[go: up one dir, main page]

TWI860076B - Coded credit card information security and verification system and method using the same - Google Patents

Coded credit card information security and verification system and method using the same Download PDF

Info

Publication number
TWI860076B
TWI860076B TW112133392A TW112133392A TWI860076B TW I860076 B TWI860076 B TW I860076B TW 112133392 A TW112133392 A TW 112133392A TW 112133392 A TW112133392 A TW 112133392A TW I860076 B TWI860076 B TW I860076B
Authority
TW
Taiwan
Prior art keywords
credit card
user
card information
encrypted
module
Prior art date
Application number
TW112133392A
Other languages
Chinese (zh)
Other versions
TW202512052A (en
Inventor
曾于瑄
Original Assignee
合作金庫商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 合作金庫商業銀行股份有限公司 filed Critical 合作金庫商業銀行股份有限公司
Priority to TW112133392A priority Critical patent/TWI860076B/en
Application granted granted Critical
Publication of TWI860076B publication Critical patent/TWI860076B/en
Publication of TW202512052A publication Critical patent/TW202512052A/en

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)

Abstract

A coded credit card information security and verification system includes a processor and an input/output device. The processor includes a user database, a credit card application module, a credit card information generation module, a credit card information encryption module, an encrypted information transmission module and a credit card decryption module. The credit card application module allows a staff to assist a user to apply for a confidential credit card. The credit card information generation module generates an initial credit card information. The credit card information encryption module encrypts the initial credit card information to generate an encrypted credit card information. The encrypted information transmission module provides the encrypted credit card information to the staff for card issuance. The credit card decryption module provides the user with decrypting the encrypted credit card information to obtain the initial credit card information. In addition, a coded credit card information security and verification method is also disclosed in this disclosure.

Description

編碼式信用卡資訊保密與驗證系統及其方法Encoded credit card information confidentiality and verification system and method

本揭露有關一種編碼式信用卡資訊系統及其方法,特別是有關於一種編碼式信用卡資訊保密與驗證系統及其方法。The present disclosure relates to a coded credit card information system and method thereof, and more particularly to a coded credit card information confidentiality and verification system and method thereof.

近年來,使用信用卡進行網路購物的銷售模式愈發擴張。當用戶使用信用卡進行網路購物時,必須輸入信用卡卡號、到期日、安全碼等資訊。然而,這些資訊容易被不法分子竊取,造成信用卡盜用等問題。In recent years, the sales model of using credit cards for online shopping has been expanding. When users use credit cards to shop online, they must enter information such as credit card number, expiration date, security code, etc. However, this information can be easily stolen by criminals, resulting in problems such as credit card theft.

有鑑於此,需要一種可以將信用卡卡號、有效日期、安全碼等資訊進行加密來提高信用卡安全性及防篡改性的系統及其方法。In view of this, there is a need for a system and method that can encrypt information such as credit card numbers, expiration dates, and security codes to improve credit card security and tamper resistance.

根據本揭露的一些實施例,一種編碼式信用卡資訊保密與驗證系統提供給用戶申請保密信用卡,並由行員進行申請作業及發卡作業,包括處理器及輸入/輸出裝置。處理器包括用戶資料庫、信用卡申請模組、信用卡資訊產生模組、信用卡資訊加密模組、加密資訊傳輸模組及信用卡解密模組。用戶資料庫配置以儲存用戶的用戶資料。信用卡申請模組訊號連接用戶資料庫,配置以提供給行員輸入該用戶的用戶資料以申請保密信用卡。信用卡資訊產生模組訊號連接信用卡申請模組及用戶資料庫,配置以產生初始信用卡資訊,並與用戶資料配對,以產生信用卡用戶配對訊息。信用卡資訊加密模組訊號連接信用卡資訊產生模組及用戶資料庫,配置以將初始信用卡資訊進行加密以產生加密信用卡資訊,並與用戶資料配對,以產生加密信用卡配對訊息。加密資訊傳輸模組訊號連接信用卡資訊加密模組,配置以將加密信用卡配對訊息提供給行員,以進行發卡作業。信用卡解密模組訊號連接用戶資料庫,配置以提供給用戶取得保密信用卡後進行解密功能,以獲得初始信用卡資訊。輸入/輸出裝置耦接於處理器,配置以提供給行員操作以控制處理器。According to some embodiments of the present disclosure, a coded credit card information confidentiality and verification system is provided for users to apply for confidential credit cards, and bank staff perform application operations and card issuance operations, including a processor and an input/output device. The processor includes a user database, a credit card application module, a credit card information generation module, a credit card information encryption module, an encrypted information transmission module, and a credit card decryption module. The user database is configured to store the user's user data. The credit card application module signal is connected to the user database and is configured to provide the bank staff with the user data to enter to apply for a confidential credit card. The credit card information generation module signal is connected to the credit card application module and the user database, and is configured to generate initial credit card information and match it with the user data to generate a credit card user matching message. The credit card information encryption module is signal-connected to the credit card information generation module and the user database, and is configured to encrypt the initial credit card information to generate encrypted credit card information, and match it with the user data to generate encrypted credit card matching information. The encrypted information transmission module is signal-connected to the credit card information encryption module, and is configured to provide the encrypted credit card matching information to the bank staff for card issuance. The credit card decryption module is signal-connected to the user database, and is configured to provide the user with a decryption function after obtaining the confidential credit card to obtain the initial credit card information. The input/output device is coupled to the processor, and is configured to provide the bank staff with an operation to control the processor.

根據本揭露的一些實施例,一種編碼式信用卡資訊保密與驗證方法提供給用戶申請保密信用卡,並由行員進行申請作業及發卡作業,包括以下步驟。輸入用戶的用戶資料以申請保密信用卡。產生初始信用卡資訊,並將初始信用卡資訊與用戶資料配對。對初始信用卡資訊進行加密,以產生加密初始信用卡資訊,並將加密信用卡資訊與用戶資料配對。根據加密信用卡資訊印製保密信用卡。將保密信用卡發卡給用戶。According to some embodiments of the present disclosure, a coded credit card information confidentiality and verification method is provided for a user to apply for a confidential credit card, and a bank employee performs the application operation and the card issuance operation, including the following steps. Enter the user's user information to apply for a confidential credit card. Generate initial credit card information, and match the initial credit card information with the user information. Encrypt the initial credit card information to generate encrypted initial credit card information, and match the encrypted credit card information with the user information. Print a confidential credit card based on the encrypted credit card information. Issue the confidential credit card to the user.

以下將以圖式及詳細敘述清楚說明本揭露的精神,任何所屬技術領域中具有通常知識者在瞭解本揭露的實施例後,當可由本揭露所教示之技術,加以改變及修飾,其並不脫離本揭露的精神與範圍。The following will clearly illustrate the spirit of the present disclosure with drawings and detailed descriptions. After understanding the embodiments of the present disclosure, any person having ordinary knowledge in the art can make changes and modifications based on the techniques taught by the present disclosure without departing from the spirit and scope of the present disclosure.

本揭露中的用語只用於描述特定實施例,而非用於限制本揭露。單數形式如「一」、「這」、「此」、「本」以及「該」,如本揭露所用,同樣也包含複數形式。The terms used in this disclosure are only used to describe specific embodiments and are not intended to limit the disclosure. Singular forms such as "a", "this", "here", "this" and "the" as used in this disclosure also include plural forms.

關於本文中所使用之「耦接」或「訊號連接」,均可指二或多個模組或裝置相互直接作實體接觸,或是相互間接作實體接觸,亦可指二或多個模組或裝置相互操作或動作。As used herein, “coupling” or “signal connection” may refer to direct physical contact or indirect physical contact between two or more modules or devices, or mutual operation or action between two or more modules or devices.

關於本文中所使用之「包含」、「包括」、「具有」等用語,均為開放性的用語,即意指包含但不限於。The terms "include", "including", "have", etc. used in this document are open terms, meaning including but not limited to.

為了將信用卡卡號、有效日期、安全碼等信用卡資訊進行加密,來提高信用卡的安全性及防篡改性,本揭露提供一種編碼式信用卡資訊保密與驗證系統及其方法,以提供給用戶申請保密信用卡,並由銀行的行員進行申請作業及發卡作業。In order to encrypt credit card information such as credit card number, expiration date, security code, etc. to improve the security and tamper-proofness of the credit card, the present disclosure provides a coded credit card information confidentiality and verification system and method thereof, which is provided to users to apply for a confidential credit card, and bank staff perform the application and card issuance operations.

