TWM667493U - Devices that guide users to set up transactions when the mobile app does not have a transaction security mechanism - Google Patents

Abstract

A device for guiding the setting of a mobile application when there is no transaction security control mechanism, comprising a security control determination module, a binding detection module connected to the security control determination module, a state acquisition module connected to the binding detection module, an input verification module and a software and hardware detection module connected to the state acquisition module, an identity recognition module connected to the software and hardware detection module, and a mechanism setting module connected to the input verification module and the identity recognition module. When the device determines through the security control determination module that a transaction operation input by a bank customer requires the execution of a transaction security control mechanism, the binding detection module is used to determine the transaction operation input by the bank customer. The detection module detects whether the device has been bound to the transaction security control mechanism. When the device is not bound to the transaction security control mechanism, the identity recognition mechanism is selected according to the acquisition status of the verification code input by the input verification module and the software and hardware on the device detected by the software and hardware detection module. After the identity recognition module uses the identity recognition mechanism to confirm the identity of the bank customer, the mechanism setting module provides the bank customer with technical means to set the transaction security control mechanism. It is possible to confirm the identity without using password SMS and achieve the technical effect of reducing the number of SMS messages sent to reduce costs.

Description

Devices that guide users to set up transactions when the mobile app does not have a transaction security mechanism

A transaction security mechanism configuration device, particularly a device for guiding the configuration of a mobile application without a transaction security mechanism.

With the development of the Internet and the advancement of technology, most of the things that used to require face-to-face interaction can now be done online, such as online transfers, online payments, and other online financial flows.

However, the development of the Internet has also brought additional problems to online financial flows, such as online fraud and online theft. In order to solve these network problems, identity confirmation is usually performed before financial transactions are made. For example, a bank sends a text message containing a password to the mobile phone number of a bank customer who intends to make financial transactions online and requires the bank customer to send back the password to confirm the identity.

However, some literature has pointed out that using SMS to send passwords to confirm identity is still not secure enough. Hackers and other malicious parties can still intercept SMS during the transmission process. In this way, malicious parties can still impersonate bank customers and conduct financial transactions online.

In summary, it can be seen that the prior art has long had the problem that the password may be intercepted by hackers or other interested parties during the process of sending the password via SMS. Therefore, it is necessary to propose improved technical means to solve this problem.

In view of the problem that the password SMS in the previous technology was intercepted by someone with ulterior motives during the transmission process, this invention discloses a device for guiding the setting when the mobile application has no transaction security mechanism, which includes:

The device disclosed in this invention for guiding the setting of the mobile application when there is no transaction security control mechanism includes at least: a security control determination module for determining whether the transaction operation input by the bank customer needs to execute the transaction security control mechanism; a binding detection module for detecting whether the device has been bound when the transaction operation needs to execute the transaction security control mechanism; a status acquisition module for detecting whether the device has been bound when the device is not bound , obtain the acquisition status of the verification code; input verification module, used to provide the bank customer with the opportunity to input the verification code and verify the verification code when the acquisition status indicates that the verification code has been acquired; hardware and software detection module, used to detect the hardware and/or software installed on the device to generate a detection result when the acquisition status indicates that the verification code has not been acquired; identity recognition module, used to select an identity recognition mechanism according to the detection result, and confirm the identity of the bank customer according to the identity recognition mechanism; mechanism setting module, used to provide the bank customer with the opportunity to set the transaction security control mechanism when the verification code passes the verification or the identity of the bank customer is confirmed.

The device disclosed in this invention is as described above. The difference between this invention and the prior art is that when the transaction operation input by the bank customer is judged to require the execution of the transaction security control mechanism, the invention detects whether the device is bound to the transaction security control mechanism. When the device is not bound to the transaction security control mechanism, the identity recognition mechanism is selected according to the acquisition status of the verification code and the software and hardware on the device. After the identity recognition mechanism confirms the identity of the bank customer, the invention provides the bank customer with the ability to set up the transaction security control mechanism, thereby solving the problems existing in the prior art and achieving the technical effect of reducing the number of SMS messages sent to reduce costs.

The following will be used in conjunction with diagrams and embodiments to explain in detail the features and implementation methods of this invention. The content is sufficient to enable anyone familiar with the relevant skills to easily and fully understand the technical means used by this invention to solve technical problems and implement them accordingly, thereby achieving the effects that can be achieved by this invention.

