WO2011034311A2 - Method for providing a security-enhanced card payment service - Google Patents

Method for providing a security-enhanced card payment service Download PDF

Info

Publication number
WO2011034311A2
WO2011034311A2 PCT/KR2010/006144 KR2010006144W WO2011034311A2 WO 2011034311 A2 WO2011034311 A2 WO 2011034311A2 KR 2010006144 W KR2010006144 W KR 2010006144W WO 2011034311 A2 WO2011034311 A2 WO 2011034311A2
Authority
WO
WIPO (PCT)
Prior art keywords
card
information
payment
customer terminal
service server
Prior art date
Application number
PCT/KR2010/006144
Other languages
French (fr)
Korean (ko)
Other versions
WO2011034311A3 (en
Inventor
서용수
Original Assignee
주식회사 솔버스
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 솔버스 filed Critical 주식회사 솔버스
Publication of WO2011034311A2 publication Critical patent/WO2011034311A2/en
Publication of WO2011034311A3 publication Critical patent/WO2011034311A3/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/325Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices using wireless networks
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • G06Q20/3265Payment applications installed on the mobile devices characterised by personalisation for use
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/313User authentication using a call-back technique via a telephone network
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/08Payment architectures
    • G06Q20/12Payment architectures specially adapted for electronic shopping systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/326Payment applications installed on the mobile devices
    • G06Q20/3263Payment applications installed on the mobile devices characterised by activation or deactivation of payment capabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/353Payments by cards read by M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/385Payment protocols; Details thereof using an alias or single-use codes
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/386Payment protocols; Details thereof using messaging services or messaging apps

Definitions

  • the present invention relates to a method for providing a card payment service, and more particularly, to a method for providing a self-payment card service configured to allow a card payment to be made using a customer's own mobile terminal so that a customer can be a main agent of a credit card. It is about.
  • the damage cases also appear in various forms.
  • the most common damage cases are the damages caused by the loss of the card offline, and the damage cases when the card information is exposed to third parties when using the credit card online are also introduced as advanced damage cases.
  • keyboard hacking technologies for example keyboard hacking technologies. These keyboard hacking technologies are used to infiltrate card users' computer terminals and hack card numbers and passwords. Since the hacked information is used for small payments that do not require identity verification, credit card holders are inadvertently harmed.
  • Another example of damage is to steal the card user's access information (ID and password), access the homepage of the shopping mall payment agency (PG), read the credit information, combine and complete 16 digits of the card number, and then use the vulnerability of the credit card payment system.
  • ID and password access information
  • PG shopping mall payment agency
  • the damage case of charging and withdrawing cyber money by using it is also introduced.
  • a common cause of the damage cases exemplified above is that information such as a card number is exposed to a third party or stored and managed in a third party's system. Therefore, if the card payment can be made without providing the card information to the third party, it will be possible to prevent the above-mentioned damages in advance.
  • delivery and door-to-door vendors support card payment services using remote payment methods due to the nature of their business.
  • the remote payment means should be provided to each delivery person or visiting seller. Therefore, if the introduction of the system that can be made card payment without the remote payment means will be able to reduce the operating cost.
  • the present invention has been made to solve the above problems in the background as described above, self-payment card using a mobile communication terminal that can directly perform the self-payment by consumers to minimize the damage caused by the provision or exposure of card information
  • the purpose is to provide a service providing method.
  • the present invention provides a service method with improved security of personal information by configuring personal information, etc. not to be exposed to not only merchants but also subjects who operate the service, and provides convenience, user accessibility, economical efficiency, and the like. It is an object to provide a further improved service method.
  • Self-card payment service providing method of the present invention for achieving the above object is a client terminal access step by the WAP (WAP) access code and the merchant code to the service server;
  • a transaction information receiving step wherein the service server receives from the customer terminal an alternative identification information and a price information corresponding to the card information to be used for self-payment by a swap connection;
  • the service server transmits the transferred identification information and price information to the card company server so that the card company server can approve the card transaction using the card information of the customer stored in the card company server in association with the substitute identification information.
  • Request for transaction approval by sending, and the result is configured to include a result notification step of notifying the approval result to the predetermined terminal and the customer terminal of the merchant.
  • the transaction information receiving step of the present invention when the customer terminal is connected to the service server is mounted on the customer terminal (VM) is one or more cards to be used for self-payment card
  • the virtual machine may be configured to be driven only when a password for driving the MB input from a user is authenticated after the customer terminal is connected to the service server.
  • the outputting step may be configured to further output affiliate store information corresponding to the affiliate store code transmitted from the service server.
  • the replacement identification information may be configured to be stored in the customer terminal and the card company server in association with the card information to be used for self-payment card at the time of membership registration.
  • the self-card payment service providing method comprises a request signal input step of inputting a payment request signal including telephone number information and price information of the customer terminal from the merchant; SM transmission step of transmitting a URL call back SMS (URL call back SMS) connected to the service server to the customer terminal of the payment request signal; An access step of the client terminal accessing a service server through the UL callback SM;
  • the VM mounted on the customer terminal is driven to display one or more card information to be used for self-card payment and the price information transmitted from the service server.
  • An output step of outputting by means A transmission step in which, when one of the output one or more card information is selected, alternative identification information corresponding to the selected card information is transmitted to the service server by a WAP; And a result notification step of transmitting, by the service server, the transferred alternative identification information and the price information to a card company server to request a transaction approval, and notifying a predetermined terminal of the affiliate store and the customer terminal of the approval result when the approval is completed. It can be configured to include.
  • a user who wants to perform a card transaction by overcoming a conventional card transaction execution method through a medium of credit information such as receiving and processing card information of a merchant (including an online sales server) that provides goods or services, etc.
  • a medium of credit information such as receiving and processing card information of a merchant (including an online sales server) that provides goods or services, etc.
  • a merchant including an online sales server
  • any action on the card transaction can be carried out conveniently and independently.
  • card payment can be made without providing card information to third parties such as merchants as well as intermediary servers that mediate card transactions.
  • third parties such as merchants as well as intermediary servers that mediate card transactions.
  • user-oriented card transactions are performed by a ubiquitous environment that is not limited to space and time. Not only that, but also various effects caused by the exposure of the card information can be prevented in advance.
  • the user can be connected to the service server which is an intermediary server according to the present invention by using URL callback SMS (user's accessibility and ease of use). Can be further promoted.
  • URL callback SMS user's accessibility and ease of use
  • the present invention eliminates the need for payment terminals that need to be distributed to a delivery or visiting sales person because a customer who is a cardholder can perform payment by himself or herself without the help of an affiliated terminal for card payment of an affiliate. Reduce the operating costs for employees to purchase equipment.
  • FIG. 1 is a schematic diagram showing a configuration for a self-payment system according to an embodiment of the present invention
  • FIG. 2 is a block diagram illustrating a configuration of a service server for performing a self-payment service method according to an embodiment of the present invention
  • FIG. 3 is a flowchart illustrating a process of a self-payment service method according to an embodiment of the present invention
  • FIG. 4 is a flowchart illustrating a member registration process for a self-payment service according to a preferred embodiment of the present invention
  • FIG. 5 is a view for explaining the process illustrated in FIG. 4 based on a user interface environment
  • FIG. 6 is a diagram illustrating a self-payment service method according to a preferred embodiment of the present invention shown in FIG. 3 with reference to a user interface environment;
  • FIG. 7 is a flowchart illustrating a process of a self-card payment method according to another preferred embodiment of the present invention.
  • the card described in connection with the embodiment of the present invention is a personal information or credit information or the like so as to perform the purchase of goods or services, financial transactions, registration, etc. using the user's personal information or credit information, etc.
  • the affiliated store is to be understood as a concept that includes both on-line and off-line as an element representing the subject providing the goods or services.
  • a customer who is a card holder obtains a swap access code and merchant identification information (ID) for using a service according to the present invention from an affiliate store 20 representing an offline store such as a shopping mall, a restaurant, a school, or the like.
  • an affiliate store 20 representing an offline store such as a shopping mall, a restaurant, a school, or the like.
  • the service server 100 which is a relay server operating the card payment service according to the present invention.
  • the " swappable access code " is referred to as a service number or service unique code, and can generally be made up of one or more of special characters, symbols or numbers, such as "# 123", or a combination of various types thereof.
  • the service server 100 refers to a server access number that can be connected to the service server, such as the WAP according to the present invention given by the operator network operator.
  • the swap access code or affiliated store identification information may be delivered to the customer through a telephone inquiry, or may be exposed to the customer through an online or offline advertisement or guide.
  • the service server 100 of the present invention accesses the merchant information corresponding to the affiliated store identification information transmitted by the customer terminal 10, which is the mobile terminal of the customer used for card payment, from the DB to access the customer terminal 10.
  • the present invention transmits card information, etc. to be used for a card transaction, to the card company server 30 through the service server 100 by the customer terminal 10 connected to the service server 100.
  • the card information is configured to be transmitted through a method not directly exposed. Detailed and detailed description thereof will be described later.
  • the card company server 30 proceeds with the approval process for the card transaction using the transmitted information, etc., the approval result is the customer terminal 10 through the service server 100 according to the present invention; Or / and transmitted to the affiliated store 20, etc., a series of card payment service processes are performed.
  • the method for providing a self-card payment service basically involves an affiliate store occupying a credit card or storing credit card information in the form of data, etc. in connection with a card transaction. Card payment is made without performing a special action for.
  • a buyer can perform a card payment using his mobile terminal at home, without visiting a real merchant, etc., thereby increasing user convenience and personal information, card information, or credit information required for approval of a card transaction. It is transmitted without passing through merchants and service agents that perform brokerage, and thus can prevent various uses of various credit cards such as exposure or deprivation of personal information. It is possible to implement a system in which all of the stability is efficiently met.
  • the service server 100 of the present invention includes an affiliated store information processing unit 110, a transaction information receiving unit 120, a control unit 130, and a result notification unit 140.
  • the present invention is configured such that both advantages of the data communication for the WAP connection and the improvement of the user interface environment by running the VM can be harmonized with each other.
  • the client terminal 10 is connected to the relay server by the swap access code and the affiliated store code (S100), the affiliated store code, for example, in the form of '# 123456' as an identification factor and a merchant identification factor.
  • the administrator or operator of the service server 100 of the present invention is information that is given to each merchant as a unique code to distinguish each merchant, this merchant identification information (ID) is transmitted to the cardholder through a wired or wireless call Or may be provided on a web page.
  • the salesperson identification information may be further added to the affiliated store identification information.
  • the salesperson identification information of '* 8' is added to the affiliated store identification information of '# 123456' and the entire merchant identification information is added to the '# 123456'. 123456 * 8 'can be configured. In this way, when forming a merchant identification number, it may be usefully used in evaluating the performance of each salesperson.
  • the customer accesses the service server of the present invention through a medium such as a wireless application protocol (WAP) or a wired / wireless internet network using his terminal 10 (S410).
  • WAP wireless application protocol
  • S410 his terminal 10
  • the customer terminal 10 When the customer terminal 10 is connected to the service server as described above, it downloads a V (Virtual Machine, VM) for driving the service providing method according to the present invention from the service server (S4220).
  • V Virtual Machine
  • the user When the MB is installed in the customer terminal 10 in order to increase the level of security according to the credit card transaction, the user receives the password for driving the MB and stores it when the VM is driven in the future.
  • the password By configuring to go through the authentication process, even if the terminal 10 is lost or occupied, it is preferable to configure so that the use by others can be blocked.
  • the personal information entered as described above is not transmitted to the service server 100, but is configured to be directly transmitted to the card company server 30 (S450) so that personal information is not exposed to a third party even in any case. do.
  • the card company server 30 When the personal information is transmitted to the card company server 30 as described above, the card company server 30 generates a virtual card number that is alternative identification information corresponding to the transmitted card information, and transmits the transmitted card information, authentication information, personal information, Member registration is performed by storing the customer terminal information in association with each other (S460).
  • the card company server 30 When the member registration process is completed as described above, the card company server 30 performs some or all of the generated replacement identification information, the customer terminal information, and information on a part of the card number corresponding to the replacement identification information, according to the embodiment. It transmits to the service server 100, and transmits the generated replacement identification information to the customer terminal 10 to transmit a result of whether or not the member registration (S470).
  • the V mounted on the customer terminal controls the transmitted replacement identification information to be stored in association with the card information input by the customer.
  • the customer accesses the service server 100 of the present invention by inputting the previously described swap access code using his terminal 10 as shown in FIG.
  • the connection is made and the installation of the VM is ready, as shown in (b) of FIG. 5, the user is asked to confirm whether to install the self-payment program, and after confirmation, installation of the VM is started.
  • the self-card payment program is driven, that is, a password for driving the VM is input in the future (FIG. 5C), and the card information and the expiration date information to be used for self-card payment , Personal identification authentication numbers such as social security numbers, card passwords, etc. are input (FIG. 5 (d)).
  • the input information is transmitted to the card company server 30, and the card company server transmits the virtual card number, which is alternative identification information corresponding to the input card information, to the customer terminal after performing a predetermined procedure required for membership registration.
  • the VM may be configured to be stored in association with the card information in the program, and may be configured such that the alternative identification number is not exposed to a user.
  • Merchant information processing unit 110 of the service server 100 is the detailed information of the merchant (for example, merchant number, merchant name, address, representative, business registration number, telephone number corresponding to the merchant code) Etc.) in advance, and when the affiliated store code information is received as described above, the affiliated store information corresponding to the code is detected in the DB (S110) and transmitted to the customer terminal 10 (S127).
  • the transmission of the affiliated store information to the customer terminal may be performed through a reply data signal system indicating that the swap connection is made when the swap connection is made as described above, and may be formed in various forms according to the embodiment.
  • transmitting the affiliated store information to the customer terminal is configured to notify the user of the affiliated store corresponding to the affiliated store code sent by the customer himself to the service server 100 of the present invention as described in the following description. Therefore, in the present invention, since the realization of such a function is technically meaningful, the configuration of the time point at which the affiliate store information is transmitted to the customer terminal may be a service as well as the embodiment shown in FIG. Obviously, it should be interpreted that the communication between the server and the customer terminal can be performed at various points in time.
  • the swap connection may continue to maintain a connection, and the VM of the client terminal 10 may be configured to update data communication by a swap connection at the time of data transmission.
  • the password for driving the VM is authenticated before the VM is driven (S120).
  • the user may receive a password from the user for authentication, and verify that the input password matches a previously stored password to perform authentication on the user. If authentication fails as part of a normal process (S125), a corresponding error message may be output.
  • the VM mounted on the customer terminal screens one or more card information to be used for card payment, and information about the affiliated store transmitted from the service server 100, such as an LCD of the customer terminal 10. Output to the display means (S130).
  • the password authentication for running the VM refers to the authorization of the VM to perform a subsequent process such as the step 130, performing the pre-coded subsequent process such as the step 130 after the start including the start of the VM itself. It is obvious that this will be interpreted as a certification approval.
  • the VM may output the entire card number, but can increase the security level by outputting only a part of the card number, in another embodiment only the customer corresponding to the card number is known It can also take other information and output it. For example, text-based information such as a card for income deduction, your own card, slush card, etc., or information that symbolizes a particular card with special characters, emoticons, etc. can be printed to enhance user convenience. It may be.
  • the user selects a card to be used for the card payment by the presenter from one or more card information output to his terminal, and inputs the price information according to the self card payment.
  • the input information is transmitted to the transaction information receiving unit 120 of the service server 100 of the present invention.
  • the information of the selected card may be transmitted.
  • the card information may be predetermined. Since it is transmitted to the service server 100 which is a server, it is possible to occupy third party card information as a data form.
  • card information can be configured to transmit only a portion of the card number to the service server 100, in this case, as described above, the service server 100 of the present invention is already a card company in the member registration process Since the link information has been transmitted from the server 30, some information of the card information may be transmitted to the card company server 30 to perform a transaction approval request.
  • the VM-based customer terminal 10 outputs the virtual card number, which is an alternative identification information corresponding to the card information to be used for self-payment in the member registration process, so that the customer outputs it by the user interface. If the selected card is selected, the alternative identification information associated with the selected card may be configured to be transmitted to the transaction information receiver 120 of the service server 100 (S135).
  • the information such as the actual card number is not transmitted or received in the form of data at all, except in the case of being transmitted to the card company during the member registration process, and only an alternative identification number which is a virtual identification card number symbolizing this is not transmitted. Since it is transmitted and received in the form of data, it can be said to be more preferable since it can fundamentally cope with security obstacles such as hacking and information leakage.
  • the control unit 130 of the service server 100 transmits the transmitted information to the card company server 30 for the self-payment of the card. Request for approval (S140).
  • the payment information is transmitted to the merchant by the mobile terminal number and the like, and after confirming that the payment information and the user information for the actual card transaction is configured to request the approval of the self-card payment to the card company server as described above. It is desirable to.
  • the corresponding card company server 30 utilizes the transmitted information and the pre-established database, that is, the transaction using card information, replacement identification information (virtual card information), customer portable terminal information, payment information, merchant information, and the like. Proceed with the approval procedure (S145) and transmits the approval result to the control unit 130 of the service server 100 (S150).
  • the customer enters the swap access code and the merchant code as shown in FIG. 6 (a) to access the service server 100 according to the present invention.
  • the access using the swap connection code and the merchant code can be easily accessed using a predetermined icon or a widget in the customer terminal 10, and the configuration through the icon or widget may be performed. It may be set separately according to a merchant or a purchase type through a predetermined classification technique.
  • the customer enters a password for driving the VM embedded in his terminal, undergoes a user authentication process, and after authentication, the stored one or more card information pop-up or If so, the card to be used for self-payment is selected as shown in FIG.
  • the pop-up or output card information may be authored in various forms that only the user can know.
  • the VM (VM) of the customer terminal 10 outputs an interface screen for the final confirmation process as shown in (e) of FIG.
  • the embodiment shown in FIG. 7 is an embodiment of a case where a merchant or the like transmits a payment request signal including information about the customer and price information to the service server 100 according to the present invention in advance. Corresponds to an embodiment that can further enhance the convenience and efficiency of all users.
  • the affiliated store transmits a payment request signal including customer information such as a mobile phone number and price information to the service server 100 of the present invention through the predetermined affiliated store terminal 20 (S200).
  • a buyer who intends to perform a payment by the service according to the present invention will communicate a purchase intention through wired / wireless communication to a person who provides goods, services, services, and the like (hereinafter, referred to as a "seller").
  • the seller secures the telephone number of the mobile communication terminal of the customer to be used for self-payment through electronic means such as a part confirming the purchase intention from the customer, display of the calling party number, inquiry, or registered member information. Can be.
  • the seller transmits a payment request signal to the service server 100 of the present invention operating the self-card payment according to the present invention.
  • the service method according to the present embodiment may be more effective.
  • Merchants and the like may prepare a matter of a plurality of bills subscribed to the affiliated store through an electronic data sheet or the like through a predetermined writing tool or program distributed.
  • the service server 100 parses the customer telephone number information included in the payment request signal,
  • the URL call back SMS (URL call back SMS) connected to the service server 100 is transmitted to the customer terminal (S205).
  • the customer accesses the service server through the ULC callback SM through the customer terminal 10 thereof. It is made (S210).
  • the UL callback SM includes a swap access code and the like.
  • the UE callback SM is only selected by the selection of the UE callback SM. It can be connected to the service server of the present invention which is linked.
  • an authentication process such as inputting a password for driving the VM before the VM which performs the service method of the present invention (S215, S220).
  • the VM mounted on the customer terminal is driven, and transmits one or more card information to be used for self-card payment and the service server.
  • the price information is output to the screen display means of the customer terminal 10 (S225).
  • the service server 100 Since the service server 100 has already secured the billing information to be billed to the customer from the merchant terminal 20, the customer does not go through the process of re-entering the billing information and the like, and checks whether the outputted billing information is correct. It can be implemented in a simple and accurate way.
  • the VM mounted in the customer terminal corresponds to the selected card information.
  • the alternative identification information is transmitted to the service server 100 of the present invention through a data communication medium such as a swap (WAP) (S230).
  • WAP swap
  • the service server 100 transmits the transmitted replacement identification information and the price information to the card company server 30 to request a transaction approval (S224), and the card company.
  • S224 a transaction approval
  • the approval is completed after the approval process of the server 30 (S240) and the result arrives at the service server 100, the result of the approval is notified to the predetermined terminal 20 and the customer terminal 10 of the affiliated store. (S250, S255).
  • the card information of the customer, which should be maintained in the security is not exposed at all to the service server 100, which is the subject that performs the brokering of the self-payment of the present invention, including the affiliated store.
  • the self-payment service method according to the present invention described above has a fundamental difference from the conventional method of payment processing according to the use of a credit card.
  • the process of reading the magnetic or IC information of the customer credit card the process of transmitting the read information and the unique number of the merchant card terminal to the VAN company, such as the transmitted information If the card is approved, the process includes receiving approval information and printing the credit card transaction result on the voucher after the approval is made.
  • the merchant card terminal is main in all the processes from the beginning and the end of the credit card transaction. It is performed as a subject.
  • the customer only provides the card to the salesperson of the affiliated store, and although the agent is the agent of the transaction, the terminal does not perform the subjective act of the card transaction, and the terminal handles all the processes. Therefore, as described above, if the merchant terminal that performs the above functions does not exist in any form, the credit card transaction is not performed, and in this process, the customer becomes a neighbor.
  • Such a problem may occur in the case where the personal information of the customer is occupied or stored in a PG company or an intermediary server or the like.
  • the method according to the present invention is configured such that not only the merchant terminal representing the third party, but also the brokering agent is involved in the credit card transaction process.
  • the market utilization and profits of credit card transactions are enjoyed as they are, and at the same time, the sales of "buyers", goods, or services that are intended to prevent fraudulent or unfair use through the leakage of personal information are promoted, and economic benefits It is possible to meet the market demands and needs of both the "seller” who wishes to achieve and the credit card acts of the "card company” who wishes to reliably realize the credit card transactions between the buyer and the seller.
  • each configuration of the service server 100 according to the present invention is physically divided. It should be understood as a logically divided component rather than an element.
  • each configuration corresponds to logically divided components to realize the technical idea of the present invention, even if each component is integrated or separated, the present invention can realize the function performed by the logical configuration of the present invention. Should be interpreted to be within the scope of.

