KR101831158B1 - A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server - Google Patents
A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server Download PDFInfo
- Publication number
- KR101831158B1 KR101831158B1 KR1020150150765A KR20150150765A KR101831158B1 KR 101831158 B1 KR101831158 B1 KR 101831158B1 KR 1020150150765 A KR1020150150765 A KR 1020150150765A KR 20150150765 A KR20150150765 A KR 20150150765A KR 101831158 B1 KR101831158 B1 KR 101831158B1
- Authority
- KR
- South Korea
- Prior art keywords
- image
- information
- authentication
- image information
- terminal
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q40/00—Finance; Insurance; Tax strategies; Processing of corporate or income taxes
- G06Q40/02—Banking, e.g. interest calculation or account maintenance
-
- G06K9/00221—
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/10—Services
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
Landscapes
- Engineering & Computer Science (AREA)
- Business, Economics & Management (AREA)
- General Business, Economics & Management (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Economics (AREA)
- Marketing (AREA)
- Strategic Management (AREA)
- Tourism & Hospitality (AREA)
- Physics & Mathematics (AREA)
- Accounting & Taxation (AREA)
- Finance (AREA)
- Theoretical Computer Science (AREA)
- Technology Law (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Human Resources & Organizations (AREA)
- Primary Health Care (AREA)
- Development Economics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
Abstract
A method of operating a terminal for providing financial services according to an exemplary embodiment of the present invention includes: displaying an interface for acquiring image information for non-face real name authentication of the financial service, step; Acquiring image information according to a user input through the interface; And transmitting the acquired image information to authentication information for non-face-real-name authentication of the financial service to the server, wherein the image information includes first image information captured by the first image capturing means of the terminal, Face real name authentication of the financial service including the second image information photographed by the second photographing means of the terminal at the same time when the first image information is photographed.
Description
The present invention relates to a terminal for providing financial services, a method of operating the same, a server for providing financial services, and a method of operating the same, more specifically, to enhance personal information protection and security, The present invention relates to a terminal for providing financial services for providing enhanced Internet financial services, a method for operating the terminal, a server for providing financial services, and an operation method thereof.
In general, to open a bank branch and operate it, a specific space must be secured, and a safe box should be provided to store cash inside. A counter terminal, various auxiliary devices, and a communication network for managing and operating them are installed .
In addition, it should be equipped with office assistant to perform various financial services such as coin and bill counter, copier, scanner and various security equipment for safety and security.
As described above, in order to open a bank branch, not only a large space is required but also a high cost is required for installation of various equipments and services. Especially, due to competition with other financial institutions, There is a problem that not only the position preemption but also the cost burden for opening the branch becomes considerable.
To solve these problems, in recent years, along with the development of the IT industry, financial automation devices such as Internet banking and ATM (Automated Teller Machine) using terminals have been developed. As a result, customers visit their own bank Various financial services can be easily processed by using a computer, a portable terminal, or a financial automation device installed nearby.
In addition, through the simplification of such financial services, the Internet Primary Bank is emerging. Internet banking refers to banks that operate most of the banking business through the Internet, electronic media such as CDs and ATMs, without a few branches or branches, and the introduction of Internet banking has been implemented since mid 1990s It is spreading all over the world.
The interest in Internet banking has been stimulated by the development of IT technology and the increasing rate of internet usage, and has been triggered by management innovation and strategic factors such as cost reduction and service differentiation. Since its founding in the United States, SFNB (Security First Network Bank, 1995) has spread to the UK, Japan, EU, Hong Kong and Singapore.
As a result, it is expected that Internet professional banks will be attracting attention in Korea. Recently, there has been a move to reexamine the interpretation and practices of financial reforms that require confirmation of personal identification under the Financial Real Name Act.
However, the non - contact identification method of Internet banking requires a solution to solve or relax the legal constraints of the account opening or the burden of the customer, which poses the problem that there is no clear real name authentication system that can completely replace face - to - face verification.
Therefore, in order to solve the application of the financial real name system, it is necessary to establish a validated system capable of carrying out the real name authentication procedure through the Internet in place of the identity verification process, .
In recent years, there have been proposed methods of submitting a copy of a blindness check, video call, confirming when transferring an access medium, utilizing an existing account, utilizing results of other institutional verification, and verifying a plurality of personal information. However, And the plural methods must be complementary to each other.
In particular, the submission of a copy of the blindness check certificate is essential information required by law for opening an account, and it is basically necessary to enter the above plural methods. Accordingly, the customer must take a procedure by photographing or scanning the ID card to his / her terminal and submit it online, and by checking whether the ID card is authentic in the financial service providing server.
In addition, recently, a face image of a user is also photographed for multiple authentication using a user's video call or the like, and is transmitted to a financial service providing server. Accordingly, the non-face real name authentication can be performed by collating the face image information of the user and the ID image information on the server side.
However, in the verification process for the non-face real name authentication, the face image of the user and the image information of the ID image may be photographed separately at separate time points and separately transmitted separately. There is a problem that it is impossible to prevent illegal acts such as the case where one is individually up / modulated. For example, illegal authentication may be attempted using a face image of another person photographed at a different point in time and an ID image of the other person.
In addition, in order to photograph each image information as described above, the user has to go through two or more complicated procedures such as face photographing and ID image photographing in order to photograph two images or images, respectively. This poses a problem that causes time and inconvenience for non-face authentication.