This invention can detect the setting status of the transaction security control mechanism of the bank customer when the bank customer logs into the mobile banking application, and guide the bank customer to set the transaction security control mechanism when the transaction security control mechanism has not been set, so that the bank customer can use the transaction security control mechanism smoothly.

The device for implementing the present invention may be a computing device. The computing device mentioned in the present invention includes but is not limited to one or more processing modules, one or more memory modules, and hardware components such as a bus connecting different hardware components (including memory modules and processing modules). Through the multiple hardware components included, the computing device can load and execute an operating system so that the operating system runs on the computing device, and can also execute software or programs. The computing device also includes a housing, and the above-mentioned hardware components are arranged in the housing.

The bus of the computing device provided in the present invention may include one or more types, such as a data bus, an address bus, a control bus, an expansion bus, and/or a local bus. The buses of computing devices include but are not limited to the Industry Standard Architecture (ISA) bus, the Peripheral Component Interconnect (PCI) bus, the Video Electronics Standards Association (VESA) local bus, the Universal Serial Bus (USB) bus, the PCI Express (PCI-E/PCIe) bus, etc.

The processing module of the computing device proposed in this creation is coupled to a bus. The processing module includes a register group or a register space, which can be completely set on the processing chip of the processing module, or completely or partially set outside the processing chip and coupled to the processing chip via a dedicated electrical connection and/or via a bus. The processing module can be a central processing unit, a microprocessor, or any suitable processing element. If the computing device is a multi-processor device, that is, the computing device includes multiple processing modules, the processing modules included in the computing device are the same or similar, and are coupled and communicated through a bus. In some embodiments, the processing module can interpret a computer instruction or a series of multiple computer instructions to perform specific calculations or operations, such as mathematical operations, logical operations, data comparison, copying/moving data, etc., so as to drive other hardware components in the computing device or run an operating system or execute various programs and/or modules. The computer instruction can be an assembly language instruction, an instruction set architecture instruction, a machine instruction, a machine-related instruction, a microinstruction, a firmware instruction, or a source code or object code written in any combination of one or more programming languages, and the computer instruction can be completely executed on a single computing device, partially executed on a single computing device, partially executed on one computing device and partially executed on another connected computing device. The above-mentioned programming languages include object-oriented programming languages, such as Common Lisp, Python, C++, Objective-C, Smalltalk, Delphi, Java, Swift, C#, Perl, Ruby, etc., and conventional procedural programming languages, such as C language or other similar programming languages.

Computing devices usually also include one or more chipsets. The processing module of the computing device can be coupled to the chipset or electrically connected to the chipset through a bus. The chipset is composed of one or more integrated circuits (ICs), including a memory controller and a peripheral input/output (I/O) controller, etc. That is, the memory controller and the peripheral input/output (I/O) controller can be included in one IC, or can be implemented using two or more ICs. The chipset usually provides input/output and memory management functions, as well as multiple general and/or dedicated registers, timers, etc., wherein the above-mentioned general and/or dedicated registers and timers can be accessed or used by one or more processing modules coupled or electrically connected to the chipset. In some embodiments, the chipset may also be part of the processing module.

The processing module of the computing device can also access the data in the memory module and the mass storage area installed on the computing device through the memory controller. The above-mentioned memory module includes any type of volatile memory and/or non-volatile memory (NVRAM) memory, such as static random access memory (SRAM), dynamic random access memory (DRAM), read-only memory (ROM), flash memory, etc. The mass storage area mentioned above may include any type of storage device or storage media, such as a hard drive, optical disc, flash drive, memory card, solid state disk (SSD), or any other storage device. In other words, the memory controller can access data in static random access memory, dynamic random access memory, flash memory, hard drive, and solid state disk.

