TWI690869B - Message-based payment authentication method and authentication server - Google Patents

Message-based payment authentication method and authentication server Download PDF

Info

Publication number
TWI690869B
TWI690869B TW108108268A TW108108268A TWI690869B TW I690869 B TWI690869 B TW I690869B TW 108108268 A TW108108268 A TW 108108268A TW 108108268 A TW108108268 A TW 108108268A TW I690869 B TWI690869 B TW I690869B
Authority
TW
Taiwan
Prior art keywords
payment
electronic device
gate number
geographic location
network interface
Prior art date
Application number
TW108108268A
Other languages
Chinese (zh)
Other versions
TW202034243A (en
Inventor
余謝銘
高曉雯
朱國華
Original Assignee
中華電信股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中華電信股份有限公司 filed Critical 中華電信股份有限公司
Priority to TW108108268A priority Critical patent/TWI690869B/en
Application granted granted Critical
Publication of TWI690869B publication Critical patent/TWI690869B/en
Publication of TW202034243A publication Critical patent/TW202034243A/en

Links

Images

Abstract

The invention provides a message-based payment authentication method and authentication server. The method includes receiving a message-based payment authentication request from a wireless network interface, wherein the message-based payment authentication request corresponds to a product purchase operation performed by the payment phone number on a portal service website; retrieving a first location of an electronic device corresponding to the payment phone number and a second location of the wireless network interface in response to the message-based payment authentication request; in response to a device distance between the first location and the second location is less than a preset range, sending a payment confirmation message to the electronic device corresponding to the payment phone number according to the payment phone number; in response to the electronic device confirming the payment confirmation message, transmitting an authentication result to the portal service website to allow the product purchase operation.

Description

簡訊付款認證方法及認證伺服器SMS payment authentication method and authentication server

本發明是有關於一種付款認證方法及認證伺服器,且特別是有關於一種簡訊付款認證方法及認證伺服器。The invention relates to a payment authentication method and authentication server, and in particular to a short message payment authentication method and authentication server.

在現行的付款機制中,常會透過要求使用者輸入一次性密碼(One Time Password,OTP)的方式來驗證使用者是否為合法。然而,由於上述基於OTP進行的驗證機制不夠安全,目前存在使用電信帳單簡訊進行小額付款的機制,用以強化安全性並防堵詐騙。然而,在上述機制中,使用者需要預先設定一組付款密碼,且在每次付款時都要轉導至電信業者的網頁以輸入身分證號及付款密碼,並在回覆雙向簡訊認證方能完成付款流程。由此可知,上述機制的流程過於複雜,不易使用。In the current payment mechanism, users are often required to enter a One Time Password (OTP) to verify whether the user is legal. However, because the above-mentioned verification mechanism based on OTP is not secure enough, there is currently a mechanism for making small payments using telecommunication billing newsletters to strengthen security and prevent fraud. However, in the above mechanism, users need to set a set of payment passwords in advance, and each time they make a payment, they must be redirected to the telecom operator’s webpage to enter their ID number and payment password, which can be completed after replying to the two-way SMS authentication payment procedure. It can be seen that the flow of the above mechanism is too complicated to use.

有鑑於此,本發明提供一種簡訊付款認證方法及認證伺服器,其可用以解決上述技術問題。In view of this, the present invention provides an SMS payment authentication method and authentication server, which can be used to solve the above technical problems.

本發明提供一種簡訊付款認證方法,適於一認證伺服器,包括:接收來自一無線網路介面的一簡訊付款認證請求,其中簡訊付款認證請求對應於一付款門號在一入口服務網站上進行的一商品購買操作;反應於簡訊付款認證請求而取得對應於付款門號的一電子裝置的一第一地理位置,以及取得無線網路介面的一第二地理位置;反應於第一地理位置與第二地理位置之間的一裝置距離小於一預設範圍,依據付款門號發送一付款確認訊息至對應於付款門號的電子裝置;反應於電子裝置確認付款確認訊息,傳送一認證結果至入口服務網站以允許商品購買操作。The invention provides an SMS payment authentication method suitable for an authentication server, including: receiving an SMS payment authentication request from a wireless network interface, wherein the SMS payment authentication request corresponds to a payment gate number and is performed on an entrance service website A product purchase operation; acquiring a first geographic location of an electronic device corresponding to a payment gate number in response to a SMS payment authentication request, and acquiring a second geographic location of a wireless network interface; responding to the first geographic location and A device distance between the second geographic locations is less than a preset range, and a payment confirmation message is sent to the electronic device corresponding to the payment gate number according to the payment gate number; in response to the electronic device confirming the payment confirmation message, an authentication result is sent to the entrance Service websites to allow merchandise purchase operations.

本發明提供一種認證伺服器,其包括儲存電路及處理器。儲存電路儲存多個模組。處理器耦接儲存電路,存取前述模組以執行下列步驟:接收來自一無線網路介面的一簡訊付款認證請求,其中簡訊付款認證請求對應於一付款門號在一入口服務網站上進行的一商品購買操作;反應於簡訊付款認證請求而取得對應於付款門號的一電子裝置的一第一地理位置,以及取得無線網路介面的一第二地理位置;反應於第一地理位置與第二地理位置之間的一裝置距離小於一預設範圍,依據付款門號發送一付款確認訊息至對應於付款門號的電子裝置;反應於電子裝置確認付款確認訊息,傳送一認證結果至入口服務網站以允許商品購買操作。The invention provides an authentication server, which includes a storage circuit and a processor. The storage circuit stores multiple modules. The processor is coupled to the storage circuit and accesses the aforementioned module to perform the following steps: receive a SMS payment authentication request from a wireless network interface, where the SMS payment authentication request corresponds to a payment gate number made on an entry service website A product purchase operation; obtaining a first geographic location of an electronic device corresponding to the payment gate number and a second geographic location of the wireless network interface in response to the SMS payment authentication request; A device distance between two geographic locations is less than a preset range, a payment confirmation message is sent to the electronic device corresponding to the payment gate number according to the payment gate number; in response to the electronic device confirming the payment confirmation message, an authentication result is sent to the entrance service Website to allow merchandise purchase operations.

