TWI516082B - Communication secure authentication system and method - Google Patents

Description

Received security authentication system and method

The present application relates to a system and method for receiving a call, and in particular to a system and method for authenticating a call.

With the advancement of voice transmission technology, more and more electronic devices use data transmission lines to transmit voice signals, and gradually replace the traditional voice transmission mode. For example, Google Voice, VOIP for academic networks, WiMAX, Face Time, and Skype. However, the voice signal transmitted by the data line can be easily intercepted by the interested person to achieve the purpose of eavesdropping.

Therefore, there is a need for how to use voice packets transmitted by means of data transmission for voice communication, and to know whether an unknown display call is a dangerous telephone number, which is an important direction of current research and development.

The present application relates to a system and method for receiving a secure call, which can enable an utterer and a caller to communicate in an encrypted form by using an additional authentication server; in addition, it can be controlled by an authentication server. Manage unknown calls to prevent any harassment or fraudulent calls.

According to an aspect of the present invention, a call security authentication system is provided, including an authentication server. The authentication server is connected to a first network and communicates with a receiver via the first network. The authentication server receives an acknowledgment request from the called end, and the utterance confirmation request includes a representative number. A caller having the representative number is dialed to the callee via a second network, and the authentication server replies with a security level code to the callee.

According to another aspect of the present invention, a method for authenticating a call security is provided, comprising the steps of: receiving a call confirmation request from a callee via a first network, the call confirmation request including a representative number, and a call with the representative number The calling end is dialed to the receiving end via a second network; the related information about the representative number is queried to determine a security level code, and the security level code corresponds to a security level message; and the security level code is replied to the At the receiving end, the receiving end displays the security level information corresponding to the security level code.

According to still another aspect of the present invention, a method for authenticating a call security is provided, which is applicable to a call end, and includes the following steps: downloading an application, the application establishes the call end to communicate with an authentication server via a first network; After receiving a call request from a caller, the second network sends a call confirmation request to the authentication server, the call confirmation request includes a representative number of the caller; and receives a security level code replied from the authentication server. And the security level code corresponds to a security level message; and the security level information corresponding to the security level code is displayed on the receiving end.

In order to make the above-mentioned contents of the present invention more comprehensible, a preferred embodiment will be described below, and in conjunction with the drawings, a detailed description is as follows:

Although the invention will be fully described with reference to the preferred embodiments of the invention, it should be understood that those skilled in the art can modify the invention described herein while achieving the effect of the invention. . Therefore, it is to be understood that the following description is a broad disclosure of those skilled in the art and is not intended to limit the invention.

Please refer to the first figure, which shows a schematic diagram of the called security authentication system 100 of the present invention. In the embodiment of the present invention, the called security authentication system 100 includes at least one authentication server 110. In an embodiment, the received security authentication system 100 may further include a receiving end 120, a calling end 130, and a database 140.

The authentication server 110 is, for example, a network-capable data processing library, which can perform data processing according to data transmitted from the network, and responds according to different requirements. In an embodiment, the authentication server 110 may include an ENUMBER database storing various types of phone numbers, e-mails, web addresses, and any information sufficient to identify the sender 130 or the receiver 120.

The receiving end 120 and the calling end 130 are, for example, any electronic device such as a handheld electronic device with a wired/wireless transmission function, a computer, a game console, a home appliance, etc., which have basic operating system and transmission functions, and can be connected by network and others. Electronic devices communicate.

The data library 140 can be disposed in and/or outside the authentication server 110. For example, it can be a storage device disposed in the authentication server 110, and stores various materials for the authentication server 110 to use. Some of the information is, for example, a blacklist of users. However, the database 140 can also be an externally located database, such as a database of the police department. The authentication server 110 can be connected to the external database 140 via the network to obtain the required information, such as fraudulent telephone number information announced by the police and relevant units. The database records fraudulent telephone numbers that have been reported as malicious calls or announced by the Police Department and relevant units.

The authentication server 110 can be connected to a first network N1 and communicate with the receiver 120 via the first network N1. The authentication server 110 receives an acknowledgment request from the receiver 120. The acknowledgment request includes at least one representative number, and a utterance 130 having the representative number is dialed to the receiver via the second network N2. 120. The authentication server 110 replies a security level code to the receiving terminal 120 according to the representative number in the acknowledgment request. The first network is, for example, the Internet, and the second network is, for example, a telecommunications communication network; the representative number is, for example, a phone number, an e-mail, a web address, or any information sufficient to identify the originating end.

In this way, since the receiving end 120 can communicate with the authentication server 110 through the first network, wherein the first network is different from the second network, the receiving end 120 can be connected to the authentication server via the second network. Communication prevents the receiving end 120 from being simultaneously transmitted via the second network, causing the second network to be blocked.