In addition, although the image information and the ID image information transmitted in the above process can be securely processed in the communication section, the ID image and the image information stored temporarily or semi-permanently on the volatile storage medium of the customer terminal, Can easily be exposed to the outside. Particularly, in a general image input interface for capturing or inputting authentication information such as a user's own ID card or his / her face image, an image or image currently being photographed or indexed is displayed without filtering, and a screen mirroring, You can easily take it.
In addition, there is a problem that an exposed ID image or image can not be protected from access by other applications.
Thus, in order to construct a verified non - face authentication system for financial services, there is also a need to solve the above - mentioned problems of disclosure of personal information, reliability reduction, and security problems.
SUMMARY OF THE INVENTION The present invention has been made to solve the above-mentioned problems, and it is an object of the present invention to provide an Internet financial service providing method capable of providing a financial service in which multiple authentication according to simultaneous photographing is performed, And a terminal for providing the apparatus and the Internet financial service.
It is another object of the present invention to establish a verified system that can perform the real name authentication procedure conveniently and reliably through the Internet in place of the identity verification process that must be confronted with for the new transaction of the Internet bank, .
According to another aspect of the present invention, there is provided a method of operating a terminal for providing a financial service, the method including displaying an interface for acquiring image information for non-face real name authentication of the financial service, step; Acquiring image information according to a user input through the interface; And transmitting the acquired image information to authentication information for non-face-real-name authentication of the financial service to the server, wherein the image information includes first image information captured by the first image capturing means of the terminal, Face real name authentication of the financial service including the second image information photographed by the second photographing means of the terminal at the same time when the first image information is photographed.
According to another aspect of the present invention, there is provided an apparatus for providing a financial service, the apparatus comprising: a display for displaying an interface for acquiring image information for non-face real name authentication of the financial service; part; And a controller for acquiring image information according to a user input through the interface and transmitting the acquired image information to authentication information for non-face real name authentication of the financial service through a communication unit to a server, Information includes first image information captured by a first camera of the terminal and second image information captured by a second camera of the terminal at the same time point when the first image information was captured.
According to another aspect of the present invention, there is provided a server for providing a financial service, the server providing an application including the financial service to a terminal, A communication unit for receiving original image information corresponding to the information; And authenticating the non-face-based real name authentication for the financial service based on the original image information, wherein the image information includes first image information captured by a first camera of the terminal, And the second image information photographed by the second camera of the terminal at the same time when the information is captured.
According to another aspect of the present invention, there is provided a computer program for use in a computer readable recording medium storing a computer program for causing a computer to execute the method.
According to the embodiment of the present invention, the authentication information for the non-face real name authentication of the financial service is composed of the multiple image information simultaneously photographed by using at least two photographing means provided in the terminal, so that the authentication procedure is shortened, Reliability can be improved.
According to the embodiment of the present invention, user convenience can be improved by providing a control application and an interface for easily simultaneously photographing using two or more photographing means.
In addition, the personal information protection area on the interface is identified and masked, and the personal information is protected by protecting the personal information by displaying the masked image information instead. Even if the masked image information is displayed, it is possible to recognize that the user is using the secured interface by notifying the user of the normal image shooting through the change of the guide image or the silhouette, It is possible to provide an application for photographing.
According to the embodiment of the present invention, since the original image information including the multiple authentication images is transmitted to the server providing the financial service separately from the masked image information, the existing real name authentication service can also be normally performed .
Accordingly, it is possible not only to provide a real name authentication service on a financial service in which personal information protection and security of a terminal is enhanced, but also to provide a plurality of users It is possible to construct a verified system capable of performing the real name authentication procedure with peace of mind.
1 is a conceptual diagram schematically showing an overall system according to an embodiment of the present invention.
2 is a block diagram illustrating a financial service providing server according to an embodiment of the present invention.
3 is a block diagram for explaining a terminal according to an embodiment of the present invention in more detail.
4 is a block diagram illustrating an image processing unit according to an embodiment of the present invention.
5 is a ladder diagram illustrating system operation according to an embodiment of the present invention.
6 is a ladder diagram illustrating system operation in accordance with another embodiment of the present invention.
7 is a flowchart illustrating an operation of a terminal according to an embodiment of the present invention.
8 to 12 are views showing interfaces output through a display according to an operation of a terminal according to an embodiment of the present invention.
The following merely illustrates the principles of the invention. Thus, those skilled in the art will be able to devise various apparatuses which, although not explicitly described or shown herein, embody the principles of the invention and are included in the concept and scope of the invention. Furthermore, all of the conditional terms and embodiments listed herein are, in principle, only intended for the purpose of enabling understanding of the concepts of the present invention, and are not to be construed as being limited to such specifically recited embodiments and conditions do.
It is also to be understood that the detailed description, as well as the principles, aspects and embodiments of the invention, as well as specific embodiments thereof, are intended to cover structural and functional equivalents thereof. It is also to be understood that such equivalents include all elements contemplated to perform the same function irrespective of the currently known equivalents as well as the equivalents to be developed in the future, i.e., the structure.
Thus, it should be understood that all flow diagrams, state transitions, pseudo code, etc. are representative of various processes that may be substantially represented on a computer-readable medium and executed by a computer or processor, whether the computer or processor is explicitly shown .
The functions of the various elements shown in the figures, including the functional blocks depicted in the processor or similar concept, may be provided by use of dedicated hardware as well as hardware capable of executing software in connection with appropriate software. When provided by a processor, the functions may be provided by a single dedicated processor, a single shared processor, or a plurality of individual processors, some of which may be shared.