基於上述,本發明提出的簡訊付款認證方法及認證伺服器可在收到無線網路介面因應於電子裝置欲進行的商品購買操作而發出的簡訊付款認證請求之後,藉由判定電子裝置是否與無線網路介面足夠接近來認證電子裝置的使用者是否被允許進行上述商品購買操作。藉此,可達到強化簡訊付款之安全性,並簡化使用者採用簡訊進行付款流程的效果。Based on the above, the SMS payment authentication method and authentication server proposed by the present invention can determine whether the electronic device is wirelessly connected with the wireless device after receiving the SMS payment authentication request issued by the wireless network interface in response to the commodity purchase operation to be performed by the electronic device The network interface is close enough to authenticate whether the user of the electronic device is allowed to perform the above-mentioned commodity purchase operation. In this way, the security of the SMS payment can be strengthened, and the effect of simplifying the payment process by the user using SMS can be achieved.

為讓本發明的上述特徵和優點能更明顯易懂,下文特舉實施例,並配合所附圖式作詳細說明如下。In order to make the above-mentioned features and advantages of the present invention more obvious and understandable, the embodiments are specifically described below in conjunction with the accompanying drawings for detailed description as follows.

請參照圖1,其是依據本發明之一實施例繪示的簡訊付款認證系統示意圖。在圖1中,簡訊付款認證系統100包括認證伺服器10、電子裝置12及無線網路介面14。Please refer to FIG. 1, which is a schematic diagram of an SMS payment authentication system according to an embodiment of the present invention. In FIG. 1, the SMS payment authentication system 100 includes an authentication server 10, an electronic device 12 and a wireless network interface 14.

在本實施例中,電子裝置12例如是智慧型手機、具備用戶身分模組(Subscriber Identity Module,SIM)卡的平板電腦或是其他具有對應的門號的智慧型裝置,但可不限於此。In this embodiment, the electronic device 12 is, for example, a smart phone, a tablet computer with a Subscriber Identity Module (SIM) card, or other smart devices with corresponding door numbers, but it is not limited thereto.

無線網路介面14例如是由某個店家佈建於特定場域中的無線網路存取點,其可用以在電子裝置12(或是其他類似的智慧型裝置)連接時,令電子裝置12將店家所提供的入口服務網站顯示予電子裝置12的使用者觀看。在本發明的實施例中,上述入口服務網站例如可用於向使用者提供相關的商品販售服務,但本發明可不限於此。The wireless network interface 14 is, for example, a wireless network access point deployed by a store in a specific field, which can be used to enable the electronic device 12 when the electronic device 12 (or other similar smart device) is connected The portal service website provided by the store is displayed to the user of the electronic device 12 for viewing. In the embodiments of the present invention, the above-mentioned portal service website may be used to provide users with related merchandise sales services, but the present invention may not be limited to this.

在不同的實施例中,佈建有無線網路介面14的特定場域可具有固定位置(例如位於某個建築物中),或是屬於移動型場域(例如位於火車、高鐵等交通工具的車廂中),但本發明可不限於此。In different embodiments, the specific field where the wireless network interface 14 is deployed may have a fixed location (for example, in a building), or belong to a mobile field (for example, in a train, high-speed rail, etc. In the carriage), but the invention may not be limited to this.

在一實施例中,若電子裝置12的使用者欲透過無線網路介面14所提供的入口服務網站向上述店家購買商品,可透過在入口服務網站中輸入對應於電子裝置12的門號(下稱付款門號)的方式來進行付款。之後,入口服務網站可相應地產生簡訊付款認證請求TR,並將此簡訊付款認證請求TR發送至認證伺服器10。在此情況下,認證伺服器10可使用本發明的簡訊付款認證方法來基於簡訊付款認證請求TR來協助店家對使用進行認證,並在判定使用者通過認證時允許使用者進行上述商品購買操作。相關細節將在之後作進一步說明。In an embodiment, if the user of the electronic device 12 wants to purchase goods from the above-mentioned store through the portal service website provided by the wireless network interface 14, he can enter the door number corresponding to the electronic device 12 in the portal service website (below Called payment gate number). Afterwards, the portal service website may generate the SMS payment authentication request TR accordingly, and send the SMS payment authentication request TR to the authentication server 10. In this case, the authentication server 10 may use the SMS payment authentication method of the present invention to assist the store to authenticate the use based on the SMS payment authentication request TR, and allow the user to perform the above-mentioned commodity purchase operation when it is determined that the user has passed the authentication. Relevant details will be further explained later.

在圖1中,認證伺服器10包括儲存電路10a及處理器10b。儲存電路10a例如是任意型式的固定式或可移動式隨機存取記憶體(Random Access Memory,RAM)、唯讀記憶體(Read-Only Memory,ROM)、快閃記憶體(Flash memory)、硬碟或其他類似裝置或這些裝置的組合,而可用以記錄多個程式碼或模組。In FIG. 1, the authentication server 10 includes a storage circuit 10a and a processor 10b. The storage circuit 10a is, for example, any type of fixed or removable random access memory (RAM), read-only memory (ROM), flash memory (Flash memory), hard disk Disk or other similar devices or a combination of these devices can be used to record multiple codes or modules.

