TWI804968B - Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method - Google Patents

Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method Download PDF

Info

Publication number
TWI804968B
TWI804968B TW110132575A TW110132575A TWI804968B TW I804968 B TWI804968 B TW I804968B TW 110132575 A TW110132575 A TW 110132575A TW 110132575 A TW110132575 A TW 110132575A TW I804968 B TWI804968 B TW I804968B
Authority
TW
Taiwan
Prior art keywords
screenshot
management server
data
certification
electronic device
Prior art date
Application number
TW110132575A
Other languages
Chinese (zh)
Other versions
TW202311993A (en
Inventor
王俊權
黃逸琴
李藝鋒
穎欣 李
周芳儀
陳冠升
Original Assignee
中國信託商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中國信託商業銀行股份有限公司 filed Critical 中國信託商業銀行股份有限公司
Priority to TW110132575A priority Critical patent/TWI804968B/en
Publication of TW202311993A publication Critical patent/TW202311993A/en
Application granted granted Critical
Publication of TWI804968B publication Critical patent/TWI804968B/en

Links

Images

Abstract

一種線上證明資料防偽系統,包含一管理伺服器及一終端電子裝置。終端電子裝置安裝有一預定應用程式,其提供一網頁內嵌功能及一截圖功能,並將使用者操作預定應用程式的一行為軌跡資料傳送給管理伺服器。終端電子裝置根據使用者的操作以網頁內嵌功能連線至多個預定外部伺服器其中一者,並以截圖功能產生一證明資料截圖並傳送給管理伺服器,證明資料截圖包含預定外部伺服器的一網域名稱及一截圖時間。管理伺服器比對證明資料截圖的網域名稱及截圖時間與行為軌跡資料是否一致,若否,產生一對應於證明資料截圖的驗證失敗結果。An online certification data anti-counterfeiting system includes a management server and a terminal electronic device. A predetermined application program is installed on the terminal electronic device, which provides a web page embedding function and a screenshot function, and transmits a behavior track data of the user's operation of the predetermined application program to the management server. According to the user's operation, the terminal electronic device connects to one of the predetermined external servers with the webpage embedded function, and generates a screenshot of the proof data with the screenshot function and sends it to the management server. The proof data screenshot contains the predetermined external server A domain name and a screenshot time. The management server compares whether the domain name and screenshot time of the screenshot of the proof data are consistent with the behavior track data, and if not, generates a verification failure result corresponding to the screenshot of the proof data.

Description

線上證明資料防偽系統及線上證明資料防偽方法Online certification data anti-counterfeiting system and online certification data anti-counterfeiting method

本發明是有關於一種雲端系統,特別是指一種線上證明資料防偽系統。本發明還有關於一種線上證明資料防偽方法。The present invention relates to a cloud system, in particular to an online certification data anti-counterfeiting system. The present invention also relates to an anti-counterfeiting method for online certification materials.

金融機構常需要客戶提供財力證明,以提供差異化服務或商品規格。隨著資料數位化發展,銀行、財政部及勞保局可讓民眾透過各機構提供之網頁服務線上查詢並截圖以作為財力證明。然而對於金融機構而言,如何查核客戶提供的財力證明截圖之真偽乃是一大難題。因此,如何發展出一種新的線上證明資料防偽系統,能有效提升查核證明資料截圖的真偽的準確率,是本發明進一步要探討的主題。Financial institutions often require customers to provide financial proof to provide differentiated services or commodity specifications. With the development of data digitization, banks, the Ministry of Finance, and the Labor Insurance Bureau can allow the public to inquire online through the web services provided by each institution and take screenshots as proof of financial resources. However, for financial institutions, how to check the authenticity of the screenshots of financial proof provided by customers is a big problem. Therefore, how to develop a new online certification data anti-counterfeiting system, which can effectively improve the accuracy of checking the authenticity of the screenshots of certification data, is a subject to be further discussed in the present invention.

因此,本發明的目的,即在提供一種線上證明資料防偽系統。Therefore, the object of the present invention is to provide an online certification data anti-counterfeiting system.

本發明的另一目的,在於提供一種線上證明資料防偽方法。Another object of the present invention is to provide an anti-counterfeiting method for online certification materials.

於是,本發明線上證明資料防偽系統,包含一管理伺服器及一終端電子裝置。Therefore, the online certification data anti-counterfeiting system of the present invention includes a management server and a terminal electronic device.

