TWI668672B - Method Of Creating And Recovering Digital Wallet - Google Patents
Method Of Creating And Recovering Digital Wallet Download PDFInfo
- Publication number
- TWI668672B TWI668672B TW107104327A TW107104327A TWI668672B TW I668672 B TWI668672 B TW I668672B TW 107104327 A TW107104327 A TW 107104327A TW 107104327 A TW107104327 A TW 107104327A TW I668672 B TWI668672 B TW I668672B
- Authority
- TW
- Taiwan
- Prior art keywords
- electronic wallet
- security chip
- storage device
- seed key
- replacement
- Prior art date
Links
- 238000000034 method Methods 0.000 title claims abstract description 36
- 230000006855 networking Effects 0.000 claims abstract description 18
- 230000005540 biological transmission Effects 0.000 claims abstract description 17
- 238000004891 communication Methods 0.000 claims abstract description 16
- 230000009467 reduction Effects 0.000 claims description 12
- 238000001514 detection method Methods 0.000 claims description 4
- 230000000007 visual effect Effects 0.000 claims description 3
- 230000021317 sensory perception Effects 0.000 claims description 2
- 230000001343 mnemonic effect Effects 0.000 description 29
- 238000012795 verification Methods 0.000 description 3
- 230000009471 action Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000007123 defense Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- PCHJSUWPFVWCPO-UHFFFAOYSA-N gold Chemical compound [Au] PCHJSUWPFVWCPO-UHFFFAOYSA-N 0.000 description 1
- 239000010931 gold Substances 0.000 description 1
- 229910052737 gold Inorganic materials 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000003825 pressing Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 210000003462 vein Anatomy 0.000 description 1
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
本發明電子錢包的產生及還原方法,使用者透過儲存裝置連接於連網裝置,儲存裝置存放能夠確定進行交易數位資產步驟的密鑰且包含資訊傳達單元、操作介面、處理器及安全晶片,包含:連網裝置產生建立電子錢包的建立請求,建立請求經由處理器傳送至安全晶片;安全晶片依據建立請求確認內部為無電子錢包的狀態,便由安全晶片內建立電子錢包;處理器要求安全晶片產生還原代號,並透過資訊傳達單元將還原代號提供給使用者記錄備份;連網裝置取得位於電子錢包內的加密資產訊息,並對加密資產訊息進行解譯後建立公開電子錢包資訊。In the method for generating and restoring the electronic wallet of the present invention, the user is connected to the networked device through the storage device, and the storage device stores a key capable of determining the step of performing the digital asset transaction and includes the information communication unit, the operation interface, the processor and the security chip, including The networking device generates a setup request for establishing an electronic wallet, and the establishment request is transmitted to the security chip via the processor; the security chip confirms that the internal is an electronic wallet according to the establishment request, and the electronic wallet is established by the security chip; the processor requests the security chip The restoration code is generated, and the restoration code is provided to the user to record the backup through the information transmission unit; the network device obtains the encrypted asset information located in the electronic wallet, and interprets the encrypted asset information to establish the public electronic wallet information.
Description
本發明有關於一種電子錢包的產生及還原方法,尤指一種驗證過程中無須透過連網裝置,但須透過使用者手抄紀錄特定資訊的環節,始能夠啟動後續其他驗證或傳輸程序的方法。The invention relates to a method for generating and restoring an electronic wallet, in particular, a method for verifying that a subsequent step of recording a specific information through a user's handwriting, and starting a subsequent verification or transmission process.
西元後1960年代晚期,由於美國及蘇聯之間的各種領域攻防戰,使得網際網路(internet)出現,始於保障國家安全的用途上。In the late 1960s, due to various fields of attack and defense between the United States and the Soviet Union, the Internet appeared and began to protect national security.
時至今日,網際網路作為人人能夠透過可連線於網際網路的電子產品,用於廣告行銷、買賣虛擬或實際產品、操作金融資源、新聞媒體、教育學習、聯繫人與人之間感情的工具。Today, the Internet as a network of people can connect to the Internet through electronic products, for advertising, trading virtual or actual products, operating financial resources, news media, education and learning, contacts and people A tool for feelings.
而越來越多使用網際網路的人出現了保護個人聯絡網、隱私及財產資料的意識及觀念,同時個人電子產品上的保障隱私也受到眾多使用者或開發人員的關注,而小至為了保障自己個人的權力/權利,或特定團體中會員的權力/權利,普遍開始使用私人帳號、私人密碼、私人的電子產品等。And more and more people using the Internet have awareness and ideas to protect personal networks, privacy and property information, while privacy on personal electronic products is also being watched by many users or developers. Protecting your own personal rights/rights, or the rights/rights of members in a particular group, generally begins with the use of private accounts, private passwords, private electronic products, and so on.
而對應於前述多種位於網際網路上須保障的需求,國家、政府、媒體、線上商店等持續地進行研發並購買、使用能夠保護消費者或登錄會員人資料的數位系統或硬體裝備。Corresponding to the above-mentioned various needs to be secured on the Internet, the state, government, media, online stores, etc. continue to research and develop and use digital systems or hardware equipment that can protect consumers or log in member information.
據此,保護消費者或登錄會員人資料的數位系統或硬體裝備如何以數位的方式,進行驗證當下線上操作人是否為持有人本人,將視為一大課題。Accordingly, how to digitally protect the consumer or log in to the member's data system or hardware equipment to verify whether the online operator is the holder himself or not will be regarded as a major issue.
本發明之主要目的在於,於一儲存產品的內部建立一個私人的且能夠確定進行交易數位資產資料的密鑰的作業,並將建立完成的密鑰資料傳送至可連上網路的電子產品中,使用者便能夠於電子產品連線上網路時,同時將儲存產品連接於電子產品,並操作電子產品中的密鑰資料於網路線上進行個人數位資產的交易行為。The main object of the present invention is to establish a private operation inside a stored product that can determine the key for trading digital asset data, and transmit the completed key data to the electronic product that can be connected to the network. The user can connect the stored product to the electronic product while the electronic product is connected to the network, and operate the key data in the electronic product to conduct the transaction of the personal digital asset on the network line.