處理器10b耦接於儲存電路10a,並可為一般用途處理器、特殊用途處理器、傳統的處理器、數位訊號處理器、多個微處理器(microprocessor)、一個或多個結合數位訊號處理器核心的微處理器、控制器、微控制器、特殊應用集成電路(Application Specific Integrated Circuit,ASIC)、場可程式閘陣列電路(Field Programmable Gate Array,FPGA)、任何其他種類的積體電路、狀態機、基於進階精簡指令集機器(Advanced RISC Machine,ARM)的處理器以及類似品。The processor 10b is coupled to the storage circuit 10a, and may be a general-purpose processor, a special-purpose processor, a conventional processor, a digital signal processor, a plurality of microprocessors, one or more combined digital signal processing The core of the processor is the microprocessor, controller, microcontroller, application specific integrated circuit (ASIC), field programmable gate array (FPGA), any other kind of integrated circuit, State machine, processor based on Advanced Reduced Instruction Set Machine (Advanced RISC Machine, ARM) and similar products.

在本發明的實施例中,處理器10b可載入儲存電路10a中所記錄的程式碼或模組以執行本發明提出的簡訊付款認證方法,以下將作進一步說明。In the embodiment of the present invention, the processor 10b can load the program code or module recorded in the storage circuit 10a to execute the SMS payment authentication method proposed by the present invention, which will be further described below.

請參照圖2,其是依據本發明之一實施例繪示的圖像處理方法流程圖。本實施例的方法可由圖1的認證伺服器10執行,以下即搭配圖1所示的元件來說明圖2各步驟的細節。Please refer to FIG. 2, which is a flowchart of an image processing method according to an embodiment of the invention. The method of this embodiment may be performed by the authentication server 10 of FIG. 1, and the details of each step of FIG. 2 will be described below with the components shown in FIG. 1.

首先,在步驟S210中,處理器10b可接收來自無線網路介面14的簡訊付款認證請求TR。在本實施例中,簡訊付款認證請求TR對應於付款門號PN在入口服務網站上進行的商品購買操作。承先前實施例中所提及的,付款門號PN例如是電子裝置12的門號,而入口服務網站例如可在使用者選定欲購買的商品後,提供可讓使用者輸入付款門號PN的對話框,以讓使用者透過輸入付款門號PN的方式進行付款的操作。First, in step S210, the processor 10b may receive the SMS payment authentication request TR from the wireless network interface 14. In this embodiment, the SMS payment authentication request TR corresponds to the commodity purchase operation performed by the payment gate number PN on the portal service website. As mentioned in the previous embodiment, the payment gate number PN is, for example, the gate number of the electronic device 12, and the portal service website can provide, for example, a user who can input the payment gate number PN after the user selects the product to be purchased. The dialog box allows users to perform payment operations by entering the payment gate number PN.

在使用者於入口服務網站上輸入付款門號PN之後,入口服務網站可相應地產生簡訊付款認證請求TR。在不同的實施例中,簡訊付款認證請求TR可包括對應於上述商品購買操作的店家代號、商品明細、商品金額、付款門號PN、無線網路介面14的身分、購買時間的至少其中之一,但本發明可不限於此。此外,在入口服務網站接收付款門號PN之後,入口服務網站亦可先在本地端資料庫中寫入相關的訂單資料,再向認證伺服器10送出簡訊付款認證請求TR。並且,待認證伺服器10成功認證使用者之後,入口服務網站可據以進行後續服務和商品遞送等流程,但本發明可不限於此。After the user enters the payment gate number PN on the portal service website, the portal service website may generate the SMS payment authentication request TR accordingly. In different embodiments, the SMS payment authentication request TR may include at least one of the store code, product details, product amount, payment gate number PN, identity of the wireless network interface 14 and purchase time corresponding to the above-mentioned product purchase operation However, the present invention may not be limited to this. In addition, after the portal service website receives the payment gate number PN, the portal service website may first write the relevant order data in the local database, and then send the SMS payment authentication request TR to the authentication server 10. In addition, after the authentication server 10 successfully authenticates the user, the portal service website can perform processes such as subsequent services and product delivery, but the present invention is not limited thereto.

之後,在步驟S220中,處理器10b可反應於簡訊付款認證請求TR而取得對應於付款門號PN的電子裝置12的第一地理位置,以及取得無線網路介面14的第二地理位置。Then, in step S220, the processor 10b may obtain the first geographic location of the electronic device 12 corresponding to the payment gate number PN and the second geographic location of the wireless network interface 14 in response to the SMS payment authentication request TR.

在一實施例中,處理器10b可基於付款門號PN對電子裝置12進行基地台定位操作,以取得電子裝置12的第一地理位置,但本發明可不限於此。In an embodiment, the processor 10b may perform a base station positioning operation on the electronic device 12 based on the payment gate number PN to obtain the first geographic location of the electronic device 12, but the present invention may not be limited thereto.

在一實施例中,佈建有無線網路介面14的特定場域的位置類型(即,位於固定位置或屬於移動型場域)可預先記錄於認證伺服器10的資料庫中。當認證伺服器10收到來自無線網路介面14的簡訊付款認證請求TR時,可再基於無線網路介面14的位置類型而決定取得無線網路介面14的第二地理位置的方式。In an embodiment, the location type of the specific field where the wireless network interface 14 is deployed (ie, located in a fixed location or belonging to a mobile field) may be pre-recorded in the database of the authentication server 10. When the authentication server 10 receives the SMS payment authentication request TR from the wireless network interface 14, it may determine the method of obtaining the second geographic location of the wireless network interface 14 based on the location type of the wireless network interface 14.

