CN101231737A - A system and method for enhancing the security of online banking transactions - Google Patents

Abstract

The invention relates to the field of communication security, in particular to a system and method for enhancing the security of online banking transactions. The system includes: a signal input and output device, a client information security device supporting audio processing, and a computer terminal connected to an online bank server. The method of the present invention: establish a connection with the computer through the information security device, output the transaction data input by the user through the information security device in the form of audio playback, input audio confirmation information into the information security device in the form of audio input, and the information security device performs Voiceprint recognition, after confirming that the identity is legal, the user terminal information security device can encrypt or perform digital signature operations on all the information input by the user, and send it to the online banking server in the form of ciphertext. The authentication information is stored in the form of audio and is unique and non-repudiable for the execution of the confirmation command. Using this method can enhance the security of online banking transactions.

Description

A system and method for enhancing the security of online banking transactions

technical field

The invention relates to the field of communication security, in particular to a system and method for enhancing the security of online banking transactions by performing audio processing and voiceprint recognition on data information in an information security device.

Background technique

With the rapid development of computer technology, information network has become an important guarantee for social development. Under this trend, online banking business is becoming more and more popular, and has become the most potential network application field today. "Online banking" is an electronic banking product that provides financial services to customers through the Internet as a medium. Online banking is a product of the information age. With its birth, customers who had to go to the bank counter to handle business can directly enter the bank through the Internet, and conduct account inquiries, transfers, foreign exchange transactions, bank transfers, online shopping, and report loss of accounts at will. and other businesses, customers can truly handle all banking business without leaving home. The opening of the online banking service system will greatly improve work efficiency for banks and customers, allow funds to create the highest efficiency, and thus reduce production and operation costs.

However, while the general public and enterprises are enjoying the convenience brought by online banking, its security issues have gradually surfaced. There are many cases where personal and business confidential information has been leaked or monitored, causing immeasurable losses to individuals and businesses. Therefore, in the actual application of online banking data communication, serious consequences and adverse effects may be caused at any time due to information leakage and leaks. In the prior art, more and more online banking users use smart key devices to ensure Its operational security during online banking transactions.

A smart key device (also known as an information security device) is a small hardware device with a processor and a memory. It adopts a two-factor authentication mode, which is easy to use and low in cost. It has a built-in single-chip microcomputer or smart card chip, which can store the user's key or digital certificate, and use the built-in cryptographic algorithm of the smart key device to authenticate the user's identity. The smart key device has functions such as email encryption, digital signature, security certificate, secure network login, and access to the SSL secure network. It also has the feature of ensuring that the user's private key never leaves the hardware. It also has the feature of physically preventing attacks and is safe. Sex is extremely high.

However, the above process cannot fully guarantee the security of digitally signed or encrypted data, because the computer itself also has security risks. For example, when the computer is infected with a Trojan horse virus, the data that requires digital signature or encryption will be tampered with by the underlying Trojan horse , and then transmitted to the smart key device for digital signature or encryption, the user cannot judge whether the data to be digitally signed or encrypted in the smart key device is correct, which seriously affects the security of the smart key device, making the smart key The equipment loses the value of its existence, and at the same time, it will inevitably bring unnecessary losses to users.

Voiceprint Recognition (VPR), also known as Speaker Recognition, the audio acoustic features of each person have both relative stability and variability, which are not absolute and invariable. This variation can come from Physiology, pathology, psychology, simulation, camouflage, are also related to environmental interference. Even so, since everyone's pronunciation organs are different, in general, people can still distinguish the voices of different people or judge whether they are the same person's voice. Different from speech recognition, the features of voiceprint recognition must be "personalized" features, while the features of speaker recognition must be "common features" for the speaker. Compared with other biometric technologies, such as fingerprint recognition, palm recognition, iris recognition, etc., voiceprint recognition has the advantages of not being lost and forgotten, no memory required, and easy to use. Now people are increasingly relying on passwords and Password, with the frequent application of different occasions, its defects become more and more obvious. In the process of voiceprint recognition, each pronunciation is controlled by a randomly generated prompt text, which can effectively prevent copying and plagiarism. It can be said that voiceprint recognition technology has obvious advantages compared with other biometric technologies, and can be used for increasingly The development of electronic shopping, e-commerce, and international trade is escorted, and the operation is convenient and simple, and it is easy to be accepted by the majority of computer users.

