TWI659374B - Mobile internet banking transaction authentication method and system - Google Patents

Mobile internet banking transaction authentication method and system Download PDF

Info

Publication number
TWI659374B
TWI659374B TW106127725A TW106127725A TWI659374B TW I659374 B TWI659374 B TW I659374B TW 106127725 A TW106127725 A TW 106127725A TW 106127725 A TW106127725 A TW 106127725A TW I659374 B TWI659374 B TW I659374B
Authority
TW
Taiwan
Prior art keywords
server
transaction
online banking
authentication
hash value
Prior art date
Application number
TW106127725A
Other languages
Chinese (zh)
Other versions
TW201911169A (en
Inventor
李劍雄
林淑真
郭建志
朱倖誼
Original Assignee
臺灣銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 臺灣銀行股份有限公司 filed Critical 臺灣銀行股份有限公司
Priority to TW106127725A priority Critical patent/TWI659374B/en
Publication of TW201911169A publication Critical patent/TW201911169A/en
Application granted granted Critical
Publication of TWI659374B publication Critical patent/TWI659374B/en

Links

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

在一種行動網銀交易認證方法及系統中,一認證伺服端儲存根據來自一網銀伺服端的交易資料所產生的一雜湊值及識別碼,該雜湊值及該識別碼經由該網銀伺服端被傳送至一行動裝置,以致該行動裝置將該雜湊值、該識別碼及一經由一讀卡機讀取自一電子卡的憑證資料傳送至該認證伺服端。該認證伺服端在判定出接收的該雜湊值與該識別碼相符於已儲存的該雜湊值與該識別碼時,傳送該交易資料至該行動裝置,並在接收到來自該行動裝置的資料正確通知時,回傳一打包有該雜湊值、該識別碼及該憑證資料的簽章資料與該驗證資料至該網銀伺服端。 In a mobile online banking transaction authentication method and system, an authentication server stores a hash value and an identification code generated according to transaction data from an online banking server, and the hash value and the identification code are transmitted to an online banking server through an online banking server. The mobile device, so that the mobile device transmits the hash value, the identification code, and a credential data read from an electronic card through a card reader to the authentication server. When the authentication server determines that the received hash value and the identification code match the stored hash value and the identification code, it transmits the transaction data to the mobile device, and upon receiving the data from the mobile device is correct When notifying, return a signature data packaged with the hash value, the identification code and the certificate data, and the verification data to the online banking server.

Description

行動網銀交易認證方法及系統 Mobile internet banking transaction authentication method and system

本發明是有關於行動網銀交易服務,特別是一種行動網銀交易認證方法及系統。 The invention relates to a mobile online banking transaction service, in particular to a mobile online banking transaction authentication method and system.

現有利用例如一桌上型電腦進行一網銀交易操作時,須透過預先安裝於此電腦的元件與一連接此電腦且插置有例如一金融卡的讀卡機溝通,才能完成有關於認證授權的交易簽章作業。然而,現今利用行動裝置來執行行動商務需求與日俱增,有必要提供適用於行動裝置的行動認證授權功能及相關介面,以使得使用者能利用行動裝置並結合例如晶片金融卡或XML(Extensible Markup Language,可延伸標記式語言)簽章卡的一電子卡來進行例如非約定轉帳或大額轉帳的金融服務之確認應用。 Currently, when using a desktop computer for an online banking transaction operation, it is necessary to communicate with a card reader connected to the computer and inserted with a financial card, for example, through components pre-installed on the computer to complete authentication and authorization. Transaction signing. However, with the increasing demand for mobile commerce to perform mobile commerce today, it is necessary to provide mobile authentication and authorization functions and related interfaces for mobile devices, so that users can use mobile devices in combination with chip financial cards or XML (Extensible Markup Language, Extensible Markup Language) An electronic card with a signature card to perform financial service confirmation applications such as unconventional transfers or large transfers.

為達到上述行動商務的需求,現有的行動網銀交易認證技術提出了利用一特定應用程式,並透過一專用於行動裝置的行動讀卡機來執行相關於一金融交易的交易驗證或憑證簽章操作。然而,此特定應用程式在執行交易驗證或憑證簽章時需傳輸具有相對較大資料量的交易原文資料,因而導致行動裝置必須提供較大的記 憶體儲存空間,以及行動裝置執行效能降低的風險增加。 In order to meet the needs of the above-mentioned mobile commerce, the existing mobile online banking transaction authentication technology proposes to use a specific application and perform a transaction verification or certificate signing operation related to a financial transaction through a mobile card reader dedicated to a mobile device. . However, this particular application needs to transmit the original text of the transaction with a relatively large amount of data when performing transaction verification or certificate signing, resulting in the mobile device having to provide a larger record Memory storage and increased risk of reduced mobile device performance.

因此,現有行動網銀交易認證技術仍有很大的改良空間。 Therefore, there is still much room for improvement in the existing mobile online banking transaction authentication technology.

因此,本發明的目的,即在提供一種行動網銀交易認證方法,其能克服習知技藝的缺點。 Therefore, an object of the present invention is to provide a mobile internet banking transaction authentication method, which can overcome the shortcomings of conventional techniques.

