TWM608117U - System of identity verification by third-party device driven chip card - Google Patents

System of identity verification by third-party device driven chip card Download PDF

Info

Publication number
TWM608117U
TWM608117U TW109214384U TW109214384U TWM608117U TW M608117 U TWM608117 U TW M608117U TW 109214384 U TW109214384 U TW 109214384U TW 109214384 U TW109214384 U TW 109214384U TW M608117 U TWM608117 U TW M608117U
Authority
TW
Taiwan
Prior art keywords
identity
verification
chip card
client
host
Prior art date
Application number
TW109214384U
Other languages
Chinese (zh)
Inventor
周克遠
呂柏頡
游汶艗
Original Assignee
臺灣網路認證股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 臺灣網路認證股份有限公司 filed Critical 臺灣網路認證股份有限公司
Priority to TW109214384U priority Critical patent/TWM608117U/en
Publication of TWM608117U publication Critical patent/TWM608117U/en

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

一種由第三方設備驅動晶片卡以進行身分確認之系統,其透過身分識別主機依據客戶端所輸入的卡片資訊產生移轉資料,多媒體服務機將由移轉資料中取得的驗證資料提供給相連接之晶片卡,使得晶片卡產生身分辨識資訊後,身分識別主機依據與身分辨識資訊對應之驗證結果判斷客戶端是否通過身分確認之技術手段,可以透過第三方提供之多媒體服務機連接硬體載具以進行身分確認,並達成增加使用者進行身分確認之方式的技術功效。A system in which a third-party device drives a chip card for identity verification. It generates transfer data based on the card information input by the client through the identity recognition host, and the multimedia server provides the verification data obtained from the transfer data to the connected Chip card, after the chip card generates the identification information, the identification host judges whether the client has passed the technical means of identification according to the verification result corresponding to the identification information. The hardware carrier can be connected to the multimedia server provided by a third party. Perform identity verification and achieve the technical effect of increasing the way users perform identity verification.

Description

由第三方設備驅動晶片卡以進行身分確認之系統A system in which a third-party device drives the chip card for identity verification

一種身分確認系統,特別係指一種由第三方設備驅動晶片卡以進行身分確認之系統。An identity verification system, in particular, a system in which a third-party device drives a chip card for identity verification.

近年來,由於通訊及網路相關產業的高度發展,人們對各種服務電子化與行動化的需求日益升高,這樣的需求也反映各個行業中,目前,使用者可以使用手機或平板等各種的行動裝置執行行動應用程式,行動應用程式通過網際網路連線到對應的服務伺服器後,使用者可以操作行動裝置進行交易、轉帳、投保、申請文件等行動服務。如此,使用者可以不需要離開所在位置,即可進行所需的行動服務。In recent years, due to the rapid development of communication and network-related industries, people’s demand for the electronic and mobile services of various services has been increasing. This demand also reflects that in various industries, users can currently use various mobile phones or tablets. The mobile device executes the mobile application. After the mobile application is connected to the corresponding service server via the Internet, the user can operate the mobile device to perform transactions, transfers, insurance, application documents and other mobile services. In this way, the user can perform the required mobile services without leaving the location.

使用者在使用某些網路服務或行動服務時,可能會需要進行身份確認。目前,透過網路進行身份確認的方式,大多需要使用硬體載具,例如,使用特定的USB隨身碟或智慧卡(晶片卡)儲存與使用者之憑證資料對應的金鑰,藉以在使用者進行行動服務時,透過連接儲存金鑰的USB隨身碟或智慧卡來進行身份確認。Users may need to confirm their identity when using certain Internet services or mobile services. At present, most methods of identity verification through the Internet require the use of hardware vehicles, for example, using a specific USB flash drive or smart card (chip card) to store the key corresponding to the user’s certificate data, so that the user When performing mobile services, the identity is confirmed by connecting the USB flash drive or smart card that stores the key.

然而,使用硬體載具來確認使用者身份的方式,大多只能在電腦上進行,主要原因是硬體載具需要透過USB等連接插槽、或近場通訊(Near-field communication, NFC)讀卡機等讀取裝置與電腦連接,或透過如晶片卡讀卡機等外接裝置讀取,但目前的行動裝置大多沒有設置可以與硬體載具連接的連接插槽或NFC讀卡機,或使用者需另備外接裝置讀取硬體載具,因此,大部分的行動裝置並無法連接硬體載具,如此,導致使用者無法使用行動裝置進行身份確認,以至於無法使用行動服務,造成使用者的不便。However, most of the ways to confirm the user's identity using hardware vehicles can only be done on a computer. The main reason is that the hardware vehicles need to be connected via USB or other connection slots, or Near-field communication (NFC) Readers such as card readers are connected to the computer, or read through external devices such as chip card readers, but most of the current mobile devices do not have a connection slot or NFC card reader that can be connected to a hardware carrier. Or the user needs to prepare an external device to read the hardware carrier. Therefore, most mobile devices cannot be connected to the hardware carrier. As a result, the user cannot use the mobile device for identity verification and cannot use the mobile service. Cause inconvenience to users.

綜上所述,可知先前技術中長期以來一直存在使用者通常無法連接行動裝置與硬體載具以進行身分確認的問題,因此有必要提出改進的技術手段,來解決此一問題。In summary, it can be seen that in the prior art, there has been a problem that users generally cannot connect mobile devices and hardware carriers for identity verification for a long time. Therefore, it is necessary to propose improved technical means to solve this problem.

有鑒於先前技術存在使用者無法連接行動裝置與提供身分確認之硬體載具的問題,本創作遂揭露一種由第三方設備驅動晶片卡以進行身分確認之系統,其中:In view of the problems in the prior art that users cannot connect to mobile devices and hardware carriers that provide identity verification, this creation discloses a system in which a third-party device drives a chip card for identity verification. Among them:

本創作所揭露之由第三方設備驅動晶片卡以進行身分確認之系統,至少包含:客戶端,用以產生卡片資訊;晶片卡;身分識別主機,用以接收卡片資訊,並依據卡片資訊產生移轉資料;多媒體服務機,用以取得移轉資料,並由移轉資料取得驗證資料,及用以連接晶片卡,並傳送驗證資料至晶片卡,藉以透過晶片卡取得身分辨識資訊,使身分識別主機依據與身分辨識資訊對應之驗證結果判斷客戶端是否通過身分確認。The system that the third-party device drives the chip card for identity verification disclosed in this creation includes at least: a client to generate card information; a chip card; an identity recognition host to receive card information and generate migration based on the card information. Transfer data; multimedia server, used to obtain transfer data, obtain verification data from the transfer data, and connect to the chip card, and send the verification data to the chip card, so as to obtain the identification information through the chip card, so that the identity can be recognized The host determines whether the client has passed the identity verification based on the verification result corresponding to the identity information.

本創作所揭露之由第三方設備驅動晶片卡以進行身分確認之系統,至少包含:客戶端,用以產生卡片資訊;晶片卡;身分識別主機,用以產生驗證資料;服務伺服器,用以接收驗證資料,及用以接收卡片資訊,並依據卡片資訊及驗證資料產生移轉資料;多媒體服務機,用以取得移轉資料,並由移轉資料取得驗證資料,及用以連接晶片卡,並傳送驗證資料至晶片卡,藉以透過晶片卡取得身分辨識資訊,使身分識別主機依據與身分辨識資訊對應之驗證結果判斷客戶端是否通過身分確認。The system that the third-party device drives the chip card to perform identity verification disclosed in this creation includes at least: a client to generate card information; a chip card; an identity host to generate verification data; a service server to Receive verification data, and use it to receive card information, and generate transfer data based on card information and verification data; multimedia server to obtain transfer data, obtain verification data from transfer data, and connect chip cards, And send the verification data to the chip card, so as to obtain the identification information through the chip card, so that the identification host can judge whether the client passes the identity verification based on the verification result corresponding to the identification information.

本創作所揭露之系統如上,與先前技術之間的差異在於本創作透過身分識別主機依據客戶端所輸入的卡片資訊產生移轉資料,多媒體服務機將由移轉資料中取得的驗證資料提供給相連接之晶片卡,使得晶片卡產生身分辨識資訊後,身分識別主機依據與身分辨識資訊對應之驗證結果判斷客戶端是否通過身分確認,藉以解決先前技術所存在的問題,並可以達成增加使用者進行身分確認之方式的技術功效。The system disclosed in this creation is as above. The difference between the system and the prior art is that this creation uses the identity host to generate transfer data based on the card information input by the client, and the multimedia server provides the verification data obtained from the transfer data to the corresponding The connected chip card enables the chip card to generate identity information, the identity host judges whether the client has passed the identity verification based on the verification result corresponding to the identity information, so as to solve the problems of the prior art and increase the number of users. The technical effect of the method of identity verification.

以下將配合圖式及實施例來詳細說明本創作之特徵與實施方式,內容足以使任何熟習相關技藝者能夠輕易地充分理解本創作解決技術問題所應用的技術手段並據以實施,藉此實現本創作可達成的功效。The following will describe the features and implementation methods of this creation in detail with the drawings and embodiments. The content is sufficient to enable any person familiar with relevant skills to easily and fully understand the technical means used in this creation to solve technical problems and implement them accordingly. The achievable effect of this creation.

本創作可以讓使用者在沒有晶片卡讀卡機卻需要使用晶片卡進行身分確認時,透過第三方提供之多媒體服務機驅動晶片卡以進行使用者的身分確認。其中,本創作所提之多媒體服務機通常是設置在便利商店中的計算設備,但本創作並不以此為限。This creation allows the user to drive the chip card through the multimedia server provided by a third party to confirm the user's identity when the user does not have a chip card reader but needs to use the chip card for identity verification. Among them, the multimedia server mentioned in this creation is usually a computing device installed in a convenience store, but this creation is not limited to this.