BRIEF DESCRIPTION OF THE DRAWINGS The above and other objects, features and advantages of the present invention will become more apparent from the following detailed description of the present invention when taken in conjunction with the accompanying drawings, in which: There will be. In the following description, well-known functions or constructions are not described in detail since they would obscure the invention in unnecessary detail.
Hereinafter, the present invention will be described in detail with reference to the accompanying drawings.
First, the terms used in the specification of the present invention will be briefly defined, and then an embodiment of the present invention will be described.
The term " terminal "described in this specification may include a mobile phone, a smart phone, a laptop computer, a digital broadcast terminal, a PDA (Personal Digital Assistants), a PMP (Portable Multimedia Player) The present invention is not limited thereto, and may be various devices capable of user input and information display.
Also, the term " financial service providing server "may mean a server and a device system for processing information related to financial transactions. For example, the financial service provision server may include a bank server for relaying financial accounts, a van server for relaying financial card electronic settlement, a credit card server for processing payment approval for credit card transactions, Various types of servers may be involved. As described above, the financial service providing server may include an Internet bank that operates most of the banking business through the Internet and electronic media such as CD and ATM without a few branches or sales offices. Depending on the specific function, the actual financial transaction function and other additional functions may be separated into separate server types.
1 is a conceptual diagram schematically showing an overall system according to an embodiment of the present invention.
Referring to FIG. 1, an overall system according to an embodiment of the present invention includes a financial
The financial
The financial
In addition, the financial
In order to confirm the real name and service of the financial service, the financial
For example, the terminal 200 may access an affiliate site on the user's Internet or an open market such as an Android market or an app store, download a financial service application, enter a user's information, It can be downloaded from the web after the authentication process.
At this time, uploading, updating information or other management of the financial service application may be performed in the financial
Meanwhile, the terminal 200 performs wireless communication through a general mobile communication network and transmits / receives at least one of various messages such as a Short Message Service (SMS), a Multimedia Messaging Service (MMS) Or a cellular phone. In addition, the terminal 200 may include a personal digital assistant (PDA) that can access the mobile communication network and transmit and receive data to and from an Internet Protocol (IP) network such as the Internet.
The terminal 200 according to the embodiment of the present invention can be connected to the financial
In particular, the terminal 200 can perform an account opening application through a financial service application. The terminal 200 can input application information according to user input on the screen and input the real name authentication information to the financial
In particular, according to embodiments of the present invention, most of the processing procedures of financial services can be performed based on non-face authentication. In order to ensure reliability, separate authentication information for non-face authentication according to an embodiment of the present invention may be required.
Accordingly, the application information may include user information corresponding to at least one of a name, a resident number, and an address, and the real name authentication information may include one or more authentication information for confirming the user's real name.
In particular, in the case of an Internet professional banking service requiring non-face authentication, the real name authentication information may include information on a plurality of authentication means. Accordingly, the authentication information may include, for example, a blindness check image (front and back) such as a user's identification card, and may include image information of a user's face, real name verification affiliation information, And may further include one or more of the other account information for the account. Here, the blindness identification certificate may mean a certificate issued by the certification authority in response to the user's real name, for example, a resident registration card, a driver's license or a passport.
Then, the financial
More specifically, when the blindness check certificate image is received from the terminal 200, the financial
Further, for example, the financial
Meanwhile, when the affiliated organization information is received from the terminal 200, the financial
When the account information is received from the terminal 200, the financial
As the real name authentication is completed, the financial
According to the embodiment of the present invention, the terminal 200 can perform personal information protection and security processing on the blindness check image stored in the memory. The security processing may be executed according to the above-described financial service application or the OS itself of the terminal 200. [
In order to protect personal information, the terminal 200 stores a real name verification check image for non-face real name verification of the financial service in a specific area of the memory, manages the photographing time information of the real name verification check image, According to the time information, when the real name verification proof image has been taken a predetermined time or more from the time when the image was taken, the real name verification proof image can be deleted from the specific area of the memory.
Here, the specific area may be a separate secured folder. For security processing, the terminal 200 searches the image information stored in the memory and identifies the real name verification proof image for non-face real name authentication of the user's financial service from the image information, Monitoring the access information corresponding to the folder and the access information corresponding to the identified blindness check identification image, and checking whether an external access other than the application for non-face real name authentication of the financial service is confirmed from the access information , It may require additional authentication for provision of the blindness check image.
Here, the additional authentication may include authentication of at least one of a password for biometric authentication or biometric information, and the biometric information may include at least one of fingerprint information, iris information, grammar information, vein information, and DNA information . In this specification, fingerprint information is described as an example of biometric information, but the biometric information of the present invention is not limited thereto and may include other biometric information or a combination of biometric information.
Also, according to an embodiment of the present invention, the terminal 200 displays an interface for acquiring image information for non-face real name authentication of the financial service, Or masks the personal information protection area from the obtained original image information, and displays the mask information on the masked personal information protection area through the interface have.
According to the embodiment of the present invention, the terminal 200 has two or more photographing means such as a camera and generates multiple authentication information obtained by simultaneously photographing the image of the
Accordingly, in the terminal 200, the face image of the
2 is a block diagram illustrating a financial service providing server according to an embodiment of the present invention.
2, the financial
The controller 110 generally controls the operation of each component and the execution of the functions to provide financial services of the financial
The communication unit 120 enables wireless communication between the financial
On the other hand, the financial
In particular, when the
Accordingly, the real
As described above, the authentication information for real name verification may include a plurality of authentication means. The plurality of authentication means may include at least two or more of, for example, a blindness certificate image, image information, affiliation information, or other account information.