請參閱第1圖,第1圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證系統100的功能方塊示意圖。本揭露的編碼式信用卡資訊保密與驗證系統100包括輸入/輸出裝置102及處理器104。附加一提的是,輸入/輸出裝置102例如包括桌上型電腦、筆記型電腦、滑鼠、生物特徵擷取裝置(例如包括攝影裝置、麥克風、指紋採集儀及靜脈特徵採集裝置)或其組合,提供給銀行的行員操作以控制處理器104。Please refer to FIG. 1, which is a functional block diagram of a coded credit card information confidentiality and verification system 100 according to some embodiments of the present disclosure. The coded credit card information confidentiality and verification system 100 disclosed in the present disclosure includes an input/output device 102 and a processor 104. In addition, the input/output device 102 includes, for example, a desktop computer, a laptop, a mouse, a biometric feature capture device (for example, including a camera, a microphone, a fingerprint collector, and a venous feature capture device) or a combination thereof, which is provided to bank staff to operate to control the processor 104.

處理器104包括用戶資料庫110、信用卡編碼加密模組120及信用卡認證模組130。信用卡編碼加密模組120訊號連接信用卡認證模組130,且用戶資料庫110與信用卡編碼加密模組120及信用卡認證模組130訊號連接。用戶資料庫110配置以儲存申請信用卡的用戶的複數個用戶資料。信用卡編碼加密模組120配置以提供給行員輸入用戶的複數個用戶資料,以協助用戶申請保密信用卡,並將用戶的信用卡資訊進行加密,以將加密後的實體信用卡發卡給用戶。當用戶收到實體信用卡並開卡後,信用卡認證模組130配置以提供給用戶解密加密後的信用卡資訊,以獲得未加密的信用卡資訊。The processor 104 includes a user database 110, a credit card encoding and encryption module 120, and a credit card authentication module 130. The credit card encoding and encryption module 120 is signal-connected to the credit card authentication module 130, and the user database 110 is signal-connected to the credit card encoding and encryption module 120 and the credit card authentication module 130. The user database 110 is configured to store a plurality of user data of users who apply for credit cards. The credit card encoding and encryption module 120 is configured to provide bank staff with input of a plurality of user data of users to assist users in applying for confidential credit cards, and to encrypt the user's credit card information so as to issue the encrypted physical credit card to the user. When the user receives the physical credit card and activates the card, the credit card authentication module 130 is configured to provide the user with decrypted encrypted credit card information to obtain unencrypted credit card information.

以下分段詳細說明用戶資料庫110、信用卡編碼加密模組120及信用卡認證模組130的技術特徵。The following sections describe in detail the technical features of the user database 110, the credit card encoding encryption module 120, and the credit card authentication module 130.

信用卡編碼加密模組120包括信用卡申請模組122、信用卡資訊產生模組124、信用卡資訊加密模組126及加密資訊傳輸模組128。The credit card encoding encryption module 120 includes a credit card application module 122 , a credit card information generation module 124 , a credit card information encryption module 126 and an encrypted information transmission module 128 .

信用卡申請模組122訊號連接用戶資料庫110,且與輸入/輸出裝置102耦接,配置以提供給行員透過輸入/輸出裝置102輸入申請信用卡的用戶的複數個用戶資料。所述用戶資料包括用戶的姓名、生日、身分證字號、電話號碼、電子郵件地址、財力證明、消費紀錄或其組合。The credit card application module 122 is signal-connected to the user database 110 and coupled to the input/output device 102, and is configured to provide a plurality of user information of the user who applies for a credit card to the bank staff through the input/output device 102. The user information includes the user's name, birthday, ID number, phone number, email address, financial proof, consumption record or a combination thereof.

在輸入/輸出裝置102包括攝影裝置的一些實施例中,用戶的面部特徵資料於申請信用卡時,透過攝影裝置擷取,因此,用戶資料包括面部特徵資料。在輸入/輸出裝置102包括指紋採集儀的一些實施例中,用戶的指紋資料於申請信用卡時,透過指紋採集儀擷取,因此,用戶資料包括指紋資料。在輸入/輸出裝置102包括麥克風的一些實施例中,用戶的聲紋資料於申請信用卡時,透過麥克風擷取,因此,用戶資料包括聲紋資料。在輸入/輸出裝置102包括靜脈特徵採集裝置的一些實施例中,用戶的靜脈特徵資料於申請信用卡時,透過靜脈特徵採集裝置擷取,因此,用戶資料包括靜脈特徵資料。可以理解的是,用戶的面部特徵資料、指紋資料、聲紋資料及/或靜脈特徵資料也可以由用戶自己上傳至網路銀行中的個人帳戶中,並由核心帳務系統(圖未示)接收後,儲存於用戶資料庫110。雖然第1圖中未繪示核心帳務系統,但編碼式信用卡資訊保密與驗證系統100為核心帳務系統的子系統的其中一者。In some embodiments where the input/output device 102 includes a camera, the user's facial feature data is captured by the camera when applying for a credit card, and thus the user data includes the facial feature data. In some embodiments where the input/output device 102 includes a fingerprint collector, the user's fingerprint data is captured by the fingerprint collector when applying for a credit card, and thus the user data includes the fingerprint data. In some embodiments where the input/output device 102 includes a microphone, the user's voice print data is captured by the microphone when applying for a credit card, and thus the user data includes the voice print data. In some embodiments where the input/output device 102 includes a venous feature collection device, the user's venous feature data is captured by the venous feature collection device when applying for a credit card, and therefore, the user data includes the venous feature data. It is understandable that the user's facial feature data, fingerprint data, voice print data and/or venous feature data can also be uploaded by the user himself to a personal account in an online bank, and received by a core account system (not shown) and stored in the user database 110. Although the core account system is not shown in FIG. 1, the coded credit card information confidentiality and verification system 100 is one of the subsystems of the core account system.

信用卡資訊產生模組124訊號連接信用卡申請模組122及用戶資料庫110,配置以產生初始信用卡資訊,並與用戶資料配對。並且,信用卡資訊產生模組124將初始信用卡資訊與用戶資料配對後,產生信用卡用戶配對訊息,並儲存於用戶資料庫110中。另外,初始信用卡資訊包括初始信用卡卡號、初始安全碼、初始有效日期或其組合。The credit card information generation module 124 is signal-connected to the credit card application module 122 and the user database 110, and is configured to generate initial credit card information and match it with the user information. After matching the initial credit card information with the user information, the credit card information generation module 124 generates a credit card user matching message and stores it in the user database 110. In addition, the initial credit card information includes an initial credit card number, an initial security code, an initial expiration date, or a combination thereof.

信用卡資訊加密模組126訊號連接信用卡資訊產生模組124及用戶資料庫110,配置以將初始信用卡資訊進行加密,以產生加密信用卡資訊。並且,信用卡資訊加密模組126會將加密信用卡資訊與用戶資料配對,產生加密信用卡配對訊息,並儲存於用戶資料庫110中。The credit card information encryption module 126 is signal-connected to the credit card information generation module 124 and the user database 110, and is configured to encrypt the initial credit card information to generate encrypted credit card information. In addition, the credit card information encryption module 126 will match the encrypted credit card information with the user information to generate encrypted credit card matching information and store it in the user database 110.

在一些實施例中,初始信用卡資訊是透過加密演算法進行加密,例如透過公鑰及私鑰進行加密。在透過加密演算法進行加密的一些實施例中,信用卡資訊加密模組126會透過銀行私鑰將初始信用卡資訊加密成為密文信用卡資訊,然後,信用卡資訊加密模組126再透過用戶公鑰將密文信用卡資訊加密成為加密信用卡資訊。另外,用戶公鑰例如根據用戶資料產生。In some embodiments, the initial credit card information is encrypted by an encryption algorithm, such as by a public key and a private key. In some embodiments where encryption is performed by an encryption algorithm, the credit card information encryption module 126 encrypts the initial credit card information into ciphertext credit card information by using a bank private key, and then the credit card information encryption module 126 encrypts the ciphertext credit card information into encrypted credit card information by using a user public key. In addition, the user public key is generated, for example, based on user information.