本創作所提之計算設備包含但不限於一個或多個處理模組、一條或多條記憶體模組、以及連接不同硬體元件(包括記憶體模組和處理模組)的匯流排等硬體元件。透過所包含之多個硬體元件,計算設備可以載入並執行作業系統,使作業系統在計算設備上運行,也可以執行軟體或程式。另外,計算設備也包含一個外殼,上述之各個硬體元件設置於外殼內。The computing devices mentioned in this creation include but are not limited to one or more processing modules, one or more memory modules, and hardware such as buses connecting different hardware components (including memory modules and processing modules). Body components. Through the included multiple hardware components, the computing device can load and execute the operating system, make the operating system run on the computing device, and can also execute software or programs. In addition, the computing device also includes a housing, and each of the above-mentioned hardware components is arranged in the housing.

本創作所提之計算設備的匯流排可以包含一種或多個類型,例如包含資料匯流排(data bus)、位址匯流排(address bus)、控制匯流排(control bus)、擴充功能匯流排(expansion bus)、及/或局域匯流排(local bus)等類型的匯流排。計算設備的匯流排包括但不限於的工業標準架構(Industry Standard Architecture, ISA)匯流排、周邊元件互連(Peripheral Component Interconnect, PCI)匯流排、視頻電子標準協會(Video Electronics Standards Association, VESA)局域匯流排、以及串列的通用序列匯流排(Universal Serial Bus, USB)、快速周邊元件互連(PCI Express, PCI-E/PCIe)匯流排等。The bus of the computing device mentioned in this creation can include one or more types, such as data bus, address bus, control bus, and extended function bus ( expansion bus), and/or local bus (local bus). The bus bars of computing devices include but are not limited to Industry Standard Architecture (ISA) bus, Peripheral Component Interconnect (PCI) bus, Video Electronics Standards Association (VESA) Bureau Domain bus, serial universal serial bus (Universal Serial Bus, USB), fast peripheral component interconnection (PCI Express, PCI-E/PCIe) bus, etc.

本創作所提之計算設備的處理模組與匯流排耦接。處理模組包含暫存器(Register)組或暫存器空間,暫存器組或暫存器空間可以完全的被設置在處理模組之處理晶片上,或全部或部分被設置在處理晶片外並經由專用電氣連接及/或經由匯流排耦接至處理晶片。處理模組可為中央處理器、微處理器或任何合適的處理元件。若計算設備為多處理器設備,也就是計算設備包含多個處理模組,則計算設備所包含的處理模組都相同或類似,且透過匯流排耦接與通訊。處理模組可以解釋一個計算機指令或一連串的多個計算機指令以進行特定的運算或操作,例如,數學運算、邏輯運算、資料比對、複製/移動資料等,藉以驅動計算設備中的其他硬體元件或運行作業系統或執行各種程式及/或模組。The processing module of the computing device mentioned in this creation is coupled with the bus. The processing module includes a register group or register space. The register group or register space can be completely set on the processing chip of the processing module, or all or part of it can be set outside the processing chip It is coupled to the processing chip via a dedicated electrical connection and/or via a bus. The processing module can be a central processing unit, a microprocessor, or any suitable processing element. If the computing device is a multi-processor device, that is, the computing device includes multiple processing modules, the processing modules included in the computing device are all the same or similar, and they are coupled and communicated through a bus. The processing module can interpret a computer instruction or a series of multiple computer instructions to perform specific operations or operations, such as mathematical operations, logical operations, data comparison, copy/move data, etc., to drive other hardware in the computing device Components or run operating systems or execute various programs and/or modules.

計算設備中通常也包含一個或多個晶片組(Chipset)。計算設備的處理模組可以與晶片組耦接或透過匯流排與晶片組電性連接。晶片組是由一個或多個積體電路(Integrated Circuit, IC)組成,包含記憶體控制器以及周邊輸出入(I/O)控制器等,也就是說,記憶體控制器以及周邊輸出入控制器可以包含在一個積體電路內,也可以使用兩個或更多的積體電路實現。晶片組通常提供了輸出入和記憶體管理功能、以及提供多個通用及/或專用暫存器、計時器等,其中,上述之通用及/或專用暫存器與計時器可以讓耦接或電性連接至晶片組的一個或多個處理模組存取或使用。Computing equipment usually also contains one or more chipsets. The processing module of the computing device can be coupled to the chipset or electrically connected to the chipset through a bus. The chipset is composed of one or more integrated circuits (Integrated Circuit, IC), including memory controller and peripheral input/output (I/O) controller, that is, memory controller and peripheral input/output control The device can be included in one integrated circuit, or it can be implemented using two or more integrated circuits. Chipsets usually provide I/O and memory management functions, as well as multiple general-purpose and/or special-purpose registers, timers, etc., among which the aforementioned general-purpose and/or special-purpose registers and timers can be coupled or One or more processing modules electrically connected to the chipset are accessed or used.

計算設備的處理模組也可以透過記憶體控制器存取安裝於計算設備上的記憶體模組和大容量儲存區中的資料。上述之記憶體模組包含任何類型的揮發性記憶體(volatile memory)及/或非揮發性(non-volatile memory, NVRAM)記憶體,例如靜態隨機存取記憶體(Static Random Access Memory, SRAM)、動態隨機存取記憶體(Dynamic Random Access Memory, DRAM)、唯讀記憶體(Read-Only Memory, ROM)、快閃記憶體(Flash memory)等。上述之大容量儲存區可以包含任何類型的儲存裝置或儲存媒體,例如,硬碟機、光碟(optical disc)、隨身碟(flash drive)、記憶卡(memory card)、固態硬碟(Solid State Disk, SSD)、或任何其他儲存裝置等。也就是說,記憶體控制器可以存取靜態隨機存取記憶體、動態隨機存取記憶體、快閃記憶體、硬碟機、固態硬碟中的資料。The processing module of the computing device can also access the data in the memory module and the large-capacity storage area installed on the computing device through the memory controller. The above-mentioned memory modules include any type of volatile memory (volatile memory) and/or non-volatile memory (NVRAM), such as Static Random Access Memory (SRAM) , Dynamic Random Access Memory (DRAM), Read-Only Memory (ROM), Flash memory, etc. The aforementioned mass storage area can include any type of storage device or storage medium, such as hard disk drives, optical discs, flash drives, memory cards, and solid state disks. , SSD), or any other storage device, etc. In other words, the memory controller can access data in static random access memory, dynamic random access memory, flash memory, hard disk drives, and solid state drives.

計算設備的處理模組也可以透過周邊輸出入控制器經由周邊輸出入匯流排與周邊輸出裝置、周邊輸入裝置、通訊介面、及GPS接收器等周邊裝置或介面連接並通訊。周邊輸入裝置可以是任何類型的輸入裝置,例如鍵盤、滑鼠、軌跡球、觸控板、搖桿等,周邊輸出裝置可以是任何類型的輸出裝置,例如顯示器、印表機等,周邊輸入裝置與周邊輸出裝置也可以是同一裝置,例如觸控螢幕等。通訊介面可以包含無線通訊介面及/或有線通訊介面,無線通訊介面可以包含支援無線區域網路(如Wi-Fi、Zigbee等)、藍牙、紅外線、近場通訊(Near-field communication, NFC)、3G/4G/5G等行動通訊網路(蜂巢式網路)或其他無線資料傳輸協定的介面,有線通訊介面可為乙太網路裝置、DSL數據機、纜線(Cable)數據機、非同步傳輸模式(Asynchronous Transfer Mode, ATM)裝置、或光纖通訊介面及/或元件等。處理模組可以週期性地輪詢(polling)各種周邊裝置與介面,使得計算設備能夠透過各種周邊裝置與介面進行資料的輸入與輸出,也能夠與具有上面描述之硬體元件的另一個計算設備進行通訊。The processing module of the computing device can also connect and communicate with peripheral output devices, peripheral input devices, communication interfaces, and GPS receivers and other peripheral devices or interfaces through the peripheral I/O controller via the peripheral I/O bus. The peripheral input device can be any type of input device, such as a keyboard, mouse, trackball, touchpad, joystick, etc. The peripheral output device can be any type of output device, such as a display, a printer, etc., a peripheral input device It can also be the same device as the peripheral output device, such as a touch screen. The communication interface can include a wireless communication interface and/or a wired communication interface. The wireless communication interface can include support for wireless local area networks (such as Wi-Fi, Zigbee, etc.), Bluetooth, infrared, near-field communication (NFC), 3G/4G/5G and other mobile communication network (cellular network) or other wireless data transmission protocol interface, wired communication interface can be Ethernet device, DSL modem, cable modem, asynchronous transmission Mode (Asynchronous Transfer Mode, ATM) devices, or optical fiber communication interfaces and/or components, etc. The processing module can periodically poll various peripheral devices and interfaces, so that the computing device can input and output data through various peripheral devices and interfaces, and can also interact with another computing device with the hardware components described above. To communicate.

以下先以「第1圖」本創作所提之由第三方設備驅動晶片卡以進行身分確認之系統架構圖來說明本創作的系統運作。如「第1圖」所示,本創作之系統含有客戶端110、多媒體服務機130、晶片卡140、身分識別主機170,及可附加的服務伺服器120、應用伺服器150。The following first uses the system architecture diagram of the third-party device to drive the chip card for identity verification mentioned in the "Figure 1" to illustrate the system operation of this creation. As shown in "Figure 1", the creative system includes a client 110, a multimedia server 130, a chip card 140, an identity host 170, and a service server 120 and an application server 150 that can be attached.

其中,客戶端110與服務伺服器120間、服務伺服器120與身分識別主機170間、多媒體服務機130與應用伺服器150間、及應用伺服器150與身分識別主機170間可以透過有線通訊或無線通訊連接,藉以進行資料或訊號的傳遞。Among them, the client 110 and the service server 120, the service server 120 and the identity host 170, the multimedia server 130 and the application server 150, and the application server 150 and the identity host 170 can communicate through wired or Wireless communication connection for data or signal transmission.

