TWI468006B - No record of phone number verification system and method - Google Patents

No record of phone number verification system and method Download PDF

Info

Publication number
TWI468006B
TWI468006B TW98109428A TW98109428A TWI468006B TW I468006 B TWI468006 B TW I468006B TW 98109428 A TW98109428 A TW 98109428A TW 98109428 A TW98109428 A TW 98109428A TW I468006 B TWI468006 B TW I468006B
Authority
TW
Taiwan
Prior art keywords
verification
code
message
temporary authentication
user
Prior art date
Application number
TW98109428A
Other languages
Chinese (zh)
Other versions
TW201036412A (en
Inventor
Chun Lin Chen
Original Assignee
Digicheese Technology & Interactive Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Digicheese Technology & Interactive Co Ltd filed Critical Digicheese Technology & Interactive Co Ltd
Priority to TW98109428A priority Critical patent/TWI468006B/en
Publication of TW201036412A publication Critical patent/TW201036412A/en
Application granted granted Critical
Publication of TWI468006B publication Critical patent/TWI468006B/en

Links

Landscapes

  • Telephonic Communication Services (AREA)

Description

不需紀錄電話號碼的驗證系統與方法Verification system and method without recording telephone number

本發明係關於一種不需紀錄電話號碼的驗證系統,尤指不需紀錄電話號碼的驗證系統。The present invention relates to an authentication system that does not require the recording of a telephone number, and more particularly to an authentication system that does not require a telephone number to be recorded.

線上遊戲吸引人之處,在於玩家只要持續「打怪、練功」就能提升等級、獲得寶物,甚至還能將虛擬世界的寶物及貨幣換成實體貨幣,但因網路「練功」,需要相當長的時間才能見到成效,不少玩家希望在短時間內提高等級,常常是幾個人一起使用帳號及密碼,多人輪流使用情況下,使得帳號密碼就容易外流,遭人冒用。The appeal of online games is that players can upgrade their treasures and currencies into real money by continuing to "danger, practice" and even exchange the treasures and currencies of the virtual world. However, due to the "practice" of the Internet, it is necessary to A long time can see the results, many players hope to improve the level in a short period of time, often a few people use the account and password together, the use of multiple people in turn, making the account password easy to flow out, was used.

然而,在虛擬世界所獲得的「財產」,往往只靠著簡單的帳號及密碼來保護。這使得,只要掌握他人的帳號及密碼,就能順利入侵,不勞而獲,也因此駭客入侵時有所聞,成為玩家心中的最痛。However, the "property" obtained in the virtual world is often protected by a simple account and password. This makes it possible to successfully invade and get something for nothing, as long as you master the account and password of others, so it is the most painful thing in the mind of the player.

隨著不法玩家技術翻新,竊取玩家帳號密碼的方法越來越科技化,甚至發展出針對特定線上遊戲設計的「木馬」程式,以便用來側錄玩家輸入的帳號及密碼。With the refurbishment of unscrupulous players, the method of stealing player account passwords has become more and more technological, and even developed a "trojan" program for specific online games to be used to record the account and password entered by the player.

這些程式平常隱藏在系統,只要啟動該套線上遊戲,程式就會自動執行,並且將側錄得到的資料傳到指定信箱,由於不易察覺,玩家的帳號及密碼已經遭到側錄而不自知,等到發現時,「練功」多時的成果,往往已經不翼而飛。These programs are usually hidden in the system. As long as the online game is started, the program will be executed automatically, and the recorded data will be transmitted to the designated mailbox. Since it is not easy to detect, the player's account and password have been recorded and not known. By the time of discovery, the results of the "practice" for a long time often disappeared.

為了解決這個問題,已有廠商提出「電話鎖雙重防盜防護」來嘗試解決帳號/密碼遭到竊取的問題。簡單來說,在「電話鎖雙重防盜防護」中,平日在上班上課時,玩家的遊戲帳號將會被系統上鎖,只要沒有使用綁定的手機或是家用電話號碼進行開通的動作,即使有遊戲帳號以及密碼也無法登入,以避免遊戲寶物遭到竊取。In order to solve this problem, manufacturers have proposed "phone lock double anti-theft protection" to try to solve the problem of account/password being stolen. To put it simply, in the "phone lock double anti-theft protection", when the class is going to work on weekdays, the player's game account will be locked by the system, as long as there is no binding mobile phone or home phone number to open, even if there is Game accounts and passwords cannot be logged in to avoid theft of game treasures.