於是,本發明所提供的一種行動網銀交易認證方法,藉由一連接有一讀卡機且安裝有一行動安控應用程式的行動裝置、一插置於該讀卡機且儲存有對應於一特定客戶的憑證資料的電子卡、一網銀伺服端及一認證伺服端來執行。該行動網銀交易認證方法包含以下步驟::(A)藉由該網銀伺服端,在接收到一來自該行動裝置且相關於一特定帳戶之金融交易並包含交易資料的交易請求時,將一包含該交易資料的認證請求傳送至該認證伺服端;(B)藉由該認證伺服端,在接收到來自該網銀伺服端的該認證請求時,利用一預定雜湊演算法,根據該交易資料產生一雜湊值及一唯一對應於該雜湊值的識別碼,並儲存該雜湊值及該識別碼,且將該雜湊值及該識別碼傳送至該網銀伺服端;(C)藉由該網銀伺服端,在接收到來自該認證伺服端的該雜湊值及該識別碼時,將所接收到的該雜湊值及該識別碼傳送至 該行動裝置;(D)藉由該行動裝置,在接收到來自該網銀伺服端的該雜湊值及該識別碼時,開始執行該行動安控應用程式,以建立與該認證伺服端的連接並使該讀卡機讀取該電子卡所儲存的該憑證資料,並將所接收到的該雜湊值與該識別碼以及來自該讀卡機的該憑證資料傳送至該認證伺服端;(E)藉由該認證伺服端,在接收到來自該行動裝置的該雜湊值、該識別碼及該憑證資料後且判定出所接收的該雜湊值及該識別碼分別相符於所儲存的該雜湊值及該識別碼時,將該交易資料傳送至該行動裝置;及(F)藉由該認證伺服端,在接收到一來自該行動裝置且指示出該交易資料正確無誤的通知時,將所接收的該雜湊值、該識別碼及該憑證資料打包並簽章以獲得簽章資料,並將一對應於該認證請求且包含該簽章資料與該憑證資料的成功認證回覆傳送至該網銀伺服端。 Therefore, the mobile internet banking transaction authentication method provided by the present invention includes a mobile device connected with a card reader and a mobile security control application program installed, inserted in the card reader, and stored corresponding to a specific customer. The electronic data of the certificate data, an online banking server and an authentication server. The mobile online banking transaction authentication method includes the following steps: (A) When the online banking server receives a transaction request from the mobile device that is related to a specific account and includes transaction data, a The authentication request of the transaction information is transmitted to the authentication server; (B) When the authentication server receives the authentication request from the online banking server, a predetermined hash algorithm is used to generate a hash based on the transaction data. Value and an identification code that uniquely corresponds to the hash value, and stores the hash value and the identification code, and transmits the hash value and the identification code to the online banking server; (C) through the online banking server, When receiving the hash value and the identification code from the authentication server, the received hash value and the identification code are transmitted to The mobile device; (D) when the mobile device receives the hash value and the identification code from the online banking server end, it starts to execute the mobile security control application program to establish a connection with the authentication server end and make the The card reader reads the credential data stored in the electronic card, and transmits the received hash value and the identification code and the credential data from the card reader to the authentication server; (E) by The authentication server, after receiving the hash value, the identification code, and the voucher data from the mobile device, determines that the received hash value and the identification code match the stored hash value and the identification code, respectively. When the transaction data is transmitted to the mobile device; and (F) by the authentication server, when receiving a notification from the mobile device indicating that the transaction data is correct, the received hash value is received , The identification code and the voucher information are packaged and signed to obtain the signing information, and a successful authentication reply corresponding to the authentication request and containing the signing data and the voucher information is sent to the online banking server

因此,本發明的另一目的,即在提供一種行動網銀交易認證系統,其能克服習知技藝的缺點。 Therefore, another object of the present invention is to provide a mobile online banking transaction authentication system, which can overcome the shortcomings of conventional techniques.

於是,本發明所提供的一種行動網銀交易認證系統包含一行動裝置、一讀卡機、一網銀伺服端及一認證伺服端。該行動裝置安裝有一行動安控應用程式,該讀卡機電連接該行動裝置並插 有一電子卡,該電子卡儲存有對應於一特定客戶的憑證資料,該認證伺服端連接該網銀伺服端。 Therefore, a mobile online banking transaction authentication system provided by the present invention includes a mobile device, a card reader, an online banking server and an authentication server. The mobile device is installed with a mobile security control application, and the card reader is electrically connected to the mobile device and plugged in. An electronic card stores voucher data corresponding to a specific customer, and the authentication server is connected to the online banking server.

當該網銀伺服端接收到一來自該行動裝置且相關於一特定帳戶之金融交易並包含交易資料的交易請求時,該網銀伺服端一包含該交易資料的認證請求傳送至該認證伺服端。 When the online banking server receives a transaction request from the mobile device that is related to a specific account's financial transaction and includes transaction data, the online banking server transmits an authentication request containing the transaction data to the authentication server.

當該認證伺服端接收到來自該網銀伺服端的該認證請求時,該認證伺服端利用一預定雜湊演算法,根據該交易資料產生一雜湊值及一唯一對應於該雜湊值的識別碼,並儲存該雜湊值及該識別碼,且將該雜湊值及該識別碼傳送至該網銀伺服端。 When the authentication server receives the authentication request from the online banking server, the authentication server uses a predetermined hash algorithm to generate a hash value and an identification code unique to the hash value according to the transaction data, and stores the hash value. The hash value and the identification code are transmitted to the online banking server.

當該網銀伺服端接收到來自該認證伺服端的該雜湊值及該識別碼時,該網銀伺服端將所接收到的該雜湊值及該識別碼傳送至該行動裝置。 When the online banking server receives the hash value and the identification code from the authentication server, the online banking server sends the received hash value and the identification code to the mobile device.

當該行動裝置接收到來自該網銀伺服端的該雜湊值及該識別碼時,開始執行該行動安控應用程式,以建立與該認證伺服端的連接並使該讀卡機讀取該電子卡所儲存的該憑證資料,並將所接收到的該雜湊值與該識別碼以及來自該讀卡機的該憑證資料傳送至該認證伺服端。 When the mobile device receives the hash value and the identification code from the online banking server, it starts executing the mobile security control application program to establish a connection with the authentication server and cause the card reader to read the electronic card storage The credential data, and send the received hash value and the identification code and the credential data from the card reader to the authentication server.

當該認證伺服端接收到來自該行動裝置的該雜湊值、該識別碼及該憑證資料後且判定出所接收的該雜湊值及該識別碼分別相符於所儲存的該雜湊值及該識別碼時,該認證伺服端將該交 易資料傳送至該行動裝置。 When the authentication server receives the hash value, the identification code, and the credential data from the mobile device, and determines that the received hash value and the identification code match the stored hash value and the identification code, respectively , The authentication server sends the request Easy data to the mobile device.

當該認證伺服端接收到一來自該行動裝置且指示出該交易資料正確無誤的通知時,該認證伺服端將所接收的該雜湊值、該識別碼及該憑證資料打包簽章以獲得簽章資料,並將一對應於該認證請求且包含該簽章資料與該憑證資料的成功認證回覆傳送至該網銀伺服端。 When the authentication server receives a notification from the mobile device indicating that the transaction information is correct, the authentication server packages and signs the hash value, the identification code, and the credential data to obtain a signature And send a successful authentication reply corresponding to the authentication request, including the signature data and the certificate data, to the online banking server.

