KR20160143333A - Method for Double Certification by using Double Channel - Google Patents

Abstract

The present invention relates to a dual authentication method using a redundant channel, and more particularly, to a method for executing a dual authentication method using a redundant channel, A second step of assigning a call destination number for requesting call connection via the telephone network among the N (N > = 2) destination numbers to the communication number of the wireless terminal; After transmitting the assigned authentication call destination number to the wireless terminal, an application (application) installed in the wireless terminal hashes the communication number of the wireless terminal to generate H (communication number) (Communication number) is included in a designated area on the text message structure via the telephone network and is sent to the disposable destination number via the telephone network A third step of confirming receipt of a text message; and a third step of confirming receipt of a verification number or a corrected calling number through the telephone network in the process of transmitting and receiving a text message via the telephone network and H (communication number) included in the text message received via the telephone network A fifth step of comparing the communication number mapped with the disposable destination number in which the text message is received and the origination number of the text message received through the telephone network to check whether the text message is matched; If the communication number mapped to the received disposable call number matches the calling number of the text message received through the telephone network, the communication number of the wireless terminal mapped with the received disposable call number is H ' A communication number of the mobile terminal mapped with the received disposable call number; Generated if H 'matching by comparing the H (communication number) included in the communication (number) and a text message received via the telephone network and a seventh step of the second check.

Description

[0001] The present invention relates to a dual channel authentication method,

The present invention relates to a communication system in which a hashed communication number included in a text message transmitted via a telephone network among a plurality of telephone networks and data networks capable of being accessed from a wireless terminal and a communication number transmitted via a data network are received, And a method for receiving and receiving a text message using an authentication call destination number.

Various applications are installed in a wireless terminal such as a smart phone capable of multiple access to a telephone network and a data network. In order to perform integrity verification and hacking detection of a corresponding application, Securing a communication number is one of the most important problems.

Conventionally, a method for authenticating an application after installing an application on a smart phone is a method in which a user inputs personal information including a phone number on a user interface output through an application and transmits the personal information to a server, It sends out a text message, re-enters the authentication number, and authenticates it. In addition, the smartphone adopts a method to acquire additional information necessary in connection with the affiliated communication company.

In the conventional SMS authentication number authentication method, after a phone number is inputted and transmitted through an app, an SMS including an authentication number is sent to the corresponding phone number from a server, and an authentication number is inputted from an app of the corresponding phone number, The input and transmitted telephone numbers are recognized as the telephone numbers of the actual wireless terminals. However, the SMS authentication number authentication method has a problem that if the wireless terminal is already hacked or modulated, it can be easily stolen even if it is not an actual wireless terminal by taking an SMS authentication number.

The conventional communication company DB authentication method is a method of extracting various unique information of a wireless terminal from an app and providing it as a subscribed communication company, thereby authenticating whether or not the information matches the information secured in the DB of the communication company. However, most of the unique information of the wireless terminal is recorded in the USIM, and some smart phones (for example, Apple's iPhone) have a problem that they can not authenticate the communication DB by blocking the USIM access through the application.

In the recent SMS transmission / reception, a legislative proposal was filed to amend the telecommunication business law that telecommunication companies verify / correct the origination / modification of SMS origination number and block / correct it. Therefore, even if the wireless terminal sending the SMS has already been hacked or altered to transmit / receive the origination number of the SMS, the SMS may be prevented from reaching the destination by the communication company or the communication number may be corrected by the communication company .

In order to solve the above problems, it is an object of the present invention to provide a communication system and a communication system for receiving a communication number transmitted through a data network and a hashed communication number included in a text message transmitted through a telephone network, And comparing the hash numbers with each other and verifying whether or not the hash is matched, and receiving a text message by using the authentication call destination number.

A dual authentication method using a dual channel according to the present invention is a method executed by a server communicating with a wireless terminal that multiple accesses to a telephone network and a data network, the method comprising: receiving a communication number of a wireless terminal, A second step of assigning an authentication use destination number capable of requesting call connection via the telephone network from among the N (N > = 2) called numbers to the communication terminal and mapping the same to the communication number of the wireless terminal; After transmitting the assigned authentication call destination number to the wireless terminal, an application installed in the wireless terminal hashes the communication number of the wireless terminal and generates H (communication number) (H) (communication number) to a designated area on the text message structure via the telephone network and transmits the text message to the disposable destination number via the telephone network A third step of confirming receipt of a text message received via the telephone network, and confirming or correcting the calling number verified or corrected through the telephone network in the process of transmitting and receiving a text message via the telephone network and H (communication number) included in the text message received via the telephone network A fifth step of comparing the communication number mapped with the received disposable call number and the calling number of the text message received through the telephone network to check whether the text message is matched; If the communication number mapped to the received disposable call number matches the calling number of the text message received via the telephone network, the text message is hashed to the communication number of the wireless terminal mapped with the received disposable call number, (H ') generated by hashing the communication number of the wireless terminal mapped with the received disposable number, If the matching by comparing the H (communication number) included in the new number) and a text message received via the telephone network and a seventh step of the second check.

A dual authentication method using a dual channel according to the present invention is characterized in that a text message is received by the disposable destination number via the telephone network and a text message is transmitted through the telephone network to a verified or corrected text message A communication number of a wireless terminal mapped with a calling number and a disposable call destination number in which the text message is received are matched with each other, and H (communication number) included in a text message received via the telephone network and disposable And generating an authentication result of authenticating the validity of the communication number received through the data network, if the H '(communication number) generated by hashing the communication number of the mapped wireless terminal with the called number are matched with each other .

In the dual authentication method using a dual channel according to the present invention, the communication number includes at least one of a telephone number key input through an application of the wireless terminal, and a telephone number extracted from a USIM of the wireless terminal .

In the dual authentication method using a dual channel according to the present invention, the communication number may include at least one of a Universal Unique Identifier (UUID) assigned to an app of the wireless terminal, an ICCID (Universal Subscriber Identity Module) recorded in a Universal Subscriber Identity Module An Integrated Circuit Card Identifier, an International Mobile Station Identity (ISMI), and an International Mobile Equipment Identity (IMEI).

In the dual authentication method using a dual channel according to the present invention, the app of the wireless terminal includes a message sending function via the telephone network, and transmits H (communication number) information through a telephone network using the built- And transmits the text message including the text message.

In the dual authentication method using a dual channel according to the present invention, an app of the wireless terminal is interlocked with a message sending function provided in the wireless terminal, and is linked to a message sending function of the wireless terminal, Number) of the text message.

In the dual authentication method using a dual channel according to the present invention, an app of the wireless terminal is controlled so that a message sending interface for sending a text message including the H (communication number) is not displayed on the screen .

In the dual authentication method using a dual channel according to the present invention, when a message sending interface for sending a text message is displayed on the screen, the app of the wireless terminal includes the message in the text message by a user operation on the message sending interface (Communication number) to be edited is not edited or changed.

In the dual authentication method using a dual channel according to the present invention, the application of the wireless terminal casts H (communication number) to a specified digit and includes it in a designated area of the text message.

In the dual authentication method using a dual channel according to the present invention, the H (communication number) may be at least one of a body area of the text message, a hidden area of the text message, and a spare area of the text message Area. ≪ / RTI >

In the dual authentication method using dual channels according to the present invention, the text message is selectively received when the validity of the origination number is verified or corrected through the telephone network.