例如,信用卡資訊產生模組124產生的初始信用卡卡號為「7021 6854 4419」,信用卡資訊加密模組126透過銀行私鑰將初始信用卡卡號加密成密文信用卡資訊「9144 4586 1207」,再透過用戶公鑰將密文信用卡資訊加密成為加密信用卡資訊「9242 9076 6631」。For example, the initial credit card number generated by the credit card information generation module 124 is "7021 6854 4419", the credit card information encryption module 126 encrypts the initial credit card number into ciphertext credit card information "9144 4586 1207" using the bank's private key, and then encrypts the ciphertext credit card information into encrypted credit card information "9242 9076 6631" using the user's public key.

進一步地,請參閱第2A圖及第2B圖,第2A圖是根據本揭露的一些實施例的實體信用卡的正面200A及背面200A’的示例示意圖;第2B圖是根據本揭露的一些實施例的實體信用卡的正面200B及背面200B’的示例示意圖。Furthermore, please refer to Figures 2A and 2B, Figure 2A is an example schematic diagram of the front 200A and the back 200A' of a physical credit card according to some embodiments of the present disclosure; Figure 2B is an example schematic diagram of the front 200B and the back 200B' of a physical credit card according to some embodiments of the present disclosure.

如第2A圖所示,實體信用卡的正面200A包括晶片202,晶片202配置以儲存用戶資料、信用卡資訊及交易資料。另外,實體信用卡的背面200A’包括磁條204,磁條204配置以儲存用戶資料、信用卡資訊及交易資料。當用戶透過實體信用卡進行交易時,可以刷卡機便可以透過晶片202、磁條204或其組合進行資料的讀取及寫入。刷卡機例如為手工刷卡機、磁條刷卡機、晶片刷卡機或感應刷卡機。As shown in FIG. 2A , the front side 200A of the physical credit card includes a chip 202, and the chip 202 is configured to store user data, credit card information, and transaction data. In addition, the back side 200A′ of the physical credit card includes a magnetic stripe 204, and the magnetic stripe 204 is configured to store user data, credit card information, and transaction data. When a user conducts a transaction using a physical credit card, a card swiping machine can read and write data through the chip 202, the magnetic stripe 204, or a combination thereof. The card swiping machine is, for example, a manual card swiping machine, a magnetic stripe card swiping machine, a chip card swiping machine, or an inductive card swiping machine.

實體信用卡的背面200A’更包括初始信用卡資訊210A,初始信用卡資訊210A包括初始信用卡卡號212A、初始安全碼214A、初始有效日期216A或其組合。而信用卡資訊加密模組126即是將初始信用卡資訊210A中的初始信用卡卡號212A、初始安全碼214A及/或初始有效日期216A進行加密。The back side 200A' of the physical credit card further includes initial credit card information 210A, which includes initial credit card number 212A, initial security code 214A, initial expiration date 216A or a combination thereof. The credit card information encryption module 126 encrypts the initial credit card number 212A, initial security code 214A and/or initial expiration date 216A in the initial credit card information 210A.

接著,如第2B圖所示,實體信用卡的正面200B包括晶片202,且實體信用卡的背面200B’包括磁條204。並且,由於晶片202及磁條204皆是配置以儲存用戶資料、信用卡資訊及交易資料,且於外觀上不容易被盜用,因此,加密前後,晶片202及磁條204並不會有改變。Next, as shown in FIG. 2B , the front side 200B of the physical credit card includes a chip 202, and the back side 200B′ of the physical credit card includes a magnetic stripe 204. Furthermore, since the chip 202 and the magnetic stripe 204 are both configured to store user data, credit card information, and transaction data, and are not easily stolen in appearance, the chip 202 and the magnetic stripe 204 will not change before and after encryption.

實體信用卡的背面200B’更包括加密信用卡資訊210B,加密信用卡資訊210B包括加密信用卡卡號212B、加密安全碼214B、加密有效日期216B或其組合。而加密信用卡資訊210B便是透過信用卡資訊加密模組126進行加密後產生。值得一提的是,雖然第2A圖及第2B圖中繪示了初始信用卡卡號212A、初始安全碼214A及初始有效日期216A皆被加密成為了加密信用卡卡號212B、加密安全碼214B、加密有效日期216B,但也可以僅加密其中一者或其中兩者,例如只有初始信用卡卡號212A被加密,或者初始信用卡卡號212A及初始安全碼214A被加密,本揭露並不以此為限。The back side 200B' of the physical credit card further includes encrypted credit card information 210B, and the encrypted credit card information 210B includes an encrypted credit card number 212B, an encrypted security code 214B, an encrypted expiration date 216B or a combination thereof. The encrypted credit card information 210B is generated after being encrypted by the credit card information encryption module 126. It is worth mentioning that although FIG. 2A and FIG. 2B show that the initial credit card number 212A, the initial security code 214A and the initial expiration date 216A are all encrypted into the encrypted credit card number 212B, the encrypted security code 214B, and the encrypted expiration date 216B, only one or two of them may be encrypted, for example, only the initial credit card number 212A is encrypted, or the initial credit card number 212A and the initial security code 214A are encrypted, and the present disclosure is not limited thereto.

請回到第1圖,加密資訊傳輸模組128訊號連接信用卡資訊加密模組126,並與輸入/輸出裝置102耦接,配置以將加密信用卡配對訊息傳輸至輸入/輸出裝置102,以供行員進行製作實體信用卡及發卡作業。Please go back to Figure 1. The encrypted information transmission module 128 is signal-connected to the credit card information encryption module 126 and coupled to the input/output device 102. It is configured to transmit the encrypted credit card pairing information to the input/output device 102 for bank employees to produce physical credit cards and issue cards.

值得一提的是,實體信用卡可供用戶進行實體交易(即搭配店家的刷卡機進行實體信用卡交易),但不可以用於線上的網路交易。由於印製於實體信用卡上的信用卡資訊為加密信用卡資訊,因此,即使店員或有心人士側錄或記憶實體信用卡上的信用卡資訊,也無法進行信用卡交易(例如透過線上的網路交易)。如此一來,可以避免信用卡遭到盜刷。It is worth mentioning that physical credit cards can be used by users for physical transactions (i.e., physical credit card transactions with the store's card swipe machine), but cannot be used for online transactions. Since the credit card information printed on the physical credit card is encrypted, even if the store clerk or someone with bad intentions records or memorizes the credit card information on the physical credit card, credit card transactions cannot be performed (such as online transactions). In this way, credit cards can be prevented from being stolen.

進一步地,本揭露的編碼式信用卡資訊保密與驗證系統100更可以提供給用戶認證實體信用卡後,獲得初始信用卡資訊。據此,信用卡認證模組130包括用戶登入模組132、用戶驗證模組134、信用卡解密模組136及信用卡資訊顯示模組138。值得一提的是,信用卡認證模組130須搭配電子裝置150使用,以供用戶完成用戶及信用卡的認證,以獲得初始信用卡資訊。另外,電子裝置150包括智慧型手機、平板電腦、讀卡機、攝影裝置、麥克風或其組合。Furthermore, the disclosed coded credit card information confidentiality and verification system 100 can provide users with initial credit card information after verifying the physical credit card. Accordingly, the credit card verification module 130 includes a user login module 132, a user verification module 134, a credit card decryption module 136, and a credit card information display module 138. It is worth mentioning that the credit card verification module 130 must be used in conjunction with an electronic device 150 so that the user can complete the verification of the user and the credit card to obtain the initial credit card information. In addition, the electronic device 150 includes a smart phone, a tablet computer, a card reader, a camera, a microphone, or a combination thereof.

用戶登入模組132訊號連接用戶資料庫110,配置以提供給用戶輸入個人帳戶資料登入網路銀行的個人帳戶,並於用戶登入成功後產生用戶登入訊息,其中網路銀行例如為線上網路銀行或網路銀行應用程式(Application,APP)。個人帳戶資料包括帳號、密碼、使用者代碼、身分證字號、生日、驗證碼或其組合。另外,驗證碼是由用戶登入模組132產生,並透過系統訊息、簡訊或電子郵件發送至用戶的電子裝置150,且該驗證碼具有時效性(例如60、100或300秒內),而用戶須於時效內透過電子裝置150輸入該驗證碼,以進行電子裝置150的驗證及登入。並且,驗證碼例如為4至8碼的數字、英文字母或其組合。The user login module 132 is signal-connected to the user database 110 and configured to provide the user with personal account information to log into the personal account of the online bank, and generate a user login message after the user successfully logs in, wherein the online bank is, for example, an online bank or an online bank application (Application, APP). The personal account information includes an account number, a password, a user ID, an ID number, a birthday, a verification code or a combination thereof. In addition, the verification code is generated by the user login module 132 and sent to the user's electronic device 150 via a system message, SMS or email, and the verification code has a time limit (e.g., within 60, 100 or 300 seconds), and the user must enter the verification code through the electronic device 150 within the time limit to verify and log in to the electronic device 150. In addition, the verification code is, for example, 4 to 8 digits, English letters or a combination thereof.