The real
More specifically, the real
In addition, the real
In addition, the real
The real
Meanwhile, in the embodiment of the present invention, the
In addition, the obtained photographing time information may be encrypted through the application in the terminal. Therefore, the real
If the time has elapsed, the terminal 200 may be automatically deleted through the application, but it may have been transmitted. Therefore, the real
Then, the real
Also, the real
In addition, when the user's video call information is included in the authentication information for non-face authentication, the real
On the other hand, when the affiliated organization information is received from the terminal 200, the real
When the account information is received from the terminal 200, the real
Upon completion of the real name authentication of the real
Meanwhile, the application management unit 150 may generate an application for providing a financial service and deliver it to the terminal 200 through the communication unit 120. [ For example, the application management unit 150 can access an affiliate site on the Internet or an open market such as an Android market or an app store, upload a financial service application, and manage update information.
Meanwhile, the storage unit 160 may store information to be processed in each component and a financial service application. The storage unit 160 may be implemented as a random access memory (RAM), a flash memory, a ROM (Read Only Memory), an EPROM (Erasable Programmable ROM), an EEPROM (Electronically Erasable and Programmable ROM) Or the like, as well as a detachable type storage device such as a USB memory.
3 is a block diagram for explaining a terminal according to an embodiment of the present invention in more detail.
3, a terminal 200 according to an embodiment of the present invention includes a control unit 210, a communication unit 220, a memory 230, a financial service processing unit 240, an input unit 250, a display unit 260, An audio output unit 270, an
The communication unit 220 includes at least one module that enables wireless communication between the terminal 200 and the financial
The communication unit 220 includes a wired / wireless communication module for wirelessly or wiredly communicating with a local area network (LAN) and an Internet network, a USB interface module for communicating via a USB (Universal Serial Bus) (Short-range wireless communication module) that performs a communication function according to the 3GPP (3rd Generation Partnership Project), LTE (Long Term Evolution), NFC (Near Field Communication), Wi- And a communication module for communicating with the communication network.
On the other hand, the input unit 250 receives a user input for operating the terminal 200. In particular, the input unit 250 may receive a user input for executing a financial service application interface, and the user inputs application information and authentication information for applying for a financial service to the input unit 250 through an operation corresponding to the interface .
Here, the input unit 250 may include various types of buttons, a touch sensor that receives a touch input to the display unit 260, a proximity sensor that receives motion that is not directly connected to the surface of the display unit 260, And a microphone for receiving the microphone. However, the present invention is not limited thereto and may be implemented in any form capable of receiving user input.
The financial service processing unit 240 processes an application operation for providing a financial service. The financial service processing unit 240 can perform processing of application information for providing a financial service, confirmation of authentication information, encryption, and communication between the financial
In particular, the financial service processing unit 240 may display, through the display unit 260, an interface for receiving user information for providing the financial service through the input unit 250.
In addition, the financial service processing unit 240 may receive a user input corresponding to the authentication information through the input unit 250. [ In particular, the financial service processing unit 240 can photograph the face image information of the user and the proof of real name confirmation through the camera 281 according to user input.
Particularly, in the embodiment of the present invention, the financial service processing unit 240 outputs an interface for photographing the user's face image information and the blindness check image at the same time according to the user input through the display unit 260 can do.
More specifically, the camera 281 may include two or more photographing means for photographing the user image and the blindness verification image, respectively. For example, the camera 281 may include a first camera and a second camera, the first camera may be a front camera 281A of the terminal 200, Camera 281B.
As the interface is displayed, the front camera 281A and the rear camera 281B can be activated at the same time. For this, the control unit 210 can synchronize the operations of the front camera 281A and the rear camera 281B. The control unit 210 can simultaneously activate and activate the operation power of the front camera 281A and the rear camera 281B to acquire image information of each camera at the same time.
The first image information photographed by the front camera 281A and the second image information photographed by the rear camera 281B may be output on the interface according to the activation of the front camera 281A and the rear camera 281B have. For example, the first image information may include face image information of a user, and the second image information may include a user's real name verification image. Accordingly, the terminal 200 can output the simultaneous photographing interface in which the face and the blindness verification image of the same name are simultaneously photographed at the same time, and the user can easily generate the multiple authentication information using the interface .
Accordingly, the financial service processing unit 240 can receive not only the real name verification proof image but also the image information of the user at the same time point through the camera 281 corresponding to the user information. In this case, the financial service processing unit 240 may generate the multiple authentication information in which the face image information or the video call information of the user and the blindness check identification image are synthesized to perform the blind verification.
The control unit 210 synthesizes the first image information including the user's face image information and the second image information including the user's real name verification image through the
The financial service processing unit 240 transmits the user information and the multiple authentication information to the financial
Meanwhile, the financial service processing unit 240 may store the multiple authentication images for non-face real name authentication of the financial service in the memory 230. [ Here, the image including the blindness confirmation certificate such as the multiple authentication image can be generated and stored not only by the financial service processing unit 240 but also by other external applications, and needs to be secured. Accordingly, the financial service processing unit 240 can manage the multiple authentication image corresponding to the blindness verification ID for non-face real name authentication, the blindness verification image included therein, and related information.
To this end, the financial service processing unit 240 includes an image identification module 241, a monitoring module 242, an authentication module 243 and a time information management module 244, Personal information protection, and secure processing and management corresponding to the personal information.
The image identification module 241 searches for image information stored in the memory and identifies an image containing a blindness check for non-face real name authentication of the user's financial service from the image information. Here, the image including the blindness confirmation image may be an image captured and stored through the camera 281, and generally, the shooting time point information may be stored together with the metadata of the image file.
