TWI780429B - Redemption system and redemption method - Google Patents
Redemption system and redemption method Download PDFInfo
- Publication number
- TWI780429B TWI780429B TW109114986A TW109114986A TWI780429B TW I780429 B TWI780429 B TW I780429B TW 109114986 A TW109114986 A TW 109114986A TW 109114986 A TW109114986 A TW 109114986A TW I780429 B TWI780429 B TW I780429B
- Authority
- TW
- Taiwan
- Prior art keywords
- mobile device
- verification
- prize
- bank server
- redemption
- Prior art date
Links
Images
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
- Medicines Containing Antibodies Or Antigens For Use As Internal Diagnostic Agents (AREA)
Abstract
Description
本發明係關於一種兌獎系統及兌獎方法,特別係關於一種可以提高驗證資料傳輸的安全性的兌獎系統及兌獎方法。 The present invention relates to a prize redemption system and a prize redemption method, in particular to a prize redemption system and a prize redemption method that can improve the security of verification data transmission.
在現行技術中,可以將公用事業費(水費、電費)、電信費等費用設定為自動扣繳,並且當繳費成功時皆會收到該筆扣繳交易的發票號碼。而當該發票號碼中獎時,使用者在收到中獎通知後仍需自行申請領取中獎獎金。然而,使用者自行申請領取中獎獎金時,仍需攜帶紙本的發票以進行兌獎,且申請領取獎金仍需到超商、郵局等機構辦理,更是耗費許多人力及時間。 In the current technology, utility charges (water charges, electricity charges), telecommunication charges, etc. can be set to be automatically withheld, and when the payment is successful, the invoice number of the withholding transaction will be received. And when the invoice number wins a prize, the user still needs to apply for receiving the prize after receiving the notification of the prize. However, when the user applies for winning prizes by himself, he still needs to bring paper invoices to redeem the prizes, and the application for collecting prizes still needs to be processed at supermarkets, post offices, etc., which consumes a lot of manpower and time.
此外,儘管目前已有部分的商家可以藉由掃描的方式將發票儲存至使用者的行動裝置並進行兌獎,然而在兌獎時仍需執行驗證程序,且在驗證的過程中仍需傳輸帳號、密碼、身份證號碼等較機密的資料以進行驗證。因此,當有心人士欲竊取資料時,不僅可能趁機在傳輸該些資料的過程中進行攔截,進而導致資料外洩,更可能在資料已遭攔截的情況下使用者仍不自知。 In addition, although some merchants can save the invoice to the user's mobile device and redeem the prize by scanning, it still needs to perform a verification procedure when redeeming the prize, and still needs to transmit the account number and password during the verification process , ID number and other more confidential information for verification. Therefore, when a malicious person wants to steal data, not only may they take the opportunity to intercept the data during transmission, which will lead to data leakage, but the user may not even know that the data has been intercepted.
鑒於上述,本發明提供一種以滿足上述需求的兌獎系統及兌獎方法。 In view of the above, the present invention provides a prize redemption system and a prize redemption method that meet the above demands.