用戶驗證模組134訊號連接用戶登入模組132及用戶資料庫110,配置以接收用戶登入訊息後,進行用戶驗證,例如透過身分驗證、生物特徵驗證或其組合進行用戶驗證。並且,於用戶驗證成功後,用戶驗證模組134產生用戶確認訊息。在一些實施例中,用戶登入時,可以透過身分驗證或生物特徵驗證。在另一些實施例中,用戶登入時,需先經過身分驗證,在經過生物特徵驗證;或者,先經過生物特徵驗證在經過身分驗證。進一步地,所述身分驗證例如透過帳號、密碼、使用者代碼、身分證字號、生日或其組合進行驗證。所述生物特徵驗證例如透過用戶的面部特徵、指紋、聲紋或靜脈特徵進行驗證,並且,生物特徵驗證可以透過智慧型手機或平板電腦的相機功能、指紋辨識功能或錄音功能、攝影裝置或麥克風來達成驗證。此外,生物特徵驗證也可以透過智慧型手機或平板電腦搭配智慧型手錶來進行用戶的靜脈特徵的驗證。The user verification module 134 is signal-connected to the user login module 132 and the user database 110, and is configured to perform user verification after receiving the user login message, such as through identity verification, biometric verification, or a combination thereof. Furthermore, after the user verification is successful, the user verification module 134 generates a user confirmation message. In some embodiments, when a user logs in, they can verify their identity or biometrics. In other embodiments, when a user logs in, they must first undergo identity verification and then biometric verification; or, first undergo biometric verification and then identity verification. Furthermore, the identity verification is performed, for example, through an account number, password, user code, ID number, birthday, or a combination thereof. The biometric verification is performed, for example, through the user's facial features, fingerprints, voiceprints or venous features, and the biometric verification can be achieved through the camera function, fingerprint recognition function or recording function of the smart phone or tablet, a camera device or a microphone. In addition, the biometric verification can also be performed through the smart phone or tablet with a smart watch to verify the user's venous features.

在電子裝置150包括讀卡機的一些實施例中,用戶可以實體信用卡搭配讀卡機及電腦(例如桌上型電腦或筆記型電腦)進行用戶驗證。進一步地說明,用戶可以登入個人帳戶後,透過實體信用卡搭配讀卡機及電腦獲得用戶的個人帳戶資料及加密信用卡資訊,即用戶無須一一輸入個人帳戶資料及加密信用卡資訊。然後,再透過電腦的相機或麥克風來進行生物驗證,以確認當前使用者為實體信用卡的用戶本人。In some embodiments where the electronic device 150 includes a card reader, the user can use a physical credit card with a card reader and a computer (e.g., a desktop computer or a laptop) to perform user authentication. To further illustrate, after the user logs into a personal account, the user's personal account information and encrypted credit card information can be obtained through the physical credit card with a card reader and a computer, i.e., the user does not need to enter the personal account information and encrypted credit card information one by one. Then, the computer's camera or microphone is used to perform biometric authentication to confirm that the current user is the user of the physical credit card.

信用卡解密模組136訊號連接用戶驗證模組134及用戶資料庫110,配置以接收用戶確認訊息後,提供給用戶進行解密功能,以解密用戶的印製在實體信用卡上的加密信用卡資訊。當信用卡解密模組136解密後,會產生解密訊息。所述解密訊息包括初始信用卡資訊,即初始信用卡卡號、初始安全碼、初始有效日期或其組合。The credit card decryption module 136 is signal-connected to the user verification module 134 and the user database 110, and is configured to receive the user's confirmation message and then provide the user with a decryption function to decrypt the encrypted credit card information printed on the user's physical credit card. After the credit card decryption module 136 decrypts, a decryption message is generated. The decryption message includes the initial credit card information, i.e., the initial credit card number, the initial security code, the initial expiration date, or a combination thereof.

在一些實施例中,用戶開啟解密功能後,會開啟用戶的電子裝置150的圖像辨識掃描功能,用戶須將電子裝置150的相機對準實體信用卡的背面(印製有的加密信用卡資訊的一面,例如第2B圖所示實體信用卡的背面200B’),以讓信用卡解密模組136進行圖像辨識(模式辨識),以進一步地透過實體信用卡的背面的排版及加密信用卡資訊進行解密。在一些實施例中,用戶透過用戶將電子裝置150的相機對準實體信用卡後,信用卡解密模組136便會進行圖像辨識及解密,而不須拍攝實體信用卡的影像;並且,於辨識及解密後,彈跳出「已解密成功」的訊息,並顯示於用戶的電子裝置150上。而在另一些實施例中,用戶透過用戶將電子裝置150的相機對準實體信用卡後,須拍攝實體信用卡的影像並上傳至信用卡解密模組136中,信用卡解密模組136才會進行圖像辨識及解密。在一些實施例中,信用卡解密模組136是透過光學文字辨識(Optical Character Recognition,OCR)技術來進行圖像辨識(模式辨識)。In some embodiments, after the user turns on the decryption function, the image recognition scanning function of the user's electronic device 150 will be turned on. The user must aim the camera of the electronic device 150 at the back of the physical credit card (the side with the encrypted credit card information printed on it, such as the back 200B' of the physical credit card shown in Figure 2B) to allow the credit card decryption module 136 to perform image recognition (pattern recognition) to further decrypt the layout and encrypted credit card information on the back of the physical credit card. In some embodiments, after the user aligns the camera of the electronic device 150 with the physical credit card, the credit card decryption module 136 will perform image recognition and decryption without taking a picture of the physical credit card; and after recognition and decryption, a message "decryption successful" pops up and is displayed on the user's electronic device 150. In other embodiments, after the user aligns the camera of the electronic device 150 with the physical credit card, the user needs to take a picture of the physical credit card and upload it to the credit card decryption module 136, and the credit card decryption module 136 will perform image recognition and decryption. In some embodiments, the credit card decryption module 136 performs image recognition (pattern recognition) through optical character recognition (OCR) technology.

如前所述,在透過加密演算法(公鑰及私鑰)進行加密的一些實施例中,信用卡解密模組136亦是透過加密演算法(公鑰及私鑰)進行解密。信用卡解密模組136先透過用戶私鑰將加密信用卡資訊初步解密為密文信用卡資訊,然後,信用卡解密模組136再透過銀行公鑰將密文信用卡資訊解密為初始信用卡資訊。As mentioned above, in some embodiments where encryption is performed using an encryption algorithm (public key and private key), the credit card decryption module 136 also performs decryption using an encryption algorithm (public key and private key). The credit card decryption module 136 first decrypts the encrypted credit card information into ciphertext credit card information using the user's private key, and then the credit card decryption module 136 decrypts the ciphertext credit card information into the original credit card information using the bank's public key.

信用卡資訊顯示模組138訊號連接信用卡解密模組136,配置以將解密訊息顯示於用戶的電子裝置150的顯示螢幕上,以供用戶確認。另外,用戶可以將解密訊息儲存於電子裝置150(例如透過截圖或儲存解密訊息)或個人帳戶(例如儲存儲存解密訊息)中,以便後續有需要時查找。The credit card information display module 138 is signal-connected to the credit card decryption module 136 and is configured to display the decrypted information on the display screen of the user's electronic device 150 for the user to confirm. In addition, the user can store the decrypted information in the electronic device 150 (e.g., by taking a screenshot or saving the decrypted information) or in a personal account (e.g., saving the decrypted information) for subsequent retrieval when necessary.

此外,本揭露的編碼式信用卡資訊保密與驗證系統100的信用卡資訊顯示模組138更搭配擴增實境(Augmented Reality,AR)技術,以讓用戶搭配擴增實境(AR)眼鏡時,可以看見解密訊息顯示於用戶所在的場景中,以增強用戶的使用體驗。In addition, the credit card information display module 138 of the coded credit card information confidentiality and verification system 100 disclosed herein is further equipped with augmented reality (AR) technology, so that when the user wears augmented reality (AR) glasses, the user can see the decrypted information displayed in the scene where the user is located, thereby enhancing the user's usage experience.