該終端電子裝置經由通訊網路電連接於該管理伺服器,並供一使用者操作,並安裝有一預定應用程式,該預定應用程式提供一網頁內嵌功能及一截圖功能,並將該使用者操作該預定應用程式的一行為軌跡資料傳送給該管理伺服器。The terminal electronic device is electrically connected to the management server via a communication network, and is operated by a user, and a predetermined application program is installed, and the predetermined application program provides a web page embedding function and a screenshot function, and the user operates A behavior track data of the predetermined application program is sent to the management server.

該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至多個預定外部伺服器其中一者。The terminal electronic device connects to one of a plurality of predetermined external servers by using the webpage embedded function provided by the predetermined application program according to the user's operation.

該終端電子裝置根據該使用者的操作以該預定應用程式提供的該截圖功能產生一證明資料截圖,該證明資料截圖包含該預定外部伺服器的一網域名稱及一截圖時間。According to the operation of the user, the terminal electronic device uses the screenshot function provided by the predetermined application program to generate a screenshot of proof data, and the screenshot of proof data includes a domain name of the predetermined external server and a screenshot time.

該終端電子裝置將該證明資料截圖傳送給該管理伺服器。The terminal electronic device transmits the screenshot of the certification data to the management server.

該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料是否一致。After the management server receives the screenshot of the certification data, the management server compares whether the domain name of the screenshot of the certification data and the time of the screenshot are consistent with the behavior track data.

當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料不一致,該管理伺服器產生一對應於該證明資料截圖的驗證失敗結果。When the management server finds out that the domain name and the screenshot time of the screenshot of the proof data are inconsistent with the behavior track data, the management server generates a verification failure result corresponding to the screenshot of the proof data.

在一些實施態樣中,該管理伺服器儲存有相關於該預定應用程式的一預定圖形使用者介面。In some implementations, the management server stores a predetermined GUI associated with the predetermined application.

該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該證明資料截圖包含的一待驗證圖形使用者介面與該預定圖形使用者介面是否一致。After the management server receives the screenshot of the certification data, the management server compares whether a GUI to be verified included in the screenshot of the certification data is consistent with the predetermined GUI.

當該管理伺服器比對出該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面不一致,該管理伺服器產生對應於該證明資料截圖的該驗證失敗結果。When the management server compares that the GUI to be verified contained in the proof data screenshot is inconsistent with the predetermined GUI, the management server generates the verification failure result corresponding to the proof data screenshot.

在一些實施態樣中,當該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至該等預定外部伺服器其中一者,該終端電子裝置自該管理伺服器取得一把一次性金鑰。In some implementations, when the terminal electronic device connects to one of the predetermined external servers by using the webpage embedded function provided by the predetermined application program according to the user's operation, the terminal electronic device automatically The server obtains a one-time key.

當該終端電子裝置將該證明資料截圖傳送給該管理伺服器,該終端電子裝置還將該一次性金鑰當作一待驗證金鑰傳送給該管理伺服器。When the terminal electronic device sends the screenshot of the certification data to the management server, the terminal electronic device also sends the one-time key as a key to be verified to the management server.

該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該待驗證金鑰與該一次性金鑰是否一致。After the management server receives the screenshot of the certification data, the management server compares whether the key to be verified is consistent with the one-time key.

當該管理伺服器比對出該待驗證金鑰與該一次性金鑰不一致,該管理伺服器產生對應於該證明資料截圖的該驗證失敗結果。When the management server compares that the key to be verified is inconsistent with the one-time key, the management server generates the verification failure result corresponding to the screenshot of the proof data.

在一些實施態樣中,當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料一致,且比對出該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面一致,且比對出該待驗證金鑰與該一次性金鑰一致,該管理伺服器產生對應於該證明資料截圖的一驗證成功結果。In some implementations, when the management server compares the domain name of the screenshot of the certification data and the time of the screenshot with the behavior track data, and compares the use of the graphic to be verified contained in the screenshot of the certification data The operator interface is consistent with the predetermined graphical user interface, and the key to be verified is compared with the one-time key, and the management server generates a verification success result corresponding to the screenshot of the proof data.

該管理伺服器於接收到相關於該使用者的多個證明資料截圖且產生對應於該等證明資料截圖的多個驗證成功結果後,自對應於該等驗證成功結果的該等證明資料截圖擷取出多筆財富證明資料。After the management server receives multiple screenshots of certification data related to the user and generates multiple successful verification results corresponding to the screenshots of certification data, it retrieves from the screenshots of certification data corresponding to the successful verification results Take out multiple wealth proof materials.

該管理伺服器根據該等財富證明資料產生一相關於該使用者的財富度評估資料。The management server generates wealth evaluation data related to the user according to the wealth certification data.