依據本發明一實施例的兌獎系統,包含:一行動裝置,用以於收到一中獎通知後輸出一兌獎指令;以及一銀行伺服器,通訊連接於該行動裝置以接收該兌獎指令,該銀行伺服器用以於收到該兌獎指令後依據一安全控管程序的結果判斷該行動裝置是否為一認證裝置,該銀行伺服器係於判斷該行動裝置為該認證裝置時,將對應該認證裝置的一身份驗證資料輸出至一兌獎機構伺服器,該兌獎機構伺服器對該身份驗證資料進行驗 證以於該身份驗證資料通過驗證時將一中獎金額轉帳至關聯於該身份驗證資料的一金融帳戶,且該銀行伺服器判斷關聯於該身份驗證資料的該金融帳戶已收到該中獎金額後輸出一兌獎完成通知。其中,該安全控管程序係:該銀行伺服器輸出一驗證訊息至該行動裝置,該行動裝置係於判斷該驗證訊息對應該兌獎指令時,對該驗證訊息解碼以產生一驗證編碼,該行動裝置更將該驗證編碼輸出至該銀行伺服器,該銀行伺服器係於判斷該驗證編碼對應該驗證訊息時判斷該行動裝置為該認證裝置。 According to an embodiment of the present invention, the prize redemption system includes: a mobile device, which is used to output a prize redemption instruction after receiving a prize notification; and a bank server, connected to the mobile device to receive the prize redemption instruction, the bank The server is used to determine whether the mobile device is an authentication device according to the result of a security control program after receiving the reward instruction, and the bank server will correspond to the authentication device when determining that the mobile device is the authentication device The identity verification data of the prize redemption institution is output to the server of a prize redemption institution, and the server of the prize redemption institution verifies the identity verification data To transfer a winning amount to a financial account associated with the identity verification information when the identity verification information is verified, and the bank server determines that the financial account associated with the identity verification information has received the winning amount Outputting a prize redemption completion notification. Wherein, the safety control program is: the bank server outputs a verification message to the mobile device, and the mobile device decodes the verification message to generate a verification code when judging that the verification message corresponds to the prize redemption instruction. The device further outputs the verification code to the bank server, and the bank server determines that the mobile device is the verification device when judging that the verification code corresponds to the verification message.
依據本發明一實施例的兌獎方法,包含:以一行動裝置於收到一中獎通知後輸出一兌獎指令一銀行伺服器;執行一安全控管程序以判斷該行動裝置是否為一認證裝置;以及當以該銀行伺服器判斷該行動裝置為該認證裝置時,以該銀行伺服器將對應該認證裝置的一身份驗證資料輸出至一兌獎機構伺服器,該兌獎機構伺服器對該身份驗證資料進行驗證以於該身份驗證資料通過驗證時將一中獎金額轉帳至關聯於該身份驗證資料的一金融帳戶,且該銀行伺服器判斷關聯於該身份驗證資料的該金融帳戶已收到該中獎金額後輸出一兌獎完成通知。其中,該安全控管程序係:以該銀行伺服器輸出一驗證訊息至該行動裝置;以該行動裝置判斷該驗證訊息是否對應該兌獎指令;當以該行動裝置判斷該驗證訊息對應該兌獎指令時,以該行動裝置對該驗證訊息解碼以產生一驗證編碼;以該行動裝置將該驗證編碼輸出至該銀行伺服器;以該銀行伺服器判斷該驗證編碼是否對應該驗證訊息;以及當該銀行伺服器判斷該驗證編碼對應該驗證訊息時,以該銀行伺服器判斷該行動裝置為該認證裝置。 According to an embodiment of the present invention, the prize redemption method includes: using a mobile device to output a prize redemption instruction to a bank server after receiving a prize winning notification; executing a security control program to determine whether the mobile device is an authentication device; and When the bank server judges that the mobile device is the authentication device, the bank server outputs an identity verification data corresponding to the authentication device to a prize redemption institution server, and the prize redemption institution server performs the identity verification data verifying that a winning amount is transferred to a financial account associated with the identity verification information when the identity verification information is verified, and the bank server determines that the winning amount has been received in the financial account associated with the identity verification information Outputting a prize redemption completion notification. Wherein, the safety control program is: using the bank server to output a verification message to the mobile device; using the mobile device to judge whether the verification message corresponds to the prize redemption instruction; When using the mobile device to decode the verification message to generate a verification code; use the mobile device to output the verification code to the bank server; use the bank server to determine whether the verification code corresponds to the verification message; and when the When the bank server judges that the verification code corresponds to the verification message, the bank server judges that the mobile device is the verification device.