在一些實施例中,本揭露的編碼式信用卡資訊保密與驗證系統100會串接至收付款應用程式160,以使用戶可以透過保密信用卡綁定收付款應用程式160進行交易。在此實施例中,本揭露的編碼式信用卡資訊保密與驗證系統100更包括信用卡交易確認模組140。信用卡交易確認模組140訊號連接用戶資料庫110及信用卡解密模組136,配置以確認保密信用卡的交易資料。並且,於確認交易資料後,信用卡交易確認模組140會將交易資料儲存於用戶資料庫110中。In some embodiments, the disclosed coded credit card information confidentiality and verification system 100 is connected to the payment application 160, so that the user can conduct transactions by binding the confidential credit card to the payment application 160. In this embodiment, the disclosed coded credit card information confidentiality and verification system 100 further includes a credit card transaction confirmation module 140. The credit card transaction confirmation module 140 is signal-connected to the user database 110 and the credit card decryption module 136, and is configured to confirm the transaction data of the confidential credit card. In addition, after confirming the transaction data, the credit card transaction confirmation module 140 stores the transaction data in the user database 110.

在透過實體信用卡來進行交易的一些實施例中,用戶直接使用實體信用卡進行交易。於交易成功後,信用卡交易確認模組140會根據實體信用卡的晶片、磁條或其組合上的用戶資料紀錄該交易資料,並發送系統訊息、簡訊、電子郵件或其組合至用戶的電子裝置150,以提醒用戶該筆交易的執行。In some embodiments of transactions conducted by physical credit cards, users directly use physical credit cards to conduct transactions. After the transaction is successful, the credit card transaction confirmation module 140 records the transaction data according to the user data on the chip, magnetic stripe or a combination thereof of the physical credit card, and sends a system message, SMS, email or a combination thereof to the user's electronic device 150 to remind the user of the execution of the transaction.

在透過解密訊息(即初始信用卡訊息)或加密信用卡資訊來進行綁定收付款應用程式160的一些實施例中,用戶直接進入收付款應用程式160的綁定信用卡功能中,輸入解密訊息或加密信用卡訊息。接著,收付款應用程式160便會傳送驗證碼至用戶的電子裝置150中。用戶收到驗證碼後,於收付款應用程式160中輸入驗證碼,並驗證成功後,即綁定成功。當用戶於收付款應用程式160中透過解密訊息或加密信用卡訊息的保密信用卡進行交易時,信用卡交易確認模組140會根據解密訊息(或加密信用卡資訊)及用戶資料紀錄該交易,並發送系統訊息、簡訊、電子郵件或其組合至用戶的電子裝置150,以提醒用戶該筆交易的執行。In some embodiments of binding the payment application 160 by decrypting the information (i.e., the initial credit card information) or encrypting the credit card information, the user directly enters the credit card binding function of the payment application 160 and enters the decrypted information or the encrypted credit card information. Then, the payment application 160 will send a verification code to the user's electronic device 150. After receiving the verification code, the user enters the verification code in the payment application 160, and after verification is successful, the binding is successful. When a user conducts a transaction in the payment application 160 using a secure credit card with decrypted messages or encrypted credit card information, the credit card transaction confirmation module 140 will record the transaction based on the decrypted message (or encrypted credit card information) and user information, and send a system message, SMS, email or a combination thereof to the user's electronic device 150 to remind the user of the execution of the transaction.

接著,請參閱第3圖,第3圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證方法的流程圖。編碼式信用卡資訊保密與驗證流程300是產生加密信用卡資訊的流程。Next, please refer to Figure 3, which is a flow chart of a method for encrypting and verifying credit card information according to some embodiments of the present disclosure. The encrypting and verifying credit card information process 300 is a process for generating encrypted credit card information.

於步驟S301中,用戶透過線上或臨櫃申請保密信用卡。申請時,用戶須提供用戶資料。接著,於步驟S303中,產生初始信用卡資訊,並將產生初始信用卡資訊與用戶資料配對,並儲存於用戶資料庫110中。In step S301, the user applies for a confidential credit card online or in person. When applying, the user is required to provide user information. Then, in step S303, initial credit card information is generated, and the generated initial credit card information is matched with the user information and stored in the user database 110.

然後,於步驟S305中,對初始信用卡資訊進行加密。加密後,於步驟S307中,產生加密信用卡資訊,並與用戶資料配對,再儲存於用戶資料庫110中。並且,銀行端會將加密信用卡資訊提交至製作信用卡機構,而信用卡製作機構會依據加密信用卡資訊印製實體信用卡。接著,於步驟S309中,銀行將印製有加密信用卡資訊的實體信用卡發卡給申請用戶。Then, in step S305, the initial credit card information is encrypted. After encryption, in step S307, the encrypted credit card information is generated, matched with the user information, and then stored in the user database 110. In addition, the bank will submit the encrypted credit card information to the credit card production institution, and the credit card production institution will print a physical credit card based on the encrypted credit card information. Then, in step S309, the bank will issue the physical credit card printed with the encrypted credit card information to the applicant.

接著,請參閱第4圖,第4圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證方法的流程圖。編碼式信用卡資訊保密與驗證流程400是解密加密信用卡資訊的流程。Next, please refer to Figure 4, which is a flow chart of a coded credit card information confidentiality and verification method according to some embodiments of the present disclosure. The coded credit card information confidentiality and verification process 400 is a process for decrypting encrypted credit card information.

於步驟S401中,用戶輸入個人帳戶資料登入網路銀行的個人帳戶。接著,於步驟S403中,開啟網路銀行的驗證功能,並進行身分驗證、生物特徵驗證或其組合。關於驗證,已於前述中說明,在此不再贅述。In step S401, the user enters personal account information to log into the online banking personal account. Then, in step S403, the online banking verification function is turned on, and identity verification, biometric verification or a combination thereof is performed. Verification has been described above and will not be repeated here.

接著,於步驟S405中,判斷用戶是否驗證成功。若否,則回到步驟S403中,用戶重新驗證。值得一提的是,當用戶驗證失敗達3次時,則當日用戶不得再進行驗證,以確保用戶的個人帳戶不被盜用。Next, in step S405, it is determined whether the user has been successfully authenticated. If not, the process returns to step S403, and the user is authenticated again. It is worth mentioning that if the user fails to authenticate for three times, the user is not allowed to authenticate again on that day to ensure that the user's personal account is not stolen.

若是,則進入步驟S407中,用戶開啟網路銀行的解密功能,並且,用戶將實體信用卡的背面(印製有加密信用卡資訊的一面,例如,如第2B圖的實體信用卡的背面200B’所示)放置於電子裝置150的相機的可辨識區域中,然後,信用卡解密模組136進行圖像辨識(模式辨識)並解密。If yes, the process proceeds to step S407, where the user turns on the decryption function of the online banking, and the user places the back of the physical credit card (the side printed with the encrypted credit card information, for example, as shown in the back 200B' of the physical credit card in FIG. 2B) in the recognizable area of the camera of the electronic device 150, and then the credit card decryption module 136 performs image recognition (pattern recognition) and decryption.

接著,於步驟S409中,由信用卡解密模組136判斷是否解密成功。若否,則回到步驟S407中,重新解密。另外,解密失敗的原因可能為實體信用卡的影像不清晰、實體信用卡離開相機的可辨識區域、實體信用卡非本行所發行的信用卡、實體信用卡未開卡或實體信用卡已無效。Then, in step S409, the credit card decryption module 136 determines whether the decryption is successful. If not, the process returns to step S407 to decrypt again. In addition, the decryption failure may be caused by the image of the physical credit card being unclear, the physical credit card leaving the camera's recognizable area, the physical credit card not being issued by the bank, the physical credit card not being activated, or the physical credit card being invalid.

若是,則進入步驟S411,信用卡資訊顯示模組138將初始信用卡資訊呈現於用戶的電子裝置150的顯示螢幕上。If yes, the process proceeds to step S411, where the credit card information display module 138 displays the initial credit card information on the display screen of the user's electronic device 150.

