TWM640763U - Chip card transaction system based on transaction risk control - Google Patents

Chip card transaction system based on transaction risk control Download PDF

Info

Publication number
TWM640763U
TWM640763U TW111208398U TW111208398U TWM640763U TW M640763 U TWM640763 U TW M640763U TW 111208398 U TW111208398 U TW 111208398U TW 111208398 U TW111208398 U TW 111208398U TW M640763 U TWM640763 U TW M640763U
Authority
TW
Taiwan
Prior art keywords
card
transaction
chip card
communication module
request
Prior art date
Application number
TW111208398U
Other languages
Chinese (zh)
Inventor
吳育昇
Original Assignee
悠遊卡股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 悠遊卡股份有限公司 filed Critical 悠遊卡股份有限公司
Priority to TW111208398U priority Critical patent/TWM640763U/en
Publication of TWM640763U publication Critical patent/TWM640763U/en

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Pinball Game Machines (AREA)

Abstract

一種基於交易風險控管的晶片卡交易系統,包含一行動裝置與一後端伺服器,後端伺服器可演算晶片卡的一風險分數,行動裝置安裝或執行有一應用程式(APP),其經組態以至少:驅動行動裝置使用第一無線通訊協定(例如NFC協定)與同樣位於第一通訊範圍的一晶片卡進行通訊,以讀取晶片卡的一卡片資訊、響應於風險分數符合一決策條件而在行動裝置毋須使用第二無線通訊協定與後端伺服器透過一網際網路進行通訊的模式下,由行動裝置決定是否允許晶片卡的交易請求;以及驅動行動裝置使用第一無線通訊協定,在交易完成後,將關聯於交易請求的一更新後卡片資訊寫入晶片卡。A chip card transaction system based on transaction risk control, including a mobile device and a back-end server, the back-end server can calculate a risk score of the chip card, the mobile device installs or executes an application program (APP), which passes The configuration is to at least: drive the mobile device to use a first wireless communication protocol (such as the NFC protocol) to communicate with a chip card that is also located in the first communication range, to read a card information of the chip card, respond to the risk score to meet a decision Under the condition that the mobile device does not need to use the second wireless communication protocol to communicate with the back-end server through an Internet mode, the mobile device decides whether to allow the transaction request of the chip card; and drives the mobile device to use the first wireless communication protocol , after the transaction is completed, write an updated card information associated with the transaction request into the chip card.

Description

基於交易風險控管的晶片卡交易系統Chip card transaction system based on transaction risk control

本創作涉及以無線通訊技術、行動裝置,來管理與驗證晶片卡交易的技術,尤指一種行動裝置可透過應用程式與後端伺服器建立協作,並在風險可控的情況下,完成線上或線下即時晶片卡交易,並響應於交易請求結果為允許而使用不同於後端伺服器所採用的無線通訊協定(例如行動裝置採用NFC技術、後端伺服器採用Wi-Fi或行動網路協定),將關聯於交易請求的更新後卡片資訊(例如包含卡片餘額的資料)寫入晶片卡,藉此達成不受限於時間與地點,而能即時進行晶片卡交易的「基於交易風險控管的晶片卡交易系統」。 This creation involves the technology of managing and verifying chip card transactions with wireless communication technology and mobile devices, especially a mobile device that can establish cooperation with the back-end server through an application program, and complete online or transaction transactions under controllable risks. Offline real-time chip card transactions, and in response to the transaction request being allowed, use a wireless communication protocol different from that used by the back-end server (such as NFC technology for mobile devices, Wi-Fi or mobile network protocols for back-end servers ), write the updated card information associated with the transaction request (such as the data including the card balance) into the chip card, so as to achieve "transaction-based risk control" that enables real-time chip card transactions regardless of time and place chip card transaction system".

隨著電子交易的頻繁,如今多數人皆會使用金融卡、信用卡、交通票證卡等晶片卡,取代傳統以現金支付的交易方式,然而,若消費者欲持晶片卡於實體店面或是網路商店進行消費,皆需透過商家端或自備的感應式/刷卡式讀卡機,並於連線狀態下才能完成交易,另對於交通票證卡而言,消費者若欲進行加值交易、進行扣款交易,其使用場域也受限於車站、或設有感應讀寫設備的商家(如超商),相當不便,因此,如何提出一種可解決前述問題,並在風險可控的情況下,達到晶片卡交易可不受限於時間與使用場域的「基於交易風險控管的晶片卡交易系統」,乃有待解決之問題。 With the frequency of electronic transactions, most people now use chip cards such as debit cards, credit cards, and traffic ticket cards to replace traditional cash payment methods. However, if consumers want to use chip cards in physical stores or online For consumption in stores, it is necessary to complete the transaction through the merchant terminal or the self-provided inductive/swipe card reader, and the transaction can only be completed in the connected state. Deduction transactions are also limited to stations, or merchants (such as supermarkets) equipped with inductive reading and writing equipment, which is quite inconvenient. Therefore, how to propose a method that can solve the aforementioned problems and under controllable risks It is a problem to be solved to achieve the "chip card transaction system based on transaction risk control" that chip card transactions can not be limited by time and field of use.

為達上述目的,本創作揭露一種基於交易風險控管的晶片卡交易系統。晶片卡交易系統包括一行動裝置及一後端伺服器。行動裝置包括一通訊模組、一處理器與一記憶體,處理器分別與通訊模組、記憶體電性連接,行動裝置裝載或執行有一應用程式。 To achieve the above purpose, this creation discloses a chip card transaction system based on transaction risk control. The chip card transaction system includes a mobile device and a backend server. The mobile device includes a communication module, a processor and a memory, the processor is electrically connected to the communication module and the memory respectively, and the mobile device loads or executes an application program.

承上,應用程式供以驅動通訊模組使用一第一無線通訊協定(例如NFC通訊協定)與一晶片卡進行無線通訊,以讀寫晶片卡的一卡片資訊(例如包含卡片ID、金融卡編號、信用卡編號、卡片帳戶餘額、前筆交易紀錄、本筆交易紀錄、卡片製卡日、卡片到期日、卡片種類、卡片發行機構資料、卡片交易序號、銀行代碼、加值交易旗標、加值交易金額、加值交易日期、訊息鑑別碼、卡片防偽驗證碼、卡片身份別、身份到期日、縣市代碼的任意組合,依交易請求的交易類型與卡片類型而定)。 Continuing from the above, the application program is used to drive the communication module to use a first wireless communication protocol (such as NFC communication protocol) to communicate wirelessly with a chip card to read and write a card information of the chip card (such as including card ID, financial card number, etc.) , credit card number, card account balance, previous transaction record, current transaction record, card production date, card expiration date, card type, card issuer information, card transaction serial number, bank code, value-added transaction flag, plus Any combination of value transaction amount, value-added transaction date, message authentication code, card anti-counterfeiting verification code, card identity, identity expiration date, county and city code, depending on the transaction type and card type of the transaction request).

承上,通訊模組也用於使用一第二無線通訊協定(例如通訊距離/有效通訊範圍大於第一無線通訊協定的Wi-Fi、行動通訊等協定)與一後端伺服器透過一網際網路進行通訊。 Continuing from the above, the communication module is also used to use a second wireless communication protocol (such as Wi-Fi, mobile communication, etc., whose communication distance/effective communication range is greater than that of the first wireless communication protocol) to communicate with a back-end server through an Internet way to communicate.

在不同的實施例中,行動裝置和後端伺服器皆可決定是否允許晶片卡的一交易請求,亦皆可依據一風險參數演算出晶片卡的一風險分數。 In different embodiments, both the mobile device and the backend server can decide whether to allow a transaction request of the chip card, and can also calculate a risk score of the chip card according to a risk parameter.

本創作之關鍵在於,當晶片卡與通訊模組處於可彼此使用第一無線通訊協定而能進行通訊的一第一通訊範圍內,應用程式更可響應於風險分數符合一決策條件而在通訊模組毋須連線至後端伺服器、或通訊模組毋須連結至網際網路的模式下,於此離線模式下允許晶片卡的交易請求而生成一交易請求 結果(例如扣款成功、加值成功、刷卡成功),並令通訊模組使用第一無線通訊協定,將關聯於交易請求的更新後卡片資訊寫入於晶片卡。 The key point of this invention is that when the chip card and the communication module are within a first communication range where they can communicate with each other using a first wireless communication protocol, the application program can respond to the risk score meeting a decision condition in the communication module The group does not need to be connected to the back-end server, or the communication module does not need to be connected to the Internet. In this offline mode, the transaction request of the chip card is allowed to generate a transaction request. result (such as successful deduction, successful value-added, successful card swiping), and make the communication module use the first wireless communication protocol to write the updated card information associated with the transaction request into the chip card.

基於上述,本創作的行動裝置可透過應用程式與後端伺服器建立協作,當本創作的行動裝置與晶片卡處於可彼此使用第一無線通訊協定而能進行通訊的第一通訊範圍內,且在風險可控的情況下,行動裝置即可透過應用程式決定是否(於離線模式下)允許晶片卡的交易請求,並能響應於交易請求結果為允許,而在晶片卡與行動裝置的第一通訊範圍內,使用不同於後端伺服器所採用的無線通訊協定/無線通訊技術,將關聯於交易請求的更新後卡片資訊以例如NFC協定寫入晶片卡,藉此,可達到晶片卡即時交易不受限於時間與使用場域的有利功效,有效提升晶片卡即時交易的便利性。 Based on the above, the mobile device of this invention can establish cooperation with the back-end server through the application program, when the mobile device of this invention and the chip card are within the first communication range that can communicate with each other using the first wireless communication protocol, and When the risk is controllable, the mobile device can decide whether to allow the transaction request of the chip card (in offline mode) through the application program, and can respond to the transaction request result as permission, and the chip card and the mobile device first Within the scope of communication, use a wireless communication protocol/wireless communication technology different from that used by the back-end server to write the updated card information associated with the transaction request into the chip card using the NFC protocol, thereby achieving real-time transaction of the chip card The beneficial effect of not being limited by time and field of use effectively improves the convenience of chip card instant transactions.