當玩家用手機或具有來電顯示功能的家用電話,撥打開通專線後,在完成開通後系統會自動掛斷電話,並且解開鎖定中的帳號,但是玩家必須在三分鐘的時間內登入遊戲帳號,否則三分鐘之後系統自動將帳號上鎖。When the player uses the mobile phone or the home phone with the caller ID function, after dialing the open line, the system will automatically hang up the phone after the completion of the opening, and unlock the locked account, but the player must log in to the game account within three minutes. Otherwise, the system automatically locks the account after three minutes.

然而為了驗證要求解除鎖定的合法性,目前的電話鎖防護系統必須由玩家先在網頁上手動輸入自己的電話號碼,以便於資料庫中預先建立電話號碼,以便在系統接獲來電時,將來電中的電話號碼與資料庫中的電話號碼做比對。然而,這樣一來,有可能讓玩家在網頁上輸入的電話號碼時遭到木馬程式側錄,甚至萬一資料庫中的資料被盜取時,這都會造成使用者的困擾,例如經常會收到詐騙電話或廣告電話。However, in order to verify the legality of requesting unlocking, the current telephone lock protection system must first manually enter its own phone number on the webpage, so that the phone number can be pre-established in the database, so that the call will be received when the system receives the call. The phone number in the account is compared to the phone number in the database. However, in this case, it is possible for the player to be recorded by the Trojan horse when the phone number entered on the webpage is recorded. Even if the data in the database is stolen, this will cause user confusion, for example, it will often be received. Go to a scam phone or an ad call.

本發明之主要目的在提供一種本發明不需紀錄電話號碼的驗證系統,其主要將電話號碼轉換成具有唯一性的驗證碼,以替代電話號碼作為驗證的依據,而避免使用者資料(特別是電話號碼)的外洩,造成使用者的困擾與卻步。The main object of the present invention is to provide an authentication system of the present invention which does not need to record a telephone number, and mainly converts a telephone number into a unique verification code to replace the telephone number as a basis for verification, and to avoid user data (especially The leakage of the telephone number has caused confusion and deterioration to the user.

基於上述目的,本發明不需紀錄電話號碼的驗證系統中,主要包含複數個系統模組(例如遊戲平台)、設定轉送模組、複數個驗證轉送模組(分別對應至不同的系統模組)。為了不在系統模組中紀錄電話號碼,在本發明系統中的設定轉送模組會利用轉換規則將使用者的電話號碼轉換成具有唯一性的驗證碼,然後再將之儲存至指定的系統模組中。當使用者需要身分驗證時,透過特定的驗證轉送模組以相同的轉換規則將電話號碼轉換成相同的驗證碼,以提供給系統模組做驗證程序。Based on the above objective, the verification system of the present invention does not need to record a telephone number, and mainly includes a plurality of system modules (such as a game platform), a setting transfer module, and a plurality of verification transfer modules (corresponding to different system modules respectively). . In order not to record the phone number in the system module, the setting transfer module in the system of the present invention converts the user's phone number into a unique verification code by using the conversion rule, and then stores it in the specified system module. in. When the user needs identity verification, the phone number is converted into the same verification code by the specific conversion transfer module through the specific conversion transfer module, and is provided to the system module for verification.

關於本發明之優點與精神可以藉由以下的發明詳述及所附圖式得到進一步的瞭解。The advantages and spirit of the present invention will be further understood from the following detailed description of the invention.

請參閱第1圖,第1圖為本發明不需紀錄電話號碼的驗證系統之示意圖。如第1圖所示,本發明不需紀錄電話號碼的驗證系統1主要包含複數個系統模組3a~3c(例如遊戲平台)、設定轉送模組10、複數個驗證轉送模組12a~12c(分別對應至不同的系統模組3a~3c)。這其中,每個系統模組3a~3c均設有使用者資料庫34。使用者資料庫34儲存有複數筆使用者資料,而每一使用者資料包含使用者名稱、密碼、臨時認證代碼、具有唯一性的驗證碼。驗證碼相關於電話號碼與驗證管道代碼。Please refer to FIG. 1. FIG. 1 is a schematic diagram of a verification system for not recording a telephone number according to the present invention. As shown in FIG. 1, the verification system 1 for recording a telephone number of the present invention mainly includes a plurality of system modules 3a to 3c (for example, a game platform), a setting transfer module 10, and a plurality of verification transfer modules 12a to 12c ( Corresponding to different system modules 3a~3c). Among them, each system module 3a~3c is provided with a user database 34. The user database 34 stores a plurality of user data, and each user data includes a user name, a password, a temporary authentication code, and a unique verification code. The verification code is related to the phone number and the verification pipeline code.