舉例而言,若特定場域具有固定位置,則處理器10b可透過簡訊付款認證請求TR中的店家代號來查詢資料庫中所記載的店家地理位置資訊,以作為無線網路介面14的第二地理位置。或者,處理器10b亦可透過、無線網路介面14的身分來查詢資料庫中記載的無線網路介面14的地理位置資訊,以作為無線網路介面14的第二地理位置,但本發明可不限於此。For example, if the specific field has a fixed location, the processor 10b can query the store location information recorded in the database through the store code in the SMS payment authentication request TR to serve as the second of the wireless network interface 14 Geographic location. Alternatively, the processor 10b can also query the geographic location information of the wireless network interface 14 recorded in the database through the identity of the wireless network interface 14 as the second geographic location of the wireless network interface 14, but the present invention may not Limited to this.

舉另一例而言,若特定場域屬於移動型場域(例如火車車廂),則此特定場域提供給客戶的Wi-Fi服務需連接上網際網路,使得入口服務網站的店家才能將簡訊付款請求TR提交至認證伺服器10。在此情況下,處理器10b可透上述Wi-Fi服務連接至網際網路的介面來取得特定場域的位置(即,無線網路介面14的第二地理位置)。舉例而言,若特定場域的Wi-Fi係藉由電信公司之SIM卡連接至網際網路,則處理器10b可透過基地台定位操作來取得此SIM卡門號的地理位置資訊,以作為無線網路介面14的第二地理位置。此外,亦可透過安裝於無線網路介面14中的全球定位(GPS)模組,以直接地取得無線網路介面14的第二地理位置,但本發明可不限於此。As another example, if a specific field belongs to a mobile field (such as a train car), the Wi-Fi service provided to the customer in this specific field needs to be connected to the Internet, so that the shop of the portal service website can send SMS The payment request TR is submitted to the authentication server 10. In this case, the processor 10b can obtain the location of the specific field (ie, the second geographic location of the wireless network interface 14) through the Wi-Fi service interface connected to the Internet. For example, if Wi-Fi in a specific field is connected to the Internet through a SIM card of a telecommunications company, the processor 10b can obtain the geographic location information of the SIM card number through the base station positioning operation as a wireless The second geographic location of the network interface 14. In addition, the second geographic location of the wireless network interface 14 can be directly obtained through a global positioning (GPS) module installed in the wireless network interface 14, but the present invention is not limited thereto.

在一實施例中,在認證伺服器10取得上述第一地理位置及第二地理位置之前,可先基於簡訊付款認證請求TR判斷入口服務網站是否屬於認證伺服器10的合作店家。若是,則處理器10b可取得上述第一地理位置及第二地理位置,反之則可發送錯誤訊息至對應於付款門號PN的電子裝置12及上述入口服務網站,以中止商品購買操作。亦即,認證伺服器10可排除來自非合作店家的請求。藉此,可減低駭客入侵或DDoS攻擊等資安風險。In one embodiment, before the authentication server 10 obtains the first geographic location and the second geographic location, it may first determine whether the portal service website belongs to the cooperative store of the authentication server 10 based on the SMS payment authentication request TR. If yes, the processor 10b can obtain the first geographic location and the second geographic location, otherwise, it can send an error message to the electronic device 12 corresponding to the payment gate number PN and the portal service website to suspend the product purchase operation. That is, the authentication server 10 can exclude requests from non-partners. This can reduce the security risks of hacker intrusion or DDoS attacks.

在一實施例中,認證伺服器10可藉由判斷電子裝置12的第一地理位置是否接近於無線網路介面14的第二地理位置,以決定是否允許使用者以付款門號PN作為上述商品購買操作的付款工具。In one embodiment, the authentication server 10 can determine whether to allow the user to use the payment gate number PN as the above-mentioned commodity by determining whether the first geographical position of the electronic device 12 is close to the second geographical position of the wireless network interface 14 Payment tools for purchase operations.

基此,在步驟S230中,反應於第一地理位置與第二地理位置之間的一裝置距離小於一預設範圍,處理器10b可依據付款門號PN發送付款確認訊息CM至對應於付款門號PN的電子裝置12。在不同的實施例中,前述預設範圍可由設計者依需求而定為適當的範圍,用以作為判定電子裝置12是否足夠接近於無線網路介面14的依據。舉例而言,上述預設範圍可依據定位精確度、無線網路介面14所提供的Wi-Fi訊號的有效範圍、過去交易成功/失敗之案例等資訊而定,但可不限於此。並且,付款確認訊息CM例如是由處理器10b基於付款門號PN而發送至付款門號PN的簡訊(Short Message Service,SMS),但本發明可不限於此。Based on this, in step S230, in response to a device distance between the first geographic location and the second geographic location being less than a predetermined range, the processor 10b may send a payment confirmation message CM to the payment gate corresponding to the payment gate number PN PN的电子装置12。 The electronic device 12 PN. In different embodiments, the aforementioned predetermined range may be determined by the designer as an appropriate range according to requirements, and used as a basis for determining whether the electronic device 12 is sufficiently close to the wireless network interface 14. For example, the above-mentioned preset range may be determined based on information such as positioning accuracy, the effective range of the Wi-Fi signal provided by the wireless network interface 14, past success/failure cases, and the like, but it is not limited thereto. In addition, the payment confirmation message CM is, for example, a short message service (SMS) sent by the processor 10b to the payment gate number PN based on the payment gate number PN, but the present invention is not limited thereto.