More specifically, the image identification module 241 detects the degree of similarity between the image information stored in the memory 230 and the image of the blindness check sample image, and determines the image including the blindness confirmation certificate if there is a portion having a similarity degree of a predetermined value or more , And the file position information corresponding thereto can be separately stored and managed. In addition, the time information management module 244 can separately manage the shooting time information of the metadata corresponding to the image including the proof of real name verification.
In addition, the image identification module 241 determines whether or not the feature information of the face image, the text information (name, resident registration number, address, issuance date, issuing agency) is extracted by the OCR method from the image determined as the image including the real- It is possible to more clearly discriminate whether or not the image is a real name verification check image.
In addition, in one embodiment, the control unit 210 performs folder movement and time information management of the image including the identified real name verification bell in cooperation with the financial service processing unit 240 and the time information management module 244 . For example, the control unit 210 may move an image including the real name verification certificate to a separate secured folder.
The control unit 210 monitors the access information corresponding to the image folder including the identified blindness check image through the monitoring module 242.
In particular, the monitoring module 242 may reside in the BACKGROUND memory and monitor the access information corresponding to the blindness verification image even when the financial service application is not operating in the foreground.
Therefore, the monitoring module 242 can check whether or not another external application accesses the real name verification check image file and folder from the information processed in the control unit 210, based on the related information. The external application may be, for example, an image editing application, a file management application, or an image sharing application.
For this, the monitoring module 242 periodically checks the operation information of another external application on the OS processed by the control unit 210, and accesses the file including the request for the file path corresponding to the image including the real- Information can be monitored.
If an unauthorized external access other than the application for the non-face-real-name authentication of the financial service is confirmed from the access information, the authentication module 243 performs an additional authentication for providing the image including the real- Demand.
The authentication module 243 may request additional authentication and block the folder access to the external application and the provision of the image including the blindness check. The authentication module 243 displays an additional authentication request message through the display unit 250 and can provide folder access and images to the external application only when the additional authentication of the user is completed.
Meanwhile, the time information management module 244 may manage the real name verification proof image based on the photographing time information under the control of the control unit 210. [ As described above, when the photographing time of the real name verification proof image has elapsed more than a predetermined time based on the photographing time information, the control unit 210 can perform the process of deleting the image including the real name verification proof , And the time information management module 244 may periodically identify shooting time information of an image including the respective blindness check certificates for this purpose and provide the information to the controller 210. [
In addition, the time information management module 244 encrypts the shooting time information for security management of shooting time information, and transmits the encrypted shooting time information to a meta information corresponding to the shooting time information of the image including the real name verification token Can be inserted into the data. Accordingly, an image including the real name verification certificate in the state in which the encrypted photographing time information is inserted as the metadata can be transmitted to the financial
Also, the time information management module 244 may receive the encryption key or the decryption key for encryption or decryption from the server providing the financial service through the application. In the periodic check of the photographing time information, the decryption key So that the encrypted photographing time information can be decrypted. To this end, the time information management module 244 may further include a separate encryption unit and a decryption unit.
In this case, the financial
In addition, the financial service processing unit 240 may further include an encryption unit and a decryption unit in order to provide and block images for the external application. The encryption unit of the financial service processing unit 240 may encrypt the real name verification image itself with the encryption key if the real name verification proof image is identified from the multiple authentication image information. When the authentication is completed in the authentication module 243, the decryption unit of the financial service processing unit 240 may decrypt the real name verification proof image with the decryption key corresponding to the encryption key.
Accordingly, when the additional authentication of the authentication module 243 is not completed, the encrypted image in which the photographing time information is encrypted can be provided to the external application. If the additional authentication is completed, the decrypted image Or may be provided to the external application.
In addition, the authentication module 243 may comprise one or more physical or software authentication means for further authentication.
For example, the authentication module 243 may include a password authentication unit for software authentication. Accordingly, the user can input the additional authentication password to complete the additional authentication.
In addition, the authentication module 243 may include biometric authentication means for the additional authentication. Accordingly, the biometric information corresponding to the user may be stored in the memory 230 in advance, and the biometric information may include at least one of fingerprint information, iris information, grammar information, DNA information, and vein information.
Meanwhile, the financial service may include an Internet banking account opening service. The image identification module 241, the monitoring module 242, the authentication module 243, and the time information management module 244 may include a non- And the application for non-face real name authentication may be included in a financial service provision application for the Internet banking account opening service.
According to the operations of the financial service processing unit 240, the image identification module 241, the monitoring module 242, the authentication module 243, and the time information management module 244, the real- Can be monitored, managed and protected in real time for a certain period of time. Thereafter, the protection of personal information can be enhanced and the user can be relieved by additional authentication request and encryption / decryption at the time of external access can do.
Meanwhile, the
In order to protect personal information, when an interface for acquiring image information under the control of the control unit 210 is displayed on the display unit 260, the
Accordingly, the control unit 210 may control the interface output through the display unit 260 to display the masked image information in place of the multi-authentication image according to the original image. Accordingly, it is possible to limit exposure of personal information output on the display unit 260 during non-face-to-face real name authentication, and to block hacking means such as screen mirroring or scanning in advance.
In addition, the control unit 210 transmits the original image information in the multiple authentication information separately from the masked image information through the communication unit 220, so that the non-face real name authentication procedure can proceed normally.
Here, the
Hereinafter, the configuration of the
4 is a block diagram illustrating an image processing unit according to an embodiment of the present invention.
