20 is respectively associated with An Internet 22 is connected to the voice server 21, and the voice server 21 is connected to a voice communication network 23. The two-way authentication system 2 authenticates the user through the following process. 3A, 3B diagram:

(301)該網路服務伺服器20透過該網際網路22接收終端機24傳來之登入訊息(如:帳號、密碼);(301) The network service server 20 receives the login message (such as an account number and a password) sent by the terminal device 24 through the Internet network 22;

(302)該網路服務伺服器20產生一初步確認碼及一確認電話號碼,並將該初步確認碼及該確認電話號碼傳送至該終端機24,其中,藉由撥打該確認電話號碼,可連線至該語音伺服器21,該網路服務伺服器20可預先備有複數組確認電話號碼,以任選一組提供予使用者;(302) the network service server 20 generates a preliminary confirmation code and a confirmation telephone number, and transmits the preliminary confirmation code and the confirmation telephone number to the terminal device 24, wherein by dialing the confirmation telephone number, Connected to the voice server 21, the network service server 20 may be provided with a complex array confirmation telephone number in advance, and provided to the user in an optional group;

(303)該語音伺服器21透過該語音通訊網路23接收到電話機25傳來之一來電訊息,換言之,使用者操縱該電話機25撥打至該語音伺服器21;(303) The voice server 21 receives an incoming call message from the telephone 25 via the voice communication network 23, in other words, the user manipulates the phone 25 to dial the voice server 21;

(304)該語音伺服器21擷取對應於該來電訊息之電話號碼,意即該電話機25之電話號碼;(304) the voice server 21 retrieves a phone number corresponding to the incoming call message, that is, the phone number of the phone 25;

(305)該語音伺服器21接收該電話機25傳來之初步確認碼;(305) the voice server 21 receives the preliminary confirmation code sent by the telephone 25;

(306)該語音伺服器21將該電話機25傳來之初步確認碼及該電話機25所撥打之電話號碼傳送至該網路服務伺服器20;(306) the voice server 21 transmits the preliminary confirmation code sent by the telephone 25 and the telephone number dialed by the telephone 25 to the network service server 20;

(307)該網路服務伺服器20判斷該電話機25傳來之初步確認碼及該電話機25所撥打之電話號碼是否與該網路服務伺服器20所產生者相匹配,若相匹配,則進行步驟(308),否則,進行步驟(307a);(307) The network service server 20 determines whether the preliminary confirmation code sent by the telephone 25 and the telephone number dialed by the telephone 25 match the originator of the network service server 20, if they match, proceed Step (308), otherwise, proceeding to step (307a);

(307a)結束服務;(307a) end the service;

(308)該語音伺服器21以語音方式對該電話機25發送一確認碼,以便使用者聽取;(308) the voice server 21 sends a confirmation code to the phone 25 in a voice manner for the user to listen to;

(309)該語音伺服器21掛斷電話;(309) the voice server 21 hangs up the phone;

(310)該語音伺服器21以該電話機25之電話號碼,撥號至該電話機25;(310) the voice server 21 is dialed to the telephone 25 by the telephone number of the telephone 25;

(311)該語音伺服器21接收該電話機25所傳來之確認碼,換言之,使用者操縱該電話機(如:按壓該電話機之按鍵),向該語音伺服器21傳送確認碼;(311) the voice server 21 receives the confirmation code sent by the telephone 25, in other words, the user manipulates the telephone (eg, pressing a button of the telephone) to transmit a confirmation code to the voice server 21;

(312)判斷該電話機25所傳來之確認碼是否正確,若正確,則進行步驟(313),否則,進行步驟(312a);(312) determining whether the confirmation code sent by the telephone 25 is correct, if yes, proceeding to step (313), otherwise, performing step (312a);

(312a)結束服務;及(312a) end the service; and

(313)該網路服務伺服器20允許該終端機24之登入請求。(313) The network service server 20 allows the login request of the terminal 24.

在上述第一較佳實施例中,判斷該電話機25所傳來之確認碼是否正確(步驟(312))可由該語音伺服器21或該網路服務伺服器20執行。此外,當上述步驟(307)之比對結果為相匹配後,該語音伺服器21向該電話機25發送該確認碼之前,可藉由語音方式,向該電話機25播送該電話機25的電話號碼,以供使用者確認,以免使用者因使用家用電話節費盒,導致該語音伺服器21所擷取的電話號碼與該電話機25的真實電話號碼不同,使得使用者無法接到後續該語音伺服器21的來電。再者,若使用者的數量不多,則只需一組確認電話號碼,即可達成本發明之目的,換言之,即無須判斷該電話機25所撥打之電話號碼是否與該網路服務伺服器20所提供者是否相符合。In the first preferred embodiment described above, it is determined whether the confirmation code transmitted by the telephone set 25 is correct (step (312)) can be performed by the voice server 21 or the network service server 20. In addition, after the comparison result of the above step (307) is matched, before the voice server 21 sends the confirmation code to the telephone 25, the telephone number of the telephone 25 can be broadcast to the telephone 25 by voice. For the user to confirm, in order to prevent the user from using the home phone bill box, the phone number retrieved by the voice server 21 is different from the real phone number of the phone 25, so that the user cannot receive the subsequent voice server. 21 calls. Furthermore, if the number of users is small, only one set of confirmation telephone numbers is needed to achieve the object of the present invention. In other words, it is not necessary to determine whether the telephone number dialed by the telephone 25 is associated with the network service server 20. Whether the providers are in compliance.

透過上述第一較佳實施例,由於該語音伺服器21會主動撥號給使用者,故僅有真實使用者能接到該語音伺服器21撥來的電話,而藉由上述技術特徵,網路服務業者不需事先持有使用者的個人資料,亦能達成高安全性、高可靠性的使用者認證,因此,藉由本發明以真實的電話號碼進行驗證之技術特徵,能避免使用者與網路服務業者在帳號密碼管理上發生不必要的爭執,大幅提昇網路服務業者的管理效率。且正因為本發明係利用電話作驗證,由於電話的可信度較網路高、且實名化,當網路犯罪發生時,更有利於警方蒐證,有效提升網路犯罪的破案率。Through the above-mentioned first preferred embodiment, since the voice server 21 actively dials the user, only the real user can receive the call from the voice server 21, and the network features the above technical features. Service providers do not need to hold the user's personal data in advance, and can achieve high security and high reliability user authentication. Therefore, by using the technical features of the present invention to verify the real phone number, the user and the network can be avoided. Road service providers have unnecessary disputes over account password management, which greatly improves the management efficiency of network service providers. And because the invention uses the telephone for verification, since the credibility of the telephone is higher than the network and realized, when the cyber crime occurs, it is more conducive to police search and effectively improve the detection rate of cybercrime.