本創作亦提出一種基於交易風險控管的晶片卡交易系統的電腦可讀取記錄媒體及電腦程式產品。 This creation also proposes a computer-readable recording medium and a computer program product of a chip card transaction system based on transaction risk control.

為使 貴審查委員得以清楚瞭解本創作之目的、技術特徵及其實施後之功效,茲以下列說明搭配圖示進行說明,敬請參閱。 In order to enable your review committee to clearly understand the purpose, technical features and effects of this creation, the following descriptions are provided with illustrations, please refer to it.

10:晶片卡交易系統 10: Chip card transaction system

101:行動裝置 101: Mobile Devices

1011:處理器 1011: Processor

1012:通訊模組 1012: Communication module

1013:記憶體 1013: memory

APP:應用程式 APP: application program

C_V:卡片驗證結果 C_V: card verification result

T_A:交易請求結果 T_A: transaction request result

P1:第一無線通訊協定 P1: The first wireless communication protocol

P2:第二無線通訊協定 P2: The second wireless communication protocol

C:晶片卡 C: chip card

T:交易請求 T: transaction request

I:卡片資訊 I: Card Information

I’:卡片資訊 I’: Card Information

I_U:更新後卡片資訊 I_U: Card information after update

R_S:風險分數 R_S: Risk Score

W:電子錢包帳戶 W: Wallet account

102:後端伺服器 102:Backend server

1021:交易子系統 1021: Transaction Subsystem

1022:卡片管理子系統 1022: Card management subsystem

S:晶片卡交易系統的實施方法 S: Implementation method of chip card transaction system

S1:應用程式響應於晶片卡的交易請求而驅動通訊模組使用第一無線通訊協定以驗證晶片卡是否為有效卡片 S1: The application program drives the communication module to use the first wireless communication protocol to verify whether the chip card is a valid card in response to the transaction request of the chip card

S2:應用程式響應於風險分數符合決策條件而在通訊模組未連線至後端伺服的模式下,由行動裝置允許卡片交易請求 S2: The application program allows the card transaction request by the mobile device in response to the risk score meeting the decision condition and in the mode where the communication module is not connected to the backend server

S3:應用程式響應於風險分數未符合決策條件而在通訊模組連線至後端伺服器的模式下,由後端伺服器允許卡片交易請求 S3: The application program responds to the risk score not meeting the decision-making conditions, and the back-end server allows the card transaction request in the mode where the communication module is connected to the back-end server

第1圖,為本創作之一實施例的晶片卡交易系統的示意圖(一)。 Fig. 1 is a schematic diagram (1) of a chip card transaction system according to an embodiment of the invention.

第2圖,為本創作之一實施例的晶片卡交易系統的示意圖(二)。 Fig. 2 is a schematic diagram (2) of the chip card transaction system of one embodiment of the invention.

第3圖,為本創作之一實施例的晶片卡交易方法的流程圖。 Fig. 3 is a flow chart of the chip card transaction method of one embodiment of the invention.

第4圖,為本創作之另一實施例(一)的晶片卡交易系統的示意圖。 Fig. 4 is a schematic diagram of the chip card transaction system of another embodiment (1) of the present invention.

第5圖,為本創作之另一實施例(二)的晶片卡交易系統的示意圖。 Fig. 5 is a schematic diagram of the chip card transaction system of another embodiment (2) of the present invention.

請參照第1圖及第2圖,一種基於交易風險控管的晶片卡交易系統,晶片卡交易系統10包括:一行動裝置101及一後端伺服器102。 Please refer to FIG. 1 and FIG. 2 , a chip card transaction system based on transaction risk control. The chip card transaction system 10 includes: a mobile device 101 and a backend server 102 .

請參照第1圖,在一實施例中,行動裝置101包括一處理器1011、一通訊模組1012及一記憶體1013,處理器1011分別與通訊模組1012、記憶體1013電性連接。 Please refer to FIG. 1 , in one embodiment, the mobile device 101 includes a processor 1011 , a communication module 1012 and a memory 1013 , and the processor 1011 is electrically connected to the communication module 1012 and the memory 1013 respectively.

請參照第1圖與第2圖,在一實施例中,行動裝置101安裝或執行有一應用程式APP,應用程式APP的資料(例如應用程式APP於本創作所揭露功能的多個指令、及行動裝置101在執行應用程式APP後所產生的暫存資料)儲存於記憶體1013。應用程式APP經組態以至少可驅動通訊模組1012使用一第一無線通訊協定P1與一晶片卡C進行無線通訊,應注意,此時通訊模組1012與晶片卡C處於可彼此使用第一無線通訊協定P1而能進行通訊的一第一通訊範圍內。接著,應用程式APP經組態可驅動通訊模組1012在所述第一通訊範圍內從晶片卡C讀取一卡片資訊I,再使執行應用程式APP的處理器1011基於卡片資訊I而驗證晶片卡C是否為有效卡片、及決定是否允許晶片卡C的一交易請求T。此外,應用程式APP亦可經組態以驅動通訊模組1012基於第一無線通訊協定P1對晶片卡C的卡片資訊I進行讀寫。藉此,可讓行動裝置101藉由應用程式APP,於第一通訊範圍內允許晶片卡C的交易請求T,有效提升晶片卡即時交易的便利性。 Please refer to FIG. 1 and FIG. 2. In one embodiment, the mobile device 101 installs or executes an application program APP, and the data of the application program APP (for example, multiple commands of the application program APP in the functions disclosed in this creation, and actions) Temporary data) generated by the device 101 after executing the application program APP are stored in the memory 1013 . The application program APP is configured to at least drive the communication module 1012 to communicate wirelessly with a chip card C using a first wireless communication protocol P1. The wireless communication protocol P1 enables communication within a first communication range. Then, the application program APP is configured to drive the communication module 1012 to read a card information I from the chip card C within the first communication range, and then make the processor 1011 executing the application program APP verify the chip based on the card information I Whether the card C is a valid card, and determine whether to allow a transaction request T of the chip card C. In addition, the application program APP can also be configured to drive the communication module 1012 to read and write the card information I of the chip card C based on the first wireless communication protocol P1. In this way, the mobile device 101 can allow the transaction request T of the chip card C within the first communication range through the application program APP, effectively improving the convenience of real-time transaction of the chip card.

請參照第1圖與第2圖,在一實施例中,行動裝置101為透過應用程式APP使處理器1011對卡片資訊I進行驗證,係可於記憶體1013儲存對應晶片卡C的卡片資訊I’,使得處理器1011進行卡片驗證時,可將卡片資訊I與記憶體1013儲存的卡片資訊I’進行比對,並於驗證完成後,由處理器1011生成一卡片驗證結果C_V。 Please refer to FIG. 1 and FIG. 2. In one embodiment, the mobile device 101 can store the card information I corresponding to the chip card C in the memory 1013 in order to enable the processor 1011 to verify the card information I through the application program APP. ', so that when the processor 1011 performs card verification, it can compare the card information I with the card information I' stored in the memory 1013, and after the verification is completed, the processor 1011 generates a card verification result C_V.

其中,作為示例,第一無線通訊協定P1可為一近場通訊(NFC)協定、一藍芽低功耗(Bluetooth Low Energy,BLE)、一高速藍芽通訊協定(Bluetooth HS)、一ZigBee通訊協定、一Sub-1GHz通訊協定、一Z-Wave通訊協定、一超寬頻通訊協定(UWB)、一Wi-Fi通訊協定、一HiperLAN通訊協定之其中一種或其任意組合,但不以此為限。 Wherein, as an example, the first wireless communication protocol P1 can be a near-field communication (NFC) protocol, a Bluetooth Low Energy (Bluetooth Low Energy, BLE), a high-speed Bluetooth communication protocol (Bluetooth HS), a ZigBee communication protocol, a Sub-1GHz communication protocol, a Z-Wave communication protocol, an ultra-wideband communication protocol (UWB), a Wi-Fi communication protocol, a HiperLAN communication protocol, or any combination thereof, but not limited to this .

請參照第1圖與第2圖,在一實施例中,針對可用於驗證卡片有效性、或作為是否允許晶片卡交易之決策因素的卡片資訊I,其可為一卡片資料、一交易資料、一驗證資料及一身份資料的其中一種或其組合,但不以此為限。 Please refer to Fig. 1 and Fig. 2, in one embodiment, for the card information I that can be used to verify the validity of the card, or as a decision factor whether to allow chip card transactions, it can be a card data, a transaction data, One or a combination of verification data and identity data, but not limited thereto.