The voiceprint recognition system mostly uses the features of the acoustic level, and the features that characterize a person's characteristics should be multi-level, including: (1) acoustic features related to the anatomical structure of the human pronunciation mechanism (such as spectrum, cepstrum, formant, Fundamental tone, reflection coefficient, etc.), nasal sound, deep breathing sound, hoarse sound, laughter, etc.; (2) Semantics, rhetoric, pronunciation, speech habits, etc. affected by socioeconomic status, education level, place of birth, etc.; (3) ) Personal characteristics or characteristics such as rhythm, rhythm, speed, intonation, and volume influenced by parents. From the perspective of using mathematical methods to model, the current features that can be used in the voiceprint automatic recognition model include: (1) acoustic features (cepstrum); (2) lexical features (speaker-related word n-gram, phoneme n -gram); (3) prosodic features (using the pitch and energy "posture" described by n-gram); (4) language, dialect and accent information; (5) channel information (which channel to use) and so on. According to different task requirements, voiceprint recognition also faces a problem of feature selection or feature selection. For example, for "channel" information, in criminal investigation applications, it is hoped not to use it, that is to say, we hope to weaken the influence of the channel on speaker identification, because we hope that it can be identified no matter what channel system the speaker uses; while in bank transactions , it is hoped to use channel information, that is, it is hoped that the channel has a greater impact on speaker recognition, so that the impact of recording, imitation, etc. can be eliminated. In short, better features should be able to effectively distinguish between different speakers, but can also remain relatively stable when the voice of the same speaker changes; it is not easy to be imitated by others or can better solve the problem of being imitated by others; Good noise immunity. Of course, these problems can also be solved by model methods. For pattern recognition, there are the following categories of methods: (1) template matching method: use dynamic time warping (DTW) to align training and test feature sequences, mainly for the application of fixed phrases (usually text-related tasks); (2) Nearest neighbor method: keep all the feature vectors during training, and find the nearest K of the training vectors for each vector during recognition, and identify them accordingly. Usually, the amount of model storage and similar calculation is large; (3) Neural network method: There are many forms, such as multi-layer perception, radial basis function (RBF), etc., which can be explicitly trained to distinguish speakers from their background speakers. The amount of training is large, and the generalizability of the model is not good. Good; (4) Hidden Markov Model (HMM) method: usually using single-state HMM, or Gaussian Mixture Model (GMM), is a more popular method, and the effect is better; (5) VQ clustering method (such as LBG): The effect is better, the algorithm complexity is not high, and it can receive better results when combined with the HMM method; (6) Multinomial classifier method: has higher accuracy, but the model storage and calculation amount are relatively large Big; there are still many key problems to be solved in voiceprint recognition, such as: short speech, whether it is possible to use very short speech for model training, and use a short time for recognition, which is mainly required by applications where voice is not easy to obtain the sound imitation (or recording) problem, it is necessary to effectively distinguish the imitation sound (recording) from the real voice; the effective detection of the target speaker in the case of multiple speakers; eliminate or weaken the sound change (different language, content, method) , physical condition, time, age, etc.); to eliminate the influence of channel differences and background noise, some other technologies are needed to assist in this case, such as denoising, adaptive and other technologies.

In the existing online banking transaction process, it often happens that the online banking user denies the transaction history, or the online banking fails to perform effective operations according to the transaction data input by the user, which leads to the failure of the transaction or wrong operation. Once such a situation occurs , it is difficult for both parties to resolve the dispute in a short time and find out the responsible party, so it will inevitably bring certain time loss and material loss to the user or the online bank.

Contents of the invention

In view of the deficiencies in the prior art, the present invention provides an audio replay of the transaction data input by the user using an information security device for final confirmation by the legal user to realize the safe transmission of data at the user end, so as to solve the problem in the prior art. Encrypted or signed transaction data may be tampered with before sending, resulting in reduced security of the information security device. The present invention also utilizes the voiceprint recognition function of the information security device to verify the legitimacy of the user's identity.

A system for enhancing the security of online banking transactions, comprising: a signal input and output device, a client information security device supporting audio processing, a computer terminal and an online banking server; the audio input and output device, the client information security device, and the computer terminal Connect with the online banking server;

The signal input and output device includes: an audio input unit for the user to input audio information, and an audio output unit for outputting the transaction data input by the user through audio playback;

The client information security device supporting audio processing includes: a signal input unit, a voiceprint recognition unit, a voice-activated operation unit, a first storage unit, a conversion unit, a signal output unit, an encryption unit, and a data transmission unit; the signal input unit , the voiceprint recognition unit, the voice control operation unit, the first storage unit, the encryption unit, and the data transmission unit are connected; the data transmission unit is connected with the first storage unit, the conversion unit, and the signal output unit;

The online banking server is composed of a data receiving unit, a second storage unit, a decryption unit and a transaction execution unit.