客戶端110可以是手機、平板電腦、筆記型電腦等可攜的計算設備,也可以是桌上型電腦、車用電腦、智慧電視等無法隨身攜帶的計算設備,本創作沒有特別的限制。需要特別說明的是,在本創作中,客戶端110可以是一個計算設備,也可以是兩個或更多個計算設備。The client 110 may be a portable computing device such as a mobile phone, a tablet computer, or a notebook computer, or a computing device that cannot be carried around, such as a desktop computer, a car computer, or a smart TV, and there is no special restriction on this creation. It should be particularly noted that, in this creation, the client 110 may be one computing device, or two or more computing devices.

客戶端110負責產生卡片資訊。一般而言,客戶端110可以提供使用者輸入卡片資訊以產生卡片資訊,但本創作並不以此為限。客戶端110所產生之卡片資訊包含但不限於身分識別資料及卡片類型,在部分的實施例中,卡片資訊還可以包含晶片卡的發卡單位。其中,身分識別資料通常是身分證號,但本創作並不以此為限,例如護照號碼等可以用來表示身分的資料都可以作為本創作之身分識別資料;卡片類型為使用者欲用來進行身分確認之晶片卡的類型,包含但不限於晶片金融卡、自然人憑證、工商憑證等;發卡單位通常表示發出晶片卡的銀行或政府部門等,但本創作亦不以此為限。The client 110 is responsible for generating card information. Generally speaking, the client 110 can provide the user to input card information to generate card information, but this creation is not limited to this. The card information generated by the client 110 includes, but is not limited to, the identification data and the card type. In some embodiments, the card information may also include the issuing unit of the chip card. Among them, the identity identification data is usually the ID number, but this creation is not limited to this. For example, passport numbers and other data that can be used to indicate identity can be used as the identity identification data of this creation; the card type is what the user wants to use The types of chip cards for identity verification include, but are not limited to, chip financial cards, natural person certificates, industrial and commercial certificates, etc.; the issuer usually refers to the bank or government department that issued the chip card, but this creation is not limited to this.

客戶端110也負責將所產生的卡片資訊傳送給身分識別主機170或服務伺服器120,並可以取得身分識別主機170或服務伺服器120所傳回的移轉資料。一般而言,客戶端110可以透過服務伺服器120將卡片資訊傳送給身分識別主機170,並透過服務伺服器120接收移轉資料,但本創作並不以此為限,客戶端110也可以直接將卡片資訊傳送給身分識別主機170,並直接接收身分識別主機170所傳送的移轉資料。The client 110 is also responsible for sending the generated card information to the identity host 170 or the service server 120, and can obtain the transfer data returned by the identity host 170 or the service server 120. Generally speaking, the client 110 can send card information to the identity host 170 through the service server 120, and receive the transfer data through the service server 120, but this creation is not limited to this, and the client 110 can also directly The card information is sent to the identity host 170, and the transfer data sent by the identity host 170 is directly received.

本創作所提的移轉資料可以使得多媒體服務機130取得卡片資訊,在部分的實施例中,移轉資料也可以使得多媒體服務機130取得驗證資料。例如,移轉資料可以是直接記錄卡片資訊(及驗證資料)的文字,也可以是能夠連線到身分識別主機170或服務伺服器120下載卡片資訊(及驗證資料)的訊息,或可以是需要經過解碼才能取得被記錄之卡片資訊(及驗證資料)的一維或二維條碼等,但本創作並不以此為限。其中,驗證資料可以是卡片資訊中的身分識別資料,也可以是由身分識別主機170所產生的識別信物(token)。The transfer data mentioned in this creation can enable the multimedia server 130 to obtain card information. In some embodiments, the transferred data can also enable the multimedia server 130 to obtain verification data. For example, the transfer data can be a text that directly records card information (and verification data), or it can be a message that can connect to the identity host 170 or the service server 120 to download the card information (and verification data), or it can be required The one-dimensional or two-dimensional bar code of the recorded card information (and verification data) can be obtained after decoding, but this creation is not limited to this. Wherein, the verification data may be the identity data in the card information, or it may be an identification token (token) generated by the identity recognition host 170.

在部分的實施例中,客戶端110也可以在傳送卡片資訊時,一併傳送裝置識別資料。客戶端110所傳送之裝置識別資料包含但不限於客戶端110的網路位址、產品序號、或所包含之特定模組或元件的硬體序號等。In some embodiments, the client 110 may also send the device identification data when sending the card information. The device identification data sent by the client 110 includes, but is not limited to, the network address of the client 110, the product serial number, or the hardware serial number of the specific module or component included.

客戶端110也可以將所取得的移轉資料提供給多媒體服務機130。舉例來說,當客戶端110為一個不可攜之計算設備或沒有包含可攜之計算設備時,客戶端110可以將移轉資料列印在紙上以提供多媒體服務機130掃描;當客戶端110為包含第一客戶端110a與第二客戶端110b等多個計算設備,其中,第一客戶端110a為不可攜之計算設備,至少第二客戶端110b為可攜之計算設備,且移轉資料是由第一客戶端110a取得時,第二客戶端110b可以拍攝第一客戶端110a所顯示的移轉資料,或可以由第一客戶端110a下載移轉資料,並可以將所拍攝或下載之移轉資料顯示給多媒體服務機130掃描或提供移轉資料給多媒體服務機130讀取等;而當客戶端110為一個可攜之計算設備或包含多個可攜之計算設備時,客戶端110可以如上所述,將移轉資料顯示給多媒體服務機130掃描或提供多媒體服務機130讀取移轉資料。The client 110 may also provide the acquired transfer data to the multimedia server 130. For example, when the client 110 is a non-portable computing device or does not include a portable computing device, the client 110 can print the transfer data on paper to provide the multimedia server 130 for scanning; when the client 110 is It includes multiple computing devices such as a first client 110a and a second client 110b. The first client 110a is a non-portable computing device, and at least the second client 110b is a portable computing device, and the transfer data is When obtained by the first client 110a, the second client 110b can photograph the transferred data displayed by the first client 110a, or the first client 110a can download the transferred data, and can transfer the photographed or downloaded The transfer data is displayed to the multimedia server 130 to scan or provide the transfer data to the multimedia server 130 to read, etc.; and when the client 110 is a portable computing device or includes multiple portable computing devices, the client 110 can As described above, the transfer data is displayed to the multimedia server 130 for scanning or the multimedia server 130 is provided to read the transferred data.

服務伺服器120可以傳送顯示資料至客戶端110顯示。The service server 120 can send the display data to the client 110 for display.

服務伺服器120也可以接收客戶端110所傳送之卡片資訊,並可以將所接收到的卡片資訊傳送至身分識別主機170;服務伺服器120也可以將身分識別主機170所傳送之移轉資料傳送至客戶端110。The service server 120 can also receive the card information sent by the client 110, and can send the received card information to the identity host 170; the service server 120 can also send the transfer data sent by the identity host 170 To the client 110.

服務伺服器120也可以接收身分識別主機170所產生的識別信物,並可以產生包含身分識別主機170所傳送之識別信物與客戶端110所傳送之卡片資訊的移轉資料。The service server 120 may also receive the identification token generated by the identity identification host 170 and may generate transfer data including the identification token sent by the identification host 170 and the card information sent by the client 110.

服務伺服器120也可以接收身分識別主機170所傳送的判斷結果。本創作所提之判斷結果可以表示客戶端110是否通過身分確認。The service server 120 may also receive the judgment result sent by the identity recognition host 170. The judgment result mentioned in this creation can indicate whether the client 110 passes the identity confirmation.

服務伺服器120也可以在所接收到之判斷判斷結果表示客戶端110通過身分確認後執行後續作業。服務伺服器120所執行之後續作業包含但不限於產生相關文件及/或對相關文件簽章。The service server 120 may also perform subsequent operations after the received judgment result indicates that the client 110 passes the identity confirmation. Subsequent operations performed by the service server 120 include, but are not limited to, generating and/or signing related documents.

多媒體服務機130負責取得身分識別主機170所產生的移轉資料,並由所取得的移轉資料取得卡片資訊與驗證資料。更詳細的說,多媒體服務機130可以由移轉資料中取得卡片資訊,還可以將卡片資訊中之身分識別資料做為驗證資料,在部分的實施例中,若移轉資料中還包含服務伺服器120所取得之識別信物,則多媒體服務機130可以將識別信物做為驗證資料。The multimedia server 130 is responsible for obtaining the transfer data generated by the identity host 170, and obtains card information and verification data from the obtained transfer data. In more detail, the multimedia server 130 can obtain card information from the transfer data, and can also use the identity data in the card information as verification data. In some embodiments, if the transfer data also includes the service server The identification token obtained by the device 120 can be used by the multimedia server 130 as the verification data.

多媒體服務機130也負責連接晶片卡140,並負責驅動所連接之晶片卡140。一般而言,多媒體服務機130可以依據與卡片資訊中的卡片類型或卡片類型與發卡單位對應的方式驅動晶片卡140。多媒體服務機130也可以判斷所連接之晶片卡140是否與所取得之卡片資訊中的卡片類型相符。例如,多媒體服務機130可以使用與卡片類型對應的驅動方式或存取方式存取晶片卡140,並依據驅動或存取成功與否判斷晶片卡140是否與卡片類型相符。The multimedia server 130 is also responsible for connecting the chip card 140 and is responsible for driving the connected chip card 140. Generally speaking, the multimedia server 130 can drive the chip card 140 in a manner corresponding to the card type or the card type in the card information and the card issuing unit. The multimedia server 130 can also determine whether the connected chip card 140 matches the card type in the obtained card information. For example, the multimedia server 130 can access the chip card 140 using a drive mode or an access mode corresponding to the card type, and determine whether the chip card 140 matches the card type according to whether the drive or access is successful.

多媒體服務機130也負責傳送驗證資料至晶片卡140。在部分的實施例中,多媒體服務機130也可以接收應用伺服器150所傳送的驗證參數,並可以在傳送驗證資料時,一併將所接收到的驗證參數傳送給晶片卡140。 其中,本創作所提之驗證參數包含但不限於簽章參數、押碼參數等。The multimedia server 130 is also responsible for transmitting the verification data to the chip card 140. In some embodiments, the multimedia server 130 may also receive the verification parameters sent by the application server 150, and may send the received verification parameters to the chip card 140 when sending the verification data. Among them, the verification parameters mentioned in this creation include but are not limited to signature parameters, betting parameters, etc.

