[go: up one dir, main page]

TWM626126U - System for processing financial transaction verification data - Google Patents

System for processing financial transaction verification data Download PDF

Info

Publication number
TWM626126U
TWM626126U TW111200006U TW111200006U TWM626126U TW M626126 U TWM626126 U TW M626126U TW 111200006 U TW111200006 U TW 111200006U TW 111200006 U TW111200006 U TW 111200006U TW M626126 U TWM626126 U TW M626126U
Authority
TW
Taiwan
Prior art keywords
verification
message
time password
user device
transaction
Prior art date
Application number
TW111200006U
Other languages
Chinese (zh)
Inventor
黃仕鎮
徐國強
林信翰
邱垂彥
王偉錡
賴立頃
Original Assignee
玉山商業銀行股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 玉山商業銀行股份有限公司 filed Critical 玉山商業銀行股份有限公司
Priority to TW111200006U priority Critical patent/TWM626126U/en
Publication of TWM626126U publication Critical patent/TWM626126U/en

Links

Images

Landscapes

  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

A system for processing financial transaction verification data is provided. When a verification system receives a transaction verification request from a user device, a one-time-password and a challenge code are generated. The challenge code is transmitted to the user device. The one-time-password, the challenge code and a user contact data are transmitted to a message publication and subscription system. After that, a short message service (SMS) platform obtains the one-time-password, the challenge code and user contact data so as to connect with a telecommunication system. Therefore, according to the process result between the SMS platform and the telecommunication system, the verification system can verify the transaction data which is transmitted from the user device. In addition, a circuit breaking mechanism may be activated for a one-time-password verification service platform to direct connect with the SMS platform for transmitting the verification data to the user device when the message publication and subscription system is failure.

Description

金融交易驗證資料處理系統Financial transaction verification data processing system

說明書公開一種驗證金融交易的技術,特別是指在驗證系統中建立發送驗證簡訊的機制的金融交易驗證資料處理系統。The specification discloses a technology for verifying financial transactions, especially a financial transaction verification data processing system that establishes a mechanism for sending verification short messages in the verification system.

現行使用者操作線上交易時,為免有盜用信用卡號或網路銀行服務而違法交易的事情,常見金融機構利用綁定使用者裝置(例如行動裝置)的方式驗證執行交易者的身分,通過使用者隨身的行動裝置確認當次交易是出自使用者本身。When current users operate online transactions, in order to avoid illegal transactions due to theft of credit card numbers or online banking services, it is common for financial institutions to use binding user devices (such as mobile devices) to verify the identity of the person who executes the transaction. The user's portable mobile device confirms that the current transaction is from the user himself.

在此列舉現行交易驗證的系統與流程,如圖1顯示的範例,當使用者操作一使用者裝置100執行一筆線上交易,當填入信用卡號執行支付或使用網路銀行的非約定轉帳服務時,交易網頁上會要求執行此筆交易驗證,常見的做法是金融機構通過簡訊系統傳遞一次性密碼(one-time password,OTP)到使用者所綁定的行動裝置,讓使用者在交易網頁上輸入此一次性密碼,可藉此確認交易者即使用者本身。The current transaction verification system and process are listed here. As shown in FIG. 1 , when a user operates a user device 100 to execute an online transaction, when a credit card number is filled in to perform payment or a non-contracted transfer service of online banking is used , this transaction verification will be required on the transaction webpage. A common practice is for financial institutions to pass a one-time password (OTP) to the mobile device bound to the user through the SMS system, so that the user can log in the transaction webpage. Entering this one-time password confirms that the trader is the user himself.

根據以上描述線上交易的驗證方式,如圖1所示,在金融機構端,有一驗證系統10,現行的做法是提出一前端系統12,當接收使用者裝置100在進行交易最後時所發出的交易驗證請求,即呼叫內部一次性密碼驗證服務平台14,針對本次交易產生一次性密碼(步驟S101),此一次性密碼驗證服務平台14會以應用程式介面(application programming interface,API)即時服務的形式與後端的一簡訊發送平台16串接。當一次性密碼驗證服務平台14針對本次交易產生一次性密碼時,即請求簡訊發送平台16發送一次性密碼簡訊(步驟S103),簡訊發送平台16即以簡訊將一次性密碼傳送至外部電信商系統18(步驟S105),外部電信商系統18再將一次性密碼以簡訊傳送至使用者裝置100,同時電信商系統18也將執行結果回覆驗證系統10的簡訊發送平台16(步驟S107),簡訊發送平台16接著回傳電信商系統18是否收到發送簡訊的請求的訊息至一次性密碼驗證服務平台14(步驟S109),再由一次性密碼驗證服務平台14回傳(response)一挑戰碼(challenge code)給前端系統12(步驟S111),提供前端系統12處理使用者根據收到的簡訊進行的後續驗證程序。最後,一次性密碼驗證服務平台14將產生的一次性密碼計算參數寫入驗證系統10中的一次性密碼資料庫19(步驟S113)。According to the verification method of the online transaction described above, as shown in FIG. 1 , there is a verification system 10 on the financial institution side. The current practice is to provide a front-end system 12 to receive the transaction sent by the user device 100 at the end of the transaction. The verification request is to call the internal one-time password verification service platform 14 to generate a one-time password for this transaction (step S101 ). The one-time password verification service platform 14 will use an application programming interface (API) The form is connected in series with a short message sending platform 16 at the back end. When the one-time password verification service platform 14 generates a one-time password for this transaction, it requests the short message sending platform 16 to send a one-time password short message (step S103 ), and the short message sending platform 16 transmits the one-time password to the external telecommunication company by the short message. In the system 18 (step S105 ), the external telecommunication business system 18 transmits the one-time password to the user device 100 as a short message, and the telecommunication business system 18 also returns the execution result to the short message sending platform 16 of the verification system 10 (step S107 ), and the short message The sending platform 16 then returns a message indicating whether the telecommunication business system 18 has received a request to send a short message to the one-time password verification service platform 14 (step S109 ), and then the one-time password verification service platform 14 returns a challenge code ( challenge code) to the front-end system 12 (step S111 ), providing the front-end system 12 to process the subsequent verification procedure performed by the user according to the received short message. Finally, the one-time password verification service platform 14 writes the generated one-time password calculation parameters into the one-time password database 19 in the verification system 10 (step S113 ).