In the dual authentication method using a dual channel according to the present invention, the first step may further include restoring H (communication number) included in a designated area of the text message in a binary manner.

The dual authentication method using a dual channel according to the present invention is characterized in that the first step further comprises a step of verifying the integrity of the H (communication number).

In the dual authentication method using a dual channel according to the present invention, the second step may include: setting an effective time of the calling number and H (communication number) stored in the mapping step; and, when the valid time has elapsed, And erasing the number and the H (communication number).

The dual authentication method using a dual channel according to the present invention may further include storing the authenticated communication number in a designated storage medium.

According to the present invention, a network interworking authentication and a hash authentication are performed in duplicate using a telephone network and a data network capable of multiple accesses of a wireless terminal independently of a database of a communication company to which the wireless terminal subscribes, It is possible to accurately identify and authenticate the communication number of the terminal.

1 is a diagram illustrating a dual authentication system using a dual channel according to an embodiment of the present invention.
2 is a diagram illustrating a functional configuration of a wireless terminal 200 and an application 250 according to an embodiment of the present invention.
3 is a diagram illustrating a process of mapping a communication number of a wireless terminal 200 and an authentication call destination number according to an embodiment of the present invention.
4 is a diagram illustrating a process of providing a communication number via a telephone network according to an embodiment of the present invention.
FIG. 5 is a diagram illustrating a process of providing a communication number through a data network, performing network interworking authentication and hash authentication according to an embodiment of the present invention.

The operation principle of the preferred embodiment of the present invention will be described in detail with reference to the accompanying drawings and description. It should be understood, however, that the drawings and the following detailed description are exemplary and explanatory and are intended to provide further explanation of the invention, and are not to be construed as limiting the present invention.

In the following description of the present invention, a detailed description of known functions and configurations incorporated herein will be omitted when it may make the subject matter of the present invention rather unclear. The terms used below are defined in consideration of the functions of the present invention, which may vary depending on the user, intention or custom of the operator. Therefore, the definition should be based on the contents throughout the present invention.

As a result, the technical idea of the present invention is determined by the claims, and the following embodiments are merely means for effectively explaining the technical idea of the present invention to a person having ordinary skill in the art to which the present invention belongs Only.

1 is a diagram illustrating a dual authentication system using a dual channel according to an embodiment of the present invention.

1 is a block diagram illustrating a configuration of a wireless terminal 200 (a first channel) and a data network (a second channel), which are capable of being connected to a wireless terminal 200 through a telephone network Receives the communication number transmitted from the app 250 of the wireless terminal 200 via the data network and receives the communication number transmitted from the application 250 of the wireless terminal 200 via the telephone network (= First authentication) for authenticating the communication number received via the data network using the origination number of the text message received by the authentication call destination number and H (communication number) received through the text message of the telephone network. And a hash authentication (= second authentication) for hashing and authenticating the communication number received via the data network with a hash algorithm to authenticate the communication number of the wireless terminal 200. As shown in FIG. This belongs to Those skilled in the art will be able to refer to or modify the FIG. 1 to illustrate various implementations of the dual-authentication system configuration using the dual channel (e.g., some configuration portions may be omitted, or subdivided, However, the present invention includes all of the above-described embodiments, and the technical features of the present invention are not limited only by the method shown in FIG.

The system according to the present invention includes a wireless terminal 200 that accesses a telephone network and a data network in a multiple access mode and an H (communication number) hash function that is hashed by a hash algorithm specified in the app 250 of the wireless terminal 200 through a text message of the telephone network Receives the communication number transmitted from the app 250 of the wireless terminal 200 via the data network at the same time as receiving the authentication call destination number and uses the calling number of the text message received via the telephone network for the authentication call destination number (First authentication) for authenticating the communication number received via the data network and H (communication number) included in the text message received by the authentication use destination number via the telephone network and the data network And an authentication server 100 for performing a hash authentication (= second authentication) for hashing the received communication number by hashing it with a specified hash algorithm, and the authentication server 100 includes a single server or a combination of a plurality of serversState can be implemented.

The wireless terminal 200 is a general term of a terminal which can be connected to a telephone network and a data network among the terminals used by the user. The wireless terminal 200 may include a smart phone, which is preferably connectable to the telephone network and the data network.

According to an embodiment of the present invention, the wireless terminal 200 downloads and installs an application 250 to perform public authentication using a dual channel from a server (not shown) provided with a designated application 250, The app 250 installed in the wireless terminal 200 performs the dual authentication process using the dual channel according to the present invention when the app 250 is executed for the first time (or before the communication number authentication via the app 250).

The app 250 of the wireless terminal 200 displays an interface for receiving a key input of the communication number of the corresponding wireless terminal 200 when the application 250 is executed for the first time (or before execution of communication number authentication via the app 250) Or extracts the communication number of the corresponding mobile terminal 200 from a Universal Subscriber Identity Module (USIM) mounted / detached to / from the mobile terminal 200.

According to the embodiment of the present invention, the communication number is a telephone number input through the interface output from the app 250 of the wireless terminal 200 and a phone number extracted from the USIM of the wireless terminal 200 A Universal Unique Identifier (UUID) assigned to an app 250 of the wireless terminal 200 according to an embodiment of the present invention and an ICCID (Integrated Unique Identifier) recorded in a Universal Subscriber Identity Module (USIM) A Circuit Card Identifier, an International Mobile Subscriber Identity (IMSI), and an International Mobile Equipment Identity (IMEI). In addition, the communication number may further include the user's personal information (e.g., name, date of birth, etc.), or all or some of the registration information registered in the designated storage medium 150, And the present invention is not limited thereto.

When the communication number is inputted / extracted, the app 250 of the wireless terminal 200 generates H (communication number) by hashing the input / extracted communication number with a specified hash algorithm.

According to an embodiment of the present invention, when the input / extracted communication number is hashed by a hash algorithm, the app 250 of the wireless terminal 200 may use an application authentication value for the app 250 And a procedure for sharing a separate app authentication value between the authentication server 100 and the app 250 when the app authentication value is used may be added.

The app authentication value according to the method of the present invention may be set at an app install time at which the app 250 is installed in the wireless terminal 200 or after installing the app 250 in the wireless terminal 200 Or at least one of the determined application installation time or the time when the application installation time is separated by a designated time.

The app authentication value according to another embodiment of the present invention may further include one or more of the UUID of the app 250 installed in the wireless terminal 200 or one or more of the authentication call destination numbers .

According to the embodiment of the present invention, the authentication destination number is a telephone number for the wireless terminal 200 to send a text message via the telephone network, when the wireless terminal 200 sends a text message via the telephone network And the authentication call destination number may be a telephone number in a state where the text message can be received or a telephone number that can be activated / deactivated if necessary.

According to the first message sending method of the present invention, the app 250 of the wireless terminal 200 may embed a message sending function via the telephone network. In this case, the app 250 of the wireless terminal 200, (Communication number) is included in a designated area on a text message structure via a telephone network by using the built-in message sending function, and then the H (communication number) is transmitted via the telephone network to which the wireless terminal 200 is connected ≪ / RTI > can be sent.