在本發明之第二較佳實施例中,請參閱第2圖所示,該電話雙向認證系統2包括一網路服務伺服器20及一語音伺服器21,其中該電話雙向認證系統2尚包括一資料庫201,該資料庫201係設置在該網路服務伺服器20內,該資料庫201內存有複數筆客戶資料,各該客戶資料分別包含一遊戲帳號、一遊戲密碼、一登錄電話號碼及其他遊戲資訊(如:遊戲角色狀態、遊戲角色座標等)。惟,並不以此為限,該資料庫201亦可設置在該網路服務伺服器20外,僅需使該網路服務伺服器20能連線存取該資料庫201即可。第2圖所示之終端機24,係一個人電腦,該終端機24內安裝有網路遊戲業者提供的遊戲終端程式,以便使用者能藉由操縱該遊戲終端程式,使該終端機24能透過該網際網路22連線至該網路服務伺服器20。In the second preferred embodiment of the present invention, as shown in FIG. 2, the two-way authentication system 2 includes a network service server 20 and a voice server 21, wherein the telephone two-way authentication system 2 includes a database 201, the database 201 is disposed in the network service server 20, the database 201 has a plurality of customer data stored therein, each of the customer data includes a game account, a game password, and a login phone number. And other game information (such as: game character status, game character coordinates, etc.). However, not limited thereto, the database 201 can also be disposed outside the network service server 20, and only the network service server 20 can be connected to the database 201. The terminal device 24 shown in FIG. 2 is a personal computer. The terminal device 24 is provided with a game terminal program provided by an online game provider, so that the user can manipulate the terminal program 24 to enable the terminal device 24 to pass through. The internet 22 is connected to the network service server 20.

在本發明之第二較佳實施例中,該電話雙向認證系統2係透過下列流程,對使用者進行認證,請參閱第4A及4B圖所示:In the second preferred embodiment of the present invention, the two-way authentication system 2 authenticates the user through the following processes, as shown in Figures 4A and 4B:

(401)該網路服務伺服器20透過該網際網路22接收該終端機24傳來之登入訊息,其中該登入訊息內含有遊戲帳號及遊戲密碼;(401) the network service server 20 receives the login message sent by the terminal device 24 through the Internet 22, wherein the login message includes a game account and a game password;

(402)該網路服務伺服器20將該登入訊息內之遊戲帳號及遊戲密碼,與該等客戶資料進行比對,以檢索出對應於該登入訊息之登錄電話號碼;(402) the network service server 20 compares the game account and the game password in the login message with the customer data to retrieve the login phone number corresponding to the login message;

(403)該網路服務伺服器20將上述登錄電話號碼傳送至該語音伺服器21;(403) the network service server 20 transmits the above login phone number to the voice server 21;

(404)該網路服務伺服器20產生一對應於該登錄電話號碼之確認碼,並將該確認碼傳送至該語音伺服器21;(404) the network service server 20 generates a confirmation code corresponding to the login phone number, and transmits the confirmation code to the voice server 21;

(405)該語音伺服器21透過該語音通訊網路23接收到一電話機25傳來之一來電訊息;(405) the voice server 21 receives an incoming call message sent by a telephone 25 through the voice communication network 23;

(406)該語音伺服器21擷取對應於該來電訊息之電話號碼,若能成功擷取,則進行步驟(407),否則,進行步驟(406a);(406) the voice server 21 retrieves the phone number corresponding to the incoming call message, if successful, then proceeds to step (407), otherwise, proceeds to step (406a);

(406a)該語音伺服器21向該電話機25傳送一告知訊息,以通知使用者開啟來電顯示功能;(406a) the voice server 21 transmits a notification message to the phone 25 to notify the user to turn on the caller ID function;

(407)該語音伺服器21對該電話號碼與該登錄電話號碼進行比對,若該電話號碼與該登錄電話號碼相吻合,則進行步驟(407) the voice server 21 compares the phone number with the login phone number, and if the phone number matches the login phone number, proceeding to the step

(408),否則,進行步驟(407a);(408), otherwise, proceeding to step (407a);

(407a)結束服務,意即結束與該使用者的認證流程;(407a) Ending the service, which means ending the authentication process with the user;

(408)該語音伺服器21以語音方式對該電話機25發送該確認碼,以便使用者聽取該確認碼;(408) the voice server 21 sends the confirmation code to the phone 25 in a voice manner, so that the user can listen to the confirmation code;

(409)該語音伺服器21掛斷電話;(409) the voice server 21 hangs up the phone;

(410)該語音伺服器21以該登錄電話號碼撥號至該電話機25,並等待該電話機25回傳確認碼;(410) the voice server 21 dials the phone number 25 with the login phone number, and waits for the phone machine 25 to return the confirmation code;

(411)該語音伺服器21接收該電話機25傳來的確認碼,並將該電話號碼及該電話機25傳來的確認碼傳送至該網路服務伺服器20;(411) the voice server 21 receives the confirmation code sent by the telephone 25, and transmits the telephone number and the confirmation code transmitted by the telephone 25 to the network service server 20;

(412)該網路服務伺服器20對該語音伺服器21傳來的該電話號碼與該確認碼執行比對動作,在該電話號碼與該登錄電話號碼相匹配,且該確認碼亦正確的情況下,進行步驟(413),否則,進行步驟(412a);(412) the network service server 20 performs a comparison operation with the confirmation code on the phone number sent to the voice server 21, the phone number matches the login phone number, and the confirmation code is also correct. In case, step (413) is performed, otherwise, step (412a) is performed;

(412a)結束服務;及(412a) end the service; and

(413)該網路服務伺服器20允許該終端機24之登入請求,使該終端機24能成功登入至該網路服務伺服器20。(413) The network service server 20 allows the terminal 24 to log in to enable the terminal 24 to successfully log in to the network service server 20.