然而,在圖1顯示的習知交易驗證方式,當簡訊發送平台16發送包括有一次性密碼的簡訊至電信商系統18時,若發生狀況而無法正常傳送時,因為簡訊發送平台16無法接收到電信商系統18的回覆,造成逾期(timeout),驗證系統10的一次性密碼驗證服務平台14會在逾期(timeout)後重複產生一次性密碼,簡訊發送平台16與電信商系統18之間也會持續交涉。如此,當問題並未解決,上述程序可能使得一次性密碼驗證服務平台14可用的執行緒(thread)逐漸耗盡,進而導致驗證系統10中前端系統12後續發給一次性密碼驗證服務平台14的一次性密碼驗證請求(OTP request)無資源可用,最終讓使用者無法完成交易驗證。However, in the conventional transaction verification method shown in FIG. 1, when the short message sending platform 16 sends the short message including the one-time password to the telecommunication business system 18, if a situation occurs and the transmission cannot be performed normally, the short message sending platform 16 cannot receive the message. The reply from the telecommunication business system 18 causes a timeout, and the one-time password verification service platform 14 of the verification system 10 will repeatedly generate a one-time password after the timeout (timeout), and the communication between the SMS sending platform 16 and the telecommunication business system 18 will Continue to negotiate. In this way, when the problem is not solved, the above procedure may cause the threads available to the one-time password verification service platform 14 to be gradually exhausted, thereby causing the front-end system 12 in the verification system 10 to subsequently send the one-time password verification service platform 14 . The one-time password verification request (OTP request) has no resources available, which ultimately prevents the user from completing the transaction verification.

有鑑於現行技術中因為金融機構執行交易驗證時其中的一次性密碼驗證服務平台因為系統無法正常發送一次性密碼的簡訊而產生資源耗盡的問題,揭露書提出一種新的金融交易驗證資料處理系統,在金融機構端的驗證系統中提出一訊息發布訂閱系統,在驗證系統內部建立發布一次性密碼簡訊的機制,以排除上述問題。In view of the problem of resource exhaustion in the current technology due to the fact that the one-time password verification service platform of the financial institution cannot normally send the one-time password short message when the financial institution performs transaction verification, the disclosure document proposes a new financial transaction verification data processing system. , A message publishing and subscription system is proposed in the verification system on the financial institution side, and a mechanism for publishing one-time password short messages is established within the verification system to eliminate the above problems.

根據金融交易驗證資料處理系統實施例,實現金融機構中的驗證系統,金融交易驗證資料處理系統設有一次性密碼驗證服務平台,當接收由使用者裝置發出的一交易驗證請求,一次性密碼驗證服務平台產生一驗證資料,驗證資料包括演算得出一次性密碼與挑戰碼,並將挑戰碼回傳至使用者裝置。According to the embodiment of the financial transaction verification data processing system, a verification system in a financial institution is realized. The financial transaction verification data processing system is provided with a one-time password verification service platform. When a transaction verification request sent by a user device is received, the one-time password verification The service platform generates a verification data, and the verification data includes calculating the one-time password and the challenge code, and returns the challenge code to the user device.

系統設有一訊息發布訂閱系統,連接一次性密碼驗證服務平台,自一次性密碼驗證服務平台接收一次性密碼、挑戰碼與一使用者通訊資料;以及一簡訊發送平台,簡訊發送平台連接訊息發布訂閱系統,自訊息發布訂閱系統取得一次性密碼、挑戰碼與使用者通訊資料,再傳送至電信商系統,以完成與電信商系統的串接,於串接成功後由電信商系統根據使用者通訊資料發送一驗證簡訊。The system is provided with a message publishing and subscription system, which is connected to the one-time password verification service platform, and receives the one-time password, challenge code and a user communication data from the one-time password verification service platform; and a short message sending platform, which is connected to the message publishing and subscription platform. The system obtains the one-time password, challenge code and user communication information from the message publishing and subscription system, and then transmits it to the telecommunication business system to complete the serial connection with the telecommunication business system. data to send a verification message.

其中,當驗證系統根據訊息發布訂閱系統中的訊息確認簡訊發送平台與電信商系統的串接結果,以及自使用者裝置接收交易驗證資料,若簡訊發送平台與電信商系統串接成功,根據交易驗證資料對照一次性密碼驗證服務平台產生的驗證資料,進行交易驗證。Among them, when the verification system confirms the result of the connection between the SMS sending platform and the telecommunication company system according to the information in the message publishing and subscription system, and receives the transaction verification data from the user device, if the connection between the SMS sending platform and the telecommunication company system is successful, according to the transaction The verification data is compared with the verification data generated by the one-time password verification service platform for transaction verification.

進一步地,驗證系統還包括一前端系統,驗證系統即通過前端系統接收由使用者裝置發出的交易驗證請求,並能夠根據一交易程序提供使用者裝置啟始一交易驗證介面,用以顯示驗證系統通過前端系統提供至使用者裝置驗證交易程序的訊息,驗證系統還能通過此交易驗證介面自使用者裝置取得交易驗證資料,而使用者裝置亦通過前端系統接收挑戰碼。Further, the verification system also includes a front-end system, and the verification system receives the transaction verification request sent by the user device through the front-end system, and can provide the user device to start a transaction verification interface according to a transaction program to display the verification system. The front-end system provides information to the user device to verify the transaction procedure, the verification system can also obtain transaction verification data from the user device through the transaction verification interface, and the user device also receives the challenge code through the front-end system.

進一步地,金融交易驗證資料處理系統還可包括一應用日誌平台,可用以記錄訊息發布訂閱系統處理訊息產生的事件日誌,接著驗證系統將解析訊息發布訂閱系統處理訊息產生的事件日誌,以及一次性密碼驗證服務平台303產生一次性密碼簡訊驗證訊息記錄。當判斷發生異常事件,即產生一異常訊息以通知系統監控管理系統發出告警訊息。Further, the financial transaction verification data processing system can also include an application log platform, which can be used to record the event log generated by the message publishing and subscription system processing the message, and then the verification system will parse the event log generated by the message publishing and subscription system. The password verification service platform 303 generates a one-time password SMS verification message record. When it is determined that an abnormal event occurs, an abnormal message is generated to notify the system monitoring and management system to issue an alarm message.

進一步地,當一次性密碼驗證服務平台無法寫入訊息至訊息發布訂閱系統,或無法自訊息發布訂閱系統確認與電信商系統的串接結果,即產生一錯誤代碼,並回傳此錯誤代碼或一錯誤訊息至使用者裝置。Further, when the one-time password verification service platform cannot write a message to the message publishing and subscribing system, or cannot confirm the connection result with the telecommunication company's system from the message publishing and subscribing system, an error code is generated, and the error code or An error message to the user device.

進一步地,當訊息發布訂閱系統無法正常處理訊息,驗證系統還可啟動一熔斷機制,所述一次性密碼驗證服務平台可切換連線以直接連接簡訊發送平台,直接傳送涵蓋一次性密碼、挑戰碼與使用者通訊資料的驗證資料至簡訊發送平台,繼續交易驗證的程序。Further, when the message publishing and subscribing system cannot process the message normally, the verification system can also activate a circuit breaker mechanism, and the one-time password verification service platform can switch the connection to directly connect to the short message sending platform, and directly transmit the one-time password and challenge code. The verification data of the communication data with the user is sent to the SMS sending platform, and the process of transaction verification is continued.