The processing module of the computing device can also be connected and communicated with peripheral devices or interfaces such as peripheral output devices, peripheral input devices, communication interfaces, various data or signal receiving devices, etc. through the peripheral input/output controller via the peripheral input/output bus. The peripheral input device can be any type of input device, such as a keyboard, a mouse, a trackball, a touchpad, a joystick, etc. The peripheral output device can be any type of output device, such as a display, a printer, etc. The peripheral input device and the peripheral output device can also be the same device, such as a touch screen, etc. The communication interface may include a wireless communication interface and/or a wired communication interface. The wireless communication interface may include an interface supporting wireless local area networks (such as Wi-Fi, Zigbee, etc.), Bluetooth, infrared, near-field communication (NFC), 3G/4G/5G and other mobile communication networks (cellular networks) or other wireless data transmission protocols. The wired communication interface may be an Ethernet device, a DSL modem, a cable modem, an asynchronous transfer mode (ATM) device, or an optical fiber communication interface and/or component. The data or signal receiving device may include a GPS receiver or a physiological signal receiver. The physiological signals received by the physiological signal receiver include but are not limited to heartbeat, blood oxygen, etc. The processing module can periodically poll various peripheral devices and interfaces, so that the computing device can input and output data through various peripheral devices and interfaces, and can also communicate with another computing device having the hardware components described above.

The following first uses "Figure 1" as a schematic diagram of the components of the device for guiding the setting of the mobile application without a transaction security mechanism proposed in this invention to explain the device for implementing this invention. As shown in "Figure 1", the device 100 of this invention includes a memory 110, an input unit 120, a communication interface 130, a storage medium 140, an output unit 150, a processor 170, and a bus 190. Among them, the memory 110, the communication interface 130, the storage medium 140, and the processor 170 are connected to each other through the bus 190.

Memory 110 may store one or more sets of computer instructions.

The input unit 120 may provide input data through a peripheral input device of the device 100, and may provide the input data to the processor 170. For example, the input unit 120 may input data through a keyboard, a mouse, a touch pad, or a touch screen.

The communication interface 130 can be connected to an external network storage device or server and other network devices, and request and download data from the connected network device.

The storage medium 140 can store data or signals downloaded from the communication interface 130 , can store data or signals provided to the processor 170 or required by the processor 170 when operating, and can store data or signals generated by the processor 170 .

The output unit 150 may also output the data generated by the processor 170 through the peripheral output device of the device 100. For example, the output unit 150 may display the data through a display or a touch screen.

The processor 170 may include modules such as a security determination module 210, a binding detection module 220, a status acquisition module 230, an input verification module 240, a software and hardware detection module 250, an identity recognition module 260, and a mechanism setting module 270 as shown in the module schematic diagram of the present invention in “Figure 2”. It may also include an attachable interface setting module 280 and a data setting module 290. In some embodiments, the processor 170 can execute computer instructions stored in the memory 110, and can generate the modules in "Figure 2" after executing the computer instructions; in other embodiments, the modules in "Figure 2" can be generated by one or more circuits and/or complete or partial chips and other hardware components, that is, the processor 170 includes hardware components that constitute the modules in "Figure 2", that is, the modules included in the processor 170 can be software modules or hardware modules, and the present invention has no special limitations.

The security control determination module 210 is responsible for determining whether the transaction operation input by the bank customer through the input unit 120 requires the execution of the transaction security control mechanism. The security control determination module 210 may determine that the transaction operation requires the execution of the transaction security control mechanism when the transaction operation is a login operation for providing the bank customer with login information to log into the mobile banking application, or when the transaction operation is an account service operation for providing the bank customer with transfer, remittance, payment, etc. for money transactions, but the transaction operation determined by the security control determination module 210 as requiring the execution of the transaction security control mechanism is not limited to the above.

The binding detection module 220 is responsible for detecting whether the device 100 has been bound when the security control determination module 210 determines that the transaction operation input by the bank customer needs to execute the transaction security control mechanism. For example, the binding detection module 220 can check whether a device authentication token is stored in the storage medium 140. If not, it can be determined that the device 100 is not bound. The binding detection module 220 can also read the device authentication token from the storage medium 140 when the device authentication token is stored in the storage medium 140, and can transmit the read device authentication token to the mobile banking server (not shown) through the communication interface 130, and can receive the binding result returned by the mobile banking server, and determine whether the device 100 has been bound according to the received binding result. However, the method in which the binding detection module 220 detects whether the device 100 has been bound is not limited to the above.