在上述第二較佳實施例中,當使用者欲登入至該網路服務伺服器20,首先需操縱該終端機24,向該網路服務伺服器20傳送登入訊息,即該遊戲帳號及該遊戲密碼,嗣,使用者必須使用該電話機25,撥號至該語音伺服器21,且該電話機25的電話號碼必須相同於該登錄電話號碼。之後,使用者則可透過該電話機25,聽取該語音伺服器21所播送的確認碼。待該語音伺服器21掛斷電話,並重撥後,使用者即可接聽電話,並透過該電話機25的按鈕,鍵入該確認碼,如此,該網路服務伺服器20在確認該確認碼正確後,便會允許使用者以該終端機24登入,令使用者能透過該終端機24進行該網路服務伺服器20所提供的遊戲服務。在上述步驟中,由於該語音伺服器21會在發送該確認碼後,重新撥號至使用者預先登錄的電話號碼,要求使用者輸入該確認碼,即便盜取者已取得該使用者的遊戲帳號及遊戲密碼,且以特殊通訊設備或軟體偽裝使用者的電話號碼,撥號至該語音伺服器21以騙取該確認碼,但由於盜取者並未持有使用者的電話機25,因此,當該語音伺服器21以該登錄電話號碼撥號時,盜取者並無法接到該來電,故不能將該確認碼傳送至該語音伺服器21,也就無法成功登入至該網路服務伺服器20,大幅提昇遊戲帳號的安全性。In the above second preferred embodiment, when the user wants to log in to the network service server 20, the terminal device 24 is first manipulated to transmit a login message to the network service server 20, that is, the game account number and the The game password, 嗣, the user must use the phone 25 to dial into the voice server 21, and the phone number of the phone 25 must be the same as the login phone number. Thereafter, the user can listen to the confirmation code broadcast by the voice server 21 through the telephone 25. After the voice server 21 hangs up the phone and redials, the user can answer the call and input the confirmation code through the button of the phone 25, so that the network service server 20 confirms that the confirmation code is correct. The user is allowed to log in with the terminal 24, so that the user can perform the game service provided by the network service server 20 through the terminal 24. In the above step, after the voice server 21 sends the confirmation code, it re-diascribes the phone number that the user has previously logged in, and asks the user to input the confirmation code, even if the pirate has obtained the game account of the user. And the game password, and the special communication device or software camouflages the user's phone number, dials the voice server 21 to defraud the confirmation code, but since the pirate does not hold the user's phone 25, therefore, When the voice server 21 dials the login telephone number, the thief cannot receive the call, so the confirmation code cannot be transmitted to the voice server 21, and the login to the network service server 20 cannot be successfully performed. Significantly improve the security of your game account.

在上述第二較佳實施例中,在該網路服務伺服器20接收到該登入訊息後,該網路服務伺服器20尚會產生一驗證字串,該驗證字串係由數字所組成,該網路服務伺服器20係將該驗證字串傳送至該終端機24上,令使用者能得知該驗證字串,另,該網路服務伺服器20亦將該驗證字串傳送至該語音伺服器21。該語音伺服器21中尚設有一計時程序211,在該語音伺服器21接收到該登錄電話號碼後,該計時程序211即啟動,使用者必須在一第一預定期間(如:1分鐘)內,以該電話機25撥號至該語音伺服器21,在該語音伺服器21對該電話號碼比對完成後(即上述步驟(407)),使用者必須先輸入該驗證字串,該語音伺服器21在確認使用者輸入之驗證字串正確後,才會進行步驟(408):以語音方式對該電話機25發送該確認碼。反之,若使用者未在該第一預定期間內,撥號至該語音伺服器21,該電話雙向認證系統2即結束服務(結束與該使用者的認證程序)。又,在該語音伺服器21於步驟(409)掛斷電話,並於步驟(410)撥號至該電話機25後,該計時程序211便開始計時,使用者必須在一第二預定期間(如:2分鐘)內,以該電話機25向該語音伺服器21傳送該確認碼,否則,該電話雙向認證系統2即結束服務。藉由設定上述計時程序211及第一、第二預定期間,可減輕該語音伺服器21的部分負荷,以減少該語音伺服器21因電話流量過大而癱瘓的可能性。In the second preferred embodiment, after the network service server 20 receives the login message, the network service server 20 still generates a verification string, and the verification string is composed of numbers. The network service server 20 transmits the verification string to the terminal device 24, so that the user can know the verification string, and the network service server 20 also transmits the verification string to the Voice server 21. The voice server 21 is further provided with a timing program 211. After the voice server 21 receives the login telephone number, the timer program 211 is activated, and the user must be within a first predetermined period (eg, 1 minute). The telephone 25 is dialed to the voice server 21, and after the voice server 21 compares the phone number (ie, the above step (407)), the user must first input the verification string, the voice server 21 After confirming that the authentication string input by the user is correct, the step (408) is performed: the confirmation code is sent to the telephone 25 by voice. On the other hand, if the user does not dial into the voice server 21 within the first predetermined period, the telephone two-way authentication system 2 ends the service (ends the authentication procedure with the user). Moreover, after the voice server 21 hangs up the phone at step (409) and dials to the phone 25 at step (410), the timer 211 starts counting and the user must be in a second predetermined period (eg: Within 2 minutes), the confirmation code is transmitted to the voice server 21 by the telephone 25, otherwise the telephone two-way authentication system 2 ends the service. By setting the timing program 211 and the first and second predetermined periods, the partial load of the voice server 21 can be reduced to reduce the possibility that the voice server 21 is too large due to excessive telephone traffic.

又,在上述第二較佳實施例中,網路遊戲業者為更進一步降低該語音伺服器21的負荷,並避免惡意人士在短時間內大量撥號至該語音伺服器21,在該語音伺服器21內尚設有一計數器212,用以記錄同一電話號碼在一限制期間(如:24小時)內對該語音伺服器21的撥號次數,當同一電話號碼在該限制期間,對該語音伺服器21的撥號次數超過一限制次數(如:12次)時,該語音伺服器21則拒絕接聽該同一電話號碼的來電,如此,不僅能避免該語音伺服器21不堪負荷,而發生癱瘓等情事,更能防止盜取者嘗試破解確認碼。需特別一提的是,上述計時程序211及計數器212未必需要設置在該語音伺服器21內,該計時程序211及該計數器212亦可獨立於該語音伺服器21之外。Moreover, in the second preferred embodiment described above, the online game provider further reduces the load on the voice server 21 and prevents a malicious person from dialing a large number of calls to the voice server 21 in a short time, in the voice server. There is further provided a counter 212 for recording the number of times the same telephone number is dialed to the voice server 21 during a limited period (e.g., 24 hours). When the same telephone number is within the limit period, the voice server 21 is provided. When the number of dialing times exceeds a limit number of times (for example, 12 times), the voice server 21 refuses to answer the incoming call of the same telephone number, so that not only the voice server 21 can be prevented from being overloaded, but also the situation occurs, and Can prevent the thief from trying to crack the confirmation code. It should be noted that the timing program 211 and the counter 212 are not necessarily required to be disposed in the voice server 21, and the timer program 211 and the counter 212 may be independent of the voice server 21.

