TWI599971B - Digital wallet in the virtual card management - Google Patents
Digital wallet in the virtual card management Download PDFInfo
- Publication number
- TWI599971B TWI599971B TW105124252A TW105124252A TWI599971B TW I599971 B TWI599971 B TW I599971B TW 105124252 A TW105124252 A TW 105124252A TW 105124252 A TW105124252 A TW 105124252A TW I599971 B TWI599971 B TW I599971B
- Authority
- TW
- Taiwan
- Prior art keywords
- digital wallet
- card
- virtual card
- mobile device
- transaction management
- Prior art date
Links
- 238000007726 management method Methods 0.000 claims description 102
- 238000012795 verification Methods 0.000 claims description 93
- 238000000034 method Methods 0.000 claims description 34
- 238000012790 confirmation Methods 0.000 claims description 5
- 238000010295 mobile communication Methods 0.000 claims description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000010586 diagram Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000035515 penetration Effects 0.000 description 1
- 235000015096 spirit Nutrition 0.000 description 1
- 239000002699 waste material Substances 0.000 description 1
Landscapes
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Description
本發明係有關一種金融交易技術,特別是指一種數位皮夾中虛擬卡之管理方法。The invention relates to a financial transaction technology, in particular to a method for managing a virtual card in a digital wallet.
電腦及網路技術發展迅速,普及率提升,將實體虛擬化可減少資源浪費,更增加便利性,諸如電子帳單、電子郵件廣告、網路商店等,不但可減少紙張的消耗,還可省下店租的成本,人們也可以不用出門在家購物,或是線上繳款等,相當便利。Computer and network technologies are developing rapidly, and the penetration rate is increasing. Virtualization of entities can reduce waste of resources and increase convenience. For example, electronic bills, email advertisements, online stores, etc., can reduce paper consumption and save The cost of renting a shop, people can also go shopping at home, or pay online, which is quite convenient.
而隨著加密演算法演進,在網路交易安全性足夠的前提下,進一步將網路交易擴大到金融交易,目前已有電子錢包,其係整合於金融卡中,使用者不用攜帶現金出門,只要銀行帳戶中有錢,刷金融卡便可從銀行帳戶中扣款,使用者能量力而為,不會造成過度消費,引發負債。但使用者仍然要攜帶卡片出門,因此數位皮夾應運而生,其為一種智慧型手機的應用程式,將手機結合金融卡與信用卡,使用者只要攜帶智慧型手機出門就可消費購物,連金融卡、信用卡等卡片都不需帶出門,但如何確認使用者的手機中的虛擬卡確實為其本人申請是需要經過驗證的,否則卡片有可能被他人下載盜用。With the evolution of the encryption algorithm, under the premise of sufficient security of online transactions, the online transaction is further expanded to financial transactions. At present, there is an electronic wallet, which is integrated in the financial card, and the user does not need to carry cash out. As long as there is money in the bank account, the financial card can be debited from the bank account, and the user's energy will not cause excessive consumption, causing debt. However, users still have to carry cards to go out, so digital wallets came into being. It is a smart phone application that combines mobile phones with financial cards and credit cards. Users can go shopping with smart phones and even finance. Cards, credit cards and other cards do not need to be taken out, but how to confirm that the virtual card in the user's mobile phone is actually applied for verification is necessary, otherwise the card may be downloaded and stolen by others.
因此,本發明即提出一種數位皮夾中虛擬卡之管理方法,有效解決上述該等問題,具體架構及其實施方式將詳述於下:Therefore, the present invention provides a method for managing a virtual card in a digital wallet, which effectively solves the above problems, and the specific architecture and its implementation manner will be described in detail below:
本發明之主要目的在提供一種數位皮夾中虛擬卡之管理方法,其係在使用者的行動裝置中安裝數位皮夾,數位皮夾中可下載多張對應實體卡片的虛擬卡,使用者於數位皮夾中輸入的所有資訊要傳送到發卡銀行伺服器都會透過交易管理平台,可整合多家發卡銀行的虛擬卡於同一數位皮夾中。The main object of the present invention is to provide a method for managing a virtual card in a digital wallet, which is to install a digital wallet in a user's mobile device, and a plurality of virtual cards corresponding to the physical card can be downloaded in the digital wallet. All the information entered in the digital wallet will be transmitted to the issuing bank server through the transaction management platform, which can integrate the virtual cards of multiple issuing banks in the same number of wallets.
本發明之另一目的在提供一種數位皮夾中虛擬卡之管理方法,當數位皮夾被移除又重新安裝時,原有的虛擬卡會以灰階呈現在數位皮夾中,使用者一一點擊灰色的虛擬卡,透過交易管理平台或發卡銀行伺服器進行驗證流程,可重新下載虛擬卡使其恢復成彩色的可使用狀態。Another object of the present invention is to provide a method for managing a virtual card in a digital wallet. When the digital wallet is removed and reinstalled, the original virtual card is displayed in a grayscale in a digital wallet. Once the gray virtual card is clicked, the verification process can be performed through the transaction management platform or the issuing bank server, and the virtual card can be re-downloaded to be restored to a color usable state.