本發明之次要目的在於,儲存產品於傳送一密鑰資料進入可連上網路的電子產品之前,使用者須備分紀錄儲存產品顯示的特定資訊(Mnemonic),作為驗證當下持有儲存產品者與持有電子產品者為同一人之手段,而驗證的過程並不經過電子產品,避免持有儲存產品者與持有電子產品者並非同一人的情況。A secondary object of the present invention is that the user must prepare a record to store the specific information displayed by the product (Mnemonic) before transmitting the key data to the electronic product that can be connected to the network, as the verification of the current storage product. The method of being the same person as the person holding the electronic product, and the process of verification does not pass through the electronic product, and the situation in which the person who holds the stored product is not the same as the person who holds the electronic product is avoided.
本發明之又一目的在於,使用者遺失或損壞可連上網路的電子產品、儲存產品的其中之一的情況下,透過舊有電子產品與新的儲存產品、或新的電子產品與舊的儲存產品、或新的電子產品與新的儲存產品彼此之間重新對應連線,使用者便能夠運用個人持有的特定資訊(Mnemonic),於電子產品及/或儲存產品內部重新還原其個人的密鑰的作業。Yet another object of the present invention is to allow a user to lose or damage one of the electronic products and storage products that can be connected to the network, through the old electronic products and the new storage products, or the new electronic products and the old ones. The storage product, or the new electronic product and the new storage product are re-connected to each other, and the user can use the specific information held by the individual (Mnemonic) to restore the personal product within the electronic product and/or the stored product. The job of the key.
為達上述目的,本發明電子錢包的產生方法,使用者透過一封閉式的儲存裝置能夠連接於一連網裝置,上述儲存裝置存放一能夠確認進行交易數位資產步驟的密鑰,且上述儲存裝置包含一資訊傳達單元、一操作介面、一處理器以及一安全晶片,上述方法包含:上述連網裝置產生一建立電子錢包的請求,上述建立請求經由上述處理器傳送至上述安全晶片,上述安全晶片依據上述建立請求進行內部狀態檢測,並確認內部為一無電子錢包的狀態後,由上述安全晶片內建立一電子錢包;上述處理器要求上述安全晶片產生一還原代號,並透過上述資訊傳達單元將上述還原代號提供給一使用者記錄備份;上述連網裝置取得一位於上述電子錢包內的加密資產訊息,並對上述加密資產訊息進行解譯後建立一公開電子錢包資訊。To achieve the above object, the method for generating an electronic wallet of the present invention can be connected to a network device through a closed storage device, wherein the storage device stores a key capable of confirming the step of performing a digital asset transaction, and the storage device includes An information communication unit, an operation interface, a processor, and a security chip, wherein the method includes: the network connection device generates a request for establishing an electronic wallet, and the establishment request is transmitted to the security chip via the processor, where the security chip is based on After the establishing request performs internal state detection and confirms that the internal state is a state without an electronic wallet, an electronic wallet is established in the security chip; the processor requests the security chip to generate a restoration code, and the above information is transmitted through the information transmission unit. The restoration code is provided to a user to record a backup; the network connection device obtains an encrypted asset information located in the electronic wallet, and interprets the encrypted asset information to establish a public electronic wallet information.
上述還原代號透過上述資訊傳達單元提示於上述儲存裝置的表面上,由使用者以一觸摸、聆聽、目視等感官知覺接收並記錄備份上述還原代號。The restoration code is presented on the surface of the storage device through the information transmission unit, and the user receives and records the backup restoration code by a sensory perception such as touch, listening, and visual observation.
再者,上述操作介面取得一由上述使用者輸入的紀錄完成的指示後,上述儲存裝置確認上述使用者已將上述還原代號紀錄備份完成。Moreover, after the operation interface obtains an instruction to complete the record input by the user, the storage device confirms that the user has completed the backup of the restoration code record.
一種電子錢包的還原方法,於一第一較佳可行實施例中,使用者透過一儲存裝置能夠連接於一連網裝置,上述儲存裝置存放一能夠確定進行交易數位資產步驟的密鑰,且上述儲存裝置包含一資訊傳達單元、一操作介面、一處理器以及一安全晶片,上述方法包含:上述連網裝置依據一還原電子錢包的還原請求取得上述還原代號,並由上述還原代號產生一還原種子金鑰;上述連網裝置加密上述還原種子金鑰形成一加密種子金鑰,並傳輸上述加密種子金鑰至一替換儲存裝置的替換安全晶片,由上述替換安全晶片將上述加密種子金鑰解密還原為上述還原種子金鑰;上述替換安全晶片傳送上述電子錢包的資訊至上述連網裝置,使得上述連網裝置建立有一更新且公開電子錢包資訊。A method for restoring an electronic wallet, in a first preferred embodiment, the user can be connected to a network device through a storage device, and the storage device stores a key capable of determining a step of performing a digital asset transaction, and the storing The device includes an information communication unit, an operation interface, a processor, and a security chip. The method includes: the network connection device obtains the reduction code according to a restore request of the restore electronic wallet, and generates a restored seed gold by the reduction code. a key; the network device encrypts the restored seed key to form an encrypted seed key, and transmits the encrypted seed key to a replacement security chip of a replacement storage device, and decrypts the encrypted seed key by the replacement security chip to And the replacing the security key to transmit the information of the electronic wallet to the network connection device, so that the network connection device establishes an updated and public electronic wallet information.
而上述還原錢包的還原請求是由上述使用者操作上述連網裝置產生,上述連網裝置接收到上述還原錢包的還原請求後,提示上述使用者一輸入上述還原代號的要求。And the restoring request of the restore wallet is generated by the user operating the network connection device, and after receiving the restore request of the restore wallet, the network connection device prompts the user to input the request for the restore code.