According to the second message sending method of the present invention, the app 250 of the wireless terminal 200 can interoperate with a message sending function provided in the wireless terminal 200. In this case, The application 250 interlocks with the message sending function of the wireless terminal 200 to include the hashed H (communication number) in a designated area on the text message structure via the telephone network, And can transmit a text message including H (communication number) via the telephone network connected to the wireless terminal 200 in conjunction with the sending function.

According to an embodiment of the present invention, a text message transmitted by the app 250 of the wireless terminal 200 is transmitted via a telephone network, and a text message transmitted via a data network (for example, iMessage, and the like), and temporarily set to pass through the telephone network. In this case, the text message is sent via the telephone network.

According to an embodiment of the present invention, the H (communication number) may be included in at least one of a text area of the text message, a hidden area of the text message, and a spare area of the text message.

When the application 250 of the wireless terminal 200 sends a text message including the H (communication number) via the telephone network, the app 250 of the wireless terminal 200 transmits the H (communication number) You can control so that the message sending interface that sends the containing text message is not displayed on the screen. For example, in the case of the first message sending method, the app 250 of the wireless terminal 200 may omit displaying the interface of the built-in message sending function.

Meanwhile, when the message sending interface is displayed on the screen to send a text message via the telephone network, the application 250 of the wireless terminal 200 transmits an H (Communication number) is not edited or changed. For example, the application 250 of the wireless terminal 200 may be configured such that H (communication number) included in the text message is edited by a user operation by touch input of a specific area (for example, a keyboard display area) Or not to be changed.

According to the method of the present invention, the text message sent via the telephone network is composed of a text-based specialized structure, or the area to be inserted with the H (communication number) in the text message structure is encoded in accordance with the specified encoding rule May be set to include digits. In this case, the app 250 of the wireless terminal 200 may cast the H (communication number) to a digit corresponding to the specified encoding rule and include it in a designated area of the text message.

A text message sent via the telephone network by using the built-in message sending function in the app 250 of the wireless terminal 200 or in conjunction with the message sending function of the wireless terminal 200, Server 160 or is received by an authentication server 100 that performs authentication procedures in accordance with the present invention.

According to the method of the present invention, a device included in the telephone network via the text message verifies whether the calling number included in the text message matches the actual telephone number of the mobile terminal 200 (e.g., (E.g., matching the calling number included in the text message with the telephone number managed by the communication company with respect to the mobile terminal 200), and the calling number included in the text message corresponds to the actual telephone number of the mobile terminal 200 And if it is matched, the text message can be normally transmitted. If the calling number included in the text message does not match the actual telephone number of the wireless terminal 200, the device on the telephone network discards the text message or transmits the calling number of the text message to the wireless terminal 200 200) to the actual number of the telephone number.

Referring to FIG. 1, the authentication server 100 includes a communication number checking unit 110 for checking the communication number of the wireless terminal 200 installed with the specified application 250, An information receiving unit 112 for receiving the communication number of the wireless terminal 200 from the app 250 of the wireless terminal 200 via a data network and an information receiving unit 112 for receiving data from the app 250 of the wireless terminal 200 When the communication number of the wireless terminal 200 received via the wireless terminal 200 is included in the personal information for authentication of the wireless terminal 200, And an information registration unit 140 for storing and managing the personal information received via the data network from the wireless terminal 200 in a designated database (not shown) .

The information confirming unit 264 confirms the communication number of the wireless terminal 200 that installed the specified app 250. For example, the designated application 250 receives the authentication call destination number from the authentication server 100, displays a text message transmission button interface set or connected with the received authentication call destination number, And transmits a background switching signal corresponding to the background switching of the app 250. When the foreground restoration corresponding to the foreground restoration is completed upon completion of the transmission of the text message by the app 250, And a function of transmitting a signal.

The method for confirming the communication number according to the embodiment of the present invention is characterized in that when the app 250 of the wireless terminal 200 transmits the communication number of the wireless terminal 200 via the data network, Receives the communication number of the mobile station 200 that transmits the data through the data network from the app 250 of the mobile station 200. When the communication number received through the information receiving unit 112 is received together with other information or data via the data network, the communication number checking unit 110 checks whether the communication number received from the application 250 of the wireless terminal 200 And confirms the information to be transmitted via the data network or the communication number included in the data.

The communication number received from the app 250 of the wireless terminal 200 via the data network is transmitted to the user 250 using the interface output from the app 250 of the wireless terminal 200, (Or touch) input via the application 250 or from a USIM that is loaded or unloaded from the wireless terminal 200 via the app 250. [ And may further include a Universally Unique Identifier (UUID) allocated to the app 250 of the wireless terminal 200 according to a real-time method. In addition, the communication number may further include the user's personal information (e.g., name, date of birth, etc.) or may include all or some of the registered information registered in the designated content medium according to the method of operation, Or more.

Preferably, the application 250 of the wireless terminal 200 encrypts the communication number or the like according to a specified encryption / decryption scheme and transmits the encrypted communication number to at least one server via the data network. It is possible to decode the communication number or the like. Hereinafter, all information, data, and signals transmitted and received via the data network will be encrypted and decoded and transmitted / received, unless otherwise noted.

The application 250 of the wireless terminal 200 transmits the communication number via the data network according to the embodiment of the present invention. However, in some cases, the application 250 of the wireless terminal 200 From a server having a communication number for the wireless terminal 200 during a process of performing a personal authentication procedure in connection with a communication company server (not shown) or a separate server, It is possible to use it if the communication number is registered in the base server.

Referring to FIG. 1, the authentication server 100 receives an authentication call destination number that can be used for sending a text message via the telephone network among N (N? 2) A communication number mapping unit 130 for mapping the received authentication call destination number to the communication number of the wireless terminal 200, an application of the wireless terminal 200 via the data network, And a destination number transmission unit (114) for transmitting the mapped authentication destination number to the mobile terminal (250), wherein the mobile terminal sets and counts a valid time for maintaining the mapping relationship between the authentication destination number and the communication number, And a timeout operating unit for releasing the mapping relationship between the authentication call destination number and the communication number when the reception of the text message including the communication number mapped to the authentication call destination number as the call origination number is not confirmed.

When the communication number of the wireless terminal 200 that installed the specified app 250 through the information verifying unit 264 is confirmed, the called number assigning unit 132 sets the number N (Or dynamically determines) an n-th (1? N? N) authentication call destination number capable of sending a text message from the terminal 200 via the telephone network.

According to the embodiment of the present invention, the authentication server 100 (or the call server associated with the authentication server 100) receives N telephone numbers that can actually be connected by telephone via the telephone network, , And the called number storage unit (132) identifies one or more authentication call destination numbers for which the mapping relationship with other previous phone numbers among the N number of authentication call destination numbers is released, (Or dynamically determine) any one of the n-th authentication-use destination numbers according to a predetermined rule (or according to a predetermined rule). For example, the called party number assigning unit 132 may be configured to assign the nth authentication calling party number to the nth authentication calling party number (Or dynamically determine) the number of times.

When the authentication call destination number is assigned (or dynamically determined) through the call destination number storage unit 132, the communication number mapping unit 130 transmits the communication number of the wireless terminal 200, which is confirmed through the information check unit 264, (Or dynamically determined) destination numbers through the destination number storage unit 132 and stores them in a designated storage medium 150 (not shown). According to the embodiment of the present invention, the mapping relationship between the communication number of the mobile station 200 and the authentication call destination number is valid only for a specified valid time, and when the specified valid time has elapsed, It is automatically released.