綜上所述,依據本發明一或多個實施例所示的兌獎系統及兌獎方法,當使用者係以對應銀行伺服器的金融帳戶執行付款交易,且該筆交易的發票中獎時,使用者只需輸入兌獎指令,即可將發票的中獎金額轉入其執行付款交易的金融帳戶,以省去每次兌獎時仍需以人工的方式進行驗證程序。此外,依據本發明一或多個實施例所示的兌獎系統及兌獎方法, 更可以在驗證的過程中檢驗驗證的資料是否遭到攔截或外洩,以加強驗證過程中資料的安全性,並且當發現資料可能外洩時,可以留存相關的記錄以供銀行或是檢警單位查閱。 To sum up, according to the prize redemption system and prize redemption method shown in one or more embodiments of the present invention, when the user executes the payment transaction with the financial account corresponding to the bank server, and the invoice of the transaction wins a prize, the user Just enter the prize redemption instruction, and the winning amount of the invoice can be transferred to the financial account that executes the payment transaction, so as to save the need for manual verification procedures every time the prize is redeemed. In addition, according to the prize redemption system and prize redemption method shown in one or more embodiments of the present invention, It is also possible to check whether the verified data is intercepted or leaked during the verification process, so as to strengthen the security of the data during the verification process, and when it is found that the data may be leaked, relevant records can be kept for the bank or the police. Unit check.
以上之關於本揭露內容之說明及以下之實施方式之說明係用以示範與解釋本發明之精神與原理,並且提供本發明之專利申請範圍更進一步之解釋。 The above description of the disclosure and the following description of the implementation are used to demonstrate and explain the spirit and principle of the present invention, and provide a further explanation of the patent application scope of the present invention.
10:行動裝置 10:Mobile device
20:銀行伺服器 20: Bank server
Msg:驗證訊息 Msg: Verification message
EC:加密編碼 EC: encryption code
VC:驗證編碼 VC: Verification Coding
CmdR:兌獎指令 CmdR: reward command
CmdK:指令關鍵字 CmdK: command keyword
圖1係依據本發明一實施例所繪示的兌獎系統的方塊圖。 FIG. 1 is a block diagram of a prize claiming system according to an embodiment of the present invention.
圖2係依據本發明一實施例所繪示的兌獎方法的流程圖。 FIG. 2 is a flow chart of a prize claiming method according to an embodiment of the present invention.
圖3係依據本發明一實施例所繪示的安全控管程序的流程圖。 FIG. 3 is a flowchart of a security control program according to an embodiment of the present invention.
圖4係依據本發明一實施例所繪示的行動裝置與銀行伺服器之間的資料傳輸順序的示意圖。 FIG. 4 is a schematic diagram of a data transmission sequence between a mobile device and a bank server according to an embodiment of the present invention.
以下在實施方式中詳細敘述本發明之詳細特徵以及優點,其內容足以使任何熟習相關技藝者了解本發明之技術內容並據以實施,且根據本說明書所揭露之內容、申請專利範圍及圖式,任何熟習相關技藝者可輕易地理解本發明相關之目的及優點。以下之實施例係進一步詳細說明本發明之觀點,但非以任何觀點限制本發明之範疇。 The detailed features and advantages of the present invention are described in detail below in the implementation mode, and its content is enough to make any person familiar with the related art understand the technical content of the present invention and implement it accordingly, and according to the content disclosed in this specification, the scope of the patent application and the drawings , anyone skilled in the art can easily understand the purpose and advantages of the present invention. The following examples are to further describe the concept of the present invention in detail, but not to limit the scope of the present invention in any way.
本發明所示的兌獎系統及方法係用於當發票中獎時,使用者即可以藉由本發明所示的兌獎系統及方法兌獎,以將中獎的獎金直接轉入使用者的金融帳戶。 The prize redemption system and method shown in the present invention are used when the invoice wins a prize, and the user can redeem the prize through the prize redemption system and method shown in the present invention, so that the prize money won is directly transferred to the user's financial account.
請參考圖1,圖1係依據本發明一實施例所繪示的兌獎系統的方塊圖。本發明所示的兌獎系統包含一行動裝置10以及一銀行伺服器20,且行動裝置10通訊連接於銀行伺服器20。
Please refer to FIG. 1 . FIG. 1 is a block diagram of a reward system according to an embodiment of the present invention. The prize redemption system shown in the present invention includes a
本發明所示的行動裝置10例如是手機、筆記型電腦、平板
型電腦等;銀行伺服器20較佳係銀行內部的伺服器或是銀行內部其他具有運算能力及訊號傳輸能力的運算裝置等。
The
為了更詳細說明本發明所揭示的兌獎系統及兌獎方法,請一併參考圖1及圖2,其中圖2係依據本發明一實施例所繪示的兌獎方法的流程圖。 For a more detailed description of the prize claiming system and prize claiming method disclosed in the present invention, please refer to FIG. 1 and FIG. 2 together, wherein FIG. 2 is a flow chart of the prize claiming method according to an embodiment of the present invention.