其中,作為示例,所述卡片資料可包括卡片ID、卡片帳戶餘額(Electronic Value,EV)、卡片製卡日、卡片到期日、卡片種類、卡片發行機構資料的任意組合。此外,若晶片卡C為簽帳金融卡或信用卡,則所述卡片資料更可包括金融卡編號或信用卡編號。 Wherein, as an example, the card information may include any combination of card ID, card account balance (Electronic Value, EV), card production date, card expiration date, card type, and card issuer information. In addition, if the chip card C is a debit financial card or a credit card, the card information may further include a financial card number or a credit card number.

其中,作為示例,所述交易資料可為前筆交易紀錄、本次交易紀錄、卡片交易序號、銀行代碼(bank_code)、加值交易旗標(autoload enable flag)、加值交易金額、加值交易日期的任意資料組合。 Wherein, as an example, the transaction data may be previous transaction records, current transaction records, card transaction serial number, bank code (bank_code), value-added transaction flag (autoload enable flag), value-added transaction amount, value-added transaction Any combination of data for dates.

其中,作為示例,所述驗證資料可包括一訊息鑑別碼(Message Authentication Code,簡稱MAC,又稱一訊息認證碼、一檔案訊息鑑別碼或一金 鑰押碼)、一卡片防偽驗證碼(Counterfeit Proof Data,簡稱CPD)或兩者其一。而在一實施例中,執行應用程式APP的處理器1011可基於卡片資訊I而驗證晶片卡C是否為有效卡片時,驗證時所需的卡片資訊I至少應包括所述驗證資料。 Wherein, as an example, the verification data may include a message authentication code (Message Authentication Code, referred to as MAC, also known as a message authentication code, a file message authentication code or a gold key code), a card counterfeit proof verification code (Counterfeit Proof Data, referred to as CPD) or both. In an embodiment, when the processor 1011 executing the application program APP can verify whether the chip card C is a valid card based on the card information I, the card information I required for verification should at least include the verification data.

請參照第1圖與第2圖,在一實施例中,所述晶片卡C的訊息鑑別碼除儲存於晶片卡C以外,行動裝置101亦可透過應用程式APP演算出另一訊息鑑別碼,以供執行應用程式APP的處理器1011基於卡片資訊I而驗證晶片卡C是否為有效卡片時,行動裝置101與晶片卡C可相互檢查各自基於第一無線通訊協定P1而傳送給彼此的訊息鑑別碼是否相同或相互對應,以此確保訊息(Message,例如卡片ID、卡片到期日、卡片製卡日、卡片種類等資料)在晶片卡C與行動裝置101的傳遞過程中,其內容未曾被更改過,達成以雙向驗證驗證卡片的目的。其中,所述訊息鑑別碼係以一金鑰(Key)對所述訊息執行MAC演算法而生成,但不以此為限。 Please refer to FIG. 1 and FIG. 2. In one embodiment, in addition to storing the message authentication code of the chip card C in the chip card C, the mobile device 101 can also calculate another message authentication code through the application program APP, When the processor 1011 for executing the application program APP verifies whether the chip card C is a valid card based on the card information I, the mobile device 101 and the chip card C can mutually check the information authentication sent to each other based on the first wireless communication protocol P1. Whether the codes are the same or correspond to each other, so as to ensure that the content of the message (Message, such as card ID, card expiration date, card production date, card type, etc.) Changed to achieve the purpose of verifying the card with two-way verification. Wherein, the message authentication code is generated by performing a MAC algorithm on the message with a key (Key), but not limited thereto.

請參照第1圖與第2圖,在一實施例中,所述卡片防偽驗證碼可由所述卡片資料的數個欄位(例如卡片ID、卡片到期日、卡片製卡日、卡片種類),以所述訊息鑑別碼進行演算而生成,而在執行/允許每一次的交易請求T前,行動裝置101均可透過應用程式APP檢查此卡片防偽驗證碼,以避免偽卡的可能性。 Please refer to Figure 1 and Figure 2, in one embodiment, the card anti-counterfeiting verification code can be composed of several fields of the card information (such as card ID, card expiration date, card production date, card type) , is generated by calculating the message authentication code, and before executing/permitting each transaction request T, the mobile device 101 can check the card anti-counterfeit verification code through the application program APP to avoid the possibility of counterfeit cards.

其中,作為示例,所述身份資料可包括一卡片身份別(例如普通、學生、優待身份...等)、一身份到期日(特殊身份才需設定)、一縣市代碼(area_code)的其中一種或其任意組合。 Wherein, as an example, the identity data may include a card identity (such as ordinary, student, preferential status...etc.), an identity expiry date (special identity needs to be set), a county code (area_code) one of them or any combination thereof.

請參照第1圖與第2圖,在一實施例中,通訊模組1012可使用一第二無線通訊協定P2與後端伺服器102透過一網際網路進行通訊,後端伺服器102可包括一交易子系統1021與一卡片管理子系統1022。 Please refer to FIG. 1 and FIG. 2, in one embodiment, the communication module 1012 can use a second wireless communication protocol P2 to communicate with the back-end server 102 through an Internet, and the back-end server 102 can include A transaction subsystem 1021 and a card management subsystem 1022 .

其中,作為示例,第二無線通訊協定P2可為一Wi-Fi通訊協定、一HiperLAN通訊協定、一行動通訊協定(如2G、2.5G、3G、3.5G、4G LTE、5G等)之其中一種或其組合。其中,所述行動通訊協定係指行動裝置101透過電信業者基地台而能連結至網際網路的通訊手段。 Wherein, as an example, the second wireless communication protocol P2 can be one of a Wi-Fi communication protocol, a HiperLAN communication protocol, and a mobile communication protocol (such as 2G, 2.5G, 3G, 3.5G, 4G LTE, 5G, etc.) or a combination thereof. Wherein, the mobile communication protocol refers to the communication means that the mobile device 101 can connect to the Internet through the base station of the carrier.

請參照第1圖與第2圖,特別是第2圖的虛線部分,本創作在一實施例中,後端伺服器102的交易子系統1021可決定是否允許晶片卡C的交易請求T而生成一交易請求結果T_A。卡片管理子系統1022用於依據一風險參數演算出關聯於晶片卡C的一風險分數R_S,亦可用於驗證晶片卡C是否為有效卡片而生成卡片驗證結果C_V。風險分數R_S、卡片驗證結果C_V及交易請求結果T_A皆可基於第二無線通訊協定P2透過網際網路而發送至行動裝置101,以定時或不定時更新於行動裝置101的記憶體1013,藉此,可避免通訊模組1012每次均需使用第二無線通訊協定P2從後端伺服器102接收晶片卡C的風險分數R_S,有效節省網路傳輸流量。 Please refer to Figure 1 and Figure 2, especially the dotted line in Figure 2. In one embodiment of this invention, the transaction subsystem 1021 of the backend server 102 can determine whether to allow the transaction request T of the chip card C to generate A transaction request result T_A. The card management subsystem 1022 is used to calculate a risk score R_S associated with the chip card C according to a risk parameter, and can also be used to verify whether the chip card C is a valid card to generate a card verification result C_V. The risk score R_S, the card verification result C_V and the transaction request result T_A can all be sent to the mobile device 101 through the Internet based on the second wireless communication protocol P2, to be regularly or irregularly updated in the memory 1013 of the mobile device 101, thereby , it can prevent the communication module 1012 from using the second wireless communication protocol P2 to receive the risk score R_S of the chip card C from the backend server 102 every time, effectively saving network transmission traffic.

其中,作為示例,所述風險參數可為卡片資訊I的所述卡片資料、所述交易資料、所述身份資料、一歷史交易資訊、一信用額度、一信用評分的其中一種或其任意組合,而所述歷史交易資訊可為一歷史交易資料及/或一歷史交易行為分析資料。 Wherein, as an example, the risk parameter may be one of the card information of the card information I, the transaction information, the identity information, a historical transaction information, a credit limit, a credit score or any combination thereof, The historical transaction information may be historical transaction data and/or historical transaction behavior analysis data.

請參照第1圖與第2圖,在一實施例中,風險分數R_S可基於第二無線通訊協定P2,通過應用程式APP由後端伺服器102傳送至行動裝置101,更可基於第二無線通訊協定P2由行動裝置101寫入而儲存於晶片卡C。舉例,若風險參數的所述交易資料顯示前筆為交易成功、所述歷史交易資訊無異常、所述身份資料亦無任何疑慮之處、所述卡片資料亦無異常、且本筆交易金額顯示為小額交 易,則後端伺服器102可針對晶片卡C演算出較高的風險分數R_S。相反地,若風險參數的所述交易資料顯示前筆為交易失敗、所述歷史交易資訊偶有異常、所述身份資料顯示為卡片身份別為學生、所述卡片資料雖無異常、且本筆交易金額並非小額交易,則後端伺服器102可能針對晶片卡C演算出較低的風險分數R_S,例如<60的風險分數R_S,但以上僅為舉例,均不以此為限。 Please refer to Figure 1 and Figure 2. In one embodiment, the risk score R_S can be transmitted from the backend server 102 to the mobile device 101 through the application program APP based on the second wireless communication protocol P2, and can be based on the second wireless communication protocol. The protocol P2 is written by the mobile device 101 and stored in the chip card C. For example, if the transaction data of the risk parameter shows that the previous transaction was successful, the historical transaction information is normal, the identity data is normal, the card data is normal, and the transaction amount is displayed for small payment is easy, the backend server 102 can calculate a higher risk score R_S for the chip card C. On the contrary, if the transaction data of the risk parameter shows that the previous transaction failed, the historical transaction information has occasional abnormalities, the identity data shows that the card identity is not a student, although the card data is normal, and this transaction If the transaction amount is not a small transaction, the backend server 102 may calculate a lower risk score R_S for the chip card C, such as a risk score R_S <60, but the above is just an example and not limited thereto.