本發明之再一目的在提供一種數位皮夾中虛擬卡之管理方法,發卡銀行伺服器傳送動態密碼給使用者進行驗證,若使用者輸入的動態密碼是正確的,發卡銀行伺服器才會進行核卡作業。A further object of the present invention is to provide a method for managing a virtual card in a digital wallet. The issuing bank server transmits a dynamic password to the user for verification. If the dynamic password entered by the user is correct, the issuing bank server performs the verification. Nuclear card operation.
本發明之又一目的在提供一種數位皮夾中虛擬卡之管理方法,發卡銀行伺服器會分別傳送下載驗證碼給交易管理平台和行動裝置,使用者於行動裝置的數位皮夾上輸入下載驗證碼後,交易管理平台會判斷使用者所輸入的與發卡銀行伺服器所給予的是否相符,若相符再通知使用者可以開始下載虛擬卡,由發卡銀行伺服器產生下載驗證碼,以避免交易管理平台同時產生又驗證之球員兼裁判的不公正情況發生。Another object of the present invention is to provide a method for managing a virtual card in a digital wallet. The issuing bank server separately transmits a download verification code to the transaction management platform and the mobile device, and the user inputs the download verification on the digital wallet of the mobile device. After the code, the transaction management platform will determine whether the user input is consistent with the card issuing bank server. If the user is notified, the user can start downloading the virtual card, and the issuing bank server generates the download verification code to avoid transaction management. The unfair situation of the player and the referee who simultaneously generated and verified the platform occurred.
為達上述目的,本發明提供一種數位皮夾中虛擬卡之管理方法,先於一行動裝置中安裝一數位皮夾,該管理方法包括下列步驟:於行動裝置之數位皮夾中申請一虛擬卡,並輸入虛擬卡之資訊,虛擬卡之資訊被傳送至一交易管理平台及一發卡銀行伺服器進行核驗;發卡銀行伺服器發送一動態密碼至行動裝置,行動裝置於數位皮夾中輸入動態密碼,透過交易管理平台將行動裝置所輸入之動態密碼傳送至發卡銀行伺服器進行確認;發卡銀行伺服器傳送一下載驗證碼給交易管理平台;發卡銀行伺服器提供下載驗證碼給行動裝置,同時交易管理平台透過數位皮夾於行動裝置上顯示可下載虛擬卡之一推播訊息;以及行動裝置於數位皮夾中輸入下載驗證碼,經交易管理平台確認無誤後,開始下載虛擬卡到數位皮夾中。 To achieve the above objective, the present invention provides a method for managing a virtual card in a digital wallet, which first installs a digital wallet in a mobile device. The management method includes the following steps: applying for a virtual card in a digital wallet of the mobile device And input the information of the virtual card, the information of the virtual card is transmitted to a transaction management platform and a card issuing bank server for verification; the issuing bank server sends a dynamic password to the mobile device, and the mobile device inputs the dynamic password in the digital wallet. Transmitting the dynamic password entered by the mobile device to the issuing bank server for confirmation through the transaction management platform; the issuing bank server transmits a download verification code to the transaction management platform; the issuing bank server provides the download verification code to the mobile device, and simultaneously transactions The management platform displays a downloadable virtual card by using a digital wallet on the mobile device; and the mobile device inputs the download verification code in the digital wallet, and after the transaction management platform confirms the error, starts downloading the virtual card to the digital wallet. in.
其中,虛擬卡之資訊包括一實體卡片之卡號、有效期限及驗證碼。虛擬卡之資訊係手動輸入,或拍攝實體卡片後由行動裝置進行辨識。 The information of the virtual card includes the card number, expiration date and verification code of a physical card. The information of the virtual card is manually input, or is recognized by the mobile device after the physical card is photographed.
交易管理平台上儲存有可支援數位皮夾之一行動裝置型號清單,當使用者提出虛擬卡之申請後,交易管理平台判斷行動裝置之型號是否在行動裝置型號清單中。若交易管理平台判斷行動裝置之型號不在行動裝置型號清單中,則會於行動裝置上顯示一警語,待行動裝置輸入一同意訊息後才可繼續進行虛擬卡之申請。 The transaction management platform stores a list of mobile device models that can support one of the digital wallets. When the user submits the application for the virtual card, the transaction management platform determines whether the model of the mobile device is in the mobile device model list. If the transaction management platform determines that the model of the mobile device is not in the mobile device model list, a warning message is displayed on the mobile device, and the virtual device application can be continued after the mobile device inputs a consent message.
將虛擬卡之資訊傳送至交易管理平台及發卡銀行伺服器進行核驗之步驟中,更包括下列步驟:交易管理平台對虛擬卡之資訊進行基本核驗;交易管理平台顯示發卡銀行之服務條款及一下載驗證碼之取得提示於行動裝置上;於行動裝置上輸入一核驗問題;以及交易管理平台將虛擬卡之資訊及核驗問題傳送至發卡銀行伺服器進行核驗。 The steps of transmitting the information of the virtual card to the transaction management platform and the issuing bank server for verification include the following steps: the transaction management platform performs basic verification on the information of the virtual card; the transaction management platform displays the service terms of the issuing bank and a download The verification code is obtained on the mobile device; a verification problem is input on the mobile device; and the transaction management platform transmits the virtual card information and the verification problem to the issuing bank server for verification.