請參考圖2的步驟S10:於收到中獎通知後輸出兌獎指令至銀行伺服器。 Please refer to step S10 in FIG. 2 : after receiving the winning notification, output a prize redemption instruction to the bank server.
行動裝置10較佳具有建置於銀行伺服器20的銀行應用程式(例如,網路銀行銀行應用程式),以供使用者將兌獎指令輸入至銀行應用程式,並將兌獎指令藉由行動裝置10輸出至銀行伺服器20。亦即,行動裝置10在收到來自兌獎機構的中獎通知後便會基於中獎通知輸出兌獎指令至銀行伺服器20。行動裝置10在輸出兌獎指令時較佳一併輸出行動裝置10的座標位置,以供後續進行驗證,亦即銀行伺服器20較佳係在收到兌獎指令以及座標位置後始執行後續的步驟S20。
The
步驟S20:執行安全控管程序。 Step S20: Execute a security control program.
銀行伺服器20於收到兌獎指令後便執行安全控管程序,以判斷行動裝置10是否為一認證裝置。步驟S20所述的安全控管程序將於以下圖3之實施例加以詳述。
After the
請先繼續參考步驟S30:將對應認證裝置的身份驗證資料輸出至兌獎機構伺服器。 Please continue to refer to step S30: outputting the identity verification data of the corresponding verification device to the prize redemption institution server.
在銀行伺服器20於步驟S20判斷行動裝置10為認證裝置後,銀行伺服器20便將對應認證裝置(即認證的行動裝置10)的身份驗證資料輸出至兌獎機構伺服器,其中身份驗證資料例如是關聯於使用者的帳號、密碼、身份證字號等。
After the
亦即,銀行伺服器20會於判斷行動裝置10為認證裝置後,將對應認證裝置的身份驗證資料輸出至兌獎機構伺服器,供兌獎機構伺服
器對身份驗證資料進行驗證以於身份驗證資料通過驗證時,將兌獎金額轉帳至對應的金融帳戶。銀行伺服器20更可以於判斷中獎金額已轉帳至該金融帳戶時輸出一兌獎完成通知至行動裝置10,供行動裝置10呈現兌獎完成通知以通知使用者中獎金額已轉帳至其金融帳戶。
That is to say, after the
需特別說明的是,行動裝置10在收到中獎通知前,銀行伺服器20更可以基於一經常性支付項目,由關聯於該身份驗證資料的一金融帳戶進行繳費。具體而言,經常性支付項目例如係水費、電費等公共事業項目,使用者可以與銀行約定由銀行代為執行繳納該些費用,因此銀行即可從使用者的金融帳戶定期繳納該些費用。而在繳納經常性支付項目的費用後,若該次繳納費用的發票中獎時,行動裝置10即可從公共事業單位接收到對應該經常性支付項目的中獎通知,且行動裝置10可以係於收到中獎通知後即輸出兌獎指令,行動裝置10亦可以係於收到中獎通知後呈現中獎通知,以通知使用者行動裝置10已收到中獎通知並可以據以進行兌獎。
It should be noted that, before the
此外,經常性支付項目亦可以是使用者定期或經常購買的商品及/或日用品等,本發明不對經常性支付項目的類型予以限制。亦即,所述的中獎通知不限於來自對經常性支付項目進行繳費的發票所取得的中獎通知,中獎通知亦可以是由購買其他商品等的發票所取得的中獎通知。 In addition, the recurring payment items may also be commodities and/or daily necessities purchased regularly or frequently by the user, and the present invention does not limit the types of recurring payment items. That is to say, the winning notice is not limited to the winning notice obtained from the invoice for payment of recurring payment items, and the winning notice may also be obtained from the invoice for purchasing other commodities.