The status acquisition module 230 is responsible for acquiring the verification code acquisition status when the binding detection module 220 detects that the device 100 is not bound. The status acquisition module 230 can acquire the verification code acquisition status input by the bank customer through the input unit 120, but the invention is not limited thereto. For example, the status acquisition module 230 can also search for a data file recording the verification code or the verification code acquisition status in a specific path of the storage medium 140, and can open the data file and read the verification code or the verification code acquisition status. Among them, the verification code is usually generated by a bank-side server such as a mobile banking server (not shown in the figure), and provided by the bank-side server such as the mobile banking server to a bank customer using the device 100, but the present invention is not limited to this.

The input verification module 240 is responsible for providing the bank customer with a verification code to input through the input unit 120 when the verification code acquisition status acquired by the status acquisition module 230 indicates that the verification code has been acquired, and acquiring the verification code input by the bank customer.

The input verification module 240 is also responsible for verifying the obtained verification code to generate a verification result. For example, the input verification module 240 can transmit the obtained verification code to the mobile banking server that generates the verification code through the communication interface 130, so that the mobile banking server can determine whether the received verification code matches the generated verification code (also referred to as verification data in this work), thereby verifying the verification code through the mobile banking server. The input verification module 240 can also receive the verification result returned by the mobile banking server through the communication interface 130. The input verification module 240 may also perform a predetermined specific operation on the obtained verification code to generate a calculation result, and determine whether the calculation result is the same as any one of the one or more verification data pre-generated by the mobile banking server and transmitted to the device 100 for storage to generate a verification result. When the calculation result is the same as a certain verification data, it indicates that the verification code has passed the verification. On the contrary, when the calculation result is not the same as any verification data, it indicates that the verification code has not passed the verification.

The hardware and software detection module 250 is responsible for detecting the hardware and/or software installed on the device 100 to generate a detection result when the verification code obtained by the status acquisition module 230 indicates that the verification code has not been obtained. For example, the hardware and software detection module 250 can obtain the hardware and/or software installed on the device 100 from the configuration file of the operating system executed by the device 100, but the present invention is not limited to this.

The identity recognition module 260 is responsible for selecting an identity recognition mechanism according to the detection result generated by the hardware and software detection module 250, and confirming the identity of the bank customer according to the selected identity recognition mechanism. For example, when the detection result generated by the software and hardware detection module 250 indicates that the recording device 100 includes a fingerprint capture element, the identity recognition module 260 can select fingerprint recognition as the identity recognition mechanism; when the detection result generated by the software and hardware detection module 250 indicates that the recording device 100 includes a face capture element, the identity recognition module 260 can select face recognition as the identity recognition mechanism; when the detection result generated by the software and hardware detection module 250 indicates that the recording device 100 is installed with a password lock or a pattern lock or other software or When the software and hardware detection module 250 generates a detection result recording that the device 100 is set to a SIM card, the identification module 260 can select a phone number verification service as the identification mechanism; when the software and hardware detection module 250 generates a detection result recording that the device 100 is installed with a specific identity confirmation application, the identification module 260 can select an identity confirmation application verification as the identification mechanism.

The identity recognition module 260 can also obtain the registered identity of the bank customer through the communication interface 130, and filter the selectable transaction security control mechanism according to the obtained registered identity. For example, the identity recognition module 260 can be connected to the customer data server (not shown) within the bank through the communication interface 130, and obtain the registered identity of the bank customer from the customer data server. When the registered identity of the bank customer is a depositor, the identity recognition module 260 can filter out the optional transaction security mechanisms as fingerprint recognition, face recognition, numeric password, graphic trace, phone number verification, and identity confirmation application verification. When the registered identity of the bank customer is a credit card holder, the identity recognition module 260 can filter out the optional transaction security mechanisms as only credit card verification.

It should be noted that when the identification module 260 has two or more identification mechanisms to choose from, the identification module 260 can choose an identification mechanism that is easier to perform. In more detail, technical personnel can pre-define the priorities of various identity identification mechanisms according to the difficulty of executing various identity identification mechanisms, so that the identity identification mechanism that is easier to perform has a higher priority, and store the defined priority value in the storage medium 140, so that the identity identification module 260 can select the identity identification mechanism with the highest priority from the selectable identity identification mechanisms according to the priority of the identity identification mechanisms stored in the storage medium 140, but the way in which the identity identification module 260 selects the identity identification mechanism is not limited to the above.