When the communication number of the wireless terminal 200 and the authentication call destination number are mapped through the communication number mapping unit 130, the called number transmission unit 114 transmits the application number of the wireless terminal 200 And transmits the mapped authentication termination number to the terminal 250. The application 250 of the wireless terminal 200 receives the authentication call destination number via the data network and then transmits a text message to the text message sending button interface for sending a text message via the telephone network of the wireless terminal 200 Set the authentication call forwarding number. That is, when the app 250 of the wireless terminal 200 touches the text message dispatch button interface in the foreground state in which the text message dispatch button interface in which the authentication dispatch number is set is displayed on the touch screen A procedure for requesting the sending of a text message to the authentication destination number is performed by the text message sending function provided in the wireless terminal 200.

Meanwhile, when the communication number of the wireless terminal 200 is mapped to the authentication call destination number or the authentication call destination number is transmitted to the app 250 of the wireless terminal 200 through the call receiver number transmission unit 114 The timeout operating unit sets a valid time for maintaining the mapping relationship between the authentication call destination number and the communication number and starts counting. The timeout operating unit confirms whether or not a text message including the communication number of the mapped wireless terminal 200 as the calling number is received in the authentication call destination number until the valid time elapses, The reception of the text message including the communication number of the mapped wireless terminal 200 as the calling number is not confirmed until the authentication calling party number is mapped to the authentication calling party number, If the text message including the communication number of the wireless terminal 200 is received and the authentication is successful, the counting of the validity time ends and the mapping relationship between the authentication termination number and the communication number is canceled.

Meanwhile, when the communication number of the wireless terminal 200 is mapped to the authentication call destination number or the authentication call destination number is transmitted to the app 250 of the wireless terminal 200 through the call receiver number transmission unit 114 , The communication number mapping unit 130 receives a text message of an authentication destination number mapped with the telephone number of the wireless terminal 200 so that the text message sent from the wireless terminal 200 can be received via the telephone network Activate the function. The authentication destination number may be mapped to the communication number of the wireless terminal 200 or may be received only via the telephone network when the text message reception function is activated. If the text message reception is performed through the designated message server 160, the communication number mapping unit 130 may provide an activation signal for the authentication call destination number to the message server 160.

1, the authentication server 100 generates H (communication number) by hashing the communication number of the wireless terminal 200 with a hash algorithm in the app 250 of the wireless terminal 200 (H) (communication number) is included in a designated area on the text message structure via the telephone network and is sent to the authentication use destination number via the telephone network, the character received in the authentication use destination number via the telephone network And a first channel identification unit (118) for confirming the verified / verified call number via the telephone network in a process of transmitting and receiving a text message via the telephone network and H (communication number) included in the message, And a message receiving unit (116) for receiving a text message including the hashed H (communication number) via an authentication call destination number via a telephone network to which the mobile communication terminal (200) is connected.

According to the first message transmission / reception method of the present invention, the text message including H (communication number) hash hash with the hash algorithm specified in the app 250 of the wireless terminal 200 is transmitted to the telephone network And the message receiver 116 receives the text message transmitted to the authentication call destination number via the telephone network. The message receiver 116 may selectively receive a text message that verifies / corrects the validity of the origination number of the text message received via the authentication call destination number via the telephone network.

The first channel check unit 118 extracts H (communication number) included in a designated area of the text message received as the authentication call destination number through the message receiver 116, and transmits and receives a text message via the telephone network And extracts the verified / corrected calling number via the telephone network.

According to the second message transmission / reception method of the present invention, a text message including H (communication number) set by the hash algorithm specified in the app 250 of the wireless terminal 200 is transmitted to the wireless terminal 200 The message server 160 may extract the H (communication number) included in the designated area of the text message and transmit the H (communication number) via the telephone network to the designated message server 160 via the telephone network The first channel identification unit 118 extracts the verification number from the message server 160 and transmits the extracted verification number to the authentication server 100. The first channel identification unit 118 extracts the verification number from the message server 160, H (communication number) included in the text message received by the called number and the calling number of the text message may be provided.

Referring to FIG. 1, the authentication server 100 determines whether or not the calling number of a text message received via the telephone network and received by the authentication destination number is matched with the communication number mapped with the authentication termination number received via the telephone network (Communication number) extracted from the text message received via the telephone network via the telephone network, and verifying the integrity of H (communication number) And a 1-channel verifying unit 120.

When a text message is received by the message receiving unit 116 via the telephone network to the authentication use destination number, the first channel verifying unit 120 verifies the authenticated incoming call received through the first channel verifying unit 118 Number of the received text message is matched with the communication destination number mapped by the communication number mapping unit 130 and the communication number of the wireless terminal 200 mapped. If the identified origination number is not the communication number of the wireless terminal 200 mapped with the authentication call destination number (e.g., a previously mapped communication number or an unknown communication number), the first channel verification The authentication unit 120 generates an authentication result corresponding to the authentication failure.

According to the method of the present invention, the H (communication number) included in the text message received by the authentication call destination number can be cast in the designated binary and be included in the designated area of the text message, 120 can reverse the H (communication number) extracted from the designated area of the text message and restore the original binary H (communication number) generated by the app 250 of the wireless terminal 200 have.

According to the embodiment of the present invention, when the H (communication number) included in the text message (or restored to binary) includes an integrity verification value for discriminating whether it is modulated by a user operation in the process of sending a text message , The first channel verifying unit 120 may verify the integrity of the H (communication number) using the integrity verification value included in the H (communication number).

Referring to FIG. 1, the authentication server 100 transmits H (communication number) included in a text message received as an authentication destination number via the telephone network to a character received as an authentication destination number via the telephone network And a first channel mapping unit 122 for mapping and storing the communication number matched with the origination number of the message or the authentication destination number to which the text message is received.

The first channel mapping unit 122 may include an H (communication number) extracted (or binary-converted or integrity-verified) from the text message received by the authentication call destination number and a text message received by the authentication destination number The numbers are mapped and stored.

According to the first embodiment of the present invention, a communication number matching with a calling number of a text message received via the telephone network is identified, extraction (or binary conversion or integrity verification) is performed from the confirmed communication number and the text message, (H) (communication number) is mapped and stored.

According to the second embodiment of the present invention, the H (communication number) extracted (or binary-converted or integrity-verified) from the authentication call destination number through which the text message is received via the telephone network and the text message received via the telephone network ) Are stored and mapped.

When the calling number and the H (communication number) are mapped and stored, the first channel mapping unit 122 sets the valid time of the mapped H (communication number) and verifies whether the valid time is reached. If the valid time is reached, the first channel mapping unit 122 clears the mapped stored originating number and H (communication number). The message server 160 (or the authentication server 100), which receives the text message, transmits the text message to the wireless terminal 200 via the telephone network, The transmission delay of the text message does not occur or is minimized on the path for transmitting the text message, and the procedure for transmitting the text message via the data network after sending the text message by the wireless terminal 200 is wireless The first channel mapping unit 122 may block the intervention space of the third party by setting the valid time as short as possible (for example, 5 seconds) because the automatic transmission is performed automatically through the app 250 of the terminal 200. [

The app 250 of the wireless terminal 200 sends a text message including H (communication number) to the authentication use destination number via the telephone network and then transmits the text message including the H (communication number) to the data network For example, a packet-based data network of a mobile communication network, or a wireless LAN).