又,上述連網裝置依據上述還原種子金鑰產生一電子簽章,並將上述加密種子金鑰以及電子簽章傳送至上述替換安全晶片,上述替換安全晶片解密上述加密種子金鑰還原為上述還原種子金鑰,並由上述替換安全晶片驗證上述還原種子金鑰以及電子簽章。Moreover, the network connecting device generates an electronic signature according to the restored seed key, and transmits the encrypted seed key and the electronic signature to the replacement security chip, and the replacement security chip decrypts the encrypted seed key to restore the restored The seed key, and the above-mentioned restored seed key and the electronic signature are verified by the above replacement security chip.
另外,於一另一較佳可行實施例中,一種電子錢包的產生及還原方法,使用者透過一封閉式儲存裝置連接於一第一連網裝置,上述儲存裝置存放一能夠確認進行交易數位資產步驟的密鑰,且上述儲存裝置包含:一資訊傳達單元、一操作介面、一處理器以及一安全晶片,上述方法包含:In another preferred embodiment, a method for generating and restoring an electronic wallet is connected to a first networked device through a closed storage device, and the storage device stores a digital asset capable of confirming transaction The key of the step, and the storage device includes: an information communication unit, an operation interface, a processor, and a security chip, and the method includes:
上述第一連網裝置產生一建立電子錢包的建立請求,上述建立請求經由上述處理器傳送至上述安全晶片;上述安全晶片依據上述建立請求進行內部狀態檢測,並確認內部為一無電子錢包的狀態後,由上述安全晶片內建立一電子錢包;上述處理器要求上述安全晶片產生一還原代號,並透過上述資訊傳達單元將上述還原代號提供給一使用者記錄備份;上述第一連網裝置取得一位於上述電子錢包內的加密資產訊息,並對上述加密資產訊息進行解譯後建立一公開電子錢包資訊;一第二連網裝置依據一還原錢包的請求取得上述還原代號,並由上述還原代號產生一還原種子金鑰;The first network connection device generates a setup request for establishing an electronic wallet, and the establishment request is transmitted to the security chip via the processor; the security chip performs internal state detection according to the establishment request, and confirms that the internal is a state without an electronic wallet. Forming an electronic wallet from the security chip; the processor requires the security chip to generate a restore code, and providing the restore code to the user to record the backup through the information communication unit; the first network device obtains a An encrypted asset message located in the electronic wallet, and an open electronic wallet information is obtained by interpreting the encrypted asset information; and a second networking device obtains the restoration code according to a request for restoring the wallet, and is generated by the reduction code a restore seed key;
上述第二連網裝置將上述還原種子金鑰加密形成一加密種子金鑰,並傳輸至上述儲存裝置的安全晶片或一替換儲存裝置的一替換安全晶片的其中一者中,由上述安全晶片或替換安全晶片的其中之一將上述加密種子金鑰解密形成上述還原種子金鑰;The second networking device encrypts the restored seed key to form an encrypted seed key and transmits it to one of the security chip of the storage device or a replacement security device of the replacement storage device, by the security chip or Decrypting the encrypted seed key to form the above-mentioned restored seed key by replacing one of the security chips;
上述安全晶片或替換安全晶片之一將依據上述還原種子金鑰建立上述電子錢包,並將上述電子錢包的資料傳輸給至上述第二連網裝置,使得上述第二連網裝置產生一公開電子錢包資訊。One of the security chip or the replacement security chip will establish the electronic wallet according to the restored seed key, and transmit the data of the electronic wallet to the second networking device, so that the second networking device generates a public electronic wallet. News.
由前述說明可知,本發明的特點在於:持有個人密鑰儲存產品的使用者,能夠透過個人密鑰儲存產品內部的處理器及安全晶片,一一依循連網裝置、資訊傳達單元、操作介面分別顯示與要求輸入的步驟,完成新建立或重新還原個人電子錢包的資訊於連網裝置的內部。It can be seen from the foregoing description that the user of the personal key storage product can store the internal processor and the security chip through the personal key, and follow the networking device, the information communication unit, and the operation interface. The steps of displaying and requesting are respectively displayed, and the information of newly establishing or restoring the personal electronic wallet is completed inside the networked device.
其中,安全晶片傳送還原代號至資訊傳達單元,使得持有儲存裝置的密鑰實際擁有人能夠由資訊傳達單元得知並記錄還原代號,使用者透過將還原代號輸入於連網裝置的動作,供連網裝置將還原代號傳送至安全晶片是否無誤,安全晶片才會將電子錢包的資訊傳送至連網裝置,並完成建立或重新還原電子錢包的資訊於連網裝置的結果,同時作為避免受到盜取或遺失的可連上網電子產品被非電子錢包的擁有者操作的可能性,並驗證透過連網裝置提出要求建立或重新還原個人密鑰的是否為持有儲存產品的擁有者之手段。The security chip transmits the restoration code to the information transmission unit, so that the actual owner of the key holding the storage device can learn and record the restoration code by the information communication unit, and the user inputs the restoration code into the network device by using the restoration code. Whether the network device transmits the restoration code to the security chip is correct, and the security chip transmits the information of the electronic wallet to the networked device, and completes the result of establishing or re-recovering the information of the electronic wallet on the network device, and at the same time, avoiding theft. The possibility of taking or losing the Internet-connected electronic product that is operated by the owner of the non-electronic wallet, and verifying whether the request to establish or restore the personal key through the network device is a means of holding the owner of the stored product.
茲為便於更進一步對本發明之構造、使用及其特徵有更深一層明確、詳實的認識與瞭解,爰舉出較佳實施例,配合圖式詳細說明如下:In order to further clarify and understand the structure, the use and the features of the present invention, the preferred embodiment is described in detail with reference to the following drawings:
請參照圖1所示,使用者持有一儲存裝置2以及一連網裝置4,上述儲存裝置2內部存放有一電子錢包1,上述電子錢包1設為能夠於網際網路上或線上數位資訊交易系統上確定進行交易數位資產的密鑰,上述數位資產包含一帳戶資訊以及一用於顯示數位資產量的數目資訊,上述儲存裝置2的表面設有一資訊傳達單元20以及一操作介面21,且上述儲存裝置2的內部安裝有一處理器22以及一安全晶片23(SE),其中,上述資訊傳達單元20、操作介面21、處理器22、以及安全晶片23(SE)彼此電性連接,於一較佳可行實施例中,上述儲存裝置2可設為一USB、一記憶卡或一晶片卡等。Referring to FIG. 1 , the user holds a storage device 2 and a network device 4 . The storage device 2 stores an electronic wallet 1 . The electronic wallet 1 is configured to be on the Internet or online digital information transaction system. Determining a key for the transaction of the digital asset, wherein the digital asset includes an account information and a number of information for displaying the digital asset. The surface of the storage device 2 is provided with an information transmission unit 20 and an operation interface 21, and the storage device 2 is internally mounted with a processor 22 and a security chip 23 (SE), wherein the information communication unit 20, the operation interface 21, the processor 22, and the security chip 23 (SE) are electrically connected to each other, preferably In the embodiment, the storage device 2 can be set as a USB, a memory card or a chip card or the like.