The client information security device supporting audio processing also includes:

The signal input unit includes: a single button, a number key, and a microphone; it is used for the user to input transaction data and identity verification information; the identity verification information includes: PIN code information, user-defined password, and user audio information.

The signal output unit includes: an earphone and a loudspeaker; and is used to output the transaction data input by the user through audio.

In the client information security device:

The information input unit is configured to receive audio confirmation information input by the user;

The first storage unit is used to store the audio confirmation information input by the user received by the signal input unit, the audio signal of the legal user, the transaction data input by the user through the computer, the audio information input by the user, and the information related to the online bank. Relevant data and key agreement algorithm during the key agreement process on the server side;

The converting unit is configured to convert the transaction data input by the user through a computer into an audio signal;

The signal output unit is used to output the audio signal converted by the conversion unit;

The voiceprint recognition unit is used to identify the audio confirmation information input by the user received by the signal input unit, and determine whether the user's identity is legal;

The voice control operation unit is used to analyze the audio signal input by the user, judge the operation instruction corresponding to the audio signal, and execute the corresponding operation according to the operation instruction;

The encryption unit is used to digitally sign or encrypt the transaction data input by the user through the computer and the audio confirmation information input by the user;

The data transmission unit is used to transmit the transaction data input by the user to the information security device through the computer, and send the digitally signed or encrypted transaction data and audio confirmation information to the online banking server through the computer.

The operation instructions include: confirm, cancel, end task, and return.

In the online banking server:

The data receiving unit is configured to receive encrypted or digitally signed transaction data and user audio confirmation information sent by the client information security device through a computer;

The second storage unit is used to store user account information, user audio confirmation information, user transaction data, relevant data and key agreement algorithm for key agreement with the client information security device.

The decryption unit is configured to decrypt the encrypted or digitally signed transaction data;

The transaction execution unit is used to execute the final transaction operation on the decrypted data content.

A method for enhancing the safety of online banking transactions, specifically comprising the following steps:

Step A: the information security device establishes a connection with the computer, and the computer receives the data input by the user and transmits the data to the information security device;

Step B: After receiving the transaction data transmitted by the computer, the information security device performs digital-to-analog conversion on the transaction data, and outputs the transaction data through audio playback;

Step C: The information security device waits to receive the user confirmation information, and after confirming that the transaction data is correct, sends an order to execute the transaction to the information security device through audio input;

Step D: The information security device receives the audio confirmation information input by the user, authenticates and analyzes the identity of the user through voiceprint recognition, and executes corresponding operations after successful authentication.

Said step D also includes:

D1: The information security device internally digitally signs or encrypts the transaction data and the audio information input by the user and sends them;

D2: The online banking server receives the digitally signed or encrypted transaction data and user audio confirmation information sent by the information security device, and decrypts and stores the data and audio confirmation information;

D3: The online banking server executes the transaction according to the information in the transaction data.

In the step D, the information security device receives the user's audio confirmation information, and performs identity authentication on the user through voiceprint recognition, which specifically includes: the information security device receives the audio input from the user. After confirming the information, compare it with the voiceprint template information of the legal user stored inside to judge whether the two match, if yes, the user identity is considered legal, otherwise, the user identity is considered illegal.

In the step D, the information security device analyzing the audio confirmation information input by the user specifically includes: preprocessing, feature extraction, and pattern matching of the audio signal, and the preprocessing includes prefiltering, sampling and quantization, Windowing, endpoint detection, pre-emphasis.

After the step B, the following operations can also be performed:

Step C': The information security device waits for the user to send the following operation commands to the information security device through audio input: cancel, end task, return, turn page up or down, and repeat operation.