在本發明之第三較佳實施例中,該電話雙向認證系統2的硬體架構部分與上述第二較佳實施例(即第2圖)相同,合先陳明,惟,認證流程與上述第二較佳實施例略有差異,該電話雙向認證系統2係透過下列流程,對使用者進行認證,請參閱第5圖所示:In the third preferred embodiment of the present invention, the hardware architecture of the two-way authentication system 2 is the same as that of the second preferred embodiment (ie, FIG. 2), and the authentication process is the same as the above. The second preferred embodiment is slightly different. The two-way authentication system 2 authenticates the user through the following process, as shown in Figure 5:

(501)該網路服務伺服器20透過該網際網路22接收該終端機24傳來之登入訊息;(501) the network service server 20 receives the login message sent by the terminal device 24 through the Internet 22;

(502)該網路服務伺服器20將該登入訊息,與該等客戶資料進行比對,以檢索出對應於該登入訊息之登錄電話號碼;(502) the network service server 20 compares the login message with the customer data to retrieve a login phone number corresponding to the login message;

(503)該網路服務伺服器20將該登錄電話號碼傳送至該語音伺服器21;(503) the network service server 20 transmits the login phone number to the voice server 21;

(504)該網路服務伺服器20產生一確認碼,並將該確認碼傳送至該終端機24,俾便使用者得知該確認碼;(504) the network service server 20 generates a confirmation code, and transmits the confirmation code to the terminal device 24, so that the user knows the confirmation code;

(505)該語音伺服器21透過該語音通訊網路23,依照該登錄電話號碼,撥號至使用者之電話機25;(505) the voice server 21 through the voice communication network 23, according to the login phone number, dialed to the user's telephone 25;

(506)該語音伺服器21接收該電話機25傳來之確認碼,意即,使用者接通電話後,操縱該電話機25輸入確認碼;(506) the voice server 21 receives the confirmation code sent by the telephone 25, that is, after the user connects the phone, the phone 25 is manipulated to input a confirmation code;

(507)該語音伺服器21將該電話機25傳來之確認碼傳送至該網路服務伺服器20;(507) the voice server 21 transmits the confirmation code sent from the telephone 25 to the network service server 20;

(508)該網路服務伺服器20比對該語音伺服器21傳來之確認碼是否正確,若為正確,則進行步驟(509),否則,進行步驟(508a);(508) the network service server 20 is more correct than the confirmation code sent to the voice server 21, if it is correct, proceed to step (509), otherwise, proceed to step (508a);

(508a)結束服務,意即結束與該使用者的認證流程;及(508a) ending the service, which means ending the certification process with the user; and

(509)該網路服務伺服器20允許該終端機24之登入請求。(509) The network service server 20 allows the login request of the terminal 24.

在第三較佳實施例中,使用者係透過該終端機24得知該確認碼,再於接到該語音伺服器21的電話後,以該電話機25輸入該確認碼,以通過本系統之認證。縱使盜取者以其他手段取得使用者的遊戲帳號及遊戲密碼,且進一步取得該確認碼,但由於盜取者並未持有該電話機25,故無法接到該語音伺服器21的電話,更無法通過後續的認證步驟。藉此,即能避免盜取者利用使用者的遊戲帳號及遊戲密碼登入至該網路服務伺服器20,有效防止使用者的虛擬貨幣或虛擬寶物被竊取。In the third preferred embodiment, the user knows the confirmation code through the terminal device 24, and then receives the confirmation code from the telephone device 25 after receiving the call from the voice server 21 to pass the system. Certification. Even if the pirate obtains the user's game account and game password by other means, and further obtains the confirmation code, since the pirate does not hold the phone 25, the phone cannot be received by the voice server 21, and Unable to pass the subsequent certification steps. In this way, the pirate can be prevented from using the user's game account and game password to log in to the network service server 20, thereby effectively preventing the user's virtual currency or virtual treasure from being stolen.

此外,在上述第三較佳實施例中,該語音伺服器21中尚設有該計時程序211,在該語音伺服器21撥號至該電話機25後,該計時程序211即啟動,當該語音伺服器21在一預定期間內,未接收到該電話機25回傳該確認碼的情況下,即結束服務,以有效減少該語音伺服器21的負荷。In addition, in the above-mentioned third preferred embodiment, the timing program 211 is still provided in the voice server 21, and after the voice server 21 dials the telephone 25, the timing program 211 is activated, when the voice servo is activated. If the telephone 21 does not receive the confirmation code by returning the confirmation code within a predetermined period of time, the device 21 ends the service to effectively reduce the load of the voice server 21.

在本發明之第四較佳實施例中,請參閱第2圖所示,該電話雙向認證系統2的硬體架構部分與上述第一較佳實施例所描述者相同,另,該電話雙向認證系統2係透過下列流程,對使用者進行認證,請參閱第6A及6B圖所示:In the fourth preferred embodiment of the present invention, as shown in FIG. 2, the hardware architecture of the two-way authentication system 2 is the same as that described in the first preferred embodiment above. System 2 authenticates the user through the following procedures, as shown in Figures 6A and 6B:

(601)該網路服務伺服器20透過該網際網路22接收該終端機24傳來之登入訊息;(601) the network service server 20 receives the login message sent by the terminal device 24 through the Internet network 22;

(602)該網路服務伺服器20將該登入訊息與該等客戶資料進行比對,以檢索出對應於該登入訊息之登錄電話號碼;(602) the network service server 20 compares the login message with the customer data to retrieve a login phone number corresponding to the login message;

(603)該網路服務伺服器20將該登錄電話號碼傳送至該語音伺服器21;(603) the network service server 20 transmits the login phone number to the voice server 21;

(604)該網路服務伺服器20產生一對應於該登錄電話號碼之確認碼,並將該確認碼傳送至該語音伺服器21;(604) the network service server 20 generates a confirmation code corresponding to the login phone number, and transmits the confirmation code to the voice server 21;

(605)該語音伺服器21透過該語音通訊網路23,依照該登錄電話號碼,撥號至使用者之電話機25;(605) the voice server 21 through the voice communication network 23, according to the login phone number, dialed to the user's telephone 25;

(606)該語音伺服器21以語音方式對該電話機25發送該確認碼,以便使用者聽取該確認碼;(606) the voice server 21 sends the confirmation code to the phone 25 in a voice manner, so that the user can listen to the confirmation code;

(607)該語音伺服器21掛斷電話,意即,中斷與該電話機25之間的通話;(607) the voice server 21 hangs up the phone, that is, interrupts the call with the phone 25;

(608)該語音伺服器21透過該語音通訊網路23接收到該電話機25傳來之一來電訊息,意即,使用者以該電話機25撥號至該語音伺服器21;(608) the voice server 21 receives the incoming call message sent by the phone 25 through the voice communication network 23, that is, the user dials the voice server 21 with the phone 25;

(609)該語音伺服器21擷取對應於該來電訊息之電話號碼;(609) the voice server 21 retrieves a phone number corresponding to the incoming call message;

(610)該語音伺服器21接收該電話機25傳來之確認碼;(610) the voice server 21 receives the confirmation code sent by the telephone 25;

(611)該語音伺服器21將該電話機25傳來之確認碼及該電話號碼傳送至該網路服務伺服器20;(611) the voice server 21 transmits the confirmation code sent by the telephone 25 and the telephone number to the network service server 20;

(612)該網路服務伺服器20對該語音伺服器21傳來的該電話號碼與該確認碼執行比對動作,在該電話號碼與該登錄電話號碼相匹配,且該確認碼亦正確的情況下,進行步驟(613),否則,進行步驟(612a);(612) the network service server 20 performs a comparison operation with the confirmation code on the phone number sent to the voice server 21, the phone number matches the login phone number, and the confirmation code is also correct. In case, step (613) is performed, otherwise, step (612a) is performed;

(612a)結束服務;及(612a) end the service; and

(613)該網路服務伺服器20允許該終端機24之登入請求,使該終端機24能成功登入至該網路服務伺服器20。(613) The network service server 20 allows the terminal 24 to log in to enable the terminal 24 to successfully log in to the network service server 20.