For example, when the calling terminal 130 having the representative number sends a call request to the receiving terminal 120 via the second network N2, the calling terminal 120 wants to confirm the representative number, such as a telephone number, a specific e-mail address, and the like. Any string that can be used to represent the identity, whether it is a fraudulent telephone number or a dangerous telephone number, the receiving terminal 120 can issue an acknowledgment request with the representative number to the authentication server 110 via the first network N1. The first network is different from the second network. The authentication server 110 returns the security level code corresponding to the representative number to the receiving end 120 according to the representative number in the acknowledgment request.

In an embodiment, when the calling terminal 130 is dialed to the receiving terminal 120 via the second network N2, the calling terminal 130 sends a call notification including the representative number to the authentication server 110 via the first network N1. The authentication server 110 registers this representative number for use by the confirmation request of the receiving terminal 120.

Furthermore, in another embodiment, when the calling terminal 130 sends a call notification including the representative number of the calling terminal 130 and the representative number of the called terminal 120 to be sent to the authentication server 110 via the first network N1, The authentication server 110 generates an instant key according to the representative number of the calling terminal 130 and the receiving terminal 120, and transmits the instant key to the calling terminal 130. When the to-be-received terminal 120 sends an acknowledgment request to the authentication server 110 via the first network N1, the authentication server 110 replies to the instant key to the receiving terminal 120. In this way, by authenticating the instant key generated by the server 110, the calling terminal 130 and the receiving end 120 can perform encrypted communication according to the instant key.

For the foregoing security level code, for example, please refer to the second figure, which illustrates an individual corresponding situation in which the security level code is divided into six levels.

If the representative number of the calling terminal 130 is authenticated by the identity and the two parties are engaged in voice encryption, the security level code is set to "secure encryption". For example, if the operating environment of the calling terminal 130 and the receiving end 120 is in VoIP, the calling terminal 130 first requests an instant key to the authentication server 110 through the first network N1 for voice encryption, and according to the instant. The key attempts to speak through the second network N2, such as the carrier's SIP Server. When the SIP server of the carrier verifies the legal key of the sender 130, the receiver 120 is notified. The SIP server notifies the receiving terminal 120 to request an instant key to the authentication server 110 for voice encryption, and responds through the SIP Server. After the SIP Server verifies the instant key of the called terminal 120, it notifies the calling terminal 130. At this time, the receiving terminal 120 and the calling terminal 130 can be encrypted by the key and communicated through the carrier's Media Gateway. After the above process is completed, it means that the identity end 130 and the receiving end 120 communicate by means of identity authentication and voice encryption, so the security level code is set to "secure encryption".

If the representative number of the calling terminal 130 is authenticated by the caller, the security level code is set to "secure". For example, if the operating environment of the calling terminal 130 and the receiving terminal 120 is in the 3G network, the authentication server 110 is sent when the calling terminal 130 sends a call notification including the representative number to the authentication server 110 via the first network N1. This representative number will be registered. When the receiving end 120 sends an acknowledgment request to the authentication server 110, the authentication server 110 can check whether the utterance end 130 of the representative number is in a specific rule, for example, dialing within the first 10 seconds. After the above process is completed, it means that the sender 130 and the receiver 120 communicate by means of the sender authentication, so the security level code is set to "safe".

In addition, if it is checked that the representative number is stored in the phone book of the receiving terminal 120, the security level code is set to "risk". If the representative number exists in the dialing record of the receiving end 120, the security level code is set to "threat". If the representative number has been reported as a malicious call and is not securely encrypted, secure, or risk level, the security level code is set to "dangerous". If the representative number is checked by the Police Department and the relevant unit for the fraudulent telephone number and is not for security encryption, security, risk, or hazard level, the security level code is set to “serious danger”.

The security level code may be edited by the authentication server 110 according to the representative number or edited by the internal program of the receiver 120. Each security level code corresponds to a security level message, and the security level information can be displayed on the screen of the receiving end 120 to remind the user. For example, after the receiving end 120 receives the security level code from the authentication server 110, the receiving end 120 displays the security level information corresponding to the security level code.

In addition, as described above, the security level code described above may be edited by the receiving terminal 120 based on the representative number. For example, after the receiving terminal 120 receives the security level code from the authentication server 110, according to the incoming call record or the dialing record of the receiving terminal 120 or whether it has been reported as a malicious phone or a fraudulent telephone number announced by the police department and the relevant unit. The security level code is edited, and the receiving terminal 120 displays the security level information corresponding to the edited security level code.