多媒體服務機130也負責接收晶片卡140所傳回的身分辨識資訊,並可以傳送所接收到的身分辨識資訊至應用伺服器150。The multimedia server 130 is also responsible for receiving the identification information returned by the chip card 140, and can transmit the received identification information to the application server 150.

多媒體服務機130也可以提供使用者輸入晶片密碼,並可以將被輸入之晶片密碼傳送給晶片卡140。其中,晶片密碼可以是文字、數字、與符號的組合,也可以是生物特徵,但本創作並不以此為限。The multimedia server 130 can also provide the user to input the chip password, and can transmit the input chip password to the chip card 140. Among them, the chip password can be a combination of words, numbers, and symbols, or biological characteristics, but this creation is not limited to this.

晶片卡140負責與多媒體服務機130連接,並負責接收多媒體服務機130所傳送的驗證資料。在部分的實施例中,晶片卡140也可以接收多媒體服務機130所傳送的驗證參數。The chip card 140 is responsible for connecting with the multimedia server 130, and is responsible for receiving the verification data sent by the multimedia server 130. In some embodiments, the chip card 140 can also receive the verification parameters transmitted by the multimedia server 130.

晶片卡140也負責對所接收到的驗證資料進行特定運算以產生相對應之身分識別訊息,並負責將所產生之身分識別訊息傳回多媒體服務機130。晶片卡140所進行之特定運算包含但不限於對驗證資料簽章或押碼。若晶片卡140接收到驗證參數,則晶片卡140可以依據所接收到之驗證參數對驗證資料簽章或押碼,否則,晶片卡140可以使用預定參數對驗證資料簽章或押碼。The chip card 140 is also responsible for performing specific operations on the received verification data to generate a corresponding identity information, and is responsible for transmitting the generated identity information back to the multimedia server 130. The specific operations performed by the chip card 140 include, but are not limited to, signing or depositing the verification data. If the chip card 140 receives the verification parameters, the chip card 140 can sign or pledge the verification data according to the received verification parameters. Otherwise, the chip card 140 can use the predetermined parameters to sign or pledge the verification data.

晶片卡140也可以接收多媒體服務機130所傳送的晶片密碼,並可以判斷所接收到之晶片密碼是否正確。若晶片密碼不正確,則晶片卡140可以拒絕對驗證資料進行運算,並可以傳回表示晶片密碼不正確之回應訊息;而若晶片密碼正確,則晶片卡140可以對驗證資料進行運算以產生身分辨識資訊。The chip card 140 can also receive the chip code transmitted by the multimedia server 130, and can determine whether the received chip code is correct. If the chip password is incorrect, the chip card 140 can refuse to perform operations on the verification data, and can return a response message indicating that the chip password is incorrect; and if the chip password is correct, the chip card 140 can perform operations on the verification data to generate an identity Identify information.

應用伺服器150可以隨著與身分辨識主機170搭配的方式不同而提供一種或多種不同的運作方式。更詳細的說,當身分辨識資訊由身分辨識主機170進行驗證,而非由應用伺服器150驗證時,應用伺服器150可以接收多媒體服務機130所傳送的請求訊息,並可以在接收到請求訊息後連線至身分識別主機170取得驗證參數,及將所取得之驗證參數傳送至多媒體服務機130。The application server 150 can provide one or more different operation modes according to the different ways of matching with the body identification host 170. In more detail, when the identification information is verified by the identification host 170 instead of the application server 150, the application server 150 can receive the request message sent by the multimedia server 130, and can receive the request message Then, it connects to the identity host 170 to obtain the authentication parameters, and transmits the obtained authentication parameters to the multimedia server 130.

而當身分辨識資訊不由身分辨識主機170進行驗證,而由應用伺服器150驗證時,應用伺服器150可以接收多媒體服務機130所傳送之身分辨識資訊,並對所接收到之身分辨識資訊進行驗證以取得相對應的驗證結果,及可以將所取得之驗證結果傳送至身分識別主機170。其中,應用伺服器150可以對身分辨識資訊驗章以驗證身分辨識資訊,或可以使用與晶片卡140相同的押碼運算並比對運算產生之運算值與所接收到的身分識別資訊是否相同以驗證身分辨識資訊,應用伺服器150也可以將所接收到之身分辨識資訊傳送給授權伺服器160,藉以透過授權伺服器160驗證身分辨識資訊。When the identification information is not verified by the identification host 170 but is verified by the application server 150, the application server 150 can receive the identification information sent by the multimedia server 130 and verify the received identification information The corresponding verification result can be obtained, and the obtained verification result can be sent to the identity host 170. Among them, the application server 150 can verify the identity information to verify the identity information, or can use the same betting operation as the chip card 140 and compare whether the calculated value generated by the operation is the same as the received identity information. To verify the identification information, the application server 150 may also send the received identification information to the authorization server 160, so as to verify the identification information through the authorization server 160.

授權伺服器160可以接收應用伺服器150所傳送之身分辨識資訊,並可以驗證身分辨識資訊以產生驗證結果,即將所產生之驗證結果傳回應用伺服器150。其中,授權伺服器160通常可以使用與晶片卡140相同的押碼運算,並可以比對運算產生之運算值與所接收到的身分識別資訊是否相同以驗證身分辨識資訊,但本創作並不以此為限,例如,授權伺服器160也可以對身分辨識資訊驗章以驗證身分辨識資訊。The authorization server 160 may receive the identification information sent by the application server 150, and may verify the identification information to generate a verification result, that is, return the generated verification result to the application server 150. Wherein, the authorization server 160 can usually use the same betting operation as the chip card 140, and can compare whether the operation value generated by the operation is the same as the received identity information to verify the identity information, but this creation does not This is limited. For example, the authorization server 160 may also verify the identity information to verify the identity information.

身分識別主機170負責接收客戶端110所產生之卡片資訊,並依據所接收到的卡片資訊產生移轉資料。在部分的實施例中,身分識別主機170可以在產生移轉資料時,先產生識別信物,再產生包含識別信物及卡片資訊的移轉資料。其中,身分識別主機170可以隨機產生識別信物,但本創作並不以此為限,例如,身分識別主機170也可以對客戶端110所傳送之裝置識別資料進行特定運算以產生識別信物,上述之特定運算包含但不限於MD5等。The identity host 170 is responsible for receiving the card information generated by the client 110 and generating transfer data based on the received card information. In some embodiments, the identification host 170 may first generate the identification token when generating the transfer data, and then generate the transfer data including the identification token and card information. Wherein, the identity host 170 can randomly generate an identification token, but this creation is not limited to this. For example, the identity host 170 can also perform a specific calculation on the device identification data sent by the client 110 to generate an identification token. Specific operations include but are not limited to MD5, etc.

身分識別主機170也負責依據與晶片卡140所產生之身分識別資訊對應的驗證結果判斷客戶端110是否通過身分確認。更詳細的說,若在本創作中,驗證結果是由應用伺服器150所產生,則身分識別主機170可以依據所接收到之驗證結果判斷客戶端110是否通過身分確認。The identity host 170 is also responsible for judging whether the client 110 passes the identity verification based on the verification result corresponding to the identity information generated by the chip card 140. In more detail, if the verification result is generated by the application server 150 in this creation, the identity recognition host 170 can determine whether the client 110 passes the identity verification based on the received verification result.

而若驗證結果是由身分識別主機170產生,則身分識別主機170可以先產生並傳送驗證參數給應用伺服器150,並可以接收多媒體服務機130所傳送的身分識別資訊,及可以依據所產生之驗證參數驗證所接收到的身分識別資訊,藉以在驗證後產生相對應的驗證結果。其中,身分識別主機170可以使用驗證參數進行驗章以判斷客戶端110是否通過身分確認;或可以使用驗證參數對驗證資料進行與晶片卡140相同的運算,並比對運算產生之運算值與所接收到的身分識別資訊,當兩者相同時,表示客戶端110通過身分確認,反之,表示客戶端110沒有通過身分確認。If the verification result is generated by the identity host 170, the identity host 170 can first generate and send the verification parameters to the application server 150, and can receive the identity information sent by the multimedia server 130, and can be based on the generated The verification parameter verifies the received identity information, so as to generate a corresponding verification result after verification. Among them, the identity host 170 can use the verification parameters to verify the seal to determine whether the client 110 passes the identity verification; or it can use the verification parameters to perform the same operation on the verification data as the chip card 140, and compare the calculated value generated by the operation with the result. When the received identity information is the same, it means that the client 110 has passed the identity confirmation; otherwise, it means that the client 110 has not passed the identity confirmation.

身分識別主機170可以傳送表示客戶端110是否通過身分確認之判斷結果至服務伺服器120。其中,身分識別主機170可以即時將判斷結果傳送給服務伺服器120,也可以在預定的時間或每隔一定時間批次將判斷結果傳送給服務伺服器120。The identity host 170 can send a judgment result indicating whether the client 110 passes the identity verification to the service server 120. Wherein, the identity recognition host 170 can send the judgment result to the service server 120 in real time, or can send the judgment result to the service server 120 in batches at a predetermined time or at regular intervals.

接著以第一實施例來解說本創作的運作系統,並請參照「第2A圖」本創作所提之由第三方設備驅動晶片卡以進行身分確認之流程圖。在本實施例中,假設客戶端110包含第一客戶端110a及第二客戶端110b,其中,第一客戶端110a為筆記型電腦,第二客戶端110b為手機,但本創作並不以此為限。需要說明的是,在本實施例中,客戶端110也可以使用如手機等單一的計算設備來實現,即本實施例所提之第一客戶端110a與第二客戶端110b是同一台計算設備。Next, the first embodiment is used to explain the operating system of this creation, and please refer to the flowchart of the third-party device driving the chip card for identity verification mentioned in "Figure 2A" of this creation. In this embodiment, it is assumed that the client 110 includes a first client 110a and a second client 110b, where the first client 110a is a notebook computer, and the second client 110b is a mobile phone, but this creation is not based on this Is limited. It should be noted that in this embodiment, the client 110 can also be implemented using a single computing device such as a mobile phone. That is, the first client 110a and the second client 110b mentioned in this embodiment are the same computing device. .