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Physics & Mathematics (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Finance (AREA)
  • Computer Security & Cryptography (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

According to the present invention, a method for providing a security-enhanced card payment service comprises: a step in which a VM installed in a customer terminal is driven to output one or more pieces of card information to be used in a card payment to a screen display means of the customer terminal; a step in which alternative identification information corresponding to the selected card information and price information are transmitted to a service server; and a step in which the service server transmits the alternative identification information and price information transmitted in the previous step to a card company server to make a request for approval for the transaction, and notifies the result of approval to a store terminal and to the customer terminal upon receipt of the approval from the card company server. According to the present invention, the personal information of the customer, card information, or the like is prevented from being revealed not only to entities selling goods (or services) such as card affiliate stores, sellers, online shopping malls, or the like, but also to the servers which mediate transactions, thus effectively preventing general security problems involving conventional transactions using credit cards. Further, according to the present invention, purchasers may purchase goods or services without restrictions on time and space, thus activating and enabling easy transactions using credit cards and providing user convenience.

Description

자가 카드결제 서비스 제공방법How to provide self-payment service
본 발명은 카드결제 서비스 제공 방법에 관한 것으로서, 더욱 구체적으로는 고객이 신용카드의 주요 행위 주체가 될 수 있도록 고객 자신의 이동 단말기를 이용하여 카드 결제가 이루어질 있도록 구성되는 자가 카드결제 서비스 제공방법에 관한 것이다. The present invention relates to a method for providing a card payment service, and more particularly, to a method for providing a self-payment card service configured to allow a card payment to be made using a customer's own mobile terminal so that a customer can be a main agent of a credit card. It is about.
2007년 신용카드 일일 평균 사용건수는 951만 건에 달하며, 일일 평균 사용액 역시 1조 1천억 원에 달할 정도로 신용카드의 사용액은 가히 폭발적으로 늘고 있는 추세이다.In 2007, the average daily use of credit cards reached 951 million, and the amount of use of credit cards is increasing explosively, reaching an average of KRW 1.1 trillion.
이와 같이 신용카드의 사용건수가 늘어난 배경은 그 사용환경이 다변화되었기 때문이다. 즉, 신용카드 단말기가 구비된 점포에서만 사용되어 오던 것이 오늘날에는 온라인상에서도 편리하게 신용카드를 사용할 수 있는 시스템들이 구축됨으로써, 카드 소지자들은 장소에 구애받지 않고 온라인 및 오프라인상에서 편리하게 신용카드를 이용할 수 있게 되었다.The increase in the number of credit card usage is due to the diversified usage environment. In other words, what has been used only in stores equipped with credit card terminals is that today, the system has been established that can be used conveniently online, card holders can use the credit card anywhere online and offline conveniently It became.
신용카드의 사용환경이 다변화됨에 따라 그 피해사례 역시 여러 형태로 나타나고 있다. 가장 일반적인 피해사례는 오프라인상에서 카드 분실로 인한 피해일 것이며, 온라인 상에서 신용카드 사용시 카드정보가 제3자에게 노출되는 경우의 피해사례 역시 진일보한 피해사례들로 소개되고 있다.As the usage environment of credit cards is diversified, the damage cases also appear in various forms. The most common damage cases are the damages caused by the loss of the card offline, and the damage cases when the card information is exposed to third parties when using the credit card online are also introduced as advanced damage cases.
보다 구체적으로 기술의 발전에 따라 각종 해킹기술, 예를 들면 키보드 해킹기술이 개발되기에 이르렀는데, 이러한 키보드 해킹기술은 카드사용자의 컴퓨터 단말기에 침입하여 카드번호 및 비밀번호를 해킹하는데 이용되고 있다. 해킹된 정보는 본인 인증절차가 필요 없는 소액 결제에 이용되고 있기 때문에, 신용카드 소지자들은 불의의 피해를 입게 된다.More specifically, with the development of technology, various hacking technologies, for example keyboard hacking technologies, have been developed. These keyboard hacking technologies are used to infiltrate card users' computer terminals and hack card numbers and passwords. Since the hacked information is used for small payments that do not require identity verification, credit card holders are inadvertently harmed.
또 다른 피해사례로서 카드 사용자의 접속정보(ID와 비밀번호)를 도용해 쇼핑몰 결제대행사(PG)의 홈페이지에 접속하여 신용정보를 열람하고, 카드번호 16자리를 조합, 완성한 다음 신용카드 결제 시스템의 취약점을 이용해 사이버 머니를 충전받아 인출하는 피해사례도 소개되고 있다.Another example of damage is to steal the card user's access information (ID and password), access the homepage of the shopping mall payment agency (PG), read the credit information, combine and complete 16 digits of the card number, and then use the vulnerability of the credit card payment system. The damage case of charging and withdrawing cyber money by using it is also introduced.
이와 같이 예시한 피해사례들의 공통된 원인은 카드번호와 같은 정보가 제3자에게 노출되거나, 제3자의 시스템에 저장되어 관리되기 때문이다. 따라서 제3자 에게 카드정보를 제공하지 않고서도 카드결제가 이루어질 수 있다면 상술한 피해사례들을 미연에 방지할 수 있을 것이다.A common cause of the damage cases exemplified above is that information such as a card number is exposed to a third party or stored and managed in a third party's system. Therefore, if the card payment can be made without providing the card information to the third party, it will be possible to prevent the above-mentioned damages in advance.
더 나아가 배달, 방문판매 업체들은 업무의 특성상 원격 결제수단을 이용하여 카드 결제 서비스를 지원하고 있다. 이러한 경우 업체 입장에서 보면 소비자의 결제 편의를 도모하기 위해 각 배달사원 혹은 방문 판매자에게 원격 결제수단을 제공해 주어야 한다. 따라서 원격 결제수단 구비 없이 카드결제가 이루어질 수 있는 시스템의 도입이 이루어진다면 그만큼 영업비용을 절감할 수 있을 것이다.Furthermore, delivery and door-to-door vendors support card payment services using remote payment methods due to the nature of their business. In this case, in order to facilitate the payment of consumers, the remote payment means should be provided to each delivery person or visiting seller. Therefore, if the introduction of the system that can be made card payment without the remote payment means will be able to reduce the operating cost.
본 발명은 상기와 같은 배경에서 상기 문제점을 해결하기 위하여 창안된 것으로서, 카드정보의 제공 또는 노출로 인한 피해를 최소화할 수 있도록 소비자가 직접 자가결제를 수행할 수 있는 이동 통신 단말기를 이용한 자가 카드결제 서비스 제공방법을 제공하는 것에 목적이 있다.The present invention has been made to solve the above problems in the background as described above, self-payment card using a mobile communication terminal that can directly perform the self-payment by consumers to minimize the damage caused by the provision or exposure of card information The purpose is to provide a service providing method.
더 나아가 본 발명은 가맹점 등은 물론, 상기 서비스를 운용하는 주체에게도 개인 정보 등이 노출되지 않도록 구성함으로써 개인 정보 등의 보안이 더욱 향상된 서비스 방법을 제공하고, 사용자의 편의성, 이용 접근성, 경제성 등이 더욱 개선된 서비스 방법을 제공하는 것에 목적이 있다. Furthermore, the present invention provides a service method with improved security of personal information by configuring personal information, etc. not to be exposed to not only merchants but also subjects who operate the service, and provides convenience, user accessibility, economical efficiency, and the like. It is an object to provide a further improved service method.
본 발명에 다른 목적 및 장점들은 하기에 설명될 것이며, 본 발명의 실시예에 의해 알게 될 것이다. 또한, 본 발명의 목적 및 장점들은 특허청구범위에 나타난 구성과 구성의 조합에 의해 실현될 수 있다.Other objects and advantages of the present invention will be described below and will be appreciated by the embodiments of the present invention. In addition, the objects and advantages of the present invention can be realized by the configuration and combination of configurations shown in the claims.
상기 목적을 달성하기 위한 본 발명의 자가 카드결제 서비스 제공방법은 고객 단말이 왑(WAP)접속 코드와 가맹점 코드에 의하여 서비스 서버에 접속하는 접속단계; 상기 서비스 서버가 상기 고객 단말로부터 자가 카드결제에 이용될 카드 정보에 해당하는 대체 식별 정보와 대금 정보를 왑 접속에 의하여 수신하는 거래정보수신단계; 및 상기 대체 식별 정보와 연계되어 카드사 서버에 저장되어 있는 고객의 카드 정보를 이용하여 카드사 서버가 카드 거래에 대한 승인을 할 수 있도록 상기 서비스 서버가 상기 전송된 대체 식별 정보와 대금 정보를 카드사 서버에 전송하여 거래 승인을 요청하고, 승인이 완료되면 상기 가맹점의 소정 단말과 상기 고객 단말에 승인 결과를 통보하는 결과통보단계를 포함하여 구성된다. Self-card payment service providing method of the present invention for achieving the above object is a client terminal access step by the WAP (WAP) access code and the merchant code to the service server; A transaction information receiving step, wherein the service server receives from the customer terminal an alternative identification information and a price information corresponding to the card information to be used for self-payment by a swap connection; And the service server transmits the transferred identification information and price information to the card company server so that the card company server can approve the card transaction using the card information of the customer stored in the card company server in association with the substitute identification information. Request for transaction approval by sending, and the result is configured to include a result notification step of notifying the approval result to the predetermined terminal and the customer terminal of the merchant.
더욱 바람직한 실시형태를 구현하기 위하여 상기 본 발명의 거래정보수신단계는 상기 서비스 서버에 상기 고객 단말이 접속되면 상기 고객 단말에 탑재된 브이엠(VM)이 구동되어 자가 카드결제에 이용될 하나 이상의 카드 정보를 상기 고객 단말의 화면표시수단으로 출력하는 출력단계; 및 상기 출력된 하나 이상의 카드 정보 중 하나가 선택되면 선택된 카드 정보에 해당하는 대체 식별 정보와 대금 정보가 서비스 서버로 전송되는 전송단계를 포함할 수 있다. In order to implement a more preferred embodiment of the transaction information receiving step of the present invention, when the customer terminal is connected to the service server is mounted on the customer terminal (VM) is one or more cards to be used for self-payment card An output step of outputting information to the screen display means of the customer terminal; And transmitting the identification information and the payment information corresponding to the selected card information to the service server when one of the output one or more card information is selected.
여기에서, 상기 브이엠(VM, Virtual Machine)은 상기 서비스 서버에 상기 고객 단말이 접속된 후 사용자로부터 입력된 브이엠 구동을 위한 비밀번호가 인증된 경우에 한하여 구동되도록 구성될 수 있으며, 또한, 상기 출력단계는 상기 서비스 서버로부터 전송된 상기 가맹점 코드에 해당하는 가맹점 정보를 더 출력하도록 구성될 수 있다. Here, the virtual machine (VM) may be configured to be driven only when a password for driving the MB input from a user is authenticated after the customer terminal is connected to the service server. The outputting step may be configured to further output affiliate store information corresponding to the affiliate store code transmitted from the service server.
또한, 상기 대체 식별 정보는 회원 등록 시 자가 카드결제에 사용될 카드 정보와 상호 연계되어 상기 고객 단말 및 카드사 서버에 저장되도록 구성될 수 있다. In addition, the replacement identification information may be configured to be stored in the customer terminal and the card company server in association with the card information to be used for self-payment card at the time of membership registration.
한편, 본 발명의 다른 측면에 의한 자가 카드 결제 서비스 제공 방법은 가맹점으로부터 고객 단말의 전화번호 정보와 대금 정보를 포함하는 결제 요청신호가 입력되는 요청신호 입력단계; 상기 서비스 서버로 접속되는 유알엘콜백 에스엠에스(URL call back SMS)를 상기 결제 요청 신호의 고객 단말로 전송하는 에스엠에스전송단계; 상기 고객 단말이 상기 유알엘콜백 에스엠에스를 통하여 서비스 서버에 접속하는 접속단계; 상기 고객 단말이 상기 서비스 서버에 접속되면 상기 고객 단말에 탑재된 브이엠(VM)이 구동되어 자가 카드결제에 이용될 하나 이상의 카드 정보 및 상기 서비스서버로부터 전송된 대금정보를 상기 고객 단말의 화면표시수단으로 출력하는 출력단계; 상기 출력된 하나 이상의 카드 정보 중 하나가 선택되면 선택된 카드 정보에 해당하는 대체 식별 정보가 상기 서비스 서버에 왑(WAP)으로 전송되는 전송단계; 및 상기 서비스 서버가 상기 전송된 대체 식별 정보와 상기 대금 정보를 카드사 서버에 전송하여 거래 승인을 요청하고, 승인이 완료되면 상기 가맹점의 소정 단말과 상기 고객 단말에 승인 결과를 통보하는 결과통보단계를 포함하여 구성될 수 있다. On the other hand, the self-card payment service providing method according to another aspect of the present invention comprises a request signal input step of inputting a payment request signal including telephone number information and price information of the customer terminal from the merchant; SM transmission step of transmitting a URL call back SMS (URL call back SMS) connected to the service server to the customer terminal of the payment request signal; An access step of the client terminal accessing a service server through the UL callback SM; When the customer terminal is connected to the service server, the VM (VM) mounted on the customer terminal is driven to display one or more card information to be used for self-card payment and the price information transmitted from the service server. An output step of outputting by means; A transmission step in which, when one of the output one or more card information is selected, alternative identification information corresponding to the selected card information is transmitted to the service server by a WAP; And a result notification step of transmitting, by the service server, the transferred alternative identification information and the price information to a card company server to request a transaction approval, and notifying a predetermined terminal of the affiliate store and the customer terminal of the approval result when the approval is completed. It can be configured to include.