進一步地,請參閱第5圖,第5圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證方法的流程圖。編碼式信用卡資訊保密與驗證流程500是於收付款應用程式160中綁定信用卡及確認交易的流程。值得一提的是,為了避免用戶的信用卡資料被他人記憶或側錄後被盜用,因此,加密信用卡資訊雖然不可以用於進行線上的網路交易,但可以綁定收付款應用程式160,以透過收付款應用程式160的驗證功能來進一步確認用戶身分及用戶的電子裝置150,以防止信用卡被盜用。Further, please refer to FIG. 5, which is a flow chart of a method for keeping encrypted credit card information confidential and verifying it according to some embodiments of the present disclosure. The encrypted credit card information confidential and verifying process 500 is a process for binding a credit card and confirming a transaction in the payment application 160. It is worth mentioning that in order to prevent the credit card information of the user from being memorized or recorded by others and then stolen, the encrypted credit card information cannot be used for online transactions, but can be bound to the payment application 160 to further confirm the user's identity and the user's electronic device 150 through the verification function of the payment application 160 to prevent the credit card from being stolen.

於步驟S501中,用戶透過加密信用卡資訊綁定收付款應用程式160;而步驟S501中,用戶透過初始信用卡資訊綁定收付款應用程式160。In step S501, the user binds the payment application 160 with encrypted credit card information; and in step S502, the user binds the payment application 160 with initial credit card information.

接著,步驟S505接續步驟S501及步驟S503,收付款應用程式160發出驗證碼至用戶的電子裝置150,以供用戶確認驗證碼。待用戶確認驗證碼後,進入步驟S507中,用戶透過電子裝置150輸入驗證碼。Next, step S505 follows step S501 and step S503, and the payment application 160 sends a verification code to the user's electronic device 150 for the user to confirm the verification code. After the user confirms the verification code, the process proceeds to step S507, and the user enters the verification code through the electronic device 150.

接著,於步驟S509中,由收付款應用程式160判斷用戶輸入的驗證碼是否正確。若否,則回到步驟S507中,用戶可以重新輸入驗證碼,或者,用戶可以選擇重新發送驗證碼,並輸入新的驗證碼。若是,則進入步驟S511,收付款應用程式160根據加密信用卡資訊或初始信用卡資訊進行綁定。Next, in step S509, the payment application 160 determines whether the verification code entered by the user is correct. If not, the process returns to step S507, where the user can re-enter the verification code, or the user can choose to resend the verification code and enter a new verification code. If yes, the process proceeds to step S511, where the payment application 160 performs binding according to the encrypted credit card information or the initial credit card information.

進一步地,於步驟S513中,信用卡交易確認模組140會確認加密信用卡資訊或初始信用卡資訊的綁定。並且,當用戶透過包括加密信用卡資訊或初始信用卡資訊的收付款應用程式160進行交易時,進入步驟S515中,信用卡交易確認模組140確認交易資料。然後,進入步驟S517中,將該交易資料儲存於用戶資料庫110中。Further, in step S513, the credit card transaction confirmation module 140 confirms the binding of the encrypted credit card information or the initial credit card information. And, when the user conducts a transaction through the payment application 160 including the encrypted credit card information or the initial credit card information, the process proceeds to step S515, where the credit card transaction confirmation module 140 confirms the transaction data. Then, the process proceeds to step S517, where the transaction data is stored in the user database 110.

另外,請參閱第6圖及第7圖,第6圖是根據本揭露的一些實施例的使用實體信用卡進行交易的流程圖(交易流程600);而第7圖是根據本揭露的一些實施例的使用收付款應用程式160進行交易的流程圖(交易流程700)。In addition, please refer to Figures 6 and 7. Figure 6 is a flow chart of transactions using a physical credit card according to some embodiments of the present disclosure (transaction process 600); and Figure 7 is a flow chart of transactions using a payment application 160 according to some embodiments of the present disclosure (transaction process 700).

於交易流程600中,步驟S601,用戶透過實體信用卡進行交易,即透過刷卡機進行交易。接著,於步驟S603,刷卡機會判斷實體信用卡是否有效。若否,則進入步驟S605,交易失敗。另外,實體信用卡無效的原因可能是實體信用卡的晶片(例如第2B圖中的晶片202)損壞、實體信用卡的磁條(例如第2B圖中的磁條204)消磁或實體信用卡已掛失等。In the transaction process 600, in step S601, the user conducts a transaction through a physical credit card, that is, through a card reader. Then, in step S603, the card reader determines whether the physical credit card is valid. If not, the process proceeds to step S605, and the transaction fails. In addition, the reason why the physical credit card is invalid may be that the chip (e.g., chip 202 in FIG. 2B ) of the physical credit card is damaged, the magnetic stripe (e.g., magnetic stripe 204 in FIG. 2B ) of the physical credit card is demagnetized, or the physical credit card has been reported lost.

若是,則進入步驟S607中,進行信用卡交易。接著,於交易成功後,進入步驟S609,信用卡交易確認模組140會透過系統訊息、簡訊、電子郵件或其組合通知用戶,並將交易資料儲存於用戶資料庫110中。If yes, then the process proceeds to step S607 to conduct a credit card transaction. Then, after the transaction is successful, the process proceeds to step S609, where the credit card transaction confirmation module 140 notifies the user via a system message, SMS, email, or a combination thereof, and stores the transaction data in the user database 110.

於交易流程700中,步驟S701,用戶透過綁定初始信用卡資訊或加密信用卡資訊的收付款應用程式160進行交易。接著,於步驟S703,收付款應用程式160請求用戶進行身分驗證或生物特徵驗證,其中身分驗證及生物特徵驗證已於前述中說明,在此不再贅述。In the transaction process 700, in step S701, the user conducts a transaction through the payment application 160 that binds the initial credit card information or the encrypted credit card information. Then, in step S703, the payment application 160 requests the user to perform identity verification or biometric verification, wherein identity verification and biometric verification have been described above and will not be repeated here.

接著,於步驟S705中,收付款應用程式160判斷是否驗證成功。若否,則進入步驟S707,交易失敗。若是,則進入步驟S709中,透過收付款應用程式160進行交易。接著,於交易成功後,進入步驟S711,信用卡交易確認模組140會透過系統訊息、簡訊、電子郵件或其組合通知用戶,並將交易資料儲存於用戶資料庫110中。Next, in step S705, the payment application 160 determines whether the verification is successful. If not, the process proceeds to step S707 and the transaction fails. If yes, the process proceeds to step S709 and the transaction is performed through the payment application 160. Next, after the transaction is successful, the process proceeds to step S711 and the credit card transaction confirmation module 140 notifies the user via a system message, SMS, email or a combination thereof and stores the transaction data in the user database 110.

綜合以上所述,透過本揭露的編碼式信用卡資訊保密與驗證系統及其方法,可以將信用卡資訊(例如信用卡卡號、安全碼及/或有效日期等)進行加密,並且,以加密後的信用卡資訊來印製實體信用卡。如此一來,可以信用卡資訊的遮蔽效果,使得實體信用卡更加安全可靠。此外,本揭露的編碼式信用卡資訊保密與驗證系統及其方法還可以適用於不同的收支付應用程式(包括透過收支付應用程式的驗證功能進行的網路支付及網路銀行)的交易方式,進而擴大本揭露的應用範圍。In summary, through the disclosed coded credit card information confidentiality and verification system and method, credit card information (such as credit card number, security code and/or expiration date, etc.) can be encrypted, and the encrypted credit card information can be used to print the physical credit card. In this way, the shielding effect of the credit card information can be achieved, making the physical credit card more secure and reliable. In addition, the disclosed coded credit card information confidentiality and verification system and method can also be applied to different payment application programs (including online payment and online banking through the verification function of the payment application program), thereby expanding the scope of application of the disclosed invention.

另外,用戶收到實體信用卡後,可以透過網路銀行進行身分驗證及/或生物驗證後,再進行加密信用卡資訊的解密,以獲得真正的信用卡敏感資訊,以達到更高的安全性和防篡改性。除此之外,本揭露的編碼式信用卡資訊保密與驗證系統及其方法僅是將真正的信用卡資訊進行加密,再用加密信用卡資訊印製實體信用卡,因此技術成本較低,易於普及。In addition, after receiving the physical credit card, the user can perform identity verification and/or biometric verification through online banking, and then decrypt the encrypted credit card information to obtain the real credit card sensitive information, so as to achieve higher security and tamper-proof. In addition, the disclosed coded credit card information confidentiality and verification system and method only encrypts the real credit card information and then prints the physical credit card with the encrypted credit card information, so the technical cost is relatively low and easy to popularize.

