TWM598987U - System for verifying financial service access privilege using different computer sequences - Google Patents

System for verifying financial service access privilege using different computer sequences Download PDF

Info

Publication number
TWM598987U
TWM598987U TW108214199U TW108214199U TWM598987U TW M598987 U TWM598987 U TW M598987U TW 108214199 U TW108214199 U TW 108214199U TW 108214199 U TW108214199 U TW 108214199U TW M598987 U TWM598987 U TW M598987U
Authority
TW
Taiwan
Prior art keywords
verification
computer program
financial service
financial
code
Prior art date
Application number
TW108214199U
Other languages
Chinese (zh)
Inventor
楊紫吟
吳守宏
楊吉閔
黃繼正
Original Assignee
玉山商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 玉山商業銀行股份有限公司 filed Critical 玉山商業銀行股份有限公司
Priority to TW108214199U priority Critical patent/TWM598987U/en
Publication of TWM598987U publication Critical patent/TWM598987U/en

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A system for verifying financial service access privilege using different computer sequences is provided. The system includes a financial service system and a computer program for performing verification. In an aspect, for implementing verification to access the financial service, a first computer program and a second computer program are executed in two devices. In as aspect, the second device accesses a financial service from the financial service system, and a verification request is sent to a verification system. A verification code is generated in the verification system and provided to the second device. The first device that provides verification obtains the verification code from the second device and transmits it to the verification system. A verification result is generated by comparing the codes and informed to the financial service system for determining whether or not allowing the second device to access the financial service.

Description

利用不同電腦程序驗證金融服務存取權限的系統 System for verifying access rights of financial services using different computer programs

本創作涉及一種驗證金融服務的技術,特別是提供一驗證模組,並利用使用者端不同的電腦程序驗證登入金融服務者的身份的系統。 This creation relates to a technology for verifying financial services, especially a system that provides a verification module and uses different computer programs on the user side to verify the identity of the financial service provider.

常見金融服務業者通過網路提供使用者不受時空限制的金融服務,然而,金融服務業者需要通過各種身份驗證機制才能提供安全無虞的網路金融服務,常見如要求使用者設定金融帳戶的存取密碼,並需要在傳遞過程中執行資料加密,避免資料外洩。 Common financial service providers provide users with financial services that are not restricted by time and space through the Internet. However, financial service providers need to pass various identity verification mechanisms to provide safe and secure online financial services, such as requiring users to set up financial account deposits. Obtain the password and perform data encryption during the transmission process to avoid data leakage.

然而,即便有嚴密的資料加密技術與更安全的密碼設定技巧,但仍不免資料安全措施不當而被竊取各種身份資料,危及整個網路金融服務的安全性,因此相關資安技術發展出如一次式密碼(One-Time Password,OTP)、生物識別技術等安全驗證技術。 However, even with rigorous data encryption technology and more secure password setting skills, improper data security measures will inevitably result in various identity data being stolen and endanger the security of the entire online financial service. Therefore, relevant information security technologies have developed like a one-off Security verification technologies such as One-Time Password (OTP) and biometric technology.

對於實用性而言,金融業者仍需要更為安全與嚴密的身份驗證技術,以避免仿冒者竊取身份資料而造成財務損失等層出不窮的問題。 As far as practicality is concerned, financial industry still needs more secure and rigorous identity verification technology to prevent counterfeiters from stealing identity information and causing financial losses.

揭露書公開一種利用不同電腦程序驗證金融服務存取權限的系統,其中提供一身份驗證機制,提出一驗證系統,使得系統可利用使用者端不同的電腦程序驗證存取特定金融服務的使用者身份。 The disclosure discloses a system that uses different computer programs to verify access rights to financial services. It provides an identity verification mechanism and proposes a verification system so that the system can use different computer programs on the user side to verify the identity of users accessing specific financial services .

根據系統實施例,利用不同電腦程序驗證金融服務存取權限的系統包括一金融服務系統,設有一網路服務器,能夠提供所述第二電腦程序通過網路存取特定金融服務,並提供第一電腦程序執行一驗證程序,另外提供一驗證系統,驗證系統用以提供驗證服務給金融服務系統,可以根據金融服務系統提出的驗證請求產生一驗證碼。 According to an embodiment of the system, the system for verifying access rights to financial services using different computer programs includes a financial service system with a network server that can provide the second computer program to access specific financial services via the network, and provide the first The computer program executes a verification program and additionally provides a verification system. The verification system is used to provide verification services to the financial service system, and can generate a verification code according to a verification request made by the financial service system.

由金融服務系統執行所述利用不同電腦程序驗證金融服務存取權限的方法。 The financial service system executes the method of using different computer programs to verify the access authority of financial services.

金融服務系統可為一個獨立運行的伺服系統,可涵蓋網路銀行與服務行動裝置存取金融服務的行動銀行的角色,在方法中,先自使用者裝置中的第二電腦程序接收一金融服務請求,其中要求存取一金融服務,金融服務系統接續向一驗證系統請求驗證服務,驗證系統即產生一驗證碼,接著,金融服務系統接收此驗證碼,並交付使用者裝置中的第二電腦程序,由第二電腦程序根據驗證碼演算一驗證資訊,用於傳遞至第一電腦程序,並再由第一電腦程序由驗證資訊中取得驗證碼,之後傳送至驗證系統,由驗證系統比對前後驗證碼後產生一驗證結果,當金融服務系統主動或被動取得此驗證結果,可以根據驗證結果決定是否提供第二電腦程序存取金融服務。 The financial service system can be a stand-alone server system that can cover the role of online banking and mobile banking that serves mobile devices to access financial services. In the method, first receives a financial service from a second computer program in the user device Request, in which access to a financial service is requested, the financial service system continues to request a verification service from a verification system, the verification system generates a verification code, and then the financial service system receives the verification code and delivers it to the second computer in the user device A procedure in which the second computer program calculates a verification information according to the verification code and transmits it to the first computer program, and then the first computer program obtains the verification code from the verification information, and then transmits it to the verification system for comparison by the verification system A verification result is generated after the front and back verification codes. When the financial service system actively or passively obtains the verification result, it can decide whether to provide the second computer program to access the financial service according to the verification result.

進一步地,所述第一電腦程序與第二電腦程序可以運作在同一使用者裝置,也可以分別執行於不同的裝置,第一電腦程序可為一行動服務程式,一旦自第二電腦程序取得驗證碼,重新傳送到驗證系統,執行驗證。所述第二電腦程序可為存取金融服務系統中金融服務的網頁瀏覽程式或特定軟體程式。 Further, the first computer program and the second computer program can run on the same user device, or they can be run on different devices. The first computer program can be a mobile service program, once the verification is obtained from the second computer program The code is re-transmitted to the verification system to perform verification. The second computer program may be a web browser program or a specific software program for accessing financial services in the financial service system.

根據實施例,驗證系統可為獨立運行的系統,也可為執行於特定伺服器中的程序,例如,驗證系統可設於行動銀行中,用於提供驗證服務。 According to the embodiment, the verification system may be an independently operating system or a program executed in a specific server. For example, the verification system may be installed in a mobile bank to provide verification services.