在一實施例中,在發送付款確認訊息CM至電子裝置12之前,處理器10b可先判斷付款門號PN的剩餘額度是否足以支付商品金額。若是,則處理器10b可發送付款確認訊息CM至對應於付款門號PN的電子裝置12,反之則可發送錯誤訊息至對應於付款門號PN的電子裝置12及上述入口服務網站,以中止商品購買操作。藉此,可防止支付能力不足的使用者在入口服務網站上購買商品,但本發明可不限於此。在不同的實施例中,付款確認訊息CM可包括對應於上述商品購買操作的店家代號、商品明細、商品金額、一次性密碼的至少其中之一。藉此,可讓使用者確認相關的付款資訊是否正確。In one embodiment, before sending the payment confirmation message CM to the electronic device 12, the processor 10b may first determine whether the remaining amount of the payment gate number PN is sufficient to pay for the commodity amount. If yes, the processor 10b may send a payment confirmation message CM to the electronic device 12 corresponding to the payment gate number PN, otherwise, it may send an error message to the electronic device 12 corresponding to the payment gate number PN and the above-mentioned portal service website to suspend the goods Purchase operation. In this way, users with insufficient payment ability can be prevented from purchasing goods on the portal service website, but the invention may not be limited to this. In different embodiments, the payment confirmation message CM may include at least one of a store code, product details, product amount, and one-time password corresponding to the above-mentioned product purchase operation. This allows users to confirm that the relevant payment information is correct.

在一實施例中,在電子裝置12收到付款確認訊息CM後,可由使用者確認其是否正確地對應於所進行的商品購買操作。若是,則使用者可透過電子裝置12確認付款確認訊息CM,以對所購買的商品支付相關的款項。另一方面,若使用者判斷付款確認訊息CM的內容有誤,則使用者亦可透過其他手段取消此筆商品購買操作,但本發明可不限於此。In one embodiment, after the electronic device 12 receives the payment confirmation message CM, the user can confirm whether it correctly corresponds to the commodity purchase operation performed. If yes, the user can confirm the payment confirmation message CM through the electronic device 12 to pay the relevant payment for the purchased goods. On the other hand, if the user judges that the content of the payment confirmation message CM is wrong, the user may cancel the purchase operation of the product through other means, but the present invention may not be limited to this.

在步驟S240中,反應於電子裝置12確認付款確認訊息CM,處理器10b可傳送認證結果至入口服務網站以允許商品購買操作。在一實施例中,處理器10b可在電子裝置12確認付款確認訊息CM後進行出帳之作業,並透過上述認證結果告知入口服務網站的店家進行後續的服務及商品遞送等流程。In step S240, in response to the electronic device 12 confirming the payment confirmation message CM, the processor 10b may send the authentication result to the portal service website to allow the commodity purchase operation. In one embodiment, the processor 10b may perform the billing operation after the electronic device 12 confirms the payment confirmation message CM, and informs the shop of the portal service website to perform subsequent services and product delivery processes through the above authentication result.

在一實施例中,在處理器10b傳送認證結果至入口服務網站之前,可先判斷電子裝置12是否在一時限內確認付款確認訊息CM。若是,則處理器10b可傳送上述認證結果至入口服務網站以允許商品購買操作,反之則可發送錯誤訊息至對應於付款門號PN的電子裝置12及入口服務網站,以中止商品購買操作。亦即,使用者需在時限內確認付款確認訊息CM,否則將因操作逾時而無法完成商品購買操作。In an embodiment, before the processor 10b transmits the authentication result to the portal service website, it may first determine whether the electronic device 12 confirms the payment confirmation message CM within a time limit. If yes, the processor 10b may send the above-mentioned authentication result to the portal service website to allow the commodity purchase operation, otherwise, it may send an error message to the electronic device 12 corresponding to the payment gate number PN and the portal service website to suspend the commodity purchase operation. That is, the user needs to confirm the payment confirmation message CM within the time limit, otherwise the operation of purchasing the goods cannot be completed because the operation is overtime.

請參照圖3,其是依據本發明之一實施例繪示的應用情境圖。在本實施例中,假設入口服務網站300係在使用者以電子裝置12連接至無線網路介面14(其所佈建的特定場域例如是高鐵車廂)之後顯示於電子裝置12上,而當使用者在入口服務網站300中欲購買商品「XX物語」(其例如是一電子書)時,入口服務網站300可顯示用於讓使用者輸入付款門號PN的欄位310。Please refer to FIG. 3, which is an application scenario diagram according to an embodiment of the present invention. In this embodiment, it is assumed that the portal service website 300 is displayed on the electronic device 12 after the user connects to the wireless network interface 14 with the electronic device 12 (the specific field where it is deployed is, for example, a high-speed railroad car). When the user wants to purchase the product "XX Story" (which is an e-book, for example) in the portal service website 300, the portal service website 300 may display a field 310 for the user to enter the payment gate number PN.

在使用者於欄位310中輸入付款門號PN後,認證伺服器10可相應地基於付款門號PN而發送付款確認訊息CM至電子裝置12。如圖3所示,本實施例中的付款確認訊息CM可包括使用者欲購買的商品、金額、以及要求使用者以簡訊回傳的OTP(例如「1324225」),但可不限於此。若使用者認為付款確認訊息CM中的資訊無誤,即可依指示而以簡訊方式回傳指定的OTP(即,「1324225」)。在認證伺服器10判斷使用者回傳的OTP正確之後,認證伺服器10即可判定使用者已確認付款確認訊息CM,並允許使用者所進行的商品購買操作。After the user enters the payment gate number PN in the field 310, the authentication server 10 may accordingly send a payment confirmation message CM to the electronic device 12 based on the payment gate number PN. As shown in FIG. 3, the payment confirmation message CM in this embodiment may include the product that the user wants to purchase, the amount, and the OTP (eg, "1324225") that the user is required to return via SMS, but it is not limited thereto. If the user believes that the information in the payment confirmation message CM is correct, he can return the specified OTP by SMS according to the instructions (ie, "1324225"). After the authentication server 10 determines that the OTP returned by the user is correct, the authentication server 10 can determine that the user has confirmed the payment confirmation message CM and allow the user to perform the product purchase operation.