簡單來說,為了能夠不在系統模組3a~3c中紀錄電話號碼,在本發明系統中的設定轉送模組10會利用特定轉換規則(例如MD5壓縮模式)將使用者的電話號碼(0932123456)轉換成具有唯一性的驗證碼(xyz),然後再將之儲存至指定的系統模組3a中。當使用者需要身分驗證時,透過特定的驗證轉送模組12a以相同的轉換規則,將電話號碼(0932123456)轉換成相同的驗證碼(xyz),以提供給系統模組3a做驗證程序,而替代用電話號碼做認證的手段。Briefly, in order to be able to record phone numbers in the system modules 3a-3c, the setting transfer module 10 in the system of the present invention converts the user's phone number (0932123456) using a specific conversion rule (for example, MD5 compression mode). It is a unique verification code (xyz) and then stored in the specified system module 3a. When the user needs the identity verification, the specific verification transfer module 12a converts the phone number (0932123456) into the same verification code (xyz) through the same conversion rule, and provides the verification to the system module 3a. Instead of using a phone number for authentication.

如第1圖所示,若使用者在取得臨時認證代碼(00001)之後,其可透過其電話(電話號碼(0932123456))與設定轉送模組10建立連線,然後設定轉送模組10將接收到來自電話系統中的第一電信訊息。這其中,第一電信訊息可為SMS簡訊訊息或IVR語音訊息。As shown in FIG. 1, after the user obtains the temporary authentication code (00001), the user can establish a connection with the set transfer module 10 through his telephone (phone number (0932123456)), and then set the transfer module 10 to receive. To the first telecommunications message from the telephone system. Among them, the first telecommunication message can be an SMS message message or an IVR voice message.

為了讓單一的電話號碼(0932123456)能夠同時應用在不同遊戲系統中,因此產出驗證碼(xyz)的依據除了電話號碼(0932123456)以外,還包含對應至不同遊戲系統的驗證管道代碼(555)。In order to enable a single phone number (0932123456) to be applied to different game systems at the same time, the output verification code (xyz) is based on the verification pipe code (555) corresponding to the different game system in addition to the phone number (0932123456). .

基於上述原因,在第一電信訊息中,至少包含電話號碼(0932123456)、驗證管道代碼(555:相對於使用者所指定的遊戲平台系統模組3a)、臨時認證代碼(00001)。臨時認證代碼(00001)是相關於使用者名稱(user1)。為了產出具有唯一性的驗證碼(xyz),設定轉送模組10收到第一電信訊息之後將開始利用編碼規則將第一電信訊息中電話號碼(0932123456)、驗證管道代碼(555)轉換成驗證碼(xyz),然後再以臨時認證代碼(00001)對應驗證碼(xyz)的格式轉送驗證碼至相對系統代碼(555)的系統模組3a,以便讓系統模組3a知悉其所收到的驗證碼(xyz)是對應至哪個使用者(利用臨時認證代碼(00001)相關於使用者名稱(user1)的關聯性),如第1圖所示。此時,系統模組3a擁有具替代性質的認證資訊,亦即替代電話號碼的驗證碼(xyz)可做為認證的依據,又加上驗證碼(xyz)是相關於電話號碼的編碼結果,因此只要再利用相同電話號碼即可再轉成相同的驗證碼(xyz),而藉此實現替代電話號碼認證依據。For the above reasons, the first telecommunication message includes at least a phone number (0932123456), a verification pipe code (555: relative to the game platform system module 3a designated by the user), and a temporary authentication code (00001). The temporary authentication code (00001) is related to the username (user1). In order to generate a unique verification code (xyz), after the transfer module 10 receives the first telecommunication message, it will start to use the encoding rule to convert the phone number (0932123456) and the verification pipe code (555) in the first telecommunication message into Verification code (xyz), and then forward the verification code to the system module 3a of the relative system code (555) in the format of the temporary authentication code (00001) corresponding verification code (xyz), so that the system module 3a knows that it has received The verification code (xyz) corresponds to which user (the association with the user name (user1) by the temporary authentication code (00001)), as shown in Fig. 1. At this time, the system module 3a has an authentication information with an alternative nature, that is, a verification code (xyz) for replacing the telephone number can be used as a basis for authentication, and a verification code (xyz) is a coding result related to the telephone number. Therefore, as long as the same telephone number is used again, it can be converted into the same verification code (xyz), thereby realizing the alternative telephone number authentication basis.

