KR102599875B1 - Card status authentication method and device and system using the same - Google Patents

Abstract

The present invention is a method performed through a card status authentication device, comprising the steps of requesting the card issuer terminal to deactivate card use in advance; In a state where the use of the card is deactivated according to a request for deactivation of card use, requesting activation of use of the card through connection with the card issuer terminal or receiving non-payment confirmation request information regarding payment request using the card ; and receiving a card status message after payment by temporarily deactivating card use. According to the present invention, it is possible to prevent payments using duplicated, lost or stolen credit cards by using existing credit cards and their payment systems.

Description

Card status authentication method and device and system using the same {CARD STATUS AUTHENTICATION METHOD AND DEVICE AND SYSTEM USING THE SAME}

The present invention relates to a card status authentication method and a device and system using the same. More specifically, the present invention relates to a method for authenticating card status and a device and system using the same. More specifically, the present invention relates to a method for preventing payments due to duplicated, lost or stolen cards by authenticating the activation and deactivation of the card while using the existing card as is. It relates to a method that can be used and devices and systems that use the same.

The credit card payment system is generally a three-party payment system in which three parties participate in the transaction: the card member (card user), the merchant (seller), and the credit card company (card issuer), and the card company issues the card. It is a four-party payment system in which credit card transactions are centered on four parties: the card issuer, the card purchaser, the card member, and the affiliated store, divided into an issuer and an acquirer. It is divided into Korea's credit card payment system is a three-party payment system, whereas in the United States and Australia, there is a mixture of three- and four-party payment systems.

Credit card payment systems are largely divided into two types. A four-party payment system is open, and a three-party payment system is closed. Representative examples of card issuers in the four-party payment system are VISA and Mastercard.

In Korea, based on a three-party payment system, VAN (Value add network) companies act as intermediaries between card companies and affiliated stores. VAN companies negotiate contracts with card companies on behalf of affiliated stores and help with approval of card transactions. VAN companies perform this role and receive a fee when brokering card payment transaction approvals.

Domestic credit card payment processors are largely divided into three stages: the transaction approval process between members and merchants, the payment (purchase business) process between merchants and card companies, and the payment collection process between card companies and members.

Meanwhile, in the case of online transactions, credit card transactions occur by exchanging only credit card transaction information over the Internet, phone, or email without the buyer or seller meeting face-to-face, so a PG company is used to efficiently broker credit card transaction information and ensure security. (Payment Gateway) participates in the transaction process and plays a role similar to a type of VAN company.

As a technology related to the present invention, a method of confirming card use authority disclosed in the Korean Patent Publication involves transmitting the same string to a card reader and a mobile communication terminal owned by the card holder, and comparing the received string to the card user. It is about how to authenticate. In this related technology, a card reader, that is, the seller, is involved in card user authentication, and a process of comparing the string received by the seller with the string received by the buyer is required. However, in the present invention, the seller is not involved in user authentication of the card. In that the composition and effects of the two inventions are distinct from each other.

Republic of Korea Patent No. 10-0729183 (announced on June 19, 2007)

The problem that the present invention seeks to solve is to provide a method, device, and system that can prevent payments using duplicated, lost, or stolen credit cards using existing credit cards and their payment systems.

The problem that the present invention seeks to solve is to provide a method, device, and system that can enhance the security of the card payment process through authentication of the card status.

The problem that the present invention aims to solve is to provide a device that prevents payment of a duplicate, lost or stolen card by activating or deactivating the usage status of the card through an installed app, and a method and system using the same. will be.

The problem to be solved by the present invention is not limited to the problems mentioned above, and other problems not mentioned will be clearly understood by those skilled in the art from the description below.

In order to achieve the above object, according to an embodiment according to the technical idea of the present invention, a method performed through a card status authentication device includes the step of requesting the card issuer terminal to deactivate card use in advance (S110); In a state where the use of the card is deactivated according to a request for deactivation of card use, requesting activation of card use through connection to the card issuer terminal (S130) or receiving non-payment confirmation request information regarding payment request using the card (S120); and a step of receiving a card status message (S170) after payment by activating card use.

In addition, the card status authentication method includes the step of requesting deactivation of card use in advance (S110) and the step of selecting the effective time of deactivation of card use (S111). Alternatively, it may be configured to include a step (S113) of indeterminately selecting to deactivate card use after n payments are completed (where n is a natural number).

In addition, the card status authentication method includes the step of selecting the effective time of deactivation of card use (S111), specifying when use of the card is deactivated, or specifying when it is exceptionally activated during deactivation (S112). It can be configured to do so.

In addition, the card status authentication method is configured such that the step of selecting the effective time of deactivation of card use (S111) includes the step of optionally entering a time period during which use of the card will be deactivated or activated exceptionally during inactivity (S115). It can be.

In addition, the card status authentication method is configured so that the step of selecting the effective time of deactivation of card use (S111) includes the step of optionally inputting the day of the week on which use of the card will be deactivated or activated as an exception during inactivity (S116). It can be.

In addition, in the card status authentication method, the step of selecting the effective time of deactivation of card use (S111) is when the use of the card is deactivated, or a specific year, month, or day to be activated exceptionally during inactivity, or the use of the card is deactivated. , It may be configured to include a step (S117) of inputting the period to be activated exceptionally during inactivity by dividing it into the starting year, month, and day and the ending year, month, and day.

In addition, the card status authentication method involves selecting the effective time of deactivation of card use (S111) by selecting the time zone and day, specific year, month, day, or period when the card will be deactivated or activated exceptionally during inactivity. It may be configured to include a step of combining and inputting (S118).

In addition, the card status authentication method does not apply to card use deactivation for regular payments using the card, or the step of selecting the effective time of card use deactivation (S111) involves entering a regular payment date that will be activated exceptionally during inactivity. It can be configured to include:

In addition, the card status authentication method is such that the non-payment confirmation request information regarding the payment request is information that informs the user of the card status authentication device of the fact that a payment using a card that is in a deactivated state has been requested and requests confirmation. It is characterized by

In addition, the card status authentication method may be configured to further include a step (S140) of later requesting activation of card use when non-payment confirmation request information is received (S120).

