[go: up one dir, main page]

TWI874795B - Method and system for inspecting and authorizing transactions with virtual credit card numbers - Google Patents

Method and system for inspecting and authorizing transactions with virtual credit card numbers Download PDF

Info

Publication number
TWI874795B
TWI874795B TW111128851A TW111128851A TWI874795B TW I874795 B TWI874795 B TW I874795B TW 111128851 A TW111128851 A TW 111128851A TW 111128851 A TW111128851 A TW 111128851A TW I874795 B TWI874795 B TW I874795B
Authority
TW
Taiwan
Prior art keywords
mobile device
card number
virtual card
address
authorization
Prior art date
Application number
TW111128851A
Other languages
Chinese (zh)
Other versions
TW202407607A (en
Inventor
呂少祺
韋欣廷
鄭仲淵
徐禮暉
洪珊珊
Original Assignee
台新國際商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 台新國際商業銀行股份有限公司 filed Critical 台新國際商業銀行股份有限公司
Priority to TW111128851A priority Critical patent/TWI874795B/en
Publication of TW202407607A publication Critical patent/TW202407607A/en
Application granted granted Critical
Publication of TWI874795B publication Critical patent/TWI874795B/en

Links

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The present invention provides a system for inspecting and authorizing transactions with virtual credit card numbers, comprising an inspection module, a storage module and an authorization module. Also provided is a method for inspecting and authorizing transactions with virtual credit card numbers, comprising receiving an authorization request and obtaining a first virtual card number, a first device ID and a first IP address, and storing the same in a storage module; receiving a transaction request and obtaining a second virtual card number, searching in the storage module and obtaining a second device ID and a second IP address; and inspecting whether the second device ID or the second IP address present in a blacklist, and rejecting the transaction request if affirmative.

Description

虛擬卡號交易檢核及授權方法及系統Virtual card number transaction verification and authorization method and system

本發明係關於一種信用卡虛擬卡號交易檢核及授權方法,以及一種信用卡虛擬卡號交易檢核及授權系統。The present invention relates to a credit card virtual card number transaction verification and authorization method, and a credit card virtual card number transaction verification and authorization system.

在現行的行動支付方法中,信用卡可加載到多個手機裝置,且一手機裝置能加載多張不同卡號的信用卡,而偽冒集團通常會以一手機裝置加載多張信用卡進行盜刷。In current mobile payment methods, credit cards can be loaded onto multiple mobile devices, and a mobile device can load multiple credit cards with different card numbers. Counterfeit groups usually load multiple credit cards onto a mobile device for fraudulent transactions.

目前業界既有的防範措施為管控發生偽冒交易的信用卡,然而,此做法有以下缺點:。 (1)偽冒集團可以單一手機裝置連續進行多張信用卡的盜刷,導致銀行陷入猝不及防的窘境; (2)控管信用卡防止偽冒交易持續發生的同時,將影響到客戶用卡的權益,有違公平待客原則;以及 (3)信用卡加載於手機交易的偽冒案件與日俱增,將產生龐大的換發卡片成本。 The current preventive measure in the industry is to control the credit cards that have been used for counterfeit transactions. However, this approach has the following disadvantages: (1) Counterfeit groups can use a single mobile device to continuously swipe multiple credit cards, causing banks to be caught off guard; (2) While controlling credit cards to prevent counterfeit transactions from continuing to occur, it will affect the rights of customers to use the cards and violate the principle of fair treatment of customers; and (3) The number of counterfeit cases involving credit cards loaded on mobile phone transactions is increasing day by day, which will generate huge card replacement costs.

因此,仍亟需一種虛擬卡號交易檢核及授權方法及系統,其可有效防止偽冒/盜刷交易的發生,同時並可滿足信用卡交易需於極短時效內完成之需求。Therefore, there is still an urgent need for a virtual card number transaction verification and authorization method and system, which can effectively prevent the occurrence of counterfeit/swiping transactions and at the same time meet the demand that credit card transactions must be completed in a very short time.