본 발명은 물품이나 서비스 등을 제공하는 가맹점(온라인 판매 서버 포함)의 카드 정보 수신 및 처리 등과 같은 신용 정보의 매개를 통한 종래의 카드 거래 수행 방식을 극복하고 카드 거래를 수행하고자 하는 사용자가 자신의 통신 단말기를 통해 직접 카드 거래에 대한 일체의 행위를 주체적이고 주도적으로 편리하게 수행할 수 있다.According to the present invention, a user who wants to perform a card transaction by overcoming a conventional card transaction execution method through a medium of credit information such as receiving and processing card information of a merchant (including an online sales server) that provides goods or services, etc. Through the communication terminal, any action on the card transaction can be carried out conveniently and independently.
그러므로 가맹점 등의 제3자는 물론, 카드 거래를 매개하는 중개 서버 등에게 카드정보를 제공하지 않고도 카드결제가 이루어질 수 있으므로 결과적으로 공간과 시간에 제약되지 않은 유비쿼터스 환경에 의한 사용자 지향적인 카드 거래를 수행할 수 있음은 물론, 카드정보 노출에 의하여 야기되는 다양한 피해를 사전에 방지할 수 있는 효과를 창출할 수 있다. Therefore, card payment can be made without providing card information to third parties such as merchants as well as intermediary servers that mediate card transactions. As a result, user-oriented card transactions are performed by a ubiquitous environment that is not limited to space and time. Not only that, but also various effects caused by the exposure of the card information can be prevented in advance.
이와 함께, 거래가 수행되는 경우 카드 정보에 대한 데이터가 송수신되지 않고, 상기 카드 정보에 해당하는 대체(alternation) 식별 정보인 가상카드번호가 데이터로 송수신되도록 함으로써 해킹 등이 발생하더라도 강인하게 대처할 수 있으며, 이러한 구성을 통하여 거래의 편의성, 간단성 등을 저해시키지 않으면서도 거래 보안의 수준을 한층 높일 수 있다는 효과를 제공할 수 있다. In addition, when a transaction is performed, data on the card information is not transmitted and received, and the virtual card number, which is an identification information corresponding to the card information, is transmitted and received as data, thereby coping robustly even if a hacking occurs. Through such a configuration, it is possible to provide an effect that the level of transaction security can be further enhanced without impeding the convenience or simplicity of the transaction.
또한, 본 발명에 의한 카드 결제가 이루어지는 경우 사용자(구매자)가 유알엘콜백 에스엠에스(URL callback SMS)를 이용하여 본 발명에 의한 중개 서버인 서비스 서버로 접속 가능하도록 할 수 있어 사용자의 접근성과 사용 용이성을 더욱 증진시킬 수 있다.In addition, when the card payment according to the present invention is made, the user (buyer) can be connected to the service server which is an intermediary server according to the present invention by using URL callback SMS (user's accessibility and ease of use). Can be further promoted.
더욱이, 사용자에게 GUI(Graphic User Interface)환경이 개선되도록 본 발명에 의한 서비스 제공 방법을 VM 기반으로 운용하고 상기 VM의 구동을 통하여 전송되는 데이터만 WAP 등에 의한 데이터 통신으로 수신되도록 구성함으로써, 사용자 편의성을 더욱 개선할 수 있음은 물론, 본 발명의 서비스 이용에 따른 비용을 대폭적으로 낮출 수 있어 더욱 경제적인 운용이 가능하다. In addition, by operating the service providing method according to the present invention based on the VM to improve the GUI (Graphic User Interface) environment to the user, by configuring only the data transmitted through the drive of the VM is received by the data communication, such as WAP, user convenience Of course, it is possible to further improve the cost of using the service of the present invention can be significantly lowered and more economical operation is possible.
더 나아가 본 발명은 카드 소유자인 고객이 가맹점의 카드 결제를 위한 가맹점 단말의 도움없이 스스로 결제를 수행할 수 있기 때문에 배달 또는 방문 판매사원에게 보급되어야 하는 결제 단말기들이 필요 없게 되므로 결과적으로 배달, 방문판매사원들의 장비 구입에 필요한 영업비용을 절감할 수 있다.Furthermore, the present invention eliminates the need for payment terminals that need to be distributed to a delivery or visiting sales person because a customer who is a cardholder can perform payment by himself or herself without the help of an affiliated terminal for card payment of an affiliate. Reduce the operating costs for employees to purchase equipment.
본 명세서에 첨부되는 다음의 도면들은 본 발명의 바람직한 실시예를 예시하는 것이며, 전술된 발명의 상세한 설명과 함께 본 발명의 기술사상을 더욱 이해시키는 역할을 하는 것이므로, 본 발명은 그러한 도면에 기재된 사항에만 한정되어 해석되어서는 아니 된다.The following drawings, which are attached to this specification, illustrate exemplary embodiments of the present invention, and together with the detailed description of the present invention serve to further understand the technical spirit of the present invention, the present invention includes matters described in such drawings. It should not be construed as limited to.
도 1은 본 발명의 실시예에 따른 자가 카드결제 시스템에 대한 구성을 도시한 개략도,1 is a schematic diagram showing a configuration for a self-payment system according to an embodiment of the present invention,
도 2는 본 발명의 실시예에 따른 자가 카드결제 서비스 방법을 수행하는 서비스 서버에 대한 구성을 도시하고 있는 블록도,2 is a block diagram illustrating a configuration of a service server for performing a self-payment service method according to an embodiment of the present invention;
도 3은 본 발명의 바람직한 실시예에 따른 자가 카드결제 서비스 방법의 과정을 도시하고 있는 흐름도, 3 is a flowchart illustrating a process of a self-payment service method according to an embodiment of the present invention;
도 4는 본 발명의 바람직한 실시예에 따른 자가 카드결제 서비스에 대한 회원 등록 과정을 도시하고 있는 흐름도, 4 is a flowchart illustrating a member registration process for a self-payment service according to a preferred embodiment of the present invention;
도 5는 상기 도 4에 도시된 과정을 사용자 인터페이스 환경을 기준으로 설명하는 도면,5 is a view for explaining the process illustrated in FIG. 4 based on a user interface environment;
도 6은 도 3에 도시된 본 발명의 바람직한 실시예에 따른 자가 카드결제 서비스 방법을 사용자 인터페이스 환경을 기준으로 설명하는 도면, FIG. 6 is a diagram illustrating a self-payment service method according to a preferred embodiment of the present invention shown in FIG. 3 with reference to a user interface environment;
도 7은 본 발명의 또 다른 바람직한 실시예 의한 자가 카드결제 방법에 대한 과정을 도시하고 있는 흐름도이다. 7 is a flowchart illustrating a process of a self-card payment method according to another preferred embodiment of the present invention.
이하, 첨부된 도면을 참조하여 본 발명의 바람직한 실시예를 상세히 설명하기로 한다. 이에 앞서, 본 명세서 및 청구범위에 사용된 용어나 단어는 통상적이거나 사전적인 의미로 한정해서 해석되어서는 아니 되며, 발명자는 그 자신의 발명을 가장 최선의 방법으로 설명하기 위해 용어의 개념을 적절하게 정의할 수 있다는 원칙에 입각하여 본 발명의 기술적 사상에 부합하는 의미와 개념으로 해석되어야만 한다.Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings. Prior to this, terms or words used in the present specification and claims should not be construed as being limited to the common or dictionary meanings, and the inventors should properly explain the concept of terms in order to best explain their own invention. Based on the principle that can be defined, it should be interpreted as meaning and concept corresponding to the technical idea of the present invention.
따라서, 본 명세서에 기재된 실시예와 도면에 도시된 구성은 본 발명의 가장 바람직한 일 실시예에 불과할 뿐이고 본 발명의 기술적 사상을 모두 대변하는 것은 아니므로, 본 출원시점에 있어서 이들을 대체할 수 있는 다양한 균등물과 변형예들이 있을 수 있음을 이해하여야 한다.Therefore, the embodiments described in the specification and the drawings shown in the drawings are only the most preferred embodiment of the present invention and do not represent all of the technical idea of the present invention, various modifications that can be replaced at the time of the present application It should be understood that there may be equivalents and variations.
이하에서 본 발명의 실시예와 관련하여 설명되는 카드는 사용자의 개인 정보 또는 신용정보 등을 이용하여 물품 또는 서비스 구매, 금융 거래, 등록 등을 수행할 수 있도록 개인 정보 또는 신용정보 등이 소정의 물리적 매체에 화체되어 있는 카드를 의미하는 것으로서, 신용카드, 체크카드 또는 회원카드 등 그 지칭되는 명칭에 제한되지 않는다고 해석되어야 한다. 또한, 설명되는 가맹점은 물품 또는 서비스 등을 제공하는 주체를 의미하는 요소로 온라인 및 오프라인 모두를 포함하는 개념으로 이해되어야 한다.The card described in connection with the embodiment of the present invention is a personal information or credit information or the like so as to perform the purchase of goods or services, financial transactions, registration, etc. using the user's personal information or credit information, etc. Means a card that is ignited in the medium, it should be interpreted as not limited to the name, such as credit card, check card or membership card. In addition, the affiliated store is to be understood as a concept that includes both on-line and off-line as an element representing the subject providing the goods or services.
우선, 본 발명에 따른 자가 카드결제 서비스 제공 방법이 구현되는 시스템 구성을 첨부된 도 1을 통하여 간략히 설명하도록 한다. First, a system configuration in which the self-payment service providing method according to the present invention is implemented will be briefly described with reference to FIG. 1.
도 1을 참조하면, 카드 소유자인 고객은 쇼핑몰, 식당, 학원 등의 오프라인상 등을 상징하는 가맹점(20)으로부터 본 발명에 따른 서비스를 이용하기 위한 왑 접속 코드와 가맹점 식별정보(ID)를 획득하여 본 발명에 따른 카드 결제 서비스를 운용하는 중계 서버인 서비스 서버(100)에 자신의 단말을 이용하여 접속한다. Referring to FIG. 1, a customer who is a card holder obtains a swap access code and merchant identification information (ID) for using a service according to the present invention from an affiliate store 20 representing an offline store such as a shopping mall, a restaurant, a school, or the like. By using its terminal to the service server 100 which is a relay server operating the card payment service according to the present invention.
상기 "왑접속 코드"는 서비스 번호 또는 서비스 고유 코드 등으로 칭해지며, 일반적으로 "#123" 등의 형태와 같이 특수문자,기호 또는 숫자 등의 하나 이상 또는 이들의 다양한 형태에 의한 조합으로 이루어질 수 있으며 서비스 서버(100) 운영자가 통신망 사업자로부터 부여받은 본 발명에 의한 WAP 등과 같은 서비스 서버에 접속할 수 있는 서버접속번호를 의미한다. The " swappable access code " is referred to as a service number or service unique code, and can generally be made up of one or more of special characters, symbols or numbers, such as "# 123", or a combination of various types thereof. In addition, the service server 100 refers to a server access number that can be connected to the service server, such as the WAP according to the present invention given by the operator network operator.
상기 왑접속 코드 또는 가맹점 식별정보 등은 전화 문의 등을 통하여 고객에게 전달이 가능하며, 또한, 온라인 또는 오프라인상의 광고 또는 안내 등을 통하여 고객에게 노출될 수도 있음은 물론이다. The swap access code or affiliated store identification information may be delivered to the customer through a telephone inquiry, or may be exposed to the customer through an online or offline advertisement or guide.
본 발명의 상기 서비스 서버(100)는 카드 결제에 이용되는 고객의 이동 통신 단말기인 고객 단말(10)이 전송한 가맹점 식별정보에 대응하는 가맹점 정보를 DB에서 액세스(access)하여 상기 고객 단말(10)로 제공하여 고객(구매자)로 하여금 자신이 입력한 가맹점이 정확한지 확인가능하도록 구성할 수도 있다.The service server 100 of the present invention accesses the merchant information corresponding to the affiliated store identification information transmitted by the customer terminal 10, which is the mobile terminal of the customer used for card payment, from the DB to access the customer terminal 10. ) Can be configured to allow customers (buyers) to verify that the merchant entered by them is correct.
상기와 같은 방식에 기초하여 본 발명은 서비스 서버(100)에 접속된 고객 단말(10)이 카드 거래에 사용될 카드 정보 등을 서비스 서버(100)를 매개하여 카드사 서버(30)에 전송하되, 상기 카드 정보 등이 직접적으로 노출되지 않은 방법을 통하여 전송되도록 구성한다. 이에 대한 구체적이고 상세한 설명은 후술하도록 한다. Based on the above method, the present invention transmits card information, etc. to be used for a card transaction, to the card company server 30 through the service server 100 by the customer terminal 10 connected to the service server 100. The card information is configured to be transmitted through a method not directly exposed. Detailed and detailed description thereof will be described later.
상기 과정의 후속 프로세스로서, 상기 카드사 서버(30)는 전송된 정보 등을 이용하여 카드 거래에 대한 승인 절차를 진행하고, 승인 결과는 상기 본 발명에 의한 서비스 서버(100)를 통하여 고객 단말(10) 또는/및 가맹점(20) 등으로 전송됨으로써 일련의 카드 결제 서비스 과정이 수행된다.As a subsequent process of the above process, the card company server 30 proceeds with the approval process for the card transaction using the transmitted information, etc., the approval result is the customer terminal 10 through the service server 100 according to the present invention; Or / and transmitted to the affiliated store 20, etc., a series of card payment service processes are performed.
상기 도 1을 통하여 설명된 바와 같이 본 발명에 의한 자가 카드 결제 서비스 제공방법은 카드 거래와 관련하여 기본적으로 가맹점이 신용카드를 점유하거나 신용카드 정보를 데이터 등의 형태로 저장하는 등의 신용 카드 거래에 대한 특별한 행위를 수행하지 않고도 카드 결제가 이루어지도록 구성된다. As described with reference to FIG. 1, the method for providing a self-card payment service according to the present invention basically involves an affiliate store occupying a credit card or storing credit card information in the form of data, etc. in connection with a card transaction. Card payment is made without performing a special action for.
즉, 구매자가 실제 가맹점 등에 방문하지 않고도 가정 등에서 자신의 휴대 단말을 이용하여 카드 결제를 수행할 수 있게 되어 사용자의 편의성이 더욱 높아짐은 물론, 카드 거래의 승인 등에 필요한 개인 정보, 카드 정보 또는 신용 정보 등이 가맹점 및 중개를 수행하는 서비스 주체 등을 전혀 거치지 않고 전송되므로 개인 정보 등의 노출 또는 점유 이탈 등에 기인되는 다양하고 광범위한 신용카드 등의 불법 사용을 원천적으로 방지할 수 있어 거래의 편의성과 거래의 안정성 모두가 효율적으로 충족되는 시스템을 구현할 수 있게 된다. That is, a buyer can perform a card payment using his mobile terminal at home, without visiting a real merchant, etc., thereby increasing user convenience and personal information, card information, or credit information required for approval of a card transaction. It is transmitted without passing through merchants and service agents that perform brokerage, and thus can prevent various uses of various credit cards such as exposure or deprivation of personal information. It is possible to implement a system in which all of the stability is efficiently met.
