Patent Application
20200265434
The preset disclosure relates to a method protecting transaction information, particularly a method based on an authentication box which coordinates with a consumer to check validity of a transaction and authenticates a correct transaction made on a transaction platform that is connected to the authentication box via the internet.
The consumers can purchase almost all merchandises in the world at their fingertips through convenient on-line transactions or mobile payments sought-after in the current society at homes or offices rather than brick-and-mortar stores.
However, blessings never come in pairs because those malicious attacks on on-line transactions go viral. A user who is carrying on an on-line transaction probably opens a Pandora's box from which all kind of threats to be blocked with caution particularly such as fake website, malicious redirection, forged security seal and Trojan dropper are released.
The patent documentations with respect to transaction security are shown as follows:
U.S. Ser. No. 14/806,219 discloses a mobile checkout system and method for completing a purchase transaction to buy items from an internet merchant. A user browses and selects items for purchases from the merchant through a shopping application or browser. During processing of a transaction, a checkout application installed on a mobile communication device is launched. The checkout application receives a checkout token created by a checkout server that identifies a purchase transaction. The checkout application using the token communicates with the checkout server in which a purchase transaction is completed and encrypted data with respect to payment is securely transmitted.
China Patent CN 201210530382.X discloses a method controlling accounts of an online transaction platform, which is characterized in that: leveled control functions are divided into at least two layers, each of which features single or multiple functions and corresponds to a security authentication, and provided to a user account; a leveled control function is activated or authorized for the user account; a leveled control function for one layer is activated for the user account as required after the login step for the user account is completed and a request to access the layer from the user account for which security authentication has been checked is received; the status of a layer activated is continued until the user logs out of the online transaction platform or the activated layer for the user account is disabled. Moreover, a device and a server to control an on-line transaction platform are also provided in CN 201210530382.X.
R.O.C. Patent TW 1541739 discloses an on-line transaction & payment system and a payment process, both of which rely on a mobile device (or a computer) with an image scanning module to complete a login step of a network platform and browse web pages by a consumer. A purchase for selected merchandise should be paid for by a consumer at a payment tool through a barcode, texts and digits. Before the payment of a consumer from the payment tool, the barcode on the payment tool is scanned by the image scanning module and transmitted to a network platform on which the correct and valid payment tool is checked and authenticated; then, an amount corresponding to the merchandise is deducted through the payment tool for completion of a payment process. Accordingly, a payment is based on a barcode on a payment tool with neither a consumer's personal data provided nor the payment made at a brick-and-mortar store for better convenience and safety of payment.
However, how to protect safety of a transaction process without personal information spilled from a transaction platform is still defective. In the present disclosure, a transaction authentication method is provided for least problems mentioned previously.
In virtue of the above problem, a transaction authentication method provided in the present disclosure is based on an authentication box for safety of cash flow information.
Accordingly, a transaction authentication method provided in the present disclosure relies on an authentication box with which a user's traction behavior is authenticated for validity of a transaction.
A transaction authentication method provided in the present disclosure relies on an authentication box with which a cash flow transaction is carried on for no transaction-related information filched from a transaction platform.
A transaction authentication method provided in the present disclosure relies on an authentication box in which transaction-related data is saved for a simplified transaction process and safety.
A transaction authentication method provided in the present disclosure relies on an authentication box from which temporary cash flow information for a transaction is given for no transaction-related data preserved in a transaction platform.
To this end, a transaction authentication method is embodied according to the following technical measures. A transaction authentication method in the present disclosure comprises: step 1: a consumption confirmation is sent to an authentication box from a transaction platform on which a user has a customer behavior through the internet; step 2: the authentication box notifies the user based on a default configuration; step 3: the user replies the authentication box by confirmed information; step 4: a dedicated confirmation code is replied to the transaction platform from the authentication box and the customer behavior of the user is approved by the transaction platform.
A transaction authentication method is further embodied according to the following steps technically.
In the transaction authentication method, the default configuration in step 2 can be set as either a text message notification or an app notification.
In the transaction authentication method, the confirmed information in step 3 is replied through texting or activated from an application program.
In the transaction authentication method, correlations between the transaction platform and the authentication box are configured by the user before step 1.