在一些實施態樣中,該管理伺服器根據該財富度評估資料產生一商品推薦資料。In some implementations, the management server generates product recommendation data according to the wealth evaluation data.

本發明線上證明資料防偽方法,藉由一線上證明資料防偽系統實施,該線上證明資料防偽系統包含一管理伺服器及一終端電子裝置,該終端電子裝置經由通訊網路電連接於該管理伺服器,並供一使用者操作,並安裝有一預定應用程式,該預定應用程式提供一網頁內嵌功能及一截圖功能,並將該使用者操作該預定應用程式的一行為軌跡資料傳送給該管理伺服器,該方法包含:該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至多個預定外部伺服器其中一者;該終端電子裝置根據該使用者的操作以該預定應用程式提供的該截圖功能產生一證明資料截圖,該證明資料截圖包含該預定外部伺服器的一網域名稱及一截圖時間;該終端電子裝置將該證明資料截圖傳送給該管理伺服器;該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料是否一致;及當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料不一致,該管理伺服器產生一對應於該證明資料截圖的驗證失敗結果。The online certification data anti-counterfeiting method of the present invention is implemented by an online certification data anti-counterfeiting system. The online certification data anti-counterfeiting system includes a management server and a terminal electronic device, and the terminal electronic device is electrically connected to the management server through a communication network. And for a user to operate, and install a predetermined application program, the predetermined application program provides a web page embedding function and a screenshot function, and transmits a behavior track data of the user's operation of the predetermined application program to the management server , the method includes: the terminal electronic device connects to one of a plurality of predetermined external servers by using the webpage embedded function provided by the predetermined application program according to the user's operation; the terminal electronic device connects to one of a plurality of predetermined external servers according to the user's operation; The screenshot function provided by the predetermined application generates a screenshot of the proof data, and the screenshot of the proof data includes a domain name of the predetermined external server and a screenshot time; the terminal electronic device sends the screenshot of the proof data to the management server ; After the management server receives the screenshot of the certification data, the management server compares whether the domain name of the screenshot of the certification data and the time of the screenshot are consistent with the behavior track data; and when the management server compares the The domain name and the screenshot time of the screenshot of the proof data are inconsistent with the behavior track data, and the management server generates a verification failure result corresponding to the screenshot of the proof data.

本發明的功效在於:藉由該管理伺服器比對該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料是否一致,以有效提升查核該證明資料截圖的真偽的準確率,此外,藉由該管理伺服器比對該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面是否一致,以及該管理伺服器比對該待驗證金鑰與該一次性金鑰是否一致,能進一步提升查核該證明資料截圖的真偽的準確率。The effect of the present invention is: by the management server comparing the domain name of the screenshot of the proof data and whether the time of the screenshot is consistent with the behavior track data, to effectively improve the accuracy of checking the authenticity of the screenshot of the proof data, In addition, the management server compares whether the to-be-verified GUI contained in the proof data screenshot is consistent with the predetermined GUI, and the management server compares the to-be-verified key with the one-time key Whether the key is consistent can further improve the accuracy of checking the authenticity of the screenshot of the certification data.

在本發明被詳細描述之前,應當注意在以下的說明內容中,類似的元件是以相同的編號來表示。Before the present invention is described in detail, it should be noted that in the following description, similar elements are denoted by the same numerals.

參閱圖1,本發明線上證明資料防偽系統100的一第一實施例,包含一管理伺服器1及一終端電子裝置2。Referring to FIG. 1 , a first embodiment of an online certification data anti-counterfeiting system 100 of the present invention includes a management server 1 and a terminal electronic device 2 .

該管理伺服器1儲存有相關於該預定應用程式的一預定圖形使用者介面。The management server 1 stores a predetermined GUI related to the predetermined application program.

該終端電子裝置2經由通訊網路電連接於該管理伺服器1,並供一使用者操作,並安裝有一預定應用程式(APP),該預定應用程式提供一網頁內嵌功能及一截圖功能,並將該使用者操作該預定應用程式的一行為軌跡資料傳送給該管理伺服器1。該終端電子裝置2例如為一智慧型手機或一平板電腦。The terminal electronic device 2 is electrically connected to the management server 1 via a communication network, and is operated by a user, and a predetermined application program (APP) is installed, and the predetermined application program provides a webpage embedded function and a screenshot function, and Send a behavior track data of the user's operation of the predetermined application program to the management server 1 . The terminal electronic device 2 is, for example, a smart phone or a tablet computer.