請參照第1圖與第2圖,在一實施例中,針對前述演算風險分數R_S的機制,應用程式APP亦可在通訊模組1012未連線至後端伺服器102、或通訊模組1012毋須連結至網際網路的一第一模式下(亦可稱離線狀態),於此離線狀態驅動處理器1011依據所述風險參數演算出晶片卡C的所述風險分數R_S,藉此,風險分數R_S可由通訊模組1012基於第二無線通訊協定P2透過網際網路而被發送至後端伺服器102,以定時或不定時更新於後端伺服器102的記憶體。 Please refer to FIG. 1 and FIG. 2. In one embodiment, for the above-mentioned mechanism of calculating the risk score R_S, the application program APP can also be connected to the backend server 102 or the communication module 1012 when the communication module 1012 is not connected. In a first mode (also called an offline state) that does not need to be connected to the Internet, the drive processor 1011 in this offline state calculates the risk score R_S of the chip card C according to the risk parameters, whereby the risk score The R_S can be sent by the communication module 1012 to the backend server 102 through the Internet based on the second wireless communication protocol P2, so as to update the memory of the backend server 102 regularly or irregularly.

請參照第1圖與第2圖,在一實施例中,應用程式APP更可響應於風險分數R_S符合一決策條件,而在通訊模組1012未連線至後端伺服器102、或通訊模組1012毋須連結至網際網路的所述第一模式下(即離線狀態),於此離線狀態允許晶片卡C的交易請求T而使處理器1011生成交易請求結果T_A,並令通訊模組1012使用第一無線通訊協定P1,於離線狀態下將關聯於交易請求T的更新後卡片資訊I_U寫入於晶片卡C,更讓使用者可於應用程式APP確認交易請求結果T_A(例如交易允許)。藉此,可讓行動裝置101藉由應用程式APP,在風險可控的情況下,於離線狀態下允許晶片卡C的交易請求T,有效提升晶片卡即時交易的便利性。此外,晶片卡C的交易請求T可由晶片卡C對通訊模組1012發送而觸發(即晶片卡C作為發起設備,通訊模組1012作為從設備),但晶片卡C的交易請求T亦 可由通訊模組1012對晶片卡C發送而觸發(即通訊模組1012作為發起設備,晶片卡C作為從設備)。 Please refer to FIG. 1 and FIG. 2. In one embodiment, the application program APP can respond to the risk score R_S meeting a decision condition, and the communication module 1012 is not connected to the backend server 102, or the communication module The group 1012 does not need to be connected to the Internet in the first mode (i.e. offline state), in this offline state the transaction request T of the chip card C is allowed to make the processor 1011 generate the transaction request result T_A, and make the communication module 1012 Using the first wireless communication protocol P1, write the updated card information I_U associated with the transaction request T to the chip card C in an offline state, and allow the user to confirm the transaction request result T_A (such as transaction approval) in the application program APP . In this way, the mobile device 101 can allow the transaction request T of the chip card C in an offline state through the application program APP under the condition of controllable risks, which effectively improves the convenience of real-time transaction of the chip card. In addition, the transaction request T of the chip card C can be triggered by sending the chip card C to the communication module 1012 (that is, the chip card C is used as the initiator device, and the communication module 1012 is used as the slave device), but the transaction request T of the chip card C can also be It can be triggered by sending from the communication module 1012 to the chip card C (that is, the communication module 1012 acts as an initiating device, and the chip card C acts as a slave device).

請參照第1圖與第2圖,在一實施例中,行動裝置101為判斷是否允許晶片卡C的交易請求T,處理器1011可在所述第一模式下至少對卡片資訊I當中的所述驗證資料進行驗證,而產生一卡片驗證結果C_V,但僅為舉例,並不以此為限。另所述驗證資料所可能包含的資訊,已於前述,於此不再贅述。 Please refer to FIG. 1 and FIG. 2. In one embodiment, in order to determine whether the mobile device 101 allows the transaction request T of the chip card C, the processor 1011 can at least perform all the card information I in the first mode. The above verification data is verified to generate a card verification result C_V, but it is only an example and not limited thereto. In addition, the information that may be included in the verification data has been mentioned above and will not be repeated here.

請參照第1圖與第2圖,在一實施例中,由行動裝置101產生的卡片驗證結果C_V、交易請求結果T_A及更新後卡片資訊I_U,皆可在交易完成後,於行動裝置101連結至後端伺服器102的第二模式下,由通訊模組1012通過第二無線通訊協定P2定時或不定時發送至後端伺服器102,以作更新。 Please refer to Figure 1 and Figure 2. In one embodiment, the card verification result C_V, transaction request result T_A and updated card information I_U generated by the mobile device 101 can be linked to the mobile device 101 after the transaction is completed. In the second mode to the back-end server 102 , the communication module 1012 sends to the back-end server 102 regularly or irregularly through the second wireless communication protocol P2 for updating.

請參照第1圖與第2圖,在一實施例中,使用第一無線通訊協定P1之無線通訊技術的通訊距離/有效通訊範圍(即前述提及的第一通訊範圍),係可小於使用第二無線通訊協定P2之無線通訊技術的一第二通訊距離。 Please refer to Fig. 1 and Fig. 2, in one embodiment, the communication distance/effective communication range (i.e. the aforementioned first communication range) of the wireless communication technology using the first wireless communication protocol P1 can be less than that used A second communication distance of the wireless communication technology of the second wireless communication protocol P2.

請參照第1圖與第2圖,在一實施例中,應用程式APP亦可響應於風險分數R_S符合所述決策條件,例如風險分數R_S

Figure 111208398-A0305-02-0011-1
60,而在通訊模組1012未連線至後端伺服器102、或通訊模組1012毋須連結至網際網路的第一模式下(亦可稱離線狀態),透過應用程式APP使處理器1011將儲存於記憶體1013的卡片資訊I’,與通訊模組1012基於第一無線通訊協定P1而從晶片卡C讀取的卡片資訊I進行比對,進而於離線狀態下達成驗證晶片卡C的功能,而由處理器1011生成卡片驗證結果C_V,更讓使用者可於應用程式APP確認卡片驗證結果C_V(例如卡片驗證成功)。藉此,可讓行動裝置101藉由應用程式APP,在風險可控的情況下(即風險較低),達成離線驗證卡片有效性的技術手段。 Please refer to FIG. 1 and FIG. 2. In an embodiment, the application program APP may also respond to the risk score R_S meeting the decision condition, for example, the risk score R_S
Figure 111208398-A0305-02-0011-1
60, and in the first mode in which the communication module 1012 is not connected to the backend server 102, or the communication module 1012 does not need to be connected to the Internet (also called an offline state), the processor 1011 is enabled through the application program APP The card information I' stored in the memory 1013 is compared with the card information I read by the communication module 1012 from the chip card C based on the first wireless communication protocol P1, and then the chip card C is verified offline. Function, and the card verification result C_V is generated by the processor 1011, so that the user can confirm the card verification result C_V in the application program APP (for example, the card verification is successful). In this way, the mobile device 101 can realize the technical means of verifying the validity of the card offline under the condition of controllable risk (that is, low risk) through the application program APP.

請參照第1圖與第2圖,在一實施例中,交易完成後,由行動裝置101產生的卡片驗證結果C_V可於行動裝置101連結至後端伺服器102的第二模式下,由通訊模組1012通過第二無線通訊協定P2定時或不定時發送至後端伺服器102,以作更新。 Please refer to FIG. 1 and FIG. 2. In one embodiment, after the transaction is completed, the card verification result C_V generated by the mobile device 101 can be communicated in the second mode in which the mobile device 101 is connected to the back-end server 102. The module 1012 sends to the backend server 102 regularly or irregularly through the second wireless communication protocol P2 for updating.

請參照第1圖與第2圖,在一實施例中,第一無線通訊協定P1可為所述近場通訊(NFC)協定,而此實施例的情境即屬通訊模組1012未連線至後端伺服器102的第一模式(亦可稱離線狀態)。更具體而言,當本實施例的應用程式APP需驅動通訊模組1012使用第一無線通訊協定P1與晶片卡C進行無線通訊,則晶片卡C需位於通訊模組1012可實現近場通訊的通訊範圍內,例如,晶片卡C的位置需鄰近於行動裝置101的NFC感應區(圖中未繪示)。 Please refer to FIG. 1 and FIG. 2, in one embodiment, the first wireless communication protocol P1 can be the near field communication (NFC) protocol, and the situation of this embodiment is that the communication module 1012 is not connected to The first mode of the backend server 102 (also called offline status). More specifically, when the application program APP of this embodiment needs to drive the communication module 1012 to use the first wireless communication protocol P1 to perform wireless communication with the chip card C, the chip card C needs to be located in the communication module 1012 that can realize near field communication. Within the communication range, for example, the location of the chip card C needs to be adjacent to the NFC sensing area of the mobile device 101 (not shown in the figure).

請參照第3圖,為本創作之基於交易風險控管的晶片卡交易系統的實施方法S,其應用於一行動裝置101與一晶片卡C,並請搭配參照第1圖與第2圖,晶片卡交易系統的實施方法S包括以下步驟。 Please refer to Figure 3, which is the implementation method S of the chip card transaction system based on transaction risk control, which is applied to a mobile device 101 and a chip card C, and please refer to Figure 1 and Figure 2 together, The implementation method S of the chip card transaction system includes the following steps.