이하에서는 본 발명의 바람직한 실시예에 따른 서비스 서버(100)의 구성과 상기 서비스 서버 등을 통한 자가 카드결제 서비스 제공 방법에 대한 과정을 첨부된 도 2 및 도 3을 통하여 상세히 설명하도록 한다.Hereinafter, the configuration of the service server 100 according to the preferred embodiment of the present invention and a process for providing a self-payment service through the service server, etc. will be described in detail with reference to FIGS. 2 and 3.
도 2에 도시된 바와 같이 본 발명의 서비스 서버(100)는 가맹점 정보처리부(110), 거래정보수신부(120), 제어부(130) 및 결과통보부(140) 등을 포함하여 구성된다. As shown in FIG. 2, the service server 100 of the present invention includes an affiliated store information processing unit 110, a transaction information receiving unit 120, a control unit 130, and a result notification unit 140.
우선, 본 발명은 앞서 설명된 바와 같이 WAP 접속에 대한 데이터 통신과 VM 구동에 의한 사용자 인터페이스 환경의 개선이라는 양 장점이 상호 조화롭게 융합될 수 있도록 구성된다. First, as described above, the present invention is configured such that both advantages of the data communication for the WAP connection and the improvement of the user interface environment by running the VM can be harmonized with each other.
이를 위하여, 고객 단말(10)은 왑접속코드와 가맹점 코드에 의하여 중계 서버에 접속하게 되는데(S100), 상기 가맹점 코드는 예를 들어 '#123456'과 같은 형태로 식별 인자와 가맹점 구분 인자 등으로 이루어질 수 있으며, 본 발명의 서비스 서버(100)의 관리자 내지 운용자가 각 가맹점을 구별하기 위하여 고유 코드로서 각 가맹점에게 부여되는 정보이며, 이러한 가맹점 식별정보(ID)는 유무선 통화를 통해 카드 소유자에게 전달되거나 웹 페이지 상에서 제공될 수 있다. To this end, the client terminal 10 is connected to the relay server by the swap access code and the affiliated store code (S100), the affiliated store code, for example, in the form of '# 123456' as an identification factor and a merchant identification factor. It can be made, the administrator or operator of the service server 100 of the present invention is information that is given to each merchant as a unique code to distinguish each merchant, this merchant identification information (ID) is transmitted to the cardholder through a wired or wireless call Or may be provided on a web page.
또한, 상기 가맹점 식별정보에는 판매사원 식별정보가 더 부가되어 사용될 수 있는데 예를 들어, '#123456'이라는 가맹점 식별정보에, '*8'이라는 판매사원 식별정보를 더하여 전체적인 가맹점 식별정보를 '#123456*8'구성할 수 있다. 이렇게 가맹점 식별번호를 구성하는 경우 향후 판매사원별 실적을 평가함에 있어 유용하게 사용될 수 있다. In addition, the salesperson identification information may be further added to the affiliated store identification information. For example, the salesperson identification information of '* 8' is added to the affiliated store identification information of '# 123456' and the entire merchant identification information is added to the '# 123456'. 123456 * 8 'can be configured. In this way, when forming a merchant identification number, it may be usefully used in evaluating the performance of each salesperson.
왑 환경을 통한 접속에 이은 본 발명의 후속 프로세스의 상세한 설명에 앞서, 본 발명의 특징적 구성에 대한 설명의 효율성을 높이기 위하여 본 발명에 의한 자가 카드결제 서비스 제공 방법을 실현하기 위한 회원 등록에 대한 사항을 도 4 및 도 5를 참조하여 먼저 설명하도록 한다. Prior to the detailed description of the subsequent process of the present invention following the connection through a swap environment, the matters related to membership registration for realizing the method of providing a self-payment service according to the present invention in order to increase the efficiency of the description of the characteristic configuration of the present invention. Will be described first with reference to FIGS. 4 and 5.
도 4에 도시된 바와 같이 고객은 자신의 단말(10)을 이용하여 왑(Wireless Application Protocol, WAP)이나 유무선 인터넷 망 등의 매체를 통하여 본 발명의 서비스 서버에 접속한다(S410).As shown in FIG. 4, the customer accesses the service server of the present invention through a medium such as a wireless application protocol (WAP) or a wired / wireless internet network using his terminal 10 (S410).
상기와 같이 고객 단말(10)이 서비스 서버에 접속되면, 서비스 서버로부터 본 발명에 의한 서비스 제공 방법의 구동을 위한 브이엠(Virtual Machine, VM)을 다운로드한다(S4220). When the customer terminal 10 is connected to the service server as described above, it downloads a V (Virtual Machine, VM) for driving the service providing method according to the present invention from the service server (S4220).
신용카드 거래 등에 따른 보안의 수준을 높이기 위하여 상기 브이엠은 고객 단말(10)에 인스톨(install)될 때, 상기 브이엠의 구동을 위한 비밀번호를 입력받고 이를 저장함으로써 향후 VM이 구동될 때, 사용자 인증 과정을 거치도록 구성하여, 본 단말(10)이 분실되거나 점유가 이탈되는 경우에도 타인에 의한 사용이 원천적으로 차단될 수 있도록 구성하는 것이 바람직하다. When the MB is installed in the customer terminal 10 in order to increase the level of security according to the credit card transaction, the user receives the password for driving the MB and stores it when the VM is driven in the future. By configuring to go through the authentication process, even if the terminal 10 is lost or occupied, it is preferable to configure so that the use by others can be blocked.
이와 같이 VM구동을 위한 비밀번호가 입력되고 VM이 구동되면(S430), 자가 카드결제에 이용될 카드 정보, 개인 정보, 인증 정보 등을 VM 구동에 의한 인터페이스 환경을 통하여 입력한다(S440). As described above, when the password for driving the VM is input and the VM is driven (S430), card information, personal information, authentication information, etc. to be used for self-card payment are input through the interface environment driven by the VM (S440).
상기와 같이 입력된 개인 정보 등은 서비스 서버(100)로 전송되지 않으며, 카드사 서버(30)로 바로 전송(S450)되도록 구성하여 여하한 경우에도 개인 정보 등이 제3의 기관에 노출되지 않도록 구성한다. 이와 같이 개인 정보 등이 카드사 서버(30)로 전송되면, 카드사 서버(30)는 전송된 카드 정보에 대응하는 대체 식별 정보인 가상카드번호를 생성하고, 전송된 카드 정보, 인증 정보, 개인 정보, 고객 단말 정보 등과 함께 상호 연계하여 저장함으로써 회원 등록을 수행한다(S460).The personal information entered as described above is not transmitted to the service server 100, but is configured to be directly transmitted to the card company server 30 (S450) so that personal information is not exposed to a third party even in any case. do. When the personal information is transmitted to the card company server 30 as described above, the card company server 30 generates a virtual card number that is alternative identification information corresponding to the transmitted card information, and transmits the transmitted card information, authentication information, personal information, Member registration is performed by storing the customer terminal information in association with each other (S460).
이와 같이 회원 등록 과정이 완료되면, 상기 카드사 서버(30)는 생성된 대체 식별 정보, 고객 단말 정보, 상기 대체 식별 정보에 대응하는 카드 번호 중의 일부에 대한 정보 등의 일부 또는 전부를 실시형태에 따라 서비스 서버(100)로 전송하고, 상기 생성된 대체 식별 정보를 고객 단말(10)로 전송하여 회원 등록 여부에 대한 결과를 전송한다(S470).When the member registration process is completed as described above, the card company server 30 performs some or all of the generated replacement identification information, the customer terminal information, and information on a part of the card number corresponding to the replacement identification information, according to the embodiment. It transmits to the service server 100, and transmits the generated replacement identification information to the customer terminal 10 to transmit a result of whether or not the member registration (S470).
상기 생성된 대체 식별 정보가 고객 단말(10)로 전송되면, 해당 고객 단말에 탑재된 브이엠은 상기 전송된 대체 식별 정보가 고객이 입력한 카드 정보에 연계되어 저장되도록 제어한다.When the generated replacement identification information is transmitted to the customer terminal 10, the V mounted on the customer terminal controls the transmitted replacement identification information to be stored in association with the card information input by the customer.
이하에서는 도 5를 참조하여 상기에서 설명된 일련의 과정을 고객 즉 사용자의 측면에서 휴대 단말의 인터페이스 환경 등을 통하여 설명하도록 한다.Hereinafter, a series of processes described above with reference to FIG. 5 will be described through an interface environment of a mobile terminal in terms of a customer, that is, a user.
우선, 고객은 도 5의 (a)에 도시된 바와 같이 자신의 단말(10)을 이용하여 앞서 설명된 왑접속코드를 입력하여 본 발명의 서비스 서버(100)에 접속한다. 접속이 이루어지고 VM의 설치가 준비되면, 도 5의 (b)에 도시된 바와 같이 자가 카드결제 프로그램의 설치 여부에 대한 확인 의사를 사용자에게 묻고, 확인을 받은 후, VM의 설치가 시작된다. First, the customer accesses the service server 100 of the present invention by inputting the previously described swap access code using his terminal 10 as shown in FIG. When the connection is made and the installation of the VM is ready, as shown in (b) of FIG. 5, the user is asked to confirm whether to install the self-payment program, and after confirmation, installation of the VM is started.
상기 VM의 설치 과정에서 앞서 설명된 바와 같이 자가 카드결제 프로그램의 구동, 즉 향후 VM의 구동을 위한 비밀번호를 입력받으며(도 5의 (c)), 자가 카드결제에 이용될 카드 정보, 유효 기간 정보, 주민번호 등의 개인 식별 인증 번호, 카드 비밀번호 등을 입력받는다(도 5의 (d)).In the process of installing the VM, as described above, the self-card payment program is driven, that is, a password for driving the VM is input in the future (FIG. 5C), and the card information and the expiration date information to be used for self-card payment , Personal identification authentication numbers such as social security numbers, card passwords, etc. are input (FIG. 5 (d)).
이렇게 입력된 정보는 카드사 서버(30)로 전송되며, 카드사 서버는 회원 등록에 필요한 소정의 절차를 수행한 후, 입력된 카드 정보에 해당하는 대체 식별 정보인 가상카드번호를 고객 단말에 전송하게 되는데, 상기 대체 식별 정보는 프로그램 내부에서 상기 카드 정보와 상호 연계되어 저장되도록 VM이 구동되며, 달리 사용자에게 상기 대체 식별 번호가 노출되지 않도록 구성할 수 있다.The input information is transmitted to the card company server 30, and the card company server transmits the virtual card number, which is alternative identification information corresponding to the input card information, to the customer terminal after performing a predetermined procedure required for membership registration. The VM may be configured to be stored in association with the card information in the program, and may be configured such that the alternative identification number is not exposed to a user.
이상으로 회원 등록 내기 가입 과정의 설명을 마치고, 다시 도 2 및 도 3을 통하여 본 발명의 자가 카드결제에 대한 서비스 제공 방법에 대한 상세한 설명을 이어가도록 한다.After completing the description of the membership registration bet subscription process, the detailed description of the service providing method for the self-payment of the present invention is continued through FIGS. 2 and 3.
이와 같이 회원 등록이 완료된 고객이 자신의 고객 단말(10)을 이용하여 왑접속 코드와 가맹점 코드에 의하여 본 발명의 서비스서버(100)에 접속되면(S100), 상기 왑접속을 통하여 고객 단말 번호 및 가맹점 코드 정보 등이 서비스 서버(100)의 가맹점 정보 처리부(110)로 전송된다(S105).When the customer registration is completed as described above is connected to the service server 100 of the present invention by the swap access code and the merchant code using the customer terminal 10 (S100), the customer terminal number and Merchant code information and the like are transmitted to the merchant information processing unit 110 of the service server 100 (S105).
본 발명에 의한 서비스 서버(100)의 가맹점정보 처리부(110)는 상기 가맹점에 코드에 대응하는 가맹점의 상세정보(예를 들어, 가맹점 번호, 가맹점의 상호명, 주소, 대표자, 사업자 등록번호, 전화번호 등)를 미리 DB화하고, 상기와 같이 가맹점 코드 정보가 수신되면, 상기 코드에 해당하는 가맹점 정보를 DB에서 검출(S110)하고, 이를 고객 단말(10)로 전송한다(S127).Merchant information processing unit 110 of the service server 100 according to the present invention is the detailed information of the merchant (for example, merchant number, merchant name, address, representative, business registration number, telephone number corresponding to the merchant code) Etc.) in advance, and when the affiliated store code information is received as described above, the affiliated store information corresponding to the code is detected in the DB (S110) and transmitted to the customer terminal 10 (S127).
상기 고객 단말로 가맹점 정보를 전송하는 것은 상기와 같이 왑 접속이 이루어지는 경우 왑 접속이 이루어졌음을 알리는 회신 데이터 신호 체계를 통하여 이루어질 수도 있으며, 실시형태에 따라 다양한 형태로 이루어질 수 있다. The transmission of the affiliated store information to the customer terminal may be performed through a reply data signal system indicating that the swap connection is made when the swap connection is made as described above, and may be formed in various forms according to the embodiment.
아울러, 상기 고객 단말로 가맹점 정보를 전송하는 것은 후속되는 설명에서와 같이 고객 자신이 본 발명의 서비스 서버(100)로 송부한 가맹점 코드에 해당하는 가맹점이 무엇인지 사용자에게 고지하여 확인 가능하도록 하는 구성에 해당하므로 본 발명에서는 이와 같은 기능의 실현이 기술적으로 의미가 있는 것이므로 고객 단말로 가맹점 정보를 전송하는 시점에 대한 구성은 상기와 같은 기능이 실현된다면 도 3에 도시된 일 실시예는 물론, 서비스 서버와 고객 단말 간의 통신 과정에서 다양한 시점에서 이루어질 수 있다고 해석되어야 함이 자명하다.In addition, transmitting the affiliated store information to the customer terminal is configured to notify the user of the affiliated store corresponding to the affiliated store code sent by the customer himself to the service server 100 of the present invention as described in the following description. Therefore, in the present invention, since the realization of such a function is technically meaningful, the configuration of the time point at which the affiliate store information is transmitted to the customer terminal may be a service as well as the embodiment shown in FIG. Obviously, it should be interpreted that the communication between the server and the customer terminal can be performed at various points in time.
상기 왑 접속은 커넥션이 유지된 상태를 계속 지속할 수도 있으며, 데이터 전송이 이루어지는 시점에서 상기 고객 단말(10)의 VM이 왑 접속에 의한 데이터 통신이 갱신되도록 구성할 수도 있다. The swap connection may continue to maintain a connection, and the VM of the client terminal 10 may be configured to update data communication by a swap connection at the time of data transmission.