需特別一提的是,該網路服務伺服器20能設計為同步執行上述步驟(603)及(604),且遊戲廠商亦可改變上述流程,使該語音伺服器21確認該電話號碼與該電話機傳來的確認碼是否正確,並在確認正確的情況下,由該語音伺服器21通知該網路服務伺服器20,使該網路服務伺服器20允許該終端機24之登入請求。在上述第四較佳實施例中,使用者在對該網路服務伺服器20傳送該登入訊息後,便能接到該語音伺服器21的來電,且能透過該電話機25,聽取該語音伺服器21所播送的確認碼,嗣,使用者待該語音伺服器21掛斷電話後,再以該電話機25撥號至該語音伺服器21,並輸入該確認碼,即能通過驗證,以該終端機24成功登入至該網路服務伺服器20,進行該網路服務伺服器20所提供的遊戲服務。藉由本第四較佳實施例之技術手段,僅有真實使用者能以該電話機25聽取該確認碼,故能有效防範盜取者以使用者的遊戲帳號及遊戲密碼登入至該網路服務伺服器20,不僅如此,由於本系統係利用真實的電話號碼進行認證,故所有欲進行遊戲服務的使用者,均必須向該網路服務伺服器20提供真實的電話號碼,如此,即能有效防止部分不肖人士大量申請不實帳號,且有利於警方查緝網路遊戲中的非法行為,大幅提升網路遊戲的安全性及品質。It should be particularly noted that the network service server 20 can be designed to perform the above steps (603) and (604) simultaneously, and the game manufacturer can also change the above process to enable the voice server 21 to confirm the phone number and the The confirmation code sent by the telephone is correct, and if the confirmation is correct, the voice server 21 notifies the network service server 20 to enable the network service server 20 to allow the terminal 24 to log in. In the fourth preferred embodiment, after the user transmits the login message to the network service server 20, the user can receive an incoming call from the voice server 21, and can listen to the voice servo through the phone 25. The confirmation code broadcasted by the device 21, after the user hangs up the call by the voice server 21, dials the voice server 21 with the phone 25, and inputs the confirmation code, so that the terminal can pass the verification. The machine 24 successfully logs in to the network service server 20 to perform the game service provided by the network service server 20. With the technical means of the fourth preferred embodiment, only the real user can listen to the confirmation code by the telephone 25, so that the pirate can effectively prevent the pirate from logging in to the network service server by using the user's game account and game password. Moreover, since the system uses the real telephone number for authentication, all users who want to perform the game service must provide the real service number to the network service server 20, thus effectively preventing Some unscrupulous people apply for a large number of unreal accounts, and it is beneficial for the police to check illegal behaviors in online games and greatly improve the security and quality of online games.

按,以上所述,僅為本發明之若干較佳實施例,惟本發明之技術特徵並不侷限於此,凡任何熟悉該項技藝者,在本發明之技術領域內,可輕易思及的變化或修飾,皆應涵蓋在以下本發明的申請專利範圍中。The above description is only a few preferred embodiments of the present invention, but the technical features of the present invention are not limited thereto, and any one skilled in the art can easily think of it in the technical field of the present invention. Variations or modifications are intended to be included in the scope of the claims of the invention below.

2...電話雙向認證系統2. . . Telephone two-way authentication system

20...網路服務伺服器20. . . Network service server

201...資料庫201. . . database

21...語音伺服器twenty one. . . Voice server

211...計時程序211. . . Timing program

212...計數器212. . . counter

22...網際網路twenty two. . . Internet

23...語音通訊網路twenty three. . . Voice communication network

24...終端機twenty four. . . Terminal

25...電話機25. . . Telephone

第1圖係習知通訊鎖技術之架構圖;Figure 1 is an architectural diagram of the conventional communication lock technology;

第2圖係本發明之系統架構圖;Figure 2 is a system architecture diagram of the present invention;

第3A~3B圖係本發明之第一較佳實施例之流程圖;3A-3B are flowcharts of a first preferred embodiment of the present invention;

第4A~4B圖係本發明之第二較佳實施例之流程圖;4A-4B are flowcharts of a second preferred embodiment of the present invention;

第5圖係本發明之第三較佳實施例之流程圖;及Figure 5 is a flow chart of a third preferred embodiment of the present invention; and

第6A~6B圖係本發明之第四較佳實施例之流程圖。6A to 6B are flowcharts showing a fourth preferred embodiment of the present invention.

Claims (17)