鑑於如上述先前技術中的問題,本發明提供一種虛擬卡號交易檢核及授權系統,其包含:一檢核模組;一儲存模組,與該檢核模組連接,並儲存有一黑名單;及一授權模組,與該檢核模組及儲存模組連接;其中:該檢核模組接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址儲存於該儲存模組;該檢核模組接獲一交易請求並從其中取得第二虛擬卡號,在該儲存模組中查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址;該授權模組比對該第二行動裝置ID或該第二IP位址是否出現在該黑名單中,若是,則拒絕該交易請求。In view of the above-mentioned problems in the prior art, the present invention provides a virtual card number transaction verification and authorization system, which includes: a verification module; a storage module connected to the verification module and storing a blacklist; and an authorization module connected to the verification module and the storage module; wherein: the verification module receives an authorization request and obtains the first virtual card number, the first mobile device ID and the first IP address which are mutually associated therewith, and sends the authorization request to the verification module; The first virtual card number, the first mobile device ID and the first IP address are stored in the storage module; the verification module receives a transaction request and obtains the second virtual card number therefrom, and searches the storage module to obtain the second mobile device ID and the second IP address associated with the second virtual card number; the authorization module compares whether the second mobile device ID or the second IP address appears in the blacklist, and if so, rejects the transaction request.

在本發明的部分具體實施例中,所述虛擬卡號交易檢核及授權系統更包含一黑名單解析及設定模組,其用以產生該黑名單。In some specific embodiments of the present invention, the virtual card number transaction verification and authorization system further includes a blacklist parsing and setting module, which is used to generate the blacklist.

在本發明的部分具體實施例中,該第一行動裝置ID及該第一IP位址與一第一行動裝置關聯。In some specific embodiments of the present invention, the first mobile device ID and the first IP address are associated with a first mobile device.

根據特定的具體實施例,該第一行動裝置ID包含該第一行動裝置的IMEI、MEID、SEID或其組合。According to a specific embodiment, the first mobile device ID includes the IMEI, MEID, SEID or a combination thereof of the first mobile device.

根據特定的具體實施例,該第一IP位址為該第一行動裝置傳送該授權請求時的IP位址。According to a specific embodiment, the first IP address is the IP address of the first mobile device when sending the authorization request.

本發明亦提供一種虛擬卡號交易檢核及授權方法,其包含:接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址儲存於一儲存模組;接獲一交易請求並從其中取得第二虛擬卡號,在該儲存模組中查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址;及比對該第二行動裝置ID或該第二IP位址是否出現在該儲存模組儲存的一黑名單中,若是,則拒絕該交易請求。The present invention also provides a virtual card number transaction verification and authorization method, which includes: receiving an authorization request and obtaining a first virtual card number, a first mobile device ID and a first IP address that are mutually associated therefrom, and storing the first virtual card number, the first mobile device ID and the first IP address in a storage module; receiving a transaction request and obtaining a second virtual card number therefrom, querying the storage module for a second mobile device ID and a second IP address associated with the second virtual card number; and comparing whether the second mobile device ID or the second IP address appears in a blacklist stored in the storage module, and if so, rejecting the transaction request.

在本發明的部分具體實施例中,所述虛擬卡號交易檢核及授權方法更包含:提供一黑名單解析及設定模組,其用以產生該黑名單。In some specific embodiments of the present invention, the virtual card number transaction verification and authorization method further includes: providing a blacklist parsing and setting module, which is used to generate the blacklist.

在本發明的部分具體實施例中,該第一行動裝置ID及該第一IP位址與一第一行動裝置關聯。其中,該第一行動裝置ID可包含該第一行動裝置的IMEI、MEID、SEID或其組合,該第一IP位址則為該第一行動裝置傳送該授權請求時的IP位址。In some specific embodiments of the present invention, the first mobile device ID and the first IP address are associated with a first mobile device, wherein the first mobile device ID may include the IMEI, MEID, SEID or a combination thereof of the first mobile device, and the first IP address is the IP address of the first mobile device when sending the authorization request.