進一步地,第一電腦程序運行於第一裝置,第二電腦程序運行 於第二裝置,第一電腦程序可以自第二電腦程序取得驗證碼,其中方式包括,當第二電腦程序自金融服務系統取得驗證碼後,演算形成一驗證資訊,這個驗證資訊可以為各種可以傳送驗證碼給第一電腦程序的形式,如QR Code,之後,由第一電腦程序自第二裝置取得驗證資訊,在轉換得出驗證碼。 Further, the first computer program runs on the first device, and the second computer program runs In the second device, the first computer program can obtain the verification code from the second computer program. The method includes, when the second computer program obtains the verification code from the financial service system, the calculation forms a verification information. The verification information can be various The form of sending the verification code to the first computer program, such as QR Code, after which the first computer program obtains the verification information from the second device, and converts the verification code.

為使能更進一步瞭解本新型的特徵及技術內容,請參閱以下有關本新型的詳細說明與圖式,然而所提供的圖式僅用於提供參考與說明,並非用來對本新型加以限制。 In order to further understand the features and technical content of the present invention, please refer to the following detailed description and drawings about the present invention. However, the drawings provided are only for reference and explanation, and are not used to limit the present invention.

12:金融服務系統 12: Financial Services System

15:驗證模組 15: Verification module

10:網路 10: Internet

13:第一裝置 13: The first device

14:第二裝置 14: Second device

20:網路 20: Internet

22:金融服務系統 22: Financial Services System

201:使用者資料庫 201: User database

211:識別資料 211: Identification Data

212:註冊資料 212: Registration Information

203:網路服務器 203: web server

24:驗證模組 24: verification module

26:使用者裝置 26: User device

40:網路 40: Internet

41:網路銀行 41: Online Banking

42:行動銀行 42: Mobile Banking

45:驗證模組 45: verification module

43:第一裝置 43: The first device

44:第二裝置 44: second device

50:網路 50: Internet

51:網路銀行 51: Online Banking

52:行動銀行 52: Mobile Banking

55:驗證系統 55: Verification System

53:第一裝置 53: The first device

54:第二裝置 54: second device

63:網路銀行 63: Online Banking

64:行動銀行 64: Mobile Banking

65:驗證模組 65: verification module

61:第一電腦程序 61: The first computer program

62:第二電腦程序 62: second computer program

步驟S301~S311:利用不同電腦程序驗證金融服務存取權限的流程之一 Steps S301~S311: One of the processes for verifying access rights to financial services using different computer programs

步驟S601~S623:利用不同電腦程序驗證金融服務存取權限的流程之二 Steps S601~S623: The second process of verifying access rights to financial services using different computer programs

圖1顯示利用不同電腦程序驗證金融服務存取權限的系統實施例示意圖;圖2顯示利用不同電腦程序驗證金融服務存取權限的系統中金融服務系統的功能實施例圖;圖3顯示利用不同電腦程序驗證金融服務存取權限的方法實施例的流程圖;圖4顯示利用不同電腦程序驗證金融服務存取權限的系統另一實施例示意圖;圖5顯示利用不同電腦程序驗證金融服務存取權限的系統再一實施例示意圖;圖6顯示利用不同電腦程序驗證金融服務存取權限的方法實施例之一流程圖。 Figure 1 shows a schematic diagram of an embodiment of a system for verifying access rights to financial services using different computer programs; Figure 2 shows a functional embodiment diagram of a financial service system in a system that uses different computer programs to verify access rights to financial services; Figure 3 shows using different computers A flowchart of an embodiment of a method for verifying access rights to financial services by programs; Figure 4 shows a schematic diagram of another embodiment of a system for verifying access rights to financial services using different computer programs; Figure 5 shows how to verify access rights to financial services using different computer programs A schematic diagram of another embodiment of the system; FIG. 6 shows a flowchart of a method for verifying access rights of financial services by using different computer programs.

以下是通過特定的具體實施例來說明本創作的實施方式,本領 域技術人員可由本說明書所公開的內容瞭解本創作的優點與效果。本創作可通過其他不同的具體實施例加以施行或應用,本說明書中的各項細節也可基於不同觀點與應用,在不悖離本創作的構思下進行各種修改與變更。另外,本創作的附圖僅為簡單示意說明,並非依實際尺寸的描繪,事先聲明。以下的實施方式將進一步詳細說明本創作的相關技術內容,但所公開的內容並非用以限制本創作的保護範圍。 The following is to illustrate the implementation of this creation through specific specific examples. Field technicians can understand the advantages and effects of this creation from the content disclosed in this specification. This creation can be implemented or applied through other different specific embodiments, and various details in this specification can also be modified and changed based on different viewpoints and applications without departing from the concept of this creation. In addition, the drawings of this creation are merely schematic illustrations, and are not depicted in actual size, and are stated in advance. The following implementations will further describe the related technical content of this creation in detail, but the disclosed content is not intended to limit the protection scope of this creation.

應當可以理解的是,雖然本文中可能會使用到“第一”、“第二”、“第三”等術語來描述各種元件或者信號,但這些元件或者信號不應受這些術語的限制。這些術語主要是用以區分一元件與另一元件,或者一信號與另一信號。另外,本文中所使用的術語“或”,應視實際情況可能包括相關聯的列出項目中的任一個或者多個的組合。 It should be understood that although terms such as “first”, “second”, and “third” may be used herein to describe various elements or signals, these elements or signals should not be limited by these terms. These terms are mainly used to distinguish one element from another, or one signal from another signal. In addition, the term "or" used in this document may include any one or a combination of more of the associated listed items depending on the actual situation.

說明書揭示一種利用不同電腦程序驗證金融服務存取權限的系統,其中的主要概念是讓使用者通過網路存取特定金融服務時,可以使用不同於存取金融服務的電腦程序(第二電腦程序)的另一電腦程序(第一電腦程序)或是不同裝置執行身份驗證,以讓金融服務系統可以在驗證成功後,同意電腦裝置登入與存取特定金融服務。其中所述第二電腦程序可為運行於個人電腦的軟體程序,提供使用者上網存取某金融服務,而第一電腦程序較佳為運行於使用者個人化的行動裝置的行動服務程序(如APP),用於執行身份驗證;第二電腦程序則為運行於存取金融服務的電腦裝置上,可以為一網頁瀏覽器,用於登入金融服務網頁,並存取其中服務,或者可為執行於行動裝置中的軟體程序(如APP),用於登入與存取金融服務。 The manual reveals a system that uses different computer programs to verify access rights to financial services. The main concept is that when users access specific financial services through the Internet, they can use a computer program that is different from accessing financial services (the second computer program). ) Another computer program (the first computer program) or a different device performs identity verification, so that the financial service system can allow the computer device to log in and access specific financial services after the verification is successful. The second computer program may be a software program running on a personal computer, which provides users with access to a financial service online, and the first computer program is preferably a mobile service program running on a user’s personalized mobile device (such as APP), used to perform identity verification; the second computer program runs on a computer device that accesses financial services, which can be a web browser, used to log in to financial services web pages and access the services therein, or can be executed A software program (such as APP) in a mobile device for logging in and accessing financial services.