In addition, the card status authentication method is such that the step of requesting activation of card use (S130) is to activate the card use for a certain period of time or until a predetermined number of payments are completed before attempting payment using the card. This is a step of requesting conversion to the status, and the step of requesting card use activation later (S140) is to keep the card use deactivated status for a certain period of time or until a predetermined number of payments are completed after an attempt to make a payment using the card. It is characterized in that it is a step of requesting to switch to the card use activated state.

In addition, in the card status authentication method, at least one of the step of requesting activation of card use (S130) and the step of requesting later (S140) uses user information stored in advance according to an authentication request from the card issuer terminal. It may be configured to include a step of performing authentication (S141).

In addition, the card status authentication method includes at least one of the steps of requesting card use activation (S130) or the subsequent request step (S140) of performing user authentication based on biometric information or an authentication code (S142). It may be configured to further include.

In addition, in the card status authentication method, at least one of the step of requesting activation of card use (S130) or the step of requesting later (S140) performs user authentication using the card information of the card read through tagging. It may be configured to further include a step (S143).

In addition, the card status authentication method is characterized in that non-payment confirmation request information is received by a card status authentication device owned by a legitimate user of the card that has applied for card use deactivation.

In addition, the card status authentication method is configured to further include a step of maintaining the deactivated status of card use (S161) or requesting suspension of card loss (S163) when receiving non-payment confirmation request information regarding the payment request. It can be.

In addition, the card status authentication method is characterized in that the step (S161) of maintaining the card use deactivation status is a step in which non-payment confirmation request information is processed by default without a separate response.

In addition, the card status authentication method is characterized in that the step of receiving a card status message (S170) receives a message notifying card use deactivation, card use activation, or card loss suspension according to the user's settings of the card status authentication device. .

In addition, the card status authentication method is characterized in that the suspension of card loss cancels card use deactivation, and cannot be canceled by a request for card use activation.

Additionally, the card status authentication method may be configured so that the step of requesting deactivation of card use in advance (S110) includes selectively requesting deactivation of card use only for payment amounts that are equal to or exceed a pre-registered payment upper limit.

In addition, the step (S110) of requesting the card issuer terminal to deactivate card use in advance includes a main card having a main card number used for irregular payments and a sub card having a sub-card number used for regular payments assigned to one card. Among them, it may be configured to include a step (S119) of requesting deactivation of use of the main card and maintaining activation of use of the sub card.

In order to achieve the above object, according to an embodiment according to the technical idea of the present invention, a method is performed through a card status authentication device, which is a card issuer terminal, in response to a request for deactivation of card use by a card user or a card user terminal. Step of deactivating card use (S410); In a state where the use of the card is deactivated according to the execution of card use deactivation, card use activation is executed in response to a request for card use activation through connection to the card user terminal (S430), or non-payment is made in response to a payment request using the card. Transmitting confirmation request information (S422); and a step of transmitting a card status message (S462) after payment by activation of card use.

In order to achieve the above object, according to an embodiment of the technical idea of the present invention, there is a device for performing a card status authentication method, which uses a card in which the card cannot be used in a card use activated state in which the card can be used. A card deactivation request unit 110 that transmits deactivation request information requesting deactivation to the card issuer terminal; A card activation request unit 120 that transmits activation request information requesting activation of card use to the card issuer terminal; If there is a payment request using the card while the use of the card is deactivated, an information receiving unit 130 that receives non-payment confirmation request information regarding the payment request from the card issuer terminal; and a control unit 170 that controls the card deactivation request unit 110 and the card activation request unit 120. Deactivation of use or activation of card use is requested from the card issuer terminal through the card activation request unit 120, and the information reception unit 130 is configured to receive a card status message from the card issuer terminal regarding whether card use is deactivated. , a card status authentication device is initiated.

In order to achieve the above object, according to an embodiment according to the technical idea of the present invention, a device that performs a card status authentication method, deactivates card use at the request of the card user or card user terminal. wealth (410); A card activation unit 420 that activates card use at the request of the card user or card user terminal; An information transmitting and receiving unit 430 that transmits non-payment confirmation request information to the card user terminal; A card status information storage unit 440 that stores setting information regarding activation and deactivation of the card and card status information according to the setting information; And a control unit 460 that controls the card deactivation unit 410, the card activation unit 420, the information transmitting and receiving unit 430, and the card status information storage unit 440, where the control unit 460 is a seller terminal or The status of the card is determined in response to the transaction approval request from the intermediary terminal, and if the card is in a state of active use, the transaction is approved, or if the card is in a state of inactive, the transaction is disapproved and non-payment confirmation request information is sent to the card user terminal. Disclosed is a card status authentication device configured to:

In order to achieve the above object, according to an embodiment according to the technical idea of the present invention, it is a system that performs a card status authentication method, and includes deactivation request information requesting deactivation of card use and activation request requesting activation of card use. A card status authentication device ( 100); and a card issuer terminal (400) that transmits non-payment confirmation request information regarding the payment request to the card status authentication device (100) when there is a payment request using the card while the use of the card is deactivated. A card status authentication system is disclosed in which the issuer terminal 400 is configured to transmit a card status message regarding whether the card is deactivated or not to the card status authentication device 100.

Specific details of other embodiments are included in “Specific Details for Carrying Out the Invention” and the attached “Drawings.”

The advantages and/or features of the present invention and methods for achieving them will become clear by referring to the various embodiments described in detail below along with the accompanying drawings.

However, the present invention is not limited to the configuration of each embodiment disclosed below, but may also be implemented in various different forms. However, each embodiment disclosed in this specification ensures that the disclosure of the present invention is complete, and the present invention It is provided to fully inform those skilled in the art of the present invention, and it should be noted that the present invention is only defined by the scope of each claim.

According to the present invention, it is possible to prevent payments using duplicated, lost, or stolen credit cards by using existing credit cards and their payment systems, even if they are not cards dedicated to preventing fraudulent use (BLE cards, fingerprint cards).

Additionally, if card information is leaked, online fraudulent payments cannot be prevented with a card dedicated to preventing fraudulent use, but according to the present invention, online fraudulent payments can be prevented.

In addition, the cost of developing and producing cards dedicated to preventing unauthorized use can be reduced, and existing cards can be more effective than dedicated cards at minimal cost.

In addition, environmental problems caused by waste such as batteries and semiconductor devices from cards dedicated to preventing unauthorized use can be reduced.