一種電話雙向認證系統,包括:一網路服務伺服器,係與一網際網路相連接,該網路服務伺服器透過該網際網路接收一終端機傳來之登入訊息時,對該終端機傳送一初步確認碼;及一語音伺服器,係分別與該網路服務伺服器及一語音通訊網路相連接,該語音伺服器透過該語音通訊網路接收到一電話機傳來之一來電訊息,並擷取對應於該來電訊息之電話號碼,且接收該電話機傳來之初步確認碼,在該電話機傳來之初步確認碼與該網路服務伺服器發出之初步確認碼相符合的狀態下,該語音伺服器對該電話機發送一確認碼,並掛斷電話,再撥號至該電話機,以接收該電話機傳來之一確認碼,在該電話機傳來之確認碼與該語音伺服器所發送之確認碼相符合的情況下,該網路服務伺服器即允許該終端機之登入請求。A two-way telephone authentication system includes: a network service server connected to an internetwork, and the network service server receives a login message from a terminal through the internet, the terminal Transmitting a preliminary confirmation code; and a voice server is respectively connected to the network service server and a voice communication network, and the voice server receives a call message sent by a telephone through the voice communication network, and Extracting a phone number corresponding to the incoming call message, and receiving a preliminary confirmation code sent by the phone, in a state in which the preliminary confirmation code sent by the phone matches the preliminary confirmation code sent by the network service server, The voice server sends a confirmation code to the telephone, hangs up the phone, and dials the phone to receive a confirmation code sent by the phone, and the confirmation code sent from the phone and the confirmation sent by the voice server In the case where the code matches, the network service server allows the terminal to log in. 一種電話雙向認證系統,包括:一網路服務伺服器,係與一網際網路相連接,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼,該網路服務伺服器透過該網際網路接收一終端機傳來之登入訊息時,便送出對應於該登入訊息之登錄電話號碼,且該網路服務伺服器產生一對應於該登錄電話號碼之確認碼,並送出該對應於該登錄電話號碼之確認碼;及一語音伺服器,係分別與該網路服務伺服器及一語音通訊網路相連接,該語音伺服器接收該網路服務伺服器傳來之該登錄電話號碼及該對應於該登錄電話號碼之確認碼,且該語音伺服器透過該語音通訊網路接收到一電話機傳來之一來電訊息,並擷取對應於該來電訊息之電話號碼,在該電話號碼與該登錄電話號碼相符合的情況下,該語音伺服器對該電話機發送該對應於該登錄電話號碼之確認碼,並掛斷電話,再以該登錄電話號碼撥號至該電話機,以接收該電話機傳來之一確認碼,在該電話機傳來之確認碼與該對應於該登錄電話號碼之確認碼相符合的情況下,該網路服務伺服器即允許該終端機之登入請求。A two-way telephone authentication system includes: a network service server connected to an internetwork, the network service server having a plurality of customer data, each of the customer data including a login telephone number, the network When the service server receives the login message from the terminal through the Internet, it sends a login phone number corresponding to the login message, and the network service server generates a confirmation code corresponding to the login phone number. And sending the confirmation code corresponding to the login phone number; and a voice server is respectively connected to the network service server and a voice communication network, and the voice server receives the network service server. The login phone number and the confirmation code corresponding to the login phone number, and the voice server receives a call message sent by a phone through the voice communication network, and retrieves a phone number corresponding to the call message. When the phone number matches the login phone number, the voice server sends the corresponding phone to the phone Confirm the code of the number and hang up the call, then dial the number to the phone to receive a confirmation code from the phone, the confirmation code sent from the phone and the confirmation corresponding to the login phone number. In the case where the code matches, the network service server allows the terminal to log in. 如請求項2所述之電話雙向認證系統,尚包括一計時程序,在該語音伺服器接收到該登錄電話號碼後,該計時程序即啟動,當該語音伺服器在一第一預定期間內,未接收到該電話機傳來之該來電訊息的情況下,即結束服務。The telephone two-way authentication system according to claim 2, further comprising a timing program, after the voice server receives the login telephone number, the timing program is started, when the voice server is within a first predetermined period, If the incoming call message from the telephone is not received, the service is terminated. 如請求項3所述之電話雙向認證系統,在該語音伺服器撥號至該電話機後,該計時程序即啟動,當該語音伺服器在一第二預定期間內,未接收到該電話機回傳之確認碼的情況下,即結束服務。The telephone two-way authentication system of claim 3, the timekeeping program is started after the voice server dials the telephone, and the voice server does not receive the callback after the second predetermined period of time. In the case of the confirmation code, the service is terminated. 如請求項4所述之電話雙向認證系統,尚包括一計數器,在該語音伺服器判斷出同一電話號碼在一限制期間內對該語音伺服器的撥號次數超過一限制次數的情況下,該語音伺服器則拒絕接聽該同一電話號碼的來電。The telephone two-way authentication system according to claim 4, further comprising a counter, wherein the voice server determines that the same phone number has dialed the voice server for more than a limit number of times within a limited period of time, the voice The server refused to answer the call with the same phone number. 一種電話雙向認證系統,包括:一網路服務伺服器,係與一網際網路相連接,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼,該網路服務伺服器透過該網際網路接收一終端機傳來之登入訊息時,便送出對應於該登入訊息之登錄電話號碼,且該網路服務伺服器產生一對應於該登錄電話號碼之確認碼,並將該對應於該登錄電話號碼之確認碼傳送至該終端機;及一語音伺服器,係分別與該網路服務伺服器及一語音通訊網路相連接,該語音伺服器接收該網路服務伺服器傳來之該登錄電話號碼及該對應於該登錄電話號碼之確認碼,該語音伺服器透過該語音通訊網路,依照該登錄電話號碼,撥號至一電話機,並接收該電話機回傳之一確認碼,在該電話機回傳之確認碼與該對應於該登錄電話號碼之確認碼相符合的情況下,該網路服務伺服器即允許該終端機之登入請求。A two-way telephone authentication system includes: a network service server connected to an internetwork, the network service server having a plurality of customer data, each of the customer data including a login telephone number, the network When the service server receives the login message from the terminal through the Internet, it sends a login phone number corresponding to the login message, and the network service server generates a confirmation code corresponding to the login phone number. And transmitting the confirmation code corresponding to the login phone number to the terminal; and a voice server is respectively connected to the network service server and a voice communication network, and the voice server receives the network The login phone number sent by the service server and the confirmation code corresponding to the login phone number, the voice server dials through the voice communication network according to the login phone number, and receives the call back from the phone. a confirmation code, in the case that the confirmation code returned by the telephone matches the confirmation code corresponding to the login telephone number, the network Allowing the service server login request of the terminal. 如請求項6所述之電話雙向認證系統,尚包括一計時程序,在該語音伺服器撥號至該電話機後,該計時程序即啟動,當該語音伺服器在一預定期間內,未接收到該電話機回傳之確認碼的情況下,即結束服務。The telephone two-way authentication system according to claim 6 further includes a timing program, wherein the timing program is started after the voice server dials the telephone, and the voice server does not receive the predetermined time period. In the case of the confirmation code returned by the telephone, the service is terminated. 一種電話雙向認證系統,包括:一網路服務伺服器,係與一網際網路相連接,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼,該網路服務伺服器透過該網際網路接收一終端機傳來之登入訊息時,便送出對應於該登入訊息之登錄電話號碼,且產生一對應於該登錄電話號碼之確認碼,並送出該對應於該登錄電話號碼之確認碼;及一語音伺服器,係分別與該網路服務伺服器及一語音通訊網路相連接,該語音伺服器接收該網路服務伺服器傳來之該登錄電話號碼及該對應於該登錄電話號碼之確認碼,該語音伺服器以該登錄電話號碼撥號至一電話機,對該電話機傳送該對應於該登錄電話號碼之確認碼,並掛斷電話,再接通該電話機之來電,且接收該電話機回傳之一確認碼,在該電話機回傳之確認碼與該對應於該登錄電話號碼之確認碼相符合的情況下,該網路服務伺服器即允許該終端機之登入請求。A two-way telephone authentication system includes: a network service server connected to an internetwork, the network service server having a plurality of customer data, each of the customer data including a login telephone number, the network When the service server receives the login message from the terminal through the Internet, it sends a login phone number corresponding to the login message, and generates a confirmation code corresponding to the login phone number, and sends the corresponding message to the corresponding a confirmation code of the login phone number; and a voice server connected to the network service server and a voice communication network, the voice server receiving the login phone number sent by the network service server and Corresponding to the confirmation code of the login telephone number, the voice server dials the telephone number to a telephone, transmits the confirmation code corresponding to the login telephone number to the telephone, hangs up the telephone, and then connects the telephone Incoming call, and receiving a confirmation code returned by the telephone, the confirmation code returned at the telephone corresponds to the login telephone number Confirmation pertinence case, the web service server which allows the login request of the terminal. 如請求項8所述之電話雙向認證系統,尚包括有一計時程序,在該語音伺服器對該電話機傳送該對應於該登錄電話號碼之確認碼並掛斷電話後,該計時程序即啟動,當該語音伺服器在一預定期間內,未接收到該電話機回傳之確認碼的情況下,即結束服務。