[第一實施例] [First Embodiment]

根據所公開的利用不同電腦程序驗證金融服務存取權限的系統的實施例,系統架構可參考圖1顯示之實施例之一,其中運行的方法主要運作 於金融服務系統12中,金融服務系統12可涵蓋網路銀行、行動銀行等角色,並提出一驗證模組15,驗證模組15可為獨立伺服器,或是執行於網路銀行或行動銀行中的軟體程序,用於提供驗證不同電腦程序存取金融服務的權限的服務。系統更提供終端使用者運作在相同或不同裝置中的電腦程式,如圖中用於存取特定金融服務的第二裝置14,其中運作如一第二電腦程序,以及用於輔助驗證使用者身份的第一裝置13,其中運作如第一電腦程序。然而,所述第一與第二電腦程序仍可在特定實施例中為執行於同一裝置的不同電腦程序。 According to the disclosed embodiments of the system for verifying access rights to financial services by using different computer programs, the system architecture can refer to one of the embodiments shown in FIG. 1, in which the running method mainly operates In the financial service system 12, the financial service system 12 can cover the roles of online banking, mobile banking, etc., and a verification module 15 is proposed. The verification module 15 can be an independent server, or it can be executed in online banking or mobile banking. The software programs in, are used to provide services for verifying the permissions of different computer programs to access financial services. The system also provides end users with computer programs running on the same or different devices. As shown in the figure, the second device 14 used to access specific financial services, which operates like a second computer program, and is used to assist in verifying user identity. The first device 13 operates as a first computer program. However, the first and second computer programs can still be different computer programs running on the same device in certain embodiments.

根據圖示之實施例,金融服務系統12為提供各種金融服務,例如存提款、轉帳、查詢帳戶餘額、支付交易等。當使用者操作第二裝置14經網路10連線金融服務系統12,金融服務系統12提供網路金融服務,如網路銀行或是行動銀行,使用者可以藉由第二裝置14存取金融服務系統12提供的金融服務。在存取某項金融服務的同時,金融服務系統12將向驗證模組15提出驗證請求。 According to the illustrated embodiment, the financial service system 12 provides various financial services, such as deposit and withdrawal, transfer, check account balance, payment transactions, and so on. When the user operates the second device 14 to connect to the financial service system 12 via the network 10, the financial service system 12 provides online financial services, such as online banking or mobile banking. The user can access the financial services through the second device 14 Financial services provided by the service system 12. While accessing a certain financial service, the financial service system 12 will send a verification request to the verification module 15.

所述驗證模組15可以為一獨立運行的伺服系統,或是執行於網路銀行或是行動銀行中的驗證程序。當接收到金融服務系統12提出的驗證請求後,驗證模組15可以產生唯一識別碼,作為驗證金融服務存取權限的驗證碼,驗證碼可通過網路10傳遞到原本請求金融服務的第二裝置14,再由執行身份驗證的第一裝置13自第二裝置14讀取驗證碼,例如掃描由驗證碼產生的一維或二維條碼(如QR Code),或是其他形式的驗證資訊,如無線識別碼(NFC碼)、語音或是英數字串等,經傳遞到第一裝置13時,由第一裝置13再傳送到驗證模組15,由驗證模組15執行驗證。 The verification module 15 can be a stand-alone server system or a verification program executed in an online bank or a mobile bank. After receiving the verification request from the financial service system 12, the verification module 15 can generate a unique identification code as a verification code for verifying the access authority of the financial service. The verification code can be transmitted through the network 10 to the second person who originally requested the financial service. In the device 14, the first device 13 that performs identity verification reads the verification code from the second device 14, for example, scanning a one-dimensional or two-dimensional barcode (such as QR Code) generated by the verification code, or other forms of verification information, For example, when a wireless identification code (NFC code), voice or alphanumeric string is transmitted to the first device 13, the first device 13 then transmits it to the verification module 15, and the verification module 15 performs verification.

在驗證模組15中,可以將第一裝置13傳送的驗證碼比對之前在同一程序中產生而提供給第二裝置13的驗證碼,藉此驗證第一裝置13的身 份,即驗證了使用者身份。當比對確認驗證碼符合或不符合,即產生驗證結果,這個驗證結果將提供給金融服務系統12,由金融服務系統12判斷是否同意第二裝置13可以存取金融服務。當驗證結果是符合的,金融服務系統12將根據使用者權限同意存取當中的金融服務。 In the verification module 15, the verification code sent by the first device 13 can be compared with the verification code generated in the same program and provided to the second device 13, thereby verifying the identity of the first device 13. The user’s identity is verified. When the comparison confirms that the verification code matches or does not match, a verification result is generated, which will be provided to the financial service system 12, and the financial service system 12 will determine whether the second device 13 can access the financial service. When the verification result is consistent, the financial service system 12 will approve access to the financial service in accordance with the user's authority.

根據一實施例,參考以上流程,所述第一裝置13中運行第一電腦程序,如一行動服務程式(APP),用於登入金融服務系統12中的行動銀行,在此流程中為用於驗證使用者身份的電腦程序。第二裝置14中運行第二電腦程序,用於登入與存取金融服務系統12中的網路銀行,並請求存取其中的金融服務,第二電腦程序可以為運行於第二裝置14中的網頁瀏覽器、特定軟體程式或是金融服務業者提供的APP。 According to one embodiment, referring to the above process, a first computer program, such as a mobile service program (APP), is run in the first device 13 to log in to the mobile bank in the financial service system 12, and in this process is used for verification The computer program of the user identity. A second computer program runs in the second device 14 for logging in and accessing the online banking in the financial service system 12, and requesting access to the financial services therein. The second computer program may be the one running in the second device 14 Web browsers, specific software programs, or apps provided by financial service providers.

利用行動服務程式(第一電腦程序)驗證存取某項金融服務時,使用者可以操作第二裝置12登入金融服務系統12,有別於傳統要求帳號與密碼的方法,當金融服務系統12得知使用者欲登入其中服務時(第二電腦程序),金融服務系統12可根據使用者識別資料,如使用者帳戶(User ID),對照內部資料庫,確認使用者設定之驗證身份的裝置(對應電話號碼、網路身份),向驗證模組15發出驗證請求,讓驗證模組15根據金融服務系統12提供的資訊驗證使用者端的第一裝置13。 When using a mobile service program (the first computer program) to verify access to a financial service, the user can operate the second device 12 to log in to the financial service system 12, which is different from the traditional method of requiring an account and password. When the financial service system 12 When the user wants to log in to the service (the second computer program), the financial service system 12 can check the internal database to verify the identity authentication device set by the user based on the user identification data, such as the user account (User ID). Corresponding to the phone number and network identity), a verification request is sent to the verification module 15 so that the verification module 15 verifies the first device 13 on the user side according to the information provided by the financial service system 12.

根據一實施例,所述第一與第二電腦程序可運行於同一使用者裝置中,其中使用者裝置可以第二電腦程序向金融服務系統12發出金融服務請求,第二電腦程序可為一個交易支付的程序,所述金融服務請求可為一支付請求,可於接收驗證碼後,傳遞至第一電腦程序完成驗證。第一電腦程序為行動服務程式,也就是可通過登入行動銀行完成驗證,即授權進行支付。 According to an embodiment, the first and second computer programs can run on the same user device, wherein the user device can send a financial service request to the financial service system 12 by the second computer program, and the second computer program can be a transaction In the payment procedure, the financial service request can be a payment request, which can be passed to the first computer program to complete the verification after receiving the verification code. The first computer program is a mobile service program, that is, the verification can be completed by logging in to the mobile bank, that is, the payment is authorized.