앞서도 설명된 바와 같이 본인 이외의 타인에 의하여 상기 자가 카드결제를 위한 VM의 구동이 이루어지지 않도록 구성하기 위하여, VM의 구동에 앞서, VM구동을 위한 비밀번호를 인증한다(S120).As described above, in order to configure the VM not to be driven by another person other than the user, the password for driving the VM is authenticated before the VM is driven (S120).
앞서 설명된 바와 같이 회원 등록 과정에서 이미 비밀번호가 입력되어 있으면, 인증을 위하여 사용자로부터 비밀번호를 입력받고, 입력된 비밀번호가 기 저장된 비밀번호와 일치되는지 확인하여 본인 확인에 대한 인증을 수행할 수 있다. 통상적인 과정의 일환으로 인증에 실패하는 경우(S125) 해당하는 에러 메시지를 출력하도록 구성할 수 있다.As described above, if a password is already input in the member registration process, the user may receive a password from the user for authentication, and verify that the input password matches a previously stored password to perform authentication on the user. If authentication fails as part of a normal process (S125), a corresponding error message may be output.
상기 인증이 승인되는 경우, 고객 단말에 탑재된 VM은 기 저장된 자가 카드결제에 이용될 하나 이상의 카드 정보와 서비스 서버(100)로부터 전송된 가맹점에 대한 정보를 고객 단말(10)의 LCD 등의 화면표시수단으로 출력한다(S130).If the authentication is approved, the VM mounted on the customer terminal screens one or more card information to be used for card payment, and information about the affiliated store transmitted from the service server 100, such as an LCD of the customer terminal 10. Output to the display means (S130).
이와 같이 상기 VM 구동을 위한 비밀번호 인증은 VM이 상기 130단계와 같은 후속 공정을 수행하기 위한 인증 승인을 의미하므로 VM 구동의 개시 자체를 포함하여 개시된 후 130단계와 같은 미리 코딩된 후속 공정을 수행하기 위한 인증 승인으로 해석됨이 자명하다.As described above, since the password authentication for running the VM refers to the authorization of the VM to perform a subsequent process such as the step 130, performing the pre-coded subsequent process such as the step 130 after the start including the start of the VM itself. It is obvious that this will be interpreted as a certification approval.
상기와 같이 화면 표시수단에 출력될 때, 상기 VM은 카드 번호 전체를 출력할 수도 있으나, 카드번호의 일부만을 출력하여 보안 수준을 높일 수 있고 또 다른 실시예로 카드 번호에 대응되는 고객만이 알 수 있는 다른 정보를 입력받아 이를 출력할 수도 있다. 예를 들어, 소득 공제를 위한 카드, 나만의 카드, 비자금 카드 등과 같은 텍스트 기반의 정보나 특수 문자, 이모티콘 등으로 특정 카드를 상징하는 정보를 출력하여 사용자에게 카드 사용에 대한 편의성이 증진되도록 구성할 수도 있다.When output to the screen display means as described above, the VM may output the entire card number, but can increase the security level by outputting only a part of the card number, in another embodiment only the customer corresponding to the card number is known It can also take other information and output it. For example, text-based information such as a card for income deduction, your own card, slush card, etc., or information that symbolizes a particular card with special characters, emoticons, etc. can be printed to enhance user convenience. It may be.
그 후 사용자는 자신의 단말로 출력된 하나 이상의 카드 정보에서 본 자가 카드결제에 이용될 카드를 선택하고, 자가 카드결제에 따른 대금 정보 등을 입력하게 된다.Thereafter, the user selects a card to be used for the card payment by the presenter from one or more card information output to his terminal, and inputs the price information according to the self card payment.
이렇게 입력된 정보는 본 발명의 서비스 서버(100)의 거래정보 수신부(120)로 전송되는데, 이 과정에서 상기 선택된 카드의 정보가 전송되도록 구성될 수도 있으나, 이러한 경우, 상기 카드 정보는 소정의 중개 서버인 서비스 서버(100)로 전송되는 것이므로 데이터 형태로서의 제3자 카드 정보 점유가 가능해질 수 있다. The input information is transmitted to the transaction information receiving unit 120 of the service server 100 of the present invention. In this process, the information of the selected card may be transmitted. In this case, the card information may be predetermined. Since it is transmitted to the service server 100 which is a server, it is possible to occupy third party card information as a data form.
그러므로 직접적인 카드 정보의 전송되기보다는 카드 번호 중 일부 번호만 서비스서버(100)로 전송되도록 구성할 수 있고, 이러한 경우, 앞서 설명된 바와 같이 본 발명의 서비스 서버(100)는 이미 회원 등록 과정에서 카드사 서버(30)로부터 이에 대한 연계 정보가 전송되어 있으므로 상기 카드 정보의 일부 정보를 카드사 서버(30)로 전송하여 거래 승인 요청을 수행할 수 있다.Therefore, rather than being directly transmitted card information can be configured to transmit only a portion of the card number to the service server 100, in this case, as described above, the service server 100 of the present invention is already a card company in the member registration process Since the link information has been transmitted from the server 30, some information of the card information may be transmitted to the card company server 30 to perform a transaction approval request.
바람직하게는, VM 기반의 고객 단말(10)은 회원 등록 과정에서 자가 카드결제에 이용될 카드 정보에 대응되는 대체 식별 정보인 가상카드번호가 이미 프로그램 내부적으로 저장되어 있으므로 고객이 유저 인터페이스에 의해 출력된 카드를 선택하면, 상기 선택된 카드에 연계된 상기 대체 식별 정보가 상기 서비스 서버(100)의 거래정보수신부(120)로 전송(S135)되도록 구성할 수도 있다.Preferably, the VM-based customer terminal 10 outputs the virtual card number, which is an alternative identification information corresponding to the card information to be used for self-payment in the member registration process, so that the customer outputs it by the user interface. If the selected card is selected, the alternative identification information associated with the selected card may be configured to be transmitted to the transaction information receiver 120 of the service server 100 (S135).
이렇게 구성하는 경우, 실질 카드 번호 등의 정보는 회원 등록 과정에서 카드사로 전송되는 경우를 제외하면, 실제 거래 행위에서는 전혀 데이터 형태로 송수신되지 않고, 이를 상징하는 가상의 식별 카드 번호인 대체 식별 번호만 데이터 형태로 송수신되므로 해킹, 정보 유출 등의 보안 저해 요인에 원천적으로 대처할 수 있어 더욱 바람직하다고 할 수 있다.In this configuration, the information such as the actual card number is not transmitted or received in the form of data at all, except in the case of being transmitted to the card company during the member registration process, and only an alternative identification number which is a virtual identification card number symbolizing this is not transmitted. Since it is transmitted and received in the form of data, it can be said to be more preferable since it can fundamentally cope with security obstacles such as hacking and information leakage.
상기와 같이 대체 식별 정보와 대금 정보 등이 서비스 서버(100)에 수신되면, 상기 서비스 서버(100)의 제어부(130)는 전송된 정보 등을 카드사 서버(30)로 전송하여 자가 카드결제에 대한 승인을 요청한다(S140).When the alternative identification information and the price information is received in the service server 100 as described above, the control unit 130 of the service server 100 transmits the transmitted information to the card company server 30 for the self-payment of the card. Request for approval (S140).
이 때, 상기 휴대 단말 번호 등과 대금 정보를 가맹점에 전송하여, 실제 카드 거래에 대한 대금 정보, 사용자 정보가 맞는지 확인을 받은 후, 상기와 같이 자가 카드결제에 대한 승인을 해당 카드사 서버로 요청하도록 구성하는 것이 바람직하다. At this time, the payment information is transmitted to the merchant by the mobile terminal number and the like, and after confirming that the payment information and the user information for the actual card transaction is configured to request the approval of the self-card payment to the card company server as described above. It is desirable to.
해당하는 카드사 서버(30)는 전송된 정보와 기 구축된 데이터 베이스를 활용하여 즉, 카드 정보, 대체 식별 정보(가상 카드 정보), 고객 휴대 단말 정보, 대금 정보, 가맹점 정보 등을 이용하여 해당 거래의 승인 절차를 진행하고(S145) 승인 결과를 서비스 서버(100)의 제어부(130)로 전송한다(S150).The corresponding card company server 30 utilizes the transmitted information and the pre-established database, that is, the transaction using card information, replacement identification information (virtual card information), customer portable terminal information, payment information, merchant information, and the like. Proceed with the approval procedure (S145) and transmits the approval result to the control unit 130 of the service server 100 (S150).
승인 결과가 상기 서비스 서버의 제어부(130)를 거쳐 결과통보부(140)에 수신되면, 상기 결과통보부(130)는 결제 승인이 이루어졌는지 승인이 거부되었는지 판단하여(S155), 승인이 거부된 경우 이에 해당하는 안내 정보를 상기 고객 단말(10)로 전송하고(S160), 승인이 완료된 경우 이에 해당하는 안내 정보를 상기 고객 단말(10)로 전송한다(S165). 상기 승인 거부 또는 승인 완료에 대한 안내 정보는 가맹점 단말(20)로도 전송될 수 있음은 물론이다(S170).When the approval result is received by the result notification unit 140 through the control unit 130 of the service server, the result notification unit 130 determines whether the payment is approved or approved (S155), the approval is denied In this case, the corresponding guide information is transmitted to the customer terminal 10 (S160), and when the approval is completed, the corresponding guide information is transmitted to the customer terminal 10 (S165). The information on the rejection of approval or the completion of the approval may be transmitted to the affiliated store terminal 20 as well (S170).
이하에서는 도 6을 참조하여 상기에서 설명된 자가 카드결제 서비스 방법의 과정을 사용자 인터페이스환경을 기준으로 보충적으로 설명하면 다음과 같다. Hereinafter, the process of the self-payment service method described above with reference to FIG. 6 will be supplementally described based on a user interface environment.
우선, 고객은 도 6 (a)와 같이 왑접속 코드와 가맹점 코드를 입력하여 본 발명에 따른 서비스 서버(100)에 접속한다. 고객이 자주 이용하는 가맹점인 경우, 상기 왑접속 코드와 가맹점 코드를 이용한 접속은 고객 단말(10)에서 소정의 아이콘이나 위젯 등을 이용하여 간편하게 접속하는 것이 가능하며, 상기 아이콘이나 위젯 등을 통한 구성은 소정의 분류 기법을 통하여 가맹점이나 구매 종류 등에 따라 구분되어 설정될 수도 있다.First, the customer enters the swap access code and the merchant code as shown in FIG. 6 (a) to access the service server 100 according to the present invention. In the case of a merchant frequently used by a customer, the access using the swap connection code and the merchant code can be easily accessed using a predetermined icon or a widget in the customer terminal 10, and the configuration through the icon or widget may be performed. It may be set separately according to a merchant or a purchase type through a predetermined classification technique.
그 후, 도 6의 (b)에 도시된 바와 같이 고객은 자신의 단말에 내장된 VM의 구동을 위한 비밀번호를 입력하여 사용자 인증과정을 거치고, 인증된 후, 기 저장된 하나 이상의 카드 정보가 팝업 내지 출력되면 도 6의 (c)와 같이 자가 카드결제에 사용될 카드를 선택한다. 앞서 설명된 바와 같이 상기 팝업 내지 출력되는 카드 정보는 사용자만이 알 수 있는 다양한 형태로 저작될 수 있음은 물론이다. Then, as shown in (b) of FIG. 6, the customer enters a password for driving the VM embedded in his terminal, undergoes a user authentication process, and after authentication, the stored one or more card information pop-up or If so, the card to be used for self-payment is selected as shown in FIG. As described above, the pop-up or output card information may be authored in various forms that only the user can know.
또한, 도 6의 (d)와 같이 대금정보가 입력되면, 고객 단말(10)의 브이엠(VM)은 도 6의 (e)와 같이 최종 확인 과정을 위한 인터페이스 화면을 출력하게 된다.In addition, when the payment information is input as shown in (d) of FIG. 6, the VM (VM) of the customer terminal 10 outputs an interface screen for the final confirmation process as shown in (e) of FIG.
이 과정에서 서비스 서버(100)로부터 전송된 가맹점에 대한 정보를 도 6의 (d), (e) 등의 화면에 함께 출력시켜 고객에 결제의 대상이 되는 가맹점이 맞는지 확인 가능하도록 구성될 수 있다.In this process, the information about the affiliated store transmitted from the service server 100 may be output together on the screens of FIGS. 6 (d) and 6 (e) and may be configured to check whether the affiliated store which is the target of payment is matched to the customer. .
앞서 설명된 바와 같이 서비스 서버(100)의 중개를 거쳐 카드사 서버(30)에서 승인이 이루어지면, 그 결과는 고객 단말(10) 및 가맹점 단말(20)에는 도 6의 (f) 및 (g)와 같이 출력되게 된다. If the approval is made in the card company server 30 through the intermediary of the service server 100, as described above, the result is the customer terminal 10 and the merchant terminal 20 of Figure 6 (f) and (g) Will be output as
이하에서는 첨부된 도 7을 통하여 본 발명의 다른 측면에 의한 실시예를 설명하도록 한다. 앞서 설명된 내용과 대응되거나 중복될 수 있는 부분은 이하의 실시예에서도 동일 내지 필요한 범위에서 당업자 수준으로 가능한 수정을 가하여 적용될 수 있으므로 그 자세한 설명은 앞선 설명의 내용으로 대체하며, 이하에서는 본 실시예에 대한 주요한 사항만을 중심으로 기술하도록 한다. Hereinafter, an embodiment according to another aspect of the present invention will be described with reference to FIG. 7. Parts that may correspond to or overlap with the above-described contents may be applied to the following embodiments by applying possible modifications to those skilled in the art in the same or necessary ranges, so the detailed description is replaced with the contents of the foregoing description, and in the following embodiment The main focus is to describe only the main points.
도 7에 도시된 실시예는 가맹점 등이 본 발명에 의한 서비스 서버(100)에 고객에 대한 정보와 대금 정보 등을 포함하는 결제 요청 신호를 선행하여 전송하는 경우에 대한 실시예로서 가맹점뿐만 아니라 고객 등의 사용자 모두의 편의성과 효율성을 더욱 높일 수 있는 실시예에 해당한다.The embodiment shown in FIG. 7 is an embodiment of a case where a merchant or the like transmits a payment request signal including information about the customer and price information to the service server 100 according to the present invention in advance. Corresponds to an embodiment that can further enhance the convenience and efficiency of all users.
도 7에 도시된 바와 같이 가맹점은 소정 가맹점 단말(20)을 통하여 본 발명의 서비스 서버(100)에 휴대폰 전화번호 등의 고객 정보와 대금 정보 등을 포함하는 결제 요청 신호를 전송한다(S200).As illustrated in FIG. 7, the affiliated store transmits a payment request signal including customer information such as a mobile phone number and price information to the service server 100 of the present invention through the predetermined affiliated store terminal 20 (S200).