參閱圖1及圖2,以下說明所述的線上證明資料防偽系統100執行一證明資料取得程序的步驟。首先,如步驟S01所示,該終端電子裝置2根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至多個預定外部伺服器其中一者,且該終端電子裝置2自該管理伺服器1取得一把一次性金鑰。該等預定外部伺服器例如網路銀行伺服器、財政部伺服器、勞保局伺服器等,但不以此為限。該使用者於輸入帳號、密碼後登入該預定外部伺服器。Referring to FIG. 1 and FIG. 2 , the following describes the steps of the online certification data anti-counterfeiting system 100 executing a certification data acquisition procedure. First, as shown in step S01, the terminal electronic device 2 connects to one of a plurality of predetermined external servers by using the webpage embedded function provided by the predetermined application program according to the user's operation, and the terminal electronic device 2 automatically The management server 1 obtains a one-time key. Such predetermined external servers include, but are not limited to, online banking servers, Ministry of Finance servers, Labor Insurance Bureau servers, etc. The user logs in the predetermined external server after inputting an account number and a password.

接著,如步驟S02所示,該終端電子裝置2根據該使用者的操作以該預定應用程式提供的該截圖功能產生一證明資料截圖(例如點選一截圖按鈕以截取畫面),該證明資料截圖包含該預定外部伺服器的一網域名稱及一截圖時間。Next, as shown in step S02, the terminal electronic device 2 uses the screenshot function provided by the predetermined application program to generate a screenshot of the certification data according to the operation of the user (for example, click a screenshot button to capture the screen), and the screenshot of the certification data Including a domain name of the predetermined external server and a screenshot time.

接著,如步驟S03所示,該終端電子裝置2將該證明資料截圖傳送給該管理伺服器1,並同時將該一次性金鑰當作一待驗證金鑰傳送給該管理伺服器1。在本實施例中,該終端電子裝置2於傳送該證明資料截圖及該待驗證金鑰時以非對稱加密技術加密以提升安全性。Next, as shown in step S03 , the terminal electronic device 2 transmits the screenshot of the certification data to the management server 1 , and at the same time transmits the one-time key as a key to be verified to the management server 1 . In this embodiment, when the terminal electronic device 2 transmits the screenshot of the certification data and the key to be verified, it is encrypted with asymmetric encryption technology to enhance security.

接著,如步驟S04所示,該管理伺服器1於接收到該證明資料截圖後,該管理伺服器1比對該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料是否一致,若否,則執行步驟S07,若是,則執行步驟S05。Next, as shown in step S04, after the management server 1 receives the screenshot of the certification data, the management server 1 compares the domain name and the time of the screenshot of the certification data with the behavior track data, If not, execute step S07, and if yes, execute step S05.

步驟S07是該管理伺服器1產生一對應於該證明資料截圖的驗證失敗結果。Step S07 is that the management server 1 generates a verification failure result corresponding to the screenshot of the proof data.

步驟S05是該管理伺服器1比對該證明資料截圖包含的一待驗證圖形使用者介面與該預定圖形使用者介面是否一致,若否,則執行步驟S07,若是,則執行步驟S06。部充說明的是,在本實施例中,該預定圖形使用者介面包含肉眼無法快速辨識的細節特徵,以提高防偽的效果。In step S05, the management server 1 compares whether a GUI to be verified contained in the proof data screenshot is consistent with the predetermined GUI, if not, execute step S07, and if yes, execute step S06. It is fully explained that, in this embodiment, the predetermined graphical user interface includes detailed features that cannot be quickly identified by the naked eye, so as to improve the effect of anti-counterfeiting.

步驟S06是該管理伺服器1比對該待驗證金鑰與該一次性金鑰是否一致,若否,則執行步驟S07,若是,則步驟S08。Step S06 is that the management server 1 compares whether the key to be verified is consistent with the one-time key, if not, execute step S07, and if yes, execute step S08.

步驟S08是當該管理伺服器1比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料一致,且比對出該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面一致,且比對出該待驗證金鑰與該一次性金鑰一致,該管理伺服器1產生對應於該證明資料截圖的一驗證成功結果。Step S08 is when the management server 1 compares the domain name of the screenshot of the certification data and the time of the screenshot with the behavior track data, and compares the graphic user interface to be verified contained in the screenshot of the certification data with the The predetermined graphical user interface is consistent, and the key to be verified is compared with the one-time key, and the management server 1 generates a verification success result corresponding to the screenshot of the proof data.

補充說明的是,步驟S04、S05、S06的執行先後順序不以本實施例為限。It should be added that the execution sequence of steps S04, S05, and S06 is not limited by this embodiment.