In summary, the security level code is based on whether the calling terminal 130 authenticates, whether it exists in the phone book of the receiving terminal 120, or whether it exists in the dialing record of the receiving end 120, or whether it exists in the incoming call record of the receiving end 120. , or whether it has been reported as a malicious call, or whether the police department and the relevant unit announced the fraud phone number to edit.

In addition, the receiving terminal 120 can have a built-in program. After the user of the receiving terminal 120 answers a telephone number and finds that the holder of the telephone number is a dangerous telephone number such as a fraud group, the user can go through the receiving end. One of the software or hardware buttons on one of the applications 120 uploads the message with the phone number as a dangerous number to the authentication server 110. If the dangerous message uploaded corresponding to the phone number exceeds a threshold, the authentication server 110 can determine that the phone number is a dangerous number and transmit the message to the database 140 to add the phone number to the data. Library 140.

Please refer to the third figure, which illustrates a flow chart of a method for receiving secure authentication 300 according to the present invention. Please also refer to the first picture. In step S310, the authentication server 110 receives a call confirmation request from a receiving terminal 120 via a first network N1, the call confirmation request includes a representative number, and a call end 130 having the representative number passes through a first The second network is dialed to the receiver 120.

In step S320, the related information about the representative number is queried to determine a security level code, and the security level code corresponds to a security level message. The action of the query can be done in the authentication server 110 or the receiver 120.

In step S330, the authentication server 110 replies the security level code to the receiving end 120, and causes the receiving end 120 to display the security level information corresponding to the security level code.

The received security authentication method 300 may further include the steps of: receiving, via the first network N1, a call notification from the originating terminal 130 that includes the representative number; and registering the representative number for the confirmation request of the called terminal 120.

The method for receiving the security authentication method 300 may further include the following steps: querying the related information about the representative number according to the incoming call record or the dialing record of the called terminal 120 or whether it has been reported as a malicious call or an announcement by the police department and the relevant unit. Fraud the phone number and edit the security level code accordingly.

Please refer to the fourth figure, which is a flowchart of a method for receiving a secure authentication method 400, which is applicable to the receiving end 120. Please also refer to the first picture. In step S410, an application is downloaded, and the application establishes the receiver via a first network to communicate with an authentication server.

In step S420, after receiving a call request from a call center 130 via a second network N2, a call confirmation request is sent to the authentication server 110, and the call confirmation request includes a representative number of the call end 130.

In step S430, a security level code replied from the authentication server 110 is received, and the security level code corresponds to a security level message.

In step S440, the security level information corresponding to the security level code is displayed on the receiving end 120.

In an embodiment, the process of the received security authentication method 400 may further include the steps of: editing the security level code according to the incoming call record or the dialing record of the receiving end 120, and displaying the security level information corresponding to the security level code on the The receiving end 120.

For example, please refer to the fifth and fifth B diagrams, which respectively illustrate the schematic diagram of using the application to dial and display the security level. In one embodiment, the user can make a call using an application installed on the dispatcher 130, and the application can communicate with the authentication server 110 in the background mode. In another embodiment, the application installed on the receiving end 120 can be displayed on the screen according to the security level information corresponding to the authentication server 110 or the security level code processed by the terminal 120, for example, as the fifth B. The figure shows.

In summary, since the received security authentication system disclosed in the present invention has an authentication server, the authentication server can be authenticated even if the receiving end and the transmitting end are different telecommunication systems or data networks are used to transmit voice message data. The service is to confirm whether the sender with a representative number is a dangerous phone number or a user. In addition, the authentication server can generate an instant key according to the representative numbers of the calling end and the receiving end, so that the receiving end and the calling end can communicate in an encrypted manner according to the instant key, so as to avoid the data network being vulnerable to the interested person. Stealing the data and knowing the shortcomings of the call.

In view of the above, the present invention has been disclosed in a preferred embodiment, and is not intended to limit the present invention. A person skilled in the art can make various changes and modifications without departing from the spirit and scope of the invention. Therefore, the scope of the invention is defined by the scope of the appended claims.

100‧‧‧Received Security Certification System

110‧‧‧Authentication Server

120‧‧‧Terminal

130‧‧‧Talker

140‧‧‧Database

S310~S330, S410~S440‧‧‧ Process steps

The first figure shows a schematic diagram of the called security authentication system of the present invention.

The second figure shows an individual correspondence case in which the security level code is divided into six levels.

The third figure is a flow chart showing a method for authenticating a call security according to the present invention.

The fourth figure shows a flow chart of a method for receiving security authentication.

Figure 5A shows a schematic diagram of dialing using this application.

Figure 5B shows a schematic diagram showing the security level.