在使用者操作第一客戶端110a連線到服務伺服器120瀏覽網頁時,若服務伺服器120要求使用者進行身分確認,則使用者可以在服務伺服器120提供的頁面選擇使用多媒體服務機130做為讀卡機,並可以操作第一客戶端110a輸入卡片資訊並傳送所輸入之卡片資訊至身分識別主機170(步驟210)。在本實施例中,假設服務伺服器120為提供線上服務的伺服器,且如「第2B圖」之流程所示,服務伺服器120可以傳送可購買之服務的顯示資料至第一客戶端110a(步驟203),使得第一客戶端110a能夠顯示可提供使用者購買之服務的網頁。當使用者操作第一客戶端110a選擇購買服務時,第一客戶端110a的使用者可以選擇確認身分的方式,若使用者欲選擇使用晶片卡進行身分確認,但使用者卻沒有讀卡機或讀卡機無法順利在第一客戶端110a被使用時,使用者可以在網頁中選擇表示使用設置於便利商店之多媒體服務機130的選項,並可以在網頁中輸入身分證號(身分識別資料)及卡片類型等卡片資訊(步驟207),第一客戶端110a也可以在使用者完成輸入後,將被使用者輸入之卡片資訊傳送給服務伺服器120(步驟211),服務伺服器120在接收到第一客戶端110a所傳送之卡片資訊後,可以將所接收到的卡片資訊傳送給身分識別主機170(步驟215)。When the user operates the first client 110a to connect to the service server 120 to browse a webpage, if the service server 120 requires the user to confirm the identity, the user can choose to use the multimedia server 130 on the page provided by the service server 120 As a card reader, it can operate the first client 110a to input card information and send the input card information to the identity host 170 (step 210). In this embodiment, it is assumed that the service server 120 is a server that provides online services, and as shown in the process of "Figure 2B", the service server 120 can send display data of the available services to the first client 110a (Step 203), enabling the first client 110a to display a webpage that can provide the service purchased by the user. When the user operates the first client 110a to choose to purchase the service, the user of the first client 110a can choose the method of identity verification. If the user wants to use the chip card for identity verification, but the user does not have a card reader or When the card reader cannot be successfully used in the first client 110a, the user can select the option to use the multimedia server 130 installed in the convenience store on the web page, and enter the ID number (identity identification data) on the web page And card information such as card type (step 207), the first client 110a can also send the card information entered by the user to the service server 120 after the user completes the input (step 211), and the service server 120 is receiving After the card information sent by the first client 110a is received, the received card information can be sent to the identity host 170 (step 215).

在身分識別主機170接收到第一客戶端110a所產生的卡片資訊後,可以依據所接收到的卡片資訊產生移轉資料(步驟220)。在本實施例中,假設移轉資料為二維條碼,身分識別主機170可以將卡片資訊編碼為二維條碼的形式。After the identity host 170 receives the card information generated by the first client 110a, it can generate transfer data based on the received card information (step 220). In this embodiment, assuming that the transferred data is a two-dimensional bar code, the identification host 170 can encode the card information in the form of a two-dimensional bar code.

在身分識別主機170產生移轉資料後,多媒體服務機130可以取得身分識別主機170所產生的移轉資料。在本實施例中,假設如「第2C圖」之流程所示,在身分識別主機170產生移轉資料後,可以將移轉資料傳送給服務伺服器120,使得服務伺服器120將移轉資料轉送至第一客戶端110a(步驟231)。After the identity host 170 generates the transfer data, the multimedia server 130 can obtain the transfer data generated by the identity host 170. In this embodiment, it is assumed that as shown in the process of "Figure 2C", after the identity host 170 generates the transfer data, the transfer data can be sent to the service server 120, so that the service server 120 will transfer the data Transfer to the first client 110a (step 231).

之後,第二客戶端110b可以將第一客戶端110a所接收到的移轉資料提供給多媒體服務機130(步驟237)。在本實施例中,假設使用者可以操作第一客戶端110a顯示所接收到的移轉資料,並可以操作第二客戶端110b拍攝第一客戶端110a所顯示的移轉資料,之後,使用者可以攜帶第二客戶端110b移動到便利商店,並操作設置於便利商店中的多媒體服務機130,使得多媒體服務機130掃描第二客戶端110b所顯示的移轉資料,或使用者也可以在連接多媒體服務機130與第二客戶端110b後,操作多媒體服務機130讀取第二客戶端110b中所儲存之包含移轉資料的檔案(如影像檔或PDF檔等,本創作並沒有特別的限制),藉以取得移轉資料。After that, the second client 110b may provide the transfer data received by the first client 110a to the multimedia server 130 (step 237). In this embodiment, it is assumed that the user can operate the first client 110a to display the received transfer data, and can operate the second client 110b to photograph the transfer data displayed by the first client 110a, and then the user The second client 110b can be carried to the convenience store, and the multimedia server 130 set in the convenience store can be operated, so that the multimedia server 130 scans the transfer data displayed by the second client 110b, or the user can also connect After the multimedia server 130 and the second client 110b are operated, the multimedia server 130 is operated to read the files (such as image files or PDF files) that contain the transferred data stored in the second client 110b. There is no special restriction on this creation ) To obtain transfer data.

回到「第2A圖」,在多媒體服務機130取得身分識別主機170所產生的移轉資料後,可以由所取得之移轉資料取得驗證資料(步驟240)。在本實施例中,假設驗證資料為使用者的身分識別資料,多媒體服務機130可以在解碼移轉資料後取得卡片資訊,並由卡片資訊中讀出卡片類型及作為驗證資料的身分識別資料。Returning to "Figure 2A", after the multimedia server 130 obtains the transfer data generated by the identity host 170, verification data can be obtained from the obtained transfer data (step 240). In this embodiment, assuming that the verification data is the user's identity data, the multimedia server 130 can obtain the card information after decoding the transferred data, and read the card type and the identity data as the verification data from the card information.

同樣在第一客戶端110a接收到服務伺服器120所傳送的移轉資料後,多媒體服務機130可以連接晶片卡140(步驟250)。在本實施例中,假設多媒體服務機130可以依據由卡片資訊讀出之卡片類型提示使用者將對應的晶片卡140插入多媒體服務機130的晶片卡插槽中,藉以與晶片卡140連接,多媒體服務機130更可以在與晶片卡140連接後,偵測所連接之晶片卡140是否與卡片類型相符,若不相符,則多媒體服務機130可以提示使用者將與卡片類型相符之晶片卡插入晶片卡插槽中。Similarly, after the first client 110a receives the transfer data sent by the service server 120, the multimedia server 130 can connect to the chip card 140 (step 250). In this embodiment, it is assumed that the multimedia server 130 can prompt the user to insert the corresponding chip card 140 into the chip card slot of the multimedia server 130 according to the card type read from the card information, so as to connect with the chip card 140. The server 130 can even detect whether the connected chip card 140 matches the card type after it is connected to the chip card 140. If it does not match, the multimedia server 130 can prompt the user to insert the chip card that matches the card type into the chip. Card slot.

在多媒體服務機130連接晶片卡140後,可以將所取得的驗證資料傳送給晶片卡140,藉以透過晶片卡140取得身分識別資訊(步驟260)。在本實施例中,假設晶片卡140需要晶片密碼才能夠被驅動,則多媒體服務機130可以在連接晶片卡140後,提示使用者輸入晶片密碼,並可以將使用者所輸入的晶片密碼傳送給晶片卡140,晶片卡140可以在驗證晶片密碼正確後,讀出晶片卡資訊,並產生包含所讀出之晶片卡資訊及所接收到之驗證資料的身分識別資訊,及將所產生之身分識別資訊傳回多媒體服務機130。After the multimedia server 130 is connected to the chip card 140, the obtained verification data can be sent to the chip card 140, so as to obtain the identity information through the chip card 140 (step 260). In this embodiment, assuming that the chip card 140 needs a chip password to be driven, the multimedia server 130 may prompt the user to input the chip password after connecting the chip card 140, and may send the chip password entered by the user to Chip card 140. After verifying that the chip password is correct, the chip card 140 can read the chip card information, and generate the identity information including the read chip card information and the received verification data, and the generated identity The information is transmitted back to the multimedia server 130.

在多媒體服務機130透過晶片卡140取得身分識別資訊後,身分識別主機170可以取得與多媒體服務機130所取得之身分識別資訊對應的驗證結果。在本實施例中,若身分識別資訊是由應用伺服器150驗證,則可以如「第2D圖」所示之流程,多媒體服務機130可以將所取得之身分識別資訊傳送到應用伺服器150(步驟271),應用伺服器150在接收到身分識別資訊後可以驗證所接收到的身分識別資訊以取得驗證結果(步驟273),並可以將所取得之驗證結果傳送給身分識別主機170(步驟275)。其中,應用伺服器150可以自行驗證身分識別資訊,或是將身分識別資訊傳送給授權伺服器160,藉以透過授權伺服器160驗證身分識別資訊;授權伺服器160在接收到身分識別資訊後,可以驗證身分識別資訊並產生相對應之驗證結果,及可以將所產生之驗證結果傳回應用伺服器150,使得應用伺服器150取得驗證結果。After the multimedia server 130 obtains the identity information through the chip card 140, the identity host 170 can obtain a verification result corresponding to the identity information obtained by the multimedia server 130. In this embodiment, if the identity information is verified by the application server 150, the multimedia server 130 can send the obtained identity information to the application server 150 ( Step 271) After receiving the identity information, the application server 150 can verify the received identity information to obtain a verification result (step 273), and can send the obtained verification result to the identity host 170 (step 275) ). Among them, the application server 150 can verify the identity information by itself, or send the identity information to the authorization server 160, so as to verify the identity information through the authorization server 160; the authorization server 160 can, after receiving the identity information, The identity information is verified and the corresponding verification result is generated, and the generated verification result can be sent back to the application server 150, so that the application server 150 can obtain the verification result.