本發明的功效在於:該認證伺服端先利用根據來自於該網銀伺服端的交易資料所產生的雜湊值來認證該行動裝置所安裝的行動安控應用程式為真時,才將該交易資料傳送至該行動裝置以供交易者確認其正確性,藉此達到雙向認證後,才將打包有該雜湊值、該識別碼及該憑證資料的該簽章資料與該憑證資料傳送至該網銀伺服端。因此,在利用現有系統架構下,不僅可確保該電子卡所儲存的憑證資料的安全性,而且可大幅降低認證期間的傳輸資料量。 The effect of the present invention is that the authentication server first uses the hash value generated based on the transaction data from the online banking server to authenticate the mobile security control application installed on the mobile device as true before transmitting the transaction data to The mobile device is used by the trader to confirm its correctness, and after the two-way authentication is achieved, the signature data and the voucher data packaged with the hash value, the identification code, and the voucher data are transmitted to the online banking server. Therefore, under the use of the existing system architecture, not only the security of the credential data stored in the electronic card can be ensured, but also the amount of data transmitted during authentication can be greatly reduced.

100‧‧‧行動網銀交易認證系統 100‧‧‧Mobile online banking transaction authentication system

1‧‧‧行動裝置 1‧‧‧ mobile device

APP‧‧‧行動安控應用程式 APP‧‧‧ Mobile Security Control App

2‧‧‧網銀伺服端 2‧‧‧Online Banking Server

3‧‧‧認證伺服端 3‧‧‧Certified server

4‧‧‧讀卡機 4‧‧‧ card reader

5‧‧‧電子卡 5‧‧‧electronic card

6‧‧‧驗證伺服端 6‧‧‧Verification server

200‧‧‧交易執行伺服端 200‧‧‧Transaction execution server

S21-S40‧‧‧步驟 S21-S40‧‧‧step

本發明的其他的特徵及功效,將於參照圖式的實施方式中清楚地呈現,其中:圖1是一方塊圖,示例地說明本發明行動網銀交易認證系統的一實施例;及圖2及圖3是流程圖,示例地說明該實施例如何執行一行動網 銀交易認證程序。 Other features and effects of the present invention will be clearly presented in the embodiment with reference to the drawings, wherein: FIG. 1 is a block diagram illustrating an embodiment of the mobile online banking transaction authentication system of the present invention; and FIGS. 2 and FIG. 3 is a flowchart illustrating how the embodiment implements a mobile network Silver transaction certification process.

參閱圖1,本發明行動網銀交易認證系統100的一實施例可被應用於一銀行機構,並對於一想要經由網路銀行來進行相關於一特定帳戶的金融交易的客戶,提供相關此金融交易的認證服務。該行動網銀交易認證系統100包含一行動裝置1、一網銀伺服端2、一認證伺服端3、一讀卡機4、一電子卡5、及一驗證伺服端6。 Referring to FIG. 1, an embodiment of the mobile online banking transaction authentication system 100 of the present invention can be applied to a banking institution, and for a customer who wants to conduct financial transactions related to a specific account via online banking, provide the relevant financial information. Authentication services for transactions. The mobile online banking transaction authentication system 100 includes a mobile device 1, an online banking server 2, an authentication server 3, a card reader 4, an electronic card 5, and a verification server 6.

在本實施例中,該行動裝置1例如為該客戶所持的一智慧型手機或一平板電腦,並事先安裝有一行動安控應用程式APP。該行動裝置1可經由一無線通訊網路(圖未示)建立與該網銀伺服端2及該認證伺服端3的連接。 In this embodiment, the mobile device 1 is, for example, a smart phone or a tablet computer held by the customer, and a mobile security control application APP is installed in advance. The mobile device 1 can establish a connection with the online banking server 2 and the authentication server 3 through a wireless communication network (not shown).

在使用時,該讀卡機4係電連接該行動裝置1,並插有該電子卡5。該電子卡5儲存有對應於該特定客戶的憑證資料。 In use, the card reader 4 is electrically connected to the mobile device 1 and the electronic card 5 is inserted. The electronic card 5 stores voucher data corresponding to the specific customer.

該網銀伺服端2提供有一網銀網頁,並可經由例如網際網路(圖未示)連接該認證伺服端3、該驗證伺服端6、及一用於執行交易的交易執行伺服端200。 The online banking server 2 provides an online banking webpage, and can be connected to the authentication server 3, the verification server 6, and a transaction execution server 200 for performing transactions via, for example, the Internet (not shown).

該驗證伺服端6儲存有多筆分別對應於多個不同客戶的參考憑證資料。 The verification server 6 stores a plurality of reference certificate data corresponding to a plurality of different customers.

以下,將參閱圖1及圖2來詳細地說明該行動網銀交易認證系統100如何對於該金融交易執行一行動網銀交易認證程序。 該智慧銀行櫃檯交易服務程序包含以下步驟。 Hereinafter, how the mobile online banking transaction authentication system 100 executes a mobile online banking transaction authentication procedure for the financial transaction will be described in detail with reference to FIGS. 1 and 2. The smart bank counter transaction service program includes the following steps.

首先,在步驟S21中,當該行動裝置1與該網銀伺服2端所提供的該網銀網頁連結,並經過成功驗證使用者身分登入該特定帳戶後,該行動裝置1經由人為操作,產生一相關於該金融交易並包含交易資料的交易請求,並將該交易請求傳送至該網銀伺服端2。在本實施例中,該金融交易例如為一轉帳交易,但不在此限,且該交易資料例如為一至少包含交易日期、轉帳金額、該特定帳戶的帳號(即轉出帳號)、及轉入帳號的交易電文,但不在此限。 First, in step S21, when the mobile device 1 is linked to the online banking web page provided by the online banking server 2 and after successfully verifying the identity of the user to log in to the specific account, the mobile device 1 generates a correlation through human operation. A transaction request that includes transaction information in the financial transaction, and sends the transaction request to the online banking server 2. In this embodiment, the financial transaction is, for example, a transfer transaction, but is not limited thereto, and the transaction information is, for example, a transaction date including at least the transaction date, the transfer amount, the account number of the specific account (that is, the transfer account number), and the transfer Account transaction messages, but not limited to this.

然後,在步驟S22中,該網銀伺服端2在接收到來自該行動裝置1的該交易請求時,儲存該交易資料,並將一包含該交易資料的認證請求傳送至該認證伺服端3。 Then, in step S22, the online banking server 2 stores the transaction data when receiving the transaction request from the mobile device 1, and transmits an authentication request including the transaction data to the authentication server 3.

接著,在步驟S23中,該認證伺服端3在接收到來自該網銀伺服端2的該認證請求時,利用一預定雜湊演算法,根據該交易資料產生一雜湊值及一唯一對應於該雜湊值的識別碼,並儲存該雜湊值及該識別碼,且將該雜湊值及該識別碼傳送至該網銀伺服端2。 Next, in step S23, when the authentication server 3 receives the authentication request from the online banking server 2, it uses a predetermined hash algorithm to generate a hash value and a unique value corresponding to the hash value according to the transaction data. And store the hash value and the identification code, and transmit the hash value and the identification code to the online banking server 2.