In addition, various types of security solutions that can support such as numbers, patterns, images, and biometric information such as fingerprints, irises, veins, and voices can be added through a dedicated app.

Additionally, card use by children without parental consent can be prevented.

Additionally, the security of the card payment process can be strengthened through authentication of the card status.

In addition, you can activate or deactivate the card's usage status through the installed app to prevent payments with duplicated, lost or stolen cards.

The effects that can be achieved by the card status authentication method, device, and system according to the technical idea of the present invention are not limited to the effects mentioned above, and other effects not mentioned can be found in the technical field to which the present invention belongs from the description below. It will be clearly understandable to those with ordinary knowledge.

1 is a network relationship diagram of a card status authentication system according to an embodiment of the present invention.
Figure 2 is a block diagram of a card status authentication device according to an embodiment of the present invention.
Figure 3 is a block diagram of a card status authentication device according to an embodiment of the present invention.
Figure 4 is a flowchart of a card status authentication method according to an embodiment of the present invention.
Figure 5 is a flowchart of a card status authentication method according to an embodiment of the present invention.
Figure 6 is a flowchart of a card status authentication method according to an embodiment of the present invention.
Figure 7 is a data flow diagram of a card status authentication method according to an embodiment of the present invention.
Figure 8 is a flowchart of a card status authentication method according to an embodiment of the present invention.
Figure 9 is a data flow diagram of a card status authentication method according to an embodiment of the present invention.
Figure 10 is a data flow diagram of a card status authentication method according to an embodiment of the present invention.

Before explaining the present invention in detail, the terms or words used in this specification should not be construed as unconditionally limited to their ordinary or dictionary meanings, and the inventor of the present invention should not use the terms or words in order to explain his invention in the best way. It should be noted that the concepts of various terms can be appropriately defined and used, and furthermore, that these terms and words should be interpreted with meanings and concepts consistent with the technical idea of the present invention.

That is, the terms used in this specification are only used to describe preferred embodiments of the present invention, and are not used with the intention of specifically limiting the content of the present invention, and these terms refer to various possibilities of the present invention. It is important to note that this is a term defined with consideration in mind.

In addition, it should be noted that in this specification, singular expressions may include plural expressions, unless the context clearly indicates a different meaning, and may include singular meanings even if similarly expressed in plural. .

Throughout this specification, when a component is described as “including” another component, it does not exclude any other component, but includes any other component, unless specifically stated to the contrary. It could mean that you can do it.

Furthermore, if a component is described as being "installed within or connected to" another component, it means that this component may be installed in direct connection or contact with the other component and may be installed in contact with the other component and It may be installed at a certain distance, and in the case where it is installed at a certain distance, there may be a third component or means for fixing or connecting the component to another component. It should be noted that the description of the components or means of 3 may be omitted.

On the other hand, when a component is described as being “directly connected” or “directly connected” to another component, it should be understood that no third component or means is present.

Likewise, other expressions that describe the relationship between components, such as "between" and "immediately between", or "neighboring" and "directly neighboring", have the same meaning. It should be interpreted as

In addition, in this specification, terms such as "one side", "other side", "one side", "the other side", "first", "second", etc., if used, refer to one component. It is used to clearly distinguish it from other components, and it should be noted that the meaning of the component is not limited by this term.

In addition, in this specification, terms related to position such as "top", "bottom", "left", "right", etc., if used, should be understood as indicating the relative position of the corresponding component in the corresponding drawing. Unless the absolute location is specified, these location-related terms should not be understood as referring to the absolute location.

In addition, in this specification, when specifying the reference numeral for each component in each drawing, the same component has the same reference number even if the component is shown in different drawings, that is, the same reference is made throughout the specification. The symbols indicate the same component.

In the drawings attached to this specification, the size, position, connection relationship, etc. of each component constituting the present invention is exaggerated, reduced, or omitted in order to convey the idea of the present invention sufficiently clearly or for convenience of explanation. It may be described, and therefore its proportions or scale may not be exact.

In addition, hereinafter, in describing the present invention, detailed descriptions of configurations that are judged to unnecessarily obscure the gist of the present invention, for example, known technologies including prior art, may be omitted.

Hereinafter, embodiments of the present invention will be described in detail with reference to the related drawings.

A card status authentication method according to an embodiment of the present invention, and a device and system using the same, include a method of temporarily converting the status of the card to the activated status before payment using the card while the status of the card has been converted to the inactive status; It relates to devices and systems that use this. Here, the range of cards used for payment includes plastic credit cards and application cards that utilize hardware and software using the near field communication (NFC) method or magnetic secure transmission (MST) method. etc. may be included.

1 to 7 show a card status authentication device 100 according to an embodiment of the present invention, a card status authentication system 1 including a plurality of terminals, and a card status authentication method (S100, S200) performed by these. , S400). The card status authentication system 1 may include a card user terminal, a seller terminal 200, an intermediary terminal 300, and a card issuer terminal 400 corresponding to the card status authentication device 100.

1 is a network relationship diagram of a card status authentication system according to an embodiment of the present invention.

Referring to Figure 1, a card status authentication system including a card status authentication device 100, a seller terminal 200, an intermediary terminal 300, a card issuer terminal 400, and a network 500 that connects them to enable communication. (1) is depicted.

The card status authentication device 100, which corresponds to the card user terminal, corresponds to the client requesting change and authentication of the card status, and the card issuer terminal 400 responds to the request for change and authentication of the card status and changes and authentication of the card status. Corresponds to the server that performs authentication.

The card status authentication device 100 is a communication device capable of wired and wireless communication that can perform the functions of a computing device.

The card status authentication device 100 is a dedicated device, a general-purpose computing device, a network terminal, and a wireless device that can request the card issuer terminal 400 to change the card status, that is, request and cancel card use inactivity. It may be at least one type of terminal (wireless terminal).

Various embodiments of wireless terminals include cellular phones, smart phones with wireless communication functions, personal digital assistants (PDAs) with wireless communication functions, wireless modems, portable computers with wireless communication functions, and digital cameras with wireless communication functions. Filming devices, gaming devices with wireless communication functions, music storage and playback home appliances with wireless communication functions, Internet home appliances capable of wireless Internet access and browsing, as well as portable units or terminals that integrate combinations of such functions. It may include, but is not limited to this.