The beneficial effects of the present invention are: using the device and method provided by the present invention, before the user uses the information security device to conduct online banking transactions, the transaction data input by the user is output through the information security device in the form of audio playback, and after the user confirms that it is correct, Input audio confirmation information into the information security device through audio input, and the information security device performs voiceprint recognition on the audio information input by the user to confirm whether the identity is legal. Only when the transaction data is correct and the user's identity is legal, Only the information security device at the user terminal can encrypt or perform digital signature operations on all the information input by the user, and send it to the online banking server in the form of ciphertext;

After receiving the transaction data and user audio confirmation information sent by the client information security device, the online banking server will effectively store the user audio confirmation information, and execute the final operation according to the transaction data input by the user. Recorded the user's audio confirmation information, once the user denies the transaction history in the future transaction process, or the online bank fails to perform effective operations according to the transaction data input by the user, it can be conveniently accessed from the user database on the server side of the online bank The historical audio confirmation information is queried in . Since the confirmation information is stored in the form of audio and is a confirmation command for executing transaction data, it is unique and non-repudiable, and can effectively identify the responsible party that caused the invalid execution of the transaction.

Description of drawings

Fig. 1 is a system structure diagram for improving the security of an information security device in Embodiment 1 of the present invention;

2 is a flow chart of a method for improving the security of an information security device according to Embodiment 2 of the present invention;

Fig. 3 is a flowchart of a method for improving the security of an information security device according to Embodiment 3 of the present invention.

Detailed ways

The present invention will be further described below in conjunction with the accompanying drawings and specific embodiments, but the present invention is not limited to the following embodiments. In a specific embodiment of the present invention, the information security device is a USB Key, which is an information security device with a USB interface.

Example 1

As shown in Figure 1, a system to enhance the security of online banking transactions includes:

Earphone 100, microphone 200, USB Key 300, computer 400, online banking server 500, wherein USB Key 300 includes: USB interface unit 301, first storage unit 302, conversion unit 303, earphone interface unit 304, microphone unit 305, voiceprint recognition unit 306 , voice-activated operation unit 307 , encryption unit 308 ; the online banking server 500 includes: a data receiving unit 501 , a second storage unit 502 , a decryption unit 503 , and a transaction execution unit 504 .

In this embodiment, the user inputs the transaction data through the computer 400, the USB Key300 receives the transaction data input by the user through the USB interface unit 301, and stores it in the first storage unit 302, and the conversion unit 303 converts the transaction data input by the user into audio signal, and transmit the audio signal converted and output by the conversion unit 303 to the earphone 100 through the earphone interface unit 304; the user inputs audio information through the microphone 200 according to the information received from the earphone, and the microphone interface unit 305 receives the audio signal sent by the microphone 200 After the audio information, the audio information is sent to the voiceprint recognition unit 306, and the voiceprint recognition unit 306 discriminates the audio information input by the user to judge the legitimacy of the user's identity. If the voiceprint recognition unit 306 identifies that the user's identity is legal, then Send the audio confirmation information to the voice control operation unit 307, the voice control operation unit 307 analyzes the audio information input by the user, judges the operation instruction corresponding to the audio information input by the user, and executes the corresponding operation according to the operation instruction, and sends The operation result is stored in the first storage unit 302 .

In this embodiment, the audio information input by the user is to confirm the execution of the operation command.

The first storage unit 302 sends the received user audio confirmation information and the transaction data input by the user through the computer to the encryption unit 308 for encryption processing; the encryption unit 308 sends the encrypted data to the host through the USB interface unit 301, and finally Send the transaction data and audio information in encrypted form to the online banking server 500 through the computer network.

In the online banking server 500, the data receiving unit 501 receives the data sent by the client and stores it in the second storage unit 502, and decrypts it through the decryption unit 503, and finally the transaction execution unit 504 executes the transaction according to the transaction input by the user. The data performs the final transaction operation.

In this embodiment, the voiceprint recognition unit 306 includes a voiceprint recognition chip, which is mainly used for audio signal collection, audio signal feature extraction and pattern matching. The task of audio signal collection is to collect continuous and stable audio information; the task of feature extraction is to extract and select acoustic or language features that are highly separable and stable to the user's voiceprint. After the feature quantity is extracted, the change of the biological feature information is converted into a biological feature vector, which is mainly realized by calculating the continuously collected sound amplitude/frequency/phase waveform image and obtaining the relative amplitude/frequency/phase difference . When the voiceprint recognition unit 306 determines that the matching value between the user's voiceprint signal and the legitimate user's voiceprint template signal reaches a certain level, it determines that the user's identity is legal, that is, the audio confirmation information input by the user is valid.

In this embodiment, the conversion unit 303 is a D/A (digital/analog) conversion chip, which is used to convert digital transaction data into analog audio signals.