而且,上述儲存裝置2能夠電性連接於上述連網裝置4,且當上述儲存裝置2與上述連網裝置4之間互相配對連線成功後,而能夠進一步地透過上述連網裝置4連線於網際網路上,而能夠買賣上述儲存裝置2中電子錢包1的數位資產資訊。Moreover, the storage device 2 can be electrically connected to the network connection device 4, and after the storage device 2 and the network connection device 4 are successfully connected to each other, the connection device 4 can be further connected through the network connection device 4. On the Internet, the digital asset information of the electronic wallet 1 in the storage device 2 can be bought and sold.
相反地,在上述儲存裝置2不電性連接於上述連網裝置4的情況下,上述儲存裝置2為一獨立封閉式的機構,單持有上述儲存裝置2是無法由外界主動取得上述儲存裝置2中電子錢包1的資訊,於一較佳可行實施例中,上述連網裝置4可設為一電腦裝置、一平板、一手機等。On the contrary, in the case where the storage device 2 is not electrically connected to the network device 4, the storage device 2 is a self-contained closed mechanism, and the storage device 2 cannot hold the storage device by the outside world. In a preferred embodiment, the network connection device 4 can be configured as a computer device, a tablet, a mobile phone, or the like.
因此,使用者必須在同時持有上述儲存裝置2與連網裝置4、以及讓上述連網裝置4連線上網的情況下,始能夠於上述連網裝置4中讀取同時使用上述儲存裝置2中密鑰的資訊,若持有單一上述儲存裝置2或上述連網裝置4其中之一的情況下,使用者皆無法進行於網際網路上買賣交易個人數位資產的行為。Therefore, the user must be able to read and use the storage device 2 in the network connection device 4 while holding the storage device 2 and the network connection device 4 and connecting the network connection device 4 to the Internet. If the information of the key is held by one of the storage devices 2 or the network device 4, the user cannot perform the transaction of buying and selling personal digital assets on the Internet.
請參照圖2所示,本發明電子錢包1的產生方法,主要包含有:Referring to FIG. 2, the method for generating the electronic wallet 1 of the present invention mainly includes:
使用者於上述連網裝置4輸入電子簽章(private key)及產生一電子錢包1的建立請求40,於一較佳可行實施例中,上述電子簽章(private key)可設為一個人密碼、個人電子簽名等,上述連網裝置4傳送上述建立請求40至上述儲存裝置2內部的處理器22,於一較佳可行實施例中,上述處理器22可設為一微記憶體控制單元(memory control unit,MCU)或微處理控制單元(microprocessor control unit,MCU),上述處理器22將上述建立請求40傳送至上述安全晶片23(SE),由上述安全晶片23(SE)確認上述安全晶片23(SE)的內部是否存在上述電子錢包1,若不存在上述電子錢包1,則由上述安全晶片23(SE)於其內部建立上述電子錢包1;The user enters an electronic key (private key) and generates an electronic wallet 1 establishment request 40. In a preferred embodiment, the private key can be set as a personal password. The network device 4 transmits the setup request 40 to the processor 22 inside the storage device 2. In a preferred embodiment, the processor 22 can be configured as a micro memory control unit (memory). a control unit (MCU) or a microprocessor control unit (MCU), wherein the processor 22 transmits the setup request 40 to the security chip 23 (SE), and the security chip 23 (SE) confirms the security chip 23 Whether the electronic wallet 1 exists inside the (SE), and if the electronic wallet 1 does not exist, the electronic wallet 1 is built in the security chip 23 (SE) therein;
其中,產生上述電子錢包1的建立請求40之強度可以視輸入的使用者密碼的數量或密碼設定的複雜度而定,密碼的數量越長或越複雜,則產生錢包的建立要請40的強度越強,例如:密碼的數量為十二位碼的產生錢包建立請求40的強度小於密碼的數量為十八位碼或二十四位碼;The strength of the establishment request 40 of the electronic wallet 1 may be determined according to the number of input user passwords or the complexity of the password setting. The longer or more complicated the number of passwords is, the more the strength of the wallet is required to be 40. Strong, for example, the number of passwords is a twelve-digit code. The generation of the wallet establishment request 40 is less than the number of passwords is an eighteen-digit code or a twenty-four-digit code;
上述處理器22對上述安全晶片23(SE)要求產生一還原代號24(mnemonic),上述安全晶片23(SE)將上述還原代號24(mnemonic)傳送至上述處理器22,再由上述資訊傳達單元20將上述還原代號24(mnemonic)提示予使用者記錄備份;The processor 22 is required to generate a restore code 24 (SEemonic) to the security chip 23 (SE), and the security chip 23 (SE) transmits the restore code 24 (mnemonic) to the processor 22, and then the information communication unit 20 prompting the above-mentioned reduction code 24 (mnemonic) to the user to record the backup;
其中,於一較佳可行實施例中,上述還原代號24(mnemonic)的類型可設為文字、圖形、數字、聲音等形式,且上述記錄備份的動作可設為手寫抄下、錄音、攝相、背誦等方式,而且,上述資訊傳達單元20尚能夠將上述還原代號24(mnemonic)顯示次數或顯示組數表示予使用者,供使用者正確紀錄備份完整的上述還原代號24(mnemonic),於一較佳可行實施例中,上述資訊傳達單元20可設為一顯示器、一螢幕、一喇叭等能夠傳達或顯示上述還原代號24(mnemonic)予使用者的機構;In a preferred embodiment, the type of the mnemonic 24 can be set to a text, a graphic, a number, a sound, or the like, and the recording backup operation can be set as a handwritten copy, a recording, and a photo. And the method of recitation, etc., and the above information transmitting unit 20 can also display the number of the mnemonic display times or the number of display groups to the user, so that the user can correctly record the complete restoration code 24 (mnemonic). In a preferred embodiment, the information communication unit 20 can be configured as a display, a screen, a speaker, or the like, capable of transmitting or displaying the mnemonic 24 to the user;