雖然本揭露以實施例揭露如上,然其並非用以限定本揭露,任何熟習此技藝者,在不脫離本揭露之精神和範圍內,當可作各種之更動與潤飾,因此本揭露之保護範圍當視後附之申請專利範圍所界定者為準。Although the present disclosure is disclosed as above by way of embodiments, it is not intended to limit the present disclosure. Anyone skilled in the art can make various changes and modifications without departing from the spirit and scope of the present disclosure. Therefore, the protection scope of the present disclosure shall be subject to the definition of the attached patent application scope.

100:編碼式信用卡資訊保密與驗證系統 102:輸入/輸出裝置 104:處理器 110:用戶資料庫 120:信用卡編碼加密模組 122:信用卡申請模組 124:信用卡資訊產生模組 126:信用卡資訊加密模組 128:加密資訊傳輸模組 130:信用卡認證模組 132:用戶登入模組 134:用戶驗證模組 136:信用卡解密模組 138:信用卡資訊顯示模組 140:信用卡交易確認模組 150:電子裝置 160:收付款應用程式 200A, 200B:正面 200A’, 200B’:背面 202:晶片 204:磁條 210A:初始信用卡資訊 212A:初始信用卡卡號 214A:初始安全碼 216A:初始有效日期 210B:加密信用卡資訊 212B:加密信用卡卡號 214B:加密安全碼 216B:加密有效日期 300, 400, 500:編碼式信用卡資訊保密與驗證流程 600, 700:交易流程 S301, S303, S305, S307, S309 :步驟 S401, S403, S405, S407, S409, S411:步驟 S501, S503, S505, S507, S509, S511, S513, S515, S517:步驟 S601, S603, S605, S607, S609:步驟 S701, S703, S705, S707, S709, S711:步驟 100: Encoded credit card information security and verification system 102: Input/output device 104: Processor 110: User database 120: Credit card encoding encryption module 122: Credit card application module 124: Credit card information generation module 126: Credit card information encryption module 128: Encrypted information transmission module 130: Credit card authentication module 132: User login module 134: User verification module 136: Credit card decryption module 138: Credit card information display module 140: Credit card transaction confirmation module 150: Electronic device 160: Payment application 200A, 200B: Front 200A’, 200B’: Back 202: Chip 204: Magnetic stripe 210A: Initial credit card information 212A: Initial credit card number 214A: Initial security code 216A: Initial expiration date 210B: Encrypted credit card information 212B: Encrypted credit card number 214B: Encrypted security code 216B: Encrypted expiration date 300, 400, 500: Encoded credit card information confidentiality and verification process 600, 700: Transaction process S301, S303, S305, S307, S309: Steps S401, S403, S405, S407, S409, S411: Steps S501, S503, S505, S507, S509, S511, S513, S515, S517: Step S601, S603, S605, S607, S609: Step S701, S703, S705, S707, S709, S711: Step

為讓本揭露和其他目的、特徵、優點與實施例能更明顯易懂,所附圖式之說明如下: 第1圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證系統的功能方塊示意圖; 第2A圖是根據本揭露的一些實施例的實體信用卡的正面及背面的示例示意圖; 第2B圖是根據本揭露的一些實施例的實體信用卡的正面及背面的示例示意圖; 第3圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證方法的流程圖; 第4圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證方法的流程圖; 第5圖是根據本揭露的一些實施例的編碼式信用卡資訊保密與驗證方法的流程圖; 第6圖是根據本揭露的一些實施例的使用實體信用卡進行交易的流程圖;以及 第7圖是根據本揭露的一些實施例的使用收付款應用程式進行交易的流程圖。 To make the disclosure and other purposes, features, advantages and embodiments more clearly understandable, the attached drawings are described as follows: Figure 1 is a functional block diagram of a coded credit card information confidentiality and verification system according to some embodiments of the disclosure; Figure 2A is an example diagram of the front and back of a physical credit card according to some embodiments of the disclosure; Figure 2B is an example diagram of the front and back of a physical credit card according to some embodiments of the disclosure; Figure 3 is a flow chart of a coded credit card information confidentiality and verification method according to some embodiments of the disclosure; Figure 4 is a flow chart of a coded credit card information confidentiality and verification method according to some embodiments of the disclosure; Figure 5 is a flow chart of a coded credit card information confidentiality and verification method according to some embodiments of the disclosure; Figure 6 is a flow chart of using a physical credit card for transactions according to some embodiments of the disclosure; and Figure 7 is a flow chart of transactions using payment applications according to some embodiments of the present disclosure.

國內寄存資訊(請依寄存機構、日期、號碼順序註記) 無 國外寄存資訊(請依寄存國家、機構、日期、號碼順序註記) 無 Domestic storage information (please note in the order of storage institution, date, and number) None Foreign storage information (please note in the order of storage country, institution, date, and number) None

100:編碼式信用卡資訊保密與驗證系統 100: Encoded credit card information confidentiality and verification system

102:輸入/輸出裝置 102: Input/output device

104:處理器 104: Processor

110:用戶資料庫 110: User database

120:信用卡編碼加密模組 120: Credit card code encryption module

122:信用卡申請模組 122: Credit card application module

124:信用卡資訊產生模組 124: Credit card information generation module

126:信用卡資訊加密模組 126: Credit card information encryption module

128:加密資訊傳輸模組 128: Encrypted information transmission module

130:信用卡認證模組 130: Credit card authentication module

132:用戶登入模組 132: User login module

134:用戶驗證模組 134: User authentication module

136:信用卡解密模組 136: Credit card decryption module

138:信用卡資訊顯示模組 138: Credit card information display module

140:信用卡交易確認模組 140: Credit card transaction confirmation module

150:電子裝置 150: Electronic devices

160:收付款應用程式 160: Payment application

Claims (10)