參閱圖1及圖3,以下說明所述的線上證明資料防偽系統100執行一財富度評估及商品推薦程序的步驟。首先,如步驟S11所示,該管理伺服器1於接收到相關於該使用者的多個證明資料截圖且產生對應於該等證明資料截圖的多個驗證成功結果後,自對應於該等驗證成功結果的該等證明資料截圖擷取出多筆財富證明資料。該等例如相關於該使用者的銀行帳戶資料、來自財政部之財產資料、綜合所得稅核定資料、勞保投保現況等。Referring to FIG. 1 and FIG. 3 , the following describes the steps of the online certification data anti-counterfeiting system 100 performing a wealth assessment and commodity recommendation procedure. First, as shown in step S11, after the management server 1 receives multiple screenshots of certification data related to the user and generates multiple verification success results corresponding to the screenshots of certification data, it automatically Screenshots of such certification data of successful results extract multiple wealth certification data. These are, for example, related to the user's bank account information, property information from the Ministry of Finance, comprehensive income tax assessment information, labor insurance insurance status, etc.

接著,如步驟S12所示,該管理伺服器1根據該等財富證明資料產生一相關於該使用者的財富等級的財富度評估資料。Next, as shown in step S12, the management server 1 generates wealth evaluation data related to the user's wealth level according to the wealth certification data.

接著,如步驟S13所示,該管理伺服器1根據該財富度評估資料產生一商品推薦資料。該商品推薦資料例如為一金融商品推薦資料,但不以此為限。Next, as shown in step S13, the management server 1 generates product recommendation data according to the wealth assessment data. The product recommendation data is, for example, a financial product recommendation data, but not limited thereto.

綜上所述,本發明線上證明資料防偽系統100藉由該管理伺服器1比對該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料是否一致,以有效提升查核該證明資料截圖的真偽的準確率,此外,藉由該管理伺服器1比對該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面是否一致,以及該管理伺服器1比對該待驗證金鑰與該一次性金鑰是否一致,能進一步提升查核該證明資料截圖的真偽的準確率,故確實能達成本發明的目的。To sum up, the online certification data anti-counterfeiting system 100 of the present invention compares the domain name of the screenshot of the certification data and whether the time of the screenshot is consistent with the behavior track data by the management server 1 to effectively improve the verification of the certification data The accuracy rate of the authenticity of the screenshot, in addition, by comparing the graphical user interface to be verified contained in the screenshot of the certification data with the predetermined graphical user interface by the management server 1, and the comparison of the management server 1 Whether the key to be verified is consistent with the one-time key can further improve the accuracy of checking the authenticity of the screenshot of the certification material, so the purpose of the present invention can indeed be achieved.

惟以上所述者,僅為本發明的實施例而已,當不能以此限定本發明實施的範圍,凡是依本發明申請專利範圍及專利說明書內容所作的簡單的等效變化與修飾,皆仍屬本發明專利涵蓋的範圍內。But the above-mentioned ones are only embodiments of the present invention, and should not limit the scope of the present invention. All simple equivalent changes and modifications made according to the patent scope of the present invention and the content of the patent specification are still within the scope of the present invention. Within the scope covered by the patent of the present invention.

100:線上證明資料防偽系統 1:管理伺服器 2:終端電子裝置 S01~S08:步驟 S11~S13:步驟 100:Online certification data anti-counterfeiting system 1: Management server 2: Terminal electronic device S01~S08: Steps S11~S13: Steps

本發明的其他的特徵及功效,將於參照圖式的實施方式中清楚地呈現,其中: 圖1是本發明線上證明資料防偽系統的一個實施例的一硬體連接關係示意圖; 圖2是該實施例的一流程圖,說明一證明資料取得程序;及 圖3是該實施例的另一流程圖,說明一財富度評估及商品推薦程序。 Other features and effects of the present invention will be clearly presented in the implementation manner with reference to the drawings, wherein: Fig. 1 is a schematic diagram of a hardware connection relationship of an embodiment of the online certification data anti-counterfeiting system of the present invention; Fig. 2 is a flow chart of the embodiment, illustrating a procedure for obtaining certification materials; and FIG. 3 is another flow chart of the embodiment, illustrating a wealth evaluation and product recommendation program.