在系統中運行的金融交易驗證資料處理方法中,先由使用者在執行交易程序中驗證步驟時,操作使用者裝置通過前端系統提供的交易驗證介面發出自一交易驗證請求,當驗證系統的前端系統接收此交易驗證請求,由一次性密碼驗證服務平台產生驗證資料,其中包括演算得出一次性密碼與挑戰碼,此時將挑戰碼回傳至使用者裝置,另一方面將一次性密碼、挑戰碼與一使用者通訊資料提供至驗證系統的訊息發布訂閱系統。In the financial transaction verification data processing method running in the system, when the user executes the verification step in the transaction program, the user device is operated to issue a transaction verification request through the transaction verification interface provided by the front-end system. The system receives this transaction verification request, and the one-time password verification service platform generates verification data, including the one-time password and the challenge code obtained by calculation, and then the challenge code is sent back to the user device, on the other hand, the one-time password, The challenge code and a user communication data are provided to the message publishing and subscribing system of the authentication system.

簡訊發送平台自訊息發布訂閱系統取得一次性密碼、挑戰碼與使用者通訊資料,再傳送至電信商系統。驗證系統可根據訊息發布訂閱系統中的訊息確認簡訊發送平台與電信商系統的串接結果,並自使用者裝置接收的交易驗證資料,當驗證系統自使用者接收交易驗證資料時,對照驗證系統產生的驗證資料,完成交易程序。The short message sending platform obtains the one-time password, challenge code and user communication information from the message publishing and subscription system, and then transmits it to the telecommunication business system. The verification system can confirm the result of the connection between the SMS sending platform and the telecommunication company system according to the information in the message publishing and subscription system, and the transaction verification data received from the user's device. When the verification system receives the transaction verification data from the user, the verification system The generated verification data completes the transaction procedure.

為使能更進一步瞭解本新型的特徵及技術內容,請參閱以下有關本新型的詳細說明與圖式,然而所提供的圖式僅用於提供參考與說明,並非用來對本新型加以限制。For a further understanding of the features and technical contents of the present invention, please refer to the following detailed descriptions and drawings of the present invention. However, the drawings provided are only for reference and description, and are not intended to limit the present invention.

以下是通過特定的具體實施例來說明本創作的實施方式,本領域技術人員可由本說明書所公開的內容瞭解本創作的優點與效果。本創作可通過其他不同的具體實施例加以施行或應用,本說明書中的各項細節也可基於不同觀點與應用,在不悖離本創作的構思下進行各種修改與變更。另外,本創作的附圖僅為簡單示意說明,並非依實際尺寸的描繪,事先聲明。以下的實施方式將進一步詳細說明本創作的相關技術內容,但所公開的內容並非用以限制本創作的保護範圍。The following are specific specific examples to illustrate the implementation of the present invention, and those skilled in the art can understand the advantages and effects of the present invention from the content disclosed in this specification. This creation can be implemented or applied through other different specific embodiments, and various details in this specification can also be modified and changed based on different viewpoints and applications without departing from the concept of this creation. In addition, the drawings in this creation are only for simple schematic illustration, and are not drawn according to the actual size, and are stated in advance. The following embodiments will further describe the related technical contents of the present creation in detail, but the disclosed contents are not intended to limit the protection scope of the present creation.

應當可以理解的是,雖然本文中可能會使用到“第一”、“第二”、“第三”等術語來描述各種元件或者信號,但這些元件或者信號不應受這些術語的限制。這些術語主要是用以區分一元件與另一元件,或者一信號與另一信號。另外,本文中所使用的術語“或”,應視實際情況可能包括相關聯的列出項目中的任一個或者多個的組合。It should be understood that although terms such as "first", "second" and "third" may be used herein to describe various elements or signals, these elements or signals should not be limited by these terms. These terms are primarily used to distinguish one element from another element, or a signal from another signal. In addition, the term "or", as used herein, should include any one or a combination of more of the associated listed items, as the case may be.

針對現行技術中因為金融機構執行交易驗證時其中的一次性密碼驗證服務平台因為系統無法正常發送一次性密碼的簡訊而需要處理持續性的逾期(timeout)事件因而產生資源耗盡的問題,揭露書提出一種金融交易驗證資料處理系統。在所提出的系統中,主要是在金融機構端的驗證系統中提出一訊息發布訂閱系統,在驗證系統中建立發布一次性密碼簡訊的機制,當驗證系統的後台停止服務時,可以藉由交互使用即時的網路服務及訊息發布訂閱系統的訊息傳遞技術建立一熔斷機制,能即時告警以提升交易驗證服務的可用性,還能有效率地恢復完整的服務 。In view of the problem of resource exhaustion in the current technology because the one-time password verification service platform in the financial institution performs transaction verification because the system cannot send the SMS of the one-time password normally and needs to deal with continuous timeout events, the disclosure book A financial transaction verification data processing system is proposed. In the proposed system, a message publishing and subscription system is mainly proposed in the verification system of the financial institution, and a mechanism for publishing one-time password short messages is established in the verification system. When the background of the verification system stops serving, it can be used interactively. The real-time network service and the message delivery technology of the message publishing and subscription system establish a circuit breaker mechanism, which can instantly alert to improve the availability of transaction verification services, and can efficiently restore complete services.

揭露書提出的金融交易驗證資料處理系統所運行的方法主要流程主要是在有交易驗證需求的特定機構或組織(如金融機構)所建置的驗證系統中設一訊息發布訂閱系統,如圖3所示驗證系統30中的訊息發布訂閱系統305,訊息發布訂閱系統305所運行的金融交易驗證資料處理方法的實施例流程如圖2所示。The main process of the method of the financial transaction verification data processing system proposed in the disclosure document is to set up a message publishing and subscription system in the verification system established by a specific institution or organization (such as a financial institution) that has transaction verification requirements, as shown in Figure 3 The message publishing and subscribing system 305 in the illustrated verification system 30, the embodiment flow of the financial transaction verification data processing method run by the message publishing and subscribing system 305 is shown in FIG. 2 .

一開始,當使用者操作使用者裝置進行一交易程序時,如在電子商務平台上選擇一商品或服務並決定下單購買時,電子商務平台將要求輸入使用者資料、信用卡或儲值卡的資料,或使用網路銀行輸入非約定帳戶,這時,提供支付服務的金融機構將針對這些資訊進行驗證,包括確認執行支付的是使用者本人。這時,在使用者裝置上會啟始一交易驗證介面,並對金融機構的驗證系統發出交易驗證請求,在系統端即由驗證系統接收此交易驗證請求(步驟S201),接著驗證系統產生驗證資料,其中包括演算出一次性密碼(one-time password)與產生挑戰碼(challenge code)(步驟S203)。Initially, when the user operates the user device to perform a transaction procedure, such as selecting a commodity or service on the e-commerce platform and deciding to place an order for purchase, the e-commerce platform will require input of user information, credit card or stored-value card information. information, or use online banking to enter a non-agreed account, at this time, the financial institution that provides payment services will verify the information, including confirming that the user is the one who executes the payment. At this time, a transaction verification interface will be activated on the user device, and a transaction verification request will be sent to the verification system of the financial institution. At the system end, the verification system will receive the transaction verification request (step S201 ), and then the verification system will generate verification data. , which includes calculating a one-time password (one-time password) and generating a challenge code (step S203).