請一併參考圖1及圖3,其中圖3係依據本發明一實施例所繪示的安全控管程序的流程圖。 Please refer to FIG. 1 and FIG. 3 together, wherein FIG. 3 is a flowchart of a security control program according to an embodiment of the present invention.
當銀行伺服器20收到兌獎指令時,表示使用者請求依據中獎通知進行兌獎程序,故銀行伺服器20在將兌獎機構伺服器所要求的身份驗證資料輸出至兌獎機構伺服器前,銀行伺服器20更會先執行安全控管程序,以避免中獎的金額轉入錯誤的金融帳戶。
When the
因此,當銀行伺服器20於圖2的步驟S10收到兌獎指令後,銀行伺服器20接著執行步驟S201:輸出驗證訊息至行動裝置。
Therefore, when the
詳言之,銀行伺服器20將驗證訊息輸出至行動裝置10,然
銀行伺服器20亦可以是將驗證訊息輸出至行動裝置10,以供行動裝置10基於驗證訊息進行後續的驗證。此外,行動裝置10可以藉設置於其的銀行應用程式呈現其接收到的驗證訊息,以供使用者查閱,然本發明不對行動裝置10是否呈現驗證訊息予以限制。
Specifically, the
此外,銀行伺服器20輸出的驗證訊息較佳包含一指令關鍵字,且指令關鍵字係關聯於前述的兌獎指令。舉例而言,當兌獎指令係「確認要求兌獎」時,指令關鍵字例如為「確認兌獎」、「中獎金額為200元整」、「中獎發票號碼為AB-012345」等。
In addition, the verification message output by the
接著,在行動裝置10收到驗證訊息後,行動裝置10執行步驟S202:判斷驗證訊息是否對應兌獎指令。
Next, after the
行動裝置10判斷驗證訊息是否對應兌獎指令較佳係判斷驗證訊息的指令關鍵字是否對應兌獎指令。以上述的兌獎指令係「確認要求兌獎」為例,當指令關鍵字為「確認兌獎」時,行動裝置10即係判斷「確認兌獎」(指令關鍵字)是否對應「確認要求兌獎」(兌獎指令)。行動裝置10判斷指令關鍵字是否對應兌獎指令的方式可以是判斷兌獎指令是否包含指令關鍵字。
Preferably, the
此外,兌獎指令與指令關鍵字之間的對應關係亦可以是預存的對應關係,故行動裝置10可以依據預存的對應關係判斷指令關鍵字是否對應兌獎指令。
In addition, the correspondence between the redemption command and the command keyword can also be a pre-stored correspondence, so the
舉例而言,當兌獎指令係「兌換200元中獎獎金」,且與「兌換200元中獎獎金」具有預存的對應關係的指令關鍵字為上述的「中獎金額為200元整」,則當行動裝置10收到的指令關鍵字為「中獎金額為200元整」時,行動裝置10即可判斷指令關鍵字對應兌獎指令。
For example, when the prize redemption instruction is "exchange 200 yuan for winning bonus", and the instruction keyword that has a pre-stored corresponding relationship with "exchange 200 yuan for winning bonus" is the above-mentioned "winning amount is 200 yuan", then when the
又或者,行動裝置10判斷指令關鍵字是否對應兌獎指令的方式可以是先查找兌獎指令中的多個關鍵字,並據以判斷指令關鍵字是否包含相同的多個關鍵字,當行動裝置10判斷指令關鍵字包含與兌獎指令相
同的多個關鍵字後,行動裝置10即可判斷指令關鍵字對應兌獎指令。
Alternatively, the
舉例而言,當兌獎指令係「兌換中獎發票:AB-012345」時,行動裝置10先查找兌獎指令中的多個關鍵字為「中獎發票」以及「AB-012345」,當行動裝置10收到的指令關鍵字為「中獎發票號碼為AB-012345」時,行動裝置10接著判斷指令關鍵字是否亦包含中獎發票」以及「AB-012345」的關鍵字,當行動裝置10判斷兌獎指令關鍵字包含與兌獎指令相同的多個關鍵字時,即判斷指令關鍵字對應兌獎指令。
For example, when the prize redemption instruction is "redeem the winning invoice: AB-012345", the
請繼續參考步驟S202並一併參考步驟S203,當行動裝置10判斷驗證訊息非對應兌獎指令時,表示驗證訊息所含的指令關鍵字非對應到兌獎指令,故行動裝置10可以執行步驟S203:呈現錯誤通知。