Referring to FIG. 1, the authentication server 100 receives a communication number and an application authentication value of the wireless terminal 200 from the app 250 of the wireless terminal 200 via the data network, A first authentication processing unit 126 for firstly checking a calling number matched with a communication number received via the data network among a calling number extracted and stored from a text message received via the telephone network, (H ') generated by hashing a communication number received via the data network into a hash algorithm if the communication number received via the data network matches the calling number of the received text message via the telephone network, (Communication number) generated by hashing a communication number received via the data network with a specified hash algorithm, and an H (communication number) mapped to the calling number, A second authentication procedure unit 136 for comparing the communication number with the calling number of the text message received via the telephone network, If the H (communication number) generated by hashing the H (communication number) received via the telephone network and the communication number received via the data network by the hash algorithm is matched, the communication number received via the data network And an information registration unit 140 for storing the authenticated communication number in the designated storage medium 150. The authentication result processing unit 138 generates the authentication result of the authenticated communication number.

The second channel receiver 124 receives the text message transmitted from the app 250 of the wireless terminal 200 via the data network connected to the wireless terminal 200 that has sent the text message including the H And receives a communication number.

According to the embodiment of the present invention, the app 250 of the wireless terminal 200 may encrypt the communication number and the app authentication value through a predetermined security protocol, and in this case, Protocol to decrypt the encrypted communication number.

When the communication number is received from the app 250 of the wireless terminal 200 via the data network, the first authentication procedure unit 126 transmits the communication number to the first channel mapping unit 122 through the received communication number, (Originating number) and a set of H (communication number) mapped through the originating number and the originating number matched with the communication number.

If the communication number received via the data network and the origination number of the text message received via the telephone network are first identified as matched, the channel interworking hash unit 134 transmits the received message number via the data network H '(communication number) is generated by hashing the communication number with the specified hash algorithm.

When the H '(communication number) is generated by hashing the communication number received via the data network with the specified hash algorithm, the second authentication procedure unit 136 transmits H (communication number ) And the generated H '(communication number), and secondarily confirms whether the first authenticated communication number received through the data network matches the H (communication number) received through the text message of the telephone network.

If the communication number received through the data network is first matched with the originating number of the text message received through the telephone network, and it is determined that the communication number is secondarily matched with the H (communication number) received through the text message of the telephone network , The authentication result processing unit 138 generates an authentication result of authenticating the validity of the communication number received through the data network. The authentication result processor 138 may provide the generated authentication result to the application 250 of the wireless terminal 200 and the application 250 of the wireless terminal 200 may transmit the authentication result Display.

Meanwhile, when the validity of the communication number received through the data network is authenticated, the information registration unit 140 stores the authenticated communication number in the designated storage medium 150.

FIG. 2 is a diagram illustrating a functional configuration of a wireless terminal 200 and an application 250 according to an embodiment of the present invention.

2 shows a text message including H (communication number) obtained by hashing the communication number of the wireless terminal 200 with a specified hash algorithm from the authentication server 100 shown in FIG. 1 via the telephone network And transmits the communication number of the wireless terminal 200 via the data network and the configuration of the wireless terminal 200 in which the application 250 operates, As shown in FIG. 2, the present invention can be applied to various embodiments of the wireless terminal 200 according to an embodiment of the present invention. And the technical features thereof are not limited only by the method shown in FIG. Preferably, the wireless terminal 200 of FIG. 2 may include at least one of various smartphones, tablet PCs, PDAs, and cellular phones.

2, the wireless terminal 200 includes a control unit 205, a memory unit 240, a screen output unit 210, a user input unit 215, a sound processing unit 220, a wireless network communication unit 230, A local area network communication unit 225, a USIM reader unit 235, and a USIM, and has a battery for power supply.

The control unit 205 is a general term for controlling the operation of the wireless terminal 200. The control unit 205 includes at least one processor and an execution memory, BUS). According to the present invention, the control unit 205 loads at least one program code provided in the wireless terminal 200 into the execution memory through the processor, and outputs the result through at least one configuration And controls the operation of the wireless terminal 200. Hereinafter, the program function configuration of the present invention will be described in the present control unit 205 for convenience.

The memory unit 240 is a general term of the nonvolatile memory included in the wireless terminal 200 and includes at least one program code executed through the control unit 205 and at least one data set used by the program code And stores it. The memory unit 240 basically includes a system program code and a system data set corresponding to an operating system of the wireless terminal 200, a communication program code and a communication data set for processing a wireless communication connection of the wireless terminal 200, One application program code and application data set are stored, and the program code and data set corresponding to the program of the present invention are also stored in the memory unit 240.

The screen output unit 210 is connected to the control unit 205 on the touch screen display of the wireless terminal 200 and displays a calculation result corresponding to the screen output among the various calculation results of the control unit 205, And the user input unit 215 outputs a screen corresponding to the screen output through the screen output unit 210 through the touch input unit of the touch screen included in the wireless terminal 200 The touch input is processed. The user input unit 215 may process a user input using a button provided in the wireless terminal 200 according to an embodiment of the present invention.

The sound processing unit 220 includes a speaker and a microphone and a drive module for driving the speaker and microphone. The sound processing unit 220 decodes an operation result corresponding to a sound output from various operation results of the control unit 205, And outputs the sound signal through the speaker or the sound signal input through the microphone to the controller 205. [

The wireless network communication unit 230 collectively refers to a communication unit that connects the wireless terminal 200 to a wireless communication network via a base station. The wireless network communication unit 230 includes an antenna, an RF module, a baseband module, And at least one processing module. The control unit 205 is connected to the control unit 205 and transmits the calculation result corresponding to the wireless communication among the various calculation results of the control unit 205 via the wireless communication network, And transfers it to the control unit 205, and performs the connection, registration, communication, and handoff procedures of the wireless communication. Preferably, the wireless network communication unit 230 includes a mobile communication structure that performs at least one of connection to a mobile communication network, location registration, call processing, call connection, data communication, and handoff according to the CDMA / WCDMA / LTE standard. According to an embodiment of the present invention, the wireless network communication unit 230 connects the wireless terminal 200 to a telephone network based on circuit switching based on a telephone exchange of a communication company, or to a data network not via a telephone exchange of a communication company have.

According to an embodiment of the present invention, the wireless network communication unit 230 connects the wireless terminal 200 to a telephone network via at least one of an exchange and a message center of the mobile communication network, or moves the wireless terminal 200 It is possible to connect to a data network via a separate packet router without passing through an exchange of a communication network or a message center.

The short-range network communication unit 225 collectively refers to a communication unit that connects a communication session using a radio frequency signal within a predetermined distance (e.g., 10 m) as a communication medium and connects the wireless terminal 200 to a communication network based on the communication session. The wireless terminal 200 may be connected to the data network through a wireless LAN using at least one of Wi-Fi communication, Bluetooth communication, public wireless communication, and UWB. According to an embodiment of the present invention, the short-range network communication unit 225 connects the wireless terminal 200 to a packet-switched data network.

The USIM reader unit 235 is a generic term of a configuration for exchanging at least one data set with a universal subscriber identity module that is mounted or detached from the mobile station 200 based on the ISO / IEC 7816 standard , And the data set is exchanged in a half duplex communication manner through an APDU (Application Protocol Data Unit).