本發明之其他目的及優點一部分記載於下述說明中,或者可透過本發明的實施例而理解。應了解前文之發明內容及下文之實施方式僅為例示性及闡釋性之說明,而非如申請專利範圍般限定本發明。Other purposes and advantages of the present invention are partially described in the following description, or can be understood through the embodiments of the present invention. It should be understood that the above invention content and the following embodiments are only exemplary and explanatory descriptions, and do not limit the present invention as the scope of the patent application.

除非另有指明,所有在此處使用的技術性和科學性術語具有如同本發明所屬技術領域中之具有通常知識者一般所瞭解的意義。Unless otherwise defined, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs.

本文所使用的「一」乙詞,如未特別指明,係指至少一個(一個或一個以上)之數量。The terms "a" or "an" as used herein, unless otherwise specified, refer to a quantity of at least one (one or more than one).

在一方面,本發明提供一種虛擬卡號交易檢核及授權系統,其包含: 一檢核模組; 一儲存模組,與該檢核模組連接,並儲存有一黑名單;及 一授權模組,與該檢核模組及儲存模組連接; 其中: 該檢核模組接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址儲存於該儲存模組; 該檢核模組接獲一交易請求並從其中取得第二虛擬卡號,在該儲存模組中查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址; 該授權模組比對該第二行動裝置ID或該第二IP位址是否出現在該黑名單中,若是,則拒絕該交易請求。 In one aspect, the present invention provides a virtual card number transaction verification and authorization system, which comprises: A verification module; A storage module connected to the verification module and storing a blacklist; and An authorization module connected to the verification module and the storage module; Wherein: The verification module receives an authorization request and obtains the first virtual card number, the first mobile device ID and the first IP address associated with each other, and stores the first virtual card number, the first mobile device ID and the first IP address in the storage module; The verification module receives a transaction request and obtains the second virtual card number from it, and queries the storage module to obtain the second mobile device ID and the second IP address associated with the second virtual card number; The authorization module compares whether the second mobile device ID or the second IP address appears in the blacklist, and if so, rejects the transaction request.

本發明之虛擬卡號交易檢核及授權系統主要包含三個模組:檢核模組、儲存模組及授權模組。所述三個模組可以僅藉由硬體電路來實現,或是由軟體配合硬體電路來實現。The virtual card number transaction verification and authorization system of the present invention mainly includes three modules: verification module, storage module and authorization module. The three modules can be implemented by hardware circuits only, or by software and hardware circuits.

根據本發明之部分具體實施例,所述檢核模組、儲存模組及授權模組可設置在一伺服器中。在一具體實施例中,該伺服器包括彼此連接的多個硬體電路,其設置為用以組態成多個模組,且該等模組包括所述檢核模組、儲存模組及授權模組。According to some specific embodiments of the present invention, the verification module, storage module and authorization module can be set in a server. In a specific embodiment, the server includes a plurality of hardware circuits connected to each other, which are configured to be configured into a plurality of modules, and the modules include the verification module, storage module and authorization module.

本文中所使用的術語「連接」包括但不限於:電性連接、訊號連接及通訊連接。另外,所述連接可為直接連接或間接連接。The term "connection" used herein includes but is not limited to: electrical connection, signal connection and communication connection. In addition, the connection can be a direct connection or an indirect connection.

本文中所使用的術語「取得」包括但不限於:查詢、分析、解析、讀取及其組合。The term "obtain" used herein includes but is not limited to: query, analyze, resolve, read and combinations thereof.