Please continue to refer to step S202 and also refer to step S203. When the
亦即,行動裝置10可以基於指令關鍵字及兌獎指令判斷其先前輸出的兌獎指令是否遭有心人士攔截,故當行動裝置10判斷驗證訊息非對應兌獎指令時,使用者即可藉由行動裝置10呈現的錯誤通知判知銀行伺服器20可能接收到錯誤的兌獎指令,使用者並可以重新輸入兌獎指令。
That is to say, the
請繼續參考步驟S202並一併參考步驟S204,當行動裝置10判斷驗證訊息對應兌獎指令時,則行動裝置10執行步驟S204:對驗證訊息解碼以產生驗證編碼。
Please continue to refer to step S202 and also refer to step S204. When the
驗證訊息除了包含指令關鍵字,較佳更包含一加密編碼,行動裝置10可以對加密編碼解碼以產生驗證編碼,且行動裝置10可以係依據一預存規則將加密編碼解碼為驗證編碼。舉例而言,預存規則例如是「0」對應英文字母「A」;「1」對應英文字母「B」;「2」對應英文字母「C」;「25」對應英文字母「Z」等等以此類推。因此,當加密編碼為「21.4.17.8」時,行動裝置10即可將加密編碼解碼為「VERI」的驗證編碼。前述的預存規則僅為示例,數字對應英文字母亦可以是「25」對應英文字母「A」;「24」對應英文字母「B」;「23」對應英文字母「C」;「0」對應英文字母「Z」等等以此類推,或是將加密編碼以英文字母呈現,並將驗證編碼以
數字呈現。行動裝置10亦可以係以運算符號、羅馬數字、顏色或其多個組合等方式做為加密編碼及驗證編碼,或是以雜湊運算做為預存規則,以將加密編碼解碼為驗證編碼,本發明不對預存規則、加密編碼與驗證編碼之間的對應關係及行動裝置10解碼加密編碼的方式予以限制。
In addition to the instruction keyword, the verification message preferably further includes an encrypted code. The
請接續參考步驟S205:將驗證編碼輸出至銀行伺服器。 Please continue to refer to step S205: outputting the verification code to the bank server.
在行動裝置10對驗證訊息解碼以產生驗證編碼(步驟S204)後,行動裝置10即將驗證編碼輸出至銀行伺服器20。
After the
步驟S206:判斷驗證編碼是否對應驗證訊息。 Step S206: Determine whether the verification code corresponds to the verification message.
亦即,銀行伺服器20判斷從行動裝置10接收到的驗證編碼是否對應其先前輸出的加密編碼。
That is, the
當銀行伺服器20判斷從行動裝置10接收到的驗證編碼不對應其先前輸出的加密編碼時,銀行伺服器20執行步驟S207:記錄錯誤資料。
When the
亦即,銀行伺服器20基於驗證編碼及加密編碼判斷行動裝置10是否為認證裝置。當銀行伺服器20判斷驗證編碼不對應其先前輸出的加密編碼時,表示銀行伺服器20輸出的驗證訊息可能遭有心人士攔截,故銀行伺服器20將錯誤資料記錄下來,以供銀行行員甚或是供檢警單位查驗,銀行伺服器20記錄錯誤資料亦可以是用以於收到來自行動裝置10的另一兌獎令時,輸出含有多個驗證編碼的驗證訊息至行動裝置10,以進行更嚴密的驗證,其中所述的錯誤記錄例如為行動裝置10的號碼、對應行動裝置10的銀行應用程式的帳號密碼以及行動裝置10在輸出兌獎指令時一併輸出的座標位置等。
That is, the
請繼續參考步驟S206,當銀行伺服器20判斷驗證編碼對應驗證訊息時,銀行伺服器20即可接著執行步驟S30:將對應認證裝置的身份驗證資料輸出至兌獎機構伺服器,以供兌獎機構伺服器對身份驗證資料進行驗證,並於身份驗證資料通過驗證時將中獎金額轉帳至關聯於該身份
驗證資料的金融帳戶。
Please continue to refer to step S206. When the
請一併參考圖1及圖4,其中圖4係依據本發明一實施例所繪示的行動裝置與銀行伺服器之間的資料傳輸順序的示意圖。 Please refer to FIG. 1 and FIG. 4 together, wherein FIG. 4 is a schematic diagram of a data transmission sequence between a mobile device and a bank server according to an embodiment of the present invention.