一種編碼式信用卡資訊保密與驗證系統,提供給一用戶申請一保密信用卡,並由一行員進行一申請作業及一發卡作業,包括:一處理器,包括:一用戶資料庫,配置以儲存該用戶的複數個用戶資料;一信用卡申請模組,訊號連接該用戶資料庫,配置以提供給該行員輸入該用戶的該些用戶資料,以申請該保密信用卡;一信用卡資訊產生模組,訊號連接該信用卡申請模組及該用戶資料庫,配置以產生一初始信用卡資訊,並與該些用戶資料配對,以產生一信用卡用戶配對訊息;一信用卡資訊加密模組,訊號連接該信用卡資訊產生模組及該用戶資料庫,配置以將該初始信用卡資訊進行加密以產生一加密信用卡資訊,並將該加密信用卡資訊與該些用戶資料配對,以產生一加密信用卡配對訊息,其中該加密信用卡資訊包括一加密信用卡卡號、一加密安全碼、一加密有效日期或其組合;一加密資訊傳輸模組,訊號連接該信用卡資訊加密模組,配置以將該加密信用卡配對訊息提供給該行員,以進行該發卡作業;以及一信用卡解密模組,訊號連接該用戶資料庫,配置以提供給該用戶取得該保密信用卡後進行一解密功能,以 獲得該初始信用卡資訊;以及一輸入/輸出裝置,耦接於該處理器,配置以提供給該行員操作以控制該處理器。 A coded credit card information confidentiality and verification system is provided for a user to apply for a confidential credit card, and a bank employee performs an application operation and a card issuance operation, including: a processor, including: a user database, configured to store a plurality of user data of the user; a credit card application module, signal-connected to the user database, configured to provide the bank employee with the user data of the user to apply for the confidential credit card; a credit card information generation module, signal-connected to the credit card application module and the user database, configured to generate initial credit card information, and match it with the user data to generate a credit card user matching message; a credit card information encryption module, signal-connected to the credit card information generation module and the user database, configured to convert the initial credit card information into a credit card user matching message; The credit card information is encrypted to generate an encrypted credit card information, and the encrypted credit card information is matched with the user data to generate an encrypted credit card matching message, wherein the encrypted credit card information includes an encrypted credit card number, an encrypted security code, an encrypted expiration date or a combination thereof; an encrypted information transmission module, signal-connected to the credit card information encryption module, configured to provide the encrypted credit card matching message to the bank staff to perform the card issuance operation; and a credit card decryption module, signal-connected to the user database, configured to provide a decryption function to the user after obtaining the confidential credit card to obtain the initial credit card information; and an input/output device, coupled to the processor, configured to provide the bank staff with an operation to control the processor. 如請求項1所述之編碼式信用卡資訊保密與驗證系統,其中該信用卡資訊加密模組是透過一加密演算法將該初始信用卡資訊加密為該加密信用卡資訊。 The coded credit card information security and verification system as described in claim 1, wherein the credit card information encryption module encrypts the initial credit card information into the encrypted credit card information through an encryption algorithm. 如請求項2所述之編碼式信用卡資訊保密與驗證系統,其中該信用卡資訊加密模組透過一銀行私鑰將該初始信用卡資訊加密成為一密文信用卡資訊後,再透過一用戶公鑰將該密文信用卡資訊加密成為該加密信用卡資訊。 The coded credit card information confidentiality and verification system as described in claim 2, wherein the credit card information encryption module encrypts the initial credit card information into ciphertext credit card information using a bank private key, and then encrypts the ciphertext credit card information into the encrypted credit card information using a user public key. 如請求項3所述之編碼式信用卡資訊保密與驗證系統,其中該信用卡解密模組會透過一光學文字辨識技術來進行該保密信用卡的一圖像辨識。 The coded credit card information security and verification system as described in claim 3, wherein the credit card decryption module performs an image recognition of the confidential credit card through an optical text recognition technology. 如請求項4所述之編碼式信用卡資訊保密與驗證系統,其中該信用卡解密模組於該圖像辨識後,會透過一用戶私鑰將該加密信用卡資訊解密為該密文信用卡資訊,再透過一銀行公鑰將該密文信用卡資訊解密為該初始信用卡資訊。 The coded credit card information confidentiality and verification system as described in claim 4, wherein the credit card decryption module decrypts the encrypted credit card information into the ciphertext credit card information through a user private key after the image is recognized, and then decrypts the ciphertext credit card information into the initial credit card information through a bank public key. 如請求項1所述之編碼式信用卡資訊保密與驗證系統,其中該處理器包括:一用戶驗證模組,訊號連接該用戶資料庫及該信用卡解密模組,配置以提供給該用戶進行一用戶驗證,其中當該用戶驗證成功後,該用戶驗證模組會產生一用戶確認訊息;以及當該信用卡解密模組接收到該用戶確認訊息後,該信用卡解密模組才開始進行該解密功能。 The coded credit card information security and verification system as described in claim 1, wherein the processor includes: a user verification module, signal-connected to the user database and the credit card decryption module, configured to provide the user with a user verification, wherein when the user verification is successful, the user verification module generates a user confirmation message; and when the credit card decryption module receives the user confirmation message, the credit card decryption module starts the decryption function. 如請求項6所述之編碼式信用卡資訊保密與驗證系統,其中該用戶驗證包括一身分驗證、一生物特徵驗證或其組合。 The coded credit card information security and verification system as described in claim 6, wherein the user verification includes an identity verification, a biometric verification or a combination thereof. 如請求項5所述之編碼式信用卡資訊保密與驗證系統,其中該處理器包括:一信用卡交易確認模組,訊號連接該用戶資料庫及該信用卡解密模組,配置以確認該保密信用卡的一交易資料,其中該信用卡交易確認模組確認該交易資料後,會將該交易資料儲存於該用戶資料庫中。 The coded credit card information security and verification system as described in claim 5, wherein the processor includes: a credit card transaction confirmation module, signal-connected to the user database and the credit card decryption module, configured to confirm a transaction data of the confidential credit card, wherein after the credit card transaction confirmation module confirms the transaction data, the transaction data will be stored in the user database. 一種編碼式信用卡資訊保密與驗證方法,提供給一用戶申請一保密信用卡,並由一行員進行一申請作業及一發卡作業,包括:輸入該用戶的複數個用戶資料以申請該保密信用卡; 產生一初始信用卡資訊,並將該初始信用卡資訊與該些用戶資料配對;對該初始信用卡資訊進行加密,以產生一加密信用卡資訊,並將該加密信用卡資訊與該些用戶資料配對;根據該加密信用卡資訊印製該保密信用卡;以及將該保密信用卡發卡給該用戶。 A coded credit card information confidentiality and verification method is provided for a user to apply for a confidential credit card, and a bank employee performs an application operation and a card issuance operation, including: inputting multiple user information of the user to apply for the confidential credit card; generating an initial credit card information, and matching the initial credit card information with the user information; encrypting the initial credit card information to generate an encrypted credit card information, and matching the encrypted credit card information with the user information; printing the confidential credit card according to the encrypted credit card information; and issuing the confidential credit card to the user. 如請求項9所述之編碼式信用卡資訊保密與驗證方法,進一步包括:該用戶透過一電子裝置登入一網路銀行的一個人帳戶;該用戶進行一用戶驗證;於驗證成功後,進行該網路銀行的一解密功能;以及將該初始信用卡資訊呈現於該用戶的該電子裝置的一顯示螢幕上。 The method for maintaining confidentiality and verifying coded credit card information as described in claim 9 further comprises: the user logs into a personal account of an online bank through an electronic device; the user performs a user verification; after successful verification, performs a decryption function of the online bank; and presents the initial credit card information on a display screen of the electronic device of the user.
TW112133392A 2023-09-01 2023-09-01 Coded credit card information security and verification system and method using the same TWI860076B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW112133392A TWI860076B (en) 2023-09-01 2023-09-01 Coded credit card information security and verification system and method using the same

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW112133392A TWI860076B (en) 2023-09-01 2023-09-01 Coded credit card information security and verification system and method using the same

Publications (2)

Publication Number Publication Date
TWI860076B true TWI860076B (en) 2024-10-21
TW202512052A TW202512052A (en) 2025-03-16

Family

ID=94084068

Family Applications (1)

Application Number Title Priority Date Filing Date
TW112133392A TWI860076B (en) 2023-09-01 2023-09-01 Coded credit card information security and verification system and method using the same

Country Status (1)

Country Link
TW (1) TWI860076B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI578253B (en) * 2012-01-05 2017-04-11 中華信股份有限公司 System and method for applying financial certificate using a mobile telecommunication device
US20170161743A1 (en) * 2014-12-16 2017-06-08 Empire Technology Development Llc Use of encryption to provide secure credit card payments
TWI793479B (en) * 2019-12-31 2023-02-21 大陸商中國銀聯股份有限公司 A data processing method, device and system
TWM649793U (en) * 2023-09-01 2023-12-21 合作金庫商業銀行股份有限公司 Coded credit card information security and verification system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI578253B (en) * 2012-01-05 2017-04-11 中華信股份有限公司 System and method for applying financial certificate using a mobile telecommunication device
US20170161743A1 (en) * 2014-12-16 2017-06-08 Empire Technology Development Llc Use of encryption to provide secure credit card payments
TWI793479B (en) * 2019-12-31 2023-02-21 大陸商中國銀聯股份有限公司 A data processing method, device and system
TWM649793U (en) * 2023-09-01 2023-12-21 合作金庫商業銀行股份有限公司 Coded credit card information security and verification system

Also Published As

Publication number Publication date
TW202512052A (en) 2025-03-16

Similar Documents

Publication Publication Date Title
CN1208737C (en) Secure biometric identification method and device
JP4323098B2 (en) A signature system that verifies the validity of user signature information
US8775814B2 (en) Personalized biometric identification and non-repudiation system
US12432065B2 (en) Biometric sensor on portable device
US20060136332A1 (en) System and method for electronic check verification over a network
US20130036017A1 (en) Financial card for online fund transfer and method therefor
US8534550B2 (en) Observable moment encryption
JP2005032164A (en) Authentication system, authentication device, server device, registration device, and terminal device
JPH08305857A (en) Method and apparatus for recognition of printed document
US9600808B1 (en) Secure payment card, method and system
US20060174134A1 (en) Secure steganographic biometric identification
CN109949517A (en) Banking terminal processing device, system and method
WO2018217950A2 (en) Biometric secure transaction system
US10963852B1 (en) Secure file transfer system using an ATM
WO2001008055A9 (en) Secure transaction and terminal therefor
CN110084021B (en) Counter terminal, client and counter data interaction method and system
JP2005063077A (en) Method and device for personal authentication and connector
TWM624786U (en) Interactive remote contracting and signature generating system
TWM649793U (en) Coded credit card information security and verification system
TWI725443B (en) Method of registration and access control of identity for third-party certification
TWI860076B (en) Coded credit card information security and verification system and method using the same
US20100038418A1 (en) Method for biometric authorization for financial transactions
TW202134911A (en) Certification Method
JP2001306517A (en) Authentication system
JP2008084175A (en) Medium issuing device, authentication control device, and authentication control system