接著,在步驟S24中,該網銀伺服端2在接收到來自該認證伺服端3的該雜湊值及該識別碼時,將所接收到的該雜湊值及該識別碼傳送至該行動裝置1,並且之後還持續傳送一對應於該認證請求的輪詢至該認證伺服端3。 Next, in step S24, when the online banking server 2 receives the hash value and the identification code from the authentication server 3, it transmits the received hash value and the identification code to the mobile device 1, And after that, a poll corresponding to the authentication request is continuously transmitted to the authentication server 3.

接著,在步驟S25中,該行動裝置1在接收到來自該網銀伺服端2的該雜湊值及該識別碼時,開始執行該行動安控應用程式APP,以便建立與該認證伺服端3的連結並使該讀卡機4讀取該電子卡5所儲存的該憑證資料,並將所接收到的該雜湊值與該識別碼以及來自該讀卡機4的該憑證資料傳送至該認證伺服端3。 Next, in step S25, when the mobile device 1 receives the hash value and the identification code from the online banking server 2, it starts to execute the mobile security control application APP in order to establish a connection with the authentication server 3. And cause the card reader 4 to read the credential data stored in the electronic card 5, and transmit the received hash value and the identification code and the credential data from the card reader 4 to the authentication server 3.

接著,在步驟S26中,該認證伺服端3在接收到來自該行動裝置1的該雜湊值、該識別碼及該憑證資料時,判定所接收的該雜湊值及該識別碼是否分別相符於步驟S23所儲存的該雜湊值及該識別碼,藉此來認證該行動裝置1所執行的該行動安控應用程式APP是否為真(即未經竄改)。若該判定結果為肯定時(即該行動安控應用程式APP被證明為真),流程進行至步驟S28,否則,該認證伺服端3將一指示(該行動安控應用程式APP)認證失敗的錯誤訊息傳送至該網銀伺服端2(步驟S27)。 Next, in step S26, when the authentication server 3 receives the hash value, the identification code, and the credential data from the mobile device 1, it is determined whether the received hash value and the identification code match the steps, respectively. The hash value and the identification code stored in S23 are used to authenticate whether the mobile security control application APP executed by the mobile device 1 is true (that is, has not been tampered with). If the determination result is affirmative (that is, the mobile security control application APP is proved to be true), the flow proceeds to step S28, otherwise, the authentication server 3 will indicate (the mobile security control application APP) that the authentication fails An error message is sent to the online banking server 2 (step S27).

在步驟S28中,當該行動安控應用程式APP被該認證伺服端3認證為真時,該認證伺服端3將步驟S22所儲存的該交易資料傳送至該行動裝置1。 In step S28, when the mobile security control application APP is authenticated as being true by the authentication server 3, the authentication server 3 transmits the transaction data stored in step S22 to the mobile device 1.

之後,在步驟S29中,該行動裝置1在接收到來自該認證伺服端3的該交易資料時,經由該行動安控應用程式APP的執行,顯示該交易資料。在此情況下,該客戶可藉由顯示於該行動裝 置1的該交易資料來確認其正確性。在經該客戶確認該交易資料無誤後,該行動裝置1經由人為操作產生一指示出該交易資料正確無誤的通知,並將該通知傳送至該認證伺服端。於是,該認證伺服端3與該行動裝置1所執行的該行動安控應用程式APP之間的雙向認證被完成。 Then, in step S29, when the mobile device 1 receives the transaction data from the authentication server 3, the mobile device 1 displays the transaction data through execution of the mobile security control application APP. In this case, the customer can display the Set the transaction data to 1 to confirm its correctness. After the client confirms that the transaction information is correct, the mobile device 1 generates a notification indicating that the transaction information is correct through manual operation, and transmits the notification to the authentication server. Thus, the two-way authentication between the authentication server 3 and the mobile security control application APP executed by the mobile device 1 is completed.

然後,在步驟S30中,該認證伺服端3在接收到來自該行動裝置1的該通知時,將所接收的該雜湊值、該識別碼及該憑證資料打包並簽章以獲得簽章資料。在本實施例中,該簽章資料例如可為一簽章值。 Then, in step S30, when receiving the notification from the mobile device 1, the authentication server 3 packages and seals the received hash value, the identification code, and the credential data to obtain signature data. In this embodiment, the signature data may be a signature value, for example.

之後,當該認證伺服端3接收到新近來自該網銀伺服端2的該輪詢時,在步驟S31中,該認證伺服端3回應於該輪詢將一對應於該認證請求且包含該簽章資料與該憑證資料的成功認證回覆傳送至該網銀伺服端2。於是,該網銀伺服端2取回該簽章資料及該憑證資料。值得注意的是,在該認證伺服端3與該行動安控應用程式APP所執行的雙向認證期間,大幅減少該交易資料的傳輸。 Then, when the authentication server 3 receives the poll from the online banking server 2 recently, in step S31, the authentication server 3 responds to the poll and will correspond to the authentication request and include the signature The successful authentication reply of the data and the certificate data is transmitted to the online banking server 2. Then, the online banking server 2 retrieves the signature data and the certificate data. It is worth noting that during the two-way authentication performed by the authentication server 3 and the mobile security control application APP, the transmission of the transaction data is greatly reduced.

接著,在步驟S32中,該網銀伺服端2在接收到來自該認證伺服端的該成功認證回覆時,對於該金融交易,產生一包含所接收到的該簽章資料與該憑證資料、及該交易請求所包含的該交易資料的驗證請求,並將該驗證請求傳送至該驗證伺服端6。 Next, in step S32, when the online banking server 2 receives the successful authentication reply from the authentication server, it generates, for the financial transaction, a message including the signature information and the voucher information received, and the transaction. Request a verification request for the transaction data included, and send the verification request to the verification server 6.

接著,在步驟S33中,該驗證伺服端6在接收到來自該 網銀伺服端2的該驗證請求時,判定該憑證資料是否相符於所儲存的該等筆參考憑證資料其中一筆參考憑證資料。若該判定結果為肯定時,流程進行步驟S35。相反地,若該驗證伺服端6判定出所儲存的該等筆參考憑證資料不存在任何一筆相符於該憑證資料的參考憑證資料時,也就是說,當該電子卡5所儲存的該憑證資料已遭毀損或過期時,該驗證伺服端6傳送一驗證失敗的錯誤訊息至該網銀伺服端2(步驟S34)。 Then, in step S33, the verification server 6 receives When the verification request from the online banking server 2 is made, it is determined whether the voucher data matches one of the reference voucher data stored. If the determination result is positive, the flow proceeds to step S35. Conversely, if the verification server 6 determines that the stored reference voucher data does not contain any reference voucher data that matches the voucher data, that is, when the voucher data stored in the electronic card 5 has been When it is damaged or expired, the verification server 6 sends an authentication failure error message to the online banking server 2 (step S34).