動態密碼及下載驗證碼係透過簡訊或電子郵件等方式傳送給行動裝置。 Dynamic passwords and download verification codes are transmitted to mobile devices via SMS or email.
當虛擬卡下載到數位皮夾後,交易管理平台會通知發卡銀行伺服器。 When the virtual card is downloaded to the digital wallet, the transaction management platform notifies the issuing bank server.
發卡銀行伺服器傳送下載驗證碼給交易管理平台時,同時傳送使用者之個人資料,使用者之個人資料包括一實體卡片之卡號、有效期限、驗證碼及實體卡片之晶片資料。 When the issuing bank server transmits the download verification code to the transaction management platform, the user's personal data is transmitted at the same time, and the user's personal data includes the card number of the physical card, the expiration date, the verification code and the chip data of the physical card.
發卡銀行伺服器傳送使用者之個人資料及一下載驗證碼給交易管理平台後,交易管理平台即時完成一個人化作業準備,將使用者之個人資料儲存,並通知發卡銀行伺服器已完成準備工作。 After the card issuing bank server transmits the user's personal data and downloads the verification code to the transaction management platform, the transaction management platform immediately completes a personalization preparation, stores the user's personal data, and notifies the issuing bank server that the preparation has been completed.
於數位皮夾中輸入下載驗證碼之前,先選擇欲下載之虛擬卡。 Before entering the download verification code in the digital wallet, select the virtual card to be downloaded.
交易管理平台及發卡銀行伺服器之間係透過網際網路連接,行動裝置與交易管理平台之間透過行動通訊網路或網際網路連接。 The transaction management platform and the issuing bank server are connected through the Internet, and the mobile device and the transaction management platform are connected through a mobile communication network or the Internet.
虛擬卡被下載至數位皮夾後,交易管理平台刪除該使用者之個人資料。 After the virtual card is downloaded to the digital wallet, the transaction management platform deletes the user's personal data.
若虛擬卡在一預設期限內未被下載,則交易管理平台刪除該使用者之個人資料。 If the virtual card is not downloaded within a predetermined period of time, the transaction management platform deletes the user's profile.
數位皮夾若經移除後再重新安裝於同一行動裝置中,則重新申請虛擬卡之方法係包括下列步驟:於數位皮夾中選擇登入數位皮夾或重新註冊;於數位皮夾中以灰階方式顯示原先既有的至少一虛擬卡;選擇虛擬卡以發送一重新下載之訊息;發卡銀行伺服器透過交易管理平台接收到重新下載之訊息後,發送一新下載驗證碼給交易管理平台;發卡銀行伺服器提供新下載驗證碼給行動裝置,同時交易管理平台透過數位皮夾於行動裝置上顯示可下載虛擬卡之一推播訊息;以及於數位皮夾中輸入新下載驗證碼,經交易管理平台確認無誤後開始下載虛擬卡到數位皮夾中。 If the digital wallet is removed and then reinstalled in the same mobile device, the method of re-applying the virtual card includes the following steps: selecting the digital wallet or re-registering in the digital wallet; graying in the digital wallet The step mode displays at least one virtual card that is originally existing; the virtual card is selected to send a re-download message; after receiving the re-download message through the transaction management platform, the card issuing bank server sends a new download verification code to the transaction management platform; The card issuing bank server provides a new download verification code to the mobile device, and the transaction management platform displays the downloadable virtual card by displaying the message on the mobile device through the digital wallet; and inputting the new download verification code into the digital wallet, and transacting After the management platform confirms the error, it starts to download the virtual card into the digital wallet.
承上,數位皮夾中原先設定有一密碼,當數位皮夾被移除並重新安裝後,若選擇登入數位皮夾,則輸入該密碼以供交易管理平台進行驗證。 In the case, the digital wallet is originally set with a password. When the digital wallet is removed and reinstalled, if you choose to log in to the digital wallet, enter the password for verification by the transaction management platform.
若選擇重新註冊,則包括下列步驟:重新在數位皮夾中輸入虛擬卡之資訊,虛擬卡之資訊被傳送至交易管理平台及發卡銀行伺服器進行核驗;發卡銀行伺服器發送一新動態密碼至行動裝置,該行動裝置再於數位皮夾中輸入新動態密碼;以及交易管理平台將新動態密碼傳送至發卡銀行 伺服器進行確認。 If you choose to re-register, the following steps are included: re-enter the information of the virtual card in the digital wallet, the information of the virtual card is transmitted to the transaction management platform and the issuing bank server for verification; the issuing bank server sends a new dynamic password to a mobile device that enters a new dynamic password in a digital wallet; and the transaction management platform transmits the new dynamic password to the issuing bank The server confirms.