綜上所述,本發明提出的簡訊付款認證方法及認證伺服器可在收到無線網路介面因應於電子裝置欲進行的商品購買操作而發出的簡訊付款認證請求之後,藉由判定電子裝置是否與無線網路介面足夠接近來認證電子裝置的使用者是否被允許進行上述商品購買操作。若電子裝置與無線網路介面的地理位置一致或是足夠接近,則認證伺服器可向電子裝置提供付款確認訊息,以供使用者確認商品購買操作的內容是否正確。並且,在付款確認訊息經確認後,認證伺服器即可允許上述商品購買操作。藉此,可用以防堵詐騙,並省去使用者輸入身分證號及事先設定之付款密碼等步驟,進而達到強化簡訊付款之安全性,並簡化使用者採用簡訊進行付款流程的效果。In summary, the SMS payment authentication method and authentication server provided by the present invention can determine whether the electronic device is received after receiving the SMS payment authentication request issued by the wireless network interface in response to the commodity purchase operation to be performed by the electronic device It is close enough to the wireless network interface to authenticate whether the user of the electronic device is allowed to perform the above-mentioned commodity purchase operation. If the geographic location of the electronic device and the wireless network interface are consistent or close enough, the authentication server can provide a payment confirmation message to the electronic device for the user to confirm whether the content of the product purchase operation is correct. Moreover, after the payment confirmation message is confirmed, the authentication server can allow the above-mentioned commodity purchase operation. In this way, it can be used to prevent fraud, and save the user from entering the identity card number and the preset payment password and other steps, thereby strengthening the security of the SMS payment and simplifying the user's payment process using the SMS.

雖然本發明已以實施例揭露如上,然其並非用以限定本發明,任何所屬技術領域中具有通常知識者,在不脫離本發明的精神和範圍內,當可作些許的更動與潤飾,故本發明的保護範圍當視後附的申請專利範圍所界定者為準。Although the present invention has been disclosed as above with examples, it is not intended to limit the present invention. Any person with ordinary knowledge in the technical field can make some changes and modifications without departing from the spirit and scope of the present invention. The scope of protection of the present invention shall be subject to the scope defined in the appended patent application.

100:簡訊付款認證系統100: SMS payment authentication system

10:認證伺服器10: Authentication server

10a:儲存電路10a: storage circuit

10b:處理器10b: processor

12:電子裝置12: Electronic device

14:無線網路介面14: wireless network interface

300:入口服務網站300: Portal service website

310:欄位310: field

CM:付款確認訊息CM: payment confirmation message

PN:付款門號PN: payment gate number

S210~S240:步驟S210~S240: Steps

TR:簡訊付款認證請求TR: SMS payment authentication request

圖1是依據本發明之一實施例繪示的簡訊付款認證系統示意圖。 圖2其是依據本發明之一實施例繪示的圖像處理方法流程圖。 圖3是依據本發明之一實施例繪示的應用情境圖。 FIG. 1 is a schematic diagram of a SMS payment authentication system according to an embodiment of the invention. FIG. 2 is a flowchart of an image processing method according to an embodiment of the invention. FIG. 3 is an application scenario diagram according to an embodiment of the invention.

S210~S240:步驟 S210~S240: Steps

Claims (11)