In this embodiment, the first storage unit 302 is not only used to store user transaction data and user voice confirmation information, but also used to store relevant data and key agreement algorithms in the process of key agreement with the online banking server 500; Two storage unit 502, for storing user account information, user's audio confirmation information, user transaction data, relevant data and key agreement algorithm used in the process of key agreement with USBKey300;

Example 2

Referring to Figure 2, one approach to enhancing the security of online banking transactions includes:

Step 201, USB Key establishes connection with computer;

Step 202, the user inputs the transaction data to be executed into the USB Key through the computer;

Step 203, after the USB Key receives the data transmitted from the client computer, it performs analog-to-digital conversion and outputs it through audio playback;

In this embodiment, the transaction data input by the user includes: user name, bank account number, transaction date, transaction category and transaction amount;

Step 204, the user judges whether the transaction data output in the form of audio playback in step 203 is the data to be operated, if yes, execute step 206, otherwise, execute step 205;

Step 205, the user judges that the transaction data output in the form of audio playback in step 203 is not the data to be operated, and inputs the "cancel operation" audio signal to the USB Key in the form of audio input, and the USB Key executes the user's input in the form of audio input. Cancel the operation command, cancel this operation;

Step 206, the user judges that the transaction data output in the form of audio playback in step 203 is the data to be operated, and inputs a "confirmation" audio signal to the USB Key in the form of audio input;

Step 207, after the USB Key receives the "confirmation" audio signal input by the user, it internally judges whether the user's identity is legal through voiceprint recognition, and if it is legal, execute step 209, otherwise execute step 208;

Step 208, the USB Key internally judges that the user's identity is illegal through voiceprint recognition, and the USB Key prompts the user for an error message through the host;

Step 209, the USB Key internally judges that the user's identity is legal through voiceprint recognition, conducts key negotiation with the online banking server through the computer, and uses the generated session key to encrypt the transaction data input by the user and the audio confirmation information input by the user process, and send the encrypted data to the online banking server through the computer;

Step 210: After the online banking server receives the data sent by the USB Key of the client, it uses the session key to decrypt and store the encrypted data;

Step 211: The online banking server executes subsequent transaction operations according to the decrypted data content.

Example 3

Referring to Figure 3, one approach to enhancing the security of online banking transactions includes:

Step 301, USB Key establishes connection with computer;

Step 302, the user inputs transaction data into the USB Key through the computer;

Step 303, after the USB Key receives the data transmitted from the client computer, it performs analog-to-digital conversion and outputs it through audio playback;

In this embodiment, the transaction data input by the user includes: user name, bank account number, transaction date, transaction category and transaction amount;

Step 304: After receiving the transaction data output by the USB Key in the form of audio playback in step 303, the user inputs a "repeat" audio signal to the USB Key in the form of audio input, and requests the USB Key to output the data in step 302 again by audio playback. transaction data;

Step 305, the user judges in step 303 and step 304 whether the transaction data output by the USB Key in the form of audio playback is the data to be operated, if yes, then execute step 307, otherwise, execute step 306;

Step 306, the user judges that the transaction data output in the form of audio playback in step 303 or step 304 is not the data to be operated, the user inputs the "return operation" audio signal to the USB Key in the form of audio input, and the USB Key executes the user's audio input The return operation command input in the form of returning to step 302;

Step 307, the user judges that the transaction data output in the form of audio playback in step 303 and step 304 is the data to be operated, and the user inputs the "confirmation" audio signal to the USB Key in the form of audio input;

A system and method for enhancing the security of online banking transactions provided by the present invention has been introduced in detail above. In this paper, specific examples have been used to illustrate the principle and implementation of the present invention. The description of the above embodiments is only used To help understand the method of the present invention and its core idea; at the same time, for those of ordinary skill in the art, according to the idea of the present invention, there will be changes in the specific implementation and scope of application. In summary, this specification The content should not be construed as a limitation of the invention.

Claims (10)