100. . . Received security authentication system

110. . . Authentication server

120. . . Receiving end

130. . . Speaker

140. . . database

Claims (19)

A call security authentication system, comprising: an authentication server, connected to a first network and communicating with a receiver via the first network; wherein the authentication server receives an acknowledgment request from the receiver, the utterance The confirmation request includes a representative number, and a calling terminal having the representative number is dialed to the receiving end via a second network, and the authentication server returns a security level code to the receiving end; wherein the representative number is Information related to the identity of the utterance is identified, and the security level code is associated with the representative number. The call security authentication system of claim 1, wherein the caller sends a call containing the representative number via the first network when the caller is dialed to the callee by the second network. The authentication server is notified, and the authentication server registers the representative number for the confirmation request of the called party. The system for receiving security authentication as described in claim 1 further includes a database for recording fraudulent telephone numbers that have been reported as malicious calls or announced by the police department and relevant units. The system for receiving a security authentication according to claim 1, wherein the first network is an internet network, and the second network is a telecommunication communication network. The system for claiming security according to claim 1, wherein the authentication server edits the security level code according to the representative number, and the security level code corresponds to a security level message. The system for receiving a security authentication according to claim 5, wherein the receiving terminal receives and processes the security level code from the authentication server. After that, the receiving end displays the security level information corresponding to the security level code. The system for receiving a security authentication according to claim 5, wherein the receiving terminal receives the security level code from the authentication server, according to the incoming call record or the dialing record of the receiving end or whether it has been reported as a malicious call or police The security phone number is announced by the government department and the relevant unit to edit the security level code, and the received party displays the security level message corresponding to the edited security level code. The security authentication system of claim 1, wherein the security level code is based on whether the terminal is authenticated, or is present in a phone book of the called end, or is present in a dialing record of the receiving end, Whether it exists in the caller's record of the called party, or whether it has been reported as a malicious call, or whether the police department and the relevant unit announced the fraudulent phone number to edit. The call security authentication system of claim 2, wherein the call notification further includes a representative number of the called end, and the authentication server generates an instant key according to the representative number of the called end and the representative number, the authentication The server further replies the instant key to the calling terminal and the receiving end, so that the calling terminal and the receiving end can perform encrypted communication according to the instant key. The system for receiving a security authentication according to claim 1, wherein the representative number is a telephone number, an e-mail address, or information sufficient to identify the sender. A method for authenticating a call security includes: receiving, by a first network, a call confirmation request from a call end, the call confirmation request including a representative number, and a call with the representative number The calling end is dialed to the receiving end via a second network; the related information about the representative number is queried to determine a security level code, and the security level code corresponds to a security level message; and the security level code is replied to the Receiving, the receiving end processing and displaying the security level information corresponding to the security level code; wherein the representative number is related to the information identifying the identity of the calling terminal, and the security level code is associated with the representative number. The method for claiming security authentication according to claim 11, further comprising: receiving, via the first network, a call notification from the caller that includes the representative number; and registering the representative number for confirmation by the callee Claim. The method for authenticating a security according to claim 11 further includes: querying the relevant information about the representative number according to the incoming call record or the dialing record of the called party or whether it has been reported as a malicious call or the police department and The relevant unit announces the fraudulent phone number and edits the security level code accordingly. The method for claiming security authentication according to claim 11, wherein the security level code is based on whether the utterer authenticates, or exists in a phone book of the receiving end, or exists in a dialing record of the receiving end, or exists In the call record of the receiver, whether it has been reported as a malicious call, or whether it is edited by the police department and the relevant unit to announce the fraud phone number. As claimed in the scope of claim 11 Method, wherein the representative number is a telephone number, an e-mail address, or information sufficient to identify the sender. A method for authenticating a call, which is applicable to a call end, comprising: downloading an application, the application establishes the call end to communicate with an authentication server via a first network; and receives a call end via a second network After the call request, an acknowledgment request is sent to the authentication server, the acknowledgment request includes a representative number of the utterance end; a security level code replied from the authentication server is received, and the security level code corresponds to a security level And processing the security level information corresponding to the security level code on the receiving end; wherein the representative number is related to identifying the identity of the calling end, and the security level code is associated with the representative number. The method for authenticating the received security according to claim 16 of the patent application, further comprising: editing the security level code according to the incoming call record or the dialing record of the called end, and displaying the security level information corresponding to the security level code on the receiving end . The method for claiming security authentication according to claim 16, wherein the security level code is based on whether the utterer authenticates, or exists in the phone book of the receiving end, or exists in the dialing record of the receiving end, or exists In the call record of the receiver, whether it has been reported as a malicious call, or whether it is edited by the police department and the relevant unit to announce the fraud phone number. The method for claiming security authentication according to claim 16, wherein the representative number is a telephone number, an e-mail address, or information sufficient to identify the sender.