使用者使得上述連網裝置4得知已完成上述還原代號24(mnemonic)的備份動作,上述連網裝置4要求上述安全晶片23(SE)提供上述電子錢包1的資訊,上述安全晶片23(SE)傳送上述電子錢包1的資訊至上述連網裝置4;The user causes the network connection device 4 to learn that the backup operation of the restoration code 24 (mnemonic) has been completed, and the network connection device 4 requests the security chip 23 (SE) to provide the information of the electronic wallet 1, the security chip 23 (SE). Transmitting the information of the electronic wallet 1 to the network connection device 4;
其中,於一較佳可行實施例中,使用者透過上述操作介面21將上述還原代號24(mnemonic)輸入於上述連網裝置4,而讓上述連網裝置4接收到使用者將上述還原代號24(mnemonic)備分完成的訊息,於一較佳可行實施例中,上述操作介面21取得一由使用者輸入的紀錄完成的指示後,上述儲存裝置2確認使用者已將上述還原代號24(mnemonic)完成紀錄備分的動作;In a preferred embodiment, the user inputs the mnemonic 24 to the network device 4 through the operation interface 21, and causes the network device 4 to receive the restore code 24 from the user. (mnemonic) a message of completion, in a preferred embodiment, after the operation interface 21 obtains an instruction to complete the record input by the user, the storage device 2 confirms that the user has restored the restoration code 24 (mnemonic) ) the act of completing the record backup;
或者是,於另一較佳可行實施例中,上述連網裝置4透過傳送上述還原代號24(mnemonic)至上述安全晶片23(SE)後,來要求上述安全晶片23(SE)提供上述加密資產訊息10,上述安全晶片23(SE)接收並判定上述還原代號24(mnemonic)無誤後,才會將上述加密資產訊息10傳送至上述連網裝置4;Alternatively, in another preferred embodiment, the network connection device 4 requests the security chip 23 (SE) to provide the encrypted asset after transmitting the restoration code 24 (mnemonic) to the security chip 23 (SE). Message 10, the security chip 23 (SE) receives and determines that the restore code 24 (mnemonic) is correct, the encrypted asset message 10 is transmitted to the network device 4;
或者是,於又一較佳可行實施例中,上述使用者透過接觸感應上述操作介面21,讓上述連網裝置4接收到將上述還原代號24(mnemonic)備分完成的訊息,其中,於一較佳可行實施例中,上述接觸感應上述操作介面21的動作可設為透過紅外線或藍芽隔空感應、按壓按鍵接觸、觸控接觸、繪製特定圖形、掃描個人指紋或指靜脈分布、輸入特定聲音或個人嗓音等方式;Alternatively, in another preferred embodiment, the user touches the sensing interface 21 to cause the network device 4 to receive the message that the restoration code 24 (mnemonic) is completed, wherein In a preferred embodiment, the contact sensing the operation interface 21 may be performed by infrared or blue space sensing, pressing a button contact, touching a touch, drawing a specific graphic, scanning a personal fingerprint or a finger vein distribution, and inputting a specific Sound or personal voice;
另於另一較佳可行實施例中,上述接觸感應上述操作介面21的動作可設為一持續重複接觸的方式,上述操作介面21於收到每一次感應後,由上述處理器22將一或複數個上述還原代號24(mnemonic)表示於上述資訊傳達單元20,供使用者接收後記錄,使用者須持續地重複感應及紀錄的動作,上述資訊傳達單元20才會表示所有的還原代號24(mnemonic)的資訊;In another preferred embodiment, the action of the contact sensing the operation interface 21 can be set to a continuous repeated contact manner. After the operation interface 21 receives the sensor, the processor 22 performs the A plurality of the above-mentioned reduction codes 24 (mnemonic) are indicated in the above-mentioned information transmission unit 20 for the user to receive and record, and the user must continuously repeat the sensing and recording actions, and the information transmission unit 20 will represent all the restoration codes 24 ( Mnemonic) information;
於一較佳可行實施例中,上述資訊傳達單元20能夠於一預定的時間內表示一或複數個上述還原代號24(mnemonic)的資訊,預定時間結束後,所表示的上述還原代號24(mnemonic)的資訊即會消失不再表示出現;In a preferred embodiment, the information communication unit 20 can display one or more of the mnemonic information in a predetermined time. After the predetermined time is over, the restored code 24 (mnemonic) is represented. ) the information will disappear and no longer appear;
於再一較佳可行實施例中,上述電子錢包1的資訊受到上述安全晶片23(SE)的加密(encoding)演算形成一加密資產訊息10後,上述加密資訊息10才連同上述電子簽章被上述安全晶片23(SE)傳送至上述連網裝置4,而上述連網裝置4判斷使用者輸入的電子簽章(private key)無誤後,上述連網裝置4再解密(decoding)上述經過加密(encoding)演算的加密資產訊息10;In still another preferred embodiment, after the information of the electronic wallet 1 is encrypted by the security chip 23 (SE) to form an encrypted asset message 10, the encrypted information 10 is associated with the electronic signature. The security chip 23 (SE) is transmitted to the network connection device 4, and after the network connection device 4 determines that the private key input by the user is correct, the network connection device 4 decrypts the encrypted ( Encoding) cryptographic asset message 10;
上述連網裝置4建立並儲存一公開電子錢包資訊11。The network connection device 4 establishes and stores a public electronic wallet information 11.