In some embodiments, the identity recognition module 260 can also connect to the mobile banking server through the communication interface 130 to obtain the bank customer's last login time, and can also connect to the bank customer server through the communication interface 130 to obtain the bank customer's phone number update time, the bank customer's phone number duplication status, the card authentication times of the SIM card set on the device 100 and other bank customer information, and can select the identity recognition mechanism based on the obtained bank customer information such as the previous login time, phone number update time, phone number duplication status, card authentication times, etc. For example, when the last login time is greater than the login time threshold, or the phone number update time is less than the update time threshold, or the phone number duplication status indicates that the phone number is reused, or the card authentication times are greater than the authentication times threshold, the identity recognition module 260 may not choose to use the phone number verification service as the identity recognition mechanism.

The identification module 260 may also generate a corresponding prompt message or error message when any identification mechanism cannot be selected, that is, when no identification mechanism can be selected, and the generated prompt message or error message may be displayed through the output unit 150.

The mechanism setting module 270 is responsible for providing the bank customer with a transaction security mechanism to be set through the input unit 120 when the verification code obtained by the input verification module 240 passes the verification of the input verification module 240 or when the identity of the bank customer is confirmed by the identity recognition module 260 .

The mechanism setting module 270 can provide bank customers with transaction security control mechanisms when the device 100 is connected to the Internet and when it is not connected to the Internet. The mechanism setting module 270 can also provide the transaction security control mechanism when the device 100 is connected to the Internet based on the detection results generated by the software and hardware detection module 250. For example, fingerprints, faces, digital passwords, or graphic tracks are set as transaction security mechanisms; the mechanism setting module 270 can also provide transaction passwords when the device 100 is not connected to the Internet as transaction security mechanisms.

When the binding detection module 220 detects that the device 100 has been bound, the interface setting module 280 can obtain the historical transaction records of the bank customer, and select one or more transaction items that need to execute the transaction security control mechanism in the transaction process according to the obtained historical transaction records, and add execution shortcuts corresponding to the selected transaction items in the user interface of the mobile banking application, so that the bank customer can quickly find the transaction items that have been traded in a specific location of the mobile banking application after logging into the mobile banking application.

The data setting module 290 can obtain the personal data of the bank customer through the communication interface 130, and when it is determined that one or more necessary data are not stored in the personal data, it can provide the bank customer with the necessary data through the input unit 120.

Next, an example is used to explain the system operation of the present invention, and please refer to "Figure 3A" for the flowchart of the mobile application provided in the present invention for guiding the setting when there is no transaction security mechanism. In the present example, it is assumed that the device 100 is a smart phone or a tablet computer, but the present invention is not limited to this.

First, the input unit 120 of the device 100 may allow the bank customer to input transaction operations in the user interface of the mobile banking application displayed by the output unit 150 of the device 100 (step 301).

Next, the security control determination module 210 of the device 100 can determine whether the transaction operation input by the bank customer provided by the input unit 120 of the device 100 needs to execute the transaction security control mechanism. If the security control determination module 210 determines that the transaction operation input by the bank customer needs to execute the transaction security control mechanism, the binding detection module 220 of the device 100 can detect whether the device 100 has been bound (step 310). In this embodiment, when the transaction operation is a login operation, a transfer operation, or a payment operation, the security control determination module 210 can determine that the transaction operation needs to execute the transaction security control mechanism.

After the binding detection module 220 of the device 100 detects whether the device 100 has been bound, if the binding detection module 220 detects that the device 100 has not been bound, the status acquisition module 230 of the device 100 can obtain the acquisition status of the verification code (step 330). In this embodiment, it is assumed that the status acquisition module 230 can display the selection interface 410 of the acquisition status of the verification code through the output unit 150 of the device 100 (as shown in "Figure 4A"), and can obtain the acquisition status of the verification code input by the bank customer on the selection interface 410 through the input unit 120 of the device 100.

After the status acquisition module 230 of the device 100 acquires the acquisition status of the verification code, it can be determined whether the acquisition status of the verification code indicates that the verification code has been acquired (step 340). If the acquisition status of the verification code indicates that the verification code has been acquired, the input verification module 240 of the device 100 can provide the bank customer with an input verification code and verify the verification code (step 350). In this embodiment, it is assumed that the input verification module 240 can transmit the user identification data of the bank customer using the device 100 and the verification code input by the bank customer to the mobile banking server for verification through the communication interface 130 of the device 100, and obtain the verification result generated by the mobile banking server after the verification.