另一方面,本發明提供一種虛擬卡號交易檢核及授權方法,其包含:接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址儲存於一儲存模組;接獲一交易請求並從其中取得第二虛擬卡號,在該儲存模組中查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址;及比對該第二行動裝置ID或該第二IP位址是否出現在該儲存模組儲存的一黑名單中,若是,則拒絕該交易請求。On the other hand, the present invention provides a virtual card number transaction verification and authorization method, which includes: receiving an authorization request and obtaining a first virtual card number, a first mobile device ID and a first IP address that are mutually associated therewith, and storing the first virtual card number, the first mobile device ID and the first IP address in a storage module; receiving a transaction request and obtaining a second virtual card number therefrom, querying the storage module for a second mobile device ID and a second IP address associated with the second virtual card number; and comparing whether the second mobile device ID or the second IP address appears in a blacklist stored in the storage module, and if so, rejecting the transaction request.

根據本發明,所述儲存模組可包含一或多資料庫。另外,所述儲存模組可儲存有一黑名單及複數筆互相關聯的虛擬卡號、行動裝置ID及IP位址之資料。在一筆資料中,行動裝置ID及第IP位址係與一行動裝置關聯,該行動裝置為一客戶所持有,並利用該行動裝置傳送信用卡虛擬卡號之授權請求,該行動裝置具有一裝置ID,而該IP位址則為該行動裝置傳送該授權請求時的IP位址。According to the present invention, the storage module may include one or more databases. In addition, the storage module may store a blacklist and a plurality of mutually associated virtual card numbers, mobile device IDs and IP addresses. In one piece of data, the mobile device ID and the IP address are associated with a mobile device, which is held by a customer and uses the mobile device to send an authorization request for a credit card virtual card number. The mobile device has a device ID, and the IP address is the IP address of the mobile device when sending the authorization request.

在本發明的部分具體實施例中,所述虛擬卡號交易檢核及授權系統與一信用卡發卡組織伺服器連接,而該授權請求經由該信用卡發卡組織伺服器,傳送至所述虛擬卡號交易檢核及授權系統。所述發卡組織例如為VISA或MasterCard。In some specific embodiments of the present invention, the virtual card number transaction verification and authorization system is connected to a credit card issuing organization server, and the authorization request is transmitted to the virtual card number transaction verification and authorization system via the credit card issuing organization server. The issuing organization is, for example, VISA or MasterCard.

本文中所述的「行動裝置」包括但不限於:智慧型穿載裝置、智慧型手機及平板電腦。The "mobile device" mentioned in this article includes but is not limited to: smart wearable devices, smartphones and tablet computers.

本文中所述的「行動裝置ID」或「裝置ID」(device ID)包括但不限於:IMEI(International Mobile Equipment Identity)、MEID(Mobile Equipment Identifier)、SEID(Secure Element Identifier)及其組合。較佳地,所述行動裝置ID具有唯一性。The "mobile device ID" or "device ID" mentioned herein includes but is not limited to: IMEI (International Mobile Equipment Identity), MEID (Mobile Equipment Identifier), SEID (Secure Element Identifier) and a combination thereof. Preferably, the mobile device ID is unique.

本發明之虛擬卡號交易檢核及授權系統還可進一步包含:一黑名單解析及設定模組,其用以產生該黑名單。類似地,本發明之虛擬卡號交易檢核及授權方法可進一步包含:提供一黑名單解析及設定模組,其用以產生該黑名單。The virtual card number transaction verification and authorization system of the present invention may further include: a blacklist parsing and setting module, which is used to generate the blacklist. Similarly, the virtual card number transaction verification and authorization method of the present invention may further include: providing a blacklist parsing and setting module, which is used to generate the blacklist.

根據本發明,該黑名單解析及設定模組可透過分析已確認為偽冒交易的交易相關資料,將高風險的行動裝置ID及/或IP位址加入所述黑名單中。該黑名單解析及設定模組亦可提供一使用者介面,供銀行作業人員將特定的行動裝置ID及/或IP位址加入所述黑名單中。According to the present invention, the blacklist analysis and setting module can add high-risk mobile device IDs and/or IP addresses to the blacklist by analyzing transaction-related data that has been confirmed as counterfeit transactions. The blacklist analysis and setting module can also provide a user interface for bank operators to add specific mobile device IDs and/or IP addresses to the blacklist.