驗證系統先將挑戰碼回傳至使用者裝置(步驟S205),由啟始於使用者裝置上的交易驗證介面顯示挑戰碼,同時,也將針對本次交易程序產生的一次性密碼、挑戰碼與金融機構可以得到的使用者通訊資料提供給訊息發布訂閱系統(步驟S207),驗證系統中的簡訊發送平台即可自訊息發布訂閱系統取得所述一次性密碼、挑戰碼與使用者通訊資料(步驟S209),再將一次性密碼、挑戰碼與使用者通訊資料提供給電信商系統,並根據來往訊息確認與電信商系統串接成功(步驟S211)。The verification system first sends the challenge code back to the user device (step S205 ), and displays the challenge code from the transaction verification interface started on the user device. The user communication data that can be obtained from the financial institution is provided to the message publishing and subscription system (step S207), and the short message sending platform in the verification system can obtain the one-time password, challenge code and user communication data from the message publishing and subscription system (step S207). Step S209 ), and then provide the one-time password, challenge code and user communication data to the telecommunication company system, and confirm the success of the serial connection with the telecommunication company system according to the incoming and outgoing messages (step S211 ).

此時,電信商系統取得驗證系統提供的驗證資料,形成一驗證簡訊,其中即記載了一次性密碼與挑戰碼,並根據使用者通訊資料(例如手機號碼、電子郵件、社群即時通訊ID等)傳送驗證系統提供針對本次交易程序的一次性密碼與挑戰碼至使用者端的電子裝置,電子裝置可以同樣是本次發出交易驗證請求的使用者裝置,也可以是不同於所述使用者裝置的行動裝置。之後,使用者根據所接收的挑戰碼對照顯示在交易驗證介面上顯示的挑戰碼,確認無誤後,再將接收的驗證簡訊中記載的一次性密碼填到交易驗證介面上的欄位,提交後,讓驗證系統對照之前針對本次交易程序演算的一次性密碼,與使用者裝置執行交易驗證(步驟S213)。At this time, the telecommunication business system obtains the verification data provided by the verification system, and forms a verification message, which records the one-time password and challenge code. ) Send the verification system to provide the one-time password and challenge code for this transaction procedure to the electronic device on the user side. The electronic device may be the same as the user device that issued the transaction verification request this time, or it may be different from the user device mobile device. After that, the user compares the challenge code displayed on the transaction verification interface with the challenge code received, and after confirming that it is correct, fills in the one-time password recorded in the received verification SMS into the field on the transaction verification interface, and submits it. , and let the verification system compare the one-time password calculated for the current transaction program to perform transaction verification with the user device (step S213 ).

實現金融交易驗證資料處理系統實施例架構可參考圖3所示實施例圖,所示金融交易驗證資料處理系統實現金融機構的驗證系統,其中包括以電腦系統與軟體程式協作實現的平台與子系統。The embodiment architecture of the realization of the financial transaction verification data processing system can refer to the embodiment diagram shown in FIG. 3. The financial transaction verification data processing system shown in the figure realizes the verification system of the financial institution, including the platform and the subsystem realized by the cooperation of the computer system and the software program. .

其中,驗證系統30提出一前端系統301,在一實施例中,前端系統301指的是與使用者互動的交易系統,在銀行通常可指網路銀行、行動銀行或自動櫃員機(ATM)等系統。當使用者操作使用者裝置300開始一交易程序,選定商品或服務後執行驗證步驟,前端系統301即根據使用者的操作在使用者裝置300上啟始一交易驗證介面,顯示在使用者裝置300上,此時還產生交易驗證請求,由前端系統301自使用者裝置300接收交易驗證請求。所述交易驗證介面用以顯示驗證系統30通過前端系統301提供至使用者裝置300驗證交易程序的訊息,並通過交易驗證介面自使用者裝置300取得一交易驗證資料,根據實施例,所述交易驗證資料為驗證系統30藉由電信商系統32以簡訊形式傳送至使用者端的裝置的一次性密碼。The verification system 30 proposes a front-end system 301. In one embodiment, the front-end system 301 refers to a transaction system that interacts with users. In a bank, it usually refers to systems such as online banking, mobile banking, or automated teller machines (ATMs). . When the user operates the user device 300 to start a transaction procedure, selects a commodity or service, and executes the verification step, the front-end system 301 starts a transaction verification interface on the user device 300 according to the user's operation, and displays it on the user device 300 At this time, a transaction verification request is also generated, and the front-end system 301 receives the transaction verification request from the user device 300 . The transaction verification interface is used to display the information provided by the verification system 30 to the user device 300 through the front-end system 301 to verify the transaction procedure, and obtain a transaction verification data from the user device 300 through the transaction verification interface. According to an embodiment, the transaction The verification data is a one-time password sent by the verification system 30 to the device of the user terminal in the form of a short message through the telecommunication business system 32 .

驗證系統30包括一次性密碼驗證服務平台303,連接前端系統301,當前端系統301接收由使用者裝置300發出的交易驗證請求時,產生一驗證資料,其中可包括演算得出一次性密碼與挑戰碼(步驟S301),並將挑戰碼經由前端系統301回傳至使用者裝置300(步驟S304)。同時,一次性密碼驗證服務平台303傳送涵蓋一次性密碼、挑戰碼與通訊資料的驗證資料至一訊息發布訂閱系統305(步驟S303)。更者,在一次性密碼驗證服務平台303中,還檢核使用者的通訊資料,如檢核資料格式,通訊資料可以是發出交易驗證請求的使用者裝置300的通訊資料,或者是使用者另一用以驗證交易的電子裝置(綁定金融機構服務的裝置)的通訊資料。The verification system 30 includes a one-time password verification service platform 303, which is connected to the front-end system 301. When the front-end system 301 receives a transaction verification request sent by the user device 300, it generates a verification data, which may include calculating the one-time password and the challenge. code (step S301 ), and the challenge code is sent back to the user device 300 via the front-end system 301 (step S304 ). At the same time, the one-time password verification service platform 303 transmits the verification data including the one-time password, the challenge code and the communication data to a message publishing and subscribing system 305 (step S303 ). What's more, in the one-time password verification service platform 303, the user's communication data is also checked, such as checking the data format, the communication data may be the communication data of the user device 300 that issued the transaction verification request, or the user's other communication data. Communication data of an electronic device (a device bound to financial institution services) used to verify transactions.

訊息發布訂閱系統305連接一次性密碼驗證服務平台303,能自一次性密碼驗證服務平台303接收針對本次交易程序產生的一次性密碼、挑戰碼,以及查詢資料庫得到的使用者通訊資料。The message publishing and subscribing system 305 is connected to the one-time password verification service platform 303, and can receive from the one-time password verification service platform 303 the one-time password and challenge code generated for the current transaction procedure, as well as the user communication data obtained by querying the database.