After the input verification module 240 of the device 100 generates a verification result, if the verification result indicates that the verification code obtained by the input verification module 240 passes the verification, the mechanism setting module 270 of the device 100 can provide the bank customer with a transaction security mechanism setting (step 381), and can also provide the bank customer with a quick login mechanism setting. In this embodiment, it is assumed that the mechanism setting module 270 can provide a setting interface 420 for bank customers to set the transaction security mechanism used when the device 100 is connected to the network and the transaction security mechanism used when the device 100 is not connected to the network through the input unit 120 of the device 100 through the communication interface 130 of the device 100, as shown in "Figure 4B", and can receive the setting data entered by the bank customer on the setting interface 420 through the communication interface 130, and set the transaction security mechanism and the quick login mechanism according to the received setting data.

After the status acquisition module 230 of the device 100 obtains the verification code acquisition status, if the verification code acquisition status indicates that the verification code has not been obtained, the hardware and software detection module 250 of the device 100 can detect the hardware and/or software installed on the device 100 to generate a detection result, and the identity recognition module 260 of the device 100 can select an identity recognition mechanism according to the detection result generated by the hardware and software detection result (step 360). In this embodiment, it is assumed that the identity recognition module 260 can first connect to one or more servers set up by the bank through the communication interface 130 of the device 100 to obtain the bank customer's last login time, the bank customer's phone number update time, the phone number duplication status of the bank customer's phone number, and the card authentication times of the SIM card set on the device 100, and select an identity recognition mechanism suitable for the device 100 and the bank customer based on the detection results generated by the software and hardware detection results and the obtained previous login time, phone number update time, phone number duplication status, and card authentication times.

After the identity identification module 260 of the device 100 selects the identity identification mechanism, the identity identification module 260 can confirm the identity of the bank customer according to the selected identity identification mechanism (step 370). If the bank customer passes the identity confirmation of the identity identification module, the mechanism setting module 270 of the device 100 can provide the bank customer with a transaction security mechanism to be set (step 385), and can even provide the bank customer with a quick login mechanism to be set. In this embodiment, it is assumed that the mechanism setting module 270 can provide a setting interface 420 for bank customers to set the transaction security mechanism used by the device 100 when connected to the network and the transaction security mechanism used when not connected to the network through the input unit 120 of the device 100 as described above, as shown in "Figure 4B", and set the transaction security mechanism and the quick login mechanism according to the setting data received by the communication interface 130 of the device 100.

Thus, through this invention, when a bank customer logs into a mobile banking application, the mobile banking application can detect the bank customer's setting status of the transaction security control mechanism, and guide the bank customer to set it when the transaction security control mechanism has not been set, so that the bank customer can smoothly use the transaction security control mechanism on the device.

In the above embodiment, if the device 100 further includes an interface setting module 280, as shown in the process of "Figure 3B", after the binding detection module 220 of the device 100 detects whether the device 100 has been bound (step 310), if the binding detection module 220 detects that the device has been bound, the interface setting module 280 can obtain the historical transaction records of the bank customer (step 391), and select the transaction items that need to execute the transaction security control mechanism according to the obtained historical transaction records (step 393), and add the execution shortcut corresponding to the transaction item to the specific area in the user interface of the mobile banking application (step 395).

In summary, the difference between the present invention and the prior art is that when it is determined that the transaction operation input by the bank customer requires the execution of the transaction security control mechanism, the present invention detects whether the device has been bound to the transaction security control mechanism. When the device is not bound to the transaction security control mechanism, the identity recognition mechanism is selected according to the acquisition status of the verification code and the software and hardware on the device, and after the identity recognition mechanism confirms the identity of the bank customer, the present invention provides the bank customer with a technical means to set up the transaction security control mechanism. This technical means can solve the problem of the password SMS being intercepted by someone with ulterior motives during the transmission process in the prior art, thereby achieving the technical effect of reducing the number of SMS messages sent to reduce costs.

Furthermore, the device for guiding the configuration when the mobile application of the present invention has no transaction security mechanism can be implemented in hardware, software, or a combination of hardware and software, and can also be implemented in a centralized manner in a computer system or in a distributed manner with different components distributed in several interconnected computer systems.