現參照圖1說明本發明之虛擬卡號交易檢核及授權系統的一具體實施例如下。A specific implementation example of the virtual card number transaction verification and authorization system of the present invention is described below with reference to FIG. 1 .

如圖1所示,虛擬卡號交易檢核及授權系統100包含檢核模組110、儲存模組120、授權模組130及黑名單解析及設定模組140。儲存模組120與檢核模組110訊號連接,並儲存有一黑名單。授權模組130則分別與檢核模組110及儲存模組120訊號連接。另外,虛擬卡號交易檢核及授權系統100與發卡組織伺服器200通訊連接,例如,透過網際網路連線。As shown in FIG1 , the virtual card number transaction verification and authorization system 100 includes a verification module 110, a storage module 120, an authorization module 130, and a blacklist parsing and setting module 140. The storage module 120 is signal-connected to the verification module 110 and stores a blacklist. The authorization module 130 is signal-connected to the verification module 110 and the storage module 120, respectively. In addition, the virtual card number transaction verification and authorization system 100 is communicatively connected to the card issuing organization server 200, for example, via an Internet connection.

針對傳送自發卡組織伺服器200的每筆信用卡加載於手機裝置時所產生的電文,檢核模組110讀取並預先留存電文中所寫入的手機裝置的裝置 ID 以及加載時所在地點的IP位址,並標記該裝置 ID及IP位址資料。For each electronic message sent from the card issuing organization server 200 and generated when the credit card is loaded on the mobile device, the verification module 110 reads and pre-retains the device ID of the mobile device written in the electronic message and the IP address of the location at the time of loading, and marks the device ID and IP address data.

隨後,在虛擬卡號交易發生時(即,接獲交易請求時),檢核模組110以標記索引,串接加載時保留的裝置 ID及IP位址進行黑名單比對。授權模組130比對裝置 ID或IP位址是否至少其中之一出現在該黑名單中,若有,則拒絕該虛擬卡號交易。Subsequently, when a virtual card number transaction occurs (i.e., when a transaction request is received), the verification module 110 uses the tag index to concatenate the device ID and IP address retained during loading to perform a blacklist comparison. The authorization module 130 compares whether at least one of the device ID or IP address appears in the blacklist. If so, the virtual card number transaction is rejected.

以下參照圖2說明本發明之虛擬卡號交易檢核及授權方法的一具體實施例。A specific embodiment of the virtual card number transaction verification and authorization method of the present invention is described below with reference to FIG. 2 .

所提供的虛擬卡號交易檢核及授權方法可如下進行。作為準備作業或基礎作業,針對每筆信用卡加載於手機裝置時所產生的電文,讀取並預先留存電文中所寫入的手機裝置的裝置 ID 以及加載時所在地點的IP位址(即,接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址儲存於一儲存模組)(圖中未示)。實際有虛擬卡號交易時,從交易請求中取得第二虛擬卡號,在該儲存模組中(以KEY值索引串接之方式)查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址(步驟S110)。接著,比對該第二行動裝置ID或該第二IP位址是否出現在該儲存模組儲存的一黑名單中,若是,則拒絕該交易請求,若否,則核准該交易請求。The provided virtual card number transaction verification and authorization method can be performed as follows. As a preparatory operation or basic operation, for each electronic message generated when a credit card is loaded on a mobile device, the device ID of the mobile device written in the electronic message and the IP address of the location at the time of loading are read and reserved in advance (i.e., an authorization request is received and the first virtual card number, the first mobile device ID and the first IP address associated with each other are obtained therefrom, and the first virtual card number, the first mobile device ID and the first IP address are stored in a storage module) (not shown in the figure). When there is an actual transaction with a virtual card number, the second virtual card number is obtained from the transaction request, and the second mobile device ID and the second IP address associated with the second virtual card number are queried in the storage module (in the form of KEY value index concatenation) (step S110). Then, the second mobile device ID or the second IP address is compared to see whether it appears in a blacklist stored in the storage module. If so, the transaction request is rejected, otherwise, the transaction request is approved.