본 발명에 따른 서비스에 의하여 결제를 수행하고자 하는 구매자 등은 물품이나 서비스, 용역 등을 제공하는 자(이하 "판매자"라 칭한다)에게 유무선 통신을 통하여 구매 의사를 전달하게 된다.A buyer who intends to perform a payment by the service according to the present invention will communicate a purchase intention through wired / wireless communication to a person who provides goods, services, services, and the like (hereinafter, referred to as a "seller").
이 과정에서 상기 판매자는 고객으로부터 구매 의사를 확인한 부, 발신자 번호 표시 등의 전자적 수단이나 문의, 기 등록된 회원 정보 등을 통하여 자가 카드결제에 이용될 고객의 이동 통신 단말의 전화번호 등을 확보할 수 있다. 물품 구매 의사의 전달과 확인 과정 등이 완료되면, 판매자는 본 발명에 의한 자가 카드결제를 운용하는 본 발명의 서비스 서버(100)로 결제 요청 신호를 전송하게 된다.In this process, the seller secures the telephone number of the mobile communication terminal of the customer to be used for self-payment through electronic means such as a part confirming the purchase intention from the customer, display of the calling party number, inquiry, or registered member information. Can be. When the delivery and confirmation process of the intention to purchase the goods is completed, the seller transmits a payment request signal to the service server 100 of the present invention operating the self-card payment according to the present invention.
특히, 정기적으로 비용이 청구되는 서비스(예를 들어, 신문, 우유, 학원 등)를 영위하는 판매자 내지 가맹점의 경우, 본 실시예에 의한 서비스 방법이 더욱 효과적이라고 할 수 있는데, 본 서비스에 가입된 가맹점 등은 이미 배포된 소정의 작성 툴(tool)이나 프로그램 등을 통하여 해당 가맹점에 가입되어 있는 복수 명의 비용 청구에 대한 사항을 전자적 데이터 쉬트 등의 방법으로 작성할 수 있다.In particular, in the case of a seller or a merchant running a service that is regularly charged (for example, newspaper, milk, school, etc.), the service method according to the present embodiment may be more effective. Merchants and the like may prepare a matter of a plurality of bills subscribed to the affiliated store through an electronic data sheet or the like through a predetermined writing tool or program distributed.
이렇게 가맹점에서 작성되거나 전달된 결제에 대한 사항이 본 발명의 서비스 서버(100)에 전송되면, 상기 서비스 서버(100)는 상기 결제 요청 신호에 포함되어 있는 고객 전화번호 정보를 파싱하여, 본 발명의 서비스 서버(100)에 접속되는 유알엘콜백 에스엠에스(URL call back SMS)를 고객 단말로 전송하게 되고(S205) 고객은 자신의 고객 단말(10)을 통하여 상기 유알엘콜백 에스엠에스를 통하여 서비스 서버에 접속하게 된다(S210).When the information about the payment made or delivered at the merchant is transmitted to the service server 100 of the present invention, the service server 100 parses the customer telephone number information included in the payment request signal, The URL call back SMS (URL call back SMS) connected to the service server 100 is transmitted to the customer terminal (S205). The customer accesses the service server through the ULC callback SM through the customer terminal 10 thereof. It is made (S210).
상기 유알엘 콜백 에스엠에스는 왑접속코드 등을 포함하는 것으로서, 유알엘 콜백 에스엠에스가 소정의 이동통신사 서버에 의하여 고객 단말(10)로 전송되면, 상기 유알엘 콜백 에스엠에스의 선택 확인만으로 유알엘 콜백 에스엠에스에 링크되어 있는 본 발명의 서비스 서버로 접속될 수 있다.The UL callback SM includes a swap access code and the like. When the UL callback SM is transmitted to the customer terminal 10 by a predetermined mobile communication server, the UE callback SM is only selected by the selection of the UE callback SM. It can be connected to the service server of the present invention which is linked.
유알엘 콜백 에스엠에스의 구체적인 구성이나 스펙 내지 프로토콜 등에 대한 사항 그 자체는 본 발명의 주요한 기술적 사항이 아님은 물론, 상기 구성은 당업자에게 자명한 사항에 해당하므로 그 상세한 설명은 생략하도록 한다. The specific configuration, specification, or protocol of the UAL callback SM is not the main technical matters of the present invention, but the detailed description is omitted since the configuration is obvious to those skilled in the art.
사용자 인증에 대한 보안의 수준을 향상시키기 위하여, 본 발명의 서비스 방법을 수행하는 VM이 구동되기 전 VM 구동을 위한 비밀번호 입력 등의 인증 과정을 거치는 것이 더욱 바람직하다(S215, S220).In order to improve the level of security for user authentication, it is more preferable to perform an authentication process such as inputting a password for driving the VM before the VM which performs the service method of the present invention (S215, S220).
이렇게 상기 고객 단말(10)이 서비스 서버(100)에 접속된 후, 상기 고객 단말에 탑재된 브이엠(VM)이 구동되게 되고, 자가 카드결제에 이용될 하나 이상의 카드 정보 및 상기 서비스서버로부터 전송된 대금정보를 상기 고객 단말(10)의 화면표시수단으로 출력된다(S225)After the customer terminal 10 is connected to the service server 100 in this way, the VM mounted on the customer terminal is driven, and transmits one or more card information to be used for self-card payment and the service server. The price information is output to the screen display means of the customer terminal 10 (S225).
서비스 서버(100)는 이미 가맹점 단말(20)로부터 고객에게 청구되어야 할 대금 정보를 확보하고 있으므로 고객으로 하여금 대금 정보 등을 다시 입력하는 과정을 거치지 않고, 출력된 대금 정보가 맞는지 여부를 확인하는 더욱 간단하고 정확한 방법으로 구현할 수 있다. Since the service server 100 has already secured the billing information to be billed to the customer from the merchant terminal 20, the customer does not go through the process of re-entering the billing information and the like, and checks whether the outputted billing information is correct. It can be implemented in a simple and accurate way.
그 후, 상기 출력된 하나 이상의 카드 정보 중 고객이 자가 카드결제에 이용될 하나의 카드를 키 버튼의 상하 조정 등의 간단한 조작행위를 통하여 선택하면, 고객 단말에 탑재된 VM은 선택된 카드 정보에 해당하는 대체 식별 정보를 본 발명의 서비스 서버(100)에 왑(WAP) 등의 데이터 통신 매체를 통해 전송한다(S230).Thereafter, when the customer selects one card to be used for self-payment among the one or more card information output through a simple operation such as vertical adjustment of the key button, the VM mounted in the customer terminal corresponds to the selected card information. The alternative identification information is transmitted to the service server 100 of the present invention through a data communication medium such as a swap (WAP) (S230).
상기 서비스 서버(100)에 상기 대체 식별 정보가 전송되면, 서비스 서버(100)는 상기 전송된 대체 식별 정보와 상기 대금 정보를 카드사 서버(30)에 전송하여 거래 승인을 요청(S224)하고, 카드사 서버(30)의 승인 절차 진행(S240) 후 승인이 완료되어 그 결과가 서비스 서버(100)에 도착하면, 상기 가맹점의 소정 단말(20)과 상기 고객 단말(10)에 승인 결과를 통보하게 된다(S250, S255).When the replacement identification information is transmitted to the service server 100, the service server 100 transmits the transmitted replacement identification information and the price information to the card company server 30 to request a transaction approval (S224), and the card company. When the approval is completed after the approval process of the server 30 (S240) and the result arrives at the service server 100, the result of the approval is notified to the predetermined terminal 20 and the customer terminal 10 of the affiliated store. (S250, S255).
이 실시예에서도 보안이 유지되어야 하는 고객의 카드 정보 등은 가맹점을 비롯하여 본 발명의 자가 카드결제에 대한 중개를 수행하는 주체인 서비스 서버(100)에 전혀 노출되지 않음은 물론이다. In this embodiment, the card information of the customer, which should be maintained in the security, is not exposed at all to the service server 100, which is the subject that performs the brokering of the self-payment of the present invention, including the affiliated store.
상술된 본 발명에 의한 자가 카드결제 서비스 방법은 신용카드 사용에 따른 결제 처리의 전통적인 방법과는 근본적인 차이를 가지게 된다. The self-payment service method according to the present invention described above has a fundamental difference from the conventional method of payment processing according to the use of a credit card.
신용카드 거래가 이루어지는 종래 전통적인 방법을 간략히 살펴보면, 고객 신용카드의 마그네틱 또는 IC정보를 읽어들이는 과정, 상기 읽어들인 정보와 가맹점 카드 단말의 고유 번호를 VAN사 등으로 전송하는 과정, 상기 전송된 정보로 카드 승인된 경우 승인 정보를 입력받는 과정 및 승인이 이루어진 후 신용 카드 거래 결과를 전표에 인쇄하는 과정으로 이루어지는데, 이러한 신용카드 거래의 시작과 종료에 걸친 모든 과정에서 가맹점 카드 단말기가 메인(main) 주체가 되어 수행된다.Looking at the conventional method of performing a credit card transaction briefly, the process of reading the magnetic or IC information of the customer credit card, the process of transmitting the read information and the unique number of the merchant card terminal to the VAN company, such as the transmitted information If the card is approved, the process includes receiving approval information and printing the credit card transaction result on the voucher after the approval is made. The merchant card terminal is main in all the processes from the beginning and the end of the credit card transaction. It is performed as a subject.
상기의 과정에서 고객은 카드만을 가맹점의 판매사원 등에게 제공할 뿐, 거래의 행위 주체임에도 불구하고 상기 카드 거래의 주체적인 행위를 수행하지 않으며, 단말기가 모든 과정을 처리하게 된다. 그러므로 앞서 상술된 바와 같이 상기 와 같은 기능을 수행하는 가맹점 단말기가 어떠한 형태로든 존재하지 않으면 신용 카드 거래가 수행되지 않게 되며, 이 과정에서 고객은 주변인으로 전락하게 된다.In the above process, the customer only provides the card to the salesperson of the affiliated store, and although the agent is the agent of the transaction, the terminal does not perform the subjective act of the card transaction, and the terminal handles all the processes. Therefore, as described above, if the merchant terminal that performs the above functions does not exist in any form, the credit card transaction is not performed, and in this process, the customer becomes a neighbor.
대리 주차, 주유소 등에서 흔히 발생되는 것으로 알려진 불법카드 복제, 정보 유출 등의 문제가 발생되는 주된 이유는 바로 고객의 신용카드가 고객에서 판매사원으로 그 점유가 이전된다는 것에 있다. 점유가 이전된 상태에서 이루어지는 여러 가지 불법적 행위를 점유가 이전된 고객(사용자)이 발견하거나 저지한다는 것은 불가능하기 때문이다. The main reason for problems such as illegal card duplication, information leakage, etc., which are commonly found in valet parking, gas stations, etc., is due to the transfer of the customer's credit card from the customer to the salesperson. This is because it is impossible for the transferred customer (user) to detect or prevent various illegal acts that occur while the possession is transferred.
이러한 문제점은 PG사 또는 중개 서버 등에 고객의 개인 정보 등이 점유되거나 저장되는 등의 경우에도 동일하게 발생될 가능성이 있다. Such a problem may occur in the case where the personal information of the customer is occupied or stored in a PG company or an intermediary server or the like.
그러나 상기 본 발명에 의한 방법은 상기와 같은 신용카드 거래의 프로세스에 제3자를 상징하는 가맹점 단말은 물론, 중개하는 행위주체가 전혀 관여되지 않도록 구성된다. However, the method according to the present invention is configured such that not only the merchant terminal representing the third party, but also the brokering agent is involved in the credit card transaction process.
상기와 같이 상세히 설명된 본 발명의 자가 카드결제 서비스 방법은 거래 행위를 수행하는 구매자와 카드사만을 카드 거래의 주요 행위 주체로 설정할 수 있으며, 물품 또는 서비스를 제공하는 판매자 측(가맹점 측)은 물론, 카드 결제를 중개하는 주체에서는 주요 개인 정보가 일시적 또는 단기적으로라도 데이터 정보 등의 형태로 저장되지 않도록 구성할 수 있다.In the self-card payment service method of the present invention described in detail as described above, only the buyer and the card company performing the transaction may be set as the main agent of the card transaction, and the seller (merchant) that provides the goods or services, as well as In the case of the card brokering agent, the main personal information may be configured not to be stored in the form of data information even in a temporary or short term.
이러한 본 발명의 구성을 통하여, 신용카드거래가 가지는 시장적 활용 및 이익 등이 그대로 향유됨과 동시에, 개인 정보 유출을 통한 부정 내지 부당 사용을 저지하고자 하는 "구매자", 물품 또는 서비스의 판매가 촉진되어 경제적 이익을 이루고자 하는 "판매자" 및 상기 구매자와 판매자의 신용 카드 거래를 신뢰성 있는 실현하고자 하는 "카드사"의 신용카드 행위 3주체 모두의 시장적 요구와 필요성을 충족시킬 수 있게 된다.Through the configuration of the present invention, the market utilization and profits of credit card transactions are enjoyed as they are, and at the same time, the sales of "buyers", goods, or services that are intended to prevent fraudulent or unfair use through the leakage of personal information are promoted, and economic benefits It is possible to meet the market demands and needs of both the "seller" who wishes to achieve and the credit card acts of the "card company" who wishes to reliably realize the credit card transactions between the buyer and the seller.
이상에서와 같이 본 발명에 따른 자가 카드결제 서비스 방법 및 상기 서비스를 수행하는 서비스 서버(100) 등에 대하여 상세히 기술하였으나, 본 발명에 의한 상기 서비스 서버(100)에 대한 각 구성은 물리적으로 구분되는 구성요소라기보다는 논리적으로 구분되는 구성요소로 이해되어야 한다.As described above, the self-card payment service method and the service server 100 performing the service, etc. according to the present invention have been described in detail, but each configuration of the service server 100 according to the present invention is physically divided. It should be understood as a logically divided component rather than an element.
즉, 각각의 구성은 본 발명의 기술사상을 실현하기 위하여 논리적으로 구분된 구성요소에 해당하므로 각각의 구성요소가 통합 또는 분리되어 수행되더라도 본 발명의 논리 구성이 수행하는 기능을 실현할 수 있다면 본 발명의 범위 내에 있다고 해석되어야 한다.That is, since each configuration corresponds to logically divided components to realize the technical idea of the present invention, even if each component is integrated or separated, the present invention can realize the function performed by the logical configuration of the present invention. Should be interpreted to be within the scope of.
이상에서 본 발명은 비록 한정된 실시예와 도면에 의해 설명되었으나, 본 발명은 이것에 의해 한정되지 않으며 본 발명이 속하는 기술분야에서 통상의 지식을 가진 자에 의해 본 발명의 기술사상과 아래에 기재될 특허청구범위의 균등범위 내에서 다양한 수정 및 변형이 가능함은 물론이다. Although the present invention has been described above by means of limited embodiments and drawings, the present invention is not limited thereto and will be described below by the person skilled in the art to which the present invention pertains. Of course, various modifications and variations are possible within the scope of the claims.