在步驟S35中,該驗證伺服端6在判定出該憑證資料相符於所儲存的該等筆參考憑證資料其中一筆參考憑證資料時,利用該預定雜湊演算法,根據該交易資料以獲得一雜湊值。 In step S35, when the verification server 6 determines that the voucher data matches one of the stored reference voucher data, it uses the predetermined hash algorithm to obtain a hash value based on the transaction data. .

在步驟S36中,該驗證伺服端6判定步驟S35所獲得的該雜湊值是否相符於該簽章結果所包含的該雜湊值,藉此判定該簽章資料是否被成功驗證。若該判定為肯定時,也就是說,該網銀伺服端2所接收的該交易資料相符於該客戶確認後的該交易資料,流程進行至步驟S37,否則,流程返回至步驟S34。 In step S36, the verification server 6 determines whether the hash value obtained in step S35 matches the hash value included in the signature result, thereby determining whether the signature data is successfully verified. If the determination is affirmative, that is, the transaction data received by the online banking server 2 matches the transaction data confirmed by the client, the flow proceeds to step S37, otherwise, the flow returns to step S34.

在步驟S37中,該驗證伺服端6在判定出該簽章資料被成功驗證時,將一回應於該驗證請求的驗證成功回覆傳送至該網銀伺服端2。 In step S37, when the verification server 6 determines that the signature data is successfully verified, it sends a verification success response in response to the verification request to the online banking server 2.

接著,在步驟S38中,該網銀伺服端2在接收到來自該驗證伺服端6的該驗證成功回覆時,將該交易資料傳送至該交易執 行伺服端200。於是,該交易執行伺服端200根據該交易資料執行該金融交易,以產生一指示出該金融交易完成的交易結果,並將該交易結果傳送至該網銀伺服端2。 Next, in step S38, when the online banking server 2 receives the verification success response from the verification server 6, the transaction data is transmitted to the transaction execution server. Line servo end 200. Then, the transaction execution server 200 executes the financial transaction according to the transaction data to generate a transaction result indicating the completion of the financial transaction, and transmits the transaction result to the online banking server 2.

最後,該網銀伺服端2接收了來自該交易執行伺服端200的該交易結果,並將該交易結果傳送至該行動裝置1(步驟S39),以致該行動裝置1在接到來自該網銀伺服端2的該交易結果時,將該交易結果顯示,以供客戶作為憑藉(步驟S40)。至此,該行動網銀交易認證程序被完成。 Finally, the online banking server 2 receives the transaction result from the transaction execution server 200 and transmits the transaction result to the mobile device 1 (step S39), so that the mobile device 1 receives the transaction result from the online banking server When the transaction result of 2 is displayed, the transaction result is displayed for the customer to rely on (step S40). At this point, the mobile internet banking transaction certification process has been completed.

綜上所述,該認證伺服端3先利用根據來自於該網銀伺服端2的該交易資料所產生的該雜湊值來認證該行動裝置1所安裝的該行動安控應用程式APP為真時,才將該交易資料傳送至該行動裝置以供該客戶確認其正確性,藉此達到雙向認證後,將打包有該雜湊值、該識別碼及該憑證資料的該簽章資料以及該憑證資料一併傳送至該網銀伺服端。接著,經由該驗證伺服端6再次確認該網銀伺服端2所持有的該交易資料相符於該客戶所確認的該交易資料後,該網銀伺服端2才將該交易資料傳送至該交易執行伺服端200,以便實際執行該金融交易。因此,在利用現有系統架構下,不僅可確保該電子卡所儲存的憑證資料的安全性,而且可避免交易資料被串篡改,藉此提升行動網銀交易的安全性。此外,由於在認證期間無須如現有技術所需傳輸較大資料量的交易原文資料,因此 可大幅降低傳輸資料量,故確實能達成本發明的目的。 In summary, when the authentication server 3 first uses the hash value generated according to the transaction data from the online banking server 2 to authenticate the mobile security control application APP installed on the mobile device 1 is true, Only then send the transaction data to the mobile device for the customer to confirm its correctness. After the two-way authentication is reached, the signature data and the voucher data will be packaged with the hash value, the identification code and the voucher data. And sent to the online banking server. Then, after the verification server 6 confirms again that the transaction data held by the online banking server 2 matches the transaction data confirmed by the client, the online banking server 2 transmits the transaction data to the transaction execution server Terminal 200 in order to actually execute the financial transaction. Therefore, under the use of the existing system architecture, not only the security of the credential data stored in the electronic card can be ensured, but also the transaction data can be prevented from being tampered with, thereby improving the security of mobile online banking transactions. In addition, since it is not necessary to transmit a large amount of original text of the transaction during the certification period as required by the existing technology, Can greatly reduce the amount of data transmitted, so it can indeed achieve the purpose of cost invention.

惟以上所述者,僅為本發明的實施例而已,當不能以此限定本發明實施的範圍,凡是依本發明申請專利範圍及專利說明書內容所作的簡單的等效變化與修飾,皆仍屬本發明專利涵蓋的範圍內。 However, the above are only examples of the present invention. When the scope of implementation of the present invention cannot be limited by this, any simple equivalent changes and modifications made according to the scope of the patent application and the contents of the patent specification of the present invention are still Within the scope of the invention patent.

Claims (12)