當使用者需要進行身分驗證程序時,使用者仍然是撥打遊戲平台系統模組3a所指定的電話號碼(即驗證管道代碼(555)的驗證轉送模組12a的代表電話號碼),只是在轉送給系統模組3a做驗證之前,還需先將電話號碼(0932123456)轉成相對的驗證碼(xyz)。由於使用者所撥打的指定的電話號碼,事實上是相對於具有驗證管道代碼(555)的驗證轉送模組12a,因此驗證管道代碼(555)已為知悉的編碼依據,又加上驗證轉送模組12a以基於所具有的驗證管道代碼接收來自電話系統中的第二電信訊息中,第二電信訊息至少包含電話號碼(0932123456),因此驗證轉送模組12a可利用設定轉送模組10所使用的編碼規則,將第二電信訊息中電話號碼、驗證轉送模組12a所具有的驗證管道代碼(555)轉換成驗證碼(xyz)。When the user needs to perform the identity verification process, the user still dials the phone number specified by the game platform system module 3a (ie, the representative phone number of the verification transfer module 12a of the verification pipe code (555)), but is forwarded to the user. Before the system module 3a performs verification, the telephone number (0932123456) needs to be converted into a relative verification code (xyz). Since the specified telephone number dialed by the user is in fact relative to the verification transfer module 12a having the verification pipeline code (555), the verification pipeline code (555) is already known as the encoding basis, plus the verification transfer mode. The group 12a receives the second telecommunication message from the telephone system based on the verification pipe code that is included, and the second telecommunication message includes at least the phone number (0932123456), so that the verification transfer module 12a can utilize the set transfer module 10 The encoding rule converts the telephone number in the second telecommunication message and the verification pipe code (555) possessed by the verification transfer module 12a into a verification code (xyz).

在完成產生驗證碼(xyz)之後,驗證轉送模組12a轉送驗證碼(xyz)至相對系統代碼的系統模組3a。若驗證碼(xyz)存在於複數筆使用者資料中之一時,系統模組3a判定驗證轉送模組12a所轉送的第二電信訊息為合法,以允許進一步的操作(例如開放使用者之特定權限)。After completing the generation of the verification code (xyz), the verification transfer module 12a transfers the verification code (xyz) to the system module 3a of the relative system code. If the verification code (xyz) exists in one of the plurality of user data, the system module 3a determines that the second telecommunication message transferred by the verification transfer module 12a is legal to allow further operations (for example, opening the specific permission of the user) ).

請參閱第2圖,第2圖為本發明不需紀錄電話號碼的驗證系統之另一示意圖。如第2圖所示,本發明不需紀錄電話號碼的驗證系統1主要包含複數個系統模組3a~3c(例如遊戲平台)、設定轉送模組10、複數個驗證轉送模組12a~12c(分別對應至不同的系統模組3a~3c)。這其中,每個系統模組3a~3c進一步包含使用者資料庫34、臨時認證代碼產生單元31、關聯單元32、驗證單元33。Please refer to FIG. 2, which is another schematic diagram of the verification system for recording a telephone number in the present invention. As shown in FIG. 2, the verification system 1 for recording a telephone number of the present invention mainly includes a plurality of system modules 3a to 3c (for example, a game platform), a setting transfer module 10, and a plurality of verification transfer modules 12a to 12c ( Corresponding to different system modules 3a~3c). Among them, each of the system modules 3a-3c further includes a user database 34, a temporary authentication code generating unit 31, an associating unit 32, and a verifying unit 33.

當使用者透過設定轉送模組10產生驗證碼(xyz)之後,為了讓系統模組3a~3c知悉驗證碼(xyz)與使用者帳號之間的對應關係,以便將驗證碼(xyz)作為認證依據。為此,使用者需先透過系統模組3a~3c的網頁介面輸入合法的使用者帳號與密碼,使得系統模組3a~3c中的臨時認證代碼產生單元31針對合法使用者產生相關於使用者名稱的臨時認證代碼(00001)。然後,使用者透過電話(電話號碼(0932123456))與設定轉送模組10建立連線後,讓設定轉送模組10利用編碼規則將來自使用者的第一電信訊息(即電話號碼、驗證管道代碼)轉換成驗證碼(xyz)。After the user generates the verification code (xyz) through the setting transfer module 10, in order to let the system modules 3a~3c know the correspondence between the verification code (xyz) and the user account, the verification code (xyz) is used as the authentication. in accordance with. To this end, the user needs to input a valid user account and password through the web interface of the system modules 3a~3c, so that the temporary authentication code generating unit 31 in the system modules 3a-3c generates relevant users for the legitimate users. The temporary authentication code for the name (00001). Then, after the user establishes a connection with the setting transfer module 10 through the telephone (phone number (0932123456)), the setting transfer module 10 uses the encoding rule to use the first telecommunication message from the user (ie, the phone number, the verification pipe code). ) converted to a verification code (xyz).