驗證系統30包括一簡訊發送平台309,連接訊息發布訂閱系統305,自訊息發布訂閱系統305取得上述一次性密碼、挑戰碼與使用者通訊資料(步驟S305),再傳送至電信商系統,並請求發送驗證簡訊(步驟S307),而電信商系統32亦回覆收到發送簡訊的請求(步驟S309),表示驗證系統30(簡訊發送平台309)與電信商系統32串接成功。當成功與電信商系統32的串接後,簡訊發送平台309可向訊息發布訂閱系統305提供串接電信商系統的結果(步驟S311),訊息發布訂閱系統305繼續向一次性密碼驗證服務平台303提供串接電信商系統的結果(步驟S313)。The verification system 30 includes a short message sending platform 309, which is connected to the message publishing and subscription system 305, obtains the above-mentioned one-time password, challenge code and user communication data from the message publishing and subscription system 305 (step S305), and then transmits it to the telecommunication business system, and requests The verification message is sent (step S307 ), and the telecommunication business system 32 also replies to receive the request for sending the short message (step S309 ), indicating that the verification system 30 (the short message sending platform 309 ) is successfully connected with the telecom business system 32 . After the connection with the telecommunication company system 32 is successful, the short message sending platform 309 can provide the result of the connection with the telecommunication company system to the message publishing and subscription system 305 (step S311 ), and the message publishing and subscription system 305 continues to the one-time password verification service platform 303 Provide the result of tandem with the telco system (step S313).

經上述程序後,一次性密碼驗證服務平台303自訊息發布訂閱系統305取得與電信商系統32串接結果。當驗證系統30與電信商系統32串接成功,電信商系統32根據使用者通訊資料發送驗證簡訊至使用者裝置300(或其他指定裝置),所述驗證簡訊記載了針對本次交易程序的一次性密碼與挑戰碼,讓使用者可以確認驗證簡訊中的挑戰碼是否與驗證系統30提供而顯示在交易驗證介面上的挑戰碼一致,確認一致後再將所接收的一次性密碼輸入在交易驗證介面上的驗證欄位,產生交易驗證資料,使得驗證系統30根據訊息發布訂閱系統305中的訊息確認簡訊發送平台309與電信商系統32的串接結果以及自使用者裝置300接收的交易驗證資料進行交易驗證。After the above procedure, the one-time password verification service platform 303 obtains the result of the serial connection with the telecommunication business system 32 from the message publishing and subscribing system 305 . When the verification system 30 and the telecommunication business system 32 are successfully connected in series, the telecommunication business system 32 sends a verification message to the user device 300 (or other designated device) according to the user's communication data, and the verification message records a verification message for this transaction procedure. The password and the challenge code allow the user to confirm whether the challenge code in the verification message is the same as the challenge code provided by the verification system 30 and displayed on the transaction verification interface, and then input the received one-time password in the transaction verification after confirmation. The verification field on the interface generates transaction verification data, so that the verification system 30 confirms the result of the serial connection between the short message sending platform 309 and the telecommunication system 32 and the transaction verification data received from the user device 300 according to the information in the message publishing and subscription system 305 Perform transaction verification.

進一步地,驗證系統還包括一應用日誌平台(application log platform,ALP)307,用以執行事件日誌的分析。當一次性密碼驗證服務平台303執行交易驗證時,包括比對使用者裝置300傳送的一次性密碼與系統產生的一次性密碼。自所述一次性密碼驗證服務平台303自使用者裝置300接收通過交易驗證介面傳送的一次性密碼、挑戰碼等驗證資料,即建立一次性密碼簡訊驗證訊息記錄,形成的事件日誌(log)寫入應用日誌平台307(步驟S315)。Further, the verification system further includes an application log platform (application log platform, ALP) 307 for performing the analysis of the event log. When the one-time password verification service platform 303 performs transaction verification, it includes comparing the one-time password sent by the user device 300 with the one-time password generated by the system. The one-time password verification service platform 303 receives from the user device 300 the verification data such as the one-time password, the challenge code, etc. transmitted through the transaction verification interface, that is, the one-time password SMS verification message record is established, and the formed event log (log) writes into the application log platform 307 (step S315 ).

在此過程中,驗證系統30通過應用日誌平台307解析訊息發布訂閱系統305處理訊息產生的事件日誌以及一次性密碼驗證服務平台303產生一次性密碼簡訊驗證訊息記錄。當從各種事件日誌判斷發生異常事件,即產生一異常訊息以通知一系統監控管理系統311發出一告警訊息(步驟S317)。During this process, the verification system 30 parses the event log generated by the message publishing and subscription system 305 through the application log platform 307 and the one-time password verification service platform 303 generates a one-time password SMS verification message record. When it is determined from various event logs that an abnormal event occurs, an abnormal message is generated to notify a system monitoring and management system 311 to issue an alarm message (step S317 ).

進一步地,在所述金融交易驗證資料處理系統中,在系統中來往訊息有誤時,為避免其中子系統彼此之間發生持續性逾期(timeout)使得一次性密碼驗證服務平台303中可用的執行緒耗盡導致系統無資源可用的問題,所述金融交易驗證資料處理系統提供一熔斷機制,相關實施例流程可參考圖4。Further, in the financial transaction verification data processing system, when there is an error in the information exchanged in the system, in order to avoid the continuous timeout (timeout) between the subsystems, the one-time password verification service platform 303 can be executed. To solve the problem that the system has no resources available due to thread exhaustion, the financial transaction verification data processing system provides a circuit breaker mechanism, and the flow of the related embodiment can be referred to FIG. 4 .

同樣地,使用者操作使用者裝置執行一交易程序,當到驗證步驟時,需要驗證系統30執行交易驗證,前端系統301向一次性密碼驗證服務平台303要求產生一次性密碼,還包括挑戰碼(步驟S401),當驗證系統30運作時,一次性密碼驗證服務平台303無法寫入訊息至訊息發布訂閱系統305,或無法自訊息發布訂閱系統305確認與電信商系統32的串接結果,即產生一錯誤代碼並傳送至前端系統301,並經前端系統301回傳此錯誤代碼或一對應此錯誤代碼的錯誤訊息至使用者裝置300(步驟S402)。除此之外,根據一實施例,金融交易驗證資料處理系統還提出一熔斷機制, 當所述訊息發布訂閱系統305無法正常處理訊息,也就無法提供訊息,訊息發布訂閱系統305停止服務,驗證系統30即啟動熔斷機制以維持一次性密碼驗證服務運作正常,其中包括由一次性密碼驗證服務平台303切換連線以直接連接簡訊發送平台309,直接傳送涵蓋一次性密碼、挑戰碼與使用者通訊資料的驗證資料至簡訊發送平台309(步驟S403)。Similarly, the user operates the user device to execute a transaction procedure. When the verification step is reached, the verification system 30 needs to perform transaction verification. The front-end system 301 requests the one-time password verification service platform 303 to generate a one-time password, and also includes a challenge code ( Step S401), when the verification system 30 is operating, the one-time password verification service platform 303 cannot write the message to the message publishing and subscription system 305, or cannot confirm the result of the connection with the telecommunication business system 32 from the message publishing and subscription system 305, that is, generating An error code is sent to the front-end system 301, and the error code or an error message corresponding to the error code is returned to the user device 300 through the front-end system 301 (step S402). In addition, according to an embodiment, the financial transaction verification data processing system also proposes a circuit breaker mechanism. When the message publishing and subscribing system 305 cannot process the message normally, and therefore cannot provide the message, the message publishing and subscribing system 305 stops the service and verifies The system 30 activates the circuit breaker mechanism to maintain the normal operation of the one-time password verification service, which includes switching the connection from the one-time password verification service platform 303 to directly connect to the SMS sending platform 309, and directly transmits the one-time password, challenge code and user communication. The verification data of the data is sent to the short message sending platform 309 (step S403).