一種簡訊付款認證方法,適用於一認證伺服器,包括:接收來自一無線網路介面的一簡訊付款認證請求,其中該簡訊付款認證請求對應於一付款門號在一入口服務網站上進行的一商品購買操作;反應於該簡訊付款認證請求而取得對應於該付款門號的一電子裝置的一第一地理位置,以及取得該無線網路介面的一第二地理位置;反應於該第一地理位置與該第二地理位置之間的一裝置距離小於一預設範圍,依據該付款門號發送一付款確認訊息至對應於該付款門號的該電子裝置;以及反應於該電子裝置確認該付款確認訊息,傳送一認證結果至該入口服務網站以允許該商品購買操作。 An SMS payment authentication method, applicable to an authentication server, includes: receiving a SMS payment authentication request from a wireless network interface, wherein the SMS payment authentication request corresponds to a payment gate number made on an entry service website Commodity purchase operation; acquiring a first geographic location of an electronic device corresponding to the payment gate number in response to the SMS payment authentication request, and acquiring a second geographic location of the wireless network interface; reacting to the first geographic location A device distance between the location and the second geographic location is less than a preset range, a payment confirmation message is sent to the electronic device corresponding to the payment gate number according to the payment gate number; and the electronic device confirms the payment Confirm the message and send an authentication result to the portal service website to allow the purchase operation of the product. 如申請專利範圍第1項所述的方法,其中該簡訊付款認證請求包括對應於該商品購買操作的店家代號、商品明細、商品金額、該付款門號、該無線網路介面的身分、購買時間的至少其中之一。 The method as described in item 1 of the patent application scope, wherein the SMS payment authentication request includes the store code, product details, product amount, the payment gate number, the identity of the wireless network interface, the purchase time corresponding to the product purchase operation At least one of them. 如申請專利範圍第1項所述的方法,其中在反應於該簡訊付款認證請求而取得對應於該付款門號的該電子裝置的該第一地理位置,以及取得該無線網路介面的該第二地理位置的步驟之前,更包括: 基於該簡訊付款認證請求判斷該入口服務網站是否屬於該認證伺服器的一合作店家;反應於該入口服務網站屬於該認證伺服器的該合作店家,取得對應於該付款門號的該電子裝置的該第一地理位置,以及取得該無線網路介面的該第二地理位置;以及反應於該入口服務網站不屬於該認證伺服器的該合作店家,發送一錯誤訊息至對應於該付款門號的該電子裝置及該入口服務網站,以中止該商品購買操作。 The method as described in item 1 of the patent application scope, wherein the first geographic location of the electronic device corresponding to the payment gate number is acquired in response to the SMS payment authentication request, and the first location of the wireless network interface is acquired Before the second geographic location step, it further includes: Determine whether the portal service website belongs to a partner store of the certification server based on the SMS payment certification request; in response to the portal service website belonging to the partner store of the certification server, obtain the electronic device corresponding to the payment gate number The first geographic location, and the second geographic location to obtain the wireless network interface; and the partner store that responds to the portal service website that does not belong to the authentication server, sends an error message to the payment gate number The electronic device and the portal service website to suspend the purchase of the goods. 如申請專利範圍第1項所述的方法,其中該簡訊付款認證請求包括對應於該商品購買操作的商品金額及該付款門號,且在發送該付款確認訊息至對應於該付款門號的該電子裝置的步驟之前,更包括:判斷該付款門號的一剩餘額度是否足以支付該商品金額;若是,發送該付款確認訊息至對應於該付款門號的該電子裝置;以及若否,發送一錯誤訊息至對應於該付款門號的該電子裝置及該入口服務網站,以中止該商品購買操作。 The method as described in item 1 of the patent application scope, wherein the SMS payment authentication request includes the commodity amount corresponding to the commodity purchase operation and the payment gate number, and the payment confirmation message is sent to the payment gate number corresponding to the payment gate number Before the step of the electronic device, it further includes: determining whether a remaining amount of the payment gate number is sufficient to pay the amount of the commodity; if so, sending the payment confirmation message to the electronic device corresponding to the payment gate number; and if not, sending a An error message is sent to the electronic device and the portal service website corresponding to the payment gate number to suspend the purchase of the goods. 如申請專利範圍第1項所述的方法,其中該無線網路介面係佈建於一特定場域中,用以在該電子裝置連接至該無線網路介面時向該電子裝置提供該入口服務網站以提供一商品販售服務。 The method as described in item 1 of the patent application scope, wherein the wireless network interface is deployed in a specific field to provide the entrance service to the electronic device when the electronic device is connected to the wireless network interface The website provides a merchandise sales service. 如申請專利範圍第5項所述的方法,其中若該特定場域具有預先記載於一資料庫中的一固定位置,則取得該無線網路介面的該第二地理位置的步驟包括:查詢該資料庫以取得該固定位置,並以該固定位置作為該第二地理位置。 The method as described in item 5 of the patent application scope, wherein if the specific field has a fixed location previously recorded in a database, the step of obtaining the second geographic location of the wireless network interface includes: querying the The database obtains the fixed location, and uses the fixed location as the second geographic location. 如申請專利範圍第5項所述的方法,其中若該特定場域為一移動型場域,則取得該無線網路介面的該第二地理位置的步驟包括:基於對應於該無線網路介面的一用戶身分模組(Subscriber Identity Module,SIM)卡對該無線網路介面進行一基地台定位操作,或是存取對應於該無線網路介面的一全球定位模組,以取得該第二地理位置。 The method according to item 5 of the patent application scope, wherein if the specific field is a mobile field, the step of obtaining the second geographic location of the wireless network interface includes: based on the corresponding wireless network interface A Subscriber Identity Module (SIM) card for a base station positioning operation on the wireless network interface, or access a global positioning module corresponding to the wireless network interface to obtain the second Geographic location. 如申請專利範圍第1項所述的方法,其中取得對應於該付款門號的該電子裝置的該第一地理位置的步驟包括:基於該付款門號對該電子裝置進行一基地台定位操作,以取得該第一地理位置。 The method as described in item 1 of the patent application scope, wherein the step of obtaining the first geographic location of the electronic device corresponding to the payment gate number includes: performing a base station positioning operation on the electronic device based on the payment gate number, To obtain the first geographic location. 如申請專利範圍第1項所述的方法,其中該付款確認訊息包括對應於該商品購買操作的店家代號、商品明細、商品金額、一次性密碼的至少其中之一。 The method as described in item 1 of the patent application scope, wherein the payment confirmation message includes at least one of a store code, product details, product amount, and one-time password corresponding to the product purchase operation. 如申請專利範圍第1項所述的方法,其中在傳送該認證結果至該入口服務網站以允許該商品購買操作的步驟之前,更包括: 判斷該電子裝置是否在一時限內確認該付款確認訊息;若是,傳送該認證結果至該入口服務網站以允許該商品購買操作;以及若否,發送一錯誤訊息至對應於該付款門號的該電子裝置及該入口服務網站,以中止該商品購買操作。 The method as described in item 1 of the patent application scope, wherein before the step of transmitting the authentication result to the portal service website to allow the purchase operation of the goods, the method further includes: Determine whether the electronic device confirms the payment confirmation message within a time limit; if so, send the authentication result to the portal service website to allow the purchase operation of the commodity; and if not, send an error message to the payment corresponding to the payment gate number Electronic devices and the portal service website to suspend the purchase of the goods. 一種認證伺服器,其包括:一儲存電路,儲存多個模組;以及一處理器,耦接該儲存電路,存取該些模組以執行下列步驟:接收來自一無線網路介面的一簡訊付款認證請求,其中該簡訊付款認證請求對應於一付款門號在一入口服務網站上進行的一商品購買操作;反應於該簡訊付款認證請求而取得對應於該付款門號的一電子裝置的一第一地理位置,以及取得該無線網路介面的一第二地理位置;反應於該第一地理位置與該第二地理位置之間的一裝置距離小於一預設範圍,依據該付款門號發送一付款確認訊息至對應於該付款門號的該電子裝置;以及反應於該電子裝置確認該付款確認訊息,傳送一認證結果至該入口服務網站以允許該商品購買操作。 An authentication server includes: a storage circuit storing a plurality of modules; and a processor coupled to the storage circuit, accessing the modules to perform the following steps: receiving a short message from a wireless network interface Payment authentication request, wherein the SMS payment authentication request corresponds to a product purchase operation performed on a portal service website with a payment gate number; in response to the SMS payment authentication request, an electronic device corresponding to the payment gate number is acquired A first geographic location, and a second geographic location to obtain the wireless network interface; reflecting that a device distance between the first geographic location and the second geographic location is less than a predetermined range, and is sent according to the payment gate number A payment confirmation message to the electronic device corresponding to the payment gate number; and in response to the electronic device confirming the payment confirmation message, sending an authentication result to the portal service website to allow the commodity purchase operation.
TW108108268A 2019-03-12 2019-03-12 Message-based payment authentication method and authentication server TWI690869B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW108108268A TWI690869B (en) 2019-03-12 2019-03-12 Message-based payment authentication method and authentication server