然後,關聯單元32利用臨時認證代碼產生單元31所建立的使用者帳號(user1)與臨時認證代碼(00001)之間的關聯性、以及設定轉送模組10所建立的臨時認證代碼(00001)與驗證碼(xyz)之間的關連性,而建立使用者帳號(user1)與驗證碼(xyz)之間的關連性,以便作為驗證依據。Then, the associating unit 32 uses the association between the user account (user1) established by the temporary authentication code generating unit 31 and the temporary authentication code (00001), and sets the temporary authentication code (00001) established by the transfer module 10 with The relationship between the verification code (xyz) and the connection between the user account (user1) and the verification code (xyz) is established as a basis for verification.

當使用者需要進行身分驗證程序時,使用者對驗證轉送模組12a發送第二電信訊息(至少包含電話號碼(0932123456)),使得驗證轉送模組12a可利用設定轉送模組10所使用的編碼規則,將第二電信訊息中電話號碼、驗證轉送模組12a所具有的驗證管道代碼(555)轉換成驗證碼(xyz)。當系統模組3a中的驗證單元33接獲驗證碼(xyz)時,便可基於關聯單元32所建立的使用者帳號與驗證碼之間的關連性,以驗證碼(xyz)在使用者資料庫34中查詢,以驗證來自驗證轉送模組12a所傳遞的驗證碼。換言之,若驗證碼(xyz)存在於複數筆使用者資料中之一時,驗證單元33判定驗證轉送模組12a所轉送的第二電信訊息為合法,以允許進一步的操作(例如開放使用者之特定權限)。When the user needs to perform the identity verification process, the user sends a second telecommunication message (including at least the phone number (0932123456)) to the verification transfer module 12a, so that the verification transfer module 12a can utilize the code used by the set transfer module 10. The rule converts the telephone number in the second telecommunication message and the verification pipe code (555) possessed by the verification transfer module 12a into a verification code (xyz). When the verification unit 33 in the system module 3a receives the verification code (xyz), the authentication code (xyz) can be used in the user data based on the association between the user account and the verification code established by the association unit 32. The library 34 queries to verify the verification code passed from the verification transfer module 12a. In other words, if the verification code (xyz) exists in one of the plurality of user data, the verification unit 33 determines that the second telecommunication message transferred by the verification transfer module 12a is legal to allow further operations (eg, opening the user's specificity). Permission).

藉由以上較佳具體實施例之詳述,係希望能更加清楚描述本發明之特徵與精神,而並非以上述所揭露的較佳具體實施例來對本發明之範疇加以限制。相反地,其目的是希望能涵蓋各種改變及具相等性的安排於本發明所欲申請之專利範圍的範疇內。The features and spirit of the present invention will be more apparent from the detailed description of the preferred embodiments. On the contrary, the intention is to cover various modifications and equivalents within the scope of the invention as claimed.

1本發明不需紀錄電話號碼的驗證系統1 The invention does not need to record the telephone number verification system

3a~3c...系統模組3a~3c. . . System module

31...臨時認證代碼產生單元31. . . Temporary authentication code generation unit

32...關聯單元32. . . Associated unit

33...驗證單元33. . . Verification unit

34...使用者資料庫34. . . User database

10...設定轉送模組10. . . Set transfer module

12a~12c...驗證轉送模組12a~12c. . . Verify transfer module

第1圖為本發明不需紀錄電話號碼的驗證系統之示意圖。Figure 1 is a schematic diagram of a verification system that does not require the recording of a telephone number in the present invention.

第2圖為本發明不需紀錄電話號碼的驗證系統之另一示意圖。Figure 2 is another schematic diagram of the verification system of the present invention that does not require the recording of a telephone number.