The telephone two-way authentication system according to claim 8, further comprising a timing program, wherein the timing program is started after the voice server transmits the confirmation code corresponding to the login telephone number to the telephone and hangs up the telephone. The voice server terminates the service if the confirmation code returned by the telephone is not received within a predetermined period of time. 一種電話雙向認證方法,係應用在一網路服務伺服器及一語音伺服器上,該方法包括:該網路服務伺服器透過網際網路接收一終端機傳來之登入訊息;該網路服務伺服器對該終端機傳送一初步確認碼;該語音伺服器透過一語音通訊網路接收到一電話機傳來之一來電訊息;該語音伺服器擷取對應於該來電訊息之電話號碼;該語音伺服器接收該電話機傳來之初步確認碼;在該電話機傳來之初步確認碼與該網路服務伺服器發出之初步確認碼相符合的狀態下,該語音伺服器對該電話機發送一確認碼;該語音伺服器掛斷電話;該語音伺服器撥號至該電話機;該語音伺服器接收該電話機傳來之一確認碼;及在該電話機傳來之確認碼與該語音伺服器所發送之確認碼相符合的情況下,該網路服務伺服器即允許該終端機之登入請求。A two-way authentication method for a mobile phone is applied to a network service server and a voice server, the method comprising: receiving, by the network service server, a login message sent by a terminal through the Internet; the network service The server transmits a preliminary confirmation code to the terminal; the voice server receives a call message sent by a telephone through a voice communication network; the voice server retrieves a phone number corresponding to the incoming call message; the voice servo Receiving a preliminary confirmation code sent by the telephone; the voice server sends a confirmation code to the telephone in a state that the preliminary confirmation code sent by the telephone matches the preliminary confirmation code sent by the network service server; The voice server hangs up the phone; the voice server dials to the phone; the voice server receives a confirmation code sent from the phone; and the confirmation code sent from the phone and the confirmation code sent by the voice server In the case of compliance, the network service server allows the terminal to log in. 一種電話雙向認證方法,係應用在一網路服務伺服器及一語音伺服器上,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼,該方法包括:該網路服務伺服器透過網際網路接收一終端機傳來之登入訊息;該網路服務伺服器檢索出對應於該登入訊息之登錄電話號碼,且產生一對應於該登錄電話號碼之確認碼;該網路服務伺服器將該登錄電話號碼及該對應於該登錄電話號碼之確認碼傳送至該語音伺服器;該語音伺服器透過一語音通訊網路接收到一電話機傳來之一來電訊息;該語音伺服器擷取對應於該來電訊息之電話號碼;在該電話號碼與該登錄電話號碼相符合的情形下,該語音伺服器對該電話機發送該對應於該登錄電話號碼之確認碼;該語音伺服器掛斷電話;該語音伺服器以該登錄電話號碼撥號至該電話機;該語音伺服器接收該電話機回傳之一確認碼;及在該電話機回傳之確認碼與該對應於該登錄電話號碼之確認碼相符合的情況下,該網路服務伺服器允許該終端機之登入請求。A two-way authentication method for a telephone is applied to a network service server and a voice server. The network service server has a plurality of customer data, each of which includes a login phone number, and the method includes: The network service server receives a login message sent by a terminal through the Internet; the network service server retrieves a login phone number corresponding to the login message, and generates a confirmation code corresponding to the login phone number The network service server transmits the login phone number and the confirmation code corresponding to the login phone number to the voice server; the voice server receives a call message sent by a phone through a voice communication network; The voice server retrieves a phone number corresponding to the incoming call message; if the phone number matches the registered phone number, the voice server sends the confirmation code corresponding to the login phone number to the phone; The voice server hangs up the phone; the voice server dials the phone number to the phone; the voice servo Receiving one of the telephone return confirmation code; and transmission of the telephone in the case of the return confirmation corresponding to the identification code of the telephone number registered consistent, allowing the web service server of the login request terminal. 如請求項11所述之電話雙向認證方法,尚包括下列步驟:該語音伺服器接收到該登錄電話號碼後,在一第一預定期間內,該語音伺服器未接收到該電話機傳來之該來電訊息的情況下,即結束服務。The method of claim 2, wherein the voice server receives the login phone number, and after receiving the login phone number, the voice server does not receive the phone number received during the first predetermined period. In the case of a caller message, the service is terminated. 如請求項12所述之電話雙向認證方法,尚包括下列步驟:該語音伺服器撥號至該電話機後,在一第二預定期間內,該語音伺服器未接收到該電話機回傳之確認碼的情況下,即結束服務。The method for requesting the two-way authentication of the phone as claimed in claim 12, further comprising the following steps: after the voice server dials the phone, the voice server does not receive the confirmation code returned by the voice server within a second predetermined period of time. In the case, the service is terminated. 一種電話雙向認證方法,係應用在一網路服務伺服器及一語音伺服器上,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼,該方法包括:該網路服務伺服器透過網際網路接收一終端機傳來之登入訊息;該網路服務伺服器檢索出對應於該登入訊息之登錄電話號碼,且產生一對應於該登錄電話號碼之確認碼;該網路服務伺服器將該登錄電話號碼及該對應於該登錄電話號碼之確認碼傳送至該語音伺服器,且將該對應於該登錄電話號碼之確認碼傳送至該終端機;該語音伺服器透過該語音通訊網路,依照該登錄電話號碼,撥號至一電話機;該語音伺服器接收該電話機傳來之一確認碼;及在該電話機傳來之確認碼與該對應於該登錄電話號碼之確認碼相符合的情況下,該網路服務伺服器即允許該終端機之登入請求。A two-way authentication method for a telephone is applied to a network service server and a voice server. The network service server has a plurality of customer data, each of which includes a login phone number, and the method includes: The network service server receives a login message sent by a terminal through the Internet; the network service server retrieves a login phone number corresponding to the login message, and generates a confirmation code corresponding to the login phone number The network service server transmits the login phone number and the confirmation code corresponding to the login phone number to the voice server, and transmits a confirmation code corresponding to the login phone number to the terminal; the voice The server dials to the telephone according to the login telephone number through the voice communication network; the voice server receives a confirmation code sent from the telephone; and the confirmation code sent from the telephone corresponds to the login telephone number If the confirmation code matches, the network service server allows the terminal to log in. 如請求項14所述之電話雙向認證方法,尚包括下列步驟:該語音伺服器撥號至該電話機後,在一預定期間內,該語音伺服器未接收到該電話機回傳之確認碼的情況下,即結束服務。The method for requesting the two-way authentication of the phone according to claim 14 further includes the following steps: after the voice server dials to the phone, if the voice server does not receive the confirmation code returned by the phone within a predetermined period of time , that is, the end of the service. 一種電話雙向認證方法,係應用在一網路服務伺服器及一語音伺服器上,該網路服務伺服器內存有複數筆客戶資料,各該客戶資料分別包括一登錄電話號碼,該方法包括:該網路服務伺服器透過網際網路接收一終端機傳來之登入訊息;該網路服務伺服器檢索出對應於該登入訊息之登錄電話號碼,且產生一對應於該登錄電話號碼之確認碼;該網路服務伺服器將該登錄電話號碼及對應於該登錄電話號碼之確認碼傳送至該語音伺服器;該語音伺服器透過語音通訊網路,依照該登錄電話號碼,撥號至一電話機;該語音伺服器對該電話機發送該對應於該登錄電話號碼之確認碼;該語音伺服器掛斷電話;該語音伺服器接收該電話機回傳之一確認碼;及在該電話機回傳之確認碼與該對應於該登錄電話號碼之確認碼相符合的情況下,該網路服務伺服器允許該終端機之登入請求。A two-way authentication method for a telephone is applied to a network service server and a voice server. The network service server has a plurality of customer data, each of which includes a login phone number, and the method includes: The network service server receives a login message sent by a terminal through the Internet; the network service server retrieves a login phone number corresponding to the login message, and generates a confirmation code corresponding to the login phone number The network service server transmits the login phone number and a confirmation code corresponding to the login phone number to the voice server; the voice server dials to a phone through the voice communication network according to the login phone number; The voice server sends the confirmation code corresponding to the login phone number to the phone; the voice server hangs up the phone; the voice server receives a confirmation code returned by the phone; and the confirmation code returned at the phone The network service server allows the terminal if the confirmation code corresponding to the login phone number matches Login request. 如請求項16所述之電話雙向認證方法,尚包括下列步驟:該語音伺服器對該電話機傳送該對應於該登錄電話號碼之確認碼並掛斷電話後,在一預定期間內,該語音伺服器未接收到該電話機回傳之確認碼的情況下,即結束服務。The method for requesting the two-way telephone authentication according to claim 16, further comprising the step of: after the voice server transmits the confirmation code corresponding to the login telephone number to the telephone and hangs up the telephone, the voice servo is within a predetermined period of time. If the device does not receive the confirmation code returned by the telephone, the service is terminated.
TW99110680A 2010-04-07 2010-04-07 Two - way authentication system and its method TWI399069B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW99110680A TWI399069B (en) 2010-04-07 2010-04-07 Two - way authentication system and its method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW99110680A TWI399069B (en) 2010-04-07 2010-04-07 Two - way authentication system and its method