圖2進一步描述顯示利用不同電腦程序驗證金融服務存取權限的系統中金融服務系統的功能實施例圖。 Figure 2 further describes a functional embodiment diagram showing the financial service system in the system that uses different computer programs to verify access rights to financial services.

可參照圖1描述的實施例圖,此例顯示金融服務系統22中設有使用者資料庫201,其中記載使用者所註冊的識別資料211,有關使用者的身份資料、網路身份ID、使用者識別碼(User ID)等;以及註冊資料212,註冊資料212為有關使用者註冊時所登錄的資料,如執行身份驗證的裝置(如第一裝置)與其中通訊資料,如電話號碼、裝置硬體資訊(如IMEI等)等。金融服務系統22設有網路服務器203,用提供使用者通過網路20登入與存取金融服務,網路服務器203特別為提供各種金融服務的網站,接收使用者操作使用者裝置26以網頁瀏覽器存取金融服務。 Referring to the embodiment diagram described in Figure 1, this example shows that the financial service system 22 has a user database 201, which records the user's registered identification data 211, the user's identity data, network identity ID, usage User ID, etc.; and registration information 212. The registration information 212 is the information registered when the user is registered, such as the device performing identity verification (such as the first device) and the communication data in it, such as phone number, device Hardware information (such as IMEI, etc.), etc. The financial service system 22 is provided with a web server 203 for users to log in and access financial services through the network 20. The web server 203 is particularly for websites that provide various financial services, and receives users to operate the user device 26 for web browsing. Access to financial services.

在此實施例中,對照上述實施例,第一電腦程序與第二電腦程序可為運行在使用者裝置26中的兩個電腦程序,其中第二電腦程序用於存取金融服務系統22中的金融服務,第一電腦程序為用於與驗證模組24往來執行身份驗證。 In this embodiment, compared with the above-mentioned embodiment, the first computer program and the second computer program can be two computer programs running on the user device 26, and the second computer program is used to access the financial service system 22 For financial services, the first computer program is used to communicate with the verification module 24 to perform identity verification.

舉例來說,當使用者操作使用者裝置26,開啟第二電腦程序,如網頁瀏覽器,通過網路20連線金融服務系統22的網站(網路服務器203),此時,運行於金融服務系統22中的程序將根據使用者的識別資料對照使用者資料庫201,從其中識別資料211與註冊資料212得出驗證使用者身份的方式。此例中,金融服務系統22可發出請求驗證的信息至驗證模組24,並可提供對應的使用者識別資料,驗證模組24可為運行於特定伺服器的驗證程序,包括可設於網路銀行或行動銀行中,或也可為金融服務系統22中運行的驗證功能。經驗證模組24產生驗證碼後,將驗證碼回傳至金融服務系統22,由金融服務系統22根據使用者識別資料提供驗證碼於使用者裝置26中的第一電腦程序。 For example, when the user operates the user device 26, opens a second computer program, such as a web browser, and connects to the website (web server 203) of the financial service system 22 through the network 20, at this time, it runs in the financial service The program in the system 22 compares the user database 201 with the user's identification data, and derives a way to verify the user's identity from the identification data 211 and the registration data 212 therein. In this example, the financial service system 22 can send information requesting verification to the verification module 24, and can provide corresponding user identification data. The verification module 24 can be a verification program running on a specific server, including a verification program that can be set on the Internet. It may also be a verification function running in the financial service system 22 in a road bank or mobile bank. After the verification code is generated by the verification module 24, the verification code is sent back to the financial service system 22, and the financial service system 22 provides the verification code in the first computer program in the user device 26 according to the user identification data.

第一電腦程序將接獲的驗證碼傳送至驗證模組24,由驗證模組24比對之前產生的驗證碼,以及目前接收的驗證碼,據此驗證使用者身份。 驗證結果將提供金融服務系統22,若驗證成功,即同意使用者裝置26中第二電腦程序登入與存取金融服務。 The first computer program transmits the received verification code to the verification module 24, and the verification module 24 compares the previously generated verification code with the currently received verification code to verify the user's identity. The verification result will provide the financial service system 22. If the verification is successful, the second computer program in the user device 26 is allowed to log in and access the financial service.

其中,若使用者裝置26為常見具有照相機模組、各種生物識別模組的行動裝置,使用者在操作其中第一與第二電腦程序時,可以各種身份識別技術(如密碼、臉部辨識、指紋識別等)再次確認使用者身份,具有更高的安全性。 Among them, if the user device 26 is a common mobile device with a camera module and various biometric recognition modules, the user can use various identification technologies (such as passwords, facial recognition, etc.) when operating the first and second computer programs. Fingerprint recognition, etc.) reconfirm the user's identity, with higher security.

圖3顯示為根據圖1與圖2系統架構運行的利用不同電腦程序驗證金融服務存取權限的方法實施例的流程圖。 FIG. 3 shows a flowchart of an embodiment of a method for verifying access rights to financial services by using different computer programs that operate according to the system architectures of FIG. 1 and FIG. 2.

在此流程中,一開始如步驟S301,金融服務系統自第二電腦程序(如運行於第二裝置)接收一金融服務請求,要求存取一金融服務。這時,如步驟S303,金融服務系統將請求驗證服務,根據實施例,金融服務系統向驗證模組請求驗證服務,而此驗證模組可以為金融服務系統中的一個軟體功能,由金融服務系統本身提供驗證服務;或者,驗證模組可以為一獨立系統,可以接收各方(包括金融服務系統)提出的驗證請求以產生驗證碼;在另一方案中,驗證模組可設於網路銀行或是行動銀行內,並以特定演算法產生驗證碼。 In this process, initially as in step S301, the financial service system receives a financial service request from a second computer program (such as running on a second device), requesting access to a financial service. At this time, in step S303, the financial service system will request the verification service. According to the embodiment, the financial service system requests the verification service from the verification module, and the verification module may be a software function in the financial service system. Provide verification services; or, the verification module can be an independent system that can receive verification requests from various parties (including financial service systems) to generate verification codes; in another solution, the verification module can be installed in online banking or It is in the mobile bank and uses a specific algorithm to generate a verification code.

之後,如步驟S305,金融服務系統自驗證模組接收驗證碼,驗證碼較佳為一次式的唯一識別碼。再如步驟S307,由金融服務系統提供驗證碼至第一電腦程序,由第一電腦程序傳送驗證碼至驗證模組。其中,第一電腦程序取得驗證碼的方式,例如,可以通過存取金融服務的第二電腦程序傳遞給第一電腦程序,當第一、第二電腦程序運行於相同裝置時,可由使用者手動輸入,或是程式內轉送的方式;或是第一、第二電腦程序運行在不同裝置時,可以手動輸入或掃描的方式,讓第一電腦程序直接或間接接收此驗證碼。舉例來說,當由金融服務系統提供驗證碼至第二電腦程序時,以軟體演 算出驗證資訊,可顯示於顯示螢幕上,再於第一電腦程序讀取或寫下顯示的驗證資訊,使得第一電腦程序得到驗證碼。 After that, in step S305, the financial service system receives the verification code from the verification module, and the verification code is preferably a one-time unique identification code. In step S307, the financial service system provides the verification code to the first computer program, and the first computer program transmits the verification code to the verification module. Among them, the method of obtaining the verification code by the first computer program, for example, can be passed to the first computer program by accessing the second computer program of the financial service. When the first and second computer programs are running on the same device, the user can manually Input, or transfer in the program; or when the first and second computer programs are running on different devices, you can manually input or scan, so that the first computer program can directly or indirectly receive the verification code. For example, when the verification code is provided by the financial service system to the second computer program, the software The calculated verification information can be displayed on the display screen, and then read or write down the displayed verification information in the first computer program, so that the first computer program obtains the verification code.