而若在本實施例中,身分識別資訊是由身分識別主機170驗證,則身分識別主機170自行驗證身分識別資訊,或如上述之應用伺服器150將身分識別資訊傳送給授權伺服器160,藉以透過授權伺服器160驗證身分識別資訊。If, in this embodiment, the identity information is verified by the identity host 170, the identity host 170 verifies the identity information by itself, or the application server 150 sends the identity information to the authorization server 160 as described above. Verify the identity information through the authorization server 160.

回到「第2A圖」,在多媒體服務機130取得與晶片卡140所產生之身分識別資訊對應的驗證結果後,身分識別主機170可以依據所取得之驗證結果判斷客戶端110是否通過身分確認(步驟280),並可以產生相對應的判斷結果。Returning to "Figure 2A", after the multimedia server 130 obtains the verification result corresponding to the identity information generated by the chip card 140, the identity host 170 can determine whether the client 110 passes the identity verification based on the obtained verification result ( Step 280), and a corresponding judgment result can be generated.

如此,透過本創作,使用者可以使用第三方設置的多媒體服務機130作為讀卡機以進行身分確認。In this way, through this creation, the user can use the multimedia server 130 provided by a third party as a card reader for identity verification.

上述實施例中,在身分識別主機170產生表示客戶端110是否通過身分確認的判斷結果後,可以將所產生的判斷結果傳送給服務伺服器120。In the above-mentioned embodiment, after the identity recognition host 170 generates a determination result indicating whether the client 110 passes the identity verification, the generated determination result may be transmitted to the service server 120.

服務伺服器120在接收到身分識別主機170所產生的判斷結果後,可以執行後續作業(步驟290)。在本實施例中,假設服務伺服器120可以產生購買服務的合約並主動將所產生之合約傳送給第一客戶端110a簽章,服務伺服器120也可以透過簡訊或即時訊息或推播傳送後續作業的網址給第二客戶端110b,使得使用者操作第二客戶端110b開啟服務伺服器120所傳送的網址以取得服務伺服器120所產生的合約並進行簽章。The service server 120 may perform subsequent operations after receiving the judgment result generated by the identity recognition host 170 (step 290). In this embodiment, it is assumed that the service server 120 can generate a service purchase contract and actively send the generated contract to the first client 110a for signature. The service server 120 can also send follow-up messages via short messages or instant messages or push broadcasts. The operating web address is given to the second client 110b, so that the user operates the second client 110b to open the web address sent by the service server 120 to obtain and sign the contract generated by the service server 120.

繼續以第二實施例來解說本創作,同樣請參照「第2A圖」。在本實施例中,同樣假設客戶端110包含第一客戶端110a及第二客戶端110b,但與第一實施例相同的,本實施例所提之第一客戶端110a與第二客戶端110b也可以是同一台計算設備。Continue to explain this creation with the second embodiment, please also refer to "Figure 2A". In this embodiment, it is also assumed that the client 110 includes a first client 110a and a second client 110b, but the same as the first embodiment, the first client 110a and the second client 110b mentioned in this embodiment It can also be the same computing device.

在使用者操作第一客戶端110a連線到服務伺服器120瀏覽網頁時,若使用者所瀏覽的網頁需要使用者先進行身分確認,則服務伺服器120可以提供進行身分確認的網頁給使用者,使得使用者可以在服務伺服器120提供的頁面選擇使用多媒體服務機130做為讀卡機,並可以操作第一客戶端110a輸入卡片資訊並傳送所輸入之卡片資訊至服務伺服器120(步驟210)。When the user operates the first client 110a to connect to the service server 120 to browse a webpage, if the webpage that the user browses requires the user to confirm the identity first, the service server 120 may provide the webpage for identity confirmation to the user , So that the user can choose to use the multimedia server 130 as a card reader on the page provided by the service server 120, and can operate the first client 110a to input card information and send the input card information to the service server 120 (step 210).

在服務伺服器120接收到第一客戶端110a所產生的卡片資訊後,可以依據所接收到的卡片資訊產生移轉資料(步驟220)。在本實施例中,假設移轉資料為二維條碼,服務伺服器120可以先向身分識別主機170請求識別信物(驗證資料),使得身分識別主機170產生識別信物並傳回服務伺服器120後,服務伺服器可以將接收自第一客戶端110a的卡片資訊與接收自身分識別主機170的驗證資料編碼為二維條碼以做為移轉資料。After the service server 120 receives the card information generated by the first client 110a, it can generate transfer data based on the received card information (step 220). In this embodiment, assuming that the transferred data is a two-dimensional barcode, the service server 120 may first request the identification token (verification data) from the identity identification host 170, so that the identification host 170 generates the identification token and sends it back to the service server 120. The service server can encode the card information received from the first client 110a and the verification data received from the self-identification host 170 into a two-dimensional bar code as the transfer data.

在服務伺服器120產生移轉資料後,多媒體服務機130可以取得服務伺服器120所產生的移轉資料。在本實施例中,假設多媒體服務機130可以如「第2C圖」之所示流程,由第二客戶端110b取得取自第一客戶端110a的移轉資料。After the service server 120 generates the transfer data, the multimedia server 130 can obtain the transfer data generated by the service server 120. In this embodiment, it is assumed that the multimedia server 130 can obtain the transfer data from the first client 110a from the second client 110b as shown in the process shown in "Figure 2C".

在多媒體服務機130取得服務伺服器120所產生的移轉資料後,可以由所取得之移轉資料取得驗證資料(步驟240)。在本實施例中,多媒體服務機130可以在解碼移轉資料後取得卡片資訊及驗證資料。After the multimedia server 130 obtains the transfer data generated by the service server 120, verification data can be obtained from the obtained transfer data (step 240). In this embodiment, the multimedia server 130 can obtain card information and verification data after decoding the transferred data.

同樣在多媒體服務機130取得服務伺服器120所產生的移轉資料後,多媒體服務機130可以依據移轉資料中的卡片資訊連接晶片卡140(步驟250)。在本實施例中,假設多媒體服務機130可以依據卡片資訊中之卡片類型提示使用者將對應的晶片卡140插入多媒體服務機130的晶片卡插槽中,並可以使用與卡片類型對應的存取方式與晶片卡140連接。Similarly, after the multimedia server 130 obtains the transfer data generated by the service server 120, the multimedia server 130 can connect the chip card 140 according to the card information in the transfer data (step 250). In this embodiment, it is assumed that the multimedia server 130 can prompt the user to insert the corresponding chip card 140 into the chip card slot of the multimedia server 130 according to the card type in the card information, and can use the access corresponding to the card type The way is connected with the chip card 140.

在多媒體服務機130連接晶片卡140後,可以將所取得的驗證資料傳送給晶片卡140,藉以透過晶片卡140取得身分識別資訊(步驟260)。在本實施例中,假設晶片卡140需要晶片密碼才能夠被驅動,則多媒體服務機130可以在連接晶片卡140後,提示使用者輸入晶片密碼,並如「第2E圖」所示之流程,多媒體服務機130可以產生並傳送請求給應用伺服器150,應用伺服器150在接收到多媒體服務機130的請求後,可以連線至身分識別主機170,並可以取得身分識別主機170所產生的驗證參數,及可以將所取得之驗證參數傳送給多媒體服務機130(步驟276)。其中,驗證參數可以是簽章參數或押碼參數。After the multimedia server 130 is connected to the chip card 140, the obtained verification data can be sent to the chip card 140, so as to obtain the identity information through the chip card 140 (step 260). In this embodiment, assuming that the chip card 140 needs a chip password to be able to be driven, the multimedia server 130 can prompt the user to enter the chip password after connecting the chip card 140, and follow the process shown in "Figure 2E". The multimedia server 130 can generate and send a request to the application server 150. After receiving the request from the multimedia server 130, the application server 150 can connect to the identity host 170 and obtain the authentication generated by the identity host 170 Parameters, and the obtained verification parameters can be transmitted to the multimedia server 130 (step 276). Among them, the verification parameter can be a signature parameter or a bet parameter.

在多媒體服務機130接收到應用伺服器150所傳送的驗證參數後,多媒體服務機130可以將使用者所輸入之晶片密碼、所接收到的驗證參數及所取得之驗證資料傳送給晶片卡140,晶片卡140可以在驗證晶片密碼正確後,依據所接收到的驗證參數對驗證資料進行簽章或押碼等特定運算以產生身分識別資訊(步驟277),並可以將所產生的身分識別資訊傳送給多媒體服務機130。After the multimedia server 130 receives the verification parameters sent by the application server 150, the multimedia server 130 can send the chip password input by the user, the received verification parameters and the obtained verification data to the chip card 140. After verifying that the chip password is correct, the chip card 140 can perform specific operations such as signature or staking on the verification data according to the received verification parameters to generate identity information (step 277), and can transmit the generated identity information给Multimedia server 130.

在多媒體服務機130接收到晶片卡140所產生的身分識別資訊後,多媒體服務機130可以將所接收到的身分識別資訊傳送給身分識別主機170(步驟278)。身分識別主機170在接收到多媒體服務機130所傳送的身分識別資訊後,可以驗證身分識別資訊以產生驗證結果(步驟279)。After the multimedia server 130 receives the identity information generated by the chip card 140, the multimedia server 130 may send the received identity information to the identity host 170 (step 278). After the identity host 170 receives the identity information sent by the multimedia server 130, it can verify the identity information to generate a verification result (step 279).

回到「第2A圖」,在身分識別主機170產生與晶片卡140所產生之身分識別資訊對應的驗證結果後,身分識別主機170可以依據所產生之驗證結果判斷第一客戶端110a是否通過身分確認(步驟280),並可以產生相對應的判斷結果。Returning to "Figure 2A", after the identity host 170 generates a verification result corresponding to the identity information generated by the chip card 140, the identity host 170 can determine whether the first client 110a passes the identity based on the generated verification result Confirm (step 280), and a corresponding judgment result can be generated.