詳言之,行動裝置10在收到來自使用者的兌獎指令CmdR後,便將兌獎指令CmdR輸出至銀行伺服器20。
In detail, after receiving the prize redemption command CmdR from the user, the
接著,銀行伺服器20在收到兌獎指令CmdR後,便開始執行安全控管程序。亦即,銀行伺服器20依據收到的兌獎指令CmdR產生驗證訊息Msg,且驗證訊息Msg包含加密編碼EC以及指令關鍵字CmdK。
Then, the
行動裝置10在收到驗證訊息Msg後,便接續執行安全控管程序。亦即,行動裝置10先判斷指令關鍵字CmdK是否對應其先前輸出的兌獎指令CmdR,以供行動裝置10藉由指令關鍵字CmdK判斷銀行伺服器20是否接收到正確的兌獎指令CmdR。且行動裝置10可以是直接指令關鍵字CmdK是否對應兌獎指令CmdR,,而不在行動裝置10上呈現指令關鍵字CmdK,然行動裝置10亦可以呈現其接收到的指令關鍵字CmdK,以供使用者查閱,本發明不對行動裝置10是否呈現指令關鍵字CmdK予以限制。
After receiving the verification message Msg, the
在行動裝置10判斷指令關鍵字CmdK對應其先前輸出的兌獎指令CmdR後,行動裝置10便進一步對驗證訊息Msg的加密編碼EC解碼以產生驗證編碼VC,並將驗證編碼VC輸出至銀行伺服器20,以供銀行伺服器20判斷行動裝置10是否為已認證裝置,並且於銀行伺服器20判斷行動裝置10為已認證裝置時,將對應該認證裝置(行動裝置10)的身份驗證資料輸出至兌獎機構伺服器,以供兌獎機構伺服器對該身份驗證資料進行驗證,以將中獎金額轉帳至關聯於該身份驗證資料的金融帳戶。此外,當銀行伺服器20判斷關聯於該身份驗證資料的金融帳戶已收到中獎金額後,即可輸出兌獎完成通知至行動裝置10,以告知使用者已完成兌獎。
After the
綜上所述,依據本發明一或多個實施例所示的兌獎系統及兌 獎方法,當使用者係以對應銀行伺服器的金融帳戶執行付款交易,且該筆交易的發票中獎時,使用者只需輸入兌獎指令,即可將發票的中獎金額轉入其執行付款交易的金融帳戶,以省去每次兌獎時仍需以人工的方式進行驗證程序。此外,依據本發明一或多個實施例所示的兌獎系統及兌獎方法,更可以對行動裝置及銀行伺服器進行驗證,以核實彼此的正當行,並且可以在驗證的過程中檢查驗證的資料是否遭到攔截或外洩,以加強驗證過程中資料的安全性,並且當發現資料可能外洩時,可以留存相關的記錄以供銀行或是檢警單位查閱。 To sum up, according to the prize redemption system and the redemption system shown in one or more embodiments of the present invention The reward method, when the user executes the payment transaction with the financial account corresponding to the bank server, and the invoice of the transaction wins a prize, the user only needs to enter the reward redemption command, and the winning amount of the invoice can be transferred to the bank account for the payment transaction. Financial account, to save the manual verification process every time you claim a prize. In addition, according to the prize claiming system and prize claiming method shown in one or more embodiments of the present invention, the mobile device and the bank server can be authenticated to verify each other's authenticity, and the verified data can be checked during the verification process Whether it is intercepted or leaked to strengthen the security of the data in the verification process, and when it is found that the data may be leaked, relevant records can be kept for the bank or the police unit to check.