據此,本發明還原代號24(mnemonic)被上述安全晶片23(SE)傳送至上述資訊傳達單元20,由上述資訊傳達單元20表示上述還原代號24(mnemonic)於上述儲存裝置2上,供使用者記錄備份,而非透過上述連網裝置4表示上述還原代號24(mnemonic),如此一來,便能夠避免受到盜取或遺失的連網裝置4被非連網裝置的擁有者或者是非電子錢包1的擁有者操作的可能性,甚至是上述儲存裝置2受到盜取或遺失的情況下,操作上述儲存裝置2的使用者也無法使用其內部電子錢包1的資訊。Accordingly, the mnemonic 24 of the present invention is transmitted to the information transmission unit 20 by the security chip 23 (SE), and the information transmission unit 20 indicates the mnemonic 24 on the storage device 2 for use. The backup record is recorded instead of the above-mentioned networked device 4 to indicate the above-mentioned mnemonic 24, so that the stolen or lost networked device 4 can be prevented from being the owner of the non-networked device or a non-electronic wallet. The possibility of owner operation of 1, even if the storage device 2 is stolen or lost, the user operating the storage device 2 cannot use the information of the internal electronic wallet 1.
此外,接續請參照圖3所示,本發明電子錢包1的還原方法的第一較佳可行實施例中,上述儲存裝置2受到使用者遺失、遭竊、損壞的情況,故以一新的替換儲存裝置3代替原先舊有的儲存裝置2,其中,上述替換儲存裝置3可設為一全新且內部不具有任何資料的替換儲存裝置3,或者是一曾經被他人使用過且內部存有他人資料的替換儲存裝置3,若為一內部存有他人資料的替換儲存裝置3,則使用者須先上述替換儲存裝置3進行重新設定格式化(reset),將原先內部存有他人的資料加以清除,才能夠進行接續還原作業使用。In addition, referring to FIG. 3, in the first preferred embodiment of the method for restoring the electronic wallet 1 of the present invention, the storage device 2 is replaced, stolen or damaged by the user, so that it is replaced by a new one. The storage device 3 replaces the original storage device 2, wherein the replacement storage device 3 can be set as a new replacement storage device 3 without any data inside, or a data that has been used by others and has other internal information. The replacement storage device 3, if it is a replacement storage device 3 in which another person's data is stored, the user must first reset the storage device 3 to reset the original data stored in the other party. Only able to use the connection restore operation.
上述替換儲存裝置3的表面設有一替換資訊傳達單元30以及一替換操作介面31,且上述替換儲存裝置3的內部安裝有一替換處理器32以及一替換安全晶片33(SE),其中,上述替換資訊傳達單元30、替換操作介面31、替換處理器32、以及替換安全晶片33(SE)彼此電性連接,上述還原方法主要包含有:The replacement storage device 3 is provided with a replacement information transmission unit 30 and a replacement operation interface 31, and the replacement storage device 3 is internally provided with a replacement processor 32 and a replacement security chip 33 (SE), wherein the replacement information is The communication unit 30, the replacement operation interface 31, the replacement processor 32, and the replacement security chip 33 (SE) are electrically connected to each other. The above reduction method mainly includes:
使用者指示一連網裝置4進行還原電子錢包1的動作後,上述連網裝置4接收到使用者一還原請求41後,上述連網裝置4提示使用者輸入一還原代號24(mnemonic)的要求,使用者接續於上述連網裝置4輸入上述還原代號24(mnemonic),其中,本發明提及的不同實施例中,還原代號24(mnemonic)皆為相同者;After the user instructs the network device 4 to perform the operation of restoring the electronic wallet 1, after the network connection device 4 receives the user-restore request 41, the network device 4 prompts the user to input a request for the mnemonic code 24 (mnemonic). The user continues to input the above-mentioned reduction code 24 (mnemonic) in the above-mentioned networking device 4, wherein in the different embodiments mentioned in the present invention, the restoration code 24 (mnemonic) is the same;
上述連網裝置4依據上述還原代號24(mnemonic)產生一還原種子金鑰60(seed key),上述連網裝置4喚醒上述替換安全晶片33(SE);The networking device 4 generates a seed key 60 according to the mnemonic code 24, and the network device 4 wakes up the replacement security chip 33 (SE);
使用者輸入一電子簽章(private key)後,上述連網裝置4確認上述電子簽章 (private key)無誤,才開始將上述還原種子金鑰60(seed key)執行加密動作,上述還原種子金鑰60(seed key)加密(encoding)演算後形成一加密種子金鑰61;After the user inputs an electronic key (private key), the network connection device 4 confirms that the private key is correct, and then starts to perform the encryption operation on the restored seed key 60 (seed key). Key 60 (seed key) encryption (encoding) calculus to form an encrypted seed key 61;
上述連網裝置4同時將上述還原代號24(mnemonic)及加密種子金鑰61傳送至上述替換安全晶片33(SE),其中,於一較佳可行實施例中,上述替換安全晶片33(SE)的內部預先建立有一非對稱加密演算法(install default SE keypair);The networking device 4 simultaneously transmits the mnemonic 24 and the encrypted seed key 61 to the replacement security chip 33 (SE). In a preferred embodiment, the replacement security chip 33 (SE) Internally, an asymmetric encryption algorithm (install default SE keypair) is established;
上述替換安全晶片33(SE)的非對稱加密演算法(install default SE keypair) 能夠用於解密(decoding)上述加密種子金鑰61,將上述加密種子金鑰61還原為上述還原種子金鑰60(seed key),並由上述非對稱加密演算法(install default SE keypair)驗證上述還原種子金鑰60是否無誤;The above-mentioned replacement security chip 33 (SE) asymmetric install key set can be used to decrypt the encrypted seed key 61, and the encrypted seed key 61 is restored to the restored seed key 60 ( Seed key), and verifying whether the restored seed key 60 is correct by the above install default SE keypair;
上述替換安全晶片33(SE)驗證上述還原種子金鑰60(seed key)無誤後,傳送上述電子錢包1的資訊至上述連網裝置4,使得上述連網裝置4的內部建立上述電子錢包1的資訊。After the replacement security chip 33 (SE) verifies that the seed key 60 is correct, the information of the electronic wallet 1 is transmitted to the network device 4, so that the inside of the network device 4 establishes the electronic wallet 1 News.