本發明提供一種數位皮夾中虛擬卡之管理方法,先於一行動裝置中安裝一數位皮夾,其為一從網路上下載的應用程式,系統架構請參考第1圖,行動裝置10中安裝數位皮夾102,此數位皮夾102中下載虛擬卡,此虛擬卡係可代表信用卡、金融卡、簽帳卡、儲值卡或電子票證智慧卡等實體卡片,發卡銀行伺服器14就是實體卡片的發卡銀行的後端伺服器,而交易管理平台12為第三方平台,整合多家發卡銀行的數位卡片進行行動支付,讓使用者可以利用行動裝置進行刷卡結帳,不用再帶現金及卡片出門,更可因應銀行的優惠方案而在數位皮夾中選擇該家銀行的虛擬卡進行支付動作。行動裝置10與交易管理平台12之間係透過網際網路或電信網路連接,而交易管理平台12與發卡銀行伺服器14之間則透過網際網路連接。 The invention provides a method for managing a virtual card in a digital wallet. A digital wallet is installed in a mobile device, which is an application downloaded from the network. For the system architecture, please refer to FIG. 1 and install in the mobile device 10. The digital wallet 102 downloads a virtual card in the digital wallet 102. The virtual card can represent a physical card such as a credit card, a financial card, a charge card, a stored value card or an electronic ticket smart card, and the issuing bank server 14 is a physical card. The back-end server of the issuing bank, and the transaction management platform 12 is a third-party platform, which integrates digital cards of a plurality of issuing banks for mobile payment, so that the user can use the mobile device to check out the card without having to bring cash and cards to go out. In addition, in accordance with the bank's preferential program, the bank's virtual card is selected in the digital wallet for payment. The mobile device 10 and the transaction management platform 12 are connected through an internet or telecommunication network, and the transaction management platform 12 and the card issuing bank server 14 are connected through the Internet.
第2圖為本發明之數位皮夾中虛擬卡之管理方法,當使用者欲下載一張既有實體卡片的虛擬卡時,首先於行動裝置中安裝數位皮夾之應用 程式,接著如步驟S10~S12所述,於行動裝置之數位皮夾中申請虛擬卡,並輸入虛擬卡之資訊,包括實體卡片之卡號、有效期限及驗證碼等,接著步驟S14剛輸入的虛擬卡之資訊會被傳送至交易管理平台及發卡銀行伺服器進行核驗,在此處,發卡銀行伺服器是指該張虛擬卡的實體卡片的發卡銀行,而非其他無關的發卡銀行;步驟S16發卡銀行伺服器發送一動態密碼至行動裝置,步驟S18中,當行動裝置在數位皮夾中輸入動態密碼後,透過交易管理平台將行動裝置所輸入之動態密碼傳送至發卡銀行伺服器進行確認,如步驟S20所述;當發卡銀行伺服器核驗正確後,便會進行核卡作業,首先如步驟S22,發卡銀行伺服器傳送一下載驗證碼給交易管理平台,接著步驟S24中發卡銀行伺服器提供下載驗證碼給行動裝置,同時交易管理平台透過數位皮夾於行動裝置上顯示可下載虛擬卡之一推播訊息;行動裝置收到下載驗證碼後,又收到了可開始下載虛擬卡的推播訊息,便可以在數位皮夾中輸入下載驗證碼,交易管理平台將行動裝置輸入的下載驗證碼與發卡銀行伺服器所傳送者相比較,確認此下載驗證碼無誤後,行動裝置便可開始下載虛擬卡到數位皮夾中,如步驟S26所述。 2 is a method for managing a virtual card in a digital wallet of the present invention. When a user wants to download a virtual card having a physical card, first install an application of a digital wallet in the mobile device. The program, then as described in steps S10~S12, apply for a virtual card in the digital wallet of the mobile device, and input the information of the virtual card, including the card number, expiration date and verification code of the physical card, and then the virtual input just after step S14. The information of the card will be transmitted to the transaction management platform and the issuing bank server for verification. Here, the issuing bank server refers to the issuing bank of the physical card of the virtual card, and not other unrelated issuing banks; step S16 is issued. The bank server sends a dynamic password to the mobile device. In step S18, after the mobile device inputs the dynamic password in the digital wallet, the dynamic password input by the mobile device is transmitted to the card issuing bank server through the transaction management platform for confirmation, such as Step S20; after the card issuing bank verification is correct, the card card operation is performed. First, in step S22, the card issuing bank server transmits a download verification code to the transaction management platform, and then the card issuing bank server provides downloading in step S24. The verification code is given to the mobile device, and the transaction management platform displays the mobile phone through the digital wallet. One of the virtual cards is used to push the message; after receiving the download verification code, the mobile device receives the push message that can start downloading the virtual card, and then can input the download verification code in the digital wallet, and the transaction management platform inputs the mobile device. The download verification code is compared with the sender of the issuing bank server, and after confirming that the download verification code is correct, the mobile device can start downloading the virtual card into the digital wallet as described in step S26.
交易管理平台上儲存有可支援數位皮夾之一行動裝置型號清單,在上述步驟S10中,當提出該虛擬卡之申請後,交易管理平台會先判斷行動裝置之型號是否在行動裝置型號清單中,以判斷該行動裝置是否支援數位皮夾的應用程式執行運作,若行動裝置的型號在行動裝置型號清單中,則直接進行步驟S12,但若行動裝置的型號不在行動裝置型號清單中,則會於行動裝置上顯示一警語,待行動裝置輸入一同意訊息才可繼續進行虛擬卡之申請。交易管理平台會將此行動裝置型號清單定期更新給發卡銀行伺服器,以供發卡銀行公佈給客戶參考,客戶在發卡銀行的網站上可查詢有哪些行動裝置的型號可以支援行動支付的服務。The transaction management platform stores a list of mobile device models supporting one of the digital wallets. In the above step S10, after the application for the virtual card is filed, the transaction management platform first determines whether the model of the mobile device is in the mobile device model list. To determine whether the mobile device supports the digital wallet application, if the mobile device model is in the mobile device model list, proceed directly to step S12, but if the mobile device model is not in the mobile device model list, A warning message is displayed on the mobile device, and the mobile device can continue to apply for the virtual card after inputting a consent message. The transaction management platform will periodically update the mobile device model list to the issuing bank server for the card issuing bank to publish to the customer for reference. The customer can check on the website of the issuing bank to find out which mobile device models can support the mobile payment service.