接著,同樣通過簡訊發送平台309向電信商系統32請求發送驗證簡訊(步驟S405),並回覆收到發送簡訊的請求(步驟S407),表示完成與電信商系統32的串接。簡訊發送平台309即直接向一次性密碼驗證服務平台303回覆串接電信商系統的結果(步驟S409),同時將一次性密碼驗證服務平台303產生一次性密碼簡訊驗證訊息記錄寫入應用日誌平台,可包括串接成功或異常的訊息(步驟S411),若經解析相關事件日誌發現有異常,通知異常訊息至系統監控管理系統311(步驟S413)。Next, the SMS sending platform 309 also requests the telecommunication company system 32 to send a verification SMS (step S405 ), and replies to receive the request to send the SMS (step S407 ), indicating that the connection with the telecommunication company system 32 is completed. The SMS sending platform 309 directly replies to the one-time password verification service platform 303 the result of connecting to the telecommunication company system (step S409 ), and at the same time writes the one-time password SMS verification message record generated by the one-time password verification service platform 303 into the application log platform, It may include a message of successful connection or abnormality (step S411 ). If an abnormality is found after analyzing the relevant event log, the abnormality message is notified to the system monitoring and management system 311 (step S413 ).

其中,當簡訊發送平台309與電信商系統32串接成功,簡訊發送平台309向訊息發布訂閱系統305提供串接電信商系統32成功的訊息,訊息發布訂閱系統305將繼續向一次性密碼驗證服務平台303提供串接電信商系統32成功的訊息,相關記錄也一併記錄至應用日誌平台307。Wherein, when the short message sending platform 309 is successfully connected with the telecommunication business system 32, the short message sending platform 309 provides the message publishing and subscription system 305 with a message that the telecommunications business system 32 is successfully connected, and the message publishing and subscription system 305 will continue to provide the one-time password verification service. The platform 303 provides information about the success of the connection to the telecom provider system 32 , and related records are also recorded to the application log platform 307 .

在驗證系統30中,解析應用日誌平台307中記錄的事件日誌,包括訊息發布訂閱系統305處理訊息產生的事件日誌,以及一次性密碼驗證服務平台303產生一次性密碼簡訊驗證訊息記錄,發現有異常時,形成提供至系統監控管理系統311的異常訊息。In the verification system 30, the event log recorded in the application log platform 307 is parsed, including the event log generated by the message publishing and subscription system 305 processing the message, and the one-time password verification service platform 303 generating the one-time password SMS verification message record, and it is found that there is an abnormality , an abnormal message provided to the system monitoring and management system 311 is formed.

圖5顯示金融交易驗證資料處理系統中熔斷機制的另一實施例流程圖。在此流程中,驗證系統30執行交易驗證時,一次性密碼驗證服務平台303持續或以固定時間間隔對簡訊發送平台309發送確認訊息(步驟S501),並通過回應確認訊息(步驟S503)確保簡訊發送平台309,並取得與電信商系統32之間的串接結果。若有任何異常發生,例如簡訊發送平台309回應逾時,並累積達一次數門檻,驗證系統30即啟動熔斷機制,除將相關事件日誌寫入應用日誌平台307,以及通過系統監控管理系統311產生告警訊息外,在此實施例中,針對使用者裝置300傳送的交易驗證請求,一次性密碼驗證服務平台303一致回傳錯誤代碼(步驟S505),通過前端系統301傳送到使用者裝置300,直到簡訊發送平台309恢復運作。FIG. 5 shows a flow chart of another embodiment of the circuit breaker mechanism in the financial transaction verification data processing system. In this process, when the verification system 30 performs transaction verification, the one-time password verification service platform 303 sends a confirmation message to the short message sending platform 309 continuously or at fixed time intervals (step S501 ), and ensures the short message by responding to the confirmation message (step S503 ). The platform 309 is sent, and the result of the connection with the telecommunication business system 32 is obtained. If any abnormality occurs, for example, the SMS sending platform 309 responds with a timeout, and the number of times accumulated reaches the threshold, the verification system 30 will activate the circuit breaker mechanism, in addition to writing the relevant event log into the application log platform 307 and generating it through the system monitoring and management system 311 In addition to the warning message, in this embodiment, for the transaction verification request sent by the user device 300, the one-time password verification service platform 303 consistently returns an error code (step S505), which is sent to the user device 300 through the front-end system 301 until The short message sending platform 309 resumes operation.

在此一提的是,根據一實施例,在驗證系統30中,相對於前端系統301,設於後端系統的訊息發布訂閱系統305可以一開源流處理平台(如Kafka)實作,具有處理即時資料而具備高吞吐量與低延遲特色,連接簡訊發送平台309與外部電信商系統32,並用於解析驗證系統30運作產生的事件日誌,在驗證系統30內部建立驗證機制,判斷是否要啟動熔斷機制,並在異常發生時產生告警訊息。It should be mentioned here that, according to an embodiment, in the verification system 30, relative to the front-end system 301, the message publishing and subscribing system 305 set in the back-end system can be implemented by an open source stream processing platform (such as Kafka), with processing Real-time data has the characteristics of high throughput and low delay, connects the short message sending platform 309 and the external telecommunication business system 32, and is used to analyze the event log generated by the operation of the verification system 30, establish a verification mechanism inside the verification system 30, and determine whether to activate the circuit breaker mechanism, and generate alarm messages when exceptions occur.

綜上所述,根據上述實施例所描述的金融交易驗證資料處理系統,有鑑於金融機構中交易驗證系統與電信商在驗證簡訊傳遞上有異常而持續逾期,同時造成系統內部可用執行緒資源耗盡,如此導致無法完成交易驗證的問題,為了要排除影響用戶交易安全的問題,其中主要是在金融機構端的驗證系統中提出一訊息發布訂閱系統,在驗證系統中建立發布一次性密碼簡訊的機制,當驗證系統的後台停止服務時,可以通過熔斷機制即時告警並採用替代方案,以提升交易驗證服務的可用性,還能有效率地恢復完整的服務 。To sum up, according to the financial transaction verification data processing system described in the above-mentioned embodiments, in view of the fact that the transaction verification system in the financial institution and the telecommunication company have an abnormality in the transmission of verification messages and continue to overdue, at the same time, the available thread resources in the system are consumed. However, this leads to the problem that transaction verification cannot be completed. In order to eliminate the problems affecting user transaction security, a message publishing and subscription system is mainly proposed in the verification system of the financial institution, and a mechanism for publishing one-time password short messages is established in the verification system. , when the background service of the verification system stops, the circuit breaker mechanism can be used to give an immediate alarm and an alternative solution can be adopted to improve the availability of the transaction verification service and restore the complete service efficiently.