100:線上證明資料防偽系統 1:管理伺服器 2:終端電子裝置 100:Online certification data anti-counterfeiting system 1: Management server 2: Terminal electronic device

Claims (8)

一種線上證明資料防偽系統,包含:一管理伺服器,儲存有相關於該預定應用程式的一預定圖形使用者介面;及一終端電子裝置,經由通訊網路電連接於該管理伺服器,並供一使用者操作,並安裝有一預定應用程式,該預定應用程式提供一網頁內嵌功能及一截圖功能,並將該使用者操作該預定應用程式的一行為軌跡資料傳送給該管理伺服器;該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至多個預定外部伺服器其中一者;該終端電子裝置根據該使用者的操作以該預定應用程式提供的該截圖功能產生一證明資料截圖,該證明資料截圖包含該預定外部伺服器的一網域名稱及一截圖時間;該終端電子裝置將該證明資料截圖傳送給該管理伺服器;該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料是否一致,且比對該證明資料截圖包含的一待驗證圖形使用者介面與該預定圖形使用者介面是否一致;當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料不一致,或當該管理伺 服器比對出該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面不一致,該管理伺服器產生一對應於該證明資料截圖的驗證失敗結果。 An online certification data anti-counterfeiting system, comprising: a management server storing a predetermined graphical user interface related to the predetermined application program; and a terminal electronic device electrically connected to the management server through a communication network, and providing a The user operates and installs a predetermined application program, the predetermined application program provides a webpage embedded function and a screenshot function, and transmits a behavior track data of the user's operation of the predetermined application program to the management server; the terminal The electronic device connects to one of a plurality of predetermined external servers by using the webpage embedded function provided by the predetermined application according to the user's operation; the terminal electronic device uses the predetermined application provided by the user's operation The screenshot function generates a screenshot of the certification data, which includes a domain name of the predetermined external server and a screenshot time; the terminal electronic device sends the screenshot of the certification data to the management server; the management server receives the After obtaining the screenshot of the proof data, the management server compares whether the domain name of the screenshot of the proof data and the time of the screenshot are consistent with the behavior track data, and compares a graphical user interface to be verified contained in the screenshot of the proof data Whether it is consistent with the predetermined graphical user interface; when the management server compares the domain name of the screenshot of the certification data and the time of the screenshot with the behavior track data, or when the management server The server compares that the GUI to be verified included in the screenshot of the proof data is inconsistent with the predetermined GUI, and the management server generates a verification failure result corresponding to the screenshot of the proof data. 如請求項1所述的線上證明資料防偽系統,其中,當該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至該等預定外部伺服器其中一者,該終端電子裝置自該管理伺服器取得一把一次性金鑰;當該終端電子裝置將該證明資料截圖傳送給該管理伺服器,該終端電子裝置還將該一次性金鑰當作一待驗證金鑰傳送給該管理伺服器;該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該待驗證金鑰與該一次性金鑰是否一致;當該管理伺服器比對出該待驗證金鑰與該一次性金鑰不一致,該管理伺服器產生對應於該證明資料截圖的該驗證失敗結果。 The online certification data anti-counterfeiting system as described in Claim 1, wherein, when the terminal electronic device connects to one of the predetermined external servers according to the user's operation by using the webpage embedded function provided by the predetermined application program , the terminal electronic device obtains a one-time key from the management server; The verification key is sent to the management server; after the management server receives the screenshot of the certification data, the management server compares whether the key to be verified is consistent with the one-time key; when the management server compares If the key to be verified is inconsistent with the one-time key, the management server generates the verification failure result corresponding to the screenshot of the certification information. 如請求項2所述的線上證明資料防偽系統,其中,當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料一致,且比對出該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面一致,且比對出該待驗證金鑰與該一次性金鑰一致,該管理伺服器產生對應於該證明資料截圖的一驗證成功結果;該管理伺服器於接收到相關於該使用者的多個證明資料截圖且產生對應於該等證明資料截圖的多個驗證成 功結果後,自對應於該等驗證成功結果的該等證明資料截圖擷取出多筆財富證明資料;該管理伺服器根據該等財富證明資料產生一相關於該使用者的財富度評估資料。 The online certification data anti-counterfeiting system as described in Claim 2, wherein, when the management server compares the domain name and the time of the screenshot of the certification data to be consistent with the behavior track data, and compares the certification data The GUI to be verified included in the screenshot is consistent with the predetermined GUI, and the key to be verified is compared with the one-time key, and the management server generates a verification corresponding to the screenshot of the certification data A successful result; the management server receives a plurality of screenshots of proof data related to the user and generates a plurality of verification results corresponding to the screenshots of proof data After successful results, a plurality of pieces of wealth certification data are extracted from the screenshots of the certification data corresponding to the successful verification results; the management server generates wealth evaluation data related to the user based on the wealth certification data. 如請求項3所述的線上證明資料防偽系統,其中,該管理伺服器根據該財富度評估資料產生一商品推薦資料。 In the online certification data anti-counterfeiting system described in Claim 3, wherein, the management server generates product recommendation data according to the wealth evaluation data. 