此外,請接續參照圖4及圖5所示,本發明電子錢包1的還原方法的第二及第三較佳可行實施例中,與前述圖2及圖3所示產生及還原方法之第一較佳可行實施例之不同之處在於:In addition, referring to FIG. 4 and FIG. 5, in the second and third preferred embodiments of the method for restoring the electronic wallet 1 of the present invention, the first method of generating and restoring the method shown in FIG. 2 and FIG. The preferred embodiments are different in that:
上述連網裝置4受到使用者遺失、遭竊、損壞的情況,遂本實施例將使用者原先持有的連網裝置4設為一第一連網裝置5,而使用者重新購買或備用的其他連網裝置4設為一第二連網裝置6,如圖4所示,使用者透過上述第一連網裝置5內部完成建立上述電子錢包1之後,原先舊有的第一連網裝置5被上述第二連網裝置6替代,如圖5所示,使用者以上述第二連網裝置6進行還原上述電子錢包1的作業。The network device 4 is lost, stolen or damaged by the user. In this embodiment, the network device 4 originally held by the user is set as a first network device 5, and the user re-purchases or spares. The other network connection device 4 is configured as a second network connection device 6. As shown in FIG. 4, after the user completes the establishment of the electronic wallet 1 through the interior of the first network connection device 5, the original first network connection device 5 is used. Instead of the second networking device 6, as shown in FIG. 5, the user performs the operation of restoring the electronic wallet 1 by the second networking device 6.
而且,由於本發明還原方法所使用的還原代號24皆為相同者,故即使舊有的第一連網裝置5被替換為其他的第二連網裝置6,不同的連網裝置4仍然能夠透過相同的還原代號24,產生出相同的還原種子金鑰60(seed key);Moreover, since the reduction code 24 used in the reduction method of the present invention is the same, even if the old first network device 5 is replaced with another second network device 6, the different network devices 4 can still pass through. The same restore code 24 produces the same restore seed key 60 (seed key);
而上述第二連網裝置6與替換儲存裝置3須重新確認配對連線後,上述第二連網裝置6才能夠同時將上述還原代號24(mnemonic)及加密種子金鑰61傳送至上述安全晶片23(SE)或者是另一替換安全晶片33中,如圖6所示。After the second networking device 6 and the replacement storage device 3 have to re-confirm the pairing connection, the second networking device 6 can simultaneously transmit the restoration code 24 (mnemonic) and the encrypted seed key 61 to the security chip. 23 (SE) or another replacement security chip 33, as shown in FIG.
此外,若使用者採用一曾經使用過且內部留有其他使用者資料之替換儲存裝置3,使用者須將上述替換儲存裝置3重新設定格式化(reset),清空上述替換儲存裝置3的內部資料後,始進行前述連網裝置4與替換儲存裝置3重新確認配對連線的作業。In addition, if the user uses a replacement storage device 3 that has been used and has other user data stored therein, the user must reset the replacement storage device 3 to empty the internal data of the replacement storage device 3. Thereafter, the aforementioned networking device 4 and the replacement storage device 3 are re-confirmed for the work of the pairing connection.
上述所舉實施例,僅用為方便說明本發明並非加以限制,在不離本發明精神範疇,熟悉此一行業技藝人士依本發明申請專利範圍及創作說明所作之各種簡易變形與修飾,均仍應含括於以下申請專利範圍中。The above-mentioned embodiments are not intended to limit the scope of the present invention, and various simple modifications and modifications made by those skilled in the art in accordance with the scope of the invention and the description of the invention should still be made without departing from the spirit of the invention. It is included in the scope of the following patent application.
1‧‧‧電子錢包1‧‧‧Electronic wallet
10‧‧‧加密資產訊息 10‧‧‧Encrypted Asset Information
11‧‧‧公開電子錢包資訊 11‧‧‧Open e-wallet information
2‧‧‧儲存裝置 2‧‧‧Storage device
20‧‧‧資訊傳達單元 20‧‧‧Information Communication Unit
21‧‧‧操作介面 21‧‧‧Operator interface
22‧‧‧處理器 22‧‧‧ Processor
23‧‧‧安全晶片 23‧‧‧Safety Wafer
24‧‧‧還原代號 24‧‧‧Restore code
3‧‧‧替換儲存裝置 3‧‧‧Replacement storage device
30‧‧‧替換資訊傳達單元 30‧‧‧Replacement of information communication unit
31‧‧‧替換操作介面 31‧‧‧Replacement interface
32‧‧‧替換處理器 32‧‧‧Replacement processor
33‧‧‧替換安全晶片 33‧‧‧Replace the security chip
4‧‧‧連網裝置 4‧‧‧Networking device
40‧‧‧建立請求 40‧‧‧Create request
41‧‧‧還原請求 41‧‧‧Restoration request
5‧‧‧第一連網裝置 5‧‧‧First networked device
6‧‧‧第二連網裝置 6‧‧‧Second networked device
60‧‧‧還原種子金鑰 60‧‧‧Restore seed key
61‧‧‧加密種子金鑰 61‧‧‧Encrypted seed key
圖1為連網裝置、儲存裝置與其他相關者的電性連接與資訊傳輸關係之示意圖; 圖2為電子錢包的產生方法的第一較佳可行實施例之步驟流程圖; 圖3為電子錢包的還原方法的第一較佳可行實施例之步驟流程圖; 圖4為電子錢包的產生方法的第二較佳可行實施例之步驟流程圖; 圖5為電子錢包的還原方法的第二較佳可行實施例之步驟流程圖; 圖6電子錢包的還原方法的第三較佳可行實施例之步驟流程圖。1 is a schematic diagram showing the relationship between the electrical connection and the information transmission between the network device and the storage device; FIG. 2 is a flow chart showing the steps of the first preferred embodiment of the method for generating the electronic wallet; FIG. 4 is a flow chart of steps of a second preferred embodiment of the method for generating an electronic wallet; FIG. 4 is a second preferred embodiment of the method for restoring an electronic wallet; Flowchart of the steps of a possible embodiment; FIG. 6 is a flow chart of the steps of a third preferred embodiment of the method for restoring an electronic wallet.