在上述步驟S12中,虛擬卡之資訊係可由使用者手動輸入,將實體卡片上的卡號、有效期限及卡片背面的三碼驗證碼輸入到數位皮夾,或是用行動裝置拍攝實體卡片,由行動裝置進行辨識,或行動裝置將實體卡片的影像傳送到交易管理平台,由交易管理平台辨識出影像中的卡號、有效期限及驗證碼。In the above step S12, the information of the virtual card can be manually input by the user, input the card number on the physical card, the expiration date and the three-code verification code on the back of the card into the digital wallet, or shoot the physical card with the mobile device. The mobile device recognizes, or the mobile device transmits the image of the physical card to the transaction management platform, and the transaction management platform recognizes the card number, expiration date and verification code in the image.
上述步驟S14中,更包括交易管理平台及發卡銀行伺服器對虛擬卡之資訊進行核驗之細部步驟,如第3圖所示,步驟S142中,交易管理平台先對虛擬卡之資訊進行基本核驗,若核驗正確,步驟S144交易管理平台將發卡銀行之服務條款及一下載驗證碼之取得提示顯示於行動裝置上;步驟S146使用者於行動裝置上輸入一核驗問題,此核驗問題為發卡銀行自訂的,使用者利用行動裝置從中選擇一個輸入;以及交易管理平台將虛擬卡之資訊及核驗問題等訊息傳送至發卡銀行伺服器進行核驗。The above step S14 further includes a detailed step of verifying the information of the virtual card by the transaction management platform and the issuing bank server. As shown in FIG. 3, in step S142, the transaction management platform first performs basic verification on the information of the virtual card. If the verification is correct, the transaction management platform displays the service terms of the issuing bank and the acquisition verification code on the mobile device in step S144; in step S146, the user inputs a verification question on the mobile device, and the verification problem is the issuing bank customization. The user selects an input from the mobile device by using the mobile device; and the transaction management platform transmits the information such as the virtual card information and the verification problem to the issuing bank server for verification.
在上述步驟S22中,發卡銀行伺服器傳送下載驗證碼給交易管理平台時,同時傳送一使用者之個人資料,包括一實體卡片之卡號、有效期限、驗證碼及該實體卡片之晶片資料。當發卡銀行伺服器將使用者之個人資料及下載驗證碼傳送給交易管理平台後,交易管理平台會即時完成一個人化資料準備,將發卡銀行伺服器所給予的使用者之個人資料儲存,並傳送已完成準備工作的通知給發卡銀行伺服器。In the above step S22, when the issuing bank server transmits the download verification code to the transaction management platform, the personal data of the user is simultaneously transmitted, including the card number of the physical card, the expiration date, the verification code and the wafer data of the physical card. After the issuing bank server transmits the user's personal data and download verification code to the transaction management platform, the transaction management platform will immediately complete a personalized data preparation, store and transmit the personal data of the user given by the issuing bank server. A notice of preparation has been completed to the issuing bank server.
本發明中,由於使用者的行動裝置和發卡銀行伺服器之間需透過交易管理平台溝通,因此動態密碼及下載驗證碼係透過簡訊或電子郵件等方式傳送給行動裝置。而由於行動裝置中所安裝的數位皮夾應用程式可直接連線到交易平台伺服器,因此交易平台伺服器可控制數位皮夾,使推播訊息直接跳出顯示在行動裝置上,即使行動裝置沒有開啟數位皮夾,仍然能得到可下載虛擬卡的通知。In the present invention, since the user's mobile device and the issuing bank server need to communicate through the transaction management platform, the dynamic password and the download verification code are transmitted to the mobile device through a short message or an email. Since the digital wallet application installed in the mobile device can be directly connected to the trading platform server, the trading platform server can control the digital wallet, so that the push message is directly jumped out and displayed on the mobile device, even if the mobile device does not have Turn on the digital wallet and still get notifications for downloadable virtual cards.
此外,動態密碼及下載驗證碼係透過簡訊或電子郵件等方式傳送給行動裝置,而使用者在申辦實體卡片時會留有電話號碼及電子郵件信箱等個人資訊,因此,只有申辦實體卡片的使用者本人才可能接收到包含動態密碼及下載驗證碼的簡訊或電子郵件,其他人就算有卡片的卡號、有效期限、甚至驗證碼都有,由於收不到動態密碼及下載驗證碼,因此也無法盜用。In addition, the dynamic password and the download verification code are transmitted to the mobile device via SMS or email, and the user will leave personal information such as a phone number and an email address when applying for the physical card. Therefore, only the use of the application entity card is used. The person may receive a newsletter or email containing a dynamic password and a download verification code. Others may have the card number, expiration date, or even verification code of the card, and cannot receive the dynamic password and download the verification code. Stealing.