一種線上證明資料防偽方法,藉由一線上證明資料防偽系統實施,該線上證明資料防偽系統包含一管理伺服器及一終端電子裝置,該管理伺服器儲存有相關於該預定應用程式的一預定圖形使用者介面,該終端電子裝置經由通訊網路電連接於該管理伺服器,並供一使用者操作,並安裝有一預定應用程式,該預定應用程式提供一網頁內嵌功能及一截圖功能,並將該使用者操作該預定應用程式的一行為軌跡資料傳送給該管理伺服器,該方法包含:該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至多個預定外部伺服器其中一者;該終端電子裝置根據該使用者的操作以該預定應用程式提供的該截圖功能產生一證明資料截圖,該證明資料截圖包含該預定外部伺服器的一網域名稱及一截圖時間;該終端電子裝置將該證明資料截圖傳送給該管理伺服器;該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該證明資料截圖的該網域名稱及該截圖時間與 該行為軌跡資料是否一致,且比對該證明資料截圖包含的一待驗證圖形使用者介面與該預定圖形使用者介面是否一致;及當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料不一致,或當該管理伺服器比對出該證明資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面不一致,該管理伺服器產生一對應於該證明資料截圖的驗證失敗結果。 An online certification data anti-counterfeiting method, implemented by an online certification data anti-counterfeiting system, the online certification data anti-counterfeiting system includes a management server and a terminal electronic device, the management server stores a predetermined graphic related to the predetermined application program User interface, the terminal electronic device is electrically connected to the management server through the communication network, and is operated by a user, and a predetermined application program is installed, the predetermined application program provides a webpage embedded function and a screenshot function, and will A behavior track data of the user operating the predetermined application program is sent to the management server. The method includes: the terminal electronic device connects to multiple One of the scheduled external servers; the terminal electronic device uses the screenshot function provided by the predetermined application program to generate a screenshot of the proof data according to the user's operation, and the screenshot of the proof data includes a domain name of the scheduled external server and A screenshot time; the terminal electronic device sends the screenshot of the certification data to the management server; after the management server receives the screenshot of the certification data, the management server compares the domain name and the screenshot time vs. Whether the behavior track data is consistent, and compare whether a GUI to be verified included in the screenshot of the certification data is consistent with the predetermined GUI; and when the management server compares the domain of the screenshot of the certification data The name and the time of the screenshot are inconsistent with the behavior track data, or when the management server compares that the GUI to be verified included in the screenshot of the certification data is inconsistent with the predetermined GUI, the management server generates a corresponding The verification failure result in the screenshot of the certification information. 如請求項5所述的線上證明資料防偽方法,還包含:當該終端電子裝置根據該使用者的操作以該預定應用程式提供的該網頁內嵌功能連線至該等預定外部伺服器其中一者,該終端電子裝置自該管理伺服器取得一把一次性金鑰;當該終端電子裝置將該證明資料截圖傳送給該管理伺服器,該終端電子裝置還將該一次性金鑰當作一待驗證金鑰傳送給該管理伺服器;該管理伺服器於接收到該證明資料截圖後,該管理伺服器比對該待驗證金鑰與該一次性金鑰是否一致;及當該管理伺服器比對出該待驗證金鑰與該一次性金鑰不一致,該管理伺服器產生對應於該證明資料截圖的該驗證失敗結果。 The anti-counterfeiting method for online certification data as described in claim item 5 further includes: when the terminal electronic device connects to one of the predetermined external servers according to the operation of the user by using the webpage embedded function provided by the predetermined application program Or, the terminal electronic device obtains a one-time key from the management server; when the terminal electronic device sends the screenshot of the certification data to the management server, the terminal electronic device also uses the one-time key as a The key to be verified is sent to the management server; after the management server receives the screenshot of the certification data, the management server compares the key to be verified with the one-time key; and when the management server After comparing the key to be verified and the one-time key, the management server generates the verification failure result corresponding to the screenshot of the proof data. 如請求項6所述的線上證明資料防偽方法,還包含:當該管理伺服器比對出該證明資料截圖的該網域名稱及該截圖時間與該行為軌跡資料一致,且比對出該證明 資料截圖包含的該待驗證圖形使用者介面與該預定圖形使用者介面一致,且比對出該待驗證金鑰與該一次性金鑰一致,該管理伺服器產生對應於該證明資料截圖的一驗證成功結果;該管理伺服器於接收到相關於該使用者的多個證明資料截圖且產生對應於該等證明資料截圖的多個驗證成功結果後,自對應於該等驗證成功結果的該等證明資料截圖擷取出多筆財富證明資料;及該管理伺服器根據該等財富證明資料產生一相關於該使用者的財富度評估資料。 The anti-counterfeiting method for online certification data as described in claim item 6 further includes: when the management server compares the domain name of the screenshot of the certification data and the time of the screenshot with the behavior track data, and compares the certification The GUI to be verified contained in the data screenshot is consistent with the predetermined GUI, and the key to be verified is compared with the one-time key, and the management server generates a corresponding to the verification data screenshot Successful verification results; after the management server receives a plurality of screenshots of proof data related to the user and generates a plurality of successful verification results corresponding to the screenshots of proof data, from the The screenshot of the certification data extracts a plurality of pieces of wealth certification data; and the management server generates a wealth evaluation data related to the user based on the wealth certification data. 如請求項7所述的線上證明資料防偽方法,還包含:該管理伺服器根據該財富度評估資料產生一商品推薦資料。 The anti-counterfeiting method for online certification data as described in Claim 7 further includes: the management server generates product recommendation data according to the wealth evaluation data.
TW110132575A 2021-09-02 2021-09-02 Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method TWI804968B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW110132575A TWI804968B (en) 2021-09-02 2021-09-02 Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW110132575A TWI804968B (en) 2021-09-02 2021-09-02 Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method