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW107104327A TWI668672B (en) | 2018-02-07 | 2018-02-07 | Method Of Creating And Recovering Digital Wallet |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW107104327A TWI668672B (en) | 2018-02-07 | 2018-02-07 | Method Of Creating And Recovering Digital Wallet |
Publications (2)
Publication Number | Publication Date |
---|---|
TWI668672B true TWI668672B (en) | 2019-08-11 |
TW201935423A TW201935423A (en) | 2019-09-01 |
Family
ID=68316488
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TW107104327A TWI668672B (en) | 2018-02-07 | 2018-02-07 | Method Of Creating And Recovering Digital Wallet |
Country Status (1)
Country | Link |
---|---|
TW (1) | TWI668672B (en) |
Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2008306521A (en) * | 2007-06-08 | 2008-12-18 | Softbank Mobile Corp | Mobile communication terminal |
TW201101779A (en) * | 2009-06-30 | 2011-01-01 | Simpleact Inc | Electronic wallet certification scheme and the method thereof |
US20110320356A1 (en) * | 2001-03-29 | 2011-12-29 | EBESTCARD, Ltd. | Card transaction system and method on on-line and/or off-line |
CN102568097A (en) * | 2010-12-08 | 2012-07-11 | 邵通 | Method and system for improving safety of electronic wallets |
TW201314609A (en) * | 2011-09-30 | 2013-04-01 | Fih Hong Kong Ltd | Electronic purse |
US20130185202A1 (en) * | 2002-07-30 | 2013-07-18 | Verifone, Inc. | System and method for mobile payment transactions |
CN103871160A (en) * | 2012-12-13 | 2014-06-18 | 中国电信股份有限公司 | Recharging method and system for E-wallet in RFID (Radio Frequency Identification Device)-UIM (User Identifier Module) card |
CN104134141A (en) * | 2014-08-11 | 2014-11-05 | 济南曼维信息科技有限公司 | E-wallet system payment method based on time synchronization |
EP3057047A1 (en) * | 2015-02-12 | 2016-08-17 | Samsung Electronics Co., Ltd. | Payment processing method and electronic device supporting the same |
-
2018
- 2018-02-07 TW TW107104327A patent/TWI668672B/en not_active IP Right Cessation
Patent Citations (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20110320356A1 (en) * | 2001-03-29 | 2011-12-29 | EBESTCARD, Ltd. | Card transaction system and method on on-line and/or off-line |
US20130185202A1 (en) * | 2002-07-30 | 2013-07-18 | Verifone, Inc. | System and method for mobile payment transactions |
JP2008306521A (en) * | 2007-06-08 | 2008-12-18 | Softbank Mobile Corp | Mobile communication terminal |
TW201101779A (en) * | 2009-06-30 | 2011-01-01 | Simpleact Inc | Electronic wallet certification scheme and the method thereof |
CN102568097A (en) * | 2010-12-08 | 2012-07-11 | 邵通 | Method and system for improving safety of electronic wallets |
TW201314609A (en) * | 2011-09-30 | 2013-04-01 | Fih Hong Kong Ltd | Electronic purse |
CN103871160A (en) * | 2012-12-13 | 2014-06-18 | 中国电信股份有限公司 | Recharging method and system for E-wallet in RFID (Radio Frequency Identification Device)-UIM (User Identifier Module) card |
CN104134141A (en) * | 2014-08-11 | 2014-11-05 | 济南曼维信息科技有限公司 | E-wallet system payment method based on time synchronization |
EP3057047A1 (en) * | 2015-02-12 | 2016-08-17 | Samsung Electronics Co., Ltd. | Payment processing method and electronic device supporting the same |
Also Published As
Publication number | Publication date |
---|---|
TW201935423A (en) | 2019-09-01 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US10680820B2 (en) | Method of creating and recovering digital wallet | |
JP6264674B2 (en) | Authentication system and method using QR code | |
US8220036B2 (en) | Establishing a secure channel with a human user | |
US20210367786A1 (en) | Server-assisted privacy protecting biometric comparison | |
CN110998574B (en) | Authentication terminal, authentication device, and authentication method and system using the same | |
US20180268415A1 (en) | Biometric information personal identity authenticating system and method using financial card information stored in mobile communication terminal | |
CN106575334A (en) | Accessing a secured software application | |
CN103905188B (en) | Utilize the method and intelligent cipher key equipment of intelligent cipher key equipment generation dynamic password | |
CN108229220B (en) | System and method for trusted presentation of information on untrusted user devices | |
EP3824592A1 (en) | Public-private key pair protected password manager | |
JP6121566B2 (en) | Passcode management method and apparatus | |
US20160057136A1 (en) | Computer network system with single-key quick secure login function | |
JP2018521559A (en) | Authentication method and authentication system | |
WO2008095346A1 (en) | Electronic signature method and electronic signature tool | |
US11128453B2 (en) | Visual image authentication | |
WO2017050152A1 (en) | Password security system adopted by mobile apparatus and secure password entering method thereof | |
KR102068041B1 (en) | Appratus and method of user authentication and digital signature using user's biometrics | |
JP2007200367A (en) | System for providing biometrics individual confirmation service | |
CN105809427B (en) | High-security mobile payment system and method | |
JP2006521762A (en) | Information transmission system and transmission method using N-dimensional information | |
TWI668672B (en) | Method Of Creating And Recovering Digital Wallet | |
WO2017091133A1 (en) | Method and system for secure storage of information | |
JP6466011B1 (en) | Electronic wallet generation and restoration method | |
JP2017021736A (en) | Authentication information output device, authentication information output program, and authentication system | |
KR20070044720A (en) | System and method for the one-time password's authentication by the human-face image |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
MM4A | Annulment or lapse of patent due to non-payment of fees |