這時,第一電腦程序將取得的驗證碼傳送到驗證模組,由驗證模組比對最初產生的驗證碼與本次自第一電腦程序接收的驗證碼,產生驗證結果,於步驟S309中,使得金融服務系統可自獨立運行、運行於網路銀行或是行動銀行中的驗證模組取得驗證結果。金融服務系統再自驗證模組接收驗證結果,如步驟S311,金融服務系統可根據驗證結果決定是否提供金融服務。 At this time, the first computer program transmits the obtained verification code to the verification module, and the verification module compares the initially generated verification code with the verification code received from the first computer program this time to generate a verification result. In step S309, The financial service system can obtain the verification result from the verification module in the independent operation, running in the online bank or the mobile bank. The financial service system then receives the verification result from the verification module. In step S311, the financial service system may decide whether to provide financial services according to the verification result.

根據實施例,所述金融服務系統可主動或被動向驗證模組取得驗證結果,使得金融服務系統根據驗證結果及其他驗證資訊或約定資訊決定是否提供第二電腦程序所請求之金融服務。 According to an embodiment, the financial service system can actively or passively obtain the verification result from the verification module, so that the financial service system determines whether to provide the financial service requested by the second computer program based on the verification result and other verification information or agreed information.

實現利用不同電腦程序驗證金融服務存取權限的方法的系統至少包括以下描述的各端裝置,如提供金融服務(如存放款、借貸、投資理財、支付與信用卡等服務)的金融服務系統,以及提供驗證服務的驗證模組。使用者裝置端則是使用者操作的一或多個電腦裝置,包括用於存取金融服務與身份驗證的裝置。 The system that implements methods for verifying access rights to financial services using different computer programs includes at least the various end devices described below, such as financial service systems that provide financial services (such as deposits, loans, investment and wealth management, payment and credit cards), and A verification module that provides verification services. The user device side is one or more computer devices operated by the user, including devices for accessing financial services and authentication.

[第二實施例] [Second Embodiment]

根據圖4顯示的系統實施例示意圖,所述金融服務系統分為網路銀行41與行動銀行42兩個服務系統,通過網路40共同服務使用者,並於行動銀行42中設有驗證模組45,由行動銀行42驗證第一裝置43(如手機),用於驗證使用者通過第二裝置44(如個人電腦)存取網路銀行41中的權限。 According to the schematic diagram of the system embodiment shown in Fig. 4, the financial service system is divided into two service systems: online banking 41 and mobile banking 42, which jointly serve users through the network 40, and has a verification module in the mobile banking 42 45. The mobile bank 42 verifies the first device 43 (such as a mobile phone) for verifying the user's authority to access the online bank 41 through the second device 44 (such as a personal computer).

根據圖式顯示的系統架構,終端使用者可操作第二裝置44連線提供金融服務的網路銀行41,可利用網頁或特定軟體程式產生金融服務請求,請求中可包括了來源與目的地的網路與裝置資訊(如使用者採用的裝置、瀏覽器、電信與網路服務)、存取金融服務的項目的相關資訊,以及使用者 身份資訊,如User ID,可一併傳送到網路銀行41。 According to the system architecture shown in the diagram, the end user can operate the second device 44 to connect to the online bank 41 that provides financial services, and can use web pages or specific software programs to generate financial service requests. The request can include source and destination information. Network and device information (such as the user’s device, browser, telecommunications and network services), information about items that access financial services, and users Identity information, such as User ID, can be sent to online banking 41 together.

之後,網路銀行41向行動銀行42要求驗證服務,由當中的驗證模組45執行驗證,包括產生驗證當下程序的驗證碼,之後,可以根據所接收到的使用者相關的身份資訊對照出用於驗證的另一使用者裝置,如圖式中的第一裝置43,例如是使用者隨身的行動裝置。這時,可先由行動銀行42將驗證碼或可以其他形式轉送到網路銀行41,並提供給第二裝置44,讓使用者再以第一裝置43取得驗證碼。 After that, the online bank 41 requests a verification service from the mobile bank 42, and the verification module 45 performs verification, including generating a verification code for verifying the current process. After that, it can be compared and used according to the received user-related identity information. Another user device for verification, such as the first device 43 in the figure, is, for example, a mobile device carried by the user. At this time, the mobile bank 42 can first transfer the verification code or other forms to the online bank 41, and provide it to the second device 44, so that the user can obtain the verification code through the first device 43.

根據第一裝置43取得驗證碼的實施例之一,當第二裝置44接收到網路銀行41傳送的驗證碼,可以其中運行的軟體程序根據驗證碼演算出一驗證資訊,驗證資訊可為一種驗證圖形,如一維條碼,或是二維條碼(QR碼),可顯示在第二裝置44的顯示螢幕上,再由第一裝置43讀取;或者,驗證資訊可為一組字串,讓使用者抄寫或是影像讀取到第一裝置43。 According to one of the embodiments in which the first device 43 obtains the verification code, when the second device 44 receives the verification code sent by the online banking 41, the software program running therein can calculate a verification information based on the verification code. The verification information may be a kind of The verification graphic, such as a one-dimensional bar code or a two-dimensional bar code (QR code), can be displayed on the display screen of the second device 44 and read by the first device 43; or, the verification information can be a set of strings, The user transcribes or reads images to the first device 43.

其中將驗證碼傳送給第一裝置43的方法之一是利用第一裝置43上的照相機模組,經其中執行的行動服務程式驅動其照相機模組拍攝顯示在第二裝置44螢幕上的驗證圖形,利用掃描程序掃描驗證圖形後,取得驗證資訊中的驗證碼。 One of the methods for transmitting the verification code to the first device 43 is to use the camera module on the first device 43, and the mobile service program executed therein drives the camera module to shoot the verification image displayed on the screen of the second device 44 , After scanning the verification graphic with the scanner, obtain the verification code in the verification information.

所述驗證碼可設定一時效,就是在設定的時間內必須完成傳送與驗證,以免驗證碼失效。其中,可由第一裝置43登入行動銀行42,以及將所取得的驗證碼傳送至行動銀行42,由驗證模組45比對之前產生的驗證碼與此時接收的驗證碼,產生驗證結果。在此一提的是,說明書所提出的驗證方法並不限定所述登入行動銀行42與第一裝置43取得驗證碼的先後順序,第一裝置43可以在登入行動銀行42後才接收到驗證碼,也可以在接收到驗證碼後再登入行動銀行42。更者,驗證第一裝置43的方式也非限定在登入行動銀行42,仍可以連線其他主機的方式進行驗證。針對傳送驗證碼的方式,例如, 第一裝置43傳遞驗證碼的方式可以是通過其中金融服務程式以推播的方式傳遞至行動銀行42或是指定的驗證主機,所述推播方式之外,亦可採用簡訊或電子郵件等方式傳送驗證碼。 The verification code can be set with a time limit, that is, the transmission and verification must be completed within a set time to prevent the verification code from becoming invalid. The first device 43 can log in to the mobile bank 42 and transmit the obtained verification code to the mobile bank 42, and the verification module 45 compares the verification code generated before with the verification code received at this time to generate a verification result. It is mentioned here that the verification method proposed in the manual does not limit the sequence of logging in to the mobile bank 42 and the first device 43 to obtain the verification code. The first device 43 can receive the verification code after logging in to the mobile bank 42 , You can also log in to the mobile bank 42 after receiving the verification code. Furthermore, the method of verifying the first device 43 is not limited to logging in to the mobile bank 42, and it can still be verified by connecting to other hosts. For the method of transmitting the verification code, for example, The verification code can be transmitted by the first device 43 through a push broadcast of the financial service program to the mobile bank 42 or a designated verification host. In addition to the push broadcast, SMS or email may also be used. Send verification code.