以上所公開的內容僅為本新型的優選可行實施例,並非因此侷限本新型的申請專利範圍,所以凡是運用本新型說明書及圖式內容所做的等效技術變化,均包含於本新型的申請專利範圍內。The contents disclosed above are only the preferred and feasible embodiments of the present invention, and are not intended to limit the scope of the patent application of the present invention. Therefore, any equivalent technical changes made by using the contents of the description and drawings of the present invention are included in the application of the present invention. within the scope of the patent.

100:使用者裝置 10:驗證系統 12:前端系統 14:一次性密碼驗證服務平台 16:簡訊發送平台 18:電信商系統 19:一次性密碼資料庫 300:使用者裝置 30:驗證系統 301:前端系統 303:一次性密碼驗證服務平台 305:訊息發布訂閱系統 307:應用日誌平台 309:簡訊發送平台 311:系統監控管理系統 32:電信商系統 步驟S101~S113:現行交易驗證流程 步驟S201~S213:金融交易驗證資料處理流程 步驟S301~S317:金融交易驗證資料處理流程 步驟S401~S413:金融交易驗證資料處理方法中熔斷流程 步驟S501~S505:金融交易驗證資料處理方法中熔斷流程 100: User device 10: Verify the system 12: Front-end system 14: One-time password verification service platform 16: Newsletter sending platform 18: Telecom business system 19: One-time password database 300: User device 30: Verify the system 301: Front-End Systems 303: One-time password verification service platform 305: Message publishing and subscription system 307: Application Logging Platform 309: Newsletter sending platform 311: System monitoring and management system 32: Telecom system Steps S101-S113: current transaction verification process Steps S201-S213: Financial transaction verification data processing flow Steps S301-S317: Financial transaction verification data processing flow Steps S401-S413: circuit breaker in the financial transaction verification data processing method Steps S501-S505: circuit breaker in the financial transaction verification data processing method

圖1顯示現行交易驗證的系統與流程範例圖示;Figure 1 shows a schematic diagram of the system and process example of the current transaction verification;

圖2顯示驗證系統中執行金融交易驗證資料處理方法的實施例流程圖;FIG. 2 shows a flowchart of an embodiment of a method for processing financial transaction verification data in a verification system;

圖3顯示金融交易驗證資料處理系統的系統架構實施例圖;Fig. 3 shows the system architecture embodiment diagram of the financial transaction verification data processing system;

圖4顯示金融交易驗證資料處理系統中熔斷機制的實施例流程圖;以及FIG. 4 shows a flowchart of an embodiment of a circuit breaker mechanism in a financial transaction verification data processing system; and

圖5顯示金融交易驗證資料處理系統中熔斷機制的實施例流程圖。FIG. 5 shows a flowchart of an embodiment of a circuit breaker mechanism in a financial transaction verification data processing system.

300:使用者裝置 300: User device

30:驗證系統 30: Verify the system

301:前端系統 301: Front-End Systems

303:一次性密碼驗證服務平台 303: One-time password verification service platform

305:訊息發布訂閱系統 305: Message publishing and subscription system

307:應用日誌平台 307: Application Logging Platform

309:簡訊發送平台 309: Newsletter sending platform

311:系統監控管理系統 311: System monitoring and management system

32:電信商系統 32: Telecom system

步驟S301~S317:金融交易驗證資料處理流程 Steps S301~S317: Financial transaction verification data processing flow

Claims (10)