在步驟S1(應用程式響應於晶片卡的交易請求而驅動通訊模組使用第一無線通訊協定以驗證晶片卡是否為有效卡片)中,安裝或執行於行動裝置101的一應用程式APP,響應於晶片卡C的一交易請求T而驅動通訊模組1012使用一第一無線通訊協定P1與晶片卡C進行通訊,並從晶片卡C讀取一卡片資訊I,並可透過應用程式APP驅動處理器1011將晶片卡C的卡片資訊I,與行動裝置101之記憶體1013所儲存的卡片資訊I’進行比對,以驗證晶片卡C是否為有效卡片。 In step S1 (the application program drives the communication module to use the first wireless communication protocol to verify whether the chip card is a valid card in response to the transaction request of the chip card), an application program APP installed or executed on the mobile device 101 responds to A transaction request T from the chip card C drives the communication module 1012 to communicate with the chip card C using a first wireless communication protocol P1, reads a card information I from the chip card C, and drives the processor through the application program APP 1011 compares the card information I of the chip card C with the card information I' stored in the memory 1013 of the mobile device 101 to verify whether the chip card C is a valid card.

在步驟S2(應用程式響應於風險分數符合決策條件而在通訊模組未連線至後端伺服器的模式下,由行動裝置允許卡片交易請求)中,應用程式APP響應於晶片卡C的一風險分數R_S符合一決策條件(例如風險分數R_S

Figure 111208398-A0305-02-0012-2
60)而在 通訊模組1012未連線至後端伺服器102、或通訊模組1012毋須連結至網際網路的一第一模式下(亦可稱離線狀態),於此離線狀態下由行動裝置101的處理器1011允許晶片卡C的交易請求T而生成一交易請求結果T_A,以由通訊模組1012使用第一無線通訊協定P1,將關聯於交易請求T的更新後卡片資訊I_U寫入於晶片卡C。 In step S2 (the application program responds to the risk score meeting the decision-making conditions and the mobile device allows the card transaction request in the mode where the communication module is not connected to the back-end server), the application program APP responds to a chip card C The risk score R_S meets a decision condition (for example, the risk score R_S
Figure 111208398-A0305-02-0012-2
60) In a first mode (also called an offline state) where the communication module 1012 is not connected to the back-end server 102, or the communication module 1012 does not need to be connected to the Internet, in this offline state the mobile The processor 1011 of the device 101 allows the transaction request T of the chip card C to generate a transaction request result T_A, so that the communication module 1012 uses the first wireless communication protocol P1 to write the updated card information I_U associated with the transaction request T. on chip card C.

在步驟S3(應用程式響應於風險分數未符合決策條件而在通訊模組連線至後端伺服器的模式下,由後端伺服器允許卡片交易請求)中,應用程式APP響應於晶片卡C的風險分數R_S未符合所述決策條件(例如風險分數R_S<60),而驅動通訊模組1012使用一第二無線通訊協定P2與一後端伺服器102透過一網際網路進行通訊,以在通訊模組1012連線至後端伺服器102的一第二模式下,由後端伺服器102的交易子系統1021決定是否允許晶片卡C的交易請求T。 In step S3 (the application program responds to the risk score not meeting the decision-making conditions, and the communication module is connected to the back-end server mode, and the back-end server allows the card transaction request), the application program APP responds to the chip card C The risk score R_S does not meet the decision-making condition (for example, the risk score R_S<60), and the driver communication module 1012 uses a second wireless communication protocol P2 to communicate with a back-end server 102 through an Internet, in order to In a second mode where the communication module 1012 is connected to the backend server 102, the transaction subsystem 1021 of the backend server 102 determines whether to allow the transaction request T of the chip card C.

其中,作為示例,就上述晶片卡交易系統的實施方法S所提及的行動裝置101、處理器1011、應用程式APP、通訊模組1012、記憶體1013、後端伺服器102、晶片卡C、卡片資訊I、所述風險參數、風險分數R_S、第一無線通訊協定P1、第二無線通訊協定P2,此些技術特徵的功能、態樣均已於說明於第1圖至第2圖的實施例,於此不再贅述。 Wherein, as an example, the mobile device 101, processor 1011, application program APP, communication module 1012, memory 1013, backend server 102, chip card C, Card information I, the risk parameters, risk score R_S, the first wireless communication protocol P1, the second wireless communication protocol P2, the functions and appearances of these technical features have been explained in the implementation of Figure 1 to Figure 2 example, which will not be repeated here.

請參照第3圖,在一實施例中,本創作更提供一種非暫態電腦可讀取記錄媒體,關聯於至少一指令以界定前述的晶片卡交易系統的實施方法S,各步驟之相關說明已詳述於第3圖所示的實施例,於此不再贅述。 Please refer to Figure 3. In one embodiment, the invention further provides a non-transitory computer-readable recording medium associated with at least one instruction to define the implementation method S of the aforementioned chip card transaction system, and the relevant description of each step The embodiment shown in FIG. 3 has been described in detail and will not be repeated here.

請參照第3圖,在一實施例中,本創作更提供一種電腦可讀取記錄媒體,關聯於至少一指令以界定前述的晶片卡交易系統的實施方法S,各步驟之相關說明已詳述於第3圖所示的實施例,於此不再贅述。 Please refer to Figure 3. In one embodiment, the invention further provides a computer-readable recording medium associated with at least one instruction to define the implementation method S of the aforementioned chip card transaction system. The relevant descriptions of each step have been described in detail. The embodiment shown in FIG. 3 will not be repeated here.

請參照第3圖,在一實施例中,本創作更提供一種電腦程式產品,當電腦系統載入該電腦程式產品的多個指令後,係至少可完成如前述的晶片卡交易系統的實施方法S,各步驟之相關說明已詳述於第3圖所示的實施例,於此不再贅述。 Please refer to Figure 3. In one embodiment, the invention further provides a computer program product. After the computer system loads multiple instructions of the computer program product, it can at least complete the implementation method of the aforementioned chip card transaction system. S. The relevant description of each step has been described in detail in the embodiment shown in FIG. 3 , and will not be repeated here.

請參照第4圖,為本創作之另一實施例(一)的晶片卡交易系統的示意圖,其與第1圖至第3圖所示實施例的技術類同,搭配參照第1圖至第3圖可知,主要差異在於,本實施例的交易請求T可為一加值請求或一扣款請求。在本實施例中,本實施例的應用程式APP在驅動通訊模組1012基於第一無線通訊協定P1(例如但不限於NFC協定)而從晶片卡C讀取到包含所述卡片帳戶餘額的卡片資訊I後,可響應於風險分數R_S符合決策條件,而在第一模式下(即離線狀態)由處理器1011允許晶片卡C的所述加值請求或所述扣款請求,並使處理器1011產生一更新後餘額資料(其屬於所述卡片帳戶餘額的其中一種態樣),並使通訊模組1012使用第一無線通訊協定P1,將關聯於所述加值請求或所述扣款請求的所述更新後餘額資料,寫入晶片卡C所連結的一電子錢包帳戶W或一銀行帳戶(圖中未繪示)。藉此,可讓行動裝置101藉由應用程式APP,在風險可控的情況下,於離線狀態達成APP一鍵加值或APP一鍵扣款的功能,有效提升晶片卡即時交易的便利性。 Please refer to Figure 4, which is a schematic diagram of the chip card transaction system of another embodiment (1) of this creation, which is similar to the technology of the embodiment shown in Figures 1 to 3, and refer to Figures 1 to 3 for collocation 3, the main difference is that the transaction request T in this embodiment can be a value-added request or a deduction request. In this embodiment, the application program APP of this embodiment drives the communication module 1012 based on the first wireless communication protocol P1 (such as but not limited to the NFC protocol) to read the card containing the balance of the card account from the chip card C After the information I, in response to the risk score R_S meeting the decision-making condition, the processor 1011 allows the value addition request or the deduction request of the chip card C in the first mode (i.e. offline state), and makes the processor 1011 generates an updated balance data (which belongs to one of the forms of the card account balance), and makes the communication module 1012 use the first wireless communication protocol P1 to associate with the value addition request or the deduction request The updated balance data is written into an electronic wallet account W or a bank account (not shown in the figure) linked to the chip card C. In this way, the mobile device 101 can use the APP to realize the functions of one-click reloading or one-click deduction in the offline state under the condition of controllable risks, which effectively improves the convenience of real-time chip card transactions.

請再參照第4圖,同樣的,本實施例的應用程式APP更可響應於風險分數R_S未符合決策條件,而在第二模式下(即行動裝置需連結至網際網路的情況)由後端伺服器102決定是否允許晶片卡C的所述加值請求或所述扣款請求。 Please refer to Fig. 4 again, similarly, the application program APP of this embodiment can respond to the risk score R_S not meeting the decision-making condition, and in the second mode (that is, the situation where the mobile device needs to be connected to the Internet) from the following The end server 102 decides whether to allow the request of adding value or the request of debiting the chip card C.

請參照第4圖,在一實施例中,交易完成後,由行動裝置101產生的所述更新後餘額資料可於行動裝置101連結至後端伺服器102的第二模式下, 由通訊模組1012通過第二無線通訊協定P2定時或不定時發送至後端伺服器102,以作更新。 Please refer to FIG. 4, in one embodiment, after the transaction is completed, the updated balance data generated by the mobile device 101 can be connected to the backend server 102 in the second mode of the mobile device 101, The communication module 1012 sends it to the backend server 102 regularly or irregularly through the second wireless communication protocol P2 for updating.