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW108108268A TWI690869B (en) 2019-03-12 2019-03-12 Message-based payment authentication method and authentication server

Publications (2)

Publication Number Publication Date
TWI690869B true TWI690869B (en) 2020-04-11
TW202034243A TW202034243A (en) 2020-09-16

Family

ID=71132557

Family Applications (1)

Application Number Title Priority Date Filing Date
TW108108268A TWI690869B (en) 2019-03-12 2019-03-12 Message-based payment authentication method and authentication server

Country Status (1)

Country Link
TW (1) TWI690869B (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102480706A (en) * 2010-11-26 2012-05-30 中华电信股份有限公司 Short message authentication method
US20130268378A1 (en) * 2012-04-06 2013-10-10 Microsoft Corporation Transaction validation between a mobile communication device and a terminal using location data
TW201437931A (en) * 2013-03-27 2014-10-01 Polydigi Ltd A mobile payment system based on two dimensional barcode and telecommunication service providers
CN104285455A (en) * 2011-10-29 2015-01-14 斯维茨泡公司 System and method for location-based, interactive consumer engagement platform
TWI520555B (en) * 2012-12-18 2016-02-01
CN108702294A (en) * 2016-02-12 2018-10-23 维萨国际服务协会 Using the Verification System and method of location matches

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102480706A (en) * 2010-11-26 2012-05-30 中华电信股份有限公司 Short message authentication method
CN104285455A (en) * 2011-10-29 2015-01-14 斯维茨泡公司 System and method for location-based, interactive consumer engagement platform
US20130268378A1 (en) * 2012-04-06 2013-10-10 Microsoft Corporation Transaction validation between a mobile communication device and a terminal using location data
TWI520555B (en) * 2012-12-18 2016-02-01
TW201437931A (en) * 2013-03-27 2014-10-01 Polydigi Ltd A mobile payment system based on two dimensional barcode and telecommunication service providers
CN108702294A (en) * 2016-02-12 2018-10-23 维萨国际服务协会 Using the Verification System and method of location matches

Also Published As

Publication number Publication date
TW202034243A (en) 2020-09-16

Similar Documents

Publication Publication Date Title
US10915906B2 (en) System and method for facilitating secure self payment transactions of retail goods
JP5810217B2 (en) Ad hoc cash payment network
US20210176249A1 (en) Mobile network-based multi-factor authentication
US20170116596A1 (en) Mobile Communication Device with Proximity Based Communication Circuitry
TWI790437B (en) Implementation method, device, computer equipment and computer-readable storage medium of dual offline payment
US10181122B2 (en) Mobile authentication for web payments using single sign on credentials
US11526884B2 (en) Mobile device verification for an electronic application before providing a digital pass to an approved customer
US20160019528A1 (en) System and method for payment and settlement using barcode
US20140032346A1 (en) Method and system for controlling mobile data terminals
US20230079505A1 (en) Selling and Purchasing Intermediation Method Using Self-Service Stand
US20110078043A1 (en) Payment and transfer management system using wireless communication network or internet and method thereof
GB2549371A (en) Access authentication method and system
WO2017157185A1 (en) Method and device for linking to account and providing service process
US10560845B1 (en) Using a change in information and cellular account attributes associated with a mobile device network ID as risk indicators in mobile network-based authentication
US20160148208A1 (en) Data processing method and system, terminal, and server
WO2019007336A2 (en) Data processing method, apparatus and device
US20140156528A1 (en) Method and system for secure mobile payment of a vendor or service provider via a demand draft
KR101398021B1 (en) Method of managing payment channel
TWI690869B (en) Message-based payment authentication method and authentication server
KR20120076654A (en) Card payment relay system using mobile phone number and method thereof
KR101267488B1 (en) Method and system for call authentication and providing reliability
KR20120082644A (en) Server and method for processing payment using mobile terminal
KR101417758B1 (en) Method, System And Apparatus for Providing Electronic Payment by Using Login Information
KR101742105B1 (en) Phone number security certification apparatus using qr code and system thereof and metrhod thereof
KR100996148B1 (en) System and Method for Registering Real-time Purchaser's Card Information and Recording Medium