4, the
The scanning unit 291 according to the embodiment of the present invention can acquire the feature information by scanning each of two or more original images respectively input from the front camera 281A and the rear camera 281B through the interface. In addition, the scanning unit 291 can acquire text information by scanning two or more original images.
More specifically, the scanning unit 291 can acquire the user's facial feature information from each original image information. For example, the present embodiment can be applied when each original image information includes a portrait image of a user for a real-time video call, a face image of a user's face is captured, or a photograph is included in a blindness verification image . The facial feature information includes, for example, facial contour information, mouth pattern information, eye pattern information, nose pattern information, pupil pattern information, ear pattern information extracted from each part in accordance with a mask and a scaling operation of a video image with respect to the face area And may include at least one.
In addition, the scanning unit 291 can acquire the fingerprint feature information from the original image information. For example, when the original image information includes the back side of the physical identification certificate image, the scanning unit 291 can acquire the fingerprint feature information using a fingerprint recognition algorithm such as feature extraction or area recognition.
In addition, the scanning unit 291 can acquire text information from the original image information. For example, when the original image information includes the real verification proof image, the scanning unit 291 can extract text information (name, resident registration number, address, issue date, issuing agency) through a known OCR method.
However, in the embodiment of the present invention, the scanning unit 291 can only check whether the feature information or the text information can be acquired, independently of actually extracting and analyzing the feature information or the text information or permanently storing the information in the memory 230 have. Accordingly, the scanning unit 291 can scan only the identification information of the extractable pixels of the feature information.
When the feature information or the text information is identified as described above, the scanning unit 291 includes the information of the pixels corresponding to the feature information or the text information, the feature information or the text information in the scanning information, ).
The
Based on the scanning information received by the scanning unit 291, the
The
Accordingly, the masking
The masked image information may be displayed on the interface for providing the financial service through the display unit 260 under the control of the control unit 210. [ With such a configuration, personal information is masked and displayed on the photographed images of the front and rear cameras 281A and 281B displayed on the display unit 260, the video call screen, or the blindness check image.
For example, the masking
If the original image information includes image information for real-time video communication, the masking
On the other hand, since the masked image information is displayed, it may be difficult for the user to grasp whether or not the current screen is normally photographed. Accordingly, the control unit 210 may control the
For this, the control unit 210 can periodically check whether or not information processed in the
According to the control of the control unit 210, the masking
Also, the controller 210 displays a guide interface on the interface for acquiring original image information through the display unit 260, and can output whether the non-face authentication of the currently photographed image is possible using the guide interface have. For example, the control unit 210 may output information on non-face authentication through the display unit 260 in the form of characters, images, animations, or the like.
Meanwhile, the
In addition, the user can use the convenient financial service application by shortening the processing procedure even in the state where the personal information is protected, and can easily use the masking image (or the silhouette image) It is possible to provide information on whether or not the user is normally photographed to perform the service, thereby improving user convenience for providing financial services and authenticating non-face-real names.
5 is a ladder diagram illustrating system operation according to an embodiment of the present invention.
5, the financial
The terminal 200 installs an application through the control unit 210 and executes an application for providing a financial service according to an input to the input unit 250 (S103).
Thereafter, the user creates and inputs financial service application information for use of the financial service through the input unit 250 of the terminal 200 (S105), and inputs a multiple authentication image for real name authentication (S107).
Herein, the input of multiple authentication images may include an input for the user to simultaneously activate the front camera 281A and the rear camera 281B to photograph each image information at the same time. The control unit 210 can simultaneously activate the front camera 281A and the rear camera 281B and display the multiple authentication simultaneous photographing interfaces through the display unit 260. [ In addition, the controller 210 may perform a masking process on the personal information protection area of the image information on the interface.
Then, the terminal 200 checks whether the multiple authentication image and the application information are normally input through the financial service processing unit 240 (S109). If the authentication is successful, the terminal 200 transmits the financial service through the secure channel using the communication unit 220 And sends the application information and the proof of real name confirmation to the device 100 (S111).
Herein, the multi-authentication image may include a name of the user who has not been masked and the original image information about the face image.
Then, the financial
Thereafter, the financial
The financial
6 is a ladder diagram illustrating system operation according to another embodiment of the present invention.
Referring to FIG. 6, the financial
Similarly, the terminal 200 installs an application through the control unit 210 and executes an application for providing a financial service according to an input to the input unit 250 (S203). The user creates and inputs financial service application information for use of the financial service through the input unit 250 of the terminal 200 (S105), and performs a multi-authentication process for photographing the image through the front camera 281A and the rear camera 281B The multi-authentication image information is inputted through the interface (S207). Then, the terminal 200 determines whether the multiple authentication image and the application information are normal through the financial service processing unit 240 (S209).
Here, the user's personal area on the interface for capturing the respective image information and the personal information protection area of the blindness verification mark can be masked through the control unit 210. [
The multiple authentication image including the input image information is transmitted to the financial
Here, the image information of the multiple authentication image may include image and audio information for video communication. In the financial
Thereafter, the financial
The financial
7 is a flowchart illustrating an operation of a terminal according to an embodiment of the present invention.
7 illustrates an interface operation for inputting a blindness verification image. Referring to FIG. 7, the terminal 200 outputs an interface for inputting multiple authentication information to the display unit 260 through the control unit 210 (S301).
As described above, the multiple authentication information may include multiple authentication image information such as multiple authentication images or video calls. The interface for capturing the multiple authentication information may include a multiple photographing interface for acquiring respective pieces of image information from the front camera 281A and the rear camera 281B, which are the first camera and the second camera, at the same time .