請參照第4圖,在一實施例中,若交易請求T為所述扣款請求,則行動裝置101所執行的應用程式APP,在驅動處理器1011基於卡片資訊I而驗證晶片卡C是否為有效卡片前(即第3圖之步驟S1執行完畢前),藉由驅動通訊模組1012從晶片卡C所讀取之卡片資訊I的交易資料,可至少包括:所述前筆交易紀錄、所述本次交易紀錄及所述卡片交易序號的其中一種或其組合。至於所述交易資料所可能包含的其它資料欄位,已於前述,不再贅述。 Please refer to FIG. 4. In one embodiment, if the transaction request T is the deduction request, the application program APP executed by the mobile device 101 verifies whether the chip card C is based on the card information I in the driver processor 1011. Before the valid card (that is, before step S1 in Fig. 3 is executed), the transaction data of the card information I read from the chip card C by driving the communication module 1012 may at least include: the previous transaction record, all One or a combination of the transaction record and the card transaction serial number. As for other data fields that may be included in the transaction data, they have been mentioned above and will not be repeated here.

請參照第4圖,在一實施例中,若交易請求T為所述扣款請求,則行動裝置101所執行的應用程式APP,為了驅動處理器1011基於卡片資訊I而驗證晶片卡C是否為有效卡片(即執行第3圖之步驟S1時),行動裝置101的通訊模組1012基於第一無線通訊協定P1從晶片卡C所讀取的卡片資訊I,除可包含所述卡片資料、所述交易資料、所述驗證資料及所述身份資料的其中一種或其組合(種類已於前述,於此不再贅述),於本實施例中,可至少包含例如所述卡片ID、所述卡片帳戶餘額(EV)、所述前筆交易紀錄、所述本次交易紀錄、所述卡片交易序號、所述卡片防偽驗證碼、所述卡片身份別、所述卡片到期日、所述縣市代碼,但僅為舉例,並不以此為限。 Please refer to FIG. 4, in one embodiment, if the transaction request T is the deduction request, the application program APP executed by the mobile device 101, in order to drive the processor 1011 to verify whether the chip card C is based on the card information I For a valid card (that is, when step S1 in FIG. 3 is executed), the card information I read by the communication module 1012 of the mobile device 101 from the chip card C based on the first wireless communication protocol P1 may include the card data, all One or a combination of the transaction data, the verification data and the identity data (the types have been mentioned above, and will not be repeated here), in this embodiment, may at least include, for example, the card ID, the card Account balance (EV), the previous transaction record, the current transaction record, the card transaction serial number, the card anti-counterfeiting verification code, the card ID, the card expiration date, the county and city code, but only as an example and not as a limitation.

請參照第4圖,在一實施例中,若交易請求T為所述加值請求,則行動裝置101所執行的應用程式APP,在驅動處理器1011基於卡片資訊I而驗證晶片卡C是否為有效卡片前(即第3圖之步驟S1執行完畢前),藉由驅動通訊模組1012從晶片卡C所讀取之卡片資訊I的交易資料,可至少包括所述前筆交易紀錄、所述本次交易紀錄、所述卡片交易序號、所述銀行代碼、所述自動加值旗標、所述加 值交易金額、所述加值交易日期。至於所述交易資料所可能包含的其它資料欄位,已於前述,不再贅述。 Please refer to FIG. 4 , in one embodiment, if the transaction request T is the added value request, then the application program APP executed by the mobile device 101 verifies whether the chip card C is based on the card information I in the driver processor 1011 Before the valid card (that is, before step S1 in Fig. 3 is executed), the transaction data of the card information I read from the chip card C by driving the communication module 1012 can at least include the previous transaction record, the This transaction record, the card transaction serial number, the bank code, the automatic add-on flag, the add-on value-added transaction amount, and the value-added transaction date. As for other data fields that may be included in the transaction data, they have been mentioned above and will not be repeated here.

請參照第4圖,在一實施例中,若交易請求T為所述加值請求,則行動裝置101所執行的應用程式APP,為了驅動處理器1011基於卡片資訊I而驗證晶片卡C是否為有效卡片(即執行第3圖之步驟S1時),行動裝置101的通訊模組1012基於第一無線通訊協定P1從晶片卡C所讀取的卡片資訊I,除可包含所述卡片資料、所述交易資料、所述驗證資料及所述身份資料的其中一種或其組合(種類已於前述,於此不再贅述),於本實施例中,可包含例如所述卡片ID、所述卡片帳戶餘額(EV)、所述前筆交易紀錄、所述本次交易紀錄、所述卡片交易序號、所述卡片防偽驗證碼、所述卡片身份別、所述卡片到期日、所述縣市代碼、所述銀行代碼、所述自動加值旗標、所述加值交易金額、所述加值交易日期,但僅為舉例,並不以此為限。 Please refer to FIG. 4 , in one embodiment, if the transaction request T is the added-value request, then the application program APP executed by the mobile device 101, in order to drive the processor 1011 to verify whether the chip card C is based on the card information I For a valid card (that is, when step S1 in FIG. 3 is executed), the card information I read by the communication module 1012 of the mobile device 101 from the chip card C based on the first wireless communication protocol P1 may include the card data, all One or a combination of the transaction data, the verification data and the identity data (the types have been mentioned above, and will not be repeated here), in this embodiment, may include, for example, the card ID, the card account Balance (EV), the previous transaction record, the current transaction record, the card transaction serial number, the card anti-counterfeiting verification code, the card identity, the card expiration date, the county code , the bank code, the automatic value-added flag, the value-added transaction amount, and the value-added transaction date are for example only and not limited thereto.

請參照第5圖,為本創作之另一實施例(二)的晶片卡交易系統的示意圖,其與第1圖至第3圖所示實施例的技術類同,搭配參照第1圖至第3圖可知,主要差異在於,本實施例的後端伺服器102的卡片管理子系統1022用於驗證晶片卡C是否為有效卡片,且卡片管理子系統1022係儲存有對應晶片卡C的卡片資訊I’,相對的,本實施例之行動裝置101的記憶體1013則未儲存所述卡片資訊I’、或未儲存完整的卡片資訊I’,而無法由行動裝置101驗證晶片卡C是否為有效卡片。 Please refer to Figure 5, which is a schematic diagram of the chip card transaction system of another embodiment (2) of this creation, which is similar to the technology of the embodiment shown in Figures 1 to 3, and refer to Figures 1 to 3 for collocation 3, the main difference is that the card management subsystem 1022 of the backend server 102 in this embodiment is used to verify whether the chip card C is a valid card, and the card management subsystem 1022 stores card information corresponding to the chip card C I', in contrast, the memory 1013 of the mobile device 101 of this embodiment does not store the card information I', or does not store the complete card information I', so the mobile device 101 cannot verify whether the chip card C is valid card.

請參照第5圖,並請搭配參照第1圖至第3圖,在本實施例中,應用程式APP在驅動通訊模組1012使用第一無線通訊協定P1與晶片卡C進行無線通訊,以從晶片卡C讀取卡片資訊I後,應用程式APP需要再驅動通訊模組1012使用第二無線通訊協定P2與後端伺服器102透過網際網路進行通訊,以至少發送一卡 片驗證請求至後端伺服器102,其後,後端伺服器102可將接受到的卡片資訊I與自身記憶體(圖中未繪示)儲存的卡片資訊I’進行比對,以驗證晶片卡C是否為有效卡片。藉此,使得通訊模組1012在連線至後端伺服器102的一第二模式下接收卡片驗證結果C_V後,供使用者於應用程式APP確認卡片驗證結果C_V(例如卡片驗證成功)。 Please refer to Fig. 5, and please refer to Fig. 1 to Fig. 3 together. In this embodiment, the application program APP uses the first wireless communication protocol P1 to communicate with the chip card C in the drive communication module 1012 for wireless communication. After the chip card C reads the card information I, the application program APP needs to drive the communication module 1012 to use the second wireless communication protocol P2 to communicate with the back-end server 102 through the Internet to send at least one card chip verification request to the backend server 102, and then the backend server 102 can compare the received card information I with the card information I' stored in its own memory (not shown in the figure) to verify the chip Whether card C is a valid card. In this way, after the communication module 1012 receives the card verification result C_V in a second mode connected to the backend server 102, the user can confirm the card verification result C_V in the application program APP (for example, the card verification is successful).

請參照第5圖,並請搭配參照第1圖至第3圖,在本實施例中,前述由後端伺服器102而非行動裝置101進行卡片驗證的技術手段,亦可在應用程式APP響應於風險分數R_S並未符合所述決策條件時再執行。 Please refer to Figure 5, and please also refer to Figures 1 to 3. In this embodiment, the aforementioned technical means for card verification by the backend server 102 instead of the mobile device 101 can also be responded to in the application program APP Execute again when the risk score R_S does not meet the decision-making condition.