The USIM is an SIM type card having an IC chip according to the ISO / IEC 7816 standard, and includes an input / output interface including at least one contact connected to the USIM reader unit 235, (Or processing) the program code for the IC chip or extracting (or processing) the data set in accordance with at least one command transmitted from the wireless terminal 200 in connection with the input / output interface To the input / output interface.

According to an embodiment of the present invention, the USIM records and manages at least one of an Integrated Circuit Card Identifier (ICCID), an International Mobile Subscriber Identity (IMSI), and an International Mobile Equipment Identity (IMEI).

The app 250 of the present invention receives an authentication use destination number from the authentication server 100 via a data network among various applications installed in the wireless terminal 200, displays a text message sending button interface, Transmits a button selection signal corresponding to the text message dispatch button interface selection, transmits a background switching signal corresponding to the background switching of the app 250 via the data network, And a foreground restoration signal corresponding to the foreground restoration of the image reconstruction unit 250, and is not limited to a specific application.

2, the app 250 of the wireless terminal 200 includes a destination number receiver 252 for receiving an authentication destination number for sending a text message to a specified authentication server 100 via a data network, And a call number setting unit 254 for setting the authentication call destination number in a text message sending button interface for sending a text message via the telephone network.

The authentication server 100 confirms the communication number of the installed wireless terminal 200 and assigns (or dynamically determines) the authentication use destination number to the wireless terminal 200, And maps the communication number of the terminal 200 and the authentication call destination number, and transmits the authentication call destination number mapped with the communication number of the wireless terminal 200 via the data network, and the called number receiver 252 And receives the authentication call destination number via the data network.

The called party number setting unit 254 sets the received calling party number for authentication in the text message sending button interface for sending a text message via the telephone network among the interface screens provided in the app 250, When the text message dispatch button interface is displayed on the touch screen in the foreground state, an event of touching the text message dispatch button interface through the touch screen is generated, and the text message dispatch function of the mobile terminal 200 is used And a process of sending a text message to the authentication call destination number is performed.

2, the app 250 of the wireless terminal 200 includes a communication number acquisition unit 256 that receives a key input or extracts a communication number of the wireless terminal 200 from a USIM, A communication number hash unit 258 for generating a H (communication number) by hashing the communication number through a hash algorithm, a H (communication number) generated by hashing the designated hash algorithm, And a telephone network sending unit 262 for sending a text message including the H (communication number) via the telephone network to which the wireless terminal 200 is connected by using a designated message sending function .

The communication number obtaining unit 256 displays an interface for receiving key input of the communication number of the corresponding mobile terminal 200 when the app 250 is first executed (or before the communication number authentication is performed through the app 250) Receives the key code of the communication number from the user, or extracts the communication number of the corresponding mobile terminal 200 from the USIM.

According to an embodiment of the present invention, the communication number includes at least one of a phone number input from a key input unit and a telephone number extracted from the USIM, and includes a UUID assigned to the app 250, Lt; RTI ID = 0.0 > ICCID, IMSI, < / RTI > IMEI. Meanwhile, the communication number may further include registration information (or a part of registration information) registered in the storage medium 150 including the user's personal information (e.g., name, date of birth, etc.) The present invention is not limited thereto.

When the communication number is inputted / extracted, the communication number hash unit 258 generates H (communication number) by hashing the communication number through a specified hash algorithm. The application authentication value may be further utilized when hashing the communication number of the wireless terminal 200 through the hash algorithm according to the embodiment of the present invention. The application authentication value may be transmitted to the wireless terminal 200 through the application 250 Installed app installation time, and the time at which the app install time is separated by a designated time. Meanwhile, the app authentication value may include the UUID of the app 250 installed in the wireless terminal 200 according to the method.

According to the first message sending method of the present invention, the app 250 may include a message sending function via the telephone network. In this case, the message generating unit 260 may send a message (Telephone number) including the H (communication number) generated by the hashing in a designated area on the text message structure via the telephone network, and the telephone network sending unit 262 transmits a text message to be transmitted through the telephone network, The mobile terminal 200 can send a text message including H (communication number) via the telephone network to which the mobile terminal 200 is connected by using the message sending function.

According to the second message sending method of the present invention, the application 250 can interoperate with a message sending function provided in the wireless terminal 200. In this case, the message generating unit 260 transmits the message to the wireless terminal 200 (H) communication number) in a designated area on a text message structure via the telephone network, and generates a text message to be sent via the telephone network. The telephone network sending unit 262 transmits the text message to the wireless The mobile terminal 200 can send a text message including H (communication number) via the telephone network connected to the mobile terminal 200 in conjunction with the message sending function of the terminal 200. [

According to an embodiment of the present invention, the message generating unit 260 may generate the H (communication) information in at least one or a combination of two or more of a text area of the text message, a hidden area of the text message, Number).

When sending a text message including the H (communication number) via the telephone network, the telephone network sending unit 262 displays a message sending interface for sending a text message including the H (communication number) . For example, in the case of the first message forwarding method, the telephone network forwarding unit 262 may omit the interface display of the built-in message forwarding function.

Meanwhile, when a message sending interface is displayed on the screen for sending a text message via the telephone network, the telephone network sending unit 262 transmits the H (communication number) included in the text message by a user operation to the message sending interface, Can be controlled so as not to be edited or changed. For example, the telephone network sending unit 262 interrupts the touch input of a specific area (for example, a keyboard display area) of the message sending interface, and the H (communication number) included in the text message is edited Or not to be changed.

According to the method of the present invention, the text message sent via the telephone network is composed of a text-based specialized structure, or the area to be inserted with the H (communication number) in the text message structure is encoded in accordance with the specified encoding rule May be set to include digits. In this case, the telephone network sending unit 262 can cast the H (communication number) to a digit corresponding to the specified encoding rule and include it in a designated area of the text message.

The text message sent via the telephone network is received by the message server 160 via the telephone network or is received by the authentication server 100 performing the authentication procedure according to the present invention.

According to the method of the present invention, a device included in the telephone network via the text message verifies whether the calling number included in the text message matches the actual telephone number of the mobile terminal 200 (e.g., (E.g., matching the calling number included in the text message with the telephone number managed by the communication company with respect to the mobile terminal 200), and the calling number included in the text message corresponds to the actual telephone number of the mobile terminal 200 And if it is matched, the text message can be normally transmitted. If the calling number included in the text message does not match the actual telephone number of the wireless terminal 200, the device on the telephone network discards the text message or transmits the calling number of the text message to the wireless terminal 200 200) to the actual number of the telephone number.

2, an app 250 of the wireless terminal 200 includes an information checking unit 264 for checking a communication number to be transmitted via a data network, a data network connected to the wireless terminal 200, And a data network transmission unit (266) for transmitting the communication number to the specified authentication server (100) via the communication network (200), and for receiving and displaying the authentication result obtained by verifying the validity of the communication number from the authentication server (268). When the application authentication value is used in generating the H (communication number) by hashing the communication number of the wireless terminal 200 with the specified hash algorithm according to the method, the information confirmation unit 264 transmits the information (L) message to the specified authentication server 100, and the data network transmission unit 266 transmits the confirmed application authentication value to the specified authentication server 100, Lt; / RTI >

After the text message including the H (communication number) is transmitted via the telephone network to which the wireless terminal 200 is connected through the telephone network forwarding unit 262, the information confirmation unit 264 transmits the text message including the H And confirm the communication number to be transmitted.