之後,身分識別主機170可以將所產生的判斷結果傳送給服務伺服器120。服務伺服器120在接收到身分識別主機170所產生的判斷結果後,可以執行後續作業(步驟290)。After that, the identity recognition host 170 may send the generated judgment result to the service server 120. The service server 120 may perform subsequent operations after receiving the judgment result generated by the identity recognition host 170 (step 290).

綜上所述,可知本創作與先前技術之間的差異在於具有身分識別主機依據客戶端所輸入的卡片資訊產生移轉資料,多媒體服務機將由移轉資料中取得的驗證資料提供給相連接之晶片卡,使得晶片卡產生身分辨識資訊後,身分識別主機依據與身分辨識資訊對應之驗證結果判斷客戶端是否通過身分確認之技術手段,藉由此一技術手段可以來解決先前技術所存在使用者通常無法連接行動裝置與硬體載具以進行身分確認的問題,進而達成增加使用者進行身分確認之方式的技術功效。In summary, it can be seen that the difference between this creation and the prior art is that the host with identity recognition generates transfer data according to the card information input by the client, and the multimedia server provides the verification data obtained from the transfer data to the connected Chip card, after the chip card generates identification information, the identification host determines whether the client has passed the technical means of identity verification based on the verification result corresponding to the identification information. This technical means can solve the existing users of the prior art Generally, it is not possible to connect a mobile device and a hardware vehicle for identity verification, thereby achieving the technical effect of increasing the ways for users to perform identity verification.

雖然本創作所揭露之實施方式如上,惟所述之內容並非用以直接限定本創作之專利保護範圍。任何本創作所屬技術領域中具有通常知識者,在不脫離本創作所揭露之精神和範圍的前提下,對本創作之實施的形式上及細節上作些許之更動潤飾,均屬於本創作之專利保護範圍。本創作之專利保護範圍,仍須以所附之申請專利範圍所界定者為準。Although the implementation of this creation is disclosed as above, the content described is not used to directly limit the scope of patent protection of this creation. Any person with ordinary knowledge in the technical field to which this creation belongs, without departing from the spirit and scope of this creation, makes a little modification in the form and details of the implementation of this creation, and it belongs to the patent protection of this creation. range. The scope of patent protection for this creation shall still be subject to the scope of the attached patent application.

110:客戶端 110a:第一客戶端 110b:第二客戶端 120:服務伺服器 130:多媒體服務機 140:晶片卡 150:應用伺服器 160:授權伺服器 170:身分識別主機 步驟203:服務伺服器傳送顯示資料至客戶端 步驟207:客戶端輸入卡片資訊 步驟210:客戶端傳送卡片資訊給服務伺服器或身分識別主機 步驟211:客戶端傳送卡片資訊至服務伺服器 步驟215:服務伺服器傳送卡片資訊至身分識別主機 步驟220:服務伺服器或身分識別主機依據卡片資訊產生移轉資料 步驟231:服務伺服器將移轉資料傳送至客戶端 步驟237:客戶端提供移轉資料給多媒體服務機 步驟240:多媒體服務機取得移轉資料,並由移轉資料取得驗證資料 步驟250:連接多媒體服務機與晶片卡 步驟260:多媒體服務機傳送驗證資料至晶片卡,藉以透過晶片卡取得身分辨識資訊 步驟271:多媒體服務機傳送身分辨識資訊至應用伺服器 步驟273:應用伺服器驗證身分辨識資訊以取得驗證結果 步驟275:應用伺服器傳送驗證結果至身分識別主機 步驟276:應用伺服器至身分識別主機取得驗證參數,並將驗證參數傳送至多媒體服務機 步驟277:多媒體服務機傳送驗證參數至晶片卡,晶片卡依據驗證參數對驗證資料進行特定運算後產生身分識別資訊 步驟278:晶片卡傳送身分識別資訊至多媒體服務機,多媒體服務機傳送身分識別資訊至身分識別主機 步驟279:身分識別主機驗證身分識別資訊以產生驗證結果 步驟280:身分識別主機依據與身分辨識資訊對應之驗證結果判斷客戶端是否通過身分確認 步驟290:服務伺服器於客戶端之身分確認通過後執行後續作業 110: client 110a: the first client 110b: second client 120: service server 130: Multimedia server 140: chip card 150: application server 160: License server 170: Identity host Step 203: The service server sends the display data to the client Step 207: The client enters the card information Step 210: The client sends the card information to the service server or identity host Step 211: The client sends the card information to the service server Step 215: The service server sends the card information to the identity host Step 220: The service server or identity host generates transfer data based on the card information Step 231: The service server sends the migration data to the client Step 237: The client provides the transfer data to the multimedia server Step 240: The multimedia server obtains the transfer data, and obtains the verification data from the transfer data Step 250: Connect the multimedia server and chip card Step 260: The multimedia server sends the verification data to the chip card, so as to obtain the identification information through the chip card Step 271: The multimedia server sends the identification information to the application server Step 273: The application server verifies the identification information to obtain the verification result Step 275: The application server sends the verification result to the identity host Step 276: Apply the server to the identity host to obtain verification parameters, and send the verification parameters to the multimedia server Step 277: The multimedia server sends the verification parameters to the chip card, and the chip card generates identification information after performing specific operations on the verification data according to the verification parameters Step 278: The chip card sends the identity information to the multimedia server, and the multimedia server sends the identity information to the identity host Step 279: The identity host verifies the identity information to generate a verification result Step 280: The identity host determines whether the client has passed the identity verification based on the verification result corresponding to the identity information Step 290: The service server performs subsequent operations after the client's identity is confirmed

第1圖為本創作所提之由第三方設備驅動晶片卡以進行身分確認之系統架構圖。 第2A圖為本創作所提之由第三方設備驅動晶片卡以進行身分確認之流程圖。 第2B圖為本創作所提之客戶端傳送卡片資訊至身分識別主機之流程圖。 第2C圖為本創作所提之客戶端提供移轉資料給多媒體服務機之流程圖。 第2D圖為本創作所提之應用伺服器傳送所取得之驗證結果至身分識別主機之流程圖。 第2E圖為本創作所提之身分識別主機驗證多媒體服務機所傳送之身分識別資訊之流程圖。 Figure 1 is the system architecture diagram of the third-party device driving the chip card for identity verification mentioned in the creation. Figure 2A is the flow chart of the third-party device driving the chip card for identity verification mentioned in the creation. Figure 2B is the flow chart of the creation of the client to send card information to the identity host. Figure 2C is the flow chart of the client providing transfer data to the multimedia server mentioned in the creation. Figure 2D is the flow chart of the application server mentioned in the creation to send the obtained verification result to the identity host. Figure 2E is the flow chart of the creation of the identity host verifying the identity information sent by the multimedia server.

110:客戶端 110: client

110a:第一客戶端 110a: the first client

110b:第二客戶端 110b: second client

120:服務伺服器 120: service server

130:多媒體服務機 130: Multimedia server

140:晶片卡 140: chip card

150:應用伺服器 150: application server

160:授權伺服器 160: License server

170:身分識別主機 170: Identity host

Claims (18)