請再參照第5圖,並請搭配參照第1圖至第3圖,在本實施例中,後端伺服器102的交易子系統1021也可用於決定是否允許晶片卡C的交易請求T,且交易子系統1021係儲存有對應晶片卡C的卡片資訊I’;相對的,本實施例之行動裝置101的記憶體1013則未儲存所述卡片資訊I’、或未儲存完整的卡片資訊I’,而無法允許晶片卡C的交易請求T。更具體而言,本實施例的應用程式APP在驅動通訊模組1012使用第一無線通訊協定P1與晶片卡C進行無線通訊,以從晶片卡C讀取卡片資訊I後,應用程式APP再驅動通訊模組1012使用第二無線通訊協定P2與後端伺服器102透過網際網路進行通訊,以發送晶片卡C的交易請求T至後端伺服器102,其後,交易子系統1021可依據卡片驗證結果C_V(無論其由行動裝置101或後端伺服器102的卡片管理子系統1022產生)、風險分數R_S及卡片資訊I,決定是否允許交易請求T,其後,後端伺服器102可至少將一交易請求結果T_A傳送至通訊模組1012,使得通訊模組1012在連線至後端伺服器102的第二模式下接收交易請求結果T_A後,再使用第一無線通訊協定P1,將關聯於交易請求T的更新後 卡片資訊I_U寫入於晶片卡C,更讓使用者可於應用程式APP確認交易請求結果T_A(例如交易允許)。 Please refer to Fig. 5 again, and please refer to Fig. 1 to Fig. 3 together. In this embodiment, the transaction subsystem 1021 of the backend server 102 can also be used to determine whether to allow the transaction request T of the chip card C, and The transaction subsystem 1021 stores the card information I' corresponding to the chip card C; in contrast, the memory 1013 of the mobile device 101 of this embodiment does not store the card information I', or does not store the complete card information I' , but cannot allow the transaction request T of the chip card C. More specifically, after the application program APP of this embodiment drives the communication module 1012 to use the first wireless communication protocol P1 to perform wireless communication with the chip card C to read the card information I from the chip card C, the application program APP drives The communication module 1012 uses the second wireless communication protocol P2 to communicate with the back-end server 102 through the Internet to send the transaction request T of the chip card C to the back-end server 102. Afterwards, the transaction subsystem 1021 can be based on the card The verification result C_V (no matter it is produced by the card management subsystem 1022 of the mobile device 101 or the back-end server 102), the risk score R_S and the card information I determine whether to allow the transaction request T. After that, the back-end server 102 can at least Send a transaction request result T_A to the communication module 1012, so that the communication module 1012 receives the transaction request result T_A in the second mode connected to the backend server 102, and then uses the first wireless communication protocol P1 to associate After the update of the transaction request T The card information I_U is written in the chip card C, so that the user can confirm the transaction request result T_A (such as transaction approval) in the application program APP.

請再參照第5圖,並請搭配參照第1圖至第3圖,在本實施例中,前述由後端伺服器102而非行動裝置101決定是否允許晶片卡C之交易請求T的技術手段,可在應用程式APP響應於風險分數R_S並未符合所述決策條件時再執行。 Please refer to Fig. 5 again, and please refer to Fig. 1 to Fig. 3 together. In this embodiment, the backend server 102 rather than the mobile device 101 decides whether to allow the technical means of the transaction request T of the chip card C , may be executed again when the application program APP responds that the risk score R_S does not meet the decision condition.

其中,作為示例,本創作之行動裝置101可為智慧型手機、平板電腦、穿戴裝置等可攜式無線通訊裝置,且行動裝置101的作業系統可為Android系統、iOS系統,但不以此為限。 Among them, as an example, the mobile device 101 of this creation can be a portable wireless communication device such as a smart phone, a tablet computer, a wearable device, and the operating system of the mobile device 101 can be an Android system or an iOS system, but this is not a limitation limit.

其中,作為示例,本創作之後端伺服器102可為提供連線服務之一或多台獨立伺服電腦、或以一虛擬機器(Virtual Machine)形式運行的伺服器、或以一虛擬專屬主機(Virtual Private Server)形式運行的伺服器、或一公有雲、或一私有雲等,但不以此為限。 Wherein, as an example, the back-end server 102 of this creation can be one or more independent server computers that provide connection services, or a server running in the form of a virtual machine (Virtual Machine), or a virtual dedicated host (Virtual Dedicated Host) Private Server), or a public cloud, or a private cloud, etc., but not limited thereto.

請參考第1圖至第2圖,其中,作為示例,本創作之應用程式APP可為裝載於行動裝置101的一原生應用程式(Native Mobile App),亦可為執行/運行於行動裝置101的一行動網路應用程式(Web Mobile App)或一漸進式網路應用程式(Progressive Web App,PWA),但均不以此為限。 Please refer to Figures 1 to 2, where, as an example, the application program APP of this creation can be a native application program (Native Mobile App) loaded on the mobile device 101, or can be executed/operated on the mobile device 101 A mobile web application (Web Mobile App) or a progressive web application (Progressive Web App, PWA), but both are not limited thereto.

其中,作為示例,本創作之處理器1011具備邏輯運算、暫存運算結果、保存資料運算指令位置等功能,其可包含但不限於單一處理器以及多個微處理器之集成,例如可包括一中央處理器(CPU)、一虛擬處理器(vCPU)、一微處理器(MPU)、一微控制器(MCU)、一特殊應用積體電路(ASIC)、一可程式化邏輯裝置(PLD)、一張量處理器(TPU)、一數位訊號處理器(DSP)等,但不以此為限。 Among them, as an example, the processor 1011 of the present invention has functions such as logic operation, temporary storage of operation results, storage of data operation instruction positions, etc., which may include but not limited to a single processor and the integration of multiple microprocessors, for example, it may include a Central Processing Unit (CPU), a Virtual Processor (vCPU), a Microprocessor (MPU), a Microcontroller (MCU), an Application Specific Integrated Circuit (ASIC), and a Programmable Logic Device (PLD) , a tensor processor (TPU), a digital signal processor (DSP), etc., but not limited thereto.

其中,作為示例,本創作之通訊模組1012可應用各種通訊服務介面,例如其可整合一藍芽通訊單元、一WLAN通訊單元、一行動通訊單元、一NFC通訊單元、一ZigBee通訊單元、一Z-Wave通訊單元及一UWB通訊單元之其中一種或集成其任意組合,其中,所述的行動通訊單元可應用2G、2.5G、3G、3.5G、4G LTE、5G之無線通訊介面,但不以此為限。 Wherein, as an example, the communication module 1012 of this invention can apply various communication service interfaces, for example, it can integrate a Bluetooth communication unit, a WLAN communication unit, a mobile communication unit, an NFC communication unit, a ZigBee communication unit, a One of the Z-Wave communication unit and a UWB communication unit or any combination thereof, wherein the mobile communication unit can apply 2G, 2.5G, 3G, 3.5G, 4G LTE, 5G wireless communication interfaces, but not This is the limit.

其中,作為示例,本創作之記憶體1013可為eMMC(embedded MultiMedia Card)快閃記憶體、UFS(Universal Flash Storage)快閃記憶體、NVMe(NVM Express)快閃記憶體、固態驅動器(solid-state drive/disk)、LPDDR(Low Power Random Access Memory)記憶體、動態隨機存取記憶體(DRAM)或靜態隨機存取記憶體(SRAM),若作為一種非暫態(non-transitory)電腦可讀取媒體,則記憶體1013更可儲存關聯前述晶片卡交易系統的實施方法S的至少一指令,該至少一指令可供處理器1011存取並執行。 Wherein, as an example, the memory 1013 of this creation can be eMMC (embedded MultiMedia Card) flash memory, UFS (Universal Flash Storage) flash memory, NVMe (NVM Express) flash memory, solid-state drive (solid- state drive/disk), LPDDR (Low Power Random Access Memory) memory, dynamic random access memory (DRAM) or static random access memory (SRAM), as a non-transitory (non-transitory) computer can After reading the medium, the memory 1013 can further store at least one instruction related to the implementation method S of the aforementioned chip card transaction system, and the at least one instruction can be accessed and executed by the processor 1011.

其中,作為示例,本創作之晶片卡C可為採用第一無線通訊協定P1與行動裝置101進行無線通訊的一信用卡、一現金儲值卡、一附隨電子支付帳戶儲值卡、一簽帳金融卡(Debit Card)、一RFID晶片卡、縣市政府發行整合儲值卡功能的一市民卡/一敬老卡/一愛心卡/一愛心陪伴卡/一數位學生證、學校發行整合儲值卡功能的一學生證/一教職員識別證、企業發行整合儲值卡功能的一識別證之其中一種晶片卡,晶片卡C亦可為符合EMV標準的任何一種晶片卡。 Wherein, as an example, the chip card C of this invention can be a credit card, a cash stored-value card, a stored-value card with electronic payment account, a charge Financial card (debit card), one RFID chip card, one citizen card/one respect card/one love card/one love companion card/one digital student ID card issued by the county and city government with integrated stored-value card function, integrated stored-value card issued by the school function of a student ID card/a staff identification card, one of the chip cards of an identification card issued by an enterprise that integrates the stored value card function, and the chip card C can also be any chip card that meets the EMV standard.