之後,根據一實施例,網路銀行41可以主動或被動地接收到驗證結果,例如,可由網路銀行41產生詢問訊息而取得驗證結果,或是行動銀行42主動將驗證結果傳送到網路銀行41。當驗證結果顯示驗證成功,網路銀行41可與第二裝置44互通信息,表示可以登入系統並存取特定金融服務。反之,若驗證模組45比對結果顯示兩次接收的驗證碼並不相符,表示驗證失敗,同樣可通知網路銀行41拒絕第二裝置44登入與存取金融服務。 After that, according to an embodiment, the online bank 41 can actively or passively receive the verification result. For example, the online bank 41 can generate a query message to obtain the verification result, or the mobile bank 42 can actively send the verification result to the online bank. 41. When the verification result shows that the verification is successful, the online bank 41 can exchange information with the second device 44, indicating that it can log in to the system and access specific financial services. Conversely, if the comparison result of the verification module 45 shows that the verification codes received twice do not match, it indicates that the verification has failed, and the online bank 41 can also be notified to deny the second device 44 to log in and access financial services.

除上述以第一裝置43驗證第二裝置44存取網路銀行41的範例外,不排除也可由第二裝置44驗證以第一裝置43存取行動銀行42的方式。 In addition to the above example of using the first device 43 to verify that the second device 44 accesses the online bank 41, it is not ruled out that the second device 44 can also be used to verify the way the first device 43 accesses the mobile bank 42.

其中網路服務系統13為第一裝置11對應的伺服器,可連結金融服務系統10與執行驗證的驗證系統14。驗證系統14為提供網路服務系統13驗證服務與驗證結果的系統,可如一種裝置驗證系統、憑證驗證系統、網路銀行伺服器、多元身分驗證系統等。根據一實施例,所述金融服務系統10、網路服務系統13與驗證系統14可為運行在一個伺服系統的不同服務,或可分別為運行在不同的兩個以上的伺服系統的服務。 The network service system 13 is a server corresponding to the first device 11, which can connect the financial service system 10 and the verification system 14 that performs verification. The verification system 14 is a system that provides verification services and verification results of the network service system 13, such as a device verification system, a certificate verification system, an online banking server, a multiple identity verification system, and the like. According to an embodiment, the financial service system 10, the network service system 13 and the verification system 14 may be different services running on one server system, or may be services running on two or more different server systems.

當網路服務系統13接收到驗證請求後,會產生一驗證碼,較佳為唯一且一次式的驗證碼,提供給金融服務系統10,使得第一裝置11中運行第一電腦程序可直接或間接取得網路服務系統13產生的驗證碼。之後,第一電腦程序可直接向驗證系統14或通過網路服務系統13再向驗證系統14傳送所接收的驗證碼與相關資訊,以進行驗證。 When the network service system 13 receives the verification request, it will generate a verification code, preferably a unique and one-time verification code, and provide it to the financial service system 10 so that the first computer program running in the first device 11 can be directly or Indirectly obtain the verification code generated by the network service system 13. After that, the first computer program can directly send the received verification code and related information to the verification system 14 or through the network service system 13 to the verification system 14 for verification.

之後,金融服務系統10可以從驗證系統14取得驗證結果,若驗證成功,即接受第二裝置12登入與存取金融服務;反之,若驗證不成功,即 拒絕第二裝置12登入。 After that, the financial service system 10 can obtain the verification result from the verification system 14. If the verification is successful, it accepts the second device 12 to log in and access the financial service; otherwise, if the verification is unsuccessful, it means Reject the second device 12 to log in.

根據上述利用行動服務程式驗證金融服務的系統實施例,所述網路100如網際網路(Internet),各端裝置與伺服器通過網路100相互通信,金融服務系統10如特定網路銀行或是通過網路服務客戶的金融服務,使用者裝置可以分為第一裝置11與第二裝置12,第一裝置11一般可為作為驗證使用者身份的行動裝置,其中安裝金融服務系統10提供的金融服務程式,為一種APP,第二裝置12可為要求存取金融服務的電腦裝置,有別於第一裝置11,第二裝置12可為桌上型電腦、筆記型電腦、智慧電視、平板電腦等。所述網路服務系統13可為使用者所採用的電信或網路服務業者,作為信息傳遞與產生驗證碼的服務業者。驗證系統14可為運行於金融服務系統10或是網路服務系統13的伺服器中的驗證程序,或為第三方業者提供的驗證服務。 According to the above-mentioned embodiment of the system for verifying financial services using mobile service programs, the network 100 is such as the Internet, and various end devices and servers communicate with each other through the network 100, and the financial service system 10 is such as a specific online bank or It is a financial service that serves customers through the Internet. The user device can be divided into a first device 11 and a second device 12. The first device 11 can generally be a mobile device for verifying the identity of the user, in which the financial service system 10 is installed. A financial service program is an APP. The second device 12 can be a computer device that requires access to financial services, which is different from the first device 11. The second device 12 can be a desktop computer, a notebook computer, a smart TV, or a tablet Computer etc. The network service system 13 can be a telecommunications or network service provider used by users, as a service provider for information transmission and generation of verification codes. The verification system 14 may be a verification program running on a server of the financial service system 10 or the network service system 13, or a verification service provided by a third-party industry.

[第三實施例] [Third Embodiment]

圖5顯示利用不同電腦程序驗證金融服務存取權限的系統再一實施例示意圖,方法流程可參考圖6所示的實施例流程圖。 FIG. 5 shows a schematic diagram of another embodiment of a system for verifying access rights to financial services using different computer programs. For the method flow, please refer to the flowchart of the embodiment shown in FIG. 6.

圖中顯示由網路銀行51與行動銀行52形成的金融服務系統,可通過網路50相互連線,另提出獨立運作的驗證系統55,使用者端的裝置包括了第一裝置53與第二裝置54,也是通過網路50連線對應的系統,如第一裝置53安裝了相關金融服務的應用程式,可用於取得網路銀行51所提供的金融服務,第二裝置54則是連線行動銀行52,用以取得行動銀行52所提供的金融服務。 The figure shows a financial service system formed by an online bank 51 and a mobile bank 52, which can be connected to each other through the network 50. An independent verification system 55 is also proposed. The user-side devices include a first device 53 and a second device 54. It is also connected to the corresponding system through the network 50. For example, the first device 53 is installed with relevant financial service applications, which can be used to obtain the financial services provided by the online bank 51, and the second device 54 is connected to the mobile bank 52. To obtain financial services provided by mobile bank 52.