Claims (9)

  1. 고객 단말이 왑(WAP)접속 코드와 가맹점 코드에 의하여 서비스 서버에 접속하는 접속단계;An access step of the client terminal accessing the service server by using a WAP access code and an affiliated store code;
    상기 서비스 서버가 상기 고객 단말로부터 자가 카드결제에 이용될 카드 정보에 해당하는 대체 식별 정보와 대금 정보를 왑 접속에 의하여 수신하는 거래정보수신단계; 및 A transaction information receiving step, wherein the service server receives from the customer terminal an alternative identification information and a price information corresponding to the card information to be used for self-payment by a swap connection; And
    상기 대체 식별 정보와 연계되어 카드사 서버에 저장되어 있는 고객의 카드 정보를 이용하여 카드사 서버가 카드 거래에 대한 승인을 할 수 있도록 상기 카드사 서버가 상기 고객 단말로부터 전송된 대체 식별 정보와 대금 정보를 카드사 서버에 전송하여 거래 승인을 요청하고, 승인이 완료되면 상기 가맹점의 소정 단말과 상기 고객 단말에 승인 결과를 통보하는 결과통보단계를 포함하는 것을 특징으로 하는 자가 카드결제 서비스 제공방법.The card company server transfers the identification information and the billing information transmitted from the customer terminal so that the card company server can approve the card transaction using the card information of the customer stored in the card company server in association with the substitute identification information. And requesting a transaction approval by transmitting to a server, and a result notification step of notifying the predetermined terminal and the customer terminal of the approval result when the approval is completed.
  2. 제 1항에 있어서, 상기 거래정보수신단계는,The method of claim 1, wherein the transaction information receiving step,
    상기 서비스 서버에 상기 고객 단말이 접속되면 상기 고객 단말에 탑재된 브이엠(VM)이 구동되어 자가 카드결제에 이용될 하나 이상의 카드 정보를 상기 고객 단말의 화면표시수단으로 출력하는 출력단계; 및 An output step of outputting one or more card information to be used for self-card payment to the screen display means of the customer terminal when the customer terminal is connected to the service server and the VM mounted on the customer terminal is driven; And
    상기 출력된 하나 이상의 카드 정보 중 하나가 선택되면 선택된 카드 정보에 해당하는 대체 식별 정보와 대금 정보가 서비스 서버로 전송되는 전송단계를 포함하는 것을 특징으로 하는 자가 카드결제 서비스 제공방법.And transmitting the alternative identification information and the billing information corresponding to the selected card information to a service server when one of the output one or more card information is selected.
  3. 제 2항에 있어서, 상기 브이엠은, The method of claim 2, wherein the VM,
    상기 서비스 서버에 상기 고객 단말이 접속된 후 사용자로부터 입력된 브이엠 구동을 위한 비밀번호가 인증된 경우에 한하여 구동되는 것을 특징으로 하는 자가 카드결제 서비스 제공방법.Self-payment service providing method characterized in that the drive is activated only when the password for driving the MB input from the user after the customer terminal is connected to the service server is authenticated.
  4. 제 2항에 있어서, 상기 출력단계는,The method of claim 2, wherein the output step,
    상기 서비스 서버로부터 전송된 상기 가맹점 코드에 해당하는 가맹점 정보를 더 출력하는 것을 특징으로 하는 자가 카드 결제 서비스 제공방법.Self-card payment service providing method, characterized in that for further outputting the merchant information corresponding to the merchant code transmitted from the service server.
  5. 제 1항에 있어서, 상기 대체 식별 정보는, The method of claim 1, wherein the replacement identification information,
    회원 등록 시 자가 카드결제에 사용될 카드 정보와 상호 연계되어 상기 고객 단말 및 카드사 서버에 저장되는 것을 특징으로 하는 자가 카드 결제 서비스 제공방법.Method of providing a self-card payment service, characterized in that stored in the customer terminal and the card company server in association with the card information to be used for self-payment card when registering.
  6. 가맹점으로부터 고객 단말의 전화번호 정보와 대금 정보를 포함하는 결제 요청신호가 입력되는 요청신호 입력단계; A request signal input step of inputting a payment request signal including telephone number information and price information of a customer terminal from an affiliated store;
    상기 서비스 서버로 접속되는 유알엘콜백 에스엠에스(URL call back SMS)를 상기 결제 요청 신호의 고객 단말로 전송하는 에스엠에스전송단계;SM transmission step of transmitting a URL call back SMS (URL call back SMS) connected to the service server to the customer terminal of the payment request signal;
    상기 고객 단말이 상기 유알엘콜백 에스엠에스를 통하여 서비스 서버에 접속하는 접속단계; An access step of the client terminal accessing a service server through the UL callback SM;
    상기 고객 단말이 상기 서비스 서버에 접속되면 상기 고객 단말에 탑재된 브이엠(VM)이 구동되어 자가 카드결제에 이용될 하나 이상의 카드 정보 및 상기 서비스서버로부터 전송된 대금정보를 상기 고객 단말의 화면표시수단으로 출력하는 출력단계;When the customer terminal is connected to the service server, the VM (VM) mounted on the customer terminal is driven to display one or more card information to be used for self-card payment and the price information transmitted from the service server. An output step of outputting by means;
    상기 출력된 하나 이상의 카드 정보 중 하나가 선택되면 선택된 카드 정보에 해당하는 대체 식별 정보가 상기 서비스 서버에 왑(WAP)으로 전송되는 전송단계; 및 A transmission step in which, when one of the output one or more card information is selected, alternative identification information corresponding to the selected card information is transmitted to the service server by a WAP; And
    상기 대체 식별 정보와 연계되어 카드사 서버에 저장되어 있는 고객의 카드 정보를 이용하여 카드사 서버가 카드 거래에 대한 승인을 할 수 있도록 상기 서비스 서버가 상기 전송된 대체 식별 정보와 상기 대금 정보를 카드사 서버에 전송하여 거래 승인을 요청하고, 승인이 완료되면 상기 가맹점의 소정 단말과 상기 고객 단말에 승인 결과를 통보하는 결과통보단계를 포함하는 것을 특징으로 하는 자가 카드결제 서비스 제공방법.The service server transmits the transmitted replacement identification information and the payment information to the card company server so that the card company server can approve the card transaction using the card information of the customer stored in the card company server in association with the replacement identification information. Requesting the transaction approval by transmitting, and a result notification step of notifying the predetermined terminal and the customer terminal of the approval result when the approval is completed.
  7. 제 6항에 있어서, 상기 브이엠은, The method of claim 6, wherein the VM,
    상기 서비스 서버에 상기 고객 단말이 접속된 후 사용자로부터 입력된 브이엠 구동을 위한 비밀번호가 인증된 경우에 한하여 구동되는 것을 특징으로 하는 자가 카드결제 서비스 제공방법.Self-payment service providing method characterized in that the drive is activated only when the password for driving the MB input from the user after the customer terminal is connected to the service server is authenticated.
  8. 제 6항에 있어서, 상기 출력단계는,The method of claim 6, wherein the output step,
    상기 서비스 서버로부터 전송된 상기 가맹점 정보를 더 출력하는 것을 특징으로 하는 자가 카드 결제 서비스 제공방법.Self-card payment service providing method characterized in that further outputting the merchant information transmitted from the service server.
  9. 제 6항에 있어서, 상기 대체 식별 정보는, The method of claim 6, wherein the replacement identification information,
    회원 등록 시 자가 카드결제에 사용될 카드 정보와 상호 연계되어 상기 고객 단말 및 카드사 서버에 저장되는 것을 특징으로 하는 자가 카드 결제 서비스 제공방법.Method of providing a self-card payment service, characterized in that stored in the customer terminal and the card company server in association with the card information to be used for self-payment card when registering.
PCT/KR2010/006144 2009-09-15 2010-09-09 Method for providing a security-enhanced card payment service WO2011034311A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR1020090087163A KR20110029478A (en) 2009-09-15 2009-09-15 Method for self card settlement service
KR10-2009-0087163 2009-09-15