According to an embodiment of the present invention, a communication number to be transmitted via the data network includes a pre-hash communication number of H (communication number) included in a text message sent via the telephone network, And one or more registration information to be registered in the designated storage medium 150 including personal information and payment means information.

When the communication number to be transmitted through the data network is confirmed, the data network transmission unit 266 transmits the communication data to the wireless network 200 through the short distance network communication unit 225 and the wireless network communication unit 230, And transmits the communication number to the specified authentication server 100 via the data network to which the terminal 200 is connected.

According to the embodiment of the present invention, the data network transmission unit 266 may encrypt the communication number through a predetermined security protocol and transmit the encrypted communication number. In this case, the authentication server 100 transmits the encrypted The communication number can be decoded.

The authentication server 100 uses a network interworking authentication (= first authentication) for authenticating a communication number received through a data network using a calling number of a text message received through a telephone network and a text message received via a telephone network Performs a hash authentication (= second authentication) for comparing the H (communication number) included and the H '(communication number) generated by hashing the received communication number via the data network, A communication number received through a data network is matched with a calling number of a text message received through the telephone network, and a communication number is transmitted through a telephone network and an H (communication number) included in a text message received via the telephone network, Generates and transmits an authentication result obtained by authenticating the validity of the communication number of the wireless terminal (200) when H '(communication number) generated by hashing the communication number is matched, Displays receiving the authentication result through the data network by the mobile terminal 200 is connected.

3 is a diagram illustrating a process of mapping a communication number of a wireless terminal 200 and an authentication call destination number according to an embodiment of the present invention.

In more detail, FIG. 3 shows a case in which the authentication server 100 confirms the communication number of the wireless terminal 200 in which the app 250 of FIG. 2 is installed, and assigns (or dynamically determines) And mapping the communication number of the wireless terminal 200 and the authentication call destination number. If the person skilled in the art is familiar with the present invention, (For example, omitting some steps or changing the order) of the mapping process between the communication number of the mobile terminal 200 and the authentication call destination number, the present invention can be applied to all of the above- And the technical features thereof are not limited only by the method shown in FIG.

Referring to FIG. 3, the authentication server 100 checks the communication number of the wireless terminal 200 installed with the app 250 of FIG. 2 (300). The communication number of the wireless terminal 200 may be received from the app 250 of the wireless terminal 200 or may be provided from one or more of a separate user terminal (not shown) or a service server (not shown).

If the communication number of the wireless terminal 200 that installed the app 250 is confirmed, the authentication server 100 transmits an authentication number to be mapped to the communication number of the wireless terminal 200 among the N number of the called numbers, (Or dynamically determines) the number of times (305).

If the communication number of the wireless terminal 200 is dumped (or dynamically determined) to be mapped to be mapped, the authentication server 100 maps the communication number of the wireless terminal 200 and the authentication termination number (310), and activates the text message through the authentication destination number (315). If the authentication call destination number is assigned to a separate message server 160, the authentication server 100 may request activation or activation of the authentication call destination number of the message server 160 (315) .

The authentication server 100 transmits the mapped authentication number mapped to the phone number of the wireless terminal 200 to the app 250 of the wireless terminal 200 via the data network 320, The application 250 of the application 200 receives an authentication call destination number for sending a text message via the data network 325 and sets the authentication call destination number in the text message transmission button interface of the application 250 330).

Meanwhile, the authentication server 100 sets and counts an effective time for mapping and holding the communication number of the wireless terminal 200 and the authentication call destination number (335), and determines whether the valid time has passed (340) . If the authentication result for the authentication call destination number is not generated until the valid time elapses, the authentication server 100 releases the mapping relationship between the communication number of the wireless terminal 200 and the authentication call destination number The authentication result corresponding to the authentication failure is generated 350 and the authentication result is transmitted to the app 250 of the wireless terminal 200 via the data network 355, Receives the authentication result and outputs the authentication result (360).

FIG. 4 is a diagram illustrating a process of providing a communication number via a telephone network according to an embodiment of the present invention.

4 shows an example of a case where the application 250 of the wireless terminal 200 generates an H (communication number) having a communication number hashed by a hash algorithm and then transmits the H (communication number) When the authentication server 100 shown in FIG. 1 includes the text message to be sent to the authentication call destination number provided to the wireless terminal 200 shown in FIG. 2 and provides the text message to the authentication server 100, The mobile communication terminal compares the origination number of the text message with the communication number mapped to the authentication call number, verifies whether or not they match each other, and maps and stores H (communication number) in the technical field of the present invention. Those skilled in the art will appreciate that various ways of practicing the process of providing a communication number via the telephone network (e.g., some steps omitted, or a sequence change Exemplary method would be able to infer a), the present invention is made, including any exemplary way in which the inference, to which the technical feature that is not limited to the exemplary method shown in the figure 4.

Referring to FIG. 4, the application 250 of the wireless terminal 200 receives a key of a corresponding mobile terminal 200 or extracts it from a USIM (400), and hashes the communication number into a specified hash algorithm And generates H (communication number) to be provided via the telephone network (405). If the H (communication number) is generated, the app 250 of the wireless terminal 200 generates a text message in which the generated H (communication number) is inserted into a designated area on a text message structure via the telephone network (Communication number) through the telephone network to which the wireless terminal 200 is connected, and transmits the text message including the H (communication number) to the authentication server 100 according to the process shown in FIG. (415).

The authentication server 100 (or the message server 160) receives the text message including the H (communication number) via the telephone network through the authentication call destination number (420), and then transmits the text message And confirms the mapping state of the destination number and the communication number (425). The authentication server 100 generates an authentication result corresponding to the authentication failure and transmits the authentication result to the wireless terminal 200 via the data network, The app 250 of the wireless terminal 200 receives and outputs the authentication result (460).

Meanwhile, if the authentication call destination number and the communication number are mapped to the received text message, the authentication server 100 extracts the verification / corrected dialed number and text message for the text message received at the authentication call destination number And extracts H (communication number) included in the message (430).

When the origination number and H (communication number) are extracted through a text message received via the telephone network, the authentication server 100 extracts the origination number and the text message from the received call destination number It compares the communication numbers and confirms whether they are matched (435). If the extracted origination number and the text message are not matched with the received authentication number and the mapped communication number, the authentication server 100 generates an authentication result corresponding to the authentication failure, Transmits the authentication result to the app 250 of the wireless terminal 200, and the app 250 of the wireless terminal 200 receives and outputs the authentication result (460).

Meanwhile, if the extracted calling number and the received calling number match the received calling number and the mapped communication number, the authentication server 100 determines that the received calling number (or originating number) and H (Communication number) is mapped and stored (440), and the mapped stored origination number and H (communication number) are used for network interworking authentication and encryption / decryption authentication.

Thereafter, the authentication server 100 sets an effective time to the mapped stored calling number and H (communication number) (445), and determines whether the valid time has passed (450). If the set validity time elapses, the authentication server 100 deletes the mapped stored origination number and H (communication number) (455).

FIG. 5 is a diagram illustrating a procedure for providing a communication number through a data network, performing network interworking authentication and hash authentication according to an embodiment of the present invention.