The card status authentication device 100 has the function of requesting the card issuer terminal 400 to deactivate card use, request activation of card use, or request suspension of card loss. The card status authentication device 100 may receive non-payment confirmation request information from the card issuer terminal 400 indicating that the card has been used for payment, while card use is deactivated. In addition, even if the card is copied or stolen, the card status authentication device 100 can request the card issuer terminal 400 to stop card loss.

For example, the card status authentication device 100 may transmit deactivation request information requesting deactivation of card use and activation request information requesting activation of card use to the card issuer terminal 400. Regarding the received non-payment confirmation request information, you can request card activation or stop card loss.

Regarding the fact that the seller terminal 200 has requested payment from the card issuer terminal 400, the non-payment confirmation request information that the card issuer terminal 400 transmits to the card status authentication device 100 is a card in a deactivated state. This corresponds to information that notifies the card user (10) of the card status authentication device (100) of the fact that payment has been requested and requests confirmation. The non-payment confirmation request information may be received by the card status authentication device 100 owned by the legitimate user of the card that has applied for card use deactivation.

The seller terminal 200 is a seller's terminal and may include a terminal of a point of sale system (POS) system.

The intermediary terminal 300 may include a server of a value added network (VAN) or payment gateway (PG), which is a payment agency, depending on whether the transaction between the card user and the seller is an offline transaction or an online transaction.

The card issuer terminal 400 refers to the server of the card company that performs card issuance. The card issuer terminal 400 has the function of deactivating card use and activating card use at the request of the card status authentication device 100. In addition, the card issuer terminal 400, after the use of the card is deactivated in accordance with a request for deactivation of card use, if there is a payment request for the card while the use of the card is not activated, the card status authentication device (100) ) has the function of transmitting non-payment confirmation request information regarding the payment request.

In response to a request to activate or deactivate the card, the card issuer terminal 400 may be configured to transmit a card status message to the card status authentication device 100.

Network 500 may include wired and wireless networks, such as local area networks (LANs), wide area networks (WANs), the Internet, intranets, and extranets, and mobile networks, such as It may be any suitable communications network, including cellular, 3G, LTE, WiFi networks, ad hoc networks, and combinations thereof.

Network 500 may include connections of network elements such as hubs, bridges, routers, switches, and gateways. Network 500 may include one or more connected networks, including public networks such as the Internet and private networks such as secure corporate private networks, such as a multi-network environment. Access to network 500 may be provided through one or more wired or wireless access networks.

Figure 2 is a block diagram of a card status authentication device according to an embodiment of the present invention.

Referring to FIG. 2, the card user terminal corresponding to the front-end of the card status authentication device 100, which constitutes the card status authentication system 1, includes a card deactivation request unit 110 and a card activation request unit. It may be configured to include (120), an information receiving unit 130, a card information storage unit 140, a user input/output unit 150, a communication unit 160, and a control unit 170.

The card deactivation request unit 110 has a function of transmitting deactivation request information requesting deactivation of card use to the card issuer terminal 400 while the card is activated.

The card activation request unit 120 has a function of transmitting activation request information requesting activation of card use to the card issuer terminal 400. It is preferable that the activation request information is transmitted before attempting payment using a card, but it may also be transmitted after attempting payment.

The information receiving unit 130, after the use of the card has been deactivated in accordance with a request for deactivation of card use, in the absence of a request for temporary cancellation, if there is a request for payment using the card according to the above payment attempt, the card issuer It has a function of receiving non-payment confirmation request information about the payment request from the terminal 400.

The card information storage unit 140 has the function of storing information about card use activation and card use inactivity, for example, whether the card is currently in an activated or deactivated state, and information about the history of status transitions. The card status information storage unit 440 of the card issuer terminal 400 can store the information stored in the card information storage unit 140 in the card issuer terminal 400 through synchronization.

The user input/output unit 150 can request a change in card status or input characters required for authentication according to user input, and output a user interface (UI). The user input/output unit 150 may include at least one of a keyboard, a touch screen, a mouse, an electronic pen, and a pen tablet as an input device, and may include at least one of a display, a speaker, a headphone, and a headset as an output device.

The communication unit 160 corresponds to a module for short-range wireless communication and wireless data communication. The card status authentication device 100 can read card information of the IC chip included in the card through short-distance wireless communication, or transmit and receive data with the card issuer terminal 400 through wireless data communication.

The control unit 170 has the function of controlling the card deactivation request unit 110, the card activation request unit 120, the information reception unit 130, the user input/output unit 150, and the communication unit 160.

The control unit 170 has a function to perform user authentication using user information pre-stored in the card status authentication device 100, based on biometric information or an authentication code, or through card tagging. The authentication code may include a password such as a small message service (SMS) or one time password (OTP). Various user authentication functions of the control unit 170 can be implemented through a card status authentication app installed in the card status authentication device 100.

Figure 3 is a block diagram of a card issuer terminal according to an embodiment of the present invention.

Referring to Figure 3, the card issuer terminal 400 corresponding to the back-end of the card status authentication device 100 constituting the card status authentication system 1 includes a card deactivation unit 410 and a card activation unit. It may be configured to include (420), an information transmission/reception unit (430), a card status information storage unit (440), a communication unit (450), and a control unit (460).

The card deactivation unit 410 executes card use deactivation to change the status of the card recorded in the card status information stored in the card status information storage unit 440 in response to a request for card use deactivation from the card status authentication device 100. It has the function of Card deactivation may be automatically executed based on a real-time request from the card status authentication device 100 or setting information pre-stored in the card status information storage unit 440. For example, deactivation of card use may be performed for the first time by requesting subscription to a card status conversion service that can change the status of the card, and automatically after n payments according to card use activation based on the setting information set by the card user. Deactivation of card use can be carried out.

The card activation unit 420 performs card activation to change the status of the card recorded in the card status information stored in the card status information storage unit 440 in response to a request for activation of card use by the card status authentication device 100. It has a function. Activation of card use can be implemented through stricter user authentication compared to deactivation of card use, in that the card can be used for payment by changing the card status.