綜上可知,本創作據以實施後,至少可達成在風險可控的情況下(即風險分數符合決策條件,例如風險分數R_S

Figure 111208398-A0305-02-0019-3
60),允許行動裝置在離線狀態(或是行動裝置在決定是否允許交易、及驗證晶片卡是否為有效時,毋需連線至後端伺服器的狀態下),以應用程式(APP)完成晶片卡的線下交易(例如餘額加值/ 儲值、扣款交易、刷卡交易),達到晶片卡交易可不受限於時間與使用場域的有益功效,有效提升晶片卡即時交易的便利性。 To sum up, it can be seen that after the implementation of this creation, at least under the condition of controllable risk (that is, the risk score meets the decision-making conditions, for example, the risk score R_S
Figure 111208398-A0305-02-0019-3
60), allowing the mobile device to be completed in an offline state (or when the mobile device does not need to connect to the back-end server when deciding whether to allow the transaction and verifying whether the chip card is valid), it can be completed with an application program (APP) Offline transactions of chip cards (such as balance addition/stored value, deduction transactions, and card swiping transactions) achieve the beneficial effect that chip card transactions are not limited to time and use fields, and effectively enhance the convenience of chip card instant transactions.

以上所述者,僅為本創作之較佳之實施例而已,並非用以限定本創作實施之範圍;任何熟習此技藝者,在不脫離本創作之精神與範圍下所作之均等變化與修飾,皆應涵蓋於本創作之專利範圍內。 The above are only the preferred embodiments of this creation, and are not intended to limit the scope of implementation of this creation; any equal changes and modifications made by those who are familiar with this skill without departing from the spirit and scope of this creation are all acceptable. It should be covered within the patent scope of this creation.

綜上所述,本創作係具有「產業利用性」、「新穎性」與「進步性」等專利要件;申請人爰依專利法之規定,向 鈞局提起新型專利之申請。 To sum up, this creation has the patent requirements of "industrial applicability", "novelty" and "progressiveness". The applicant submits an application for a new type patent to the Jun Bureau in accordance with the provisions of the Patent Law.

10:晶片卡交易系統 10: Chip card transaction system

101:行動裝置 101: Mobile Devices

1011:處理器 1011: Processor

1012:通訊模組 1012: Communication module

1013:記憶體 1013: Memory

APP:應用程式 APP: application program

P1:第一無線通訊協定 P1: The first wireless communication protocol

P2:第二無線通訊協定 P2: The second wireless communication protocol

C:晶片卡 C: chip card

102:後端伺服器 102:Backend server

1021:交易子系統 1021: Transaction Subsystem

1022:卡片管理子系統 1022: Card management subsystem

Claims (6)

一種基於交易風險控管的晶片卡交易系統,包含: 執行一應用程式的一行動裝置,其包括一通訊模組及一處理器,該處理器與該通訊模組電性連接;以及 該應用程式供以驅動該通訊模組使用一第一無線通訊協定與一晶片卡進行通訊,以從該晶片卡讀取一卡片資訊,該晶片卡關聯於一風險分數,該風險分數係依據一風險參數而生成;其中 該應用程式用以響應於該風險分數符合一決策條件而在該通訊模組毋須連結至一網際網路的一第一模式下,由該處理器允許該晶片卡的一交易請求而生成一交易請求結果,並令該通訊模組使用該第一無線通訊協定,將關聯於該交易請求的更新後的該卡片資訊寫入於該晶片卡。 A chip card transaction system based on transaction risk control, comprising: A mobile device executing an application program, which includes a communication module and a processor, the processor is electrically connected to the communication module; and The application program is used to drive the communication module to communicate with a chip card using a first wireless communication protocol to read card information from the chip card, the chip card is associated with a risk score based on a risk score generated by risk parameters; where the application for generating a transaction by the processor allowing a transaction request of the chip card in response to the risk score meeting a decision condition in a first mode in which the communication module does not need to be connected to an internet Request a result, and make the communication module use the first wireless communication protocol to write the updated card information associated with the transaction request into the chip card. 如請求項1的基於交易風險控管的晶片卡交易系統,其中,該卡片資訊為一卡片資料、一交易資料、一驗證資料及一身份資料的其中一種或其組合。The chip card transaction system based on transaction risk control of claim 1, wherein the card information is one or a combination of card data, transaction data, verification data, and identity data. 如請求項2的基於交易風險控管的晶片卡交易系統,其中,該風險參數為該晶片卡的該卡片資料、該交易資料、該身份資料及一歷史交易資訊的其中一種或其組合。The chip card transaction system based on transaction risk control of claim 2, wherein the risk parameter is one or a combination of the card data, the transaction data, the identity data and a historical transaction information of the chip card. 如請求項3的基於交易風險控管的晶片卡交易系統,其中,該交易請求為一加值請求或一扣款請求,該應用程式更用以響應於該風險分數符合該決策條件,而在該第一模式下由該處理器允許該加值請求或該扣款請求,並使該通訊模組使用該第一無線通訊協定,將一更新後餘額資料,寫入該晶片卡所連結的一電子錢包帳戶。For example, in the chip card transaction system based on transaction risk control of claim 3, wherein the transaction request is a value-adding request or a deduction request, the application program is further used to respond to the risk score meeting the decision-making condition, and in In the first mode, the processor allows the value-added request or the deduction request, and makes the communication module use the first wireless communication protocol to write an updated balance data into a chip card linked e-wallet account. 如請求項3的基於交易風險控管的晶片卡交易系統,其中,該應用程式更用以令該通訊模組使用一第二無線通訊協定發送一卡片驗證請求至一後端伺服器,以透過該網際網路由該後端伺服器驗證該晶片卡是否為有效,使得該通訊模組在需連線至該後端伺服器的一第二模式下接收一卡片驗證結果。The chip card transaction system based on transaction risk control of claim 3, wherein the application program is further used to make the communication module use a second wireless communication protocol to send a card verification request to a backend server through The Internet route verifies whether the chip card is valid by the back-end server, so that the communication module receives a card verification result in a second mode that needs to be connected to the back-end server. 如請求項5的基於交易風險控管的晶片卡交易系統,其中,該應用程式更用以令該通訊模組使用該第二無線通訊協定發送該交易請求至該後端伺服器,以依據該卡片驗證結果及該風險分數,透過該網際網路由該後端伺服器決定是否允許該交易請求,並供該通訊模組在該第二模式下接收該交易請求結果後,再使用該第一無線通訊協定,將更新後的該卡片資訊寫入於該晶片卡。The chip card transaction system based on transaction risk control of claim 5, wherein the application program is further used to make the communication module use the second wireless communication protocol to send the transaction request to the back-end server according to the The card verification result and the risk score are routed through the Internet to the back-end server to determine whether to allow the transaction request, and for the communication module to use the first wireless network after receiving the transaction request result in the second mode. A communication protocol is used to write the updated card information into the chip card.
TW111208398U 2022-08-04 2022-08-04 Chip card transaction system based on transaction risk control TWM640763U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW111208398U TWM640763U (en) 2022-08-04 2022-08-04 Chip card transaction system based on transaction risk control

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW111208398U TWM640763U (en) 2022-08-04 2022-08-04 Chip card transaction system based on transaction risk control

Publications (1)

Publication Number Publication Date
TWM640763U true TWM640763U (en) 2023-05-11

Family

ID=87382725

Family Applications (1)

Application Number Title Priority Date Filing Date
TW111208398U TWM640763U (en) 2022-08-04 2022-08-04 Chip card transaction system based on transaction risk control

Country Status (1)

Country Link
TW (1) TWM640763U (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI833313B (en) * 2022-08-04 2024-02-21 悠遊卡股份有限公司 Chip card transaction system based on transaction risk control and its implementation method

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI833313B (en) * 2022-08-04 2024-02-21 悠遊卡股份有限公司 Chip card transaction system based on transaction risk control and its implementation method

Similar Documents

Publication Publication Date Title
US8788418B2 (en) Portable E-wallet and universal card
US9195926B2 (en) Portable e-wallet and universal card
US10147077B2 (en) Financial transaction method and system having an update mechanism
CA2738038C (en) Apparatus and method for preventing unauthorized access to payment application installed in contactless payment device
AU2008304655B2 (en) Form factor identification
EP3070660A1 (en) Payment additional service information processing method and electronic device for supporting the same
US20150046336A1 (en) System and method of using a secondary screen on a mobile device as a secure and convenient transacting mechanism
US20160162869A1 (en) System and method of facilitating cash transactions at an atm system without an atm card using mobile
BRPI0707439A2 (en) techniques for authorizing the use of a payment device
US11023800B2 (en) Hybrid computerized mobile transaction card
US20160189142A1 (en) Methods and systems of secure credit-card commerce transactions
US20180150828A2 (en) Server for Managing Card Transaction Service, Card Transaction Service Management Method, and Card Transaction Service Management System
US20170178121A1 (en) System and method for providing instructions to a payment device
US20230169504A1 (en) Vehicle toll transponder for enabling multiple transaction cards and securely providing transaction card details
TWM640763U (en) Chip card transaction system based on transaction risk control
AU2015201432A1 (en) Method of performing transactions with contactless payment devices using pre-tap and two-tap operations
US20170178111A1 (en) System and method for using multiple balances with a single payment device
TWM590733U (en) Virtual electronic ticket card transaction system
TWI833313B (en) Chip card transaction system based on transaction risk control and its implementation method
TWM640762U (en) Chip card transaction system based on mobile device
US11410157B2 (en) Programmable card for token payment and systems and methods for using programmable card
TW202407605A (en) Chip card transaction system based on mobile device and implementation method thereof by driving the mobile device to communicate with a chip card that is also located in a first communication range by using a first wireless communication protocol
TWM640764U (en) Chip card service integration system based on mobile device
TW202407604A (en) Mobile device-based chip card service integration system and its implementation method using a mobile device to communicate with a chip card to decide on service requests and update card information
US20240086500A1 (en) Remote creation of virtual credential bound to physical location