在上述步驟S26中,使用者會先在數位皮夾中選擇欲下載之至少一張虛擬卡,接著再輸入下載驗證碼,此下載驗證碼就是針對欲下載之該至少一虛擬卡而輸入。由於下載驗證碼為發卡銀行伺服器產生,分別發送給交易管理平台及行動裝置,而行動裝置輸入的下載驗證碼則由交易管理平台進行比對驗證,而不是由交易管理平台自行產生下載驗證碼,如此一來可避免交易管理平台兼具產生下載驗證碼又進行驗證之球員兼裁判的不公正情況發生,且由發卡銀行伺服器傳送下載驗證碼給使用者端的行動裝置也較具有公信力,能讓使用者相信下載驗證碼是真實的而非詐騙手段;若使用者輸入下載驗證碼錯誤多次,該虛擬卡會被鎖卡,舉例而言,若輸入下載驗證碼之錯誤次數達5次,該虛擬卡隨即鎖卡,使用者需與發卡銀行聯絡確認身分後,重複上述步驟S10~S24。In the above step S26, the user first selects at least one virtual card to be downloaded in the digital wallet, and then inputs a download verification code, which is input for the at least one virtual card to be downloaded. Since the download verification code is generated by the issuing bank server, it is sent to the transaction management platform and the mobile device respectively, and the download verification code input by the mobile device is compared and verified by the transaction management platform, instead of the download verification code generated by the transaction management platform itself. In this way, the transaction management platform can avoid the unfair situation of the player and the referee who generate the download verification code and verify, and the mobile device downloading the verification code to the user terminal is also more credible. Let the user believe that the download verification code is real rather than fraudulent; if the user enters the download verification code incorrectly multiple times, the virtual card will be locked, for example, if the number of errors in downloading the verification code is 5 times, The virtual card then locks the card, and the user needs to contact the issuing bank to confirm the identity, and then repeat steps S10 to S24.
當行動裝置下載虛擬卡至數位皮夾後,交易管理平台刪除該使用者之個人資料。若使用者在一預設期限內未下載虛擬卡,則交易管理平台刪除該使用者之個人資料,例如若行動裝置逾30日仍未下載虛擬卡,交易管理平台就會將該使用者之個人資料移除,而發卡銀行伺服器可從交易管理平台上查詢未下載虛擬卡的明細。When the mobile device downloads the virtual card to the digital wallet, the transaction management platform deletes the user's personal data. If the user does not download the virtual card within a predetermined period of time, the transaction management platform deletes the user's personal information. For example, if the mobile device has not downloaded the virtual card for more than 30 days, the transaction management platform will personalize the user. The data is removed, and the issuing bank server can query the transaction management platform for details of the undownloaded virtual card.
數位皮夾若經移除後再重新安裝於同一行動裝置中,則重新申請虛擬卡之方法請參考第4圖之流程圖,於步驟S30中,於行動裝置上開啟數位皮夾,並於數位皮夾中選擇要登入數位皮夾或重新註冊;步驟S32,於數位皮夾中以灰階方式顯示原先既有的至少一虛擬卡,亦即移除前已下載的虛擬卡;步驟S34中,當行動裝置選擇虛擬卡,數位皮夾就會發送一重新下載之訊息給交易管理平台;接著步驟S36中,發卡銀行伺服器透過交易管理平台接收到重新下載之訊息後,發送一新下載驗證碼給交易管理平台;接著步驟S38,發卡銀行伺服器提供新下載驗證碼給行動裝置,同時交易管理平台透過數位皮夾於行動裝置上顯示可下載虛擬卡之一推播訊息;最後於數位皮夾中輸入新下載驗證碼,經交易管理平台確認無誤後開始下載虛擬卡到數位皮夾中,如步驟S39所述。If the digital wallet is removed and then reinstalled in the same mobile device, the method of re-applying the virtual card, please refer to the flowchart of FIG. 4, in step S30, open the digital wallet on the mobile device, and digitally In the wallet, it is selected to log in the digital wallet or re-register; in step S32, the at least one virtual card originally existing in the digital wallet is displayed in a grayscale manner, that is, the virtual card that has been downloaded before is removed; in step S34, When the mobile device selects the virtual card, the digital wallet sends a re-download message to the transaction management platform; then, in step S36, the card issuing bank server receives the re-download message through the transaction management platform, and sends a new download verification code. To the transaction management platform; then, in step S38, the issuing bank server provides a new download verification code to the mobile device, and the transaction management platform displays the downloadable virtual card through the digital wallet on the mobile device; and finally the digital wallet Enter the new download verification code and start downloading the virtual card into the digital wallet after the transaction management platform confirms the error, as described in step S39.