If there is a payment request while the card is inactive, the information transmitting and receiving unit 430 has a function of disapproving the payment request and then transmitting non-payment confirmation request information regarding the payment request to the card status authentication device 100. have

The information transmitting and receiving unit 430 has a function of receiving activation request information requesting card activation and deactivation request information requesting card deactivation from the card status authentication device 100. Activation request information is preferably received before attempting payment using a card, but may also be received after attempting payment.

The card status information storage unit 440 has the function of storing card status information recorded by the card deactivation unit 410 and the card activation unit 420.

The communication unit 450 corresponds to a module for serial communication, parallel communication, Internet communication, and wireless data communication. The card issuer terminal 400 can transmit and receive various data with the card status authentication device 100 and the intermediary terminal 300 using the communication unit 450.

The card issuer terminal 400 may receive a request for card use deactivation from the card user 10 through an ARS (audio response system) system. In this case, the card issuer terminal 400 is capable of digital or analog communication with the ARS system through the communication unit 450.

The control unit 460 has the function of controlling the card deactivation unit 410, the card activation unit 420, the information transmission and reception unit 430, the card status information storage unit 440, and the communication unit 450.

The control unit 460 determines whether a transaction approval request from the seller terminal 200 or the intermediary terminal 300 is received, and the card for which transaction approval is requested is based on the card status information stored in the card status information storage unit 440. It has the function of determining the card status, that is, card activation or card deactivation. The control unit 460 can approve or disapprove the transaction approval request depending on the card's activation or deactivation status.

Figure 4 is a flowchart of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 4, a card status authentication method (S100) performed by a card status authentication device is depicted.

The card user 10 or the card status authentication device 100 may request the card issuer terminal 400 to deactivate card use in advance by subscribing to the service (S110). Here, card use deactivation refers to a contract between the card issuer (40) and the card user (10) in relation to “card status authentication” according to an embodiment of the present invention, for example, a new concept card by card status conversion service. means discontinuation of use. Deactivation of card use according to an embodiment of the present invention is distinguished from temporary suspension of credit card in Article 7, Paragraph 3 of the Standard Terms and Conditions for Credit Card Individual Members in that various types of deactivation options can be added.

The card user 10 may request deactivation of card use offline, for example, through the ARS system or by visiting the card company, or may receive a card in a deactivated state. In other words, even after the card is issued and initial registration is made for use, the card may automatically be in a card use inactive state upon request by the user prior to issuance. The card status authentication device 100 may request deactivation of card use through an online connection with the card issuer terminal 400.

The card status authentication device 100 may request deactivation of the main card and maintain activation of the sub card (S119). According to the dual number system, two card numbers can be assigned to one card. For example, for irregular payments, the main card number may be assigned to the main card used for irregular payments, and the sub-card number may be assigned to the sub-card used for regular payments. Therefore, the card user 10 can request deactivation of card use for the main card and maintain activation of use for the subcard.

Information about regular payments for which sub-card numbers are used, for example, information about the business operator on which the regular payment will be made and the date of the regular payment, are stored in the card information storage unit 140 and the card issuer terminal 400 of the card status authentication device 100. It can be synchronized and stored in the card status authentication device 100 and the card issuer terminal 400, respectively, through the card status information storage unit 440.

Since sub-card numbers can only be used for payments in relationships with the business specified in the information on regular payments, non-period payments that are not pre-registered in the information on regular payments cannot be approved even if the sub-card number is leaked. .

Next, the card status authentication device 100 requests activation of card use through an online connection with the card issuer terminal (S130) or requests payment using the card while the card is in a deactivated state according to a request for deactivation of card use. You can receive non-payment confirmation request information about the fact (S120).

When the use of the card is deactivated, the card user 10 can activate the card in a deactivated state through the card status authentication device 100 before using the deactivated card for payment. .

The card status authentication device 100 may request that the status of the card that is inactive be changed to the card activation status for a certain period of time or until a predetermined number of payments are completed. This request may be stored in advance in the card issuer terminal 400 by the card status authentication device 100 under the name of setting information. For example, after a one-time payment is made in response to a request for activation of card use, the card may be switched to a state of deactivation of card use immediately or after a certain period of time depending on the setting information.

If the card that is being deactivated is used for payment before card use is activated, that is, if a payment request using the card occurs, the payment using the card is not approved by the card issuer, and the card status authentication device (100) Receives non-payment confirmation request information from the card issuer terminal 400. In this case, the reason why the deactivated card was used for payment may be by a legitimate user or an illegal user.

Next, the card status authentication device 100 may be configured to include a step (S170) of converting the status of the card to an activated status and receiving a card status message after payment using the card.

The card status authentication device 100 may later request that the status of the card that is inactive be changed to the status of card use activated for a certain period of time or until a predetermined number of payments are completed.

If an inactive card is used by a legitimate user, the card user 10 may later request activation of card use in response to the non-payment confirmation request information. When the card is converted to a card use activated state by the card issuer terminal 400, payment using the card can be made by the seller terminal 200 and the intermediary terminal 300.

The card status authentication device 100 of the card user 10 who has completed the payment receives a card status message from the card issuer terminal 400 after being switched to the card use activated state.

If the card being deactivated has been used by an illegal user, the card user 10 may maintain the deactivated status of the card in response to the non-payment confirmation request information (S161) or request suspension of card loss. There is (S163). The step of maintaining the card use deactivation status (S161) may be processed as default if there is no separate response to the non-payment confirmation information.

Here, the “card status message” is a message regarding whether the card is activated, and the card is in a state of deactivated card use at the request of the card user (10) after switching from a state of card use deactivation to a state of card use activation. , it may be in one of the states of card use activation and card loss suspension.

In addition, the status of card use deactivation is canceled by the request to “stop card loss,” and the card is converted to a state in which the card use deactivation state cannot be canceled by the card user 10’s request for card use activation. . A card in the card loss/suspended state can be converted to the card use activated state through a separate user verification process after the stolen or lost card is recovered.

Figure 5 is a flowchart of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 5, the step of requesting deactivation of card use in advance (S110) may be configured to further include the step of selecting an effective time of the request (S111). The step (S111) of selecting the effective time of the request includes a step (S112) of selecting the effective time of the request for deactivation of card use at the time when n payments occurring after the request for deactivation of card use are completed. It can be configured (where n is a natural number). In other words, the effect of deactivating card use can occur when n payments have been completed after the request.