一種由第三方設備驅動晶片卡以進行身分確認之系統,該系統至少包含: 一客戶端,用以產生一卡片資訊; 一晶片卡; 一身分識別主機,用以接收該卡片資訊,並依據該卡片資訊產生一移轉資料;及 一多媒體服務機,用以取得該移轉資料,並由該移轉資料取得一驗證資料,及用以連接該晶片卡,並傳送該驗證資料至該晶片卡,藉以透過該晶片卡取得一身分辨識資訊,使該身分識別主機依據與該身分辨識資訊對應之一驗證結果判斷該客戶端是否通過身分確認。 A system in which a third-party device drives a chip card for identity verification. The system includes at least: A client terminal for generating a card information; A chip card; An identity host for receiving the card information and generating a transfer data based on the card information; and A multimedia server for obtaining the transfer data and obtaining a verification data from the transfer data, and for connecting the chip card and sending the verification data to the chip card, so as to obtain an identity through the chip card The identification information enables the identification host to determine whether the client has passed the identification verification based on a verification result corresponding to the identification information. 如請求項1所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一應用伺服器,該應用伺服器用以接收該多媒體服務機所傳送之該身分辨識資訊,並驗證該身分辨識資訊以產生該驗證結果,該應用伺服器更用以傳送該驗證結果至該身分識別主機,使該身分識別主機依據該驗證結果判斷該客戶端是否通過身分確認。The system in which a third-party device drives a chip card for identity verification as described in claim 1, wherein the system further includes an application server for receiving the identity information sent by the multimedia server, The identification information is verified to generate the verification result, and the application server is further used to send the verification result to the identity host, so that the identity host determines whether the client passes the identity verification according to the verification result. 如請求項2所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一授權伺服器,用以接收該應用伺服器所傳送之該身分辨識資訊,並驗證該身分辨識資訊以產生該驗證結果,及傳送該驗證結果至該應用伺服器。The system in which a third-party device drives a chip card for identity verification as described in claim 2, wherein the system further includes an authorization server for receiving the identification information sent by the application server and verifying the identity Identify the information to generate the verification result, and send the verification result to the application server. 如請求項1所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一應用伺服器,該應用伺服器用以至該身分識別主機取得一驗證參數,並將該驗證參數傳送至該多媒體服務機,該多媒體服務機更用以傳送該驗證參數至該晶片卡,使該晶片卡依據該驗證參數對該驗證資料進行特定運算以產生該身分識別資訊並將該身分識別資訊傳回該多媒體服務機,該多媒體服務機更用以將該身分識別資訊傳送給該身分識別主機,使該身分識別主機驗證該身分識別資訊以產生該驗證結果。As described in claim 1, the third-party device drives the chip card for identity verification system, wherein the system further includes an application server, the application server is used to obtain a verification parameter from the identity host, and verify the verification The parameter is sent to the multimedia server, and the multimedia server is further used to send the verification parameter to the chip card, so that the chip card performs a specific operation on the verification data according to the verification parameter to generate the identity information and identify the identity The information is returned to the multimedia server, and the multimedia server is further used to send the identity information to the identity host, so that the identity host verifies the identity information to generate the verification result. 如請求項1所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該客戶端更用以取得該移轉資料並提供該移轉資料給該多媒體服務機。In the system in which a third-party device drives a chip card for identity verification as described in claim 1, wherein the client is further used to obtain the transfer data and provide the transfer data to the multimedia server. 如請求項1所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一服務伺服器,用以將該客戶端所傳送之該卡片資訊傳送至該身分識別主機,並將該身分識別主機所傳送之該移轉資料傳送至該客戶端。The system in which a third-party device drives a chip card for identity verification as described in claim 1, wherein the system further includes a service server for sending the card information sent by the client to the identity host, And send the transfer data sent by the identity host to the client. 如請求項1所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一服務伺服器,用以於該身分識別主機判斷該客戶端之身分確認通過後執行後續作業。The system in which the chip card is driven by a third-party device for identity verification as described in claim 1, wherein the system further includes a service server for performing subsequent operations after the identity host determines that the client's identity verification is passed . 如請求項7所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該身分識別主機是即時或批次傳送表示該客戶端是否通過身分確認之判斷結果至該服務伺服器。As described in claim 7, the third-party device drives the chip card to perform identity verification system, wherein the identity recognition host transmits the judgment result indicating whether the client passes the identity verification to the service server in real time or in batches. 如請求項1所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該多媒體服務機更用以提供輸入一晶片密碼,並將該晶片密碼傳送給該晶片卡,使該晶片卡在判斷該晶片密碼正確後產生該身分辨識資訊並將該身分辨識資訊傳回該多媒體服務機。As described in claim 1, the third-party device drives the chip card for identity verification system, wherein the multimedia server is further used to provide input of a chip code, and transmit the chip code to the chip card, so that the chip card After determining that the chip password is correct, the personal identification information is generated and the personal identification information is transmitted back to the multimedia server. 一種由第三方設備驅動晶片卡以進行身分確認之系統,該系統至少包含: 一客戶端,用以產生一卡片資訊; 一晶片卡; 一身分識別主機,用以產生一驗證資料; 一服務伺服器,用以接收該驗證資料,及用以接收該卡片資訊,並依據該卡片資訊及該驗證資料產生一移轉資料;及 一多媒體服務機,用以取得該移轉資料,並由該移轉資料取得該驗證資料,及用以連接該晶片卡,並傳送該驗證資料至該晶片卡,藉以透過該晶片卡取得一身分辨識資訊,使該身分識別主機依據與該身分辨識資訊對應之一驗證結果判斷該客戶端是否通過身分確認。 A system in which a third-party device drives a chip card for identity verification. The system includes at least: A client terminal for generating a card information; A chip card; An identity host for generating a verification data; A service server for receiving the verification data, and for receiving the card information, and generating a transfer data based on the card information and the verification data; and A multimedia server for obtaining the transfer data and obtaining the verification data from the transfer data, and for connecting the chip card and sending the verification data to the chip card, so as to obtain an identity through the chip card The identification information enables the identification host to determine whether the client has passed the identification verification based on a verification result corresponding to the identification information. 如請求項10所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一應用伺服器,該應用伺服器用以接收該多媒體服務機所傳送之該身分辨識資訊,並驗證該身分辨識資訊以產生該驗證結果,該應用伺服器更用以傳送該驗證結果至該身分識別主機,使該身分識別主機依據該驗證結果判斷該客戶端是否通過身分確認。The system in which a third-party device drives a chip card for identity verification as described in claim 10, wherein the system further includes an application server for receiving the identity information sent by the multimedia server, The identification information is verified to generate the verification result, and the application server is further used to send the verification result to the identity host, so that the identity host determines whether the client passes the identity verification according to the verification result. 如請求項11所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一授權伺服器,用以接收該應用伺服器所傳送之該身分辨識資訊,並驗證該身分辨識資訊以產生該驗證結果,及傳送該驗證結果至該應用伺服器。The system in which a third-party device drives a chip card for identity verification as described in claim 11, wherein the system further includes an authorization server for receiving the identification information sent by the application server and verifying the identity Identify the information to generate the verification result, and send the verification result to the application server. 如請求項10所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該系統更包含一應用伺服器,該應用伺服器用以至該身分識別主機取得一驗證參數,並將該驗證參數傳送至該多媒體服務機,該多媒體服務機更用以傳送該驗證參數至該晶片卡,使該晶片卡依據該驗證參數對該驗證資料進行特定運算以產生該身分識別資訊並將該身分識別資訊傳回該多媒體服務機,該多媒體服務機更用以將該身分識別資訊傳送給該身分識別主機,使該身分識別主機驗證該身分識別資訊以產生該驗證結果。As described in claim 10, the third-party device drives the chip card to perform identity verification system, wherein the system further includes an application server for obtaining a verification parameter from the identity host, and verifying The parameter is sent to the multimedia server, and the multimedia server is further used to send the verification parameter to the chip card, so that the chip card performs a specific operation on the verification data according to the verification parameter to generate the identity information and identify the identity The information is returned to the multimedia server, and the multimedia server is further used to send the identity information to the identity host, so that the identity host verifies the identity information to generate the verification result. 如請求項10所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該客戶端更用以取得該移轉資料並提供該移轉資料給該多媒體服務機。As described in claim 10, the third-party device drives the chip card to perform identity verification system, wherein the client is further used to obtain the transfer data and provide the transfer data to the multimedia server. 如請求項10所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該服務伺服器更用以將該客戶端所傳送之該卡片資訊傳送至該身分識別主機,並將該身分識別主機所傳送之該移轉資料傳送至該客戶端。As described in claim 10, the third-party device drives the chip card to perform identity verification system, wherein the service server is further used to send the card information sent by the client to the identity host, and to transfer the identity Identify the transfer data sent by the host and send it to the client. 如請求項10所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該服務伺服器更用以於該身分識別主機判斷該客戶端之身分確認通過後執行後續作業。As described in claim 10, the third-party device drives the chip card to perform identity verification system, wherein the service server is further used to perform subsequent operations after the identity recognition host determines that the client's identity verification is passed. 如請求項16所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該身分識別主機是即時或批次傳送表示該客戶端是否通過身分確認之判斷結果至該服務伺服器。As described in claim 16, the third-party device drives the chip card to perform identity verification system, wherein the identity recognition host transmits the judgment result indicating whether the client passes the identity verification to the service server in real time or in batches. 如請求項10所述之由第三方設備驅動晶片卡以進行身分確認之系統,其中該多媒體服務機更用以提供輸入一晶片密碼,並將該晶片密碼傳送給該晶片卡,使該晶片卡在判斷該晶片密碼正確後產生該身分辨識資訊並將該身分辨識資訊傳回該多媒體服務機。As described in claim 10, the third-party device drives the chip card for identity verification system, wherein the multimedia server is further used to provide input of a chip password, and transmit the chip password to the chip card, so that the chip card After determining that the chip password is correct, the personal identification information is generated and the personal identification information is transmitted back to the multimedia server.
TW109214384U 2020-10-30 2020-10-30 System of identity verification by third-party device driven chip card TWM608117U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW109214384U TWM608117U (en) 2020-10-30 2020-10-30 System of identity verification by third-party device driven chip card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW109214384U TWM608117U (en) 2020-10-30 2020-10-30 System of identity verification by third-party device driven chip card

Publications (1)

Publication Number Publication Date
TWM608117U true TWM608117U (en) 2021-02-21

Family

ID=75783485

Family Applications (1)

Application Number Title Priority Date Filing Date
TW109214384U TWM608117U (en) 2020-10-30 2020-10-30 System of identity verification by third-party device driven chip card

Country Status (1)

Country Link
TW (1) TWM608117U (en)

Similar Documents

Publication Publication Date Title
TWI754811B (en) System for using device identification to identify via telecommunication server and method thereof
TWM539667U (en) System of online credentials application for network transaction via carrier
TW201824130A (en) System for opening account and applying mobile banking account online and method thereof
TWM539668U (en) System for opening account online and applying for mobile banking
TWM641468U (en) Electronic certificate and digital certificate verification system through third-party platform
TWM592629U (en) System to obtain appended data and execute corresponding operation when identity is confirmed
TWM580206U (en) System for identifying identity through telecommunication server by identification data device
TWM620550U (en) System for verifying identity on different devices by verifying valid certificates
TWI790495B (en) System for driving smart card by third-party device for identity verification and method thereof
TWM609003U (en) System for transferring to client end to continue operation after confirming the identity on the public equipment
TWM608117U (en) System of identity verification by third-party device driven chip card
TWM618726U (en) System for verifying identity on different devices based on certificates and verification data
TWM603573U (en) System generating authorization content during identity verification before transaction
TWM610179U (en) Device for identifying identity based on chip pre-stored image and real-time in vivo image
TWM586390U (en) A system for performing identity verification according to the service instruction to execute the corresponding service
TWI784339B (en) System for changing to client to continue operations after confirming identity on public device and method thereof
TWM583978U (en) System of using physical carrier to store digital certificate for performing online transaction
TWM588313U (en) System for confirming user identity through financial account information
TWM586494U (en) ID recognition system using network identification data through telecommunication server
TWI729535B (en) System for using financial account to confirm identity and method thereof
TWI803907B (en) System for confirming identity on different devices by verifying valid certification and method thereof
TWI691859B (en) System for identifying according to instruction to execute service and method thereof
TWI792010B (en) System for using automation machine to scan barcode and verify identity for applying account and method thereof
TWI807219B (en) System for performing identification based on comparing photo stored in chip and real-time live photo and method thereof
TWI780341B (en) System for using network identification to identify via telecommunication server and method thereof

Legal Events

Date Code Title Description
MM4K Annulment or lapse of a utility model due to non-payment of fees