上述第4圖中之步驟S36發送新下載驗證碼的步驟到步驟S39同第2圖之步驟S22到步驟S26。而第4圖步驟S30中,若選擇重新註冊,其步驟請參考第5圖,首先步驟S301中,行動裝置重新在數位皮夾中輸入虛擬卡之資訊,接著如步驟S302所述,虛擬卡之資訊被傳送至交易管理平台及發卡銀行伺服器進行核驗;若核驗正確,則步驟S303發卡銀行伺服器發送一新動態密碼至行動裝置,當行動裝置於步驟S304輸入新動態密碼後,步驟S305中交易管理平台將行動裝置所輸入之新動態密碼傳送至發卡銀行伺服器進行確認。第5圖之流程相當於第2圖中之步驟S12~S20,只是動態密碼重新產生。The step S36 in the above FIG. 4 transmits the step of newly downloading the verification code to step S39 and steps S22 to S26 of the second drawing. In step S30 of FIG. 4, if re-registration is selected, please refer to FIG. 5 for the steps. First, in step S301, the mobile device re-enters the information of the virtual card in the digital wallet, and then, as described in step S302, the virtual card is The information is transmitted to the transaction management platform and the issuing bank server for verification; if the verification is correct, the issuing bank server sends a new dynamic password to the mobile device in step S303, and after the mobile device inputs the new dynamic password in step S304, in step S305. The transaction management platform transmits the new dynamic password input by the mobile device to the issuing bank server for confirmation. The flow of Fig. 5 corresponds to steps S12 to S20 in Fig. 2, except that the dynamic password is regenerated.
數位皮夾中原先設定有一密碼,若在第4圖之步驟S30選擇登入數位皮夾,則輸入該密碼以供交易管理平台進行驗證,驗證成功即會在數位皮夾中以灰階方式顯示既有的虛擬卡。The digital wallet is originally set with a password. If you select the login digital wallet in step S30 of Figure 4, enter the password for verification by the transaction management platform. If the verification is successful, it will display grayscale in the digital wallet. Some virtual cards.
本發明中,交易管理平台同時對至少一個發卡銀行伺服器,若使用者要申請復原多家發卡銀行的虛擬卡,則交易管理平台會同時傳送資訊分別給使用者有要申請虛擬卡的每一家發卡銀行伺服器。In the present invention, the transaction management platform simultaneously applies to at least one issuing bank server. If the user wants to apply for restoring a virtual card of a plurality of issuing banks, the transaction management platform simultaneously transmits information to each user who has to apply for a virtual card. Card issuing bank server.
綜上所述,本發明提供一種數位皮夾中虛擬卡之管理方法,其係在使用者的行動裝置中安裝數位皮夾,數位皮夾中可下載多張對應實體卡片的虛擬卡,行動裝置於數位皮夾中輸入的所有資訊要傳送到發卡銀行伺服器都會透過交易管理平台,可整合多家發卡銀行的虛擬卡於同一數位皮夾中,發卡銀行伺服器總共會發送兩個密碼給行動裝置,分別是核卡作業前的動態密碼及下載卡片的下載驗證碼,多重保障以提高網路交易的安全性;若數位皮夾被移除又重新安裝時,原有的虛擬卡仍會以灰階圖案存在於數位皮夾中,使用者可輕易地重新下載虛擬卡恢復使用。In summary, the present invention provides a method for managing a virtual card in a digital wallet, which is to install a digital wallet in a user's mobile device, and a plurality of virtual cards corresponding to the physical card can be downloaded in the digital wallet, and the mobile device All the information entered in the digital wallet will be transmitted to the issuing bank server through the transaction management platform, which can integrate the virtual card of multiple issuing banks in the same number of wallets, and the issuing bank server will send two passwords to the action. The device is a dynamic password before the nuclear card operation and a download verification code for downloading the card, and multiple guarantees are used to improve the security of the network transaction; if the digital wallet is removed and reinstalled, the original virtual card will still be The grayscale pattern exists in the digital wallet, and the user can easily re-download the virtual card to resume use.
唯以上所述者,僅為本發明之較佳實施例而已,並非用來限定本發明實施之範圍。故即凡依本發明申請範圍所述之特徵及精神所為之均等變化或修飾,均應包括於本發明之申請專利範圍內。The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention. Therefore, any changes or modifications of the features and spirits of the present invention should be included in the scope of the present invention.
10‧‧‧行動裝置
102‧‧‧數位皮夾
12‧‧‧交易管理平台
14‧‧‧發卡銀行伺服器10‧‧‧Mobile devices
102‧‧‧Digital wallets
12‧‧‧Transaction Management Platform
14‧‧‧ Issuing Bank Server
第1圖為本發明數位皮夾中虛擬卡之管理方法所應用之系統架構之方塊圖。 1 is a block diagram of a system architecture applied to a method for managing a virtual card in a digital wallet of the present invention.
第2圖為本發明數位皮夾中虛擬卡之管理方法之流程圖。 2 is a flow chart of a method for managing a virtual card in a digital wallet of the present invention.
第3圖為第2圖中步驟S14之細部流程圖。 Fig. 3 is a detailed flow chart of step S14 in Fig. 2.
第4圖為數位皮夾經移除後重新安裝於同一行動裝置後重新申請虛擬卡之流程圖。 Figure 4 is a flow chart of re-applying a virtual card after the digital wallet is removed and reinstalled on the same mobile device.
第5圖為第4圖中步驟S30中使用者選擇重新註冊後之細部流程圖。 Fig. 5 is a detailed flow chart of the user selecting re-registration in step S30 in Fig. 4.