據此,藉由預先判讀及存取虛擬卡號加載時的資訊,以及建置KEY值索引串接交易進行檢核的方式,不僅突破虛擬卡號交易電文中無裝置 ID或IP位址可供檢核的問題,也滿足每筆信用卡交易需於極短時效內完成的需求。此外,由於每一部手機裝置的裝置 ID無法隨意變更,一旦裝置 ID遭到管控,偽冒集團將面臨裝置更換成本的提高的問題,故裝置 ID管控的措施能有效遏止盜刷交易的發生,而IP位址檢核概念的運用,更可大範圍的預防偽冒猖獗區域的盜刷損失。Accordingly, by pre-reading and accessing the information when the virtual card number is loaded, and establishing a KEY value index to connect transactions for verification, not only does it break through the problem of no device ID or IP address in the virtual card number transaction message for verification, but it also meets the requirement that each credit card transaction must be completed in a very short time. In addition, since the device ID of each mobile device cannot be changed at will, once the device ID is controlled, the counterfeit group will face the problem of increased device replacement costs. Therefore, the device ID control measures can effectively curb the occurrence of fraudulent transactions, and the use of the IP address verification concept can prevent fraudulent losses in areas where counterfeiting is rampant on a large scale.

100:虛擬卡號交易檢核及授權系統 110:檢核模組 120:儲存模組 130:授權模組 140:黑名單解析及設定模組 200:發卡組織伺服器 S110~S120:步驟 100: Virtual card number transaction verification and authorization system 110: Verification module 120: Storage module 130: Authorization module 140: Blacklist analysis and setting module 200: Card issuing organization server S110~S120: Steps

圖1為根據本發明之虛擬卡號交易檢核及授權系統的一具體實施例繪示的系統架構圖。FIG. 1 is a system architecture diagram illustrating a specific embodiment of the virtual card number transaction verification and authorization system of the present invention.

圖2為根據本發明之虛擬卡號交易檢核及授權方法的一具體實施例繪示的流程圖。FIG. 2 is a flow chart illustrating a specific embodiment of the virtual card number transaction verification and authorization method according to the present invention.

100:虛擬卡號交易檢核及授權系統 100: Virtual card number transaction verification and authorization system

110:檢核模組 110: Verification module

120:儲存模組 120: Storage module

130:授權模組 130: Authorization module

140:黑名單解析及設定模組 140: Blacklist parsing and setting module

200:發卡組織伺服器 200:Card issuing organization server

Claims (10)