一種行動網銀交易認證方法,藉由一連接有一讀卡機且安裝有一行動安控應用程式的行動裝置、一插置於該讀卡機以接觸式電連接該讀卡機且儲存有對應於一特定客戶的憑證資料的電子卡、一網銀伺服端及一認證伺服端來執行,該行動網銀交易認證方法包含以下步驟:(A)藉由該網銀伺服端,在接收到一來自該行動裝置且相關於一特定帳戶之金融交易並包含交易資料的交易請求時,將一包含該交易資料的認證請求傳送至該認證伺服端;(B)藉由該認證伺服端,在接收到來自該網銀伺服端的該認證請求時,利用一預定雜湊演算法,根據該交易資料產生一雜湊值及一唯一對應於該雜湊值的識別碼,並儲存該雜湊值及該識別碼,且將該雜湊值及該識別碼傳送至該網銀伺服端;(C)藉由該網銀伺服端,在接收到來自該認證伺服端的該雜湊值及該識別碼時,將所接收到的該雜湊值及該識別碼傳送至該行動裝置;(D)藉由該行動裝置,在接收到來自該網銀伺服端的該雜湊值及該識別碼時,開始執行該行動安控應用程式,以建立與該認證伺服端的連結並使該讀卡機讀取該電子卡所儲存的該憑證資料,並將所接收到的該雜湊值與該識別碼以及來自該讀卡機的該憑證資料傳送至該認證伺服端;(E)藉由該認證伺服端,在接收到來自該行動裝置的該雜湊值、該識別碼及該憑證資料後且判定出所接收的該雜湊值及該識別碼分別相符於所儲存的該雜湊值及該識別碼時,將該交易資料傳送至該行動裝置;及(F)藉由該認證伺服端,在接收到一來自該行動裝置且指示出該交易資料正確無誤的通知時,將所接收的該雜湊值、該識別碼及該憑證資料打包並簽章以獲得簽章資料,並將一對應於該認證請求且包含該簽章資料與該憑證資料的成功認證回覆傳送至該網銀伺服端。A mobile online banking transaction authentication method includes a mobile device connected to a card reader and a mobile security control application installed, a card inserted in the card reader to contact the card reader by contact and electrically stored corresponding to a The electronic card of a specific customer's credential data, an online banking server and an authentication server are executed. The mobile online banking transaction authentication method includes the following steps: (A) The online banking server receives a message from the mobile device and When a financial transaction related to a specific account includes a transaction request including transaction information, an authentication request including the transaction information is transmitted to the authentication server; (B) the authentication server receives a request from the online banking server When the client requests the authentication, a predetermined hash algorithm is used to generate a hash value and an identification code unique to the hash value according to the transaction data, and store the hash value and the identification code, and store the hash value and the identification code. The identification code is transmitted to the online banking server; (C) When the online banking server receives the hash value and the identification code from the authentication server, The received hash value and the identification code are transmitted to the mobile device; (D) by the mobile device, when the hash value and the identification code from the online banking server end are received, the mobile security control application program is executed, To establish a connection with the authentication server and cause the card reader to read the credential data stored in the electronic card, and transmit the received hash value with the identification code and the credential data from the card reader To the authentication server; (E) after receiving the hash value, the identification code, and the credential data from the mobile device through the authentication server, and determining that the received hash value and the identification code respectively match When the hash value and the identification code are stored, the transaction data is transmitted to the mobile device; and (F) the authentication server receives a message from the mobile device and indicates that the transaction data is correct When the notification is received, the received hash value, the identification code, and the voucher information are packaged and signed to obtain the seal information, and a response corresponding to the authentication request that includes the seal information and the voucher information Reactive authentication reply transmitted to the online banking server end. 如請求項1所述的行動網銀交易認證方法,在步驟(A)之前,還包含以下步驟:(G)藉由該行動裝置,在與該網銀伺服端所提供的一網銀網頁連結並登入該特定帳戶後,經由人為操作,產生該交易請求,並將該交易請求傳送至該網銀伺服端。According to the mobile online banking transaction authentication method described in claim 1, before step (A), the method further includes the following steps: (G) by using the mobile device, linking with an online banking web page provided by the online banking server and logging in to the online banking website After a specific account, the transaction request is generated by human operation, and the transaction request is transmitted to the online banking server. 如請求項1所述的行動網銀交易認證方法,在步驟(E)及步驟(F)之間,還包含以下步驟:(H)藉由該行動裝置,在接收到來自該認證伺服端的該交易資料時,經由該行動安控應用程式的執行,顯示該交易資料,且經由人為操作產生該通知,並將該通知傳送至該認證伺服端。The method for authenticating a mobile online banking transaction according to claim 1, between steps (E) and (F), further including the following steps: (H) The mobile device receives the transaction from the authentication server. When the data is displayed, the execution of the mobile security control application program displays the transaction data, and the notification is generated by human operation, and the notification is transmitted to the authentication server. 如請求項1所述的行動網銀交易認證方法,還藉由一連接該網銀伺服端並儲存有多筆參考憑證資料的驗證伺服端來執行,在步驟(F)之後,還包含以下步驟:(I)藉由該網銀伺服端,在接收到來自該認證伺服端的該成功認證回覆時,對於該金融交易,產生一包含所接收到的該簽章資料與該憑證資料、及該交易請求所包含的該交易資料的驗證請求,並將該驗證請求傳送至該驗證伺服端;(J)藉由該驗證伺服端,在接收到來自該網銀伺服端的該驗證請求後且判定出該憑證資料相符於所儲存的該等筆參考憑證資料其中一筆參考憑證資料時,利用該預定雜湊演算法,根據該交易資料所獲得一雜湊值,並經由判定所獲得的該雜湊值是否相符於該簽章結果所包含的該雜湊值,判定該簽章資料是否被成功驗證;及(K)藉由該驗證伺服端,在判定出該簽章資料被成功驗證時,將一回應於該驗證請求的驗證成功回覆傳送至該網銀伺服端。The mobile online banking transaction authentication method described in claim 1, is also performed by a verification server connected to the online banking server and storing multiple reference certificate data. After step (F), it also includes the following steps: ( I) With the online banking server, upon receiving the successful authentication reply from the authentication server, for the financial transaction, a signature containing the received seal information and the voucher information, and the transaction request is included. Request for verification of the transaction data, and send the verification request to the verification server; (J) The verification server, after receiving the verification request from the online banking server, determines that the voucher data matches When one of the stored reference voucher data is used for the reference voucher data, a predetermined hash algorithm is used to obtain a hash value according to the transaction data, and by determining whether the obtained hash value matches the signature result The hash value contained therein determines whether the signature data is successfully verified; and (K) by the verification server, when it is determined that the signature data is successfully verified, A successful response to the verification request is sent to the online banking server. 如請求項4所述的行動網銀交易認證方法,在步驟(K)之後,還包含以下步驟:(L)藉由該網銀伺服端,在接收到來自該驗證伺服端的該驗證成功回覆時,將該交易資料傳送至一交易執行伺服端;(M)藉由該網銀伺服端,接收一來自該交易執行伺服端且指示出該金融交易完成的交易結果,並將該交易結果傳送至該行動裝置;及(N)藉由該行動裝置,在接收到來自該網銀伺服端的該交易結果時,顯示該交易結果。The mobile internet banking transaction authentication method according to claim 4, after step (K), further includes the following steps: (L) When the online banking server receives a successful response from the verification server, it will The transaction data is transmitted to a transaction execution server; (M) the online banking server receives a transaction result from the transaction execution server and indicates the completion of the financial transaction, and transmits the transaction result to the mobile device ; And (N) using the mobile device to display the transaction result when receiving the transaction result from the online banking server. 如請求項1所述的行動網銀交易認證方法,其中:在步驟(C)中,該網銀伺服端在該雜湊值及該識別碼被傳送至該行動裝置後,還持續傳送一對應於該認證請求的輪詢至該認證伺服端;及在步驟(F)中,該認證伺服端係回應於新近來自該網銀伺服端的該輪詢,將該成功認證回覆傳送至該網銀伺服端。The mobile internet banking transaction authentication method according to claim 1, wherein in step (C), the online banking server continues to transmit a corresponding value to the authentication after the hash value and the identification code are transmitted to the mobile device. The requested polling is to the authentication server; and in step (F), the authentication server responds to the poll from the online banking server recently, and sends the successful authentication response to the online banking server. 