YD/T 4583-2023
Technical Requirements for Preventing Fraud Risks in Short Messages with Verification Codes for High-Frequency Industries (English Version)

Standard No.: YD/T 4583-2023
Language: Chinese, Available in English version
Release Date: 2023
Published By: Professional Standard - Post and Telecommunication CN / YD
Latest: YD/T 4583-2023

Introduction

Standard Core Framework and Technology Evolution

This standard aims at the problem of verification code short message abuse in telecommunications fraud, and builds a three-layer protection system of strategy-service-application. Compared with the traditional single verification code mechanism, it innovatively introduces new technologies such as unified anonymous device identifier and cloud-based intelligent risk control to achieve the transformation from passive defense to active identification.

Comparison of key protection mechanisms

Technology type	Applicable scenarios	Security strength	User experience
Cloud slider verification code	Universal on all platforms	★★★★☆	Interactive operation required
Number authentication	Mobile priority	★★★★★	One-click verification
VTT dynamic verification code	High-risk scenarios	★★★★★	Complex interaction

Analysis of typical application scenarios

Registration scenarios in the financial industry

A bank APP adopts "number authentication + intelligent risk control" double verification:

The first verification passed automatic identification of the local number
Abnormal device triggers VTT dynamic semantic verification
Frequent requests from the same IP initiate risk control interception

After implementation, fraudulent SMS decreased by 72%

Implementation suggestions

Deployment priority strategy

Mobile priority: preferred number authentication in cellular network environment
WEB enhancement: adopt cloud slider + IP frequency control combination
High-risk operation: force to enable VTT verification + device fingerprint

Risk control parameter configuration

Indicator	Threshold recommendation	Monitoring period
Single number sending frequency	≤3 messages/minute	Real-time
IP request volume	≤50 times/hour	5 minutes
Number of verification failures	≤5 times/2 minutes	Sliding window

YD/T 4583-2023 history

2023 YD/T 4583-2023 Technical Requirements for Preventing Fraud Risks in Short Messages with Verification Codes for High-Frequency Industries

Technical Requirements for Preventing Fraud Risks in Short Messages with Verification Codes for High-Frequency Industries

Topics on standards and specifications

verification technology

Standard and Specification

X9 TR-48-2018 Card-Not-Present (CNP) Fraud Mitigation in the United States: Strategies for Preventing@ Detecting@ and Responding to a Growing Threat (ASCX9 HJBZ 36-1999 Magnetic anti-scale water processor ISO/IEC TR 15942:2000 Information technology - Programming languages - Guide for the use of Ada programming language in high integrity systems ETSI TR 103 728-2024 System Reference document (SRdoc); Transmission characteristics; Technical characteristics for SRD radiodetermination systems for industry automation ISA TR84.00.02-2022 Safety Integrity Level Verification of Safety Instrumented Functions GSO ISO/IEC TR 15942:2021 Information technology — Programming languages — Guide for the use of the Ada programming language in high integrity systems BS ISO/IEC TR 15942:2000 Information technology - Programming languages - Guide for the use of the Ada programming language in high integrity systems AWWA ACE54502 Australia's Framework for Management of Drinking Water Quality: A Preventive Strategy from Catchment to Consumer BS EN 62116:2011 Test procedure of islanding prevention measures for utility-interconnected photovoltaic inverters BS DD CLC/TS 50466:2006 Long duration storage of electronic components - Specification for implementation

YD/T 4583-2023Technical Requirements for Preventing Fraud Risks in Short Messages with Verification Codes for High-Frequency Industries (English Version)