Publications (2)

Publication Number Publication Date
WO2011034311A2 true WO2011034311A2 (en) 2011-03-24
WO2011034311A3 WO2011034311A3 (en) 2011-08-04

Family

ID=43759150

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2010/006144 WO2011034311A2 (en) 2009-09-15 2010-09-09 Method for providing a security-enhanced card payment service

Country Status (2)

Country Link
KR (1) KR20110029478A (en)
WO (1) WO2011034311A2 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR101227615B1 (en) * 2011-07-26 2013-01-29 이왕주 Agent system for mobile payment
KR101357856B1 (en) * 2011-11-08 2014-02-06 (주)와이제이인터와이드 Mobile finance transaction system
KR101335625B1 (en) * 2012-03-29 2013-12-02 이왕주 Deputtizing settlement system

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030033876A (en) * 2001-10-25 2003-05-01 주식회사 세이브코리아 Credit card settlement system using internet and mobile phone and method thereof
KR20040050443A (en) * 2002-12-10 2004-06-16 주식회사 웰게이트 Electronic payment method and system using mobile terminal
KR20060098023A (en) * 2005-03-08 2006-09-18 이처닷컴 주식회사 System and method for integrated mobile payment using mobile phone
KR20080064789A (en) * 2008-06-20 2008-07-09 장승욱 Mobile handset based ubiquitous payment service

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20030033876A (en) * 2001-10-25 2003-05-01 주식회사 세이브코리아 Credit card settlement system using internet and mobile phone and method thereof
KR20040050443A (en) * 2002-12-10 2004-06-16 주식회사 웰게이트 Electronic payment method and system using mobile terminal
KR20060098023A (en) * 2005-03-08 2006-09-18 이처닷컴 주식회사 System and method for integrated mobile payment using mobile phone
KR20080064789A (en) * 2008-06-20 2008-07-09 장승욱 Mobile handset based ubiquitous payment service

Also Published As

Publication number Publication date
WO2011034311A3 (en) 2011-08-04
KR20110029478A (en) 2011-03-23

Similar Documents

Publication Publication Date Title
WO2018194378A1 (en) Method for approving use of card by using blockchain-based token id and server using method
US6744874B2 (en) Method of universal communication and devices thereof
WO2011021868A2 (en) Mobile card/account transaction system and transaction method employing the same
US6650888B1 (en) Validating a transaction with user voice authentication using wireless communications
WO2010062077A2 (en) Method, apparatus, and system for enabling purchaser to direct payment approval, settlement, and membership subscription using mobile communication terminal
WO2013081421A1 (en) Method and system for safe mobile wallet transaction
WO2015102404A1 (en) Mobile point of sale system for reverse settlement, and method thereof
WO2019147054A1 (en) Electronic device and method for supporting automatic wi-fi connection with enhanced security method when making electronic wallet payment
WO2015068904A1 (en) Card reader, terminal, and payment information processing method using same
JP2001306987A (en) Card use approval method, card settlement system and card settlement device using portable telephone set
JP2005512234A6 (en) Customer-centric context-aware switching model
WO2016122035A1 (en) Card payment system and payment method for enabling pre-transaction confirmation
WO2016153170A1 (en) Transaction processing for direct remittance using user account
WO2019031717A1 (en) Intra-store communication network-based payment system, portable terminal comprising intra-store communication network-based payment function, method for providing intra-store communication network-based payment service, and program for performing same
WO2017209513A1 (en) Mobile payment method and device thereof
JP2002032692A (en) Method for providing information service
WO2019203384A1 (en) Mobile payment service method and system for preventing leakage of personal information, double payment, overpayment, or payment error, by allowing user to directly input payment amount, receive one-time payment security code generated by financial institution, and make payment at the time of making online or offline payment
WO2013065993A1 (en) System for brokering financial transactions using a portable terminal
WO2011034311A2 (en) Method for providing a security-enhanced card payment service
WO2013187557A1 (en) Offline payment system, offline payment device, and offline payment method
WO2022169011A1 (en) Electronic device for processing item sale information and method therefor
WO2013176398A1 (en) Non-face-to-face payment system and method
KR20020006189A (en) Method and system for notifying transaction and billing process using a card
US20030182221A1 (en) Financial agent
WO2012115341A2 (en) Secure payment system using a mobile phone, and payment method using same

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10817380

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10817380

Country of ref document: EP

Kind code of ref document: A2