一種行動網銀交易認證系統,包含:一行動裝置,安裝有一行動安控應用程式;一讀卡機,電連接該行動裝置,並插有一電子卡,該電子卡以接觸式電連接該讀卡機並儲存有對應於一特定客戶的憑證資料;一網銀伺服端;及一認證伺服端,連接該網銀伺服端;其中,當該網銀伺服端接收到一來自該行動裝置且相關於一特定帳戶之金融交易並包含交易資料的交易請求時,該網銀伺服端一包含該交易資料的認證請求傳送至該認證伺服端;其中,當該認證伺服端接收到來自該網銀伺服端的該認證請求時,該認證伺服端利用一預定雜湊演算法,根據該交易資料產生一雜湊值及一唯一對應於該雜湊值的識別碼,並儲存該雜湊值及該識別碼,且將該雜湊值及該識別碼傳送至該網銀伺服端;其中,當該網銀伺服端接收到來自該認證伺服端的該雜湊值及該識別碼時,該網銀伺服端將所接收到的該雜湊值及該識別碼傳送至該行動裝置;其中,當該行動裝置接收到來自該網銀伺服端的該雜湊值及該識別碼時,開始執行該行動安控應用程式,以建立與該認證伺服端的連結並使該讀卡機讀取該電子卡所儲存的該憑證資料,並將所接收到的該雜湊值與該識別碼以及來自該讀卡機的該憑證資料傳送至該認證伺服端;其中,當該認證伺服端接收到來自該行動裝置的該雜湊值、該識別碼及該憑證資料後且判定出所接收的該雜湊值及該識別碼分別相符於所儲存的該雜湊值及該識別碼時,該認證伺服端將該交易資料傳送至該行動裝置;及其中,當該認證伺服端接收到一來自該行動裝置且指示出該交易資料正確無誤的通知時,該認證伺服端將所接收的該雜湊值、該識別碼及該憑證資料打包簽章以獲得簽章資料,並將一對應於該認證請求且包含該簽章資料與該憑證資料的成功認證回覆傳送至該網銀伺服端。A mobile online banking transaction authentication system includes: a mobile device installed with a mobile security control application; a card reader that is electrically connected to the mobile device and an electronic card that is electrically connected to the card reader by contact type And stores credential data corresponding to a specific client; an online banking server; and an authentication server connected to the online banking server; wherein, when the online banking server receives a message from the mobile device and related to a specific account When a financial transaction includes a transaction request including transaction information, an authentication request including the transaction information is transmitted from the online banking server to the authentication server; wherein, when the authentication server receives the authentication request from the online banking server, the authentication request The authentication server uses a predetermined hash algorithm to generate a hash value and an identification code unique to the hash value according to the transaction data, and stores the hash value and the identification code, and transmits the hash value and the identification code To the online banking server; wherein, when the online banking server receives the hash value and the identification code from the authentication server The online banking server sends the received hash value and the identification code to the mobile device; wherein when the mobile device receives the hash value and the identification code from the online banking server, it starts to execute the mobile security control An application to establish a connection with the authentication server and cause the card reader to read the credential data stored in the electronic card, and to receive the hash value and the identification code and the The certificate data is transmitted to the authentication server; after the authentication server receives the hash value, the identification code, and the certificate data from the mobile device, and determines that the received hash value and the identification code respectively agree with When the hash value and the identification code are stored, the authentication server transmits the transaction data to the mobile device; and, when the authentication server receives a transaction data from the mobile device and indicates that the transaction data is correct When notifying, the authentication server packs and signs the hash value, the identification code, and the voucher information received to obtain signature data, and assigns a And signature request including the document data and the information on the successful authentication reply transmitted to the online banking server end. 如請求項7所述的行動網銀交易認證系統,其中,該行動裝置在連結該網銀伺服端所提供的一網銀網頁連結且登入該特定帳戶後,經由人為操作,產生該交易請求,並將該交易請求傳送至該網銀伺服端。The mobile online banking transaction authentication system according to claim 7, wherein the mobile device generates the transaction request through human operation after linking to an online banking web page link provided by the online banking server and logging into the specific account. The transaction request is sent to the online banking server. 如請求項7所述的行動網銀交易認證系統,其中,該行動裝置在接收到來自該認證伺服端的該交易資料時,經由該行動安控應用程式的執行,顯示該交易資料,且經由人為操作產生該通知,並將該通知傳送至該認證伺服端。The mobile online banking transaction authentication system according to claim 7, wherein when the mobile device receives the transaction data from the authentication server, the mobile device displays the transaction data through the execution of the mobile security control application and performs the operation manually. Generate the notification, and send the notification to the authentication server. 如請求項7所述的行動網銀交易認證系統,還包含一連接該網銀伺服端並儲存有多筆分別對應於多個不同客戶的參考憑證資料的驗證伺服端,其中:該網銀伺服端在接收到來自該認證伺服端的該成功認證回覆時,對於該金融交易,產生一包含所接收到的該簽章資料與該憑證資料、及該交易請求所包含的該交易資料的驗證請求,並將該驗證請求傳送至該驗證伺服端;該驗證伺服端在接收到來自該網銀伺服端的該驗證請求後且判定出該憑證資料相符於所儲存的該等筆參考憑證資料其中一筆參考憑證資料時,利用該預定雜湊演算法,根據該交易資料所獲得一雜湊值,並經由判定所獲得的該雜湊值是否相符於該簽章結果所包含的該雜湊值,判定該簽章資料是否被成功驗證;及該驗證伺服端在判定出該簽章資料被成功驗證時,將一回應於該驗證請求的驗證成功回覆傳送至該網銀伺服端。The mobile online banking transaction authentication system according to claim 7, further comprising a verification server connected to the online banking server and storing a plurality of reference credentials corresponding to different customers, wherein: the online banking server is receiving Upon the successful authentication reply from the authentication server, for the financial transaction, a verification request including the signature data and the voucher data received, and the transaction data included in the transaction request is generated, and the The verification request is sent to the verification server; when the verification server receives the verification request from the online banking server and determines that the voucher data matches one of the reference voucher data stored, it uses The predetermined hash algorithm obtains a hash value according to the transaction data, and determines whether the signature data is successfully verified by determining whether the obtained hash value matches the hash value included in the signature result; and When the verification server determines that the signature data is successfully verified, it will respond to the verification request with a successful verification. The reply is sent to the online banking server. 如請求項10所述的行動網銀交易認證系統,其中:該網銀伺服端在接收到來自該驗證伺服端的該驗證成功回覆時,將該交易資料傳送至一交易執行伺服端;該網銀伺服端接收到一來自該交易執行伺服端且指示出該金融交易完成的交易結果,並將該交易結果傳送至該行動裝置;及該行動裝置在接收到來自該網銀伺服端的該交易結果時,顯示該交易結果。The mobile online banking transaction authentication system according to claim 10, wherein: the online banking server sends the transaction data to a transaction execution server when receiving the verification success response from the verification server; the online banking server receives To a transaction result from the transaction execution server and indicating completion of the financial transaction, and transmitting the transaction result to the mobile device; and the mobile device displaying the transaction when receiving the transaction result from the online banking server result. 如請求項7所述的行動網銀交易認證系統,其中:該網銀伺服端在該雜湊值及該識別碼被傳送至該行動裝置後,還持續傳送一對應於該認證請求的輪詢至該認證伺服端;及該認證伺服端係回應於新近來自該網銀伺服端的該輪詢,將該成功認證回覆傳送至該網銀伺服端。The mobile online banking transaction authentication system according to claim 7, wherein the online banking server continuously transmits a poll corresponding to the authentication request to the authentication after the hash value and the identification code are transmitted to the mobile device. The server; and the authentication server responds to the poll from the online banking server recently, and sends the successful authentication response to the online banking server.
TW106127725A 2017-08-16 2017-08-16 Mobile internet banking transaction authentication method and system TWI659374B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW106127725A TWI659374B (en) 2017-08-16 2017-08-16 Mobile internet banking transaction authentication method and system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW106127725A TWI659374B (en) 2017-08-16 2017-08-16 Mobile internet banking transaction authentication method and system