一種金融交易驗證資料處理系統,包括: 一一次性密碼驗證服務平台,根據一使用者裝置發出的一交易驗證請求演算得出一一次性密碼與一挑戰碼,並將該挑戰碼回傳至該使用者裝置; 一訊息發布訂閱系統,連接該一次性密碼驗證服務平台,自該一次性密碼驗證服務平台接收該一次性密碼、該挑戰碼與一使用者通訊資料;以及 一簡訊發送平台,連接該訊息發布訂閱系統,用以與一電信商系統串接; 其中,該金融交易驗證資料處理系統實現一驗證系統,在該驗證系統中,當接收該使用者裝置產生該交易驗證請求時,由該一次性密碼驗證服務平台演算得出該一次性密碼與該挑戰碼,並將該挑戰碼回傳至該使用者裝置,同時將該一次性密碼、該挑戰碼與一使用者通訊資料提供至該訊息發布訂閱系統,之後通過該簡訊發送平台將該一次性密碼、該挑戰碼與該使用者通訊資料傳送至該電信商系統,並通過該電信商系統以一驗證簡訊傳送至該使用者裝置,最後根據該訊息發布訂閱系統中的訊息確認該簡訊發送平台與該電信商系統的串接結果以及自該使用者裝置接收的一交易驗證資料進行交易驗證。 A financial transaction verification data processing system, comprising: a one-time password verification service platform, calculating a one-time password and a challenge code according to a transaction verification request sent by a user device, and returning the challenge code to the user device; a message publishing and subscription system, connected to the one-time password verification service platform, and receiving the one-time password, the challenge code and a user communication data from the one-time password verification service platform; and A short message sending platform, connected to the message publishing and subscription system, for connecting with a telecommunication business system; Wherein, the financial transaction verification data processing system implements a verification system. In the verification system, when the transaction verification request is generated by the user device, the one-time password and the one-time password are calculated by the one-time password verification service platform. The challenge code is sent back to the user device, and the one-time password, the challenge code and a user communication data are provided to the message publishing and subscription system, and then the one-time password is sent through the short message sending platform. The password, the challenge code and the user's communication data are sent to the telecommunications company system, and a verification SMS is sent to the user device through the telecommunications company system, and finally the SMS message sending platform is confirmed according to the message in the message publishing and subscription system Transaction verification is performed with the result of the concatenation with the telecommunication business system and a transaction verification data received from the user device. 如請求項1所述的金融交易驗證資料處理系統,還包括一應用日誌平台,用以記錄該訊息發布訂閱系統處理訊息產生的事件日誌。The financial transaction verification data processing system according to claim 1, further comprising an application log platform for recording event logs generated by the message publishing and subscribing system for processing messages. 如請求項2所述的金融交易驗證資料處理系統,其中該驗證系統解析該訊息發布訂閱系統處理訊息產生的事件日誌,或加上該一次性密碼驗證服務平台產生的一次性密碼簡訊驗證訊息記錄,當判斷發生異常事件,即產生一異常訊息以通知一系統監控管理系統發出一告警訊息。The financial transaction verification data processing system according to claim 2, wherein the verification system parses the event log generated by the message publishing and subscription system processing the message, or adds the one-time password SMS verification message record generated by the one-time password verification service platform , when it is determined that an abnormal event occurs, an abnormal message is generated to notify a system monitoring and management system to issue an alarm message. 如請求項3所述的金融交易驗證資料處理系統,其中,當該一次性密碼驗證服務平台無法寫入訊息至該訊息發布訂閱系統,或無法自該訊息發布訂閱系統確認與該電信商系統的串接結果,即產生一錯誤代碼,並回傳該錯誤代碼或一錯誤訊息至該使用者裝置。The financial transaction verification data processing system according to claim 3, wherein when the one-time password verification service platform cannot write a message to the message publishing and subscribing system, or cannot confirm the communication with the telecommunications provider system from the message publishing and subscribing system As a result of the concatenation, an error code is generated, and the error code or an error message is returned to the user device. 如請求項1所述的金融交易驗證資料處理系統,其中,當該簡訊發送平台與該電信商系統的串接成功,該簡訊發送平台向該訊息發布訂閱系統提供串接該電信商系統成功的訊息,該訊息發布訂閱系統繼續向該一次性密碼驗證服務平台提供串接該電信商系統成功的訊息。The financial transaction verification data processing system according to claim 1, wherein, when the short message sending platform is successfully connected with the telecommunication business system, the short message sending platform provides the message publishing and subscription system with a successful serial connection with the telecom business system. message, the message publishing and subscribing system continues to provide the one-time password verification service platform with the message that the telecommunication business system is successfully connected. 如請求項1所述的金融交易驗證資料處理系統,其中該驗證系統應用於一金融機構中,當該使用者裝置進行一交易程序中的一驗證步驟中,向該驗證系統傳送該交易驗證請求,除自該驗證系統接收該挑戰碼外,還自該電信商系統接收記載該一次性密碼的一驗證簡訊。The financial transaction verification data processing system according to claim 1, wherein the verification system is applied in a financial institution, and when the user device performs a verification step in a transaction procedure, the transaction verification request is transmitted to the verification system , in addition to receiving the challenge code from the verification system, also receives a verification message from the telecommunication business system recording the one-time password. 如請求項1所述的金融交易驗證資料處理系統,還包括一前端系統,該驗證系統即通過該前端系統接收由該使用者裝置發出的該交易驗證請求,以針對一交易程序於該使用者裝置啟始一交易驗證介面。The financial transaction verification data processing system according to claim 1, further comprising a front-end system, and the verification system receives the transaction verification request sent by the user device through the front-end system, so as to target a transaction procedure to the user The device initiates a transaction verification interface. 如請求項7所述的金融交易驗證資料處理系統,其中該交易驗證介面用以顯示該驗證系統通過該前端系統提供至該使用者裝置驗證交易程序的訊息,該驗證系統還通過該交易驗證介面自該使用者裝置取得該交易驗證資料,而該使用者裝置亦通過該前端系統接收該挑戰碼。The financial transaction verification data processing system according to claim 7, wherein the transaction verification interface is used to display the information provided by the verification system to the user device through the front-end system to verify the transaction program, and the verification system also passes the transaction verification interface. The transaction verification data is obtained from the user device, and the user device also receives the challenge code through the front-end system. 如請求項1至8中任一項所述的金融交易驗證資料處理系統,其中,當該訊息發布訂閱系統無法正常處理訊息,該驗證系統啟動一熔斷機制,該一次性密碼驗證服務平台切換連線以直接連接該簡訊發送平台,直接傳送涵蓋該一次性密碼、該挑戰碼與該使用者通訊資料至該簡訊發送平台。The financial transaction verification data processing system according to any one of claims 1 to 8, wherein when the message publishing and subscription system cannot process messages normally, the verification system activates a circuit breaker mechanism, and the one-time password verification service platform switches the connection line to directly connect to the short message sending platform, and directly transmit the one-time password, the challenge code and the user communication data to the short message sending platform. 如請求項1至8中任一項所述的金融交易驗證資料處理系統,其中,當該簡訊發送平台發生異常,該驗證系統啟動一熔斷機制,回傳錯誤代碼到該使用者裝置,直到該簡訊發送平台恢復運作。The financial transaction verification data processing system according to any one of claims 1 to 8, wherein when an exception occurs on the short message sending platform, the verification system activates a circuit breaker mechanism to return an error code to the user device until the The SMS sending platform resumes operation.
TW111200006U 2022-01-03 2022-01-03 System for processing financial transaction verification data TWM626126U (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW111200006U TWM626126U (en) 2022-01-03 2022-01-03 System for processing financial transaction verification data

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW111200006U TWM626126U (en) 2022-01-03 2022-01-03 System for processing financial transaction verification data

Publications (1)

Publication Number Publication Date
TWM626126U true TWM626126U (en) 2022-04-21

Family

ID=82198689

Family Applications (1)

Application Number Title Priority Date Filing Date
TW111200006U TWM626126U (en) 2022-01-03 2022-01-03 System for processing financial transaction verification data

Country Status (1)

Country Link
TW (1) TWM626126U (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI839672B (en) * 2022-01-03 2024-04-21 玉山商業銀行股份有限公司 Method and system for processing financial transaction verification data

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI839672B (en) * 2022-01-03 2024-04-21 玉山商業銀行股份有限公司 Method and system for processing financial transaction verification data

Similar Documents

Publication Publication Date Title
RU2645593C2 (en) Verification of portable consumer devices
CN104077689B (en) A kind of method of Information Authentication, relevant apparatus and system
US20100094732A1 (en) Systems and Methods to Verify Payment Transactions
WO2020006318A1 (en) Mid-tier messaging system
US7987277B2 (en) Safety information transmission device
KR20210097840A (en) Efficient stored-value card transactions
CA2760422A1 (en) Alert architecture
CN102257527A (en) Systems and methods for mobile transactions
WO2021253185A1 (en) Aggregate payment method and related products
US20250005575A1 (en) Payment methods and apparatuses, and pay request processing methods and apparatuses
TWM626126U (en) System for processing financial transaction verification data
CN103685145B (en) Security information interaction system, device and method
TWI839672B (en) Method and system for processing financial transaction verification data
CN111105304B (en) Data processing method and device, storage medium and electronic terminal
KR102107454B1 (en) System for multiplication of financial payment networks, method for financial services using the same and computer program for the same
CN103685146B (en) Data processing device and data processing method for safety information interaction
US20230126855A1 (en) Omnichannel system and a method for providing financial and bank services
US9558480B2 (en) Phone-on-file opt-in at a merchant server
TWM612569U (en) Transaction system of using communication platform
TWI707282B (en) Online bank system and executing method for supplying financial service with verification function via network
JP7419841B2 (en) Information processing equipment and programs
JP7539427B2 (en) Authentication system and computer program
EP4679346A1 (en) Validation of user information in a distributed system
TWI685769B (en) Executing method for supplying financial service via network
KR20250175989A (en) Fraud prevention method

Legal Events

Date Code Title Description
MM4K Annulment or lapse of a utility model due to non-payment of fees