Although the implementation methods disclosed in this work are as above, the contents described are not used to directly limit the scope of patent protection of this work. Any person with common knowledge in the technical field to which this work belongs, without departing from the spirit and scope disclosed by this work, makes slight changes and modifications to the implementation form and details of this work, which are all within the scope of patent protection of this work. The scope of patent protection of this work shall still be based on the scope defined in the attached patent application.

100: device 110: memory 120: input unit 130: communication interface 140: storage medium 150: output unit 170: processor 190: bus 210: security control module 220: binding detection module 230: status acquisition module 240: input verification module 250: hardware and software detection module 260: identity module 270: mechanism setting module 280: interface setting module 290: data setting module 301, 310: steps 330~370: steps 381, 385: steps 391~395: Steps 410: Select interface 420: Set interface

Figure 1 is a schematic diagram of the components of the device for guiding the setting of the mobile application proposed in this work when there is no transaction security mechanism. Figure 2 is a schematic diagram of the module of the processor proposed in this work. Figure 3A is a flow chart of guiding the setting of the mobile application proposed in this work when there is no transaction security mechanism. Figure 3B is a flow chart of setting the shortcut for executing transaction items in the user interface proposed in this work. Figures 4A and 4B are schematic diagrams of the user interface proposed in the embodiment of this work.

210: Security control judgment module

220: Binding detection module

230: Status acquisition module

240: Input verification module

250: Software and hardware detection module

260: Identity identification module

270: Mechanism settings module

280: Interface settings module

290:Data setting module

Claims (9)

A device for guiding the setting of a mobile application when there is no transaction security control mechanism, which is operated by a bank customer, and the device at least includes: A security control determination module, used to determine whether a transaction operation input by the bank customer needs to execute a transaction security control mechanism; A binding detection module, connected to the security control determination module, used to detect whether the device has been bound when the transaction operation needs to execute the transaction security control mechanism; A status acquisition module, connected to the binding detection module, used to obtain an acquisition status of a verification code when the device is not bound; An input verification module, connected to the status acquisition module, used to provide the bank customer with the verification code to input and verify the verification code when the acquisition status indicates that the verification code has been obtained; A hardware and software detection module connected to the status acquisition module is used to detect the hardware and/or software installed on the device to generate a detection result when the acquisition status indicates that the verification code has not been obtained; An identity recognition module connected to the hardware and software detection module is used to select an identity recognition mechanism according to the detection result and confirm the identity of the bank customer according to the identity recognition mechanism; and A mechanism setting module is connected to the input verification module and the identity recognition module to provide the bank customer with the transaction security control mechanism when the verification code is verified or the identity of the bank customer is confirmed. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the device further comprises an interface configuration module connected to the binding detection module, for obtaining a historical transaction record of the bank customer when the device has been bound, and selecting at least one transaction item for which the transaction security mechanism needs to be executed according to the historical transaction record, and adding an execution shortcut corresponding to the at least one transaction item in the user interface of the mobile banking application. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the mechanism configuration module is further used to provide the bank customer with a quick login mechanism. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the mechanism configuration module provides the bank customer with the ability to configure the transaction security mechanism of the device when the device is connected to the Internet and when the device is not connected to the Internet. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the identity recognition module is further used to obtain a previous login time of the bank customer, a phone number update time of the bank customer's phone number, a phone number duplication status of the phone number, and a card authentication count of a SIM card installed on the device, and select the identity recognition mechanism based on the previous login time, the phone number update time, the phone number duplication status, and the card authentication count. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the transaction operation is a login operation for providing the bank customer with login information to log into the mobile banking application or an account service operation for providing the bank customer with money transactions. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the identity recognition module is further used to display a corresponding prompt message or error message when the identity recognition mechanism cannot be selected. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the identity recognition module is further used to obtain a registered identity of the bank customer and select the identity recognition mechanism based on the registered identity. A device for guiding the configuration of a mobile application without a transaction security mechanism as described in claim 1, wherein the device further comprises a data configuration module connected to the identity recognition module for obtaining personal information of the bank customer and providing configuration of the at least one necessary information when it is determined that at least one necessary information is not retained in the personal information.

Images