Publications (2)

Publication Number Publication Date
TW201136275A TW201136275A (en) 2011-10-16
TWI399069B true TWI399069B (en) 2013-06-11

Family

ID=46752145

Family Applications (1)

Application Number Title Priority Date Filing Date
TW99110680A TWI399069B (en) 2010-04-07 2010-04-07 Two - way authentication system and its method

Country Status (1)

Country Link
TW (1) TWI399069B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020112169A1 (en) * 2001-02-10 2002-08-15 Samsung Electronics Co., Ltd. System and method for providing telephone shopping service using originator telephone number and temporary password
US20060005024A1 (en) * 2004-06-16 2006-01-05 Pccw-Hkt Datacom Services Limited Dual-path pre-approval authentication method
TWI249316B (en) * 2004-02-10 2006-02-11 Ind Tech Res Inst SIM-based authentication method for supporting inter-AP fast handover
US20080098466A1 (en) * 2006-10-19 2008-04-24 Fuji Xerox Co., Ltd. Authentication system, authentication-service-providing device, authentication-service-providing method, and computer readable medium

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20020112169A1 (en) * 2001-02-10 2002-08-15 Samsung Electronics Co., Ltd. System and method for providing telephone shopping service using originator telephone number and temporary password
TWI249316B (en) * 2004-02-10 2006-02-11 Ind Tech Res Inst SIM-based authentication method for supporting inter-AP fast handover
US20060005024A1 (en) * 2004-06-16 2006-01-05 Pccw-Hkt Datacom Services Limited Dual-path pre-approval authentication method
US20080098466A1 (en) * 2006-10-19 2008-04-24 Fuji Xerox Co., Ltd. Authentication system, authentication-service-providing device, authentication-service-providing method, and computer readable medium

Also Published As

Publication number Publication date
TW201136275A (en) 2011-10-16

Similar Documents

Publication Publication Date Title
US8528078B2 (en) System and method for blocking unauthorized network log in using stolen password
TWI449394B (en) User authentication, verification and code generation system maintenance subsystem
US20150124945A1 (en) System, method and apparatus for authenticating calls
US20040225899A1 (en) Authentication system and method based upon random partial digitized path recognition
KR101099888B1 (en) Bidirectional communication certification mechanism
US9602504B2 (en) Strong Authentication by presentation of a number
WO2007104243A1 (en) The managing system of accounts security based on the instant message and its method
KR20030036069A (en) Method and apparatus for certification and authentication of users and computers over networks
KR20130122644A (en) A method, device and system for verifying communication sessions
CN107872588B (en) Call processing method, related device and system
CN111294796A (en) Smart phone login management system based on zero-knowledge proof
WO2008004671A1 (en) User authenticating method, user authenticating system, user authenticating device and user authenticating program
KR20090003134A (en) Illegal login protection system and method based on pc registratrion
US8619962B2 (en) High-assurance teleconference authentication
US9025746B2 (en) System and method for visual caller identification
EP3826260A1 (en) Service agent authentication
CN101854357B (en) Method and system for monitoring network authentication
CN101465733A (en) Identity authentication method based on telephone
TWI399069B (en) Two - way authentication system and its method
JP2004185454A (en) User authentication method
KR20080098117A (en) Online game account protection system
KR101331575B1 (en) Method and system blocking for detour hacking of telephone certification
TWI411280B (en) Anti-spyware system for transmitting and authenticating a password
WO2008004672A1 (en) User authenticating method, user authenticating system, user authenticating device and user authenticating program
CN101483520A (en) Identity authentication method based on telephone