1...本發明不需紀錄電話號碼的驗證系統1. . . The invention does not need to record the telephone number verification system

3a~3c...系統模組3a~3c. . . System module

34...使用者資料庫34. . . User database

10...設定轉送模組10. . . Set transfer module

12a~12c...驗證轉送模組12a~12c. . . Verify transfer module

Claims (13)

一種不需紀錄電話號碼的驗證系統,包含:一系統模組,係具有一系統代碼,包含:一使用者資料庫,係用以儲存有複數筆使用者資料,每一使用者資料包含一使用者名稱、一密碼、一臨時認證代碼、具有唯一性的一驗證碼,該驗證碼相關於一電話號碼與一驗證管道代碼;一設定轉送模組,係用以接收來自電話系統中的一第一電信訊息,該第一電信訊息至少包含該電話號碼、該驗證管道代碼、該臨時認證代碼,且用以利用一編碼規則將該第一電信訊息中該電話號碼、該驗證管道代碼轉換成該驗證碼,以該臨時認證代碼對應該驗證碼的格式轉送該驗證碼至相對該系統代碼的該系統模組,該臨時認證代碼相關於該使用者名稱;以及一驗證轉送模組,係用以基於所具有的該驗證管道代碼接收來自電話系統中的一第二電信訊息,該第二電信訊息至少包含該電話號碼,且用以利用該設定轉送模組所使用的該編碼規則將該第二電信訊息中該電話號碼、該驗證轉送模組所具有的該驗證管道代碼轉換成該驗證碼,以轉送該驗證碼至相對該系統代碼的該系統模組。A verification system that does not need to record a telephone number, comprising: a system module having a system code, comprising: a user database for storing a plurality of user data, each user data comprising a use Name, a password, a temporary authentication code, a unique verification code, the verification code is associated with a phone number and a verification pipeline code; a set forwarding module is configured to receive a first from the telephone system a telecommunication message, the first telecommunication message includes at least the phone number, the verification pipe code, the temporary authentication code, and used to convert the phone number and the verification pipe code in the first telecommunication message into the a verification code, the verification code is forwarded to the system module corresponding to the system code in a format corresponding to the verification code, the temporary authentication code is related to the user name; and a verification transfer module is used Receiving a second telecommunications message from the telephone system based on the verification pipeline code that is included, the second telecommunications message including at least the And the code number used by the setting transfer module to convert the phone number in the second telecommunication message and the verification pipe code of the verification transfer module into the verification code to transfer the The verification code is to the system module relative to the system code. 如申請專利範圍第1項所述之不需紀錄電話號碼的驗證系統,其中該第一電信訊息和該第二電信訊息可為簡訊或語音訊息。For example, in the verification system of claim 1, the first telecommunication message and the second telecommunication message may be short message or voice message. 如申請專利範圍第1項所述之不需紀錄電話號碼的驗證系統,其中該系統模組進一步包含:一臨時認證代碼產生單元,係用以針對合法使用者產生相關於該使用者名稱的該臨時認證代碼;其中,該設定轉送模組僅在接獲合法的該臨時認證代碼時,才利用該編碼規則將該第一電信訊息中該電話號碼、該驗證管道代碼轉換成該驗證碼。The verification system of claim 1, wherein the system module further comprises: a temporary authentication code generating unit, configured to generate the relevant user name for the legitimate user. The temporary authentication code; wherein the setting forwarding module uses the encoding rule to convert the phone number and the verification pipeline code in the first telecommunication message into the verification code only when the temporary temporary authentication code is received. 如申請專利範圍第3項所述之不需紀錄電話號碼的驗證系統,其中該系統模組進一步包含:一關聯單元,係用以利用該臨時認證代碼產生單元所建立的該使用者帳號與該臨時認證代碼之間的關聯性、以及該設定轉送模組所建立的該臨時認證代碼與該驗證碼之間的關連性,而建立該使用者帳號與該驗證碼之間的關連性。The authentication system of claim 3, wherein the system module further comprises: an association unit, configured to utilize the user account established by the temporary authentication code generating unit and the The relationship between the temporary authentication code and the relationship between the temporary authentication code established by the setting forwarding module and the verification code establishes a relationship between the user account and the verification code. 如申請專利範圍第4項所述之不需紀錄電話號碼的驗證系統,其中該系統模組進一步包含:一驗證單元,係用以基於該關聯單元所建立的該使用者帳號與該驗證碼之間的關連性,而驗證來自該驗證轉送模組所傳遞的該驗證碼;其中,若該驗證碼存在於複數筆使用者資料中之一時,判定該驗證轉送模組所接收的該第二電信訊息為合法,以允許進一步的操作。The verification system of claim 4, wherein the system module further comprises: a verification unit, configured to use the user account and the verification code established by the association unit Between the verification, the verification code transmitted from the verification transfer module is verified; wherein, if the verification code exists in one of the plurality of user data, determining the second telecommunication received by the verification transfer module The message is legal to allow further action. 如申請專利範圍第1項所述之不需紀錄電話號碼的驗證系統,其中該系統模組可為複數個獨立模組。For example, in the verification system of claim 1, the system module can be a plurality of independent modules. 