Publications (2)

Publication Number Publication Date
TW201911169A TW201911169A (en) 2019-03-16
TWI659374B true TWI659374B (en) 2019-05-11

Family

ID=66590211

Family Applications (1)

Application Number Title Priority Date Filing Date
TW106127725A TWI659374B (en) 2017-08-16 2017-08-16 Mobile internet banking transaction authentication method and system

Country Status (1)

Country Link
TW (1) TWI659374B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102118251A (en) * 2011-01-24 2011-07-06 郑州信大捷安信息技术有限公司 Security authentication method for internet banking remote payment based on multi-interface intelligent safety card
TW201135619A (en) * 2010-04-07 2011-10-16 Era Comm Co Ltd Electronic transaction method and system utilizing QR code
CN102737311A (en) * 2012-05-11 2012-10-17 福建联迪商用设备有限公司 Internet bank security authentication method and system
US20130166410A1 (en) * 2011-12-23 2013-06-27 Kt Corporation Payment agency system, user terminal and market server
TW201423626A (en) * 2012-12-13 2014-06-16 Neweb Technologies Co Ltd Cloud trading fulfillment and trust management system for prepaid goods and services and operating method thereof
US20150142670A1 (en) * 2013-11-20 2015-05-21 Sue Zloth Systems and methods for software based encryption
TW201523471A (en) * 2013-09-30 2015-06-16 Apple Inc Online payments using a secure element of an electronic device
US20150302391A1 (en) * 2012-11-16 2015-10-22 Mobile Payment Solutions Holding Nordic Ab Method for making a payment using a portable communication device

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW201135619A (en) * 2010-04-07 2011-10-16 Era Comm Co Ltd Electronic transaction method and system utilizing QR code
CN102118251A (en) * 2011-01-24 2011-07-06 郑州信大捷安信息技术有限公司 Security authentication method for internet banking remote payment based on multi-interface intelligent safety card
US20130166410A1 (en) * 2011-12-23 2013-06-27 Kt Corporation Payment agency system, user terminal and market server
CN102737311A (en) * 2012-05-11 2012-10-17 福建联迪商用设备有限公司 Internet bank security authentication method and system
US20150302391A1 (en) * 2012-11-16 2015-10-22 Mobile Payment Solutions Holding Nordic Ab Method for making a payment using a portable communication device
TW201423626A (en) * 2012-12-13 2014-06-16 Neweb Technologies Co Ltd Cloud trading fulfillment and trust management system for prepaid goods and services and operating method thereof
TW201523471A (en) * 2013-09-30 2015-06-16 Apple Inc Online payments using a secure element of an electronic device
US20150142670A1 (en) * 2013-11-20 2015-05-21 Sue Zloth Systems and methods for software based encryption

Also Published As

Publication number Publication date
TW201911169A (en) 2019-03-16

Similar Documents

Publication Publication Date Title
US11106476B2 (en) Helper software developer kit for native device hybrid applications
RU2648944C2 (en) Methods, devices, and systems for secure provisioning, transmission and authentication of payment data
US9953319B2 (en) Payment system
KR20020039339A (en) Methods and apparatus for conducting electronic transactions
US11861600B2 (en) Systems and methods for providing card interactions
US10395244B1 (en) Systems and methods for providing card interactions
RU2724351C2 (en) Universal access to electronic wallet
TWI811323B (en) Mobile payment system and method using a mobile payment device without an installed application
US20230222482A1 (en) Device account activation
US11868988B2 (en) Devices and methods for selective contactless communication
TWI644276B (en) System for opening account and applying mobile banking account online and method thereof
US11283605B2 (en) Electronic verification systems and methods
KR101115511B1 (en) Authentication system and method using smart card web server
RU2644132C2 (en) Method, system and device for checking validation of transaction process
TWM539668U (en) System for opening account online and applying for mobile banking
TWI659374B (en) Mobile internet banking transaction authentication method and system
TWM591228U (en) Offline mobile trading system
TWM587315U (en) Electronic payment service system and credit card service system
TWM554592U (en) Authentication system of mobile banking transaction
US20240144239A1 (en) Devices and methods for selective contactless communication
JP2013101496A (en) Electronic commerce support system