通過驗證系統55,第一裝置53與第二裝置54可以通過驗證系統55互為驗證,也就是可以第二裝置54在請求網路銀行51提供的金融服務時,先取得行動銀行52或驗證系統55發出的驗證碼,再由第一裝置53讀取驗證碼,再可經由行動銀行52提交給驗證系統55,如此,驗證系統55可以確保當 次存取金融服務的使用者身份為正確的,才通知網路銀行51提供服務。 Through the verification system 55, the first device 53 and the second device 54 can be mutually verified by the verification system 55, that is, the second device 54 can first obtain the mobile bank 52 or the verification system when requesting the financial services provided by the online bank 51 55, the verification code is read by the first device 53, and then it can be submitted to the verification system 55 via the mobile bank 52. In this way, the verification system 55 can ensure The identity of the user who accesses the financial service for the second time is correct, and the online bank 51 is notified to provide the service.

對照圖6所示的流程,上述網路銀行51對照圖6中的網路銀行63,行動銀行52則是對照圖6的行動銀行64,驗證系統55可為獨立運行的第三方伺服系統,在圖6表示為可以運行在各種系統下的驗證模組65。所述第一裝置53中運行了第一電腦程序61,第二裝置54中運行了第二電腦程序62,且第一電腦程序61與第二電腦程序62可以同時運作在一個使用者裝置中。 Compared with the process shown in Figure 6, the above-mentioned online bank 51 is compared with the online bank 63 in Figure 6, and the mobile bank 52 is compared with the mobile bank 64 in Figure 6. The verification system 55 can be an independently operated third-party server system. Fig. 6 shows a verification module 65 that can run in various systems. The first device 53 runs a first computer program 61, and the second device 54 runs a second computer program 62, and the first computer program 61 and the second computer program 62 can run on one user device at the same time.

在此流程中,一開始如步驟S601,由第二電腦程序62向網路銀行63請求特定金融服務,接著如步驟S603,由網路銀行63向行動銀行64請求驗證服務,例如要求以一行動裝置驗證使用者身份。再如步驟S605,行動銀行64產生驗證碼,較佳為唯一識別碼,並於此例的步驟S607,行動銀行64將驗證碼提供給網路銀行63,使得接受驗證的第一電腦程序61以主動或被動方式取得驗證碼,以能向驗證模組65或透過行動銀行64傳送驗證碼進行驗證。於步驟S607的同時或是一短暫時間內,如步驟S609,行動銀行64將驗證碼也提供給驗證模組65。 In this process, at first, in step S601, the second computer program 62 requests a specific financial service from the online bank 63, and then in step S603, the online bank 63 requests a verification service from the mobile bank 64, such as requesting an action The device verifies the identity of the user. In step S605, the mobile bank 64 generates a verification code, preferably a unique identification code, and in step S607 of this example, the mobile bank 64 provides the verification code to the online bank 63, so that the first computer program 61 to be verified is The verification code is obtained in an active or passive manner, so that the verification code can be sent to the verification module 65 or through the mobile bank 64 for verification. At the same time as step S607 or within a short period of time, as in step S609, the mobile bank 64 also provides the verification code to the verification module 65.

在步驟S611中,當網路銀行63取得驗證碼,可以轉換顯示於第二電腦程序62上的驗證資訊,再提供給第一電腦程序61,如步驟S613所示。當第一電腦程序61取得驗證碼,這時,如步驟S615,可被要求登入行動銀行64,以將驗證碼提供給行動銀行64,再如步驟S617,由行動銀行64交給驗證模組65執行驗證。此例之驗證模組65可為執行於特定伺服器的軟體程序,或是為獨立運行提供驗證的伺服系統,之後產生驗證結果,如步驟S619,由驗證模組65以主動提供或是被動要求而傳送驗證結果至網路銀行63,這個驗證結果可以攜帶著最初請求金融服務的相關身份資訊,如使用者ID。當驗證結果為是,如步驟S621,網路銀行63將同意第二電腦程序62存取金融服務,如步驟S623,由第二電腦程序62存取金融服務。 In step S611, when the online banking 63 obtains the verification code, the verification information displayed on the second computer program 62 can be converted and then provided to the first computer program 61, as shown in step S613. When the first computer program 61 obtains the verification code, at this time, in step S615, it can be required to log in to the mobile bank 64 to provide the verification code to the mobile bank 64, and then in step S617, the mobile bank 64 sends the verification code to the verification module 65 for execution verification. The verification module 65 in this example can be a software program running on a specific server, or a server system that provides verification for independent operation, and then generates a verification result, such as step S619, which is actively provided or passively requested by the verification module 65 The verification result is sent to the online bank 63. The verification result can carry the relevant identity information of the initial request for financial services, such as the user ID. When the verification result is yes, in step S621, the online bank 63 will allow the second computer program 62 to access the financial service, and in step S623, the second computer program 62 will access the financial service.

上述存取金融服務仍可涵蓋第二電腦程序62登入網路銀行63的程序,也就是當要登入網路銀行63時,即可啟動以第一電腦程序(或是行動裝置)驗證的程序。驗證程序亦可應用於交易、查詢或修改資料等。 The aforementioned access to financial services can still cover the process of logging in to the online banking 63 by the second computer program 62, that is, when logging in to the online banking 63, the first computer program (or mobile device) verification process can be activated. The verification procedure can also be applied to transactions, query or modification of information, etc.

綜上所述,根據上述揭示的行動服務程式驗證金融服務的系統的實施例,提出一種存取金融服務時的身份驗證技術,以第一裝置取得第二裝置存取金融服務的驗證碼,可以讓金融服務系統在確保存取金融服務的使用者與註冊時身份吻合時提供金融服務,可以強化使用者登入存取金融服務的安全性,已優化了登入金融服務的流程,相較於現行需要帳號密碼的方式更為簡便,且更為安全。 In summary, according to the embodiments of the system for verifying financial services by mobile service programs disclosed above, an identity verification technology for accessing financial services is proposed. The first device obtains the verification code for accessing financial services by the second device. Allows the financial service system to provide financial services when the users who access financial services have the same identity at the time of registration can strengthen the security of users logging in and accessing financial services, and the process of logging in to financial services has been optimized, compared with current needs The account password method is simpler and more secure.

以上所公開的內容僅為本新型的優選可行實施例,並非因此侷限本新型的申請專利範圍,所以凡是運用本新型說明書及圖式內容所做的等效技術變化,均包含於本新型的申請專利範圍內。 The content disclosed above is only the preferred and feasible embodiments of the present model, and does not limit the scope of the patent application of the present model. Therefore, all equivalent technical changes made by using the present model specification and schematic content are included in the present model application. Within the scope of the patent.