For example, when the card user 10 rents the card to a third party, if the card user 10 requests to deactivate the card after making n payments with the card (S120), the third party makes n payments with the card. After completion, the card automatically switches to a status of card use deactivation, making further use by third parties impossible.

Referring again to FIG. 5, the step of selecting the effective time of the request (S111) will be configured to include the step of selecting the effective time of the request for deactivation of card use (S113). You can. In other words, the effect of deactivating card use can take place immediately upon request. In this case, the card user 10 defaults to deactivating card use, but may additionally add an option to specify when use of the card will be temporarily activated, or conversely, select the section in which card use will be deactivated through options. .

The step of selecting the request time as the effective time of the request (S113) may be configured to include the step of optionally inputting a time period in which use of the card will be exceptionally activated after the request time (S114).

For example, the step of selecting the request time as the effective time of the request (S113) may be configured to include the step of optionally entering a day on which use of the card will be exceptionally activated after the request time (S115). there is. That is, the card user 10 can only activate card use on specific days of the week, for example, Saturday and Sunday, by requesting deactivation of card use with an exception option.

For example, the step (S113) of selecting the request time to be the effective time of the request may be a specific year, month, or day for which use of the card will be exceptionally activated after the request time, or a specific year, month, or day for which use of the card will be exceptionally active. It may be configured to include an optional input step (S116) of dividing the period into the starting year, month, and day and ending year, month, and day. In other words, the card user 10 can activate only card use on certain days or periods by specifying a specific year, month, day, and specific period through a request to deactivate card use with an exceptional option.

For example, in the step S113 of selecting the request time as the effective time of the request, the time zone and day for which use of the card will be exceptionally activated after the request time or a specific year, month, day, or use of the card is selected. It may be configured to include a step (S117) of combining periods to be activated exceptionally and inputting them as options. In other words, the card user 10 can exceptionally activate card use on a specific day of the week, on a specific day, or at a time during a specific period by requesting deactivation of card use by combining the designation of steps S114, S115, and 116.

For example, the step of requesting deactivation of card use in advance (S110) may be configured to include the step of selectively requesting deactivation of card use only for payment amounts that are equal to or exceed the pre-registered payment upper limit (S112). In other words, the card user 10 may determine the payment upper limit and request deactivation of card use by specifying, for example, 100,000 won, thereby preventing payments exceeding 100,000 won or exceeding 100,000 won.

Figure 6 is a flowchart of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 6, the card status authentication method (S400) performed by the card issuer terminal 400 is depicted. When the card is activated or deactivated, the card issuer terminal 400 receives a transaction approval request from the seller terminal 200 or the intermediary terminal 300. Depending on the judgment of the card use status (S414), the card issuer terminal 400 processes the transaction approval request for transaction disapproval (S421) and transmits a card status message to the card status authentication device 100 (S422) or performs a transaction. Approved (S452) and deactivated card use (S461). When the card issuer terminal 400 receives a transaction approval request again in response to a transaction disapproval (S451), the transaction approval (S453) is processed depending on whether the card is in an activated state (S452) and the card is converted to card use deactivated (S452). S461).

Hereinafter, the card status authentication device 100 of the card user 10, the seller terminal 200 of the seller 20, the intermediary terminal 300 of the intermediary 30, and the card issuer terminal 400 of the card issuer 40. The card status authentication method (S100) will be explained in detail using the data flow diagram between the two as an example.

Figure 7 is a data flow diagram of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 7, a flow in which deactivation of card use is requested by a legitimate card user 10 and the card is used for payment through temporary release is depicted.

If there is a request to deactivate card use (S110) by the card status authentication device 100, the card issuer terminal 400 executes deactivation of card use (S410). If the card user 10 needs to use the card, he or she may request the card issuer terminal 400 to activate the card in advance (S130). As a result of the request, the status of card use activation or use inactivity may be synchronized and stored in the card information storage unit 140 and the card status information storage unit 440, respectively. Upon request to activate card use, deactivation of card use is temporarily lifted. Afterwards, when transaction approval is requested (S210) according to the payment request (S150) of the card user (10), the card issuer terminal (400) receives the transaction approval request (S413) and approves the transaction (S450), and the seller (20) delivers the product to the buyer who is the card user.

After the card use deactivation is temporarily canceled, the card may be immediately converted to the card use deactivation state (S461) or may be converted to the card use deactivation state after several payments according to the settings of the card user 10. In this case, the card issuer terminal 400 transmits a card status message regarding the converted status to the card status authentication device 100 (S462). Afterwards, ticket purchase (S310), payment (S470), card payment (S480), and card payment (S190) are conducted between the card issuer (40), intermediary (30), seller (20), and card user (10). is in progress.

Figure 8 is a flowchart of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 8, at least one of the step of requesting activation of card use (S130) and the step of requesting later (S140) uses user information stored in advance according to an authentication request from the card issuer terminal 400. It may be configured to include a step of performing user authentication (S141).

For example, a request to deactivate card use and a request to activate card use may be executed by a card status authentication app that executes a card status authentication method installed in the card status authentication device 100. In this case, the card user 10 can run the card status authentication app using pre-stored user information.

In addition, at least one of the step of requesting activation of card use (S130) and the step of requesting later (S140) further includes a step of performing user authentication based on biometric information or an authentication code (S142). It can be.

For example, a request to deactivate card use and a request to activate card use may be executed by a card status authentication app that executes a card status authentication method installed in the card status authentication device 100. In particular, when the request for activation of card use is delayed, card status authentication is performed to prevent illegal authentication by an illegal user due to duplication, loss or theft of the card status authentication device 100 that the card user 10 must possess. The device 100 may perform user authentication based on biometric information or an authentication code.

In addition, among the step of requesting activation of card use (S130) and the step of requesting later (S140), at least one step further includes performing user authentication using card information of the card read through tagging (S143). It can be configured to include:

For example, requesting additional recognition other than the authentication procedure using pre-stored user information may be cumbersome for the card user 10. Therefore, the card user 10 tags the card he or she possesses to the card status authentication device 100, causes the card information stored in the card to be read by the card status authentication device 100, and uses the card information to verify the user's identity. It can be used for secondary authentication. Here, the card status authentication device 100 can read card information stored in the IC chip included in the card using near field communication (NFC). If the card status authentication device (100), which is a card user terminal, and the card are stolen or lost together and are in the possession of a third party who is an illegal user, the third party may use the card status authentication device (100) even if the third party is in possession of the card. The card cannot be used without unlocking and a separate additional authentication process, such as user authentication based on the biometric information or authentication code described above.