In the transaction authentication method, the dedicated confirmation code comprises detailed credit card information.
In the transaction authentication method, a payment request for a customer behavior authenticated by the authentication box is submitted to a third-party platform after step 3.
In the transaction authentication method, a payment request for a customer behavior approved by the transaction platform is submitted to a third-party platform after step 4.
In the transaction authentication method, the third-party platform informs the transaction platform of completion of a payment process for the customer behavior in step 4 simultaneously.
In contrast to the prior art, a transaction authentication method in the present disclosure proves effective in: (1) relying on an authentication box to authenticate a user's transaction behavior for validity of a transaction; (2) relying on an authentication box to carry on a cash flow transaction for no transaction-related data filched from a transaction platform; (3) relying on an authentication box to save transaction-related data for a transaction process simplified and safety.
A transaction authentication method is explained in the preferred embodiment for clear understanding of purposes, characteristics and effects of the present disclosure.
Referring to
Referring to
In general, the user (10) is defined as a person who intends to conduct the customer behavior (21) and pay money for the customer behavior (21); the transaction platform (20) is a network platform through which merchandises are transacted, a connection to the internet is enabled and transaction status is confirmed; the customer behavior (21) means a purchase behavior for a selected merchandise occurring on the transaction platform (20) and waiting to be confirmed but not paid for; the authentication box (30) to which an internet connection is available is used to save cash flow information of a user (10) in advance for safe authentication as well as limited safety connection; the consumption confirmation (22) sent from the transaction platform (20) should be double checked by the user (10) and authenticated by the authentication box (30).
Referring to
As shown in
Then, referring to
For the matter, the confirmed information (11) in step 3 (3) can be each of digits, English letters, random codes or voices, which are replied through texting, application program inputs or a phone call, and received by the authentication box (30) through a corresponding interface.
Finally, referring to
Moreover, in step 4 (4), the dedicated confirmation code (31) is sent to the transaction platform (20) via the internet after a reply to the authentication box (30) from a user (10) in step 3 (3) is confirmed; in this regard, the dedicated confirmation code (31) corresponds to dedicated information of the consumption confirmation (22) and probably comprises a transaction result and transaction audit data.
In practice, step 0 (0) may be added in the first embodiment in advance; referring to
For implementation of a transaction authentication method fast and convenient in the future, the trust relationships among the user (10), the transaction platform (20) and the authentication box (30) are created in advance in step 0 (0).
Referring to
Referring to
As shown in
Referring to
Referring to
Referring to
Finally, referring to
Before execution of step 5 (5), the dedicated confirmation code (31) in step 4 (4) comprises detailed credit card information in advance by which a payment request for the customer behavior (21) is submitted to the third-party platform (40) in step 5 (5). With step 5 (5) completed, the detailed credit card information in the dedicated confirmation code (31) is not applicable in the transaction platform (20) but saved as temporary virtual credit card details.
Referring to
Referring to
As shown in
Referring to
Referring to
Referring to
Furthermore, detailed information for a transaction made on the third-party platform (40) through the authentication box (30) like credit card details, account or cash flow in step a (a) is protected in the authentication box (30) and the third-party platform (40) only but not accessed from the transaction platform (20).
Finally, referring to
Preferably, referring to
Referring to
Referring to
As shown in
Referring to
Referring to
Referring to
Finally, referring to
Furthermore, detailed information for a transaction made on the third-party platform (40) through the authentication box (30) like credit card details, account or cash flow in step a (a) is protected in the authentication box (30) and the third-party platform (40) only but not accessed from the transaction platform (20); on the other hand, the customer behavior (21) of the user (10) will be cancelled by the transaction platform (20) which received the message of a payment failed in step a (a) from the authentication box (30).
Accordingly, a transaction authentication method which is different from an ordinary on-line transaction method and referred to as creative work in applications of on-line transactions meets patentability and is applied for the patent.
It should be reiterated that the above descriptions present the preferred embodiments, and any equivalent changes in specifications, claims or drawings still belongs to the technical field within the present disclosure with reference to claims hereinafter.
| Number | Date | Country | Kind |
|---|---|---|---|
| 108105488 | Feb 2019 | TW | national |