一種虛擬卡號交易檢核及授權系統,其包含: 一檢核模組; 一儲存模組,與該檢核模組連接,並儲存有一黑名單,該黑名單實質上由複數行動裝置ID及複數IP位址所組成;及 一授權模組,與該檢核模組及儲存模組連接; 其中:該檢核模組接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址相關聯地儲存於該儲存模組;該檢核模組接獲一交易請求並從其中取得第二虛擬卡號,在該儲存模組中查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址;該授權模組比對該第二行動裝置ID或該第二IP位址是否出現在該黑名單中,若是,則拒絕該交易請求,若否,則核准該交易請求。 A virtual card number transaction verification and authorization system, comprising: a verification module; a storage module connected to the verification module and storing a blacklist, the blacklist substantially consisting of a plurality of mobile device IDs and a plurality of IP addresses; and an authorization module connected to the verification module and the storage module; Wherein: the verification module receives an authorization request and obtains the first virtual card number, the first mobile device ID and the first IP address which are associated with each other, and stores the first virtual card number, the first mobile device ID and the first IP address in association in the storage module; the verification module receives a transaction request and obtains the second virtual card number, and queries the storage module to obtain the second mobile device ID and the second IP address associated with the second virtual card number; the authorization module compares whether the second mobile device ID or the second IP address appears in the blacklist, and if so, rejects the transaction request, and if not, approves the transaction request. 如請求項1之虛擬卡號交易檢核及授權系統,更包含一黑名單解析及設定模組,其用以產生該黑名單。The virtual card number transaction verification and authorization system of claim 1 further includes a blacklist parsing and setting module for generating the blacklist. 如請求項1之虛擬卡號交易檢核及授權系統,其中該第一行動裝置ID及該第一IP位址與一第一行動裝置關聯。A virtual card number transaction verification and authorization system as claimed in claim 1, wherein the first mobile device ID and the first IP address are associated with a first mobile device. 如請求項3之虛擬卡號交易檢核及授權系統,其中該第一行動裝置ID包含該第一行動裝置的IMEI、MEID、SEID或其組合。A virtual card number transaction verification and authorization system as claimed in claim 3, wherein the first mobile device ID includes the IMEI, MEID, SEID or a combination thereof of the first mobile device. 如請求項3之虛擬卡號交易檢核及授權系統,其中該第一IP位址為該第一行動裝置傳送該授權請求時的IP位址。As in the virtual card number transaction verification and authorization system of claim 3, wherein the first IP address is the IP address of the first mobile device when sending the authorization request. 一種虛擬卡號交易檢核及授權方法,其包含: 接獲一授權請求並從其中取得互相關聯的第一虛擬卡號、第一行動裝置ID及第一IP位址,並將該第一虛擬卡號、該第一行動裝置ID及該第一IP位址相關聯地儲存於一儲存模組; 接獲一交易請求並從其中取得第二虛擬卡號,在該儲存模組中查詢得到與該第二虛擬卡號關聯的第二行動裝置ID及第二IP位址;及 比對該第二行動裝置ID或該第二IP位址是否出現在該儲存模組儲存的一黑名單中,若是,則拒絕該交易請求,若否,則核准該交易請求; 其中該黑名單實質上由複數行動裝置ID及複數IP位址所組成。 A virtual card number transaction verification and authorization method, comprising: Receiving an authorization request and obtaining a first virtual card number, a first mobile device ID and a first IP address associated with each other therefrom, and storing the first virtual card number, the first mobile device ID and the first IP address in association in a storage module; Receiving a transaction request and obtaining a second virtual card number therefrom, querying the storage module for a second mobile device ID and a second IP address associated with the second virtual card number; and Comparing whether the second mobile device ID or the second IP address appears in a blacklist stored in the storage module, if so, rejecting the transaction request, if not, approving the transaction request; The blacklist is actually composed of multiple mobile device IDs and multiple IP addresses. 如請求項6之虛擬卡號交易檢核及授權方法,更包含:提供一黑名單解析及設定模組,其用以產生該黑名單。The virtual card number transaction verification and authorization method of claim 6 further includes: providing a blacklist parsing and setting module for generating the blacklist. 如請求項6之虛擬卡號交易檢核及授權方法,其中該第一行動裝置ID及該第一IP位址與一第一行動裝置關聯。A virtual card number transaction verification and authorization method as in claim 6, wherein the first mobile device ID and the first IP address are associated with a first mobile device. 如請求項8之虛擬卡號交易檢核及授權方法,其中該第一行動裝置ID包含該第一行動裝置的IMEI、MEID、SEID或其組合。A virtual card number transaction verification and authorization method as claimed in claim 8, wherein the first mobile device ID includes the IMEI, MEID, SEID or a combination thereof of the first mobile device. 如請求項8之虛擬卡號交易檢核及授權方法,其中該第一IP位址為該第一行動裝置傳送該授權請求時的IP位址。As in the virtual card number transaction verification and authorization method of claim 8, wherein the first IP address is the IP address of the first mobile device when sending the authorization request.
TW111128851A 2022-08-01 2022-08-01 Method and system for inspecting and authorizing transactions with virtual credit card numbers TWI874795B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW111128851A TWI874795B (en) 2022-08-01 2022-08-01 Method and system for inspecting and authorizing transactions with virtual credit card numbers