雖然本發明以前述之實施例揭露如上,然其並非用以限定本發明。在不脫離本發明之精神和範圍內,所為之更動與潤飾,均屬本發明之專利保護範圍。關於本發明所界定之保護範圍請參考所附之申請專利範圍。 Although the present invention is disclosed by the aforementioned embodiments, they are not intended to limit the present invention. Without departing from the spirit and scope of the present invention, all changes and modifications are within the scope of patent protection of the present invention. For the scope of protection defined by the present invention, please refer to the appended scope of patent application.
10:行動裝置 10:Mobile device
20:銀行伺服器 20: Bank server
Claims (8)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW109114986A TWI780429B (en) | 2020-05-06 | 2020-05-06 | Redemption system and redemption method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
TW109114986A TWI780429B (en) | 2020-05-06 | 2020-05-06 | Redemption system and redemption method |
Publications (2)
Publication Number | Publication Date |
---|---|
TW202143142A TW202143142A (en) | 2021-11-16 |
TWI780429B true TWI780429B (en) | 2022-10-11 |
Family
ID=80783538
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
TW109114986A TWI780429B (en) | 2020-05-06 | 2020-05-06 | Redemption system and redemption method |
Country Status (1)
Country | Link |
---|---|
TW (1) | TWI780429B (en) |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101894343A (en) * | 2010-06-01 | 2010-11-24 | 华东交通大学 | Effective and safe verification-based lottery ticket sale and prize exchange method |
TWI588765B (en) * | 2016-08-19 | 2017-06-21 | 統一超商股份有限公司 | Receipt lottery redeem system and method using thereof |
TWM602671U (en) * | 2020-05-06 | 2020-10-11 | 華南商業銀行股份有限公司 | Lottery redeem system |
-
2020
- 2020-05-06 TW TW109114986A patent/TWI780429B/en active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101894343A (en) * | 2010-06-01 | 2010-11-24 | 华东交通大学 | Effective and safe verification-based lottery ticket sale and prize exchange method |
TWI588765B (en) * | 2016-08-19 | 2017-06-21 | 統一超商股份有限公司 | Receipt lottery redeem system and method using thereof |
TWM602671U (en) * | 2020-05-06 | 2020-10-11 | 華南商業銀行股份有限公司 | Lottery redeem system |
Also Published As
Publication number | Publication date |
---|---|
TW202143142A (en) | 2021-11-16 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11956243B2 (en) | Unified identity verification | |
US11461760B2 (en) | Authentication using application authentication element | |
US7548890B2 (en) | Systems and methods for identification and authentication of a user | |
US8661520B2 (en) | Systems and methods for identification and authentication of a user | |
JP5642932B2 (en) | Authentication and verification services for third-party vendors using mobile devices | |
AU2010306566B2 (en) | Anti-phishing system and method including list with user data | |
US6931382B2 (en) | Payment instrument authorization technique | |
US20140101741A1 (en) | Method and system for mobile device based authenticationservices environment | |
US20160197915A1 (en) | Systems and methods for authentication and verification | |
EP2095221A2 (en) | Systems and methods for identification and authentication of a user | |
US20120054046A1 (en) | Mobile Payment Using Picture Messaging | |
US20170024742A1 (en) | Methods and systems for using a consumer identity to perform electronic transactions | |
KR100968941B1 (en) | Finance trade system using a otp | |
KR20010087564A (en) | User authentification system and the method using personal mobile device | |
TWI780429B (en) | Redemption system and redemption method | |
TWI787145B (en) | Redemption system and redemption method recording coordinate position of mobile device | |
TWM602671U (en) | Lottery redeem system | |
TWI653588B (en) | Method of cross-platform payment in mobile devices | |
KR20110029478A (en) | Method for self card settlement service | |
AU2015200732B2 (en) | Authentication using application authentication element | |
AU2016277629A1 (en) | Authentication using application authentication element | |
JP2004021663A (en) | Individual authentication method for commerce system using network | |
KR20010113254A (en) | A payment method using mobile phone device | |
JP2007133714A (en) | Electronic authentication method and electronic settlement method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
GD4A | Issue of patent certificate for granted invention patent |