12:金融服務系統 12: Financial Services System

15:驗證模組 15: Verification module

10:網路 10: Internet

13:第一裝置 13: The first device

14:第二裝置 14: Second device

Claims (7)

一種利用不同電腦程序驗證金融服務存取權限的系統,包括:一金融服務系統,設有一網路服務器,提供一第二電腦程序通過一網路存取一金融服務,以及提供一第一電腦程序執行一驗證程序;以及一驗證系統,為一獨立運行的伺服系統,用提供一驗證服務,為根據該金融服務系統提出的一驗證請求產生一驗證碼;其中,該金融服務系統執行一利用不同電腦程序驗證金融服務存取權限的方法,包括:自一裝置產生的該第二電腦程序接收一金融服務請求,要求存取該金融服務;向該驗證系統請求該驗證服務,由該驗證系統產生該驗證碼,該驗證碼為一次式的唯一識別碼;自該驗證系統接收該驗證碼;提供該驗證碼至該第二電腦程序,由該第二電腦程序根據該驗證碼演算一驗證資訊,用於傳遞至與執行該第二電腦程序的該裝置相同或不相同的裝置執行的該第一電腦程序;由執行身份驗證的該第一電腦程序從該驗證資訊取得該驗證碼,並傳送至該驗證系統,該驗證系統根據比對前後驗證碼後產生一驗證結果;以及自該驗證系統接收該驗證結果,根據該驗證結果判斷是否提供該第二電腦程序存取該金融服務。 A system for verifying access rights to financial services using different computer programs includes: a financial service system with a network server, providing a second computer program to access a financial service through a network, and providing a first computer program Perform a verification procedure; and a verification system, which is an independently operated server system, is used to provide a verification service to generate a verification code according to a verification request made by the financial service system; wherein the financial service system performs a different use A method for a computer program to verify access rights to financial services includes: receiving a financial service request from the second computer program generated by a device, requesting access to the financial service; requesting the verification service from the verification system, which is generated by the verification system The verification code, the verification code is a one-time unique identification code; the verification code is received from the verification system; the verification code is provided to the second computer program, and the second computer program calculates verification information according to the verification code, Used to transmit to the first computer program executed by the same or different device as the device executing the second computer program; the first computer program executing identity verification obtains the verification code from the verification information, and sends it to The verification system, the verification system generates a verification result based on the verification code before and after the comparison; and receives the verification result from the verification system, and determines whether to provide the second computer program to access the financial service according to the verification result. 如請求項1所述的利用不同電腦程序驗證金融服務存取權限的系統,其中該第一電腦程序為一行動服務程式,用於接收該驗證碼;該第二電腦程序為存取該金融服務系統中金融服務的一網頁瀏覽程式或一特定軟體程式。 The system for verifying access rights to financial services by using different computer programs as described in claim 1, wherein the first computer program is a mobile service program for receiving the verification code; the second computer program is for accessing the financial service A web browser program or a specific software program for financial services in the system. 如請求項2所述的利用不同電腦程序驗證金融服務存取權限的 系統,其中該驗證系統設於該金融服務系統中,由該金融服務系統本身提供該驗證服務。 Use different computer programs to verify access rights to financial services as described in claim 2 System, wherein the verification system is set in the financial service system, and the financial service system itself provides the verification service. 如請求項2所述的利用不同電腦程序驗證金融服務存取權限的系統,其中該金融服務系統包括一網路銀行與一行動銀行,該網路銀行提供該金融服務。 The system for verifying access rights to financial services using different computer programs as described in claim 2, wherein the financial service system includes an online bank and a mobile bank, and the online bank provides the financial service. 如請求項4所述的利用不同電腦程序驗證金融服務存取權限的系統,其中該驗證系統設於該網路銀行或該行動銀行中,用於提供該驗證服務。 The system for verifying access rights to financial services by using different computer programs as described in claim 4, wherein the verification system is set in the online bank or the mobile bank to provide the verification service. 如請求項2所述的利用不同電腦程序驗證金融服務存取權限的系統,其中該第一電腦程序運行於一第一裝置中,該第二電腦程序運行於一第二裝置中,而運行於該第一裝置的該第一電腦程序取得該驗證碼的方法包括:該金融服務系統自該驗證系統接收該驗證碼後,提供該驗證碼至第二電腦程序,於該第二裝置中演算形成該驗證資訊;由運行於該第一裝置之該第一電腦程序自該第二裝置取得該驗證資訊;以及該第一裝置由該驗證資訊得出該驗證碼。 The system for verifying access rights to financial services using different computer programs as described in claim 2, wherein the first computer program runs in a first device, the second computer program runs in a second device, and the The method for the first computer program of the first device to obtain the verification code includes: after the financial service system receives the verification code from the verification system, it provides the verification code to a second computer program, and calculates the verification code in the second device The verification information; the verification information is obtained from the second device by the first computer program running on the first device; and the first device obtains the verification code from the verification information. 如請求項6所述的利用不同電腦程序驗證金融服務存取權限的系統,其中由該第一電腦程序取得該第二電腦程序演算得出的該驗證資訊為一維或二維條碼、無線識別碼、語音或是英數字串。 The system for verifying access rights to financial services using different computer programs as described in claim 6, wherein the verification information calculated by the second computer program obtained by the first computer program is a one-dimensional or two-dimensional bar code, wireless identification Code, voice or alphanumeric string.
TW108214199U 2019-10-29 2019-10-29 System for verifying financial service access privilege using different computer sequences TWM598987U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW108214199U TWM598987U (en) 2019-10-29 2019-10-29 System for verifying financial service access privilege using different computer sequences

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW108214199U TWM598987U (en) 2019-10-29 2019-10-29 System for verifying financial service access privilege using different computer sequences

Publications (1)

Publication Number Publication Date
TWM598987U true TWM598987U (en) 2020-07-21

Family

ID=72601694

Family Applications (1)

Application Number Title Priority Date Filing Date
TW108214199U TWM598987U (en) 2019-10-29 2019-10-29 System for verifying financial service access privilege using different computer sequences

Country Status (1)

Country Link
TW (1) TWM598987U (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI757925B (en) * 2020-10-22 2022-03-11 臺灣網路認證股份有限公司 System for making two applications run simultaneously by calling input program and method thereof

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI757925B (en) * 2020-10-22 2022-03-11 臺灣網路認證股份有限公司 System for making two applications run simultaneously by calling input program and method thereof

Similar Documents

Publication Publication Date Title
US11122036B2 (en) Systems and methods for managing digital identities associated with mobile devices
US9967261B2 (en) Method and system for secure authentication
US10235672B2 (en) Securely receiving from a remote user sensitive information and authorization to perform a transaction using the sensitive information
US8904495B2 (en) Secure transaction systems and methods
US20110093397A1 (en) Anti-phishing system and method including list with user data
EP2343679A1 (en) Secure transaction systems and methods
JP2022527798A (en) Systems and methods for efficient challenge response authentication
JP2016535881A (en) Method and system for authenticating services
US20240013198A1 (en) Validate digital ownerships in immutable databases via physical devices
TW201421393A (en) System for interactive 2-D barcode transaction data transmission and validation of mobile device and method thereof
US20230237172A1 (en) Data broker
TWM598987U (en) System for verifying financial service access privilege using different computer sequences
KR102284876B1 (en) System and method for federated authentication based on biometrics
TW202117631A (en) Method for verifying financial service access privilege using different computer sequences and system thereof
CA2891432C (en) Securely receiving from a remote user sensitive information and authorization to perform a transaction using the sensitive information
TWI647942B (en) A system and method for accessing and authenticating an electronic certificate
KR101079740B1 (en) System for inputting information using terminal and method thereof
TWI750951B (en) Method for cardless accessing service and digital account management system
KR20170115470A (en) Method for Processing Security Input by using Virtual Key
KR20070021867A (en) Wireless authentication system interworking with wireless terminal and method
KR20160129804A (en) Method for Processing Non-Faced Financial Transaction Channel by using Virtual Key