Figure 9 is a data flow diagram of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 9, a flow in which card use is requested for deactivation by a legitimate card user 10 and the card is used for payment through later activation of card use after payment is attempted is depicted.

If there is a request to deactivate card use (S110) by the card status authentication device 100, the card issuer terminal 400 executes deactivation of card use (S410). If the card user 10 needs to use the card, he or she may request card issuer terminal 400 to activate the card in advance. However, a mistake may occur in which the card is immediately used for payment (S112). In this case, despite the transaction approval request (S210) from the seller 20, the transaction is disapproved (S421) by the card issuer terminal 400. In addition to notifying the seller terminal 200 of disapproval, the card issuer terminal 400 transmits non-payment confirmation request information to the card status authentication device 100 (S422).

Next, the card is activated according to a later request (S140) for card use activation by the card status authentication device 100 (S430). Afterwards, when transaction approval is requested again according to the payment request (S150) of the card user (10) (S220), the card issuer terminal (400) receives the transaction approval request (S451) and approves the transaction (S453). , the seller 20 delivers the product to the buyer, who is a card user.

The card may be converted to a state of card use deactivation immediately after being used for payment (S461), or may be converted to a state of card use deactivation after several payments depending on the settings of the card user 10. In this case, the card issuer terminal 400 transmits a card status message regarding the converted state to the card status authentication device 100 (S462). Afterwards, ticket purchase (S310), payment (S470), card payment claim (S480), and card payment (S190) are conducted between the card issuer (40), intermediary (30), seller (20), and card user (10). is in progress.

Figure 10 is a data flow diagram of a card status authentication method according to an embodiment of the present invention.

Referring to FIG. 10, a flow in which deactivation of card use is requested by an illegal card user and card payment is disapproved while the deactivation of card use is not temporarily lifted is depicted.

The card user 10 can request deactivation of card use (S110) through the card status authentication device 100, and the card issuer terminal 400 executes deactivation of card use (S410). There may be cases where the card falls into the hands of a third party who is an illegal user due to duplication, loss, or theft of the card, and the third party uses the card for payment. In this case, despite the transaction approval request (S210) from the seller 20, the transaction is disapproved (S421) by the card issuer terminal 400. In addition to notifying the seller terminal 200 of disapproval, the card issuer terminal 400 transmits non-payment confirmation request information to the card status authentication device 100 (S422). The card status authentication device 100, which receives the unpaid payment confirmation request information from the card issuer terminal 400, immediately receives a card status message (S462). The card status message may be a message confirming that the card is currently in a state of card use deactivation. Additionally, the card status authentication device 100 may request suspension of card loss with respect to the unpaid payment confirmation request information from the card issuer terminal 400.

If the card is switched to a deactivated state to prevent fraudulent use due to duplication, theft, or loss of the card, problems may occur with the regular payment function set on the card. To prepare for such cases, deactivation of card use can be applied only to irregular payments. For example, the card status authentication device 100 activates card use for regular payments by designating various service providers such as telecommunications, gas, and electricity as an exception option for deactivating card use, or designating a regular payment date. It can be registered in advance at the card issuer terminal 400.

As an embodiment of the present invention, one of the ways to solve the problem of the regular payment function due to deactivation of card use is to assign two card numbers to an already issued card or a newly issued card. The main card number is the existing number, that is, the card number displayed on the plastic card, and the subcard number is a virtual number that is used only for regular payments. Unlike the main card number, the sub-card number is not displayed on the plastic card and is used only for regular payments, so it can be relatively safe from card duplication, loss, or theft. Deactivation of card use according to an embodiment of the present invention may be applied only to the main card number and not to the sub-card number, which is the card number for regular payment. Furthermore, the sub-card number used for regular payments can be configured to remain unchanged even when a replacement card is issued due to expiration of the card period.

As such, according to an embodiment of the present invention, it is possible to prevent payments using duplicated, lost, or stolen credit cards by using existing credit cards and their payment systems.

Additionally, the security of the card payment process can be strengthened through authentication of the card status.

In addition, you can activate or deactivate the card's usage status through the installed app to prevent payments with duplicated, lost or stolen cards.

Above, various preferred embodiments of the present invention have been described by giving some examples, but the description of the various embodiments described in the "Detailed Contents for Carrying out the Invention" section is merely illustrative and the present invention Those skilled in the art will understand from the above description that the present invention can be implemented with various modifications or equivalent implementations of the present invention.

In addition, since the present invention can be implemented in various other forms, the present invention is not limited by the above description, and the above description is intended to make the disclosure of the present invention complete and is commonly used in the technical field to which the present invention pertains. It is provided only to fully inform those with knowledge of the scope of the present invention, and it should be noted that the present invention is only defined by each claim in the claims.

100: Card status authentication device (card user terminal)
110: Card deactivation request section
120: Card activation request section
130: Information reception unit
140: Card information storage unit
150: User input/output unit
160: Department of Communications
170: Control unit
200: Seller terminal
300: Intermediary terminal
400: Card issuer terminal
500: Network

Claims (17)