Publications (2)

Publication Number Publication Date
TW202311993A TW202311993A (en) 2023-03-16
TWI804968B true TWI804968B (en) 2023-06-11

Family

ID=86690573

Family Applications (1)

Application Number Title Priority Date Filing Date
TW110132575A TWI804968B (en) 2021-09-02 2021-09-02 Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method

Country Status (1)

Country Link
TW (1) TWI804968B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160026714A1 (en) * 2013-11-08 2016-01-28 Huizhou Tcl Mobile Communication Co., Ltd. Intelligent collecting and sharing method and mobile terminal
CN107577729A (en) * 2017-08-23 2018-01-12 公安部第三研究所 One kind is based on twin-channel web data evidence collecting method and system
CN110473049A (en) * 2019-05-22 2019-11-19 深圳壹账通智能科技有限公司 Finance product recommended method, device, equipment and computer readable storage medium

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160026714A1 (en) * 2013-11-08 2016-01-28 Huizhou Tcl Mobile Communication Co., Ltd. Intelligent collecting and sharing method and mobile terminal
CN107577729A (en) * 2017-08-23 2018-01-12 公安部第三研究所 One kind is based on twin-channel web data evidence collecting method and system
CN110473049A (en) * 2019-05-22 2019-11-19 深圳壹账通智能科技有限公司 Finance product recommended method, device, equipment and computer readable storage medium

Also Published As

Publication number Publication date
TW202311993A (en) 2023-03-16

Similar Documents

Publication Publication Date Title
US11113412B2 (en) System and method for monitoring and verifying software behavior
US20220239499A1 (en) System and method for high trust cloud digital signing
US11689370B2 (en) Dynamic management and implementation of consent and permissioning protocols using container-based applications
US9432368B1 (en) Document distribution and interaction
AU2021201603B2 (en) Watermark security
US10462148B2 (en) Dynamic data masking for mainframe application
US20150256556A1 (en) Method and system for web integrity validator
US20220038291A1 (en) Electronic signature authentication system based on biometric information and electronic signature authentication method
US11470116B2 (en) Auto-generated synthetic identities for simulating population dynamics to detect fraudulent activity
US11379843B2 (en) Systems and methods for multi-domain application hosting platform migration
KR20180113229A (en) Loan service providing method using black chain and system performing the same
CN110572355A (en) Webpage data monitoring method and device, computer equipment and storage medium
CN113468602A (en) Data inspection method, device and equipment
US20220027428A1 (en) Security system for adaptive targeted multi-attribute based identification of online malicious electronic content
Botacin et al. The internet banking [in] security spiral: Past, present, and future of online banking protection mechanisms based on a brazilian case study
US11586710B2 (en) System and method for protecting software licensing information via a trusted platform module
TW201604805A (en) Method and system for verifying account
TWI804968B (en) Online certificate data anti-counterfeit system and online certificate data anti-counterfeit method
CN109657170A (en) Webpage loading method, device, computer equipment and storage medium
JP5508042B2 (en) IP access log analysis apparatus and method
TWM620766U (en) Online proof information anti-counterfeiting system
TWI600308B (en) System for using valid certificate to apply mobile certificate online and method thereof
KR20090000193A (en) Fishing preventing method through a change of service process using a electronic fanance transaction and composed personalized user's definition digital contents
CN113886894A (en) Digital signature method and digital signature device
JP6533934B2 (en) Property information management system