Claims (17)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| TW105124252A TWI599971B (en) | 2016-07-29 | 2016-07-29 | Digital wallet in the virtual card management |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| TW105124252A TWI599971B (en) | 2016-07-29 | 2016-07-29 | Digital wallet in the virtual card management |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| TWI599971B true TWI599971B (en) | 2017-09-21 |
| TW201804388A TW201804388A (en) | 2018-02-01 |
Family
ID=60719457
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| TW105124252A TWI599971B (en) | 2016-07-29 | 2016-07-29 | Digital wallet in the virtual card management |
Country Status (1)
| Country | Link |
|---|---|
| TW (1) | TWI599971B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11907931B2 (en) * | 2021-02-05 | 2024-02-20 | Shenzhen GOODIX Technology Co., Ltd. | Method and system for managing virtual electronic card, secure chip, terminal and storage medium |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11538019B1 (en) * | 2020-06-05 | 2022-12-27 | American Express Travel Related Services Company, Inc. | Zero-knowledge proof-based virtual cards |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020004783A1 (en) * | 1997-11-12 | 2002-01-10 | Cris T. Paltenghe | Virtual wallet system |
| US20100050233A1 (en) * | 2000-10-30 | 2010-02-25 | Raf Technology, Inc. | Verification engine for user authentication |
| TW201023067A (en) * | 2008-12-15 | 2010-06-16 | Alibaba Group Holding Ltd | Payment method, system and payment platform capable of improving payment safety by virtual card |
| TW201523315A (en) * | 2013-12-04 | 2015-06-16 | Taiwan Secom Co Ltd | Virtual-card authentication system and authentication device and computer program product thereof |
| US20160034890A1 (en) * | 2014-03-24 | 2016-02-04 | Cellum Innovacios es Szolgaltato Zrt. | Systems and methods for an issuer certified card |
| US20160104152A1 (en) * | 2014-10-10 | 2016-04-14 | Mastercard Asia Pacific Pte. Ltd. | Methods and systems for secure online payment |
| US20160162857A1 (en) * | 2014-07-23 | 2016-06-09 | Bank Of America Corporation | Mobile one-time card number generator for atm usage |
-
2016
- 2016-07-29 TW TW105124252A patent/TWI599971B/en active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20020004783A1 (en) * | 1997-11-12 | 2002-01-10 | Cris T. Paltenghe | Virtual wallet system |
| US20100050233A1 (en) * | 2000-10-30 | 2010-02-25 | Raf Technology, Inc. | Verification engine for user authentication |
| TW201023067A (en) * | 2008-12-15 | 2010-06-16 | Alibaba Group Holding Ltd | Payment method, system and payment platform capable of improving payment safety by virtual card |
| TW201523315A (en) * | 2013-12-04 | 2015-06-16 | Taiwan Secom Co Ltd | Virtual-card authentication system and authentication device and computer program product thereof |
| US20160034890A1 (en) * | 2014-03-24 | 2016-02-04 | Cellum Innovacios es Szolgaltato Zrt. | Systems and methods for an issuer certified card |
| US20160162857A1 (en) * | 2014-07-23 | 2016-06-09 | Bank Of America Corporation | Mobile one-time card number generator for atm usage |
| US20160104152A1 (en) * | 2014-10-10 | 2016-04-14 | Mastercard Asia Pacific Pte. Ltd. | Methods and systems for secure online payment |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US11907931B2 (en) * | 2021-02-05 | 2024-02-20 | Shenzhen GOODIX Technology Co., Ltd. | Method and system for managing virtual electronic card, secure chip, terminal and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| TW201804388A (en) | 2018-02-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11106476B2 (en) | Helper software developer kit for native device hybrid applications | |
| US10510061B2 (en) | System and method for capturing user inputs in electronic forms | |
| TW201732707A (en) | Payment method, device, and apparatus | |
| CN104680361A (en) | Enchashment method and system based on third-party platform | |
| US10311436B2 (en) | User authentication method and device for credentials back-up service to mobile devices | |
| WO2014134654A1 (en) | Systems and methods for facilitating authorisation of payment | |
| US20160162893A1 (en) | Open, on-device cardholder verification method for mobile devices | |
| EP3616111B1 (en) | System and method for generating access credentials | |
| CN106462848A (en) | Apparatus, system and method for efficiently servicing high-volume electronic transactions | |
| WO2011156884A1 (en) | Electronic payment system and method | |
| CN103944730A (en) | Data security interactive system | |
| CN103944908A (en) | Data updating method and system | |
| KR101002010B1 (en) | Payment system and method using smart card | |
| TWI599971B (en) | Digital wallet in the virtual card management | |
| CN103325036A (en) | Mobile devices for secure transactions over unsecured networks | |
| TW201804389A (en) | Password resetting system for electronic transaction and method thereof using a third party platform server and a rigorous verification process to increase the security of password resetting for preventing the virtual card from malicious use | |
| CN103944907A (en) | Data updating method and system | |
| CN103944910A (en) | Data security interactive method | |
| KR100691252B1 (en) | Credit Card Payment Control Method Using Wireless Network | |
| TWI623897B (en) | Mobile device remote one-time verification payment method | |
| TWI653588B (en) | Method of cross-platform payment in mobile devices | |
| KR20180010228A (en) | Computerized method and system of credit loan application and issuance | |
| US12254461B2 (en) | Dynamic virtual transaction card management system | |
| TWI642006B (en) | Financial card cloud action payment method | |
| TWI642009B (en) | System and method for updating digital wallet data |