如申請專利範圍第1項所述之不需紀錄電話號碼的驗證系統,其中該設定轉送模組可為複數個獨立模組。For example, in the verification system of claim 1, the record transfer module can be a plurality of independent modules. 如申請專利範圍第1項所述之不需紀錄電話號碼的驗證系統,其中該驗證轉送模組可為複數個獨立模組。For example, in the verification system of claim 1, the verification transfer module can be a plurality of independent modules. 一種不需紀錄電話號碼的驗證方法,包含:儲存有複數筆使用者資料,每一使用者資料包含一使用者名稱、一密碼、一臨時認證代碼、具有唯一性的一驗證碼,該驗證碼相關於一電話號碼與一驗證管道代碼;接收來自電話系統中的一第一電信訊息,該第一電信訊息至少包含該電話號碼、該驗證管道代碼、該臨時認證代碼;利用一編碼規則將該第一電信訊息中該電話號碼、該驗證管道代碼轉換成該驗證碼,以該臨時認證代碼對應該驗證碼的格式轉送該驗證碼,該臨時認證代碼相關於該使用者名稱;基於所具有的該驗證管道代碼接收來自電話系統中的一第二電信訊息,該第二電信訊息至少包含該電話號碼;以及利用轉換該第一電信訊息時所使用的該編碼規則將該第二電信訊息中該電話號碼、接收該第二電信訊息的該驗證管道代碼轉換成該驗證碼,以轉送該驗證碼。A verification method for not recording a phone number includes: storing a plurality of user data, each user data including a user name, a password, a temporary authentication code, and a unique verification code, the verification code Corresponding to a telephone number and a verification pipeline code; receiving a first telecommunications message from the telephone system, the first telecommunications message including at least the telephone number, the verification pipeline code, the temporary authentication code; using an encoding rule Transmitting, in the first telecommunication message, the phone number, the verification pipe code into the verification code, and forwarding the verification code in a format corresponding to the verification code, the temporary authentication code is related to the user name; The verification pipeline code receives a second telecommunications message from the telephone system, the second telecommunications message includes at least the telephone number; and the second telecommunications message is used by the encoding rule used when converting the first telecommunications message The phone number, the verification pipeline code that receives the second telecommunication message is converted into the verification code, and The verification code. 如申請專利範圍第9項所述之不需紀錄電話號碼的驗證方法,其中該第一電信訊息和該第二電信訊息可為簡訊或語音訊息。The method for verifying that the telephone number is not recorded, as described in claim 9, wherein the first telecommunication message and the second telecommunication message may be short messages or voice messages. 如申請專利範圍第9項所述之不需紀錄電話號碼的驗證方法,其中該方法進一步包含:針對合法使用者產生相關於該使用者名稱的該臨時認證代碼;其中,僅在接獲合法的該臨時認證代碼時,才利用該編碼規則將該第一電信訊息中該電話號碼、該驗證管道代碼轉換成該驗證碼。The method for verifying that the telephone number is not required, as described in claim 9, wherein the method further comprises: generating the temporary authentication code related to the user name for the legitimate user; wherein only the legal identification is received When the temporary authentication code is used, the code number is used to convert the phone number and the verification pipeline code in the first telecommunication message into the verification code. 如申請專利範圍第11項所述之不需紀錄電話號碼的驗證方法,其中該方法進一步包含:利用已建立的該使用者帳號與該臨時認證代碼之間的關聯性、以及利用已建立的該臨時認證代碼與該驗證碼之間的關連性,而建立該使用者帳號與該驗證碼之間的關連性。The method for verifying that the telephone number is not required, as described in claim 11, wherein the method further comprises: utilizing the established association between the user account and the temporary authentication code, and utilizing the established The relationship between the temporary authentication code and the verification code establishes the relationship between the user account and the verification code. 如申請專利範圍第12項所述之不需紀錄電話號碼的驗證方法,其中該方法進一步包含:基於已建立的該使用者帳號與該驗證碼之間的關連性,而驗證由該第二電信訊息所轉換的該驗證碼;若該驗證碼存在於複數筆使用者資料中之一時,判定該驗證轉送模組所接收的該第二電信訊息為合法,以允許進一步的操作。The method for verifying that the telephone number is not required to be recorded in claim 12, wherein the method further comprises: verifying, by the established connection between the user account and the verification code, the second telecommunications The verification code converted by the message; if the verification code exists in one of the plurality of user data, it is determined that the second telecommunication message received by the verification transfer module is legal to allow further operations.
TW98109428A 2009-03-23 2009-03-23 No record of phone number verification system and method TWI468006B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW98109428A TWI468006B (en) 2009-03-23 2009-03-23 No record of phone number verification system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW98109428A TWI468006B (en) 2009-03-23 2009-03-23 No record of phone number verification system and method