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW111128851A TWI874795B (en) 2022-08-01 2022-08-01 Method and system for inspecting and authorizing transactions with virtual credit card numbers

Publications (2)

Publication Number Publication Date
TW202407607A TW202407607A (en) 2024-02-16
TWI874795B true TWI874795B (en) 2025-03-01

Family

ID=90822725

Family Applications (1)

Application Number Title Priority Date Filing Date
TW111128851A TWI874795B (en) 2022-08-01 2022-08-01 Method and system for inspecting and authorizing transactions with virtual credit card numbers

Country Status (1)

Country Link
TW (1) TWI874795B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI377514B (en) * 2008-02-15 2012-11-21 Yahoo Inc
TW202042141A (en) * 2019-03-25 2020-11-16 煜燊 宋 Consumer protection system
TWI718354B (en) * 2016-12-30 2021-02-11 大陸商中國銀聯股份有限公司 Safety verification method, platform, device and system
TWI764697B (en) * 2021-04-28 2022-05-11 中國信託商業銀行股份有限公司 Credit card transaction processing system and method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI377514B (en) * 2008-02-15 2012-11-21 Yahoo Inc
TWI718354B (en) * 2016-12-30 2021-02-11 大陸商中國銀聯股份有限公司 Safety verification method, platform, device and system
TW202042141A (en) * 2019-03-25 2020-11-16 煜燊 宋 Consumer protection system
TWI764697B (en) * 2021-04-28 2022-05-11 中國信託商業銀行股份有限公司 Credit card transaction processing system and method

Also Published As

Publication number Publication date
TW202407607A (en) 2024-02-16

Similar Documents

Publication Publication Date Title
US7933835B2 (en) Secure money transfer systems and methods using biometric keys associated therewith
US9123044B2 (en) Generation systems and methods for transaction identifiers having biometric keys associated therewith
JP5265602B2 (en) System and method for securely authenticating and distributing stored value card data
CN101651675B (en) By the method and system that authentication code is verified client
US11494769B2 (en) System, methods and computer program products for identity authentication for electronic payment transactions
US20200364711A1 (en) Transaction Processing with Merged Token and Cryptogram
CN104933565A (en) IC card transaction method and IC card transaction system
TWI874795B (en) Method and system for inspecting and authorizing transactions with virtual credit card numbers
JP2001337929A (en) Dynamic password control system
CN111476565A (en) Digital currency POS machine and transaction system thereof
TWM637453U (en) Fido identity verification system based on chip financial card
CN113112341A (en) Financial business processing method
TWM637895U (en) System for inspecting and authorizing transactions with virtual credit card numbers
US20240403854A1 (en) Method for managing a till e-receipt
CN111833176A (en) Financial account opening method, financial account opening device and financial account opening system
CN115345615A (en) Request verification method and device, electronic equipment and storage medium
WO2014146286A1 (en) Secure payment system and method for bank card by using real-time communication
US11475446B2 (en) System, methods and computer program products for identity authentication for electronic payment transactions
WO2009108066A1 (en) Method and arrangement for secure transactions
TWI662493B (en) Debit authorization method and system
KR20040068445A (en) method and system of securitly processing credit card using cellular phone
TWM660783U (en) IMEI-based transaction binding system
TWM598466U (en) Transaction counterfeit detection system based on list comparison
TWM662393U (en) Bank Real-time Interactive Inquiry System
TWM672401U (en) Credit card transaction verification system