In accordance with the user input, the terminal 200 acquires the original image information from the first camera and the second camera through the control unit 210, and generates multiple authentication information (S303).
The control unit 210 of the terminal 200 may synchronize the front camera 281A and the rear camera 281B according to a user input to acquire respective original image information photographed at the same point in time. Here, when the multiple authentication information includes real-time image information such as a video call, the control unit 210 receives each frame from the preview information of the front camera 281A and the rear camera 281B, and obtains the real- can do. Here, in consideration of the operation speed and the efficiency, the control unit 210 may acquire only a part of frames periodically and masking processing without processing all the frames. Accordingly, the picture quality or the frame rate of the masked video call screen may be lower than the image quality or the frame rate of the real-time original image information.
In addition, the control unit 210 may combine the original image information with the multiple authentication
Then, the terminal 200 identifies the personal information protection area from the original image information through the image processing unit 290 (S305), and generates a masking image corresponding to the identified personal information protection area (S309).
To this end, the scanning unit 291 of the
In addition, the terminal 200 can identify the user silhouette from the original image information through the
The terminal 200 performs masking processing by overlaying the masking image on the original image information through the masking
On the other hand, the control unit 210 of the terminal 200 determines whether normal input is possible according to whether non-face real name authentication is possible or not based on the original image information (S313), and if not, (S315). ≪ / RTI >
For example, the notification indicating that the real name authentication can not be performed may include at least one of outputting a character notification, changing a guide image, changing a masking image, or changing a masking image in the form of a silhouette. This will be described again with reference to the drawings.
If the normal input is possible, the control unit 210 of the terminal 200 transmits the multiple authentication information including the original image information to the server or continuously provides the video call according to the original image information (S317) And receives the approval information in accordance with the result of the verification processing of the blindness check images in the
8 to 12 are views showing interfaces output through a display according to an operation of a terminal according to an embodiment of the present invention.
FIG. 8 shows an
9, the user can write the financial service application information including the user information through the
9 to 12 show a
10, according to the operation of the
In addition, the control unit 210 may provide a notification message for informing whether or not a normal image is captured on the
For example, as shown in FIG. 10, the terminal 200 displays the original image information of the user ID image of the user photographed by the rear camera 281B and the original image information of the face of the user photographed by the front camera 281A To the
11, when the normal text information or the facial feature information is not extracted from the
12, the control unit 210 of the terminal 200 displays the
For example, as shown in FIG. 12, a case where a user is talking too far can be exemplified. In this case, the control unit 210 displays the color of the masking image of the silhouette in red, exaggerates the size of the mask, or changes the color of the
According to such a configuration and system, it is possible to conveniently generate multiple authentication images that improve the reliability of non-face authentication and to shorten, manage, delete, It is possible to provide a convenient financial service, and it is possible to easily establish a reliable non-face real name authentication system.
The method according to the present invention may be implemented as a program for execution on a computer and stored in a computer-readable recording medium. Examples of the computer-readable recording medium include a ROM, a RAM, a CD- , A floppy disk, an optical data storage device, and the like, and may also be implemented in the form of a carrier wave (for example, transmission over the Internet).
The computer readable recording medium may be distributed over a networked computer system so that computer readable code can be stored and executed in a distributed manner. And, functional programs, codes and code segments for implementing the above method can be easily inferred by programmers of the technical field to which the present invention belongs.
While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is to be understood that the invention is not limited to the disclosed exemplary embodiments, but, on the contrary, It should be understood that various modifications may be made by those skilled in the art without departing from the spirit and scope of the present invention.
100: Financial service provider
200: terminal
300: authentication server
400: Financial institution DB
Claims (16)
Displaying an interface for generating a multiple authentication image by photographing a user's face image information and a real name verification proof image at the same time point for non-face real name authentication of the financial service;
A front camera for photographing the face image information and a rear face camera for photographing the real name verification check image are activated at the same time according to a user input corresponding to the interface, ; And
And transmitting the authentication information for non-face real name authentication of the financial service to the server by including the multiple authentication images synthesized and generated from the obtained original image information,
Wherein the multi-authentication image is transmitted to the server and used for non-face-real-name authentication of the financial service,
Wherein the displaying comprises:
Displaying, in place of the multi-authentication image, an interface for generating the multi-authentication image in real time, wherein the personal information protection area identified from the original image information is overlaid with the masking image in real time;
A method of operating a terminal for providing financial services.
Wherein the displaying comprises:
A masking image corresponding to the identified personal information protection area is identified by identifying each personal information protection area on the front camera interface screen and the rear camera interface screen simultaneously displayed on the interface, Overlaying the masking image on the original image information including the blindness verification image and synthesizing the masking image with the original image information to generate and display the masked image information
A method of operating a terminal for providing financial services.
A display unit for displaying an interface for generating a multiple authenticated image by photographing a user's face image information and a real name verification proof image at the same time point for non-face real name authentication of the financial service;
A front camera for photographing the face image information and a rear face camera for photographing the real name verification check image are activated at the same time according to a user input through the interface, And a controller for transmitting the acquired original image information to the server through a communication unit, the authentication information for non-face real name authentication of the financial service,
The image information includes a blindness check image photographed by a rear face camera of the terminal at the same time as the face image information photographed by the front face camera of the terminal and the face image information is photographed, The multi-authentication image being transmitted to the server,
Wherein the display unit displays image information in which a personal information protection area identified from the original image information is overlaid in real time as a masking image in place of the multi-authentication image on an interface for generating the multi-authentication image
A terminal that provides financial services.
Wherein the display unit generates a masking image corresponding to a personal information protection area identified from the front camera screen and the rear camera screen, and superimposes the masking image on the original image information including the face image information and the blindness check image, And synthesizes the original image information, thereby generating and displaying masked image information
A terminal that provides financial services.
A communication unit for providing an application including the financial service to a terminal and receiving original image information corresponding to user information from an application including the financial service; And
And a real name confirmation unit for approving the non-face-based real name authentication for the financial service based on the original image information,
Wherein the original image information includes multiple face authentication information including face image information captured by a front camera of the terminal and a blindness check image photographed by a rear face camera of the terminal at the same time point when the face image information is captured ,
An interface for capturing the face image information of the user and the image of the real name verification image at the same time point and generating the multiple authentication image is displayed on the terminal,
Wherein the original image information is obtained by activating the front camera for photographing the face image information and the rear face camera for photographing the real name verification check image at the same time and applying operation power to the terminal,
The multi-authentication image synthesized from the original image information is received through the communication unit,
Wherein the terminal displays image information in which a personal information protection area identified from the original image information is overlaid in real time with a masking image in place of the multiple authentication image on an interface for generating the multiple authentication image
Server for providing financial services.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| KR1020150150765A KR101831158B1 (en) | 2015-10-29 | 2015-10-29 | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| KR1020150150765A KR101831158B1 (en) | 2015-10-29 | 2015-10-29 | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| KR20170049887A KR20170049887A (en) | 2017-05-11 |
| KR101831158B1 true KR101831158B1 (en) | 2018-04-04 |
Family
ID=58742295
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| KR1020150150765A KR101831158B1 (en) | 2015-10-29 | 2015-10-29 | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server |
Country Status (1)
| Country | Link |
|---|---|
| KR (1) | KR101831158B1 (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2022114290A1 (en) * | 2020-11-27 | 2022-06-02 | 주식회사 유스비 | Non-contact personal authentication system and method therefor |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR102539533B1 (en) * | 2017-09-04 | 2023-06-05 | 한국전자통신연구원 | Method and apparatus for preventing other people from photographing identification |
| KR102180719B1 (en) * | 2020-03-20 | 2020-11-19 | 한국인식산업(주) | Non-faced account opening system and non-faced account opening method using the same |
| WO2022010022A1 (en) * | 2020-07-06 | 2022-01-13 | 주식회사 유스비 | Non-contact personal authentication customer identification apparatus and method therefor |
-
2015
- 2015-10-29 KR KR1020150150765A patent/KR101831158B1/en active IP Right Grant
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2022114290A1 (en) * | 2020-11-27 | 2022-06-02 | 주식회사 유스비 | Non-contact personal authentication system and method therefor |
| KR20220074147A (en) * | 2020-11-27 | 2022-06-03 | 주식회사 유스비 | System and method for non-face-to-face identification kyc solution |
| KR20220136963A (en) * | 2020-11-27 | 2022-10-11 | 주식회사 유스비 | System and method for non-face-to-face identification kyc solution having excellent security |
| KR102447899B1 (en) * | 2020-11-27 | 2022-11-02 | 주식회사 유스비 | System and method for non-face-to-face identification kyc solution |
| KR102594999B1 (en) | 2020-11-27 | 2023-10-27 | 주식회사 유스비 | System and method for non-face-to-face identification kyc solution having excellent security |
Also Published As
| Publication number | Publication date |
|---|---|
| KR20170049887A (en) | 2017-05-11 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| TWI508007B (en) | Secure electronic payment system and process | |
| KR101812969B1 (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
| US11605096B2 (en) | Initiating a device security setting on detection of conditions indicating a fraudulent capture of a machine-readable code | |
| KR101856038B1 (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
| JP2017530586A (en) | System and method for authenticating a client to a device | |
| JP2020064541A (en) | Identity verification program, identity verification method and information processing apparatus | |
| KR101831158B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
| US20170169435A1 (en) | Method and system for authorizing a transaction | |
| CN103729948A (en) | Electronic payment method of mobile terminal with NFC (near field communication) and fingerprint functions | |
| WO2018234882A1 (en) | A system and method for conducting a transaction | |
| CN105279641A (en) | Internet payment registration authentication and implementation methods and devices | |
| KR101935817B1 (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
| US20170337553A1 (en) | Method and appartus for transmitting payment data using a public data network | |
| KR102594999B1 (en) | System and method for non-face-to-face identification kyc solution having excellent security | |
| KR102073563B1 (en) | Financial transaction method and system using financial automation device based on qr code | |
| KR101813950B1 (en) | An automated teller machine and a method for operating it | |
| KR101973592B1 (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
| KR101742064B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
| KR101794108B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
| CN110084021B (en) | Counter terminal, client and counter data interaction method and system | |
| KR20150115049A (en) | Method and system for enhancing security of ATM by using face recognition | |
| KR101813534B1 (en) | An automated teller machine and a method for operating it | |
| KR20190052585A (en) | System for dealing a digital currency with block chain with preventing security and hacking | |
| KR101720273B1 (en) | A terminal for providing banking services, a method for operating the terminal, a server for providing banking services and a method for operatin the server | |
| CN113065622A (en) | Business handling method, terminal and server |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| A201 | Request for examination | ||
| E902 | Notification of reason for refusal | ||
| AMND | Amendment | ||
| E601 | Decision to refuse application | ||
| AMND | Amendment | ||
| X701 | Decision to grant (after re-examination) |