Publications (2)

Publication Number Publication Date
TW201036412A TW201036412A (en) 2010-10-01
TWI468006B true TWI468006B (en) 2015-01-01

Family

ID=44856238

Family Applications (1)

Application Number Title Priority Date Filing Date
TW98109428A TWI468006B (en) 2009-03-23 2009-03-23 No record of phone number verification system and method

Country Status (1)

Country Link
TW (1) TWI468006B (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW510997B (en) * 1999-12-21 2002-11-21 Personalpath Systems Inc Privacy and security method and system for a world-wide-web site
TW200502818A (en) * 2003-02-14 2005-01-16 Macrovision Corp Software license management system configurable for post-use payment business models
TWI246844B (en) * 2004-04-28 2006-01-01 Fred Peng Method for certificating a network identity
TW200644565A (en) * 2005-03-25 2006-12-16 Nec Corp The authentication system and the authentication method which use a portable communication terminal
TW200708030A (en) * 2005-08-03 2007-02-16 Zeon Corp Method of certification and encryption/decryption for mobile document information
TW200709637A (en) * 2005-08-18 2007-03-01 Digital Mobile Co Ltd On-line authentication method and system

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW510997B (en) * 1999-12-21 2002-11-21 Personalpath Systems Inc Privacy and security method and system for a world-wide-web site
TW200502818A (en) * 2003-02-14 2005-01-16 Macrovision Corp Software license management system configurable for post-use payment business models
TWI246844B (en) * 2004-04-28 2006-01-01 Fred Peng Method for certificating a network identity
TW200644565A (en) * 2005-03-25 2006-12-16 Nec Corp The authentication system and the authentication method which use a portable communication terminal
TW200708030A (en) * 2005-08-03 2007-02-16 Zeon Corp Method of certification and encryption/decryption for mobile document information
TW200709637A (en) * 2005-08-18 2007-03-01 Digital Mobile Co Ltd On-line authentication method and system

Also Published As

Publication number Publication date
TW201036412A (en) 2010-10-01

Similar Documents

Publication Publication Date Title
CN101183932B (en) Security identification system of wireless application service and login and entry method thereof
US8590024B2 (en) Method for generating digital fingerprint using pseudo random number code
US8184811B1 (en) Mobile telephony content protection
US8302175B2 (en) Method and system for electronic reauthentication of a communication party
TW201014315A (en) User identity authentication method, system thereof and identifying code generating maintenance subsystem
WO2007104243A1 (en) The managing system of accounts security based on the instant message and its method
CN105991659A (en) Systems and methods for caller identification customization and remote management of communication devices
JP2008524727A5 (en)
CN105681030B (en) key management system, method and device
US7512967B2 (en) User authentication in a conversion system
CN102802150A (en) Phone number validation method and system as well as terminal
KR20200003162A (en) Identity authentication methods and devices, electronic devices
CN102984335A (en) Identity authentication method, equipment and system for making fixed-line call
CN102420918A (en) Secure feature access from an off-pbx telephone
WO2008004671A1 (en) User authenticating method, user authenticating system, user authenticating device and user authenticating program
TWI355957B (en)
CN101854357B (en) Method and system for monitoring network authentication
TWI468006B (en) No record of phone number verification system and method
TWI462562B (en) Method and apparatus for exchanging information in a voice communication system
CN101465733A (en) Identity authentication method based on telephone
CN109460647A (en) A kind of method that more equipment safeties log in
CN103916403A (en) Method for logging in to client side omitting password entering and supporting SIP
JP2007504685A5 (en)
CN102611813B (en) Telephone network the silver device, phone internet banking system and phone Net silver method of commerce
TWI504228B (en) Method for verifying phone swindle

Legal Events

Date Code Title Description
MM4A Annulment or lapse of patent due to non-payment of fees