1. A system for enhancing the safety of online banking transactions, characterized in that, comprising: a signal input and output device, a client information security device that supports audio processing, a computer terminal and an online banking server; the audio input and output device, the client Information security device, the computer terminal is connected to the online banking server; The signal input and output device includes: an audio input unit for the user to input audio information, and an audio output unit for outputting the transaction data input by the user through audio playback; The client information security device supporting audio processing includes: a signal input unit, a voiceprint recognition unit, a voice-activated operation unit, a first storage unit, a conversion unit, a signal output unit, an encryption unit, and a data transmission unit; the signal input unit , the voiceprint recognition unit, the voice control operation unit, the first storage unit, the encryption unit, and the data transmission unit are connected; the data transmission unit is connected with the first storage unit, the conversion unit, and the signal output unit; The online banking server is composed of a data receiving unit, a second storage unit, a decryption unit and a transaction execution unit. 2. A system for enhancing the security of online banking transactions according to claim 1, wherein the client information security device supporting audio processing also includes: Signal input unit, including: a single button, a number key, a microphone; used for the user to input transaction data and identity verification information; where the identity verification information is: PIN code information, user-defined password, user audio information; The signal output unit includes: an earphone and a loudspeaker; and is used to output the transaction data input by the user through audio. 3. a kind of system that strengthens online banking transaction security according to claim 1, is characterized in that, in described client information security device: The information input unit is configured to receive audio confirmation information input by the user; The first storage unit is used to store the audio confirmation information input by the user received by the signal input unit, the audio signal template information of the legal user, the transaction data input by the user through the computer, the audio information input by the user, and the Relevant data and key agreement algorithm during the key agreement process performed by the online banking server; The converting unit is configured to convert the transaction data input by the user through a computer into an audio signal; The signal output unit is used to output the audio signal converted by the conversion unit; The voiceprint recognition unit is used to identify the audio confirmation information input by the user received by the signal input unit, and determine whether the user's identity is legal; The voice control operation unit is used to analyze the audio signal input by the user, judge the operation instruction corresponding to the audio signal, and execute the corresponding operation according to the operation instruction; The encryption unit is used to digitally sign or encrypt the transaction data input by the user through the computer and the audio confirmation information input by the user; The data transmission unit is used to transmit the transaction data input by the user to the information security device through the computer, and send the digitally signed or encrypted transaction data and audio confirmation information to the online banking server through the computer. 4. A system for enhancing the security of online banking transactions according to claim 3, wherein the operation instructions include: confirm, cancel, end task, and return. 5. A system for enhancing the security of online banking transactions according to claim 1, wherein, in the online banking server: The data receiving unit is configured to receive encrypted or digitally signed transaction data and user audio confirmation information sent by the client information security device through a computer; The second storage unit is used to store user account information, user audio confirmation information, user transaction data, relevant data and key agreement algorithm used in the key agreement process with the client information security device; The decryption unit is configured to decrypt the encrypted or digitally signed transaction data; The transaction execution unit is used to execute the final transaction operation on the decrypted data content. 6. A method for enhancing the security of online banking transactions, characterized in that it specifically comprises the following steps: Step A: the information security device establishes a connection with the computer, and the computer receives the data input by the user and transmits the data to the information security device; Step B: After receiving the transaction data transmitted by the computer, the information security device performs digital-to-analog conversion on the transaction data, and outputs the transaction data through audio playback; Step C: the information security device waits to receive confirmation information from the user, and after confirming that the transaction data is correct, the user sends an order to execute the transaction to the information security device through audio input; Step D: The information security device receives the audio confirmation information input by the user, authenticates and analyzes the identity of the user through voiceprint recognition, and executes corresponding operations after successful authentication. 7. A kind of method for enhancing online banking transaction security according to claim 6, is characterized in that, described step D also comprises: D1: The information security device internally digitally signs or encrypts the transaction data and the audio information input by the user and sends them; D2: The online banking server receives the digitally signed or encrypted transaction data and user audio confirmation information sent by the information security device, and decrypts and stores the data and audio confirmation information; D3: The online banking server executes the transaction according to the information in the transaction data. 8. A method for enhancing the security of online banking transactions according to claim 6, characterized in that, in the step D, the information security device receives the audio confirmation information of the user, and recognizes the user by voiceprint recognition. The user performs identity authentication, which specifically includes: the information security device compares the voiceprint template information of the legal user stored in the internally stored audio confirmation information after receiving the audio confirmation information input by the user, and judges whether the two match, and if so, Then, the user identity is considered legal; otherwise, the user identity is considered illegal. 9. A method for enhancing the security of online banking transactions according to claim 6, characterized in that, in the step D, the information security device analyzing the audio confirmation information input by the user specifically includes: Audio signal preprocessing, feature extraction, pattern matching, the preprocessing includes pre-filtering, sampling and quantization, windowing, endpoint detection, pre-emphasis. 10. A method for enhancing the security of online banking transactions according to claim 6, characterized in that, after the step B, the following operations can also be performed: Step C': The information security device waits for the user to send the following operation commands to the information security device through audio input: cancel, end task, return, turn page up or down, and repeat.

Images