5, when the application 250 of the wireless terminal 200 provides the communication number via the data network, the authentication server 100 transmits the communication number to the authentication server 100 via the telephone network through the process shown in FIG. And sequentially performing network interworking authentication and hash authentication for the communication number received via the data network using the calling number and H (communication number) of the text message received at the called number, As a person skilled in the art will be able to refer to or modify the FIG. 5, various methods of providing a communication number through the data network and performing network authentication and hash authentication (for example, The present invention is not limited to the embodiment shown in FIG. 5, Only the method is not limited that technical feature.

Referring to FIG. 5, the application 250 of the wireless terminal 200 transmits a text message including H (communication number) to the authentication use destination number via the telephone network through the process shown in FIG. 4, And confirms the communication number to be transmitted via the separate data network different from the telephone network (500).

The application 250 of the wireless terminal 200 encrypts the communication number according to a predetermined security protocol and transmits the encrypted communication number to the authentication server 100 via the data network 505, (510), and decrypts the encrypted communication number according to the specified security protocol (515).

4, the authentication server 100 performs a network interworking-based communication number authentication procedure for first checking the calling number matched with the communication number received via the data network among the calling number stored in the mapping table (520).

If the communication number received via the data network does not match the calling number of the received text message via the telephone network, the authentication server 100 transmits the application 250 of the wireless terminal 200 , And the app 250 of the wireless terminal 200 receives the authentication error via the data network and outputs the authentication error (525).

Meanwhile, if the communication number received via the data network matches the calling number of the text message received via the telephone network and the primary authentication of the network interworking-based communication number is successful, the authentication server 100 transmits the communication (Communication number) mapped with the number matched with the called number and the stored H (communication number), and generates H '(communication number) by hashing the communication number received via the data network with the specified hash algorithm (535) .

When the H '(communication number) is generated, the authentication server 100 transmits the H' (communication number) generated by hashing the communication number received via the data network to the specified hash algorithm, Based communication number authentication procedure for comparing the H (communication number) included in the message with the H (communication number) included in the message.

If the H (communication number) generated by hashing the communication number received via the data network with the specified hash algorithm and H (communication number) included in the received text message via the telephone network do not match, The mobile terminal 100 transmits an authentication error to the app 250 of the wireless terminal 200 via the data network and the app 250 of the wireless terminal 200 receives and outputs the authentication error via the data network (545).

Meanwhile, the communication number received via the data network is matched with the calling number of the text message received via the telephone network, and the H 'message generated by hashing the communication number received via the data network with a specified hash algorithm Based communication number is successfully matched with the H (communication number) included in the received text message via the telephone network, and the authentication server 100 succeeds in the secondary authentication of the hash-based communication number, (555), stores the authenticated communication number in a designated storage medium (150) (555), and transmits the authenticated communication number to the application (250) of the wireless terminal (200) via the data network (560) the result of authenticating the validity of the communication number. The application 250 of the wireless terminal 200 receives the authentication result of authenticating the validity of the communication number from the authentication server 100 via the data network and outputs it (565).

100: authentication server 110: communication number confirmation unit
112: information reception unit 114: called number transmission unit
116: message receiving unit 118: first channel checking unit
120: first channel verification unit 122: first channel mapping unit
124: second channel receiving unit 126: first authentication procedure unit
128: information authentication unit 130: communication number mapping unit
132: Calling party number 134: Channel interworking hash part
136: second authentication procedure unit 138: authentication result process unit
140: information registration unit 150: storage medium
160: message server 200: wireless terminal

Claims (15)

CLAIMS What is claimed is: 1. A method executed via a server communicating with a wireless terminal that multiple accesses to a telephone network and a data network,
A first step of confirming a communication number of a wireless terminal installing and operating a designated application;
A second step of mapping among the N (N > = 2) destination numbers to the communication terminal of the wireless terminal by collecting an authentication destination number capable of requesting call connection from the wireless terminal via the telephone network;
After transmitting the assigned authentication call destination number to the wireless terminal, an application installed in the wireless terminal hashes the communication number of the wireless terminal and generates H (communication number) A third step of confirming reception of a text message to the disposable call number via the telephone network when the message including the H (communication number) is transmitted to the designated area on the text message structure through the telephone network;
A fourth step of confirming the calling number verified or corrected through the telephone network in the process of transmitting and receiving a text message via the telephone network and H (communication number) included in the text message received via the telephone network;
A fifth step of comparing the communication number mapped with the disposable call destination number in which the text message is received and the calling number of the text message received through the telephone network to check whether they are matched;
If the communication number mapped to the disposable destination number in which the text message is received matches the calling number of the text message received through the telephone network, the communication number of the wireless terminal mapped with the received disposable number is received A sixth step of generating H '(communication number);
(Communication number) generated by hashing the communication number of the wireless terminal mapped with the disposable destination number in which the text message is received is compared with H (communication number) included in the text message received via the telephone network, And a seventh step of performing a second checking on whether or not the second channel is authenticated. The method according to claim 1,
A text message is received by the disposable destination number via the telephone network, and a calling number of a text message verified or corrected through the telephone network during a text message transmission / reception process via the telephone network, The communication numbers of the mapped wireless terminals are matched with each other, and the communication number of the wireless terminal mapped with the H (communication number) included in the text message received via the telephone network and the disposable call number received the text message is hashed And generating an authentication result of validating the validity of the communication number received through the data network if the generated H '(communication number) matches each other. The communication system according to claim 1,
A telephone number input through the application of the wireless terminal,
And a telephone number extracted from a USIM of the wireless terminal. 4. The communication system according to claim 3,
A UUID (Universal Unique Identifier) assigned to an app of the wireless terminal,
(ICCID), an International Mobile Station Identity (ISCI), and an International Mobile Equipment Identity (IMEI) recorded in a Universal Subscriber Identity Module (USIM) of the mobile terminal. Two - way authentication using channel. The mobile terminal of claim 1,
Wherein a message sending function via the telephone network is built in, and a text message including H (communication number) is transmitted through a telephone network using the built-in message sending function. The mobile terminal of claim 1,
Wherein the mobile terminal transmits a text message including a communication number (H) through a telephone network in cooperation with a message sending function provided in the wireless terminal and in cooperation with a message sending function of the wireless terminal, . The mobile terminal of claim 1,
And a message sending interface for sending a text message including the H (communication number) is not displayed on the screen. The mobile terminal of claim 1,
If you display a message sending interface that sends text messages,
Wherein the control unit controls so that H (communication number) included in the text message is not edited or changed by a user operation on the message sending interface. The mobile terminal of claim 1,
H (communication number) is cast to a specified digit and included in a designated area of the text message. The method according to claim 1, wherein the H (communication number)
A text area of the text message,
A hidden area of the text message,
Wherein the second message is included in at least one of the spare areas of the text message or in a combination of two or more of the spare messages. The method of claim 1,
And when the validity of the origination number is verified or corrected through the telephone network, the dual authentication method using dual channel. 2. The method according to claim 1,
And restoring, by binary, H (communication number) included in the designated area of the text message. 2. The method according to claim 1,
Further comprising the step of verifying the integrity of the H (communication number). 2. The method according to claim 1,
Setting an effective time of the mapped stored origination number and H (communication number); And
And clearing the mapped stored origination number and H (communication number) when the valid time has elapsed. The method according to claim 1,
Further comprising: storing the authenticated communication number in a designated storage medium.

Images