As a method performed through a card status authentication device,
A step of requesting deactivation of card use in advance from the card issuer terminal (S110);
In a state in which the use of the card is deactivated according to the request for deactivation of the card, a request is made to activate the card through connection with the card issuer terminal (S130), or information is requested to confirm the outstanding payment regarding the payment request using the card. Receiving step (S120); and
After payment by activating the card use, it includes receiving a card status message (S170),
Deactivation of the card use does not apply to regular payments using the card,
The step of requesting the card issuer terminal to deactivate card use in advance (S110),
Requesting deactivation of the main card and activating the use of the sub-card among the main card with the main card number used for irregular payments and the sub-card with the sub-card number used only for regular payments assigned to the card Configured to include a step (S119) of maintaining,
Card status verification method. In claim 1, the step of requesting deactivation of card use in advance (S110),
Selecting an effective point in time for deactivating the card use (S111); or
Configured to include a step (S113) of indeterminately selecting card use to be deactivated after n payments are completed (where n is a natural number),
Card status verification method. The method of claim 2, wherein the step of selecting the effective time of deactivation of card use (S111),
Configured to include a step (S112) of specifying when use of the card is deactivated, or specifying when it is exceptionally activated during deactivation,
Card status verification method. The method of claim 3, wherein the step (S111) of selecting the effective time of deactivation of card use is,
configured to include entering a time zone, day, day, period, or combination of time zone and day, day, or period during which use of the card will be deactivated, or activated exceptionally during inactivity,
Card status verification method. In claim 3,
The step (S111) of selecting the effective time of deactivation of card use is,
Configured to include the step of entering a subscription date to be activated exceptionally during inactivity,
Card status verification method. In claim 1,
The non-payment confirmation request information regarding the above payment request is:
Characterized in that it is information that informs the user of the card status authentication device of the fact that payment using the card in a state of card use deactivation has been requested and requests confirmation,
Card status verification method. In claim 6,
When receiving the non-payment confirmation request information (S120), it is configured to further include a step of requesting later activation of the card use (S140),
Card status verification method. In claim 1 or claim 7,
At least one step among the step of requesting activation of card use (S130) and the step of requesting later (S140),
Configured to include a step (S141) of performing user authentication using pre-stored user information in response to an authentication request from the card issuer terminal,
Card status verification method. In claim 8,
At least one step among the step of requesting activation of card use (S130) or the step of requesting later (S140),
Configured to further include a step (S142) of performing user authentication based on biometric information or authentication code,
Card status verification method. In claim 1,
When receiving non-payment confirmation request information regarding the payment request, it is further configured to include a step of maintaining the card use deactivation (S161) or requesting suspension of card loss (S163),
Card status verification method. In claim 10,
The step of maintaining the card use deactivation (S161) is,
Characterized in that the non-payment confirmation request information is processed by default without a separate response,
Card status verification method. The method of claim 1, wherein the step of receiving the card status message (S170) is:
Characterized in receiving a message notifying that card use is deactivated, card use is activated, or card loss is suspended according to the user's settings of the card status authentication device,
Card status verification method. delete As a method performed through a card status authentication device, which is a card issuer terminal,
A step of deactivating card use in response to a request for deactivation of card use from the card user or the card user terminal (S410);
In a state in which the use of the card is deactivated according to the execution of the card use deactivation, card use activation is performed in response to a request for card use activation with the card user terminal (S430), or non-payment is made in response to a payment request using the card. Transmitting confirmation request information (S422); and
After payment by activating the card use, it includes the step of transmitting a card status message (S462),
Deactivation of the card use does not apply to regular payments using the card,
The step (S410) of executing card use deactivation in response to a card use deactivation request from the card user or card user terminal,
Among the main cards with a main card number used for irregular payments assigned to one of the above cards and the sub cards with a sub-card number used only for regular payments, disabling use of the main card and activating use of the sub card Configured to include the step of maintaining,
Card status verification method. A device that performs a card status authentication method,
A card deactivation request unit 110 that transmits deactivation request information requesting deactivation of use of a card that cannot be used in a card use activation state where the card can be used, to the card issuer terminal;
A card activation request unit 120 that transmits activation request information requesting activation of use of the card to the card issuer terminal;
If a payment request is made using the card while the use of the card is deactivated, an information receiving unit 130 that receives non-payment confirmation request information regarding the payment request from the card issuer terminal; and
A card information storage unit 140 that stores status information of activation and deactivation of the card;
It includes a control unit 170 that controls the card deactivation request unit 110 and the card activation request unit 120,
The control unit 170, in response to the non-payment confirmation request information, deactivates card use through the card deactivation request unit 110 or activates card use through the card activation request unit 120 to the card issuer terminal. request,
The information receiver 130 receives a card status message from the card issuer terminal regarding whether or not the card has been deactivated,
Deactivation of the card use does not apply to regular payments using the card,
The card deactivation request unit 110,
Requesting deactivation of the main card and activating the use of the sub-card among the main card with the main card number used for irregular payments and the sub-card with the sub-card number used only for regular payments assigned to the card Configured to maintain,
Card status authentication device. A device that performs a card status authentication method,
A card deactivation unit 410 that deactivates card use at the request of the card user or card user terminal;
A card activation unit 420 that activates card use according to a request from the card user or the card user terminal;
An information transmitting and receiving unit 430 that transmits non-payment confirmation request information to the card user terminal;
A card status information storage unit 440 that stores setting information regarding activation and deactivation of the card and card status information according to the setting information; and
It includes a control unit 460 that controls the card deactivation unit 410, the card activation unit 420, the information transmitting and receiving unit 430, and the card status information storage unit 440,
The control unit 460,
The status of the card is determined in response to a transaction approval request from the seller terminal 200 or the intermediary terminal 300, and if the card is in a state of active use, the transaction is approved, or if the card is in a state of inactive, the transaction is disapproved and the above Send non-payment confirmation request information to the card user terminal,
Deactivation of the card use does not apply to regular payments using the card,
The card deactivation unit 410 deactivates the use of the main card among the main card having a main card number used for irregular payments and the sub-card having a sub-card number used only for regular payments assigned to one of the cards. configured to execute and maintain activation of use of the subcard,
Card status authentication device. As a system that performs a card status authentication method,
Deactivation request information requesting deactivation of card use and activation request information requesting activation of card use are transmitted to the card issuer terminal 400, and in response to the unpaid payment confirmation request information received from the card issuer terminal 400, deactivation of card use is performed. or a card status authentication device (100) that requests card issuer terminal (400) to activate card use; and
If there is a payment request using the card while the use of the card is deactivated, the card issuer terminal 400 transmits the non-payment confirmation request information regarding the payment request to the card status authentication device 100. Including,
The card issuer terminal 400 transmits a card status message regarding whether the card is deactivated to the card status authentication device 100,
Deactivation of the card use does not apply to regular payments using the card,
The card status authentication device 100,
Among the main card with the main card number used for irregular payments and the sub-card with the sub-card number used only for regular payments assigned to the card, deactivation of use of the main card is sent to the card issuer terminal 400. Upon request, the card issuer terminal 400 is configured to deactivate the